Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Win 32 Dropper Gen


  • Please log in to reply
22 replies to this topic

#1 SuzyQ5943

SuzyQ5943

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 05:49 AM

Hi Guys,

I hope someone on here can help me with this issue. On a recent scan both Avast and Malwarebytes found a Win 32 Dropper Gen on my laptop. I have recently experienced BSOD and my laptop has become extremely slow. So far I have followed the instruction on both programs in an attempt to remove this trojan but my laptop still seems very slow. Could somebody please offer me some further advice so I can rest assured that my laptop is safe to use.

I look forward to hearing from someone soon

Thanks

Sue

BC AdBot (Login to Remove)

 


#2 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:09:17 AM

Posted 09 December 2012 - 05:53 AM

Hi, SuzyQ5943! I'm going to try to help you out. :)

TDSSKiller

I need you to run a scan using TDSSKiller.

  • Download TDSSKiller from here, and save it to your desktop.
  • Double click the file to launch the program. Once the program starts, click Start Scan. Don't change any default scan settings.
  • Once the scan is finished, you'll find a log in your root drive (usually C: ) that will start with TDSS in the file name, please copy and paste it into your reply.

Malwarebytes

I need you to run a scan with Malwarebytes Anti-Malware.

  • Double-click the MBAM shortcut on your desktop to open MBAM.
  • Click the Update tab, and check for updates. If a new version of MBAM is included in the update, follow the prompts and install it.
  • Once the program is done updating, select the Perform full scan option on the main interface. Then click the Scan button, hit Scan, and let the scan run.
  • Once the scan is finished, a log will pop up. If any malware was found, click the Show Results button, and make sure everything present is checked and click Remove Selected. If MBAM asks you to reboot, do so immediately. Either way, please copy and paste the log into your reply. If your PC is rebooted, you can find the log by opening up MBAM and going to the Logs tab.

AdwCleaner

I need you to run AdwCleaner to see if it removes anything.

  • Download AdwCleaner from here, and save it to your desktop.
  • Close all open programs.
  • Open the file on your desktop, and click the Delete button. Confirm operations at every prompt. Your PC will be rebooted after the final prompt.
  • Once rebooted, a text file will open up. Please copy and paste it into your reply.

RogueKiller

I need you to run RogueKiller to see if it removes anything.

  • Download RogueKiller from here, and save it to your desktop.
  • Close all open programs.
  • Double click the file on your desktop. Once the automatic check completes, hit the Scan button.
  • Once the full scan has finished, click on the Delete button. Once it's done removing things, open the newest log on your desktop (should be called RKreport[2].txt) and copy and paste it into your reply.

Please tell me how your PC is running in your next reply.

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#3 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 08:17 AM

Hi Gunto,

Thanks for getting back to me so quickly. I've done the scans you've requested but am unable to post them as they are too long, even trying to send them individually doesn't work. Any ideas??


Cheers

Sue

#4 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:09:17 AM

Posted 09 December 2012 - 09:04 AM

Hi,

Can you try attaching them?

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#5 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 09:36 AM

Hi Gunto,

Here's the Malwarebytes scan. I'll try and get the others to you ASAP.

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.12.09.02

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Qzee :: QZEE-LAPTOP [administrator]

09/12/2012 11:17:03
mbam-log-2012-12-09 (11-17-03).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 349725
Time elapsed: 1 hour(s), 1 minute(s), 28 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Cheers

Sue

#6 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 09:38 AM

This is the AdwCleaner


# AdwCleaner v2.011 - Logfile created 12/09/2012 at 12:34:32
# Updated 02/12/2012 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (32 bits)
# User : Qzee - QZEE-LAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Qzee\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Users\Qzee\AppData\Local\Conduit
Folder Deleted : C:\Users\Qzee\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Qzee\AppData\LocalLow\ConduitEngine
Folder Deleted : C:\Users\Qzee\AppData\LocalLow\PriceGong

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\conduitEngine
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2903601
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3196716
Key Deleted : HKLM\Software\Conduit

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16455

[OK] Registry is clean.

-\\ Mozilla Firefox v [Unable to get version]

Profile name : default
File : C:\Users\Qzee\AppData\Roaming\Mozilla\Firefox\Profiles\mrd3urjw.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v23.0.1271.95

File : C:\Users\Qzee\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1890 octets] - [09/12/2012 12:34:32]

########## EOF - C:\AdwCleaner[S1].txt - [1950 octets] ##########

Rogue Killer

RogueKiller V8.3.2 [Dec 7 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : Qzee [Admin rights]
Mode : Remove -- Date : 12/09/2012 12:46:05

Bad processes : 0

Registry Entries : 4
[TASK][SUSP PATH] {620F9AE2-7C42-4507-9C0A-3D1C3CF1D8F9} : C:\Users\Qzee\Desktop\AIO_CDB_Net_Full_Win_WW_130_141.exe -> DELETED
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Particular Files / Folders:

Driver : [LOADED]

HOSTS File:
--> C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
[...]


MBR Check:

+++++ PhysicalDrive0: WDC WD1600BEVT-22ZCT0 ATA Device +++++
--- User ---
[MBR] 77c1a0969d1fbb70834e9b7b5ea57e67
[BSP] 7e837ee44102422dece1f068f1ef04c3 : Windows 7/8 MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 63 | Size: 11993 Mo
1 - [ACTIVE] FAT16 (0x06) [VISIBLE] Offset (sectors): 24563712 | Size: 70424 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 168792064 | Size: 70208 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_12092012_02d1246.txt >>
RKreport[1]_S_12092012_02d1245.txt ; RKreport[2]_D_12092012_02d1246.txt

#7 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 09:50 AM

Hi Gunto,

I can't send TDSS Killer as too long. I can't seem to find the link in order to attach a file, am I not looking properly?
I'll try and send TDSS report in two halves.


Thanks for your help so far with all of this.

