Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HELP needed - Websites keep redirecting


  • This topic is locked This topic is locked
19 replies to this topic

#1 aarthiyamu

aarthiyamu

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 14 December 2012 - 07:42 AM

I clicked on a Spam link and I got infected by a UKash ransomware. I have K7 installed and it did not identify it. I googled for help and scanned the system with Malware Bytes and it detected and removed the ransomware.

However, I keep getting notifications saying that Malware bytes blocked outgoing traffic to 195.88.209.15. I can also see "IP-BLOCK 195.88.209.15 (Type: outgoing)" in the log.

Moreover, when I try to surf the internet it gets randomly redirected to random websites. I ran both rkill and tdsskiller - both did not detect anything. I tried running combofix against the advice given in this forum as I was very desperate to get my laptop cleaned (Sorry!!).

The DSS.txt content is below. Any help on this is much appreciated. I am a student and I am in the middle of preparing my university thesis, so the sooner I can get my laptop clean the better it will be for me.

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7600.16385
Run by Dell at 17:52:05 on 2012-12-14
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2997.1422 [GMT 0:00]
.
AV: K7TotalSecurity *Enabled/Updated* {96053243-D4B1-7CB4-BBA0-4BFBC0A5A129}
SP: K7TotalSecurity *Enabled/Updated* {2D64D3A7-F28B-733A-8110-7089BB22EB94}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: K7TotalSecurity *Enabled* {AE3EB366-9EDE-7DEC-90FF-E2CE3E76E652}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\Program Files\K7 Computing\K7TSecurity\K7CrvSvc.exe
C:\Program Files\K7 Computing\K7TSecurity\K7TSMngr.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Windows\system32\NLSSRV32.EXE
C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe
C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\ProgramData\Reliance Netconnect+\OnlineUpdate\ouc.exe
C:\Program Files\K7 Computing\K7TSecurity\K7EmlPxy.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\K7 Computing\K7TSecurity\K7FWSrvc.exe
C:\Program Files\K7 Computing\K7TSecurity\K7PSSrvc.exe
C:\Program Files\K7 Computing\K7TSecurity\K7RTScan.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtWlan.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\K7 Computing\K7TSecurity\k7tsecurity.exe
C:\Program Files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe
C:\Program Files\K7 Computing\K7TSecurity\K7SysMon.Exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Common Files\Speedbit\SbUpdate\SBUpdate.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.speedbit.com/?aff=svd_0
uWindows: Load = c:\users\dell\locals~1\temp\msceadi.bat
BHO: K7 Web Protection: {08B3B4B6-02DA-4658-8BA6-5974E3EBB03D} - c:\program files\k7 computing\k7tsecurity\K7SRExt.dll
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: SearchPredictObj Class: {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - c:\program files\searchpredict\SearchPredict.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: SBCONVERT Class: {92A9ACF4-9333-43AE-9698-DB283326F87F} - c:\program files\speedbit video downloader\toolbar\tbcore3.dll
BHO: GrabberObj Class: {FF7C3CF0-4B15-11D1-ABED-709549C10000} - c:\program files\speedbit video downloader\toolbar\Grabber.dll
TB: IE Toolbar: {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - c:\program files\speedbit video downloader\toolbar\tbcore3.dll
mRun: [K7TSStart] c:\program files\k7 computing\k7tsecurity\K7TSecurity.exe
mRun: [SmartSoft PDF Printer Agent] "c:\program files\smart pdf creator\SmartSoft PDF Printer Agent.exe"
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
mRun: [MCtlSuc] c:\program files\bsnl 3g data card\bsnl 3g\resource\MCtlSuc.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [Anvi Smart Defender] c:\program files\anvisoft\anvi smart defender\ASDTray.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [ADBlocker] c:\program files\anvisoft\anvi smart defender\toolbox\adblocker\ADBlockerTray.exe -tray
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: &Clean Traces - c:\program files\dap\privacy package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\dap\dapextie.htm
IE: Download &all with DAP - c:\program files\dap\dapextie2.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{439DDD6E-15D5-41C7-8F49-47FC4D6F02F6} : DHCPNameServer = 192.168.1.1
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\dap\dapie.dll
Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\program files\dap\dapie.dll
Notify: igfxcui - igfxdev.dll
SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\dell\appdata\roaming\mozilla\firefox\profiles\44mfo1do.default\
FF - prefs.js: browser.search.defaulturl - hxxp://home.speedbit.com/search.aspx?site=shdefault&pid=%s&aid=%s&shr=%d&q=
FF - prefs.js: browser.search.selectedEngine - Speedbit
FF - prefs.js: browser.startup.homepage - hxxp://home.speedbit.com/?pid=%s&aid=%s
FF - prefs.js: keyword.URL - hxxp://home.speedbit.com/search.aspx?site=shdefault&pid=%s&aid=%s&shr=%d&q=
FF - plugin: c:\program files\google\update\1.3.21.124\npGoogleUpdate3.dll
FF - plugin: c:\program files\k7 computing\k7tsecurity\npk7srnpext.dll
FF - ExtSQL: 2012-12-11 19:24; k7srff@k7computing.com; c:\program files\k7 computing\k7tsecurity\K7SR
.
============= SERVICES / DRIVERS ===============
.
R0 K7FWHlpr;K7FWHlpr;c:\windows\system32\drivers\K7FWHlpr.sys [2012-4-9 87392]
R0 K7Sentry;K7AntiVirus MiniFilter Driver;c:\windows\system32\drivers\K7Sentry.sys [2012-4-9 1080800]
R1 asdnet;asdnet;c:\program files\anvisoft\anvi smart defender\toolbox\adblocker\sys\x86\asdnet.sys [2012-12-10 15696]
R1 asdrm;asdrm;c:\windows\system32\drivers\asdrm.sys [2012-12-10 16208]
R2 ADBlockerSrv;AD Blocker Service;c:\program files\anvisoft\anvi smart defender\toolbox\adblocker\ADBlockerSrv.exe [2012-12-10 279368]
R2 AERTFilters;Andrea RT Filters Service;c:\program files\realtek\audio\hda\AERTSrv.exe [2011-7-7 87968]
R2 asdrs;AntiMalware Host-based Intrusion Prevention System;c:\windows\system32\drivers\asdrs.sys [2012-12-10 22864]
R2 asdsrv;Anvi Smart Defender Realtime Guard Service;c:\program files\anvisoft\anvi smart defender\ASDSrv.exe [2012-11-15 701720]
R2 asdws;AnviSmartDefender Web Guard;c:\windows\system32\drivers\asdws.sys [2012-12-10 14160]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\datacardservice\HWDeviceService.exe [2011-3-14 271712]
R2 K7CrvSvc;K7Carnivore Service;c:\program files\k7 computing\k7tsecurity\k7crvsvc.exe [2011-11-15 262752]
R2 K7EmlPxy;K7Computng - EMail Proxy Server;c:\program files\k7 computing\k7tsecurity\k7emlpxy.exe [2012-11-22 153184]
R2 K7FWSrvc;K7Firewall Services;c:\program files\k7 computing\k7tsecurity\k7fwsrvc.exe [2012-11-16 243296]
R2 K7PSSrvc;K7Privacy Services;c:\program files\k7 computing\k7tsecurity\k7pssrvc.exe [2012-10-12 166496]
R2 K7RTScan;K7RealTime AntiVirus Services;c:\program files\k7 computing\k7tsecurity\k7rtscan.exe [2012-11-5 205408]
R2 K7TSMngr;K7TotalSecurity Manager;c:\program files\k7 computing\k7tsecurity\k7tsmngr.exe [2012-11-9 219248]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2012-12-11 399432]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-12-11 676936]
R2 nlsX86cc;NLS Service;c:\windows\system32\NLSSRV32.EXE [2011-12-20 68896]
R2 QDLService2kDell;Qualcomm Gobi 2000 Download Service (Dell);c:\program files\qualcomm\qdlservice2k\QDLService2kDell.exe [2010-1-14 330488]
R2 Realtek11nCU;Realtek11nCU;c:\program files\edimax\11n usb wireless lan utility\RtlService.exe [2012-11-18 36864]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2011-10-20 73216]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-2-26 132480]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2011-7-7 65576]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-11 22856]