Cheers

Sue

#8 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 09:53 AM

First part of TDSS Killer

10:06:23.0860 3924 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:06:24.0298 3924 ============================================================
10:06:24.0298 3924 Current date / time: 2012/12/09 10:06:24.0298
10:06:24.0298 3924 SystemInfo:
10:06:24.0298 3924
10:06:24.0298 3924 OS Version: 6.1.7601 ServicePack: 1.0
10:06:24.0298 3924 Product type: Workstation
10:06:24.0298 3924 ComputerName: QZEE-LAPTOP
10:06:24.0299 3924 UserName: Qzee
10:06:24.0299 3924 Windows directory: C:\Windows
10:06:24.0299 3924 System windows directory: C:\Windows
10:06:24.0299 3924 Processor architecture: Intel x86
10:06:24.0299 3924 Number of processors: 2
10:06:24.0299 3924 Page size: 0x1000
10:06:24.0299 3924 Boot type: Normal boot
10:06:24.0299 3924 ============================================================
10:06:28.0844 3924 BG loaded
10:06:31.0133 3924 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:06:31.0175 3924 ============================================================
10:06:31.0175 3924 \Device\Harddisk0\DR0:
10:06:31.0176 3924 MBR partitions:
10:06:31.0176 3924 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x6, StartLBA 0x176D000, BlocksNum 0x898C000
10:06:31.0176 3924 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA0F9000, BlocksNum 0x8920000
10:06:31.0176 3924 ============================================================
10:06:31.0229 3924 C: <-> \Device\Harddisk0\DR0\Partition1
10:06:31.0722 3924 D: <-> \Device\Harddisk0\DR0\Partition2
10:06:31.0722 3924 ============================================================
10:06:31.0722 3924 Initialize success
10:06:31.0722 3924 ============================================================
10:07:54.0152 5392 ============================================================
10:07:54.0152 5392 Scan started
10:07:54.0152 5392 Mode: Manual; SigCheck; TDLFS;
10:07:54.0152 5392 ============================================================
10:07:57.0097 5392 ================ Scan system memory ========================
10:07:57.0097 5392 System memory - ok
10:07:57.0098 5392 ================ Scan services =============================
10:07:57.0296 5392 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:07:57.0416 5392 1394ohci - ok
10:07:57.0460 5392 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:07:57.0500 5392 ACPI - ok
10:07:57.0537 5392 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:07:57.0586 5392 AcpiPmi - ok
10:07:57.0729 5392 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
10:07:57.0763 5392 AdobeARMservice - ok
10:07:57.0813 5392 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:07:57.0845 5392 AdobeFlashPlayerUpdateSvc - ok
10:07:57.0901 5392 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
10:07:57.0947 5392 adp94xx - ok
10:07:57.0966 5392 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
10:07:57.0985 5392 adpahci - ok
10:07:58.0006 5392 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
10:07:58.0023 5392 adpu320 - ok
10:07:58.0069 5392 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:07:58.0117 5392 AeLookupSvc - ok
10:07:58.0169 5392 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
10:07:58.0214 5392 AFD - ok
10:07:58.0245 5392 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
10:07:58.0265 5392 agp440 - ok
10:07:58.0321 5392 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
10:07:58.0342 5392 aic78xx - ok
10:07:58.0356 5392 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
10:07:58.0423 5392 ALG - ok
10:07:58.0453 5392 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
10:07:58.0472 5392 aliide - ok
10:07:58.0488 5392 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
10:07:58.0509 5392 amdagp - ok
10:07:58.0534 5392 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
10:07:58.0553 5392 amdide - ok
10:07:58.0609 5392 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
10:07:58.0667 5392 AmdK8 - ok
10:07:58.0696 5392 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
10:07:58.0753 5392 AmdPPM - ok
10:07:58.0784 5392 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:07:58.0811 5392 amdsata - ok
10:07:58.0844 5392 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
10:07:58.0862 5392 amdsbs - ok
10:07:58.0882 5392 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:07:58.0896 5392 amdxata - ok
10:07:58.0945 5392 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
10:07:59.0008 5392 AppID - ok
10:07:59.0068 5392 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:07:59.0155 5392 AppIDSvc - ok
10:07:59.0189 5392 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
10:07:59.0264 5392 Appinfo - ok
10:07:59.0362 5392 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:07:59.0387 5392 Apple Mobile Device - ok
10:07:59.0445 5392 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
10:07:59.0503 5392 AppMgmt - ok
10:07:59.0559 5392 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
10:07:59.0594 5392 arc - ok
10:07:59.0605 5392 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
10:07:59.0621 5392 arcsas - ok
10:07:59.0784 5392 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
10:07:59.0819 5392 aspnet_state - ok
10:07:59.0865 5392 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
10:07:59.0918 5392 aswFsBlk - ok
10:07:59.0971 5392 [ CCAFDA4AB7F3738142B3BA7DA311FFB0 ] aswFW C:\Windows\system32\drivers\aswFW.sys
10:08:00.0007 5392 aswFW - ok
10:08:00.0041 5392 [ E2FEE0486D68BF85355D3EDA1A24FF68 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
10:08:00.0072 5392 aswKbd - ok
10:08:00.0142 5392 [ 62F9DCEC95F91B8E0203E85D344A7E65 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
10:08:00.0169 5392 aswMonFlt - ok
10:08:00.0188 5392 [ 7B948E3657BEA62E437BC46CA6EF6012 ] aswNdis C:\Windows\system32\DRIVERS\aswNdis.sys
10:08:00.0205 5392 aswNdis - ok
10:08:00.0237 5392 [ DCF8B68A3A6217F87CA7FA95F535B47E ] aswNdis2 C:\Windows\system32\drivers\aswNdis2.sys
10:08:00.0259 5392 aswNdis2 - ok
10:08:00.0304 5392 [ 81F638A2DD94ABBF0B43880AB38D8DBD ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
10:08:00.0321 5392 aswRdr - ok
10:08:00.0366 5392 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
10:08:00.0397 5392 aswSnx - ok
10:08:00.0415 5392 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\Windows\system32\drivers\aswSP.sys
10:08:00.0433 5392 aswSP - ok
10:08:00.0443 5392 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
10:08:00.0455 5392 aswTdi - ok
10:08:00.0485 5392 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:08:00.0528 5392 AsyncMac - ok
10:08:00.0555 5392 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
10:08:00.0568 5392 atapi - ok
10:08:00.0702 5392 [ B01751CC563AECAC09BBE36AAA21FBEF ] athr C:\Windows\system32\DRIVERS\athr.sys
10:08:00.0758 5392 athr - ok
10:08:00.0826 5392 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:08:00.0873 5392 AudioEndpointBuilder - ok
10:08:00.0889 5392 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
10:08:00.0922 5392 Audiosrv - ok
10:08:01.0029 5392 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:08:01.0062 5392 avast! Antivirus - ok
10:08:01.0098 5392 [ BC0E07A768A0A14C48E3CE1875F2C377 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
10:08:01.0112 5392 avast! Firewall - ok
10:08:01.0163 5392 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:08:01.0217 5392 AxInstSV - ok
10:08:01.0279 5392 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
10:08:01.0341 5392 b06bdrv - ok
10:08:01.0387 5392 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
10:08:01.0430 5392 b57nd60x - ok
10:08:01.0505 5392 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
10:08:01.0582 5392 BDESVC - ok
10:08:01.0596 5392 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
10:08:01.0645 5392 Beep - ok
10:08:01.0733 5392 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
10:08:01.0798 5392 BFE - ok
10:08:01.0833 5392 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
10:08:01.0887 5392 BITS - ok
10:08:01.0912 5392 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:08:01.0943 5392 blbdrive - ok
10:08:02.0029 5392 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:08:02.0061 5392 Bonjour Service - ok
10:08:02.0099 5392 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:08:02.0114 5392 bowser - ok
10:08:02.0148 5392 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:08:02.0236 5392 BrFiltLo - ok
10:08:02.0263 5392 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:08:02.0315 5392 BrFiltUp - ok
10:08:02.0347 5392 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
10:08:02.0399 5392 BridgeMP - ok
10:08:02.0441 5392 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
10:08:02.0474 5392 Browser - ok
10:08:02.0495 5392 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:08:02.0522 5392 Brserid - ok
10:08:02.0538 5392 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:08:02.0593 5392 BrSerWdm - ok
10:08:02.0611 5392 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:08:02.0646 5392 BrUsbMdm - ok
10:08:02.0693 5392 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:08:02.0755 5392 BrUsbSer - ok
10:08:02.0787 5392 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
10:08:02.0852 5392 BTHMODEM - ok
10:08:02.0917 5392 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
10:08:02.0982 5392 bthserv - ok
10:08:03.0007 5392 catchme - ok
10:08:03.0029 5392 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:08:03.0080 5392 cdfs - ok
10:08:03.0129 5392 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:08:03.0175 5392 cdrom - ok
10:08:03.0230 5392 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
10:08:03.0290 5392 CertPropSvc - ok
10:08:03.0350 5392 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
10:08:03.0383 5392 circlass - ok
10:08:03.0423 5392 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
10:08:03.0449 5392 CLFS - ok
10:08:03.0524 5392 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:08:03.0555 5392 clr_optimization_v2.0.50727_32 - ok
10:08:03.0598 5392 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:08:03.0617 5392 clr_optimization_v4.0.30319_32 - ok
10:08:03.0634 5392 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:08:03.0666 5392 CmBatt - ok
10:08:03.0701 5392 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:08:03.0739 5392 cmdide - ok
10:08:03.0785 5392 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
10:08:03.0857 5392 CNG - ok
10:08:03.0890 5392 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:08:03.0905 5392 Compbatt - ok
10:08:03.0946 5392 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
10:08:04.0023 5392 CompositeBus - ok
10:08:04.0045 5392 COMSysApp - ok
10:08:04.0059 5392 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
10:08:04.0078 5392 crcdisk - ok
10:08:04.0127 5392 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:08:04.0185 5392 CryptSvc - ok
10:08:04.0211 5392 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
10:08:04.0254 5392 CSC - ok
10:08:04.0290 5392 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
10:08:04.0318 5392 CscService - ok
10:08:04.0352 5392 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
10:08:04.0401 5392 DcomLaunch - ok
10:08:04.0452 5392 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
10:08:04.0544 5392 defragsvc - ok
10:08:04.0600 5392 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:08:04.0647 5392 DfsC - ok
10:08:04.0751 5392 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
10:08:04.0796 5392 Dhcp - ok
10:08:04.0834 5392 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
10:08:04.0902 5392 discache - ok
10:08:04.0942 5392 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
10:08:04.0958 5392 Disk - ok
10:08:04.0978 5392 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:08:05.0007 5392 Dnscache - ok
10:08:05.0037 5392 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
10:08:05.0091 5392 dot3svc - ok
10:08:05.0139 5392 [ B5E479EB83707DD698F66953E922042C ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
10:08:05.0159 5392 Dot4 - ok
10:08:05.0204 5392 [ CAEFD09B6A6249C53A67D55A9A9FCABF ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:08:05.0265 5392 Dot4Print - ok
10:08:05.0306 5392 [ CF491FF38D62143203C065260567E2F7 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
10:08:05.0329 5392 dot4usb - ok
10:08:05.0387 5392 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
10:08:05.0467 5392 DPS - ok
10:08:05.0554 5392 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:08:05.0584 5392 drmkaud - ok
10:08:05.0631 5392 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:08:05.0667 5392 DXGKrnl - ok
10:08:05.0703 5392 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
10:08:05.0750 5392 EapHost - ok
10:08:05.0885 5392 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
10:08:06.0040 5392 ebdrv - ok
10:08:06.0075 5392 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
10:08:06.0128 5392 EFS - ok
10:08:06.0208 5392 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:08:06.0256 5392 ehRecvr - ok
10:08:06.0301 5392 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
10:08:06.0349 5392 ehSched - ok
10:08:06.0410 5392 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
10:08:06.0467 5392 elxstor - ok
10:08:06.0501 5392 [ 29DCAEB81DDE6F154AA4D36B18ECBB1F ] enecir C:\Windows\system32\DRIVERS\enecir.sys
10:08:06.0528 5392 enecir - ok
10:08:06.0561 5392 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:08:06.0601 5392 ErrDev - ok
10:08:06.0700 5392 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
10:08:06.0775 5392 EventSystem - ok
10:08:06.0794 5392 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
10:08:06.0831 5392 exfat - ok
10:08:06.0848 5392 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:08:06.0892 5392 fastfat - ok
10:08:06.0956 5392 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
10:08:06.0989 5392 Fax - ok
10:08:07.0012 5392 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
10:08:07.0029 5392 fdc - ok
10:08:07.0036 5392 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
10:08:07.0078 5392 fdPHost - ok
10:08:07.0100 5392 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
10:08:07.0130 5392 FDResPub - ok
10:08:07.0148 5392 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:08:07.0164 5392 FileInfo - ok
10:08:07.0181 5392 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:08:07.0211 5392 Filetrace - ok
10:08:07.0223 5392 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
10:08:07.0260 5392 flpydisk - ok
10:08:07.0286 5392 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:08:07.0302 5392 FltMgr - ok
10:08:07.0347 5392 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
10:08:07.0382 5392 FontCache - ok
10:08:07.0486 5392 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
10:08:07.0515 5392 FontCache3.0.0.0 - ok
10:08:07.0536 5392 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:08:07.0557 5392 FsDepends - ok
10:08:07.0584 5392 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:08:07.0598 5392 Fs_Rec - ok
10:08:07.0685 5392 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:08:07.0722 5392 fvevol - ok
10:08:07.0762 5392 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
10:08:07.0788 5392 gagp30kx - ok
10:08:07.0838 5392 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:08:07.0863 5392 GEARAspiWDM - ok
10:08:07.0918 5392 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
10:08:07.0993 5392 gpsvc - ok
10:08:08.0039 5392 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:08:08.0086 5392 hcw85cir - ok
10:08:08.0135 5392 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:08:08.0181 5392 HdAudAddService - ok
10:08:08.0222 5392 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
10:08:08.0272 5392 HDAudBus - ok
10:08:08.0290 5392 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
10:08:08.0321 5392 HidBatt - ok
10:08:08.0336 5392 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
10:08:08.0373 5392 HidBth - ok
10:08:08.0397 5392 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
10:08:08.0427 5392 HidIr - ok
10:08:08.0454 5392 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
10:08:08.0497 5392 hidserv - ok
10:08:08.0527 5392 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\drivers\hidusb.sys
10:08:08.0564 5392 HidUsb - ok
10:08:08.0599 5392 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:08:08.0630 5392 hkmsvc - ok
10:08:08.0689 5392 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:08:08.0746 5392 HomeGroupListener - ok
10:08:08.0786 5392 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:08:08.0838 5392 HomeGroupProvider - ok
10:08:08.0989 5392 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
10:08:09.0022 5392 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
10:08:09.0022 5392 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
10:08:09.0052 5392 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
10:08:09.0074 5392 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
10:08:09.0074 5392 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
10:08:09.0131 5392 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:08:09.0164 5392 HpSAMD - ok
10:08:09.0243 5392 [ 79737E0F7D25DE8405CB34D4C9882253 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
10:08:09.0316 5392 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
10:08:09.0316 5392 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
10:08:09.0365 5392 [ 950CC1E6AE3A6CD23E0945CDE089B02C ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
10:08:09.0420 5392 HTCAND32 - ok
10:08:09.0469 5392 [ 339ADEFAD60353F960E3CA67CE468C24 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
10:08:09.0527 5392 htcnprot - ok
10:08:09.0604 5392 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:08:09.0662 5392 HTTP - ok
10:08:09.0690 5392 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:08:09.0705 5392 hwpolicy - ok
10:08:09.0749 5392 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:08:09.0793 5392 i8042prt - ok
10:08:09.0848 5392 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:08:09.0889 5392 iaStorV - ok
10:08:09.0984 5392 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:08:10.0063 5392 idsvc - ok
10:08:10.0230 5392 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
10:08:10.0299 5392 igfx - ok
10:08:10.0345 5392 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
10:08:10.0360 5392 iirsp - ok
10:08:10.0421 5392 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
10:08:10.0505 5392 IKEEXT - ok
10:08:10.0538 5392 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
10:08:10.0573 5392 intelide - ok
10:08:10.0603 5392 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:08:10.0640 5392 intelppm - ok
10:08:10.0691 5392 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:08:10.0761 5392 IPBusEnum - ok
10:08:10.0778 5392 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:08:10.0822 5392 IpFilterDriver - ok
10:08:10.0866 5392 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:08:10.0907 5392 iphlpsvc - ok
10:08:10.0939 5392 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:08:10.0968 5392 IPMIDRV - ok
10:08:10.0986 5392 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:08:11.0033 5392 IPNAT - ok
10:08:11.0127 5392 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
10:08:11.0148 5392 iPod Service - ok
10:08:11.0194 5392 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:08:11.0234 5392 IRENUM - ok
10:08:11.0267 5392 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:08:11.0287 5392 isapnp - ok
10:08:11.0323 5392 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:08:11.0359 5392 iScsiPrt - ok
10:08:11.0398 5392 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:08:11.0413 5392 kbdclass - ok
10:08:11.0450 5392 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
10:08:11.0483 5392 kbdhid - ok
10:08:11.0501 5392 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
10:08:11.0522 5392 KeyIso - ok
10:08:11.0560 5392 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:08:11.0576 5392 KSecDD - ok
10:08:11.0596 5392 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:08:11.0617 5392 KSecPkg - ok
10:08:11.0700 5392 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
10:08:11.0755 5392 KtmRm - ok
10:08:11.0780 5392 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\System32\srvsvc.dll
10:08:11.0833 5392 LanmanServer - ok
10:08:11.0869 5392 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:08:11.0923 5392 LanmanWorkstation - ok
10:08:11.0985 5392 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:08:12.0061 5392 lltdio - ok
10:08:12.0089 5392 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:08:12.0152 5392 lltdsvc - ok
10:08:12.0170 5392 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
10:08:12.0198 5392 lmhosts - ok
10:08:12.0235 5392 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
10:08:12.0251 5392 LSI_FC - ok
10:08:12.0259 5392 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
10:08:12.0275 5392 LSI_SAS - ok
10:08:12.0288 5392 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:08:12.0303 5392 LSI_SAS2 - ok
10:08:12.0316 5392 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:08:12.0332 5392 LSI_SCSI - ok
10:08:12.0356 5392 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
10:08:12.0400 5392 luafv - ok
10:08:12.0433 5392 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:08:12.0483 5392 Mcx2Svc - ok
10:08:12.0501 5392 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
10:08:12.0521 5392 megasas - ok
10:08:12.0557 5392 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
10:08:12.0582 5392 MegaSR - ok
10:08:12.0693 5392 Microsoft SharePoint Workspace Audit Service - ok
10:08:12.0735 5392 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
10:08:12.0799 5392 MMCSS - ok
10:08:12.0819 5392 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
10:08:12.0862 5392 Modem - ok
10:08:12.0882 5392 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:08:12.0910 5392 monitor - ok
10:08:12.0950 5392 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\drivers\mouclass.sys
10:08:12.0977 5392 mouclass - ok
10:08:13.0022 5392 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:08:13.0074 5392 mouhid - ok
10:08:13.0104 5392 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:08:13.0136 5392 mountmgr - ok
10:08:13.0164 5392 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
10:08:13.0181 5392 mpio - ok
10:08:13.0198 5392 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:08:13.0243 5392 mpsdrv - ok
10:08:13.0299 5392 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:08:13.0399 5392 MpsSvc - ok
10:08:13.0442 5392 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:08:13.0483 5392 MRxDAV - ok
10:08:13.0522 5392 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:08:13.0572 5392 mrxsmb - ok
10:08:13.0605 5392 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:08:13.0628 5392 mrxsmb10 - ok
10:08:13.0689 5392 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:08:13.0727 5392 mrxsmb20 - ok
10:08:13.0758 5392 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
10:08:13.0772 5392 msahci - ok
10:08:13.0782 5392 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:08:13.0798 5392 msdsm - ok
10:08:13.0821 5392 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
10:08:13.0859 5392 MSDTC - ok
10:08:13.0881 5392 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:08:13.0909 5392 Msfs - ok
10:08:13.0920 5392 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:08:13.0949 5392 mshidkmdf - ok
10:08:13.0983 5392 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:08:13.0997 5392 msisadrv - ok
10:08:14.0058 5392 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:08:14.0145 5392 MSiSCSI - ok
10:08:14.0149 5392 msiserver - ok
10:08:14.0186 5392 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:08:14.0250 5392 MSKSSRV - ok
10:08:14.0268 5392 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:08:14.0324 5392 MSPCLOCK - ok
10:08:14.0358 5392 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:08:14.0409 5392 MSPQM - ok
10:08:14.0433 5392 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:08:14.0450 5392 MsRPC - ok
10:08:14.0466 5392 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
10:08:14.0480 5392 mssmbios - ok
10:08:14.0484 5392 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:08:14.0514 5392 MSTEE - ok
10:08:14.0530 5392 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
10:08:14.0559 5392 MTConfig - ok
10:08:14.0576 5392 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
10:08:14.0591 5392 Mup - ok
10:08:14.0657 5392 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
10:08:14.0716 5392 napagent - ok
10:08:14.0778 5392 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:08:14.0812 5392 NativeWifiP - ok
10:08:14.0867 5392 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:08:14.0933 5392 NDIS - ok
10:08:14.0964 5392 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:08:15.0008 5392 NdisCap - ok
10:08:15.0045 5392 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:08:15.0113 5392 NdisTapi - ok
10:08:15.0172 5392 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:08:15.0243 5392 Ndisuio - ok
10:08:15.0273 5392 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:08:15.0312 5392 NdisWan - ok
10:08:15.0343 5392 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:08:15.0387 5392 NDProxy - ok
10:08:15.0432 5392 [ A081CB6FB9A12668F233EB5414BE3A0E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:08:15.0469 5392 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:08:15.0469 5392 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:08:15.0519 5392 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:08:15.0593 5392 NetBIOS - ok
10:08:15.0613 5392 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:08:15.0658 5392 NetBT - ok
10:08:15.0693 5392 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
10:08:15.0710 5392 Netlogon - ok
10:08:15.0772 5392 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
10:08:15.0825 5392 Netman - ok
10:08:15.0863 5392 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
10:08:15.0878 5392 NetMsmqActivator - ok
10:08:15.0889 5392 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
10:08:15.0902 5392 NetPipeActivator - ok
10:08:15.0920 5392 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
10:08:15.0955 5392 netprofm - ok
10:08:15.0967 5392 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
10:08:15.0981 5392 NetTcpActivator - ok
10:08:15.0986 5392 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
10:08:15.0999 5392 NetTcpPortSharing - ok
10:08:16.0018 5392 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
10:08:16.0033 5392 nfrd960 - ok
10:08:16.0081 5392 [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc C:\Windows\System32\nlasvc.dll
10:08:16.0112 5392 NlaSvc - ok
10:08:16.0135 5392 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:08:16.0164 5392 Npfs - ok
10:08:16.0203 5392 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
10:08:16.0235 5392 nsi - ok
10:08:16.0250 5392 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:08:16.0311 5392 nsiproxy - ok
10:08:16.0361 5392 [ 0D87503986BB3DFED58E343FE39DDE13 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:08:16.0438 5392 Ntfs - ok
10:08:16.0456 5392 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
10:08:16.0485 5392 Null - ok
10:08:16.0521 5392 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:08:16.0538 5392 nvraid - ok
10:08:16.0567 5392 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:08:16.0605 5392 nvstor - ok
10:08:16.0677 5392 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:08:16.0720 5392 nv_agp - ok
10:08:16.0747 5392 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:08:16.0785 5392 ohci1394 - ok
10:08:16.0860 5392 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:08:16.0889 5392 ose - ok
10:08:17.0081 5392 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:08:17.0271 5392 osppsvc - ok
10:08:17.0329 5392 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:08:17.0367 5392 p2pimsvc - ok
10:08:17.0415 5392 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
10:08:17.0490 5392 p2psvc - ok
10:08:17.0526 5392 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
10:08:17.0562 5392 Parport - ok
10:08:17.0585 5392 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:08:17.0601 5392 partmgr - ok
10:08:17.0612 5392 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
10:08:17.0649 5392 Parvdm - ok
10:08:17.0739 5392 [ 68139940B5AC84AFFB7EB1B713BE66E7 ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
10:08:17.0766 5392 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
10:08:17.0766 5392 PassThru Service - detected UnsignedFile.Multi.Generic (1)
10:08:17.0799 5392 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:08:17.0844 5392 PcaSvc - ok
10:08:17.0872 5392 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
10:08:17.0895 5392 pci - ok
10:08:17.0922 5392 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
10:08:17.0941 5392 pciide - ok
10:08:17.0954 5392 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
10:08:17.0978 5392 pcmcia - ok
10:08:17.0990 5392 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
10:08:18.0005 5392 pcw - ok
10:08:18.0051 5392 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:08:18.0123 5392 PEAUTH - ok
10:08:18.0180 5392 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
10:08:18.0281 5392 PeerDistSvc - ok
10:08:18.0360 5392 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
10:08:18.0465 5392 pla - ok
10:08:18.0520 5392 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:08:18.0590 5392 PlugPlay - ok
10:08:18.0690 5392 [ 65BC271F337637731D3C71455AE1F476 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:08:18.0728 5392 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
10:08:18.0728 5392 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
10:08:18.0756 5392 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:08:18.0817 5392 PNRPAutoReg - ok
10:08:18.0839 5392 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:08:18.0859 5392 PNRPsvc - ok
10:08:18.0903 5392 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:08:18.0949 5392 PolicyAgent - ok
10:08:18.0990 5392 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
10:08:19.0042 5392 Power - ok
10:08:19.0088 5392 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:08:19.0117 5392 PptpMiniport - ok
10:08:19.0158 5392 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
10:08:19.0212 5392 Processor - ok
10:08:19.0247 5392 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
10:08:19.0290 5392 ProfSvc - ok
10:08:19.0307 5392 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:08:19.0329 5392 ProtectedStorage - ok
10:08:19.0364 5392 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\Windows\system32\DRIVERS\PS2.sys
10:08:19.0423 5392 Ps2 - ok
10:08:19.0472 5392 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:08:19.0523 5392 Psched - ok
10:08:19.0567 5392 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
10:08:19.0629 5392 ql2300 - ok
10:08:19.0691 5392 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
10:08:19.0726 5392 ql40xx - ok
10:08:19.0763 5392 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
10:08:19.0808 5392 QWAVE - ok
10:08:19.0826 5392 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:08:19.0844 5392 QWAVEdrv - ok
10:08:19.0922 5392 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
10:08:19.0952 5392 RapiMgr - ok
10:08:19.0966 5392 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:08:19.0995 5392 RasAcd - ok
10:08:20.0043 5392 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:08:20.0093 5392 RasAgileVpn - ok
10:08:20.0105 5392 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
10:08:20.0140 5392 RasAuto - ok
10:08:20.0149 5392 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:08:20.0192 5392 Rasl2tp - ok
10:08:20.0256 5392 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
10:08:20.0300 5392 RasMan - ok
10:08:20.0314 5392 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:08:20.0343 5392 RasPppoe - ok
10:08:20.0347 5392 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:08:20.0393 5392 RasSstp - ok
10:08:20.0430 5392 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:08:20.0470 5392 rdbss - ok
10:08:20.0491 5392 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
10:08:20.0508 5392 rdpbus - ok
10:08:20.0543 5392 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:08:20.0605 5392 RDPCDD - ok
10:08:20.0693 5392 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
10:08:20.0760 5392 RDPDR - ok
10:08:20.0798 5392 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:08:20.0872 5392 RDPENCDD - ok
10:08:20.0889 5392 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:08:20.0940 5392 RDPREFMP - ok
10:08:20.0973 5392 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:08:21.0004 5392 RDPWD - ok
10:08:21.0057 5392 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:08:21.0102 5392 rdyboost - ok
10:08:21.0139 5392 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
10:08:21.0180 5392 RemoteAccess - ok
10:08:21.0248 5392 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:08:21.0352 5392 RemoteRegistry - ok
10:08:21.0388 5392 [ 243A8C2727C0F85769F697FEA100566C ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
10:08:21.0420 5392 rimmptsk ( UnsignedFile.Multi.Generic ) - warning
10:08:21.0420 5392 rimmptsk - detected UnsignedFile.Multi.Generic (1)
10:08:21.0449 5392 [ A1CDCADF19ED45E213C225C15EA93E6B ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
10:08:21.0473 5392 rimsptsk ( UnsignedFile.Multi.Generic ) - warning
10:08:21.0473 5392 rimsptsk - detected UnsignedFile.Multi.Generic (1)
10:08:21.0520 5392 [ C72A20C1B40C8C975FC86CA66C8A9882 ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
10:08:21.0560 5392 rismxdp ( UnsignedFile.Multi.Generic ) - warning
10:08:21.0560 5392 rismxdp - detected UnsignedFile.Multi.Generic (1)
10:08:21.0591 5392 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:08:21.0678 5392 RpcEptMapper - ok
10:08:21.0720 5392 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
10:08:21.0767 5392 RpcLocator - ok
10:08:21.0799 5392 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
10:08:21.0843 5392 RpcSs - ok
10:08:21.0880 5392 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:08:21.0957 5392 rspndr - ok
10:08:21.0990 5392 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
10:08:22.0025 5392 s3cap - ok
10:08:22.0042 5392 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
10:08:22.0065 5392 SamSs - ok
10:08:22.0114 5392 SASKUTIL - ok
10:08:22.0144 5392 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:08:22.0165 5392 sbp2port - ok
10:08:22.0255 5392 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
10:08:22.0301 5392 SBSDWSCService - ok
10:08:22.0339 5392 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:08:22.0383 5392 SCardSvr - ok
10:08:22.0398 5392 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:08:22.0437 5392 scfilter - ok
10:08:22.0487 5392 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
10:08:22.0561 5392 Schedule - ok
10:08:22.0587 5392 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:08:22.0615 5392 SCPolicySvc - ok
10:08:22.0768 5392 [ B60E9769655DDEE8368E3ABB6668E076 ] ScrybeUpdater C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe
10:08:22.0806 5392 ScrybeUpdater - ok
10:08:22.0839 5392 [ 0328BE1C7F1CBA23848179F8762E391C ] sdbus C:\Windows\system32\drivers\sdbus.sys
10:08:22.0876 5392 sdbus - ok
10:08:22.0911 5392 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:08:22.0948 5392 SDRSVC - ok
10:08:22.0990 5392 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:08:23.0039 5392 secdrv - ok
10:08:23.0072 5392 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
10:08:23.0117 5392 seclogon - ok
10:08:23.0142 5392 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
10:08:23.0194 5392 SENS - ok
10:08:23.0246 5392 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:08:23.0296 5392 SensrSvc - ok
10:08:23.0318 5392 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
10:08:23.0343 5392 Serenum - ok
10:08:23.0355 5392 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
10:08:23.0377 5392 Serial - ok
10:08:23.0386 5392 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
10:08:23.0419 5392 sermouse - ok
10:08:23.0450 5392 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
10:08:23.0484 5392 SessionEnv - ok
10:08:23.0503 5392 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
10:08:23.0518 5392 sffdisk - ok
10:08:23.0523 5392 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:08:23.0560 5392 sffp_mmc - ok
10:08:23.0576 5392 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
10:08:23.0616 5392 sffp_sd - ok
10:08:23.0634 5392 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
10:08:23.0688 5392 sfloppy - ok
10:08:23.0740 5392 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:08:23.0837 5392 SharedAccess - ok
10:08:23.0862 5392 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:08:23.0910 5392 ShellHWDetection - ok
10:08:23.0930 5392 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
10:08:23.0945 5392 sisagp - ok
10:08:23.0978 5392 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:08:23.0994 5392 SiSRaid2 - ok
10:08:24.0010 5392 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
10:08:24.0026 5392 SiSRaid4 - ok
10:08:24.0053 5392 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:08:24.0084 5392 Smb - ok
10:08:24.0134 5392 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:08:24.0169 5392 SNMPTRAP - ok
10:08:24.0183 5392 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
10:08:24.0198 5392 spldr - ok
10:08:24.0235 5392 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
10:08:24.0277 5392 Spooler - ok
10:08:24.0388 5392 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
10:08:24.0477 5392 sppsvc - ok
10:08:24.0515 5392 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:08:24.0557 5392 sppuinotify - ok
10:08:24.0591 5392 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
10:08:24.0610 5392 srv - ok
10:08:24.0623 5392 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:08:24.0708 5392 srv2 - ok
10:08:24.0770 5392 [ E00FDFAFF025E94F9821153750C35A6D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL3.SYS
10:08:24.0802 5392 SrvHsfHDA - ok
10:08:24.0861 5392 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV3.SYS
10:08:24.0900 5392 SrvHsfV92 - ok
10:08:24.0936 5392 [ BC0C7EA89194C299F051C24119000E17 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
10:08:24.0958 5392 SrvHsfWinac - ok
10:08:24.0969 5392 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:08:24.0985 5392 srvnet - ok
10:08:25.0016 5392 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:08:25.0050 5392 SSDPSRV - ok
10:08:25.0055 5392 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:08:25.0087 5392 SstpSvc - ok
10:08:25.0117 5392 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
10:08:25.0151 5392 stexstor - ok
10:08:25.0187 5392 [ EDB05BD63148796F23EA78506404A538 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
10:08:25.0216 5392 StillCam - ok
10:08:25.0258 5392 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
10:08:25.0333 5392 StiSvc - ok
10:08:25.0353 5392 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
10:08:25.0368 5392 storflt - ok
10:08:25.0418 5392 [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc C:\Windows\system32\storsvc.dll
10:08:25.0455 5392 StorSvc - ok
10:08:25.0476 5392 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
10:08:25.0490 5392 storvsc - ok
10:08:25.0502 5392 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
10:08:25.0516 5392 swenum - ok
10:08:25.0536 5392 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
10:08:25.0601 5392 swprv - ok
10:08:25.0716 5392 [ 2185CC5BE9922562108CF87F42E4BBAF ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
10:08:25.0758 5392 SynTP - ok
10:08:25.0830 5392 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
10:08:25.0909 5392 SysMain - ok
10:08:25.0945 5392 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:08:25.0969 5392 TabletInputService - ok
10:08:26.0016 5392 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
10:08:26.0070 5392 TapiSrv - ok
10:08:26.0100 5392 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
10:08:26.0168 5392 TBS - ok
10:08:26.0243 5392 [ E23A56F843E2AEBBB209D0ACCA73C640 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:08:26.0315 5392 Tcpip - ok
10:08:26.0369 5392 [ E23A56F843E2AEBBB209D0ACCA73C640 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:08:26.0427 5392 TCPIP6 - ok
10:08:26.0442 5392 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:08:26.0477 5392 tcpipreg - ok
10:08:26.0504 5392 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:08:26.0537 5392 TDPIPE - ok
10:08:26.0565 5392 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:08:26.0580 5392 TDTCP - ok
10:08:26.0613 5392 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:08:26.0653 5392 tdx - ok
10:08:26.0688 5392 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
10:08:26.0702 5392 TermDD - ok
10:08:26.0753 5392 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
10:08:26.0816 5392 TermService - ok
10:08:26.0847 5392 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
10:08:26.0869 5392 Themes - ok
10:08:26.0877 5392 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
10:08:26.0909 5392 THREADORDER - ok
10:08:26.0974 5392 [ 747E60B773E95F6C93D5621B550D6865 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
10:08:26.0992 5392 TomTomHOMEService - ok
10:08:27.0001 5392 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
10:08:27.0057 5392 TrkWks - ok
10:08:27.0128 5392 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:08:27.0208 5392 TrustedInstaller - ok
10:08:27.0239 5392 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:08:27.0268 5392 tssecsrv - ok
10:08:27.0324 5392 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:08:27.0364 5392 TsUsbFlt - ok
10:08:27.0429 5392 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:08:27.0505 5392 tunnel - ok
10:08:27.0528 5392 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
10:08:27.0543 5392 uagp35 - ok
10:08:27.0564 5392 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:08:27.0617 5392 udfs - ok
10:08:27.0690 5392 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:08:27.0755 5392 UI0Detect - ok
10:08:27.0795 5392 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:08:27.0830 5392 uliagpkx - ok
10:08:27.0859 5392 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
10:08:27.0884 5392 umbus - ok
10:08:27.0911 5392 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
10:08:27.0947 5392 UmPass - ok
10:08:27.0982 5392 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
10:08:28.0020 5392 UmRdpService - ok
10:08:28.0054 5392 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
10:08:28.0133 5392 upnphost - ok
10:08:28.0173 5392 [ 73B41F4EAD65F355962168D766AF0F2E ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
10:08:28.0194 5392 USBAAPL ( UnsignedFile.Multi.Generic ) - warning
10:08:28.0194 5392 USBAAPL - detected UnsignedFile.Multi.Generic (1)
10:08:28.0234 5392 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:08:28.0273 5392 usbccgp - ok
10:08:28.0297 5392 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:08:28.0322 5392 usbcir - ok
10:08:28.0353 5392 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:08:28.0367 5392 usbehci - ok
10:08:28.0415 5392 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:08:28.0448 5392 usbhub - ok
10:08:28.0473 5392 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
10:08:28.0507 5392 usbohci - ok
10:08:28.0536 5392 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
10:08:28.0578 5392 usbprint - ok
10:08:28.0613 5392 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
10:08:28.0652 5392 usbscan - ok
10:08:28.0702 5392 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:08:28.0745 5392 USBSTOR - ok
10:08:28.0778 5392 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
10:08:28.0798 5392 usbuhci - ok
10:08:28.0842 5392 [ D82F43D15FDAA666856C0190CB73E7C9 ] usb_rndisx C:\Windows\system32\drivers\usb8023x.sys
10:08:28.0901 5392 usb_rndisx - ok
10:08:28.0932 5392 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
10:08:28.0988 5392 UxSms - ok
10:08:29.0012 5392 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
10:08:29.0029 5392 VaultSvc - ok
10:08:29.0042 5392 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:08:29.0057 5392 vdrvroot - ok
10:08:29.0102 5392 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
10:08:29.0152 5392 vds - ok
10:08:29.0203 5392 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:08:29.0264 5392 vga - ok
10:08:29.0287 5392 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
10:08:29.0324 5392 VgaSave - ok
10:08:29.0360 5392 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:08:29.0378 5392 vhdmp - ok
10:08:29.0412 5392 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
10:08:29.0444 5392 viaagp - ok
10:08:29.0449 5392 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
10:08:29.0479 5392 ViaC7 - ok
10:08:29.0512 5392 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
10:08:29.0527 5392 viaide - ok
10:08:29.0539 5392 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
10:08:29.0558 5392 vmbus - ok
10:08:29.0574 5392 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
10:08:29.0589 5392 VMBusHID - ok
10:08:29.0597 5392 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:08:29.0613 5392 volmgr - ok
10:08:29.0683 5392 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:08:29.0710 5392 volmgrx - ok
10:08:29.0737 5392 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:08:29.0763 5392 volsnap - ok
10:08:29.0792 5392 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
10:08:29.0809 5392 vsmraid - ok
10:08:29.0879 5392 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
10:08:29.0992 5392 VSS - ok
10:08:30.0013 5392 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:08:30.0051 5392 vwifibus - ok
10:08:30.0085 5392 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:08:30.0104 5392 vwififlt - ok
10:08:30.0137 5392 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:08:30.0154 5392 vwifimp - ok
10:08:30.0201 5392 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
10:08:30.0318 5392 W32Time - ok
10:08:30.0342 5392 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
10:08:30.0359 5392 WacomPen - ok
10:08:30.0408 5392 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:08:30.0468 5392 WANARP - ok
10:08:30.0472 5392 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:08:30.0500 5392 Wanarpv6 - ok
10:08:30.0558 5392 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:08:30.0646 5392 WatAdminSvc - ok
10:08:30.0700 5392 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
10:08:30.0754 5392 wbengine - ok
10:08:30.0798 5392 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:08:30.0859 5392 WbioSrvc - ok
10:08:30.0909 5392 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
10:08:30.0932 5392 WcesComm - ok
10:08:30.0980 5392 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:08:31.0038 5392 wcncsvc - ok
10:08:31.0057 5392 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:08:31.0097 5392 WcsPlugInService - ok
10:08:31.0123 5392 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
10:08:31.0143 5392 Wd - ok
10:08:31.0191 5392 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:08:31.0246 5392 Wdf01000 - ok
10:08:31.0268 5392 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:08:31.0304 5392 WdiServiceHost - ok
10:08:31.0307 5392 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:08:31.0329 5392 WdiSystemHost - ok
10:08:31.0362 5392 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
10:08:31.0438 5392 WebClient - ok
10:08:31.0456 5392 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:08:31.0492 5392 Wecsvc - ok
10:08:31.0505 5392 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:08:31.0538 5392 wercplsupport - ok
10:08:31.0557 5392 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
10:08:31.0606 5392 WerSvc - ok
10:08:31.0688 5392 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:08:31.0737 5392 WfpLwf - ok
10:08:31.0753 5392 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:08:31.0768 5392 WIMMount - ok
10:08:31.0835 5392 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
10:08:31.0899 5392 WinDefend - ok
10:08:31.0906 5392 WinHttpAutoProxySvc - ok
10:08:31.0975 5392 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:08:32.0037 5392 Winmgmt - ok
10:08:32.0101 5392 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
10:08:32.0236 5392 WinRM - ok
10:08:32.0285 5392 [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
10:08:32.0382 5392 WinUSB - ok
10:08:32.0448 5392 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
10:08:32.0480 5392 Wlansvc - ok
10:08:32.0552 5392 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
10:08:32.0630 5392 WmiAcpi - ok
10:08:32.0704 5392 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:08:32.0746 5392 wmiApSrv - ok
10:08:32.0904 5392 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
10:08:32.0942 5392 WMPNetworkSvc - ok
10:08:32.0980 5392 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:08:33.0053 5392 WPCSvc - ok
10:08:33.0089 5392 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:08:33.0125 5392 WPDBusEnum - ok
10:08:33.0161 5392 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:08:33.0226 5392 ws2ifsl - ok
10:08:33.0253 5392 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
10:08:33.0298 5392 wscsvc - ok
10:08:33.0301 5392 WSearch - ok
10:08:33.0397 5392 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
10:08:33.0447 5392 wuauserv - ok
10:08:33.0480 5392 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:08:33.0495 5392 WudfPf - ok
10:08:33.0531 5392 [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:08:33.0562 5392 WUDFRd - ok
10:08:33.0607 5392 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:08:33.0628 5392 wudfsvc - ok
10:08:33.0695 5392 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
10:08:33.0761 5392 WwanSvc - ok
10:08:33.0798 5392 ================ Scan global ===============================
10:08:33.0827 5392 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
10:08:33.0866 5392 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
10:08:33.0889 5392 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\system32\winsrv.dll
10:08:33.0930 5392 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
10:08:33.0967 5392 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
10:08:33.0978 5392 [Global] - ok
10:08:33.0979 5392 ================ Scan MBR ==================================
10:08:33.0998 5392 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:08:34.0404 5392 \Device\Harddisk0\DR0 - ok
10:08:34.0405 5392 ================ Scan VBR ==================================
10:08:34.0410 5392 [ F752F5F51EAE5326FE12817681FE0231 ] \Device\Harddisk0\DR0\Partition1
10:08:34.0413 5392 \Device\Harddisk0\DR0\Partition1 - ok
10:08:34.0438 5392 [ C4EE51B85D53132F3D53DFFD1E9F6F62 ] \Device\Harddisk0\DR0\Partition2
10:08:34.0440 5392 \Device\Harddisk0\DR0\Partition2 - ok