R3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\drivers\rtl8192cu.sys [2012-11-18 648808]
S2 Reliance Netconnect. RunOuc;Reliance Netconnect. OUC;c:\program files\reliance netconnect+\updatedog\ouc.exe [2011-10-20 218624]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-11-9 160944]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2011-7-7 29472]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2011-10-20 102784]
S3 HSPADataCardusbmdm;HSPADataCard Proprietary USB Driver;c:\windows\system32\drivers\HSPADataCardusbmdm.sys [2011-7-18 106112]
S3 HSPADataCardusbnmea;HSPADataCard NMEA Port;c:\windows\system32\drivers\HSPADataCardusbnmea.sys [2011-7-18 106112]
S3 HSPADataCardusbser;HSPADataCard Diagnostic Port;c:\windows\system32\drivers\HSPADataCardusbser.sys [2011-7-18 106112]
S3 HSPADataCardusbvoice;HSPADataCard VoUSB Port;c:\windows\system32\drivers\HSPADataCardusbvoice.sys [2011-7-18 106112]
S3 K7SpmSrc;K7SpmSrc;c:\program files\k7 computing\k7tsecurity\K7SpmSrc.exe [2012-6-21 281216]
S3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2012-12-11 31560]
S4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\microsoft visual studio 8\common7\ide\remote debugger\x86\msvsmon.exe [2005-9-23 2799808]
.
=============== File Associations ===============
.
FileExt: .txt: Applications\Winword.exe="c:\program files\microsoft office\office12\WINWORD.EXE" /n /dde [UserChoice] [default=edit - 'Open' doesn't exist]
.
=============== Created Last 30 ================
.
2012-12-11 18:56:57 -------- d-----w- c:\users\dell\appdata\roaming\Malwarebytes
2012-12-11 18:56:51 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-11 18:56:51 -------- d-----w- c:\programdata\Malwarebytes
2012-12-11 18:56:50 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-12-11 18:15:15 227328 ----a-w- c:\windows\system32\taskmgr - Copy.exe
2012-12-11 18:08:20 -------- d-----w- c:\windows\pss
2012-12-11 14:34:41 31560 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2012-12-11 04:36:13 185584 --sha-w- c:\programdata\ms00044DB2.dat
2012-12-10 02:44:04 -------- d-----w- c:\users\dell\appdata\roaming\Anvisoft
2012-12-10 02:44:00 22864 ----a-w- c:\windows\system32\drivers\asdrs.sys
2012-12-10 02:44:00 16208 ----a-w- c:\windows\system32\drivers\asdrm.sys
2012-12-10 02:44:00 14160 ----a-w- c:\windows\system32\drivers\asdws.sys
2012-12-10 02:43:57 -------- d-----w- c:\programdata\Anvisoft
2012-12-10 02:43:56 -------- d-----w- c:\program files\Anvisoft
2012-12-10 02:07:20 -------- d-----w- c:\windows\DDABC66756B3412282B02F5782EA2F9A.TMP
2012-12-04 19:42:58 -------- d-----w- c:\users\dell\appdata\local\Google
2012-12-01 23:17:48 114688 --sha-r- c:\windows\system32\msacm325.dll
2012-11-27 19:29:03 -------- d-----r- c:\program files\Skype
2012-11-22 18:58:15 139374 ----a-w- c:\windows\system32\dlhsszil.dll
2012-11-20 20:05:49 -------- d-----w- c:\users\dell\appdata\local\Deployment
2012-11-20 20:05:49 -------- d-----w- c:\users\dell\appdata\local\Apps
2012-11-18 10:02:52 -------- d-----w- c:\program files\Cisco
2012-11-18 10:01:10 648808 ----a-r- c:\windows\system32\drivers\rtl8192cu.sys
2012-11-18 10:01:07 614400 ------r- c:\windows\Rtlihvs.dll
2012-11-18 10:01:06 188416 ------r- c:\windows\RTLExtUI.dll
2012-11-18 10:01:02 380928 ------r- c:\windows\system32\RtlUI2.exe
2012-11-18 10:00:34 380928 ------r- c:\windows\RtlUI2.exe
2012-11-18 10:00:33 614400 ------r- c:\windows\system32\Rtlihvs.dll
2012-11-18 10:00:33 188416 ------r- c:\windows\system32\RTLExtUI.dll
2012-11-18 10:00:30 -------- d-----w- c:\program files\Edimax
2012-11-18 10:00:29 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
.
==================== Find3M ====================
.
2012-11-21 14:56:10 87392 ----a-w- c:\windows\system32\drivers\K7FWHlpr.sys
2012-11-13 06:27:54 1080800 ----a-w- c:\windows\system32\drivers\K7Sentry.sys
.
============= FINISH: 17:55:53.49 ===============