#9 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 09:55 AM

Second Half of TDSS Killer

10:08:34.0441 5392 ================ Scan active images ========================
10:08:34.0445 5392 [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys
10:08:34.0445 5392 C:\Windows\System32\drivers\crashdmp.sys - ok
10:08:34.0453 5392 [ 5428227D4730EBDFC842E9FB593F8C8A ] C:\Windows\System32\drivers\Dumpata.sys
10:08:34.0453 5392 C:\Windows\System32\drivers\Dumpata.sys - ok
10:08:34.0461 5392 [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys
10:08:34.0461 5392 C:\Windows\System32\drivers\dumpfve.sys - ok
10:08:34.0469 5392 [ 012C5F4E9349E711E11E0F19A8589F0A ] C:\Windows\System32\drivers\msahci.sys
10:08:34.0469 5392 C:\Windows\System32\drivers\msahci.sys - ok
10:08:34.0477 5392 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] C:\Windows\System32\drivers\cdrom.sys
10:08:34.0477 5392 C:\Windows\System32\drivers\cdrom.sys - ok
10:08:34.0483 5392 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] C:\Windows\System32\drivers\aswSnx.sys
10:08:34.0483 5392 C:\Windows\System32\drivers\aswSnx.sys - ok
10:08:34.0485 5392 [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys
10:08:34.0485 5392 C:\Windows\System32\drivers\beep.sys - ok
10:08:34.0488 5392 [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys
10:08:34.0488 5392 C:\Windows\System32\drivers\null.sys - ok
10:08:34.0491 5392 [ E2FEE0486D68BF85355D3EDA1A24FF68 ] C:\Windows\System32\drivers\aswKbd.sys
10:08:34.0491 5392 C:\Windows\System32\drivers\aswKbd.sys - ok
10:08:34.0494 5392 [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys
10:08:34.0494 5392 C:\Windows\System32\drivers\vga.sys - ok
10:08:34.0497 5392 [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys
10:08:34.0497 5392 C:\Windows\System32\drivers\videoprt.sys - ok
10:08:34.0500 5392 [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys
10:08:34.0500 5392 C:\Windows\System32\drivers\watchdog.sys - ok
10:08:34.0502 5392 [ 23DAE03F29D253AE74C44F99E515F9A1 ] C:\Windows\System32\drivers\RDPCDD.sys
10:08:34.0503 5392 C:\Windows\System32\drivers\RDPCDD.sys - ok
10:08:34.0505 5392 [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys
10:08:34.0506 5392 C:\Windows\System32\drivers\RDPENCDD.sys - ok
10:08:34.0508 5392 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys
10:08:34.0509 5392 C:\Windows\System32\drivers\msfs.sys - ok
10:08:34.0511 5392 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys
10:08:34.0511 5392 C:\Windows\System32\drivers\RDPREFMP.sys - ok
10:08:34.0514 5392 [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys
10:08:34.0514 5392 C:\Windows\System32\drivers\npfs.sys - ok
10:08:34.0517 5392 [ 2F885864D5BC8A16C86BEE595969A48A ] C:\Windows\System32\drivers\tdi.sys
10:08:34.0517 5392 C:\Windows\System32\drivers\tdi.sys - ok
10:08:34.0519 5392 [ B459575348C20E8121D6039DA063C704 ] C:\Windows\System32\drivers\tdx.sys
10:08:34.0519 5392 C:\Windows\System32\drivers\tdx.sys - ok
10:08:34.0522 5392 [ CCAFDA4AB7F3738142B3BA7DA311FFB0 ] C:\Windows\System32\drivers\aswFW.sys
10:08:34.0522 5392 C:\Windows\System32\drivers\aswFW.sys - ok
10:08:34.0525 5392 [ E3E73B2B73A4DFADFDDF557192C4B08A ] C:\Windows\System32\drivers\aswTdi.sys
10:08:34.0525 5392 C:\Windows\System32\drivers\aswTdi.sys - ok
10:08:34.0528 5392 [ 280122DDCF04B378EDD1AD54D71C1E54 ] C:\Windows\System32\drivers\netbt.sys
10:08:34.0528 5392 C:\Windows\System32\drivers\netbt.sys - ok
10:08:34.0531 5392 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] C:\Windows\System32\drivers\afd.sys
10:08:34.0531 5392 C:\Windows\System32\drivers\afd.sys - ok
10:08:34.0534 5392 [ 81F638A2DD94ABBF0B43880AB38D8DBD ] C:\Windows\System32\drivers\aswRdr2.sys
10:08:34.0534 5392 C:\Windows\System32\drivers\aswRdr2.sys - ok
10:08:34.0537 5392 [ 6DB3276587B853BF886B69528FDB048C ] C:\Windows\System32\drivers\ws2ifsl.sys
10:08:34.0537 5392 C:\Windows\System32\drivers\ws2ifsl.sys - ok
10:08:34.0540 5392 [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys
10:08:34.0540 5392 C:\Windows\System32\drivers\wfplwf.sys - ok
10:08:34.0542 5392 [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys
10:08:34.0542 5392 C:\Windows\System32\drivers\pacer.sys - ok
10:08:34.0545 5392 [ 7090D3436EEB4E7DA3373090A23448F7 ] C:\Windows\System32\drivers\vwififlt.sys
10:08:34.0545 5392 C:\Windows\System32\drivers\vwififlt.sys - ok
10:08:34.0548 5392 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys
10:08:34.0548 5392 C:\Windows\System32\drivers\netbios.sys - ok
10:08:34.0551 5392 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] C:\Windows\System32\drivers\termdd.sys
10:08:34.0551 5392 C:\Windows\System32\drivers\termdd.sys - ok
10:08:34.0554 5392 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] C:\Windows\System32\drivers\wanarp.sys
10:08:34.0554 5392 C:\Windows\System32\drivers\wanarp.sys - ok
10:08:34.0557 5392 [ D528BC58A489409BA40334EBF96A311B ] C:\Windows\System32\drivers\rdbss.sys
10:08:34.0557 5392 C:\Windows\System32\drivers\rdbss.sys - ok
10:08:34.0560 5392 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys
10:08:34.0560 5392 C:\Windows\System32\drivers\nsiproxy.sys - ok
10:08:34.0562 5392 [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys
10:08:34.0562 5392 C:\Windows\System32\drivers\discache.sys - ok
10:08:34.0565 5392 [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys
10:08:34.0565 5392 C:\Windows\System32\drivers\mssmbios.sys - ok
10:08:34.0568 5392 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] C:\Windows\System32\drivers\csc.sys
10:08:34.0568 5392 C:\Windows\System32\drivers\csc.sys - ok
10:08:34.0571 5392 [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys
10:08:34.0571 5392 C:\Windows\System32\drivers\blbdrive.sys - ok
10:08:34.0574 5392 [ F024449C97EC1E464AAFFDA18593DB88 ] C:\Windows\System32\drivers\dfsc.sys
10:08:34.0574 5392 C:\Windows\System32\drivers\dfsc.sys - ok
10:08:34.0577 5392 [ 67B558895695545FB0568B7541F3BCA7 ] C:\Windows\System32\drivers\aswSP.sys
10:08:34.0577 5392 C:\Windows\System32\drivers\aswSP.sys - ok
10:08:34.0580 5392 [ B2FA25D9B17A68BB93D58B0556E8C90D ] C:\Windows\System32\drivers\tunnel.sys
10:08:34.0580 5392 C:\Windows\System32\drivers\tunnel.sys - ok
10:08:34.0583 5392 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] C:\Windows\System32\drivers\intelppm.sys
10:08:34.0583 5392 C:\Windows\System32\drivers\intelppm.sys - ok
10:08:34.0585 5392 [ C30A91ADE8C9CB91E4281EC83C4500C6 ] C:\Windows\System32\ntdll.dll
10:08:34.0585 5392 C:\Windows\System32\ntdll.dll - ok
10:08:34.0588 5392 [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe
10:08:34.0588 5392 C:\Windows\System32\smss.exe - ok
10:08:34.0591 5392 [ F88A52EB62019D6A62FDD9E08034DBD8 ] C:\Windows\System32\autochk.exe
10:08:34.0591 5392 C:\Windows\System32\autochk.exe - ok
10:08:34.0594 5392 [ 9467514EA189475A6E7FDC5D7BDE9D3F ] C:\Windows\System32\drivers\igdkmd32.sys
10:08:34.0594 5392 C:\Windows\System32\drivers\igdkmd32.sys - ok
10:08:34.0597 5392 [ 23F5D28378A160352BA8F817BD8C71CB ] C:\Windows\System32\drivers\dxgkrnl.sys
10:08:34.0597 5392 C:\Windows\System32\drivers\dxgkrnl.sys - ok
10:08:34.0602 5392 [ D458D1C7F1D49869000668E3C3BB0D4D ] C:\Windows\System32\drivers\dxgmms1.sys
10:08:34.0602 5392 C:\Windows\System32\drivers\dxgmms1.sys - ok
10:08:34.0605 5392 [ 9036377B8A6C15DC2EEC53E489D159B5 ] C:\Windows\System32\drivers\hdaudbus.sys
10:08:34.0605 5392 C:\Windows\System32\drivers\hdaudbus.sys - ok
10:08:34.0609 5392 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] C:\Windows\System32\drivers\usbehci.sys
10:08:34.0609 5392 C:\Windows\System32\drivers\usbehci.sys - ok
10:08:34.0612 5392 [ 3AA940AA9AC3055FE32FF2D3D20CCD28 ] C:\Windows\System32\drivers\usbport.sys
10:08:34.0613 5392 C:\Windows\System32\drivers\usbport.sys - ok
10:08:34.0616 5392 [ 68DF884CF41CDADA664BEB01DAF67E3D ] C:\Windows\System32\drivers\usbuhci.sys
10:08:34.0616 5392 C:\Windows\System32\drivers\usbuhci.sys - ok
10:08:34.0619 5392 [ BD8869EB9CDE6BBE4508D869929869EE ] C:\Windows\System32\drivers\b57nd60x.sys
10:08:34.0619 5392 C:\Windows\System32\drivers\b57nd60x.sys - ok
10:08:34.0622 5392 [ B01751CC563AECAC09BBE36AAA21FBEF ] C:\Windows\System32\drivers\athr.sys
10:08:34.0622 5392 C:\Windows\System32\drivers\athr.sys - ok
10:08:34.0625 5392 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] C:\Windows\System32\drivers\vwifibus.sys
10:08:34.0625 5392 C:\Windows\System32\drivers\vwifibus.sys - ok
10:08:34.0628 5392 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] C:\Windows\System32\drivers\1394ohci.sys
10:08:34.0628 5392 C:\Windows\System32\drivers\1394ohci.sys - ok
10:08:34.0631 5392 [ 0328BE1C7F1CBA23848179F8762E391C ] C:\Windows\System32\drivers\sdbus.sys
10:08:34.0631 5392 C:\Windows\System32\drivers\sdbus.sys - ok
10:08:34.0634 5392 [ 243A8C2727C0F85769F697FEA100566C ] C:\Windows\System32\drivers\rimmptsk.sys
10:08:34.0634 5392 C:\Windows\System32\drivers\rimmptsk.sys - ok
10:08:34.0637 5392 [ A1CDCADF19ED45E213C225C15EA93E6B ] C:\Windows\System32\drivers\rimsptsk.sys
10:08:34.0637 5392 C:\Windows\System32\drivers\rimsptsk.sys - ok
10:08:34.0640 5392 [ C72A20C1B40C8C975FC86CA66C8A9882 ] C:\Windows\System32\drivers\rixdptsk.sys
10:08:34.0640 5392 C:\Windows\System32\drivers\rixdptsk.sys - ok
10:08:34.0643 5392 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys
10:08:34.0643 5392 C:\Windows\System32\drivers\i8042prt.sys - ok
10:08:34.0645 5392 [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys
10:08:34.0646 5392 C:\Windows\System32\drivers\kbdclass.sys - ok
10:08:34.0648 5392 [ BFFDB363485501A38F0BCA83AEC810DB ] C:\Windows\System32\drivers\PS2.sys
10:08:34.0648 5392 C:\Windows\System32\drivers\PS2.sys - ok
10:08:34.0651 5392 [ 5787196F32D043572EC6565C0EF1B8E0 ] C:\Windows\System32\drivers\usbd.sys
10:08:34.0651 5392 C:\Windows\System32\drivers\usbd.sys - ok
10:08:34.0654 5392 [ 2185CC5BE9922562108CF87F42E4BBAF ] C:\Windows\System32\drivers\SynTP.sys
10:08:34.0654 5392 C:\Windows\System32\drivers\SynTP.sys - ok
10:08:34.0657 5392 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys
10:08:34.0657 5392 C:\Windows\System32\drivers\mouclass.sys - ok
10:08:34.0660 5392 [ DEA805815E587DAD1DD2C502220B5616 ] C:\Windows\System32\drivers\CmBatt.sys
10:08:34.0660 5392 C:\Windows\System32\drivers\CmBatt.sys - ok
10:08:34.0663 5392 [ 185ADA973B5020655CEE342059A86CBB ] C:\Windows\System32\drivers\GEARAspiWDM.sys
10:08:34.0663 5392 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
10:08:34.0666 5392 [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys
10:08:34.0666 5392 C:\Windows\System32\drivers\agilevpn.sys - ok
10:08:34.0669 5392 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] C:\Windows\System32\drivers\CompositeBus.sys
10:08:34.0669 5392 C:\Windows\System32\drivers\CompositeBus.sys - ok
10:08:34.0671 5392 [ 29DCAEB81DDE6F154AA4D36B18ECBB1F ] C:\Windows\System32\drivers\enecir.sys
10:08:34.0672 5392 C:\Windows\System32\drivers\enecir.sys - ok
10:08:34.0674 5392 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys
10:08:34.0674 5392 C:\Windows\System32\drivers\ndistapi.sys - ok
10:08:34.0677 5392 [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys
10:08:34.0677 5392 C:\Windows\System32\drivers\rasl2tp.sys - ok
10:08:34.0680 5392 [ EDB05BD63148796F23EA78506404A538 ] C:\Windows\System32\drivers\serscan.sys
10:08:34.0680 5392 C:\Windows\System32\drivers\serscan.sys - ok
10:08:34.0683 5392 [ 0217679B8FCA58714C3BF2726D2CA84E ] C:\Windows\System32\drivers\wmiacpi.sys
10:08:34.0683 5392 C:\Windows\System32\drivers\wmiacpi.sys - ok
10:08:34.0686 5392 [ 38FBE267E7E6983311179230FACB1017 ] C:\Windows\System32\drivers\ndiswan.sys
10:08:34.0686 5392 C:\Windows\System32\drivers\ndiswan.sys - ok
10:08:34.0689 5392 [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys
10:08:34.0689 5392 C:\Windows\System32\drivers\raspppoe.sys - ok
10:08:34.0692 5392 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys
10:08:34.0692 5392 C:\Windows\System32\drivers\raspptp.sys - ok
10:08:34.0695 5392 [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys
10:08:34.0695 5392 C:\Windows\System32\drivers\rassstp.sys - ok
10:08:34.0698 5392 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] C:\Windows\System32\drivers\circlass.sys
10:08:34.0698 5392 C:\Windows\System32\drivers\circlass.sys - ok
10:08:34.0700 5392 [ 5DCEF0C32BE0F33277326586FA503689 ] C:\Windows\System32\drivers\ks.sys
10:08:34.0700 5392 C:\Windows\System32\drivers\ks.sys - ok
10:08:34.0703 5392 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys
10:08:34.0703 5392 C:\Windows\System32\drivers\rdpbus.sys - ok
10:08:34.0706 5392 [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys
10:08:34.0706 5392 C:\Windows\System32\drivers\swenum.sys - ok
10:08:34.0709 5392 [ D295BED4B898F0FD999FCFA9B32B071B ] C:\Windows\System32\drivers\umbus.sys
10:08:34.0709 5392 C:\Windows\System32\drivers\umbus.sys - ok
10:08:34.0713 5392 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] C:\Windows\System32\drivers\usbhub.sys
10:08:34.0713 5392 C:\Windows\System32\drivers\usbhub.sys - ok
10:08:34.0715 5392 [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll
10:08:34.0715 5392 C:\Windows\System32\difxapi.dll - ok
10:08:34.0717 5392 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\System32\comdlg32.dll
10:08:34.0718 5392 C:\Windows\System32\comdlg32.dll - ok
10:08:34.0720 5392 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll
10:08:34.0720 5392 C:\Windows\System32\normaliz.dll - ok
10:08:34.0723 5392 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\System32\setupapi.dll
10:08:34.0723 5392 C:\Windows\System32\setupapi.dll - ok
10:08:34.0726 5392 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\System32\shlwapi.dll
10:08:34.0726 5392 C:\Windows\System32\shlwapi.dll - ok
10:08:34.0729 5392 [ 4A8E2F20809CC161107FAA94F6CF2685 ] C:\Windows\System32\imm32.dll
10:08:34.0729 5392 C:\Windows\System32\imm32.dll - ok
10:08:34.0732 5392 [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll
10:08:34.0732 5392 C:\Windows\System32\clbcatq.dll - ok
10:08:34.0735 5392 [ 6400774E903729ADD0A62A24A334EE56 ] C:\Windows\System32\rpcrt4.dll
10:08:34.0735 5392 C:\Windows\System32\rpcrt4.dll - ok
10:08:34.0738 5392 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] C:\Windows\System32\drivers\ndproxy.sys
10:08:34.0738 5392 C:\Windows\System32\drivers\ndproxy.sys - ok
10:08:34.0741 5392 [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys
10:08:34.0741 5392 C:\Windows\System32\drivers\drmk.sys - ok
10:08:34.0744 5392 [ A5EF29D5315111C80A5C1ABAD14C8972 ] C:\Windows\System32\drivers\HdAudio.sys
10:08:34.0744 5392 C:\Windows\System32\drivers\HdAudio.sys - ok
10:08:34.0747 5392 [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys
10:08:34.0747 5392 C:\Windows\System32\drivers\portcls.sys - ok
10:08:34.0750 5392 [ E00FDFAFF025E94F9821153750C35A6D ] C:\Windows\System32\drivers\VSTAZL3.SYS
10:08:34.0750 5392 C:\Windows\System32\drivers\VSTAZL3.SYS - ok
10:08:34.0752 5392 [ CEB4E3B6890E1E42DCA6694D9E59E1A0 ] C:\Windows\System32\drivers\VSTDPV3.SYS
10:08:34.0752 5392 C:\Windows\System32\drivers\VSTDPV3.SYS - ok
10:08:34.0755 5392 [ BC0C7EA89194C299F051C24119000E17 ] C:\Windows\System32\drivers\VSTCNXT3.SYS
10:08:34.0755 5392 C:\Windows\System32\drivers\VSTCNXT3.SYS - ok
10:08:34.0758 5392 [ F001861E5700EE84E2D4E52C712F4964 ] C:\Windows\System32\drivers\modem.sys
10:08:34.0758 5392 C:\Windows\System32\drivers\modem.sys - ok
10:08:34.0761 5392 [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 ] C:\Windows\System32\user32.dll
10:08:34.0761 5392 C:\Windows\System32\user32.dll - ok
10:08:34.0764 5392 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\System32\ole32.dll
10:08:34.0764 5392 C:\Windows\System32\ole32.dll - ok
10:08:34.0766 5392 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\System32\oleaut32.dll
10:08:34.0766 5392 C:\Windows\System32\oleaut32.dll - ok
10:08:34.0769 5392 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll
10:08:34.0769 5392 C:\Windows\System32\msctf.dll - ok
10:08:34.0771 5392 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll
10:08:34.0771 5392 C:\Windows\System32\sechost.dll - ok
10:08:34.0774 5392 [ 6F93A0F455963DC8A9A16BB682C8D589 ] C:\Windows\System32\kernel32.dll
10:08:34.0774 5392 C:\Windows\System32\kernel32.dll - ok
10:08:34.0777 5392 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\System32\advapi32.dll
10:08:34.0777 5392 C:\Windows\System32\advapi32.dll - ok
10:08:34.0780 5392 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\System32\ws2_32.dll
10:08:34.0780 5392 C:\Windows\System32\ws2_32.dll - ok
10:08:34.0782 5392 [ 9CB0D2A9A77D91D9614355EE9FF00519 ] C:\Windows\System32\wininet.dll
10:08:34.0782 5392 C:\Windows\System32\wininet.dll - ok
10:08:34.0785 5392 [ 6C26122F1931D4D7810240F32DDCE890 ] C:\Windows\System32\drivers\hidparse.sys
10:08:34.0785 5392 C:\Windows\System32\drivers\hidparse.sys - ok
10:08:34.0788 5392 [ 931A1DF1520ABC6E84BA4A75E6957025 ] C:\Windows\System32\drivers\hidclass.sys
10:08:34.0788 5392 C:\Windows\System32\drivers\hidclass.sys - ok
10:08:34.0791 5392 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] C:\Windows\System32\drivers\hidir.sys
10:08:34.0791 5392 C:\Windows\System32\drivers\hidir.sys - ok
10:08:34.0794 5392 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll
10:08:34.0794 5392 C:\Windows\System32\nsi.dll - ok
10:08:34.0796 5392 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\System32\shell32.dll
10:08:34.0796 5392 C:\Windows\System32\shell32.dll - ok
10:08:34.0799 5392 [ 9E3CED91863E6EE98C24794D05E27A71 ] C:\Windows\System32\drivers\kbdhid.sys
10:08:34.0799 5392 C:\Windows\System32\drivers\kbdhid.sys - ok
10:08:34.0802 5392 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] C:\Windows\System32\drivers\mouhid.sys
10:08:34.0802 5392 C:\Windows\System32\drivers\mouhid.sys - ok
10:08:34.0805 5392 [ FC4EE980C3BD87D35816EC55007E00B5 ] C:\Windows\System32\urlmon.dll
10:08:34.0805 5392 C:\Windows\System32\urlmon.dll - ok
10:08:34.0808 5392 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\System32\Wldap32.dll
10:08:34.0808 5392 C:\Windows\System32\Wldap32.dll - ok
10:08:34.0810 5392 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\System32\msvcrt.dll
10:08:34.0810 5392 C:\Windows\System32\msvcrt.dll - ok
10:08:34.0813 5392 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\System32\usp10.dll
10:08:34.0813 5392 C:\Windows\System32\usp10.dll - ok
10:08:34.0816 5392 [ E87F5393F7D8CE2FACC4DFF703531392 ] C:\Windows\System32\gdi32.dll
10:08:34.0816 5392 C:\Windows\System32\gdi32.dll - ok
10:08:34.0819 5392 [ 3178C47DB9F1615E5334029607BD3459 ] C:\Windows\System32\iertutil.dll
10:08:34.0819 5392 C:\Windows\System32\iertutil.dll - ok
10:08:34.0821 5392 [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll
10:08:34.0821 5392 C:\Windows\System32\lpk.dll - ok
10:08:34.0824 5392 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll
10:08:34.0824 5392 C:\Windows\System32\psapi.dll - ok
10:08:34.0827 5392 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\System32\imagehlp.dll
10:08:34.0827 5392 C:\Windows\System32\imagehlp.dll - ok
10:08:34.0830 5392 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\System32\comctl32.dll
10:08:34.0830 5392 C:\Windows\System32\comctl32.dll - ok
10:08:34.0832 5392 [ 3FFAEA12666E565FF51BF2FCA674F543 ] C:\Windows\System32\cfgmgr32.dll
10:08:34.0832 5392 C:\Windows\System32\cfgmgr32.dll - ok
10:08:34.0835 5392 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\System32\crypt32.dll
10:08:34.0835 5392 C:\Windows\System32\crypt32.dll - ok
10:08:34.0839 5392 [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll
10:08:34.0839 5392 C:\Windows\System32\devobj.dll - ok
10:08:34.0841 5392 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\System32\wintrust.dll
10:08:34.0841 5392 C:\Windows\System32\wintrust.dll - ok
10:08:34.0844 5392 [ CE90695129BD27591C47F7A4AB526789 ] C:\Windows\System32\KernelBase.dll
10:08:34.0844 5392 C:\Windows\System32\KernelBase.dll - ok
10:08:34.0847 5392 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\System32\msasn1.dll
10:08:34.0847 5392 C:\Windows\System32\msasn1.dll - ok
10:08:34.0850 5392 [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys
10:08:34.0850 5392 C:\Windows\System32\drivers\dxapi.sys - ok
10:08:34.0853 5392 [ 97A30C905E6080E72E23425D72A15957 ] C:\Windows\System32\win32k.sys
10:08:34.0853 5392 C:\Windows\System32\win32k.sys - ok
10:08:34.0855 5392 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\System32\basesrv.dll
10:08:34.0855 5392 C:\Windows\System32\basesrv.dll - ok
10:08:34.0858 5392 [ 6C062EA09313872D2235027EF7A4554E ] C:\Windows\System32\csrsrv.dll
10:08:34.0858 5392 C:\Windows\System32\csrsrv.dll - ok
10:08:34.0861 5392 [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe
10:08:34.0861 5392 C:\Windows\System32\csrss.exe - ok
10:08:34.0864 5392 [ 48CB4FDBCAAEAC7BCE2F5941545FF071 ] C:\Windows\System32\winsrv.dll
10:08:34.0864 5392 C:\Windows\System32\winsrv.dll - ok
10:08:34.0866 5392 [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys
10:08:34.0866 5392 C:\Windows\System32\drivers\monitor.sys - ok
10:08:34.0869 5392 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll
10:08:34.0869 5392 C:\Windows\System32\sxssrv.dll - ok
10:08:34.0872 5392 [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll
10:08:34.0872 5392 C:\Windows\System32\tsddd.dll - ok
10:08:34.0875 5392 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll
10:08:34.0875 5392 C:\Windows\System32\profapi.dll - ok
10:08:34.0878 5392 [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe
10:08:34.0878 5392 C:\Windows\System32\wininit.exe - ok
10:08:34.0880 5392 [ CAEF9CD6C10B1017E2C298D849CD31DB ] C:\Windows\System32\cdd.dll
10:08:34.0880 5392 C:\Windows\System32\cdd.dll - ok
10:08:34.0883 5392 [ AB0DDD50695906570E81F21D3481D4A9 ] C:\Windows\System32\KBDUK.DLL
10:08:34.0883 5392 C:\Windows\System32\KBDUK.DLL - ok
10:08:34.0886 5392 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\System32\RpcRtRemote.dll
10:08:34.0886 5392 C:\Windows\System32\RpcRtRemote.dll - ok
10:08:34.0889 5392 [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll
10:08:34.0889 5392 C:\Windows\System32\WlS0WndH.dll - ok
10:08:34.0891 5392 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll
10:08:34.0891 5392 C:\Windows\System32\cryptbase.dll - ok
10:08:34.0894 5392 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\System32\sxs.dll
10:08:34.0894 5392 C:\Windows\System32\sxs.dll - ok
10:08:34.0897 5392 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\System32\apphelp.dll
10:08:34.0897 5392 C:\Windows\System32\apphelp.dll - ok
10:08:34.0900 5392 [ 8AEA9A37C1A3565A204D37C5E72AB791 ] C:\Windows\System32\lsm.exe
10:08:34.0900 5392 C:\Windows\System32\lsm.exe - ok
10:08:34.0903 5392 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe
10:08:34.0903 5392 C:\Windows\System32\services.exe - ok
10:08:34.0905 5392 [ C95CA687D32DDAB1C91E1122E80D5E16 ] C:\Windows\System32\lsasrv.dll
10:08:34.0905 5392 C:\Windows\System32\lsasrv.dll - ok
10:08:34.0908 5392 [ 81951F51E318AECC2D68559E47485CC4 ] C:\Windows\System32\lsass.exe
10:08:34.0908 5392 C:\Windows\System32\lsass.exe - ok
10:08:34.0911 5392 [ 250AA41DE690561AF1282D598914564C ] C:\Windows\System32\scesrv.dll
10:08:34.0911 5392 C:\Windows\System32\scesrv.dll - ok
10:08:34.0913 5392 [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll
10:08:34.0913 5392 C:\Windows\System32\scext.dll - ok
10:08:34.0916 5392 [ 69678722290C78D5D7198C60B5A4E3E8 ] C:\Windows\System32\secur32.dll
10:08:34.0916 5392 C:\Windows\System32\secur32.dll - ok
10:08:34.0919 5392 [ 4A054C853031616D161A84BECF281F47 ] C:\Windows\System32\sspicli.dll
10:08:34.0919 5392 C:\Windows\System32\sspicli.dll - ok
10:08:34.0922 5392 [ E361AE3010EA4B3123DAB5BDAE21798F ] C:\Windows\System32\sspisrv.dll
10:08:34.0922 5392 C:\Windows\System32\sspisrv.dll - ok
10:08:34.0925 5392 [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll
10:08:34.0925 5392 C:\Windows\System32\sysntfy.dll - ok
10:08:34.0927 5392 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll
10:08:34.0927 5392 C:\Windows\System32\wmsgapi.dll - ok
10:08:34.0930 5392 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\System32\srvcli.dll
10:08:34.0930 5392 C:\Windows\System32\srvcli.dll - ok
10:08:34.0933 5392 [ FD1D6C73E6333BE727CBCC6054247654 ] C:\Windows\System32\drivers\TsUsbFlt.sys
10:08:34.0933 5392 C:\Windows\System32\drivers\TsUsbFlt.sys - ok
10:08:34.0937 5392 [ 245F4691314F42D4D1BC06442F0B2086 ] C:\Windows\System32\samsrv.dll
10:08:34.0937 5392 C:\Windows\System32\samsrv.dll - ok
10:08:34.0939 5392 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll
10:08:34.0939 5392 C:\Windows\System32\cryptdll.dll - ok
10:08:34.0941 5392 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll
10:08:34.0941 5392 C:\Windows\System32\wevtapi.dll - ok
10:08:34.0944 5392 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll
10:08:34.0944 5392 C:\Windows\System32\authz.dll - ok
10:08:34.0947 5392 [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll
10:08:34.0947 5392 C:\Windows\System32\bcrypt.dll - ok
10:08:34.0951 5392 [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll
10:08:34.0951 5392 C:\Windows\System32\cngaudit.dll - ok
10:08:34.0952 5392 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\System32\ncrypt.dll
10:08:34.0952 5392 C:\Windows\System32\ncrypt.dll - ok
10:08:34.0955 5392 [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll
10:08:34.0955 5392 C:\Windows\System32\msprivs.dll - ok
10:08:34.0958 5392 [ E343CABBD8D600ABAF3F11625D33B3D0 ] C:\Windows\System32\netjoin.dll
10:08:34.0958 5392 C:\Windows\System32\netjoin.dll - ok
10:08:34.0961 5392 [ BDA0B954A30498B5A7EDC6204CBA07ED ] C:\Windows\System32\kerberos.dll
10:08:34.0961 5392 C:\Windows\System32\kerberos.dll - ok
10:08:34.0964 5392 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll
10:08:34.0964 5392 C:\Windows\System32\negoexts.dll - ok
10:08:34.0967 5392 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll
10:08:34.0967 5392 C:\Windows\System32\cryptsp.dll - ok
10:08:34.0970 5392 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\System32\mswsock.dll
10:08:34.0970 5392 C:\Windows\System32\mswsock.dll - ok
10:08:34.0973 5392 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\System32\msv1_0.dll
10:08:34.0973 5392 C:\Windows\System32\msv1_0.dll - ok
10:08:34.0975 5392 [ C1809B9907ADEDAF16F50C894100883B ] C:\Windows\System32\netlogon.dll
10:08:34.0975 5392 C:\Windows\System32\netlogon.dll - ok
10:08:34.0978 5392 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll
10:08:34.0978 5392 C:\Windows\System32\wship6.dll - ok
10:08:34.0981 5392 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\System32\dnsapi.dll
10:08:34.0981 5392 C:\Windows\System32\dnsapi.dll - ok
10:08:34.0984 5392 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\System32\logoncli.dll
10:08:34.0984 5392 C:\Windows\System32\logoncli.dll - ok
10:08:34.0986 5392 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\System32\schannel.dll
10:08:34.0986 5392 C:\Windows\System32\schannel.dll - ok
10:08:34.0989 5392 [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll
10:08:34.0989 5392 C:\Windows\System32\wdigest.dll - ok
10:08:34.0992 5392 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll
10:08:34.0992 5392 C:\Windows\System32\bcryptprimitives.dll - ok
10:08:34.0995 5392 [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll
10:08:34.0995 5392 C:\Windows\System32\pku2u.dll - ok
10:08:34.0998 5392 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll
10:08:34.0998 5392 C:\Windows\System32\rsaenh.dll - ok
10:08:35.0001 5392 [ D29E45078CF4020CE0AAC82EC652D1EA ] C:\Windows\System32\TSpkg.dll
10:08:35.0001 5392 C:\Windows\System32\TSpkg.dll - ok
10:08:35.0003 5392 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\System32\credssp.dll
10:08:35.0003 5392 C:\Windows\System32\credssp.dll - ok
10:08:35.0006 5392 [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll
10:08:35.0006 5392 C:\Windows\System32\efslsaext.dll - ok
10:08:35.0010 5392 [ 8124944EC89D6A1815E4E53F5B96AAF4 ] C:\Windows\System32\scecli.dll
10:08:35.0010 5392 C:\Windows\System32\scecli.dll - ok
10:08:35.0012 5392 [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll
10:08:35.0012 5392 C:\Windows\System32\ubpm.dll - ok
10:08:35.0014 5392 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\System32\winsta.dll
10:08:35.0014 5392 C:\Windows\System32\winsta.dll - ok
10:08:35.0017 5392 [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll
10:08:35.0017 5392 C:\Windows\System32\devrtl.dll - ok
10:08:35.0020 5392 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll
10:08:35.0020 5392 C:\Windows\System32\SPInf.dll - ok
10:08:35.0022 5392 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe
10:08:35.0022 5392 C:\Windows\System32\svchost.exe - ok
10:08:35.0025 5392 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] C:\Windows\System32\umpnpmgr.dll
10:08:35.0025 5392 C:\Windows\System32\umpnpmgr.dll - ok
10:08:35.0028 5392 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll
10:08:35.0028 5392 C:\Windows\System32\gpapi.dll - ok
10:08:35.0030 5392 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll
10:08:35.0030 5392 C:\Windows\System32\pcwum.dll - ok
10:08:35.0033 5392 [ F87D30E72E03D579A5199CCB3831D6EA ] C:\Windows\System32\umpo.dll
10:08:35.0033 5392 C:\Windows\System32\umpo.dll - ok
10:08:35.0036 5392 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\System32\userenv.dll
10:08:35.0036 5392 C:\Windows\System32\userenv.dll - ok
10:08:35.0039 5392 [ 6D13E1406F50C66E2A95D97F22C47560 ] C:\Windows\System32\winlogon.exe
10:08:35.0039 5392 C:\Windows\System32\winlogon.exe - ok
10:08:35.0041 5392 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll
10:08:35.0041 5392 C:\Windows\System32\powrprof.dll - ok
10:08:35.0044 5392 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys
10:08:35.0044 5392 C:\Windows\System32\drivers\luafv.sys - ok
10:08:35.0047 5392 [ DE6ED95AEF259979B2830450072A627B ] C:\Windows\System32\drivers\aswFsBlk.sys
10:08:35.0047 5392 C:\Windows\System32\drivers\aswFsBlk.sys - ok
10:08:35.0050 5392 [ 62F9DCEC95F91B8E0203E85D344A7E65 ] C:\Windows\System32\drivers\aswMonFlt.sys
10:08:35.0050 5392 C:\Windows\System32\drivers\aswMonFlt.sys - ok
10:08:35.0053 5392 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] C:\Windows\System32\drivers\WUDFPf.sys
10:08:35.0053 5392 C:\Windows\System32\drivers\WUDFPf.sys - ok
10:08:35.0056 5392 [ 7660F01D3B38ACA1747E397D21D790AF ] C:\Windows\System32\rpcss.dll
10:08:35.0056 5392 C:\Windows\System32\rpcss.dll - ok
10:08:35.0058 5392 [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll
10:08:35.0058 5392 C:\Windows\System32\RpcEpMap.dll - ok
10:08:35.0061 5392 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL
10:08:35.0061 5392 C:\Windows\System32\WSHTCPIP.DLL - ok
10:08:35.0064 5392 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll
10:08:35.0064 5392 C:\Windows\System32\wshqos.dll - ok
10:08:35.0067 5392 [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll
10:08:35.0067 5392 C:\Windows\System32\FirewallAPI.dll - ok
10:08:35.0070 5392 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll
10:08:35.0070 5392 C:\Windows\System32\version.dll - ok
10:08:35.0073 5392 [ 3EF0D8AB08385AAB5802E773511A2E6A ] C:\Windows\System32\LogonUI.exe
10:08:35.0073 5392 C:\Windows\System32\LogonUI.exe - ok
10:08:35.0075 5392 [ 241E015DD809CFB23242F890B1FC575B ] C:\Windows\System32\wevtsvc.dll
10:08:35.0075 5392 C:\Windows\System32\wevtsvc.dll - ok
10:08:35.0079 5392 [ CDD35C1CE1EBFE80C055691CDC8DF443 ] C:\Windows\System32\authui.dll
10:08:35.0079 5392 C:\Windows\System32\authui.dll - ok
10:08:35.0081 5392 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\System32\cryptui.dll
10:08:35.0081 5392 C:\Windows\System32\cryptui.dll - ok
10:08:35.0085 5392 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
10:08:35.0085 5392 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
10:08:35.0087 5392 [ F14A9B1778376D0B1788E402AC1F831A ] C:\Windows\System32\shacct.dll
10:08:35.0088 5392 C:\Windows\System32\shacct.dll - ok
10:08:35.0090 5392 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll
10:08:35.0090 5392 C:\Windows\System32\samlib.dll - ok
10:08:35.0093 5392 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\System32\propsys.dll
10:08:35.0093 5392 C:\Windows\System32\propsys.dll - ok
10:08:35.0096 5392 [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll
10:08:35.0096 5392 C:\Windows\System32\uxtheme.dll - ok
10:08:35.0099 5392 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
10:08:35.0099 5392 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
10:08:35.0102 5392 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll
10:08:35.0102 5392 C:\Windows\System32\dui70.dll - ok
10:08:35.0105 5392 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll
10:08:35.0105 5392 C:\Windows\System32\duser.dll - ok
10:08:35.0108 5392 [ 2CFA4569350B7F84F815E9EC34E85766 ] C:\Windows\System32\SndVolSSO.dll
10:08:35.0108 5392 C:\Windows\System32\SndVolSSO.dll - ok
10:08:35.0110 5392 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll
10:08:35.0110 5392 C:\Windows\System32\hid.dll - ok
10:08:35.0113 5392 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\System32\MMDevAPI.dll
10:08:35.0113 5392 C:\Windows\System32\MMDevAPI.dll - ok
10:08:35.0116 5392 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll
10:08:35.0116 5392 C:\Windows\System32\ntmarta.dll - ok
10:08:35.0119 5392 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] C:\Windows\System32\audiosrv.dll
10:08:35.0119 5392 C:\Windows\System32\audiosrv.dll - ok
10:08:35.0122 5392 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll
10:08:35.0122 5392 C:\Windows\System32\avrt.dll - ok
10:08:35.0124 5392 [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll
10:08:35.0124 5392 C:\Windows\System32\mmcss.dll - ok
10:08:35.0127 5392 [ F68194F74350D4A2ADE98961E33F884C ] C:\Windows\System32\audiodg.exe
10:08:35.0127 5392 C:\Windows\System32\audiodg.exe - ok
10:08:35.0130 5392 [ 15F93B37F6801943360D9EB42485D5D3 ] C:\Windows\System32\cscsvc.dll
10:08:35.0130 5392 C:\Windows\System32\cscsvc.dll - ok
10:08:35.0133 5392 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll
10:08:35.0133 5392 C:\Windows\System32\dwmapi.dll - ok
10:08:35.0135 5392 [ E897EAF5ED6BA41E081060C9B447A673 ] C:\Windows\System32\gpsvc.dll
10:08:35.0135 5392 C:\Windows\System32\gpsvc.dll - ok
10:08:35.0139 5392 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll
10:08:35.0139 5392 C:\Windows\System32\netprofm.dll - ok
10:08:35.0141 5392 [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll
10:08:35.0141 5392 C:\Windows\System32\PeerDist.dll - ok
10:08:35.0144 5392 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\System32\taskschd.dll
10:08:35.0144 5392 C:\Windows\System32\taskschd.dll - ok
10:08:35.0147 5392 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\System32\mstask.dll
10:08:35.0147 5392 C:\Windows\System32\mstask.dll - ok
10:08:35.0149 5392 [ 50E0DD0A5B8D8BC353578F2F73926697 ] C:\Windows\System32\nlaapi.dll
10:08:35.0149 5392 C:\Windows\System32\nlaapi.dll - ok
10:08:35.0152 5392 [ CADEFAC453040E370A1BDFF3973BE00D ] C:\Windows\System32\profsvc.dll
10:08:35.0152 5392 C:\Windows\System32\profsvc.dll - ok
10:08:35.0155 5392 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll
10:08:35.0155 5392 C:\Windows\System32\atl.dll - ok
10:08:35.0159 5392 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll
10:08:35.0159 5392 C:\Windows\System32\themeservice.dll - ok
10:08:35.0160 5392 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll
10:08:35.0161 5392 C:\Windows\System32\dsrole.dll - ok
10:08:35.0163 5392 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll
10:08:35.0163 5392 C:\Windows\System32\slc.dll - ok
10:08:35.0166 5392 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll
10:08:35.0166 5392 C:\Windows\System32\es.dll - ok
10:08:35.0168 5392 [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll
10:08:35.0169 5392 C:\Windows\System32\Sens.dll - ok
10:08:35.0172 5392 [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
10:08:35.0172 5392 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
10:08:35.0175 5392 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\System32\xmllite.dll
10:08:35.0175 5392 C:\Windows\System32\xmllite.dll - ok
10:08:35.0178 5392 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\System32\wtsapi32.dll
10:08:35.0178 5392 C:\Windows\System32\wtsapi32.dll - ok
10:08:35.0180 5392 [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll
10:08:35.0180 5392 C:\Windows\System32\uxsms.dll - ok
10:08:35.0183 5392 [ D5CF1536137026ACDED95BF6CBF849F6 ] C:\Windows\System32\WUDFPlatform.dll
10:08:35.0183 5392 C:\Windows\System32\WUDFPlatform.dll - ok
10:08:35.0187 5392 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] C:\Windows\System32\WUDFSvc.dll
10:08:35.0187 5392 C:\Windows\System32\WUDFSvc.dll - ok
10:08:35.0189 5392 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys
10:08:35.0189 5392 C:\Windows\System32\drivers\lltdio.sys - ok
10:08:35.0192 5392 [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll
10:08:35.0192 5392 C:\Windows\System32\adtschema.dll - ok
10:08:35.0195 5392 [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll
10:08:35.0195 5392 C:\Windows\System32\comres.dll - ok
10:08:35.0198 5392 [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys
10:08:35.0198 5392 C:\Windows\System32\drivers\nwifi.sys - ok
10:08:35.0201 5392 [ D8A65DAFB3EB41CBB622745676FCD072 ] C:\Windows\System32\drivers\ndisuio.sys
10:08:35.0201 5392 C:\Windows\System32\drivers\ndisuio.sys - ok
10:08:35.0204 5392 [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys
10:08:35.0204 5392 C:\Windows\System32\drivers\rspndr.sys - ok
10:08:35.0206 5392 [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll
10:08:35.0206 5392 C:\Windows\System32\lmhsvc.dll - ok
10:08:35.0209 5392 [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll
10:08:35.0209 5392 C:\Windows\System32\nsisvc.dll - ok
10:08:35.0212 5392 [ 8600142FA91C1B96367D3300AD0F3F3A ] C:\Windows\System32\eapsvc.dll
10:08:35.0212 5392 C:\Windows\System32\eapsvc.dll - ok
10:08:35.0215 5392 [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\System32\keyiso.dll
10:08:35.0215 5392 C:\Windows\System32\keyiso.dll - ok
10:08:35.0218 5392 [ 33EF4861F19A0736B11314AAD9AE28D0 ] C:\Windows\System32\dnsrslvr.dll
10:08:35.0218 5392 C:\Windows\System32\dnsrslvr.dll - ok
10:08:35.0220 5392 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll
10:08:35.0220 5392 C:\Windows\System32\winnsi.dll - ok
10:08:35.0223 5392 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\System32\winmm.dll
10:08:35.0223 5392 C:\Windows\System32\winmm.dll - ok
10:08:35.0226 5392 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll
10:08:35.0226 5392 C:\Windows\System32\ksuser.dll - ok
10:08:35.0229 5392 [ D205C24A9D069049FE2DF2A1B38726A7 ] C:\Windows\System32\wdmaud.drv
10:08:35.0229 5392 C:\Windows\System32\wdmaud.drv - ok
10:08:35.0232 5392 [ 9A892B3439884C62B04718F0303A49E9 ] C:\Windows\System32\eapphost.dll
10:08:35.0232 5392 C:\Windows\System32\eapphost.dll - ok
10:08:35.0235 5392 [ D33E95C0A2754061233B58DC41F8094C ] C:\Windows\System32\umb.dll
10:08:35.0235 5392 C:\Windows\System32\umb.dll - ok
10:08:35.0238 5392 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\System32\IPHLPAPI.DLL
10:08:35.0238 5392 C:\Windows\System32\IPHLPAPI.DLL - ok
10:08:35.0240 5392 [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll
10:08:35.0240 5392 C:\Windows\System32\wlansvc.dll - ok
10:08:35.0243 5392 [ 3C9035085141162416A0DD34DBF3F3C1 ] C:\Windows\System32\wlanmsm.dll
10:08:35.0243 5392 C:\Windows\System32\wlanmsm.dll - ok
10:08:35.0246 5392 [ 20C06A50DFC097E134BC6FA8444CA9BC ] C:\Windows\System32\wlansec.dll
10:08:35.0246 5392 C:\Windows\System32\wlansec.dll - ok
10:08:35.0249 5392 [ F748F53FE09D21D8ECBB6421E6792024 ] C:\Windows\System32\onex.dll
10:08:35.0249 5392 C:\Windows\System32\onex.dll - ok
10:08:35.0252 5392 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll
10:08:35.0252 5392 C:\Windows\System32\eappprxy.dll - ok
10:08:35.0255 5392 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll
10:08:35.0255 5392 C:\Windows\System32\dhcpcsvc.dll - ok
10:08:35.0257 5392 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll
10:08:35.0257 5392 C:\Windows\System32\eappcfg.dll - ok
10:08:35.0260 5392 [ C1585EAA67C37A05BF6F93726FAFC069 ] C:\Windows\System32\l2gpstore.dll
10:08:35.0260 5392 C:\Windows\System32\l2gpstore.dll - ok
10:08:35.0263 5392 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll
10:08:35.0263 5392 C:\Windows\System32\wlanutil.dll - ok
10:08:35.0266 5392 [ 749F9795F01C35EEBE100A87D82B9681 ] C:\Windows\System32\wlgpclnt.dll
10:08:35.0266 5392 C:\Windows\System32\wlgpclnt.dll - ok
10:08:35.0269 5392 [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\System32\WinSCard.dll
10:08:35.0269 5392 C:\Windows\System32\WinSCard.dll - ok
10:08:35.0271 5392 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\System32\msxml6.dll
10:08:35.0271 5392 C:\Windows\System32\msxml6.dll - ok
10:08:35.0274 5392 [ E9E01EB683C132F7FA27CD607B8A2B63 ] C:\Windows\System32\dhcpcore.dll
10:08:35.0274 5392 C:\Windows\System32\dhcpcore.dll - ok
10:08:35.0277 5392 [ D2A937964199F647B1C3BC435712E5D9 ] C:\Windows\System32\nrpsrv.dll
10:08:35.0277 5392 C:\Windows\System32\nrpsrv.dll - ok
10:08:35.0280 5392 [ EF71BA5DF59034962B0C62314A71351A ] C:\Windows\System32\dhcpcore6.dll
10:08:35.0280 5392 C:\Windows\System32\dhcpcore6.dll - ok
10:08:35.0283 5392 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\System32\WindowsCodecs.dll
10:08:35.0283 5392 C:\Windows\System32\WindowsCodecs.dll - ok
10:08:35.0285 5392 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll
10:08:35.0285 5392 C:\Windows\System32\winbrand.dll - ok
10:08:35.0288 5392 [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll
10:08:35.0288 5392 C:\Windows\System32\VaultCredProvider.dll - ok
10:08:35.0291 5392 [ 05BF975CA428E04B462FB90841B37C95 ] C:\Windows\System32\SmartcardCredentialProvider.dll
10:08:35.0291 5392 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
10:08:35.0294 5392 [ 6944501ED659F2C835F8DD16182C9330 ] C:\Windows\System32\rastls.dll
10:08:35.0294 5392 C:\Windows\System32\rastls.dll - ok
10:08:35.0297 5392 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\System32\FWPUCLNT.DLL
10:08:35.0297 5392 C:\Windows\System32\FWPUCLNT.DLL - ok
10:08:35.0299 5392 [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll
10:08:35.0300 5392 C:\Windows\System32\dnsext.dll - ok
10:08:35.0302 5392 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\System32\dhcpcsvc6.dll
10:08:35.0302 5392 C:\Windows\System32\dhcpcsvc6.dll - ok
10:08:35.0305 5392 [ 9835584E999D25004E1EE8E5F3E3B881 ] C:\Windows\System32\MPSSVC.dll
10:08:35.0305 5392 C:\Windows\System32\MPSSVC.dll - ok
10:08:35.0308 5392 [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys
10:08:35.0308 5392 C:\Windows\System32\drivers\fltMgr.sys - ok
10:08:35.0311 5392 [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL
10:08:35.0311 5392 C:\Windows\System32\PSHED.DLL - ok
10:08:35.0314 5392 [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
10:08:35.0314 5392 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
10:08:35.0317 5392 [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll
10:08:35.0317 5392 C:\Windows\System32\BioCredProv.dll - ok
10:08:35.0320 5392 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\System32\credui.dll
10:08:35.0320 5392 C:\Windows\System32\credui.dll - ok
10:08:35.0323 5392 [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll
10:08:35.0323 5392 C:\Windows\System32\vaultcli.dll - ok
10:08:35.0326 5392 [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll
10:08:35.0326 5392 C:\Windows\System32\winbio.dll - ok
10:08:35.0328 5392 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\System32\netapi32.dll
10:08:35.0328 5392 C:\Windows\System32\netapi32.dll - ok
10:08:35.0331 5392 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\System32\netutils.dll
10:08:35.0331 5392 C:\Windows\System32\netutils.dll - ok
10:08:35.0334 5392 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\System32\samcli.dll
10:08:35.0334 5392 C:\Windows\System32\samcli.dll - ok
10:08:35.0337 5392 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\System32\wkscli.dll
10:08:35.0337 5392 C:\Windows\System32\wkscli.dll - ok
10:08:35.0341 5392 [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
10:08:35.0341 5392 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
10:08:35.0343 5392 [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
10:08:35.0343 5392 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
10:08:35.0346 5392 [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll
10:08:35.0346 5392 C:\Windows\System32\certCredProvider.dll - ok
10:08:35.0349 5392 [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll
10:08:35.0349 5392 C:\Windows\System32\rasplap.dll - ok
10:08:35.0351 5392 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll
10:08:35.0351 5392 C:\Windows\System32\rasapi32.dll - ok
10:08:35.0354 5392 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll
10:08:35.0354 5392 C:\Windows\System32\rasman.dll - ok
10:08:35.0357 5392 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\System32\rtutils.dll
10:08:35.0357 5392 C:\Windows\System32\rtutils.dll - ok
10:08:35.0360 5392 [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll
10:08:35.0360 5392 C:\Windows\System32\UXInit.dll - ok
10:08:35.0362 5392 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\System32\AudioSes.dll
10:08:35.0363 5392 C:\Windows\System32\AudioSes.dll - ok
10:08:35.0365 5392 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll
10:08:35.0365 5392 C:\Windows\System32\midimap.dll - ok
10:08:35.0368 5392 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll
10:08:35.0368 5392 C:\Windows\System32\msacm32.dll - ok
10:08:35.0371 5392 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv
10:08:35.0371 5392 C:\Windows\System32\msacm32.drv - ok
10:08:35.0374 5392 [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll
10:08:35.0374 5392 C:\Windows\System32\AudioEng.dll - ok
10:08:35.0378 5392 [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll
10:08:35.0378 5392 C:\Windows\System32\AUDIOKSE.dll - ok
10:08:35.0380 5392 [ 4E30ED3E551E867ADD1C8D58F5EDD9DF ] C:\Windows\System32\WMALFXGFXDSP.dll
10:08:35.0380 5392 C:\Windows\System32\WMALFXGFXDSP.dll - ok
10:08:35.0382 5392 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll
10:08:35.0382 5392 C:\Windows\System32\mfplat.dll - ok
10:08:35.0385 5392 [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
10:08:35.0385 5392 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
10:08:35.0388 5392 [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
10:08:35.0388 5392 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
10:08:35.0391 5392 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
10:08:35.0391 5392 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
10:08:35.0395 5392 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
10:08:35.0395 5392 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
10:08:35.0398 5392 [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
10:08:35.0398 5392 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
10:08:35.0401 5392 [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
10:08:35.0401 5392 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
10:08:35.0404 5392 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll
10:08:35.0404 5392 C:\Windows\System32\wsock32.dll - ok
10:08:35.0406 5392 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\System32\dbghelp.dll
10:08:35.0406 5392 C:\Windows\System32\dbghelp.dll - ok
10:08:35.0409 5392 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\System32\oleacc.dll
10:08:35.0409 5392 C:\Windows\System32\oleacc.dll - ok
10:08:35.0412 5392 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll
10:08:35.0412 5392 C:\Windows\System32\UIAutomationCore.dll - ok
10:08:35.0415 5392 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll
10:08:35.0415 5392 C:\Windows\System32\imageres.dll - ok
10:08:35.0418 5392 [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
10:08:35.0418 5392 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
10:08:35.0421 5392 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\System32\cscapi.dll
10:08:35.0421 5392 C:\Windows\System32\cscapi.dll - ok
10:08:35.0423 5392 [ CF2ABD2AC91850BC2832078F4EEE95C2 ] C:\Program Files\AVAST Software\Avast\afwCore.dll
10:08:35.0423 5392 C:\Program Files\AVAST Software\Avast\afwCore.dll - ok
10:08:35.0426 5392 [ BC0E07A768A0A14C48E3CE1875F2C377 ] C:\Program Files\AVAST Software\Avast\afwServ.exe
10:08:35.0426 5392 C:\Program Files\AVAST Software\Avast\afwServ.exe - ok
10:08:35.0430 5392 [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
10:08:35.0430 5392 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
10:08:35.0433 5392 [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
10:08:35.0433 5392 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
10:08:35.0436 5392 [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
10:08:35.0436 5392 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
10:08:35.0439 5392 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
10:08:35.0439 5392 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
10:08:35.0442 5392 [ 207CF171B1C6B8AE50C1FBF87363EEBC ] C:\Windows\System32\raschap.dll
10:08:35.0442 5392 C:\Windows\System32\raschap.dll - ok
10:08:35.0445 5392 [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\System32\netcfgx.dll
10:08:35.0445 5392 C:\Windows\System32\netcfgx.dll - ok
10:08:35.0448 5392 [ A3F04CBEA6C2A10E6CB01F8B47611882 ] C:\Windows\System32\drivers\vwifimp.sys
10:08:35.0448 5392 C:\Windows\System32\drivers\vwifimp.sys - ok
10:08:35.0451 5392 [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
10:08:35.0451 5392 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
10:08:35.0454 5392 [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
10:08:35.0454 5392 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
10:08:35.0457 5392 [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
10:08:35.0457 5392 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
10:08:35.0460 5392 [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
10:08:35.0460 5392 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
10:08:35.0464 5392 [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
10:08:35.0464 5392 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
10:08:35.0466 5392 [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
10:08:35.0466 5392 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
10:08:35.0469 5392 [ D7B3DE60620D5ADA3D75428A845A0F67 ] C:\Program Files\AVAST Software\Avast\afwCoreServ.dll
10:08:35.0469 5392 C:\Program Files\AVAST Software\Avast\afwCoreServ.dll - ok
10:08:35.0472 5392 [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
10:08:35.0472 5392 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
10:08:35.0475 5392 [ E959C3E026B7C0D0A3890F99B6274536 ] C:\Program Files\AVAST Software\Avast\afwRpc.dll
10:08:35.0475 5392 C:\Program Files\AVAST Software\Avast\afwRpc.dll - ok
10:08:35.0478 5392 [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
10:08:35.0478 5392 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
10:08:35.0481 5392 [ E491A3812A4AEE8C2A5FBD1265BBF701 ] C:\Program Files\AVAST Software\Avast\afwCoreClient.dll
10:08:35.0481 5392 C:\Program Files\AVAST Software\Avast\afwCoreClient.dll - ok
10:08:35.0484 5392 [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
10:08:35.0484 5392 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
10:08:35.0487 5392 [ 90C081738668AC4118B0F397159C7848 ] C:\Program Files\AVAST Software\Avast\afwGeoIP.dll
10:08:35.0487 5392 C:\Program Files\AVAST Software\Avast\afwGeoIP.dll - ok
10:08:35.0490 5392 [ 414DA952A35BF5D50192E28263B40577 ] C:\Windows\System32\shsvcs.dll
10:08:35.0490 5392 C:\Windows\System32\shsvcs.dll - ok
10:08:35.0492 5392 [ A04BB13F8A72F8B6E8B4071723E4E336 ] C:\Windows\System32\schedsvc.dll
10:08:35.0492 5392 C:\Windows\System32\schedsvc.dll - ok
10:08:35.0495 5392 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll
10:08:35.0495 5392 C:\Windows\System32\ktmw32.dll - ok
10:08:35.0498 5392 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\System32\wscapi.dll
10:08:35.0498 5392 C:\Windows\System32\wscapi.dll - ok
10:08:35.0501 5392 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\System32\wscisvif.dll
10:08:35.0501 5392 C:\Windows\System32\wscisvif.dll - ok
10:08:35.0503 5392 [ E6D90DC604F407B3B5E0FD285E46B2A0 ] C:\Windows\System32\fveapi.dll
10:08:35.0503 5392 C:\Windows\System32\fveapi.dll - ok
10:08:35.0506 5392 [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll
10:08:35.0506 5392 C:\Windows\System32\fvecerts.dll - ok
10:08:35.0509 5392 [ 1C3E8371377E988B683797A132EFFE1B ] C:\Windows\System32\taskcomp.dll
10:08:35.0509 5392 C:\Windows\System32\taskcomp.dll - ok
10:08:35.0512 5392 [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll
10:08:35.0512 5392 C:\Windows\System32\tbs.dll - ok
10:08:35.0515 5392 [ 871917B07A141BFF43D76D8844D48106 ] C:\Windows\System32\drivers\http.sys
10:08:35.0515 5392 C:\Windows\System32\drivers\http.sys - ok
10:08:35.0517 5392 [ 9AEA093B8F9C37CF45538382CABA2475 ] C:\Windows\System32\spoolsv.exe
10:08:35.0517 5392 C:\Windows\System32\spoolsv.exe - ok
10:08:35.0520 5392 [ 07875861B582427B8B97D720DB5EAF39 ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswEngin.dll
10:08:35.0520 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswEngin.dll - ok
10:08:35.0523 5392 [ E2D56AE1D40E3725084054CD8E9CFBB1 ] C:\Windows\System32\wiarpc.dll
10:08:35.0523 5392 C:\Windows\System32\wiarpc.dll - ok
10:08:35.0526 5392 [ A94AF354E4EA9C835DCF3E60EC75911C ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswCmnOS.dll
10:08:35.0526 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswCmnOS.dll - ok
10:08:35.0529 5392 [ F8AC522C1DAEED05BDA7C0E4E394BCD7 ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswCmnIS.dll
10:08:35.0529 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswCmnIS.dll - ok
10:08:35.0532 5392 [ 1E7EAFF858538C516D7358C360605E3A ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswCmnBS.dll
10:08:35.0532 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswCmnBS.dll - ok
10:08:35.0536 5392 [ 2E929D6CF669AEF225552EEA9BE7E150 ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswScan.dll
10:08:35.0536 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswScan.dll - ok