BC AdBot (Login to Remove)

 


#2 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 14 December 2012 - 07:46 AM

I did attach the attach.txt file in the previous post, but I couldn't see it in the post. So attaching it here again.

P.S.: bleepingcomputer.com get redirected most of the time so posting this from another machine. Thanks in advance for the help!

Attached Files



#3 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:32 PM

Posted 14 December 2012 - 09:55 AM

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#4 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 14 December 2012 - 06:43 PM

Thanks for the help Gringo!

checkup.txt
***********

Results of screen317's Security Check version 0.99.56
Windows 7 x86 (UAC is enabled)
Out of date service pack!!
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Enabled!
K7TotalSecurity
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.1.1000
Java 2 Platform, Enterprise Edition 1.4 SDK
Java version out of Date!
Adobe Flash Player 10 Flash Player out of Date!
Adobe Flash Player 11.1.102.55
Adobe Reader 9 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
Google Chrome 23.0.1271.97
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbamgui.exe
Malwarebytes' Anti-Malware mbamscheduler.exe
Anvisoft Anvi Smart Defender toolbox adblocker\ADBlockerSrv.exe
Anvisoft Anvi Smart Defender ASDSrv.exe
Anvisoft Anvi Smart Defender ASDTray.exe
Anvisoft Anvi Smart Defender toolbox adblocker\ADBlockerTray.exe
Reliance Netconnect+ OnlineUpdate ouc.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 2%
````````````````````End of Log``````````````````````

AdwCleaner[S1].txt
******************

# AdwCleaner v2.100 - Logfile created 12/14/2012 at 23:45:58
# Updated 09/12/2012 by Xplode
# Operating system : Windows 7 Ultimate (32 bits)
# User : Dell - DELL-PC
# Boot Mode : Normal
# Running from : C:\Users\Dell\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Users\Dell\AppData\LocalLow\Toolbar4

***** [Registry] *****

Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

Profile name : default
File : C:\Users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\44mfo1do.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v23.0.1271.97

File : C:\Users\Dell\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [5478 octets] - [14/12/2012 23:45:58]

########## EOF - C:\AdwCleaner[S1].txt - [5538 octets] ##########

#5 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 14 December 2012 - 06:45 PM

RKreport[2]_D_12142012_02d2351.txt
***********************************

RogueKiller V8.4.0 [Dec 14 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7600 ) 32 bits version
Started in : Normal mode
User : Dell [Admin rights]
Mode : Remove -- Date : 12/14/2012 23:51:21

¤¤¤ Bad processes : 2 ¤¤¤
[SUSP PATH] ouc.exe -- C:\ProgramData\Reliance Netconnect+\OnlineUpdate\ouc.exe -> KILLED [TermProc]
[SUSP PATH] DCSHelper.exe -- C:\ProgramData\DatacardService\DCSHelper.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 4 ¤¤¤
[SHELL][Rans.Gendarm] HKCU\[...]\Windows : Load (C:\Users\Dell\LOCALS~1\Temp\msceadi.bat) -> DELETED
[HJPOL] HKCU\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤
[ZeroAccess][FILE] @ : C:\$recycle.bin\S-1-5-21-3520021233-3156620484-2890800787-1000\$e634e35402e6a8101f09178db0979bc5\@ --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-3520021233-3156620484-2890800787-1000\$e634e35402e6a8101f09178db0979bc5\U --> REMOVED
[ZeroAccess][FOLDER] ROOT : C:\$recycle.bin\S-1-5-21-3520021233-3156620484-2890800787-1000\$e634e35402e6a8101f09178db0979bc5\L --> REMOVED

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ Infection : ZeroAccess|Rans.Gendarm ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST9500325AS ATA Device +++++
--- User ---
[MBR] 5b283484c5bed2086f2eab0d2f2d85e1
[BSP] d62f5b7c210f030c00136dcd840c928f : Linux MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 49900 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 102402048 | Size: 100000 Mo