10:08:35.0539 5392 [ 1752EE915B9003E1FD1FFB4DE63E538B ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswRep.dll
10:08:35.0539 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswRep.dll - ok
10:08:35.0542 5392 [ CE7828A0EA430338BBCFFC6914462BAA ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswFiDb.dll
10:08:35.0542 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswFiDb.dll - ok
10:08:35.0545 5392 [ CEBE7C43277E5CC8120A0E99C27CFEC6 ] C:\Program Files\AVAST Software\Avast\defs\12120900\fwAux.dll
10:08:35.0545 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\fwAux.dll - ok
10:08:35.0548 5392 [ 1E2BAC209D184BB851E1A187D8A29136 ] C:\Windows\System32\BFE.DLL
10:08:35.0548 5392 C:\Windows\System32\BFE.DLL - ok
10:08:35.0552 5392 [ 69A9E06690ED84DB4D4E45F373252AEF ] C:\Program Files\AVAST Software\Avast\defs\12120900\algo.dll
10:08:35.0552 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\algo.dll - ok
10:08:35.0554 5392 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] C:\Windows\System32\drivers\bowser.sys
10:08:35.0554 5392 C:\Windows\System32\drivers\bowser.sys - ok
10:08:35.0557 5392 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys
10:08:35.0557 5392 C:\Windows\System32\drivers\mpsdrv.sys - ok
10:08:35.0560 5392 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] C:\Windows\System32\drivers\mrxsmb.sys
10:08:35.0560 5392 C:\Windows\System32\drivers\mrxsmb.sys - ok
10:08:35.0564 5392 [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll
10:08:35.0564 5392 C:\Windows\System32\wfapigp.dll - ok
10:08:35.0566 5392 [ 6D17A4791ACA19328C685D256349FEFC ] C:\Windows\System32\drivers\mrxsmb10.sys
10:08:35.0566 5392 C:\Windows\System32\drivers\mrxsmb10.sys - ok
10:08:35.0569 5392 [ B81F204D146000BE76651A50670A5E9E ] C:\Windows\System32\drivers\mrxsmb20.sys
10:08:35.0569 5392 C:\Windows\System32\drivers\mrxsmb20.sys - ok
10:08:35.0572 5392 [ 58405E4F68BA8E4057C6E914F326ABA2 ] C:\Windows\System32\wkssvc.dll
10:08:35.0572 5392 C:\Windows\System32\wkssvc.dll - ok
10:08:35.0575 5392 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
10:08:35.0575 5392 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
10:08:35.0578 5392 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys
10:08:35.0578 5392 C:\Windows\System32\drivers\parport.sys - ok
10:08:35.0581 5392 [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:08:35.0581 5392 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
10:08:35.0584 5392 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\System32\mscms.dll
10:08:35.0584 5392 C:\Windows\System32\mscms.dll - ok
10:08:35.0588 5392 [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll
10:08:35.0588 5392 C:\Windows\System32\pcasvc.dll - ok
10:08:35.0590 5392 [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe
10:08:35.0590 5392 C:\Windows\System32\snmptrap.exe - ok
10:08:35.0592 5392 [ 96B3C4E20F02CA16AA1E3E425BFFCC8B ] C:\Windows\WindowsMobile\wmdcBase.exe
10:08:35.0592 5392 C:\Windows\WindowsMobile\wmdcBase.exe - ok
10:08:35.0595 5392 [ E223D2851906B84F52E1B75EA16198F9 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
10:08:35.0595 5392 C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
10:08:35.0599 5392 [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll
10:08:35.0599 5392 C:\Windows\System32\PeerDistSh.dll - ok
10:08:35.0602 5392 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] C:\Windows\System32\provsvc.dll
10:08:35.0602 5392 C:\Windows\System32\provsvc.dll - ok
10:08:35.0605 5392 [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll
10:08:35.0605 5392 C:\Windows\System32\sstpsvc.dll - ok
10:08:35.0608 5392 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
10:08:35.0608 5392 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
10:08:35.0611 5392 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
10:08:35.0611 5392 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
10:08:35.0615 5392 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
10:08:35.0615 5392 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
10:08:35.0618 5392 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
10:08:35.0618 5392 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
10:08:35.0622 5392 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
10:08:35.0622 5392 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
10:08:35.0625 5392 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
10:08:35.0625 5392 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
10:08:35.0628 5392 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
10:08:35.0629 5392 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
10:08:35.0632 5392 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
10:08:35.0632 5392 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
10:08:35.0635 5392 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
10:08:35.0635 5392 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
10:08:35.0638 5392 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
10:08:35.0638 5392 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
10:08:35.0642 5392 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
10:08:35.0642 5392 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
10:08:35.0645 5392 [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
10:08:35.0645 5392 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
10:08:35.0648 5392 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
10:08:35.0648 5392 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
10:08:35.0651 5392 [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
10:08:35.0651 5392 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
10:08:35.0654 5392 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\System32\dnssd.dll
10:08:35.0654 5392 C:\Windows\System32\dnssd.dll - ok
10:08:35.0657 5392 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
10:08:35.0657 5392 C:\Program Files\Bonjour\mDNSResponder.exe - ok
10:08:35.0660 5392 [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
10:08:35.0660 5392 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
10:08:35.0663 5392 [ 96C0E38905CFD788313BE8E11DAE3F2F ] C:\Windows\System32\cryptsvc.dll
10:08:35.0663 5392 C:\Windows\System32\cryptsvc.dll - ok
10:08:35.0666 5392 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] C:\Windows\System32\dps.dll
10:08:35.0666 5392 C:\Windows\System32\dps.dll - ok
10:08:35.0669 5392 [ 3F6D9269E7B3A754B1C2F8533DC7F318 ] C:\Windows\System32\efscore.dll
10:08:35.0669 5392 C:\Windows\System32\efscore.dll - ok
10:08:35.0672 5392 [ 00A99DA54C14969A899ED316D16E9A9E ] C:\Windows\System32\efssvc.dll
10:08:35.0672 5392 C:\Windows\System32\efssvc.dll - ok
10:08:35.0675 5392 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\System32\cryptnet.dll
10:08:35.0675 5392 C:\Windows\System32\cryptnet.dll - ok
10:08:35.0678 5392 [ F95622F161474511B8D80D6B093AA610 ] C:\Windows\System32\IKEEXT.DLL
10:08:35.0678 5392 C:\Windows\System32\IKEEXT.DLL - ok
10:08:35.0681 5392 [ A081CB6FB9A12668F233EB5414BE3A0E ] C:\Windows\System32\HPZinw12.dll
10:08:35.0681 5392 C:\Windows\System32\HPZinw12.dll - ok
10:08:35.0683 5392 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll
10:08:35.0683 5392 C:\Windows\System32\netman.dll - ok
10:08:35.0686 5392 [ 359C3AC547AA1D24EED35BE3AB3759DC ] C:\Windows\System32\efsutil.dll
10:08:35.0686 5392 C:\Windows\System32\efsutil.dll - ok
10:08:35.0689 5392 [ 5845B1C54380FB980F68024B3A8B1E66 ] C:\Windows\System32\vpnikeapi.dll
10:08:35.0689 5392 C:\Windows\System32\vpnikeapi.dll - ok
10:08:35.0692 5392 [ 68139940B5AC84AFFB7EB1B713BE66E7 ] C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
10:08:35.0692 5392 C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe - ok
10:08:35.0695 5392 [ 140D9F911182357626165EA0BEB98C4F ] C:\Windows\System32\ncsi.dll
10:08:35.0695 5392 C:\Windows\System32\ncsi.dll - ok
10:08:35.0698 5392 [ 374071043F9E4231EE43BE2BB48DD36D ] C:\Windows\System32\nlasvc.dll
10:08:35.0698 5392 C:\Windows\System32\nlasvc.dll - ok
10:08:35.0700 5392 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\System32\winhttp.dll
10:08:35.0700 5392 C:\Windows\System32\winhttp.dll - ok
10:08:35.0703 5392 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
10:08:35.0704 5392 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
10:08:35.0707 5392 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
10:08:35.0707 5392 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
10:08:35.0710 5392 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
10:08:35.0710 5392 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
10:08:35.0713 5392 [ 4909501F53DA2EB6603848944C45F524 ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
10:08:35.0713 5392 C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
10:08:35.0716 5392 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\System32\winspool.drv
10:08:35.0716 5392 C:\Windows\System32\winspool.drv - ok
10:08:35.0719 5392 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\System32\webio.dll
10:08:35.0719 5392 C:\Windows\System32\webio.dll - ok
10:08:35.0721 5392 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\System32\vssapi.dll
10:08:35.0721 5392 C:\Windows\System32\vssapi.dll - ok
10:08:35.0724 5392 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll
10:08:35.0724 5392 C:\Windows\System32\ssdpapi.dll - ok
10:08:35.0727 5392 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll
10:08:35.0727 5392 C:\Windows\System32\vsstrace.dll - ok
10:08:35.0730 5392 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
10:08:35.0730 5392 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
10:08:35.0733 5392 [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys
10:08:35.0733 5392 C:\Windows\System32\drivers\PEAuth.sys - ok
10:08:35.0736 5392 [ 65BC271F337637731D3C71455AE1F476 ] C:\Windows\System32\HPZipm12.dll
10:08:35.0736 5392 C:\Windows\System32\HPZipm12.dll - ok
10:08:35.0739 5392 [ B60E9769655DDEE8368E3ABB6668E076 ] C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe
10:08:35.0739 5392 C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe - ok
10:08:35.0743 5392 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
10:08:35.0743 5392 C:\Windows\AppPatch\AcGenral.dll - ok
10:08:35.0745 5392 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll
10:08:35.0745 5392 C:\Windows\System32\sfc.dll - ok
10:08:35.0748 5392 [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
10:08:35.0748 5392 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
10:08:35.0750 5392 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\System32\fltLib.dll
10:08:35.0750 5392 C:\Windows\System32\fltLib.dll - ok
10:08:35.0753 5392 [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
10:08:35.0753 5392 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
10:08:35.0757 5392 [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
10:08:35.0757 5392 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
10:08:35.0759 5392 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll
10:08:35.0759 5392 C:\Windows\System32\sfc_os.dll - ok
10:08:35.0762 5392 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll
10:08:35.0762 5392 C:\Windows\System32\mpr.dll - ok
10:08:35.0765 5392 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
10:08:35.0765 5392 C:\Windows\System32\drivers\secdrv.sys - ok
10:08:35.0768 5392 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] C:\Windows\System32\drivers\srvnet.sys
10:08:35.0768 5392 C:\Windows\System32\drivers\srvnet.sys - ok
10:08:35.0770 5392 [ A59B3A4442C52060CC7A85293AA3546F ] C:\Windows\System32\seclogon.dll
10:08:35.0770 5392 C:\Windows\System32\seclogon.dll - ok
10:08:35.0772 5392 [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] C:\Windows\System32\drivers\tcpipreg.sys
10:08:35.0772 5392 C:\Windows\System32\drivers\tcpipreg.sys - ok
10:08:35.0775 5392 [ 8CD1DEE212E52B9C22E66DBA44991D32 ] C:\Windows\System32\httpapi.dll
10:08:35.0775 5392 C:\Windows\System32\httpapi.dll - ok
10:08:35.0778 5392 [ E1FB3706030FB4578A0D72C2FC3689E4 ] C:\Windows\System32\wiaservc.dll
10:08:35.0778 5392 C:\Windows\System32\wiaservc.dll - ok
10:08:35.0781 5392 [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
10:08:35.0781 5392 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
10:08:35.0784 5392 [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
10:08:35.0784 5392 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
10:08:35.0787 5392 [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
10:08:35.0787 5392 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
10:08:35.0790 5392 [ 747E60B773E95F6C93D5621B550D6865 ] C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
10:08:35.0790 5392 C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe - ok
10:08:35.0793 5392 [ 36650D618CA34C9D357DFD3D89B2C56F ] C:\Windows\System32\sysmain.dll
10:08:35.0793 5392 C:\Windows\System32\sysmain.dll - ok
10:08:35.0796 5392 [ 613BF4820361543956909043A265C6AC ] C:\Windows\System32\tapisrv.dll
10:08:35.0796 5392 C:\Windows\System32\tapisrv.dll - ok
10:08:35.0799 5392 [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
10:08:35.0799 5392 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
10:08:35.0804 5392 [ 4187264E696698CE1FB7081EDDF9A6F2 ] C:\Program Files\AVAST Software\Avast\AhResSPM.dll
10:08:35.0804 5392 C:\Program Files\AVAST Software\Avast\AhResSPM.dll - ok
10:08:35.0811 5392 [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
10:08:35.0811 5392 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
10:08:35.0815 5392 [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
10:08:35.0815 5392 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
10:08:35.0819 5392 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll
10:08:35.0819 5392 C:\Windows\System32\trkwks.dll - ok
10:08:35.0821 5392 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] C:\Windows\System32\drivers\srv.sys
10:08:35.0821 5392 C:\Windows\System32\drivers\srv.sys - ok
10:08:35.0824 5392 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] C:\Windows\System32\drivers\srv2.sys
10:08:35.0824 5392 C:\Windows\System32\drivers\srv2.sys - ok
10:08:35.0827 5392 [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll
10:08:35.0827 5392 C:\Windows\System32\wbem\WMIsvc.dll - ok
10:08:35.0830 5392 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll
10:08:35.0830 5392 C:\Windows\System32\wiatrace.dll - ok
10:08:35.0834 5392 [ 967EA5B213E9984CBE270205DF37755B ] C:\Windows\System32\FXSSVC.exe
10:08:35.0834 5392 C:\Windows\System32\FXSSVC.exe - ok
10:08:35.0836 5392 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\System32\wbemcomn.dll
10:08:35.0836 5392 C:\Windows\System32\wbemcomn.dll - ok
10:08:35.0838 5392 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\System32\tapi32.dll
10:08:35.0838 5392 C:\Windows\System32\tapi32.dll - ok
10:08:35.0841 5392 [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll
10:08:35.0841 5392 C:\Windows\System32\wbem\WinMgmtR.dll - ok
10:08:35.0844 5392 [ 701C9EB15E1E23D22F7C7184C0506673 ] C:\Windows\System32\wbem\WmiDcPrv.dll
10:08:35.0844 5392 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
10:08:35.0847 5392 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll
10:08:35.0847 5392 C:\Windows\System32\fundisc.dll - ok
10:08:35.0851 5392 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\System32\wbem\fastprox.dll
10:08:35.0851 5392 C:\Windows\System32\wbem\fastprox.dll - ok
10:08:35.0852 5392 [ AAF7BEB63E2CC499834B608A85A55E4E ] C:\Windows\System32\wsdchngr.dll
10:08:35.0853 5392 C:\Windows\System32\wsdchngr.dll - ok
10:08:35.0855 5392 [ 6468512559971A92A66E2AA08AC8BA61 ] C:\Windows\System32\FXSTIFF.dll
10:08:35.0855 5392 C:\Windows\System32\FXSTIFF.dll - ok
10:08:35.0858 5392 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll
10:08:35.0858 5392 C:\Windows\System32\ntdsapi.dll - ok
10:08:35.0861 5392 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll
10:08:35.0861 5392 C:\Windows\System32\wbem\wbemprox.dll - ok
10:08:35.0864 5392 [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll
10:08:35.0864 5392 C:\Windows\System32\fdPnp.dll - ok
10:08:35.0867 5392 [ 585EB475E7AF55C9065256E8FFB751A1 ] C:\Windows\System32\wbem\wbemcore.dll
10:08:35.0867 5392 C:\Windows\System32\wbem\wbemcore.dll - ok
10:08:35.0869 5392 [ 9A23A527D1095907743FF95E718E69C6 ] C:\Windows\System32\hpowiav1.dll
10:08:35.0869 5392 C:\Windows\System32\hpowiav1.dll - ok
10:08:35.0872 5392 [ 72A7C1EC4D3BF38CB115395AD721AE3C ] C:\Program Files\AVAST Software\Avast\defs\12120900\ArPot.dll
10:08:35.0872 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\ArPot.dll - ok
10:08:35.0875 5392 [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll
10:08:35.0875 5392 C:\Windows\System32\FXSRESM.dll - ok
10:08:35.0879 5392 [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
10:08:35.0879 5392 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
10:08:35.0881 5392 [ 5266F3F37AB7FCEF935AA94593BE5FE4 ] C:\Windows\System32\hpwwiax9.dll
10:08:35.0881 5392 C:\Windows\System32\hpwwiax9.dll - ok
10:08:35.0884 5392 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll
10:08:35.0884 5392 C:\Windows\System32\wbem\esscli.dll - ok
10:08:35.0887 5392 [ CFB3EEDF620E7F32464A3091BA76D5E8 ] C:\Program Files\AVAST Software\Avast\defs\12120900\exts.dll
10:08:35.0887 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\exts.dll - ok
10:08:35.0890 5392 [ 58F67245D041FBE7AF88F4EAF79DF0FA ] C:\Windows\System32\iphlpsvc.dll
10:08:35.0890 5392 C:\Windows\System32\iphlpsvc.dll - ok
10:08:35.0893 5392 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll
10:08:35.0893 5392 C:\Windows\System32\wbem\wbemsvc.dll - ok
10:08:35.0896 5392 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] C:\Windows\System32\wscsvc.dll
10:08:35.0896 5392 C:\Windows\System32\wscsvc.dll - ok
10:08:35.0899 5392 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
10:08:35.0899 5392 C:\Program Files\Bonjour\mdnsNSP.dll - ok
10:08:35.0902 5392 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll
10:08:35.0902 5392 C:\Windows\System32\NapiNSP.dll - ok
10:08:35.0905 5392 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll
10:08:35.0905 5392 C:\Windows\System32\pnrpnsp.dll - ok
10:08:35.0907 5392 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll
10:08:35.0907 5392 C:\Windows\System32\winrnr.dll - ok
10:08:35.0910 5392 [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
10:08:35.0910 5392 C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe - ok
10:08:35.0913 5392 [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\System32\sqmapi.dll
10:08:35.0913 5392 C:\Windows\System32\sqmapi.dll - ok
10:08:35.0917 5392 [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
10:08:35.0917 5392 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
10:08:35.0919 5392 [ A399514D3B28C9A3453A486BBAAFF1C7 ] C:\Windows\System32\wdscore.dll
10:08:35.0919 5392 C:\Windows\System32\wdscore.dll - ok
10:08:35.0922 5392 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] C:\Windows\System32\browser.dll
10:08:35.0922 5392 C:\Windows\System32\browser.dll - ok
10:08:35.0925 5392 [ D64AF876D53ECA3668BB97B51B4E70AB ] C:\Windows\System32\srvsvc.dll
10:08:35.0925 5392 C:\Windows\System32\srvsvc.dll - ok
10:08:35.0927 5392 [ CB9E04DC05EACF5B9A36CA276D475006 ] C:\Windows\System32\rasmans.dll
10:08:35.0927 5392 C:\Windows\System32\rasmans.dll - ok
10:08:35.0930 5392 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\System32\wscproxystub.dll
10:08:35.0930 5392 C:\Windows\System32\wscproxystub.dll - ok
10:08:35.0933 5392 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll
10:08:35.0933 5392 C:\Windows\System32\rasadhlp.dll - ok
10:08:35.0936 5392 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll
10:08:35.0936 5392 C:\Windows\System32\netmsg.dll - ok
10:08:35.0939 5392 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll
10:08:35.0939 5392 C:\Windows\System32\wbem\wmiutils.dll - ok
10:08:35.0942 5392 [ 26BA928D3FBA2A12589A8A9B1A47FB08 ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswAR.dll
10:08:35.0942 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswAR.dll - ok
10:08:35.0945 5392 [ 0D0FA4434A9434641AB0A6332AC5560A ] C:\Program Files\AVAST Software\Avast\defs\12120900\aswRawFS.dll
10:08:35.0945 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aswRawFS.dll - ok
10:08:35.0948 5392 [ B2E1E4A16EDD02396F451F915FA3CBFA ] C:\Windows\System32\rastapi.dll
10:08:35.0948 5392 C:\Windows\System32\rastapi.dll - ok
10:08:35.0952 5392 [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll
10:08:35.0952 5392 C:\Windows\System32\wbem\repdrvfs.dll - ok
10:08:35.0954 5392 [ 89E783711AF91AF09E1EF30EF3107446 ] C:\Windows\System32\sscore.dll
10:08:35.0954 5392 C:\Windows\System32\sscore.dll - ok
10:08:35.0957 5392 [ AE9898D5600A232CD8AE3298692162E5 ] C:\Windows\System32\clusapi.dll
10:08:35.0957 5392 C:\Windows\System32\clusapi.dll - ok
10:08:35.0960 5392 [ 2AF094C822BD6094F14A8E85FB51D52A ] C:\Windows\System32\resutils.dll
10:08:35.0960 5392 C:\Windows\System32\resutils.dll - ok
10:08:35.0962 5392 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll
10:08:35.0962 5392 C:\Windows\System32\hnetcfg.dll - ok
10:08:35.0965 5392 [ 45D9F6CD2469CDB6A640DD4BD2B01471 ] C:\Windows\System32\nci.dll
10:08:35.0965 5392 C:\Windows\System32\nci.dll - ok
10:08:35.0968 5392 [ 377F0C1DDBFA6A43CB7E7568BC0ECED0 ] C:\Windows\System32\unimdm.tsp
10:08:35.0968 5392 C:\Windows\System32\unimdm.tsp - ok
10:08:35.0971 5392 [ E675DE8CF57D8814218733B3DAE896D7 ] C:\Windows\System32\uniplat.dll
10:08:35.0971 5392 C:\Windows\System32\uniplat.dll - ok
10:08:35.0974 5392 [ 53CA6BF58658815FCB472205291DD953 ] C:\Windows\System32\unimdmat.dll
10:08:35.0974 5392 C:\Windows\System32\unimdmat.dll - ok
10:08:35.0976 5392 [ 4EAF682E27490A3D45C0EBB6537EE6A8 ] C:\Windows\System32\modemui.dll
10:08:35.0976 5392 C:\Windows\System32\modemui.dll - ok
10:08:35.0979 5392 [ E2F6CC0D191361EE94FEA3957653F531 ] C:\Windows\System32\hidphone.tsp
10:08:35.0979 5392 C:\Windows\System32\hidphone.tsp - ok
10:08:35.0982 5392 [ F3FB146CDBDD26FCD0CF7941C547BEE4 ] C:\Windows\System32\kmddsp.tsp
10:08:35.0982 5392 C:\Windows\System32\kmddsp.tsp - ok
10:08:35.0985 5392 [ AA11A26692E0DB2996CAEFE9EC61F61F ] C:\Windows\System32\ndptsp.tsp
10:08:35.0985 5392 C:\Windows\System32\ndptsp.tsp - ok
10:08:35.0988 5392 [ 67F9B5C7E215B48F9256757E9CC09A7B ] C:\Windows\System32\rasppp.dll
10:08:35.0988 5392 C:\Windows\System32\rasppp.dll - ok
10:08:35.0990 5392 [ 80B562B5B59ED850C328DD75F964F3D8 ] C:\Windows\System32\vpnike.dll
10:08:35.0990 5392 C:\Windows\System32\vpnike.dll - ok
10:08:35.0993 5392 [ 3CDE2911462FEC80064A409C07710C06 ] C:\Windows\System32\wbem\WmiPrvSD.dll
10:08:35.0993 5392 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
10:08:35.0996 5392 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll
10:08:35.0996 5392 C:\Windows\System32\ncobjapi.dll - ok
10:08:35.0999 5392 [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll
10:08:35.0999 5392 C:\Windows\System32\wbem\wbemess.dll - ok
10:08:36.0002 5392 [ 2604B56B92A344B7ED66BEF4AFE8AD3A ] C:\Program Files\AVAST Software\Avast\aswSpam.dll
10:08:36.0002 5392 C:\Program Files\AVAST Software\Avast\aswSpam.dll - ok
10:08:36.0005 5392 [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
10:08:36.0005 5392 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
10:08:36.0008 5392 [ C363295621BF0CD8C2E05D62DBBE1A8C ] C:\Program Files\AVAST Software\Avast\winspamcatcher.dll
10:08:36.0008 5392 C:\Program Files\AVAST Software\Avast\winspamcatcher.dll - ok
10:08:36.0012 5392 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll
10:08:36.0012 5392 C:\Windows\System32\msimg32.dll - ok
10:08:36.0013 5392 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\System32\wer.dll
10:08:36.0013 5392 C:\Windows\System32\wer.dll - ok
10:08:36.0016 5392 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\System32\Faultrep.dll
10:08:36.0016 5392 C:\Windows\System32\Faultrep.dll - ok
10:08:36.0019 5392 [ 6B44700917F45B19B96B46B345B6F0E7 ] C:\Program Files\Spybot - Search & Destroy\SDMain.exe
10:08:36.0019 5392 C:\Program Files\Spybot - Search & Destroy\SDMain.exe - ok
10:08:36.0022 5392 [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\System32\wbem\wbemdisp.dll
10:08:36.0022 5392 C:\Windows\System32\wbem\wbemdisp.dll - ok
10:08:36.0024 5392 [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
10:08:36.0024 5392 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
10:08:36.0027 5392 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll
10:08:36.0027 5392 C:\Windows\System32\security.dll - ok
10:08:36.0030 5392 [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
10:08:36.0030 5392 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
10:08:36.0033 5392 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\System32\oledlg.dll
10:08:36.0033 5392 C:\Windows\System32\oledlg.dll - ok
10:08:36.0036 5392 [ 74AF6AA2E8B3180AADAE5FE8813CB1CD ] C:\Windows\System32\localspl.dll
10:08:36.0036 5392 C:\Windows\System32\localspl.dll - ok
10:08:36.0039 5392 [ 03CF941D031F30272D3063E5A4D686F5 ] C:\Windows\System32\PrintIsolationProxy.dll
10:08:36.0039 5392 C:\Windows\System32\PrintIsolationProxy.dll - ok
10:08:36.0042 5392 [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll
10:08:36.0042 5392 C:\Windows\System32\spoolss.dll - ok
10:08:36.0044 5392 [ 126F8331BD023178C7F0EF2F5EDE16B3 ] C:\Windows\System32\FXSMON.dll
10:08:36.0044 5392 C:\Windows\System32\FXSMON.dll - ok
10:08:36.0048 5392 [ 6501024C570A0386CF780503E073367E ] C:\Windows\System32\hpf3l092.dll
10:08:36.0048 5392 C:\Windows\System32\hpf3l092.dll - ok
10:08:36.0051 5392 [ CC8890B2BA596236250E2B9D5761060B ] C:\Windows\System32\HPZ3LLHN.DLL
10:08:36.0051 5392 C:\Windows\System32\HPZ3LLHN.DLL - ok
10:08:36.0054 5392 [ CCE08933AC6C56AE6909059461EA37E7 ] C:\Windows\System32\hpz3lw72.dll
10:08:36.0054 5392 C:\Windows\System32\hpz3lw72.dll - ok
10:08:36.0056 5392 [ F148865E4AC4F715E322EA06E6E21D84 ] C:\Windows\System32\wbem\NCProv.dll
10:08:36.0056 5392 C:\Windows\System32\wbem\NCProv.dll - ok
10:08:36.0059 5392 [ 7A394275997848411A86BFA68ED7AF7A ] C:\Windows\System32\HPZ3LWN7.DLL
10:08:36.0059 5392 C:\Windows\System32\HPZ3LWN7.DLL - ok
10:08:36.0062 5392 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll
10:08:36.0062 5392 C:\Windows\System32\p2pcollab.dll - ok
10:08:36.0065 5392 [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll
10:08:36.0065 5392 C:\Windows\System32\tcpmon.dll - ok
10:08:36.0068 5392 [ D1A079A0DE2EA524513B6930C24527A2 ] C:\Windows\System32\ipnathlp.dll
10:08:36.0068 5392 C:\Windows\System32\ipnathlp.dll - ok
10:08:36.0071 5392 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll
10:08:36.0071 5392 C:\Windows\System32\snmpapi.dll - ok
10:08:36.0074 5392 [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\System32\wsnmp32.dll
10:08:36.0074 5392 C:\Windows\System32\wsnmp32.dll - ok
10:08:36.0076 5392 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] C:\Windows\System32\QAGENTRT.DLL
10:08:36.0076 5392 C:\Windows\System32\QAGENTRT.DLL - ok
10:08:36.0079 5392 [ D4191EFAB91E00FC09257AA5EBAF503B ] C:\Windows\System32\mprapi.dll
10:08:36.0079 5392 C:\Windows\System32\mprapi.dll - ok
10:08:36.0082 5392 [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\System32\netshell.dll
10:08:36.0082 5392 C:\Windows\System32\netshell.dll - ok
10:08:36.0085 5392 [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll
10:08:36.0085 5392 C:\Windows\System32\fveui.dll - ok
10:08:36.0088 5392 [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll
10:08:36.0088 5392 C:\Windows\System32\usbmon.dll - ok
10:08:36.0090 5392 [ F7FE730CE31B54145DEE1F1482BCCDD7 ] C:\Windows\System32\ndiscapCfg.dll
10:08:36.0090 5392 C:\Windows\System32\ndiscapCfg.dll - ok
10:08:36.0093 5392 [ 761A3A4038C1FD4F5795427907C28484 ] C:\Windows\System32\rascfg.dll
10:08:36.0093 5392 C:\Windows\System32\rascfg.dll - ok
10:08:36.0096 5392 [ 9A7B54D57594233EEB17892BAD309970 ] C:\Windows\System32\mprmsg.dll
10:08:36.0096 5392 C:\Windows\System32\mprmsg.dll - ok
10:08:36.0099 5392 [ CAFC0B884E5590B5E80D84F592388B3D ] C:\Windows\System32\tcpipcfg.dll
10:08:36.0099 5392 C:\Windows\System32\tcpipcfg.dll - ok
10:08:36.0101 5392 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\System32\cabinet.dll
10:08:36.0101 5392 C:\Windows\System32\cabinet.dll - ok
10:08:36.0104 5392 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll
10:08:36.0104 5392 C:\Windows\System32\wuapi.dll - ok
10:08:36.0107 5392 [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll
10:08:36.0107 5392 C:\Windows\System32\WSDMon.dll - ok
10:08:36.0110 5392 [ 78DE417B7921DACA072059E6BF410FC7 ] C:\Windows\System32\wshnetbs.dll
10:08:36.0110 5392 C:\Windows\System32\wshnetbs.dll - ok
10:08:36.0113 5392 [ 9E6AF823733C70E207D9FB6731A63B3D ] C:\Windows\System32\wlaninst.dll
10:08:36.0113 5392 C:\Windows\System32\wlaninst.dll - ok
10:08:36.0115 5392 [ 5B6EF0861BB5AC0EC347548E85C24A1D ] C:\Windows\System32\wwaninst.dll
10:08:36.0115 5392 C:\Windows\System32\wwaninst.dll - ok
10:08:36.0118 5392 [ 73F6C5223F7E9B5780DD4A6C30FCF569 ] C:\Windows\System32\WSDApi.dll
10:08:36.0119 5392 C:\Windows\System32\WSDApi.dll - ok
10:08:36.0121 5392 [ DB846EECA70EE9D2E2FF31147C57B0F4 ] C:\Windows\System32\webservices.dll
10:08:36.0121 5392 C:\Windows\System32\webservices.dll - ok
10:08:36.0124 5392 [ CD72C6406BA561BED6D42CB145E55307 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
10:08:36.0124 5392 C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
10:08:36.0127 5392 [ 50DCDDB541B5EC5368FCCA21D3D44D78 ] C:\Windows\System32\spool\prtprocs\w32x86\hpfpp092.dll
10:08:36.0127 5392 C:\Windows\System32\spool\prtprocs\w32x86\hpfpp092.dll - ok
10:08:36.0130 5392 [ 4D7C935C317EAC7834FA0A2EFF59D8D2 ] C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL
10:08:36.0130 5392 C:\Windows\System32\spool\prtprocs\w32x86\HPZPPLHN.DLL - ok
10:08:36.0133 5392 [ D9368F9A16D2BE3AB7E13312E6BA79EC ] C:\Windows\System32\spool\prtprocs\w32x86\hpzppw72.dll
10:08:36.0133 5392 C:\Windows\System32\spool\prtprocs\w32x86\hpzppw72.dll - ok
10:08:36.0137 5392 [ C2A44C942EC023CF2D5CF144B0F5D146 ] C:\Windows\System32\spool\prtprocs\w32x86\HPZPPWN7.DLL
10:08:36.0137 5392 C:\Windows\System32\spool\prtprocs\w32x86\HPZPPWN7.DLL - ok
10:08:36.0140 5392 [ BE3953C7DAE4ECC89134CF64A903F8ED ] C:\Windows\System32\win32spl.dll
10:08:36.0140 5392 C:\Windows\System32\win32spl.dll - ok
10:08:36.0142 5392 [ D27DDE7E0444C7F1819F958469EB7D93 ] C:\Windows\System32\inetpp.dll
10:08:36.0142 5392 C:\Windows\System32\inetpp.dll - ok
10:08:36.0145 5392 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe
10:08:36.0145 5392 C:\Windows\System32\dllhost.exe - ok
10:08:36.0148 5392 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll
10:08:36.0148 5392 C:\Windows\System32\IDStore.dll - ok
10:08:36.0150 5392 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
10:08:36.0150 5392 C:\Windows\System32\wups.dll - ok
10:08:36.0153 5392 [ 7FA8BA5A780E4757964AC9D4238302B9 ] C:\Windows\System32\taskhost.exe
10:08:36.0153 5392 C:\Windows\System32\taskhost.exe - ok
10:08:36.0156 5392 [ 3CA2BB895E204478C7A4C9BAF70970CE ] C:\Windows\System32\AtBroker.exe
10:08:36.0156 5392 C:\Windows\System32\AtBroker.exe - ok
10:08:36.0159 5392 [ 61AC3EFDFACFDD3F0F11DD4FD4044223 ] C:\Windows\System32\userinit.exe
10:08:36.0159 5392 C:\Windows\System32\userinit.exe - ok
10:08:36.0162 5392 [ 7319102526BD11B45FD66335CF90CA12 ] C:\Windows\System32\HotStartUserAgent.dll
10:08:36.0162 5392 C:\Windows\System32\HotStartUserAgent.dll - ok
10:08:36.0165 5392 [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe
10:08:36.0165 5392 C:\Windows\System32\dwm.exe - ok
10:08:36.0169 5392 [ 754AFC50022C95DA7C86B7020DB78136 ] C:\Windows\System32\dwmredir.dll
10:08:36.0169 5392 C:\Windows\System32\dwmredir.dll - ok
10:08:36.0171 5392 [ 497E59D9F01C6F247E72222A61835119 ] C:\Windows\System32\dwmcore.dll
10:08:36.0171 5392 C:\Windows\System32\dwmcore.dll - ok
10:08:36.0174 5392 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\System32\d3d10_1.dll
10:08:36.0174 5392 C:\Windows\System32\d3d10_1.dll - ok
10:08:36.0177 5392 [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\System32\MsCtfMonitor.dll
10:08:36.0177 5392 C:\Windows\System32\MsCtfMonitor.dll - ok
10:08:36.0180 5392 [ 56CEED370508F69A1BA04939BD1BADDA ] C:\Windows\System32\msutb.dll
10:08:36.0180 5392 C:\Windows\System32\msutb.dll - ok
10:08:36.0184 5392 [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\System32\PlaySndSrv.dll
10:08:36.0184 5392 C:\Windows\System32\PlaySndSrv.dll - ok
10:08:36.0186 5392 [ 8B88EBBB05A0E56B7DCC708498C02B3E ] C:\Windows\explorer.exe
10:08:36.0186 5392 C:\Windows\explorer.exe - ok
10:08:36.0189 5392 [ D924B8C8C39DD92051FFC5004162E50B ] C:\Windows\System32\FXST30.dll
10:08:36.0189 5392 C:\Windows\System32\FXST30.dll - ok
10:08:36.0191 5392 [ 68607061AFC4B87E71558D26B2C331C3 ] C:\Windows\System32\FXSROUTE.dll
10:08:36.0191 5392 C:\Windows\System32\FXSROUTE.dll - ok
10:08:36.0194 5392 [ A205B7A5D8E4AE6E8DE7B313C7FC3FA4 ] C:\Windows\System32\mdminst.dll
10:08:36.0194 5392 C:\Windows\System32\mdminst.dll - ok
10:08:36.0197 5392 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll
10:08:36.0197 5392 C:\Windows\System32\npmproxy.dll - ok
10:08:36.0200 5392 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll
10:08:36.0200 5392 C:\Windows\System32\wdi.dll - ok
10:08:36.0203 5392 [ AA53356D60AF47EACC85BC617A4F3F66 ] C:\Windows\System32\wpdbusenum.dll
10:08:36.0203 5392 C:\Windows\System32\wpdbusenum.dll - ok
10:08:36.0206 5392 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\System32\hidserv.dll
10:08:36.0206 5392 C:\Windows\System32\hidserv.dll - ok
10:08:36.0208 5392 [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\System32\PortableDeviceApi.dll
10:08:36.0208 5392 C:\Windows\System32\PortableDeviceApi.dll - ok
10:08:36.0211 5392 [ ECF036299AA554B5E0455262857B39D0 ] C:\Windows\System32\diagperf.dll
10:08:36.0211 5392 C:\Windows\System32\diagperf.dll - ok
10:08:36.0214 5392 [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll
10:08:36.0214 5392 C:\Windows\System32\perftrack.dll - ok
10:08:36.0217 5392 [ 79737E0F7D25DE8405CB34D4C9882253 ] C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
10:08:36.0217 5392 C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL - ok
10:08:36.0220 5392 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
10:08:36.0220 5392 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
10:08:36.0223 5392 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\System32\shfolder.dll
10:08:36.0223 5392 C:\Windows\System32\shfolder.dll - ok
10:08:36.0226 5392 [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll
10:08:36.0226 5392 C:\Windows\System32\aepic.dll - ok
10:08:36.0229 5392 [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll
10:08:36.0229 5392 C:\Windows\System32\pnpts.dll - ok
10:08:36.0232 5392 [ F0016853FA3F38F55FD868FF74C0359B ] C:\Windows\System32\wdiasqmmodule.dll
10:08:36.0232 5392 C:\Windows\System32\wdiasqmmodule.dll - ok
10:08:36.0235 5392 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll
10:08:36.0235 5392 C:\Windows\System32\Apphlpdm.dll - ok
10:08:36.0238 5392 [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\System32\radardt.dll
10:08:36.0238 5392 C:\Windows\System32\radardt.dll - ok
10:08:36.0241 5392 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll
10:08:36.0241 5392 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
10:08:36.0244 5392 [ 32F4D839CA942236F933A78C3DC404F9 ] C:\Windows\System32\spool\drivers\w32x86\3\unidrvui.dll
10:08:36.0244 5392 C:\Windows\System32\spool\drivers\w32x86\3\unidrvui.dll - ok
10:08:36.0246 5392 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\System32\d3d10_1core.dll
10:08:36.0246 5392 C:\Windows\System32\d3d10_1core.dll - ok
10:08:36.0249 5392 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\System32\dxgi.dll
10:08:36.0249 5392 C:\Windows\System32\dxgi.dll - ok
10:08:36.0252 5392 [ 03F364F70669D6CCDFBB648C735A1CC1 ] C:\Windows\System32\tcpmib.dll
10:08:36.0252 5392 C:\Windows\System32\tcpmib.dll - ok
10:08:36.0255 5392 [ BA54A966F873B043FDFCDA0B77937855 ] C:\Windows\System32\mgmtapi.dll
10:08:36.0255 5392 C:\Windows\System32\mgmtapi.dll - ok
10:08:36.0258 5392 [ FC70115B86B7BC41467BE7A5696C44C5 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL
10:08:36.0258 5392 C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL - ok
10:08:36.0261 5392 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\System32\dimsjob.dll
10:08:36.0261 5392 C:\Windows\System32\dimsjob.dll - ok
10:08:36.0264 5392 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\System32\pautoenr.dll
10:08:36.0264 5392 C:\Windows\System32\pautoenr.dll - ok
10:08:36.0266 5392 [ 61B1ED5F429EFAC7E2036769870AB93E ] C:\Windows\System32\certcli.dll
10:08:36.0266 5392 C:\Windows\System32\certcli.dll - ok
10:08:36.0271 5392 [ 53946B69BA0836BD95B03759530C81EC ] C:\Windows\System32\IPSECSVC.DLL
10:08:36.0271 5392 C:\Windows\System32\IPSECSVC.DLL - ok
10:08:36.0276 5392 [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\System32\FwRemoteSvr.dll
10:08:36.0276 5392 C:\Windows\System32\FwRemoteSvr.dll - ok
10:08:36.0281 5392 [ 29BC473072568C072EC8B176498DE996 ] C:\Windows\System32\CertEnroll.dll
10:08:36.0281 5392 C:\Windows\System32\CertEnroll.dll - ok
10:08:36.0284 5392 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\System32\ExplorerFrame.dll
10:08:36.0284 5392 C:\Windows\System32\ExplorerFrame.dll - ok
10:08:36.0287 5392 [ 4D153BDE01AA3FD33414199052051549 ] C:\Program Files\AVAST Software\Avast\ashShell.dll
10:08:36.0287 5392 C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
10:08:36.0290 5392 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\System32\msi.dll
10:08:36.0290 5392 C:\Windows\System32\msi.dll - ok
10:08:36.0293 5392 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll
10:08:36.0293 5392 C:\Windows\System32\EhStorShell.dll - ok
10:08:36.0296 5392 [ CD87209C7928D3F813466C357658C39E ] C:\Windows\System32\spool\drivers\w32x86\3\hpfui092.dll
10:08:36.0296 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfui092.dll - ok
10:08:36.0300 5392 [ 45EF871304D5900FAF18BF51BE833052 ] C:\Windows\System32\igd10umd32.dll
10:08:36.0300 5392 C:\Windows\System32\igd10umd32.dll - ok
10:08:36.0309 5392 [ 72DA561966178F8AF0BE0A4118F73D40 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfst092.dll
10:08:36.0309 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfst092.dll - ok
10:08:36.0312 5392 [ 15A9B01686075F7524D91BB479926F87 ] C:\Windows\System32\spool\drivers\w32x86\3\UNIRES.DLL
10:08:36.0312 5392 C:\Windows\System32\spool\drivers\w32x86\3\UNIRES.DLL - ok
10:08:36.0316 5392 [ 2C0AA5BAB6BD364AE2CF374732F85641 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfvu092.dll
10:08:36.0316 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfvu092.dll - ok
10:08:36.0319 5392 [ D78C5D6F67BF4CD78D84EBDEDCE31A04 ] C:\Windows\System32\spool\drivers\w32x86\3\hpw450n3.dll
10:08:36.0319 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpw450n3.dll - ok
10:08:36.0322 5392 [ 76224172E3FA64C8F4F3585554209E31 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfev092.dll
10:08:36.0322 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfev092.dll - ok
10:08:36.0325 5392 [ C7A698096AC34FEC01FD12B93AD0FCD8 ] C:\Windows\System32\spool\drivers\w32x86\3\hpf3r092.dll
10:08:36.0325 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpf3r092.dll - ok
10:08:36.0333 5392 [ FA8F1407AD9E4231021BFE43E92119BC ] C:\Windows\System32\spool\drivers\w32x86\3\hpfrs092.dll
10:08:36.0333 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfrs092.dll - ok
10:08:36.0337 5392 [ 7E43286A8831BFE277EDCF4E3163CBBE ] C:\Windows\System32\spool\drivers\w32x86\3\hpfie092.dll
10:08:36.0337 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfie092.dll - ok
10:08:36.0340 5392 [ EA4D4D43330840F5671F58B54DDA25FF ] C:\Windows\System32\spool\drivers\w32x86\3\hpfpr092.dll
10:08:36.0340 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfpr092.dll - ok
10:08:36.0344 5392 [ C99F2DF02730B699912973B94E5A2C26 ] C:\Windows\System32\spool\drivers\w32x86\3\hpfpa092.dll
10:08:36.0344 5392 C:\Windows\System32\spool\drivers\w32x86\3\hpfpa092.dll - ok
10:08:36.0347 5392 [ B2BCD4B0352B069F160C4DB82334768B ] C:\Windows\System32\spool\drivers\w32x86\3\HPCDMC32.dll
10:08:36.0347 5392 C:\Windows\System32\spool\drivers\w32x86\3\HPCDMC32.dll - ok
10:08:36.0350 5392 [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
10:08:36.0350 5392 C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL - ok
10:08:36.0353 5392 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
10:08:36.0353 5392 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
10:08:36.0356 5392 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
10:08:36.0357 5392 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
10:08:36.0360 5392 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~1\MICROS~1\Office14\1033\GrooveIntlResource.dll
10:08:36.0360 5392 C:\PROGRA~1\MICROS~1\Office14\1033\GrooveIntlResource.dll - ok
10:08:36.0363 5392 [ 3EC541C196DE18ED9A0D0AC82A694D4C ] C:\Windows\System32\cscui.dll
10:08:36.0363 5392 C:\Windows\System32\cscui.dll - ok
10:08:36.0365 5392 [ 57A51217581614DE07F30E34D6BB4993 ] C:\Windows\System32\cscdll.dll
10:08:36.0365 5392 C:\Windows\System32\cscdll.dll - ok
10:08:36.0373 5392 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\System32\ntshrui.dll
10:08:36.0373 5392 C:\Windows\System32\ntshrui.dll - ok
10:08:36.0377 5392 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll
10:08:36.0377 5392 C:\Windows\System32\IconCodecService.dll - ok
10:08:36.0381 5392 [ FB1959012294D6AD43E5304DF65E3C26 ] C:\Windows\System32\appinfo.dll
10:08:36.0381 5392 C:\Windows\System32\appinfo.dll - ok
10:08:36.0388 5392 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] C:\Windows\System32\aelupsvc.dll
10:08:36.0388 5392 C:\Windows\System32\aelupsvc.dll - ok
10:08:36.0392 5392 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\System32\runonce.exe
10:08:36.0392 5392 C:\Windows\System32\runonce.exe - ok
10:08:36.0395 5392 [ 9FF26A820B841C0CDDC0E61A110C0C4D ] C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\mbar.exe
10:08:36.0395 5392 C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\mbar.exe - ok
10:08:36.0399 5392 [ 9A0A8B54739622D6C1E5B51F699365E9 ] C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\QtGui4.dll
10:08:36.0399 5392 C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\QtGui4.dll - ok
10:08:36.0402 5392 [ F6FD89A4E5BF2E72EA876646E7999E4D ] C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\QtCore4.dll
10:08:36.0402 5392 C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\QtCore4.dll - ok
10:08:36.0405 5392 [ EA6879F3DDD50C01BCDCB8A8C104CAD1 ] C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\msvcp100.dll
10:08:36.0405 5392 C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\msvcp100.dll - ok
10:08:36.0408 5392 [ D925D40DA3667FB7A65CF25563ADD45D ] C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\msvcr100.dll
10:08:36.0408 5392 C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\msvcr100.dll - ok
10:08:36.0411 5392 [ A23BE8C3657CFD63FFF0E27EE6C17D46 ] C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\mbamcore.dll
10:08:36.0411 5392 C:\Users\Qzee\Desktop\MBAR ROOTKIT\mbar\mbamcore.dll - ok
10:08:36.0420 5392 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\System32\cmd.exe
10:08:36.0420 5392 C:\Windows\System32\cmd.exe - ok
10:08:36.0423 5392 [ 47005361FF2A479A0554F352266BAED3 ] C:\Windows\System32\conhost.exe
10:08:36.0423 5392 C:\Windows\System32\conhost.exe - ok
10:08:36.0426 5392 [ A6B73FCB9496DB101F3066CAF5A7DA4B ] C:\Windows\System32\ieframe.dll
10:08:36.0426 5392 C:\Windows\System32\ieframe.dll - ok
10:08:36.0429 5392 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\System32\shdocvw.dll
10:08:36.0429 5392 C:\Windows\System32\shdocvw.dll - ok
10:08:36.0432 5392 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Qzee\AppData\Local\Temp\BCDFF1C6-5497-46CD-9FD0-64BD111D5E6C.exe
10:08:36.0433 5392 C:\Users\Qzee\AppData\Local\Temp\BCDFF1C6-5497-46CD-9FD0-64BD111D5E6C.exe - ok
10:08:36.0436 5392 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll
10:08:36.0436 5392 C:\Windows\System32\SensApi.dll - ok
10:08:36.0438 5392 [ 4B9E4CE667DF26ADA061AA81E9AA841D ] C:\Windows\System32\spfileq.dll
10:08:36.0438 5392 C:\Windows\System32\spfileq.dll - ok
10:08:36.0441 5392 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
10:08:36.0441 5392 C:\Windows\System32\ie4uinit.exe - ok
10:08:36.0444 5392 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll
10:08:36.0444 5392 C:\Windows\System32\iedkcs32.dll - ok
10:08:36.0447 5392 [ 7E9917D5309A90E7576653BFE39F80D8 ] C:\Windows\System32\timedate.cpl
10:08:36.0447 5392 C:\Windows\System32\timedate.cpl - ok
10:08:36.0450 5392 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\System32\actxprxy.dll
10:08:36.0450 5392 C:\Windows\System32\actxprxy.dll - ok
10:08:36.0453 5392 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll
10:08:36.0453 5392 C:\Windows\System32\msiltcfg.dll - ok
10:08:36.0455 5392 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll
10:08:36.0456 5392 C:\Windows\System32\linkinfo.dll - ok
10:08:36.0458 5392 [ 19BC13711AC403FEB830522E4831701B ] C:\Windows\System32\gameux.dll
10:08:36.0458 5392 C:\Windows\System32\gameux.dll - ok
10:08:36.0461 5392 [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\System32\msftedit.dll
10:08:36.0461 5392 C:\Windows\System32\msftedit.dll - ok
10:08:36.0464 5392 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\System32\msls31.dll
10:08:36.0464 5392 C:\Windows\System32\msls31.dll - ok
10:08:36.0467 5392 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
10:08:36.0467 5392 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
10:08:36.0470 5392 [ 2A39F32E0067CBF221611FE1FA8C6D8F ] C:\Windows\System32\DeviceCenter.dll
10:08:36.0470 5392 C:\Windows\System32\DeviceCenter.dll - ok
10:08:36.0473 5392 [ 672D7C5080ACB003343006405DA2E621 ] C:\Windows\System32\thumbcache.dll
10:08:36.0473 5392 C:\Windows\System32\thumbcache.dll - ok
10:08:36.0475 5392 [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll
10:08:36.0475 5392 C:\Windows\System32\aeevts.dll - ok
10:08:36.0483 5392 [ 3D57FFBAD3ED16B63DE3879BAB0FB56F ] C:\Windows\System32\networkexplorer.dll
10:08:36.0483 5392 C:\Windows\System32\networkexplorer.dll - ok
10:08:36.0488 5392 [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\System32\mf.dll
10:08:36.0488 5392 C:\Windows\System32\mf.dll - ok
10:08:36.0491 5392 [ 280D33DB8697FDEF8CCF2B9EEF9EA5CB ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
10:08:36.0491 5392 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll - ok
10:08:36.0494 5392 [ C1648084C395152FBFA1B333D92056BC ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
10:08:36.0494 5392 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
10:08:36.0497 5392 [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
10:08:36.0497 5392 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
10:08:36.0500 5392 [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
10:08:36.0500 5392 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
10:08:36.0503 5392 [ 4D699378B8D99B4F3ECA63857580D173 ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.dll
10:08:36.0503 5392 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.dll - ok
10:08:36.0507 5392 [ C26B09276755E0698B31CF0BAE0BF182 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
10:08:36.0507 5392 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
10:08:36.0510 5392 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
10:08:36.0510 5392 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
10:08:36.0513 5392 [ D7936ED15F4AEF0FC33F329D0F21ED46 ] C:\Program Files\iTunes\iTunesHelper.exe
10:08:36.0513 5392 C:\Program Files\iTunes\iTunesHelper.exe - ok
10:08:36.0516 5392 [ A5062EA164067050F2DFA9DCA98CA63A ] C:\Program Files\CCleaner\CCleaner.exe
10:08:36.0516 5392 C:\Program Files\CCleaner\CCleaner.exe - ok
10:08:36.0519 5392 [ E375386B937B7FF3A10F71D1A09AD360 ] C:\Program Files\iTunes\iTunesHelper.dll
10:08:36.0519 5392 C:\Program Files\iTunes\iTunesHelper.dll - ok
10:08:36.0522 5392 [ 5112FBD9885D79A9FC73BDE9B1EF9334 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
10:08:36.0522 5392 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
10:08:36.0525 5392 [ 91062AC5D12F74DBFCCAEEAD86372CBD ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
10:08:36.0525 5392 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
10:08:36.0527 5392 [ 19BE881A9CC0A9CC5E6BBA43202A41AA ] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
10:08:36.0527 5392 C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe - ok
10:08:36.0531 5392 [ 8B70A55FDB9C0518DB9F8C5FF0774313 ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
10:08:36.0531 5392 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
10:08:36.0534 5392 [ 4C644D06A842703B65949BD4CE1D7D7E ] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
10:08:36.0534 5392 C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe - ok
10:08:36.0543 5392 [ 4F2659160AFCCA990305816946F69407 ] C:\Windows\System32\taskeng.exe
10:08:36.0543 5392 C:\Windows\System32\taskeng.exe - ok
10:08:36.0547 5392 [ 8C9740A3B7603B0A746213DAE8C89526 ] C:\Program Files\Spybot - Search & Destroy\blindman.exe
10:08:36.0547 5392 C:\Program Files\Spybot - Search & Destroy\blindman.exe - ok
10:08:36.0551 5392 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
10:08:36.0551 5392 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
10:08:36.0554 5392 [ 533631FE7DB9FF2A1D456A3D15A2DD46 ] C:\Windows\System32\icmp.dll
10:08:36.0554 5392 C:\Windows\System32\icmp.dll - ok
10:08:36.0556 5392 [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
10:08:36.0556 5392 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
10:08:36.0560 5392 [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
10:08:36.0560 5392 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
10:08:36.0563 5392 [ AB6E3DF509C6BD59062F685A40395C23 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
10:08:36.0563 5392 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
10:08:36.0566 5392 [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
10:08:36.0566 5392 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
10:08:36.0568 5392 [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\System32\TSChannel.dll
10:08:36.0569 5392 C:\Windows\System32\TSChannel.dll - ok
10:08:36.0573 5392 [ DA8CECBBE954C64CBD73987B8A0CCAC1 ] C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams_main.dll
10:08:36.0573 5392 C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams_main.dll - ok
10:08:36.0575 5392 [ 912649A1B3F9E6ACB3899FBDABA2ED5F ] C:\Windows\System32\stobject.dll
10:08:36.0575 5392 C:\Windows\System32\stobject.dll - ok
10:08:36.0578 5392 [ AE2523EB48B0401262BEC0A59C1C19C2 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreGraphics.dll
10:08:36.0578 5392 C:\Program Files\Common Files\Apple\Apple Application Support\CoreGraphics.dll - ok
10:08:36.0581 5392 [ 1FD64025854A3D1995CF346F1756BCDD ] C:\Program Files\Common Files\Apple\Internet Services\mmcs.dll
10:08:36.0581 5392 C:\Program Files\Common Files\Apple\Internet Services\mmcs.dll - ok
10:08:36.0585 5392 [ AB781C0E4C09E08F464081D17C0F6184 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
10:08:36.0585 5392 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
10:08:36.0588 5392 [ 8B1E277F554228A84126402BBBDC32F4 ] C:\Windows\System32\Macromed\Flash\Flash32_11_4_402_287.ocx
10:08:36.0588 5392 C:\Windows\System32\Macromed\Flash\Flash32_11_4_402_287.ocx - ok
10:08:36.0591 5392 [ 67C1B58706B47EEBA4E117AC197289E6 ] C:\Windows\System32\batmeter.dll
10:08:36.0591 5392 C:\Windows\System32\batmeter.dll - ok
10:08:36.0594 5392 [ B60F3FD682DBCD21EBFB8D10DB8D3AF2 ] C:\Program Files\Common Files\Apple\Internet Services\ChunkingLibrary.dll
10:08:36.0594 5392 C:\Program Files\Common Files\Apple\Internet Services\ChunkingLibrary.dll - ok
10:08:36.0597 5392 [ 9F31BB590A5AC171B585B619B7EA6E58 ] C:\Program Files\Common Files\Apple\Internet Services\AOSKit.dll
10:08:36.0597 5392 C:\Program Files\Common Files\Apple\Internet Services\AOSKit.dll - ok
10:08:36.0601 5392 [ 8CD8BF374E87957F8F6E8CE4C14E3F29 ] C:\Program Files\Common Files\Apple\Internet Services\iCloudServices_main.dll
10:08:36.0601 5392 C:\Program Files\Common Files\Apple\Internet Services\iCloudServices_main.dll - ok
10:08:36.0604 5392 [ AB9D511F0CA51F683CD72870AB989141 ] C:\Program Files\Adobe\Reader 10.0\Reader\AGM.dll
10:08:36.0604 5392 C:\Program Files\Adobe\Reader 10.0\Reader\AGM.dll - ok
10:08:36.0607 5392 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\75150887.sys
10:08:36.0607 5392 C:\Windows\System32\drivers\75150887.sys - ok
10:08:36.0609 5392 [ 87EFA9CF72AA7059022008348BF6085A ] C:\Program Files\Adobe\Reader 10.0\Reader\CoolType.dll
10:08:36.0609 5392 C:\Program Files\Adobe\Reader 10.0\Reader\CoolType.dll - ok
10:08:36.0612 5392 [ EF1C51222117B37AFBFF8F4642EA8C62 ] C:\Program Files\iPod\bin\iPodService.exe
10:08:36.0613 5392 C:\Program Files\iPod\bin\iPodService.exe - ok
10:08:36.0616 5392 [ 126F34AC5D9E681D06499EEC0DD6679E ] C:\Program Files\Common Files\Apple\Apple Application Support\Foundation.dll
10:08:36.0616 5392 C:\Program Files\Common Files\Apple\Apple Application Support\Foundation.dll - ok
10:08:36.0619 5392 [ D35C7F6F8265FD9A6A1C27F26F1DDB82 ] C:\Program Files\Adobe\Reader 10.0\Reader\BIB.dll
10:08:36.0619 5392 C:\Program Files\Adobe\Reader 10.0\Reader\BIB.dll - ok
10:08:36.0622 5392 [ 73864567D09922D9DDE8923278025CC7 ] C:\Program Files\Adobe\Reader 10.0\Reader\ACE.dll
10:08:36.0622 5392 C:\Program Files\Adobe\Reader 10.0\Reader\ACE.dll - ok
10:08:36.0625 5392 [ 3687E37869B69040657E0CE3F5DB58AA ] C:\Program Files\Common Files\Apple\Apple Application Support\libtidy.dll
10:08:36.0625 5392 C:\Program Files\Common Files\Apple\Apple Application Support\libtidy.dll - ok
10:08:36.0628 5392 [ ADDB05C93272A62606599B24730BD645 ] C:\Windows\System32\DXP.dll
10:08:36.0628 5392 C:\Windows\System32\DXP.dll - ok
10:08:36.0631 5392 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll
10:08:36.0631 5392 C:\Windows\System32\dsound.dll - ok
10:08:36.0634 5392 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\System32\prnfldr.dll
10:08:36.0634 5392 C:\Windows\System32\prnfldr.dll - ok
10:08:36.0636 5392 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll
10:08:36.0636 5392 C:\Windows\System32\Syncreg.dll - ok
10:08:36.0639 5392 [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll
10:08:36.0639 5392 C:\Windows\ehome\ehSSO.dll - ok
10:08:36.0644 5392 [ 1B2E6F9665DE9FF4A5A1812D397BE473 ] C:\Program Files\AVAST Software\Avast\defs\12120900\uiext.dll
10:08:36.0644 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\uiext.dll - ok
10:08:36.0651 5392 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll
10:08:36.0651 5392 C:\Windows\System32\AltTab.dll - ok
10:08:36.0655 5392 [ 735263DA17BF5BAF9CCD483843BF9D5A ] C:\Windows\System32\WPDShServiceObj.dll
10:08:36.0655 5392 C:\Windows\System32\WPDShServiceObj.dll - ok
10:08:36.0658 5392 [ EEAD2D2FAEC389EB717C1B9562F835FE ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
10:08:36.0658 5392 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
10:08:36.0661 5392 [ A782C81615108CB5A7A8D826D11005C6 ] C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll
10:08:36.0661 5392 C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll - ok
10:08:36.0665 5392 [ E3052D7C10FE83E3EFA00F5E67621DA2 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
10:08:36.0665 5392 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
10:08:36.0668 5392 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll
10:08:36.0668 5392 C:\Windows\System32\PortableDeviceTypes.dll - ok
10:08:36.0671 5392 [ 3D6F22551D422F97AACB0BB927E4C846 ] C:\Windows\System32\pnidui.dll
10:08:36.0671 5392 C:\Windows\System32\pnidui.dll - ok
10:08:36.0679 5392 [ BD626EF05967D14C772B8096292731A3 ] C:\Windows\System32\QUTIL.DLL
10:08:36.0679 5392 C:\Windows\System32\QUTIL.DLL - ok
10:08:36.0683 5392 [ CF4274CEEA9F7791FB7FC40A066BC2C7 ] C:\Windows\System32\cscobj.dll
10:08:36.0683 5392 C:\Windows\System32\cscobj.dll - ok
10:08:36.0686 5392 [ 674B0C0F6A448EB185CAAB9C51D44032 ] C:\Windows\System32\srchadmin.dll
10:08:36.0686 5392 C:\Windows\System32\srchadmin.dll - ok
10:08:36.0689 5392 [ 236F286E103FD44BD85FDD93097FD5DD ] C:\Windows\System32\SearchIndexer.exe
10:08:36.0689 5392 C:\Windows\System32\SearchIndexer.exe - ok
10:08:36.0692 5392 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll
10:08:36.0692 5392 C:\Windows\System32\rasdlg.dll - ok
10:08:36.0695 5392 [ 9A39A2A5F443A756C568C6ED5748AFE4 ] C:\Windows\System32\ActionCenter.dll
10:08:36.0695 5392 C:\Windows\System32\ActionCenter.dll - ok
10:08:36.0697 5392 [ 04B88428A872390D235BE52D38A9D4EF ] C:\Windows\System32\dot3api.dll
10:08:36.0697 5392 C:\Windows\System32\dot3api.dll - ok
10:08:36.0700 5392 [ AC3C81118A310B2697ABFCE51AE7222B ] C:\Program Files\Common Files\Apple\Apple Application Support\ApplePushService.dll
10:08:36.0700 5392 C:\Program Files\Common Files\Apple\Apple Application Support\ApplePushService.dll - ok
10:08:36.0703 5392 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\System32\riched20.dll
10:08:36.0703 5392 C:\Windows\System32\riched20.dll - ok
10:08:36.0706 5392 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll
10:08:36.0706 5392 C:\Windows\System32\wlanhlp.dll - ok
10:08:36.0709 5392 [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll
10:08:36.0709 5392 C:\Windows\System32\UIAnimation.dll - ok
10:08:36.0712 5392 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll
10:08:36.0712 5392 C:\Windows\System32\wlanapi.dll - ok
10:08:36.0715 5392 [ 53683A331F8A1BB20ADD0330F1DE6388 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
10:08:36.0715 5392 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
10:08:36.0718 5392 [ 465DBF63A5049E4DB4BC5C12FFE781CB ] C:\Windows\System32\tquery.dll
10:08:36.0718 5392 C:\Windows\System32\tquery.dll - ok
10:08:36.0720 5392 [ 0241CB16136B9A4939CA0395768AE286 ] C:\Windows\System32\mssrch.dll
10:08:36.0720 5392 C:\Windows\System32\mssrch.dll - ok
10:08:36.0723 5392 [ 5C3F9DBA818CD93379D1A0F215270374 ] C:\Windows\System32\esent.dll
10:08:36.0723 5392 C:\Windows\System32\esent.dll - ok
10:08:36.0726 5392 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll
10:08:36.0726 5392 C:\Windows\System32\WWanAPI.dll - ok
10:08:36.0729 5392 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll
10:08:36.0729 5392 C:\Windows\System32\msidle.dll - ok
10:08:36.0731 5392 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll
10:08:36.0731 5392 C:\Windows\System32\wwapi.dll - ok
10:08:36.0734 5392 [ 8F8AB20AA863EA95A421B9D54C74F20C ] C:\Program Files\Windows Media Player\wmpnssci.dll
10:08:36.0734 5392 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
10:08:36.0737 5392 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll
10:08:36.0737 5392 C:\Windows\System32\mssprxy.dll - ok
10:08:36.0740 5392 [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll
10:08:36.0740 5392 C:\Windows\System32\FXSST.dll - ok
10:08:36.0743 5392 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll
10:08:36.0743 5392 C:\Windows\System32\FXSAPI.dll - ok
10:08:36.0745 5392 [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\System32\en-US\tquery.dll.mui
10:08:36.0745 5392 C:\Windows\System32\en-US\tquery.dll.mui - ok
10:08:36.0748 5392 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] C:\Program Files\Windows Media Player\wmpnetwk.exe
10:08:36.0748 5392 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
10:08:36.0751 5392 [ 02530B0B7E048DD5AC8D52DAEACAEB2B ] C:\Windows\System32\QAGENT.DLL
10:08:36.0751 5392 C:\Windows\System32\QAGENT.DLL - ok
10:08:36.0754 5392 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll
10:08:36.0754 5392 C:\Windows\System32\dssenh.dll - ok
10:08:36.0757 5392 [ 5CF15474FFDB5005E54958DF6EDD97AB ] C:\Windows\System32\wmdrmdev.dll
10:08:36.0757 5392 C:\Windows\System32\wmdrmdev.dll - ok
10:08:36.0760 5392 [ E3D5E244807AD655787FCD25477CC1BC ] C:\Windows\System32\bthprops.cpl
10:08:36.0760 5392 C:\Windows\System32\bthprops.cpl - ok
10:08:36.0762 5392 [ 47D052D9EE1FD3BA2A55D13F61E3EF24 ] C:\Windows\System32\drmv2clt.dll
10:08:36.0762 5392 C:\Windows\System32\drmv2clt.dll - ok
10:08:36.0765 5392 [ 1957D49A9613FAAD1C73B508CCE02AA5 ] C:\Windows\System32\wmp.dll
10:08:36.0765 5392 C:\Windows\System32\wmp.dll - ok
10:08:36.0768 5392 [ 9209994CFBDF2814AC8CB16DA267600D ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\chrome.exe
10:08:36.0768 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\chrome.exe - ok
10:08:36.0771 5392 [ 0FBC74AA20FE0AE6884279F893169C60 ] C:\Windows\System32\wmploc.DLL
10:08:36.0771 5392 C:\Windows\System32\wmploc.DLL - ok
10:08:36.0774 5392 [ F52634E7D7A363F2AB4AB2120E4A8ACE ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\chrome.dll
10:08:36.0774 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\chrome.dll - ok
10:08:36.0777 5392 [ 124715CD10C62A78404F1A3B1048D062 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
10:08:36.0777 5392 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
10:08:36.0780 5392 [ 885FD19118BC7514590C5EEF31CD7D71 ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\icudt.dll
10:08:36.0780 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\icudt.dll - ok
10:08:36.0783 5392 [ 5D1665A47DFFFB80C7519620B9A7C86E ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01.key
10:08:36.0783 5392 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01.key - ok
10:08:36.0786 5392 [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\System32\upnp.dll
10:08:36.0786 5392 C:\Windows\System32\upnp.dll - ok
10:08:36.0789 5392 [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll
10:08:36.0789 5392 C:\Windows\System32\ssdpsrv.dll - ok
10:08:36.0792 5392 [ 236360CE5E4C3F063AC110533747C0A8 ] C:\Windows\System32\Wpc.dll
10:08:36.0792 5392 C:\Windows\System32\Wpc.dll - ok
10:08:36.0794 5392 [ 5193DE33F3284C447E0D31DAFBF92570 ] C:\Windows\System32\webcheck.dll
10:08:36.0794 5392 C:\Windows\System32\webcheck.dll - ok
10:08:36.0797 5392 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll
10:08:36.0797 5392 C:\Windows\System32\mlang.dll - ok
10:08:36.0800 5392 [ E1AC89F6C5252057E6062843E36A6701 ] C:\Windows\System32\SearchProtocolHost.exe
10:08:36.0800 5392 C:\Windows\System32\SearchProtocolHost.exe - ok
10:08:36.0803 5392 [ 2DDEA2C345DA5BC589EFD398F220DB0E ] C:\Windows\System32\SyncCenter.dll
10:08:36.0803 5392 C:\Windows\System32\SyncCenter.dll - ok
10:08:36.0806 5392 [ 2D11BC8B460957E62E4420373A0D8BDA ] C:\Windows\System32\imapi2.dll
10:08:36.0806 5392 C:\Windows\System32\imapi2.dll - ok
10:08:36.0810 5392 [ 0F2F2C982672FAD5D55450298E7E962C ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\pdf.dll
10:08:36.0810 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\pdf.dll - ok
10:08:36.0813 5392 [ 8B62C93760524569B9254DB70B16D98B ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\ppgooglenaclpluginchrome.dll
10:08:36.0813 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\ppgooglenaclpluginchrome.dll - ok
10:08:36.0816 5392 [ C7952D0A4C43A965A1741916BB134751 ] C:\Windows\System32\hgcpl.dll
10:08:36.0816 5392 C:\Windows\System32\hgcpl.dll - ok
10:08:36.0820 5392 [ F37B4AEB402CE4DC7DDCC55AD0FD2EDF ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\avcodec-54.dll
10:08:36.0820 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\avcodec-54.dll - ok
10:08:36.0822 5392 [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll
10:08:36.0822 5392 C:\Windows\System32\msshooks.dll - ok
10:08:36.0825 5392 [ 325C417819712787741BB187921C395F ] C:\Program Files\Internet Explorer\ieproxy.dll
10:08:36.0825 5392 C:\Program Files\Internet Explorer\ieproxy.dll - ok
10:08:36.0828 5392 [ F3222C893BD2F5821A0179E5C71E88FB ] C:\Windows\System32\fdPHost.dll
10:08:36.0828 5392 C:\Windows\System32\fdPHost.dll - ok
10:08:36.0831 5392 [ A6CD6B3F71E13E2E45B727FB8A47EA87 ] C:\Windows\System32\SearchFilterHost.exe
10:08:36.0831 5392 C:\Windows\System32\SearchFilterHost.exe - ok
10:08:36.0833 5392 [ 3F2B83695E5BF11930C16AF50E991F96 ] C:\Windows\System32\wmpps.dll
10:08:36.0834 5392 C:\Windows\System32\wmpps.dll - ok
10:08:36.0836 5392 [ DE6F4B7E62FDE776F3DE8E5FB5A05C48 ] C:\Windows\System32\fdWSD.dll
10:08:36.0836 5392 C:\Windows\System32\fdWSD.dll - ok
10:08:36.0839 5392 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] C:\Windows\System32\FDResPub.dll
10:08:36.0839 5392 C:\Windows\System32\FDResPub.dll - ok
10:08:36.0842 5392 [ 1C9B45E87528B8BB8CFA884EA0099A85 ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\d3dcompiler_43.dll
10:08:36.0842 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\d3dcompiler_43.dll - ok
10:08:36.0845 5392 [ 8862D4B7722A3E631435C33A78BB7B20 ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\avutil-51.dll
10:08:36.0845 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\avutil-51.dll - ok
10:08:36.0848 5392 [ 674611721264013DB169EC12AFC9C3B6 ] C:\Windows\System32\fdSSDP.dll
10:08:36.0848 5392 C:\Windows\System32\fdSSDP.dll - ok
10:08:36.0852 5392 [ 92E76B2B0382A89E6A0C897D88065952 ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\avformat-54.dll
10:08:36.0852 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\avformat-54.dll - ok
10:08:36.0855 5392 [ 3FF0FA0A81910617739644A06D06D016 ] C:\Windows\System32\fdProxy.dll
10:08:36.0855 5392 C:\Windows\System32\fdProxy.dll - ok
10:08:36.0857 5392 [ 7B97346CE563B74BBCC120FC83E5A6D9 ] C:\Windows\System32\wmpmde.dll
10:08:36.0857 5392 C:\Windows\System32\wmpmde.dll - ok
10:08:36.0861 5392 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\System32\mscoree.dll
10:08:36.0861 5392 C:\Windows\System32\mscoree.dll - ok
10:08:36.0863 5392 [ 08DF1B8C9C0754A7069E80A986373F52 ] C:\Windows\System32\P2P.dll
10:08:36.0863 5392 C:\Windows\System32\P2P.dll - ok
10:08:36.0866 5392 [ 86E39E9161C3D930D93822F1563C280D ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\d3dx9_43.dll
10:08:36.0866 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\d3dx9_43.dll - ok
10:08:36.0869 5392 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] C:\Windows\System32\ListSvc.dll
10:08:36.0869 5392 C:\Windows\System32\ListSvc.dll - ok
10:08:36.0872 5392 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
10:08:36.0872 5392 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
10:08:36.0875 5392 [ 9DC23ACF360AEA7DF55AD7A8D3FBF4E6 ] C:\Windows\System32\IdListen.dll
10:08:36.0875 5392 C:\Windows\System32\IdListen.dll - ok
10:08:36.0878 5392 [ DB67C7C62038BDE813CB6486581A7611 ] C:\Windows\System32\mssph.dll
10:08:36.0878 5392 C:\Windows\System32\mssph.dll - ok
10:08:36.0881 5392 [ F059EB4C9C256F62F196EAA439E28F74 ] C:\Windows\System32\hgprint.dll
10:08:36.0881 5392 C:\Windows\System32\hgprint.dll - ok
10:08:36.0883 5392 [ 5BCFBC1BD4F8BAB9A2A15DFEAE5CE1DD ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\libglesv2.dll
10:08:36.0883 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\libglesv2.dll - ok
10:08:36.0886 5392 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\System32\d3d9.dll
10:08:36.0886 5392 C:\Windows\System32\d3d9.dll - ok
10:08:36.0889 5392 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\System32\mapi32.dll
10:08:36.0889 5392 C:\Windows\System32\mapi32.dll - ok
10:08:36.0892 5392 [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E ] C:\Windows\System32\WinSATAPI.dll
10:08:36.0892 5392 C:\Windows\System32\WinSATAPI.dll - ok
10:08:36.0895 5392 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\System32\d3d8thk.dll
10:08:36.0895 5392 C:\Windows\System32\d3d8thk.dll - ok
10:08:36.0898 5392 [ 28EE522EC405CC08A69F16A16921EF99 ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\libegl.dll
10:08:36.0898 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\libegl.dll - ok
10:08:36.0901 5392 [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
10:08:36.0901 5392 C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
10:08:36.0904 5392 [ 55D6494C2311707FD0AF7DB63DA4D656 ] C:\Windows\System32\igdumdx32.dll
10:08:36.0904 5392 C:\Windows\System32\igdumdx32.dll - ok
10:08:36.0907 5392 [ CBBD4D79EEC3EF5A4ADAE9697944C6B9 ] C:\Windows\System32\MSMPEG2ENC.DLL
10:08:36.0907 5392 C:\Windows\System32\MSMPEG2ENC.DLL - ok
10:08:36.0910 5392 [ 82A8521DDC60710C3D3D3E7325209BEC ] C:\Windows\System32\pnrpsvc.dll
10:08:36.0910 5392 C:\Windows\System32\pnrpsvc.dll - ok
10:08:36.0913 5392 [ 39C3B2EEBEE102ADDA573C346FF5F3B7 ] C:\Windows\System32\igdumd32.dll
10:08:36.0913 5392 C:\Windows\System32\igdumd32.dll - ok
10:08:36.0916 5392 [ 5BB8C06EB5EA4BA22EE8A678F2D79B25 ] C:\Windows\System32\devenum.dll
10:08:36.0916 5392 C:\Windows\System32\devenum.dll - ok
10:08:36.0918 5392 [ 7069AAB8536F29ED7323140973A2894B ] C:\Windows\System32\msdmo.dll
10:08:36.0918 5392 C:\Windows\System32\msdmo.dll - ok
10:08:36.0921 5392 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\System32\dxva2.dll
10:08:36.0921 5392 C:\Windows\System32\dxva2.dll - ok
10:08:36.0924 5392 [ 59C3DDD501E39E006DAC31BF55150D91 ] C:\Windows\System32\p2psvc.dll
10:08:36.0924 5392 C:\Windows\System32\p2psvc.dll - ok
10:08:36.0927 5392 [ 1372E8E8FD066002131E3D509275E697 ] C:\Windows\System32\P2PGraph.dll
10:08:36.0927 5392 C:\Windows\System32\P2PGraph.dll - ok
10:08:36.0929 5392 [ 833FBB672460EFCE8011D262175FAD33 ] C:\Windows\System32\upnphost.dll
10:08:36.0929 5392 C:\Windows\System32\upnphost.dll - ok
10:08:36.0932 5392 [ 3DE43BFDAF3F8979699650202AA18B12 ] C:\Windows\System32\msmpeg2vdec.dll
10:08:36.0932 5392 C:\Windows\System32\msmpeg2vdec.dll - ok
10:08:36.0935 5392 [ 53AF1750FD45DDD705C9B68C7DC58827 ] C:\Windows\System32\evr.dll
10:08:36.0935 5392 C:\Windows\System32\evr.dll - ok
10:08:36.0939 5392 [ 4FB491AC8D46AAF22BA8BC5C73DABEF7 ] C:\Windows\System32\wbem\WmiPrvSE.exe
10:08:36.0939 5392 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
10:08:36.0941 5392 [ C6B0509AA89F656247694E2D6ABF7255 ] C:\Windows\System32\wbem\wmiprov.dll
10:08:36.0941 5392 C:\Windows\System32\wbem\wmiprov.dll - ok
10:08:36.0944 5392 [ 50180B04EC08921D30B736122A691FA3 ] C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll
10:08:36.0944 5392 C:\Users\Qzee\AppData\Local\Google\Chrome\Application\23.0.1271.95\PepperFlash\pepflashplayer.dll - ok
10:08:36.0948 5392 [ 0A7B01235B1CBFA387B04A91E2F2B7D0 ] C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
10:08:36.0948 5392 C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll - ok
10:08:36.0951 5392 [ 419680FCE774976FD752EB425D91AEDF ] C:\Program Files\QuickTime\Plugins\npqtplugin.dll
10:08:36.0951 5392 C:\Program Files\QuickTime\Plugins\npqtplugin.dll - ok
10:08:36.0954 5392 [ DE5507DBA44CC5B6869205871B64A587 ] C:\Program Files\QuickTime\Plugins\npqtplugin2.dll
10:08:36.0954 5392 C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - ok
10:08:36.0957 5392 [ 2DA7883A884BE60F9EB2810F67E0E361 ] C:\Program Files\QuickTime\Plugins\npqtplugin3.dll
10:08:36.0957 5392 C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - ok
10:08:36.0960 5392 [ BB28A86CDFFFBB041C72AD9EFEAA00D0 ] C:\Program Files\QuickTime\Plugins\npqtplugin4.dll
10:08:36.0960 5392 C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - ok
10:08:36.0963 5392 [ 16112E74A62381C69456566D35F9E51E ] C:\Program Files\QuickTime\Plugins\npqtplugin5.dll
10:08:36.0963 5392 C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - ok
10:08:36.0966 5392 [ BB7F5F4966E76578A3EC0D11C444C545 ] C:\Program Files\QuickTime\Plugins\npqtplugin6.dll
10:08:36.0966 5392 C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - ok
10:08:36.0969 5392 [ 11EF47BE3D8A4A943E10A63870C1F2C6 ] C:\Program Files\QuickTime\Plugins\npqtplugin7.dll
10:08:36.0969 5392 C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - ok
10:08:36.0972 5392 [ 1CDEA9188899E76D4FFD54C9D512CCDB ] C:\Windows\System32\msxml3.dll
10:08:36.0972 5392 C:\Windows\System32\msxml3.dll - ok
10:08:36.0975 5392 [ 7E2B763CF671ADB558D5F7110889D469 ] C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL
10:08:36.0975 5392 C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL - ok
10:08:36.0977 5392 [ 7B882AEBC5F6DBEA4E0361C0FC3E36D4 ] C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL
10:08:36.0977 5392 C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL - ok
10:08:36.0981 5392 [ 84CBD6F6AA7EE399FBDC265B8EA64474 ] C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
10:08:36.0981 5392 C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - ok
10:08:36.0984 5392 [ 632F5B29E8C27631E7AC76E330FE2980 ] C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
10:08:36.0984 5392 C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - ok
10:08:36.0987 5392 [ 9013599B12923A45C029C34E8D2211AC ] C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
10:08:36.0987 5392 C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll - ok
10:08:36.0990 5392 [ 3FCF47BD73094FA62D81373515F46110 ] C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
10:08:36.0990 5392 C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - ok
10:08:36.0993 5392 [ 230EA9ABBC3432CDE388F4891E76E867 ] C:\Windows\System32\udhisapi.dll
10:08:36.0993 5392 C:\Windows\System32\udhisapi.dll - ok
10:08:36.0996 5392 [ 586FDC4E02623EE228EC35B9604AE5F2 ] C:\Users\Qzee\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll
10:08:36.0996 5392 C:\Users\Qzee\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll - ok
10:08:36.0999 5392 [ 8FE7BA502945BE735D09D5703BD76FDA ] C:\Windows\System32\Adobe\Director\np32dsw_1165635.dll
10:08:36.0999 5392 C:\Windows\System32\Adobe\Director\np32dsw_1165635.dll - ok
10:08:37.0002 5392 [ E7BC792810EC02DD1F7ED25D830E9324 ] C:\Windows\System32\Macromed\Flash\NPSWF32_11_4_402_287.dll
10:08:37.0002 5392 C:\Windows\System32\Macromed\Flash\NPSWF32_11_4_402_287.dll - ok
10:08:37.0005 5392 [ D6692338B985D4A0CA52B828314D897D ] C:\Windows\System32\drprov.dll
10:08:37.0005 5392 C:\Windows\System32\drprov.dll - ok
10:08:37.0008 5392 [ D7B7159BC8374E87D8C45A30377A3440 ] C:\Windows\System32\ntlanman.dll
10:08:37.0008 5392 C:\Windows\System32\ntlanman.dll - ok
10:08:37.0010 5392 [ 284B59D7B56FC76C80E622AB856B1FAB ] C:\Windows\System32\davclnt.dll
10:08:37.0010 5392 C:\Windows\System32\davclnt.dll - ok
10:08:37.0013 5392 [ 179BECE8D1A4C488DDB7191FF9BE3FB0 ] C:\Windows\System32\davhlpr.dll
10:08:37.0013 5392 C:\Windows\System32\davhlpr.dll - ok
10:08:37.0016 5392 [ AB87C54CA19675880B0CAE65B8AF140C ] C:\Windows\System32\npDeployJava1.dll
10:08:37.0016 5392 C:\Windows\System32\npDeployJava1.dll - ok
10:08:37.0019 5392 [ 2898035F522BA2989BBA8B9CFB020FD2 ] C:\Program Files\AVAST Software\Avast\defs\12120900\aspColl.dll
10:08:37.0019 5392 C:\Program Files\AVAST Software\Avast\defs\12120900\aspColl.dll - ok
10:08:37.0022 5392 [ 7F19838AC317C34FCED020BE529AF71E ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
10:08:37.0022 5392 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
10:08:37.0026 5392 [ E585445D5021971FAE10393F0F1C3961 ] C:\Windows\System32\qmgr.dll
10:08:37.0026 5392 C:\Windows\System32\qmgr.dll - ok
10:08:37.0028 5392 [ 0552A8684BF7566F744D5B19FF6AEC6B ] C:\Windows\System32\bitsperf.dll
10:08:37.0028 5392 C:\Windows\System32\bitsperf.dll - ok
10:08:37.0030 5392 [ F45ED8C4F9AF862CD9992849B5203C11 ] C:\Windows\System32\bitsigd.dll
10:08:37.0030 5392 C:\Windows\System32\bitsigd.dll - ok
10:08:37.0033 5392 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:08:37.0033 5392 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
10:08:37.0036 5392 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\System32\msvcr100_clr0400.dll
10:08:37.0036 5392 C:\Windows\System32\msvcr100_clr0400.dll - ok
10:08:37.0039 5392 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] C:\Windows\System32\FntCache.dll
10:08:37.0039 5392 C:\Windows\System32\FntCache.dll - ok
10:08:37.0042 5392 [ 8F97D374AD1857E1EED85A79F29A1D3D ] C:\Windows\WindowsMobile\rapimgr.dll
10:08:37.0042 5392 C:\Windows\WindowsMobile\rapimgr.dll - ok
10:08:37.0045 5392 [ B0B4C590C0CAE7741DA17E3DC86CC828 ] C:\Windows\System32\ceutil.dll
10:08:37.0045 5392 C:\Windows\System32\ceutil.dll - ok
10:08:37.0048 5392 [ 46A6BA9274D075A2C30025C4E96D875A ] C:\Windows\System32\msvcp60.dll
10:08:37.0048 5392 C:\Windows\System32\msvcp60.dll - ok
10:08:37.0050 5392 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\System32\browcli.dll
10:08:37.0050 5392 C:\Windows\System32\browcli.dll - ok
10:08:37.0053 5392 [ CF87A1DE791347E75B98885214CED2B8 ] C:\Windows\System32\sppsvc.exe
10:08:37.0053 5392 C:\Windows\System32\sppsvc.exe - ok
10:08:37.0056 5392 [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys
10:08:37.0056 5392 C:\Windows\System32\drivers\spsys.sys - ok
10:08:37.0060 5392 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] C:\Program Files\Windows Defender\MpSvc.dll
10:08:37.0060 5392 C:\Program Files\Windows Defender\MpSvc.dll - ok
10:08:37.0062 5392 [ 20308CF0675AD7CE5AAA6712DB823216 ] C:\Program Files\Windows Defender\MpClient.dll
10:08:37.0062 5392 C:\Program Files\Windows Defender\MpClient.dll - ok
10:08:37.0066 5392 [ 3A11396EAC2414012155AB14E5C1E332 ] C:\Windows\System32\sppwinob.dll
10:08:37.0066 5392 C:\Windows\System32\sppwinob.dll - ok
10:08:37.0068 5392 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
10:08:37.0068 5392 C:\Windows\System32\wuaueng.dll - ok
10:08:37.0071 5392 [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\System32\mspatcha.dll
10:08:37.0071 5392 C:\Windows\System32\mspatcha.dll - ok
10:08:37.0074 5392 [ 421D9645B72CD341ECDBB0FCE06C97DE ] C:\Windows\System32\sppobjs.dll
10:08:37.0074 5392 C:\Windows\System32\sppobjs.dll - ok
10:08:37.0077 5392 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll
10:08:37.0077 5392 C:\Windows\System32\wups2.dll - ok
10:08:37.0080 5392 [ 089B5F924E96BA9C40E4E4522BF43770 ] C:\Program Files\Windows Defender\MpRTP.dll
10:08:37.0080 5392 C:\Program Files\Windows Defender\MpRTP.dll - ok
10:08:37.0082 5392 [ 8D47D01378347889A662D54037A988CC ] C:\Windows\System32\tdh.dll
10:08:37.0082 5392 C:\Windows\System32\tdh.dll - ok
10:08:37.0085 5392 [ 11F06C27DAD83CD5E907D664CA591805 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{67F248CB-AE87-4932-81CC-4A63A4997ECD}\mpengine.dll
10:08:37.0085 5392 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{67F248CB-AE87-4932-81CC-4A63A4997ECD}\mpengine.dll - ok
10:08:37.0088 5392 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] C:\Windows\System32\drivers\asyncmac.sys
10:08:37.0088 5392 C:\Windows\System32\drivers\asyncmac.sys - ok
10:08:37.0091 5392 [ B144A2223EF11ED42310124A7839258E ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{67F248CB-AE87-4932-81CC-4A63A4997ECD}\mpasbase.vdm
10:08:37.0091 5392 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{67F248CB-AE87-4932-81CC-4A63A4997ECD}\mpasbase.vdm - ok
10:08:37.0095 5392 [ 491D79FE7444D28F809A61416CEB5A17 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{67F248CB-AE87-4932-81CC-4A63A4997ECD}\mpasdlta.vdm
10:08:37.0095 5392 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{67F248CB-AE87-4932-81CC-4A63A4997ECD}\mpasdlta.vdm - ok
10:08:37.0098 5392 [ 5826854E4E420E29F59C2865F0FA562F ] C:\Program Files\Windows Defender\MpEvMsg.dll
10:08:37.0098 5392 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
10:08:37.0101 5392 [ 59E19BD13C3BDB857646B9E436BA27F7 ] C:\Windows\WindowsMobile\wcescomm.dll
10:08:37.0101 5392 C:\Windows\WindowsMobile\wcescomm.dll - ok
10:08:37.0104 5392 [ 843D21A20736016E5613E4B51EA60D46 ] C:\Windows\System32\winusb.dll
10:08:37.0104 5392 C:\Windows\System32\winusb.dll - ok
10:08:37.0106 5392 [ 8C8C82633A7E90A33E8D7D9617B2B46C ] C:\Windows\WindowsMobile\tcp2udp.dll
10:08:37.0106 5392 C:\Windows\WindowsMobile\tcp2udp.dll - ok
10:08:37.0109 5392 [ 3379989F06B31347792836DCF028A325 ] C:\Windows\System32\rapiproxystub.dll
10:08:37.0109 5392 C:\Windows\System32\rapiproxystub.dll - ok
10:08:37.0112 5392 [ 523DF3B590D8A353A49235B1B7C571AD ] C:\Windows\WindowsMobile\dtptdns.dll
10:08:37.0112 5392 C:\Windows\WindowsMobile\dtptdns.dll - ok
10:08:37.0115 5392 [ D5D7C7CBDD63C5938C83846B313FCF3B ] C:\Windows\WindowsMobile\BthASPlugin.dll
10:08:37.0115 5392 C:\Windows\WindowsMobile\BthASPlugin.dll - ok
10:08:37.0117 5392 ============================================================
10:08:37.0117 5392 Scan finished
10:08:37.0117 5392 ============================================================
10:08:37.0125 5384 Detected object count: 10
10:08:37.0125 5384 Actual detected object count: 10
10:09:06.0757 5384 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0757 5384 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0761 5384 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0761 5384 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0762 5384 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0762 5384 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0764 5384 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0764 5384 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0765 5384 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0765 5384 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0766 5384 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0766 5384 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0767 5384 rimmptsk ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0767 5384 rimmptsk ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0768 5384 rimsptsk ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0768 5384 rimsptsk ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0769 5384 rismxdp ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0769 5384 rismxdp ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:06.0770 5384 USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
10:09:06.0770 5384 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
10:09:22.0872 3812 Deinitialize success