3 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 307204094 | Size: 326937 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_12142012_02d2351.txt >>
RKreport[1]_S_12142012_02d2350.txt ; RKreport[2]_D_12142012_02d2351.txt

Waiting for your next instruction(s).

Thanks!
Aarthi

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:32 PM

Posted 14 December 2012 - 09:12 PM

Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 15 December 2012 - 03:21 PM

Thanks Gringo!

I disabled K7 antivirus by right clicking on the system tray icon and clicking on "Disable product protection" and disabled it for an hour. I followed this step to disable as advised by the K7 website.

I ran combofix afterwards. However combofix warned about K7 still running. Since I was sure that I disabled K7, I ran combofix anyway.

Here is the log from the combofix run.

ComboFix 12-12-14.01 - Dell 15-Dec-12 20:00:14.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2997.2035 [GMT 0:00]
Running from: c:\users\Dell\Desktop\ComboFix.exe
AV: K7TotalSecurity *Enabled/Updated* {96053243-D4B1-7CB4-BBA0-4BFBC0A5A129}
FW: K7TotalSecurity *Enabled* {AE3EB366-9EDE-7DEC-90FF-E2CE3E76E652}
SP: K7TotalSecurity *Enabled/Updated* {2D64D3A7-F28B-733A-8110-7089BB22EB94}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
/wow section - STAGE 4
Access is denied.
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\SpeedBit Video Downloader\Toolbar\tbhelper.dll
c:\programdata\E90DEA01sm.pad
c:\programdata\ms00044DB2.dat
c:\users\Dell\AppData\Roaming\8BC3DC
c:\users\Dell\AppData\Roaming\8BC3DC\8BC3DC.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-11-15 to 2012-12-15 )))))))))))))))))))))))))))))))
.
.
2012-12-15 20:08 . 2012-12-15 20:09 -------- d-----w- c:\users\Dell\AppData\Local\temp
2012-12-15 20:08 . 2012-12-15 20:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-11 18:56 . 2012-12-11 18:56 -------- d-----w- c:\users\Dell\AppData\Roaming\Malwarebytes
2012-12-11 18:56 . 2012-12-11 18:56 -------- d-----w- c:\programdata\Malwarebytes
2012-12-11 18:56 . 2012-09-29 19:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-11 18:56 . 2012-12-11 18:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-12-11 18:15 . 2009-07-14 01:14 227328 ----a-w- c:\windows\system32\taskmgr - Copy.exe
2012-12-11 14:34 . 2012-12-11 14:34 31560 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2012-12-11 04:32 . 2012-12-11 04:32 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-12-10 02:44 . 2012-12-10 02:44 -------- d-----w- c:\users\Dell\AppData\Roaming\Anvisoft
2012-12-10 02:44 . 2012-11-07 07:16 22864 ----a-w- c:\windows\system32\drivers\asdrs.sys
2012-12-10 02:44 . 2012-11-07 07:16 14160 ----a-w- c:\windows\system32\drivers\asdws.sys
2012-12-10 02:44 . 2012-11-07 07:16 16208 ----a-w- c:\windows\system32\drivers\asdrm.sys
2012-12-10 02:43 . 2012-12-10 02:43 -------- d-----w- c:\programdata\Anvisoft
2012-12-10 02:43 . 2012-12-10 02:43 -------- d-----w- c:\program files\Anvisoft
2012-12-10 02:07 . 2012-12-11 18:04 -------- d-----w- c:\windows\DDABC66756B3412282B02F5782EA2F9A.TMP
2012-12-04 19:43 . 2012-12-11 22:53 -------- d-----w- c:\program files\Google
2012-12-04 19:42 . 2012-12-04 23:22 -------- d-----w- c:\users\Dell\AppData\Local\Google
2012-12-01 23:17 . 2012-12-01 23:17 114688 --sha-r- c:\windows\system32\msacm325.dll
2012-11-27 19:29 . 2012-11-27 19:29 -------- d-----w- c:\program files\Common Files\Skype
2012-11-27 19:29 . 2012-11-27 19:29 -------- d-----r- c:\program files\Skype
2012-11-22 18:58 . 2010-03-29 15:00 139374 ----a-w- c:\windows\system32\dlhsszil.dll
2012-11-20 20:05 . 2012-12-04 23:21 -------- d-----w- c:\users\Dell\AppData\Local\Deployment
2012-11-20 20:05 . 2012-11-20 20:05 -------- d-----w- c:\users\Dell\AppData\Local\Apps
2012-11-18 10:02 . 2012-11-18 10:03 -------- d-----w- c:\program files\Cisco