#10 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 09:57 AM

Sorry for the long posts Gunto. I'm glad they make sense to you cause I don't have a clue at what I'm looking at with those.

I hope they help and the news is good.

Thanks

Sue

#11 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:09:17 AM

Posted 09 December 2012 - 10:53 AM

Hi,

I'd much rather long and informative rather than short and vague! :)

Has anything gotten better since we ran these tools?

Either way, I've got some more stuff to try. :)

SUPERAntiSpyware

I need you to run a scan with SUPERAntiSpyware.

  • Download SAS from here, and save it to your desktop.
  • Double click the installer to start the installation. If you do not want to start the trial of the full version, please decline, and feel free to uncheck options to install external toolbars/software, unless you want them. Otherwise, follow the prompts and let the program install.
  • Once the program is done installing and updating, tick the Complete Scan option on the interface, and press the big Scan your Computer... button. Ensure that the options Activate Scan Boost™ > Low boost and Scan inside .ZIP archives are selected and Start Complete Scan.
  • After scanning, be sure to remove all detected threats if any were detected. If asked to reboot to remove threats, do so immediately.
  • Once finished, return to the main interface, go to View Scan Logs and view the newest log. Copy and paste it into your reply.

ESET Online Scanner

I need you to run a scan with ESET Online Scanner.

  • Download the scanner from here, and save it to your desktop.
  • Double click the file to install the program. Once it's done, accept the terms of use and click Start. Be sure the following settings are checked before beginning:
    Scan archives
    Remove found threats
    Scan potentially unwanted applications
    Scan for potentially unsafe applications
    Enable Anti-Stealth technology
  • Once the scan is done, if anything was found, click List of found threats, and then Export to text file..., and save the log to your desktop.
  • Click << Back, and then Finish. If you have to reboot, do so immediately.
  • After ESET finishes scanning and removing threats, copy and paste the log into your reply.

Junkware Removal Tool

I need you to run a scan with Junkware Removal Tool.

  • Download JRT from here, and save it to your desktop.
  • Double click the file to open it, and hit any key as per the instructions of the popped up window.
  • Once the scan is done, copy and paste the contents of the resulting log into your reply.

Please tell me how your PC is running in your next reply.

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#12 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 05:09 PM

Hi,

Sorry it took so long to get back to you, Superantispyware took 1 1/2 hours to complete.

Here's the SuperAntispyware results...

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/09/2012 at 07:37 PM

Application Version : 5.6.1014

Core Rules Database Version : 9711
Trace Rules Database Version: 7523

Scan type : Complete Scan
Total Scan Time : 00:43:25

Operating System Information
Windows 7 Professional 32-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 752
Memory threats detected : 0
Registry items scanned : 39827
Registry threats detected : 0
File items scanned : 46277
File threats detected : 20

Adware.Tracking Cookie
eas.apm.emediate.eu [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
eas.apm.emediate.eu [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.kontera.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\QZEE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]


I'll send the others separately.

Thanks

Sue

#13 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 09 December 2012 - 05:16 PM

Next is ESET Online Scanner and Junkware Removal log.


C:\Users\Qzee\Downloads\cbsidlm-tr1_7-iPhone_Backup_Extractor-75373326 (1).exe Win32/DownloadAdmin.D application cleaned by deleting - quarantined
C:\Users\Qzee\Downloads\cbsidlm-tr1_7-iPhone_Backup_Extractor-75373326.exe Win32/DownloadAdmin.D application cleaned by deleting - quarantined
C:\Users\Qzee\Downloads\cbsidlm-tr1_7-Manic_Miner_for_Windows-ORG2-10436161.exe Win32/DownloadAdmin.D application cleaned by deleting - quarantined
C:\Users\Qzee\Downloads\iphonebackupextractor-latest.exe Win32/OpenCandy application cleaned by deleting - quarantined






~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.0.2 (12.09.2012:2)
OS: Windows 7 Professional x86
Ran by Qzee on 09/12/2012 at 22:01:39.82
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\urlsearchhooks\\{ebd898f8-fcf6-4694-bc3b-eabc7271eeb1}



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Qzee\appdata\locallow\wiseconvert"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09/12/2012 at 22:05:11.71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

My laptop does seem quicker than before but still 'hangs' occasionally.

thanks

Sue

#14 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:09:17 AM

Posted 10 December 2012 - 04:13 AM

Hi,

How long would you say it hangs for? Are you having any other symptoms?

Things appear to be looking good so far, though I've got a couple more things to run. :)

HostsXpert

I need you to replace your HOSTS file using HostsXpert.

  • Download HostsXpert from here, and save it to your desktop.
  • Extract the contents of the zipped file to your desktop. Open up the HostsXpert.exe file.
  • Click Restore MS Hosts File. Confirm the operation when prompted.
  • Click Make ReadOnly?. Close the program when done.

Security Check

I need you to run a checkup with Security Check.

  • Download Security Check here, and save it to your desktop.
  • Double click the file to run it. In the first screen, hit any key and let the scan run.
  • Once the scan is finished, copy and paste the resulting log into your reply.

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#15 SuzyQ5943

SuzyQ5943
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:11:17 AM

Posted 10 December 2012 - 04:59 AM

Good Morning Gunto,


I've just had trouble getting access to BleepingComputer.com, kept timing out before loading, not sure if that was just one of those things this morning as everything else seems to load easily and quickly, even rebooting etc is a lot quicker.

I've just tried to carry out your instructions regarding HostsXpert but after downloading the program without any difficulties, when I try and restore MS Hosts Files I get an error message. I tried to paste a copy of my print screen but it won't allow me to. The message is........ Cannot create file C:\Windows\system32\DRIVERS\ETC\hosts.

Have I done something wrong.
I've not done the security check yet in case you wanted scans etc done in a certain order.

Thanks


Sue




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users