2012-11-18 10:01 . 2010-08-06 06:47 648808 ----a-r- c:\windows\system32\drivers\rtl8192cu.sys
2012-11-18 10:01 . 2010-04-01 02:37 614400 ------r- c:\windows\Rtlihvs.dll
2012-11-18 10:01 . 2010-04-01 02:37 188416 ------r- c:\windows\RTLExtUI.dll
2012-11-18 10:01 . 2010-04-01 02:37 380928 ------r- c:\windows\system32\RtlUI2.exe
2012-11-18 10:00 . 2010-04-01 02:37 380928 ------r- c:\windows\RtlUI2.exe
2012-11-18 10:00 . 2010-04-01 02:37 614400 ------r- c:\windows\system32\Rtlihvs.dll
2012-11-18 10:00 . 2010-04-01 02:37 188416 ------r- c:\windows\system32\RTLExtUI.dll
2012-11-18 10:00 . 2012-11-18 10:00 -------- d-----w- c:\program files\Edimax
2012-11-18 10:00 . 2009-02-05 02:49 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-21 14:56 . 2012-04-09 11:50 87392 ----a-w- c:\windows\system32\drivers\K7FWHlpr.sys
2012-11-13 06:27 . 2012-04-09 11:50 1080800 ----a-w- c:\windows\system32\drivers\K7Sentry.sys
2012-11-29 08:27 . 2012-12-11 04:32 262112 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{389943B0-C3A2-4E69-82CB-8596A84CB3DC}]
2011-06-28 12:11 498840 ----a-w- c:\program files\SearchPredict\SearchPredict.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{92A9ACF4-9333-43AE-9698-DB283326F87F}]
2012-06-20 08:31 2660016 ----a-w- c:\program files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"K7TSStart"="c:\program files\K7 Computing\K7TSecurity\K7TSecurity.exe" [2012-11-02 162400]
"SmartSoft PDF Printer Agent"="c:\program files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe" [2011-07-19 50560]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-02-02 8493600]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 172568]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"MCtlSuc"="c:\program files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe" [2010-01-13 91136]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 137752]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 171032]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Anvi Smart Defender"="c:\program files\Anvisoft\Anvi Smart Defender\ASDTray.exe" [2012-11-15 1437464]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-02 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"ADBlocker"="c:\program files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe" [2012-11-14 962888]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-1 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0K7TSDbg
.
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [x]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 Reliance Netconnect. RunOuc;Reliance Netconnect. OUC;c:\program files\Reliance Netconnect+\UpdateDog\ouc.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 esgiguard;esgiguard; [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]
R3 HSPADataCardusbmdm;HSPADataCard Proprietary USB Driver;c:\windows\system32\DRIVERS\HSPADataCardusbmdm.sys [x]
R3 HSPADataCardusbnmea;HSPADataCard NMEA Port;c:\windows\system32\DRIVERS\HSPADataCardusbnmea.sys [x]
R3 HSPADataCardusbser;HSPADataCard Diagnostic Port;c:\windows\system32\DRIVERS\HSPADataCardusbser.sys [x]
R3 HSPADataCardusbvoice;HSPADataCard VoUSB Port;c:\windows\system32\DRIVERS\HSPADataCardusbvoice.sys [x]
R3 K7SpmSrc;K7SpmSrc;c:\program files\K7 Computing\K7TSecurity\K7SpmSrc.exe [x]
R3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [x]
S0 K7FWHlpr;K7FWHlpr;c:\windows\system32\drivers\K7FWHlpr.sys [x]
S0 K7Sentry;K7AntiVirus MiniFilter Driver;c:\windows\system32\drivers\K7Sentry.sys [x]
S1 asdnet;asdnet;c:\program files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys [x]
S1 asdrm;asdrm;c:\windows\system32\DRIVERS\asdrm.sys [x]
S2 ADBlockerSrv;AD Blocker Service;c:\program files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSrv.exe [x]
S2 asdrs;AntiMalware Host-based Intrusion Prevention System;c:\windows\system32\DRIVERS\asdrs.sys [x]
S2 asdsrv;Anvi Smart Defender Realtime Guard Service;c:\program files\Anvisoft\Anvi Smart Defender\ASDSrv.exe [x]
S2 asdws;AnviSmartDefender Web Guard;c:\windows\system32\DRIVERS\asdws.sys [x]
S2 K7CrvSvc;K7Carnivore Service;c:\program files\K7 Computing\K7TSecurity\K7CrvSvc.exe [x]
S2 K7EmlPxy;K7Computng - EMail Proxy Server;c:\program files\K7 Computing\K7TSecurity\K7EmlPxy.exe [x]
S2 K7FWSrvc;K7Firewall Services;c:\program files\K7 Computing\K7TSecurity\K7FWSrvc.exe [x]
S2 K7PSSrvc;K7Privacy Services;c:\program files\K7 Computing\K7TSecurity\K7PSSrvc.exe [x]
S2 K7RTScan;K7RealTime AntiVirus Services;c:\program files\K7 Computing\K7TSecurity\K7RTScan.exe [x]
S2 K7TSMngr;K7TotalSecurity Manager;c:\program files\K7 Computing\K7TSecurity\K7TSMngr.exe [x]
S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
S2 nlsX86cc;NLS Service;c:\windows\system32\NLSSRV32.EXE [x]
S2 QDLService2kDell;Qualcomm Gobi 2000 Download Service (Dell);c:\program files\QUALCOMM\QDLService2k\QDLService2kDell.exe [x]
S2 Realtek11nCU;Realtek11nCU;c:\program files\Edimax\11n USB Wireless LAN Utility\RtlService.exe [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [x]
S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192cu.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-12-11 22:52]
.
2012-12-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-12-11 22:52]
.
2012-12-15 c:\windows\Tasks\ieihbtjllg.job
- c:\windows\system32\msacm325.dll [2012-12-01 23:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.speedbit.com/?aff=svd_0
IE: &Clean Traces - c:\program files\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.1
Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DAP\dapie.dll
Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DAP\dapie.dll
FF - ProfilePath - c:\users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\44mfo1do.default\
FF - prefs.js: browser.search.defaulturl - hxxp://home.speedbit.com/search.aspx?site=shdefault&pid=%s&aid=%s&shr=%d&q=
FF - prefs.js: browser.search.selectedEngine - Speedbit
FF - prefs.js: browser.startup.homepage - hxxp://home.speedbit.com/?pid=%s&aid=%s
FF - prefs.js: keyword.URL - hxxp://home.speedbit.com/search.aspx?site=shdefault&pid=%s&aid=%s&shr=%d&q=
FF - ExtSQL: 2012-12-11 19:24; k7srff@k7computing.com; c:\program files\K7 Computing\K7TSecurity\K7SR
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-A&APress - Free IELTS Exercises_is1 - c:\a&apress - free ielts exercises\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\esgiguard]
"ImagePath"=""
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-12-15 20:11:37
ComboFix-quarantined-files.txt 2012-12-15 20:11
.
Pre-Run: 27,317,874,688 bytes free
Post-Run: 27,857,809,408 bytes free
.
- - End Of File - - DD4E61FD9A105E5939055ED248E0F403


I restarted the machine after the combofix run. Nothing has changed. The redirections are still happening :(. Browsing is slow as well. The Malware Bytes warning came again "Successfully blocked access to a potentially malicious website: 195.88.209.15 Type:Outgoing Port:49267 Process:rundll32.exe"

Kindly let me know how to proceed. Thanks!

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:32 PM

Posted 15 December 2012 - 03:33 PM

Hello aarthiyamu

I want you to run these next,

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 15 December 2012 - 04:57 PM

Thanks Gringo!

Ran TDSSKiller and aswMBR and the logs are below. Cure option was not available, so Skip was chosen.

TDSSKiller.2.8.15.0_15.12.2012_21.46.36_log.txt
************************************************

21:46:36.0489 3756 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:46:36.0520 3756 ============================================================
21:46:36.0520 3756 Current date / time: 2012/12/15 21:46:36.0520
21:46:36.0520 3756 SystemInfo:
21:46:36.0520 3756
21:46:36.0520 3756 OS Version: 6.1.7600 ServicePack: 0.0
21:46:36.0520 3756 Product type: Workstation
21:46:36.0520 3756 ComputerName: DELL-PC
21:46:36.0520 3756 UserName: Dell
21:46:36.0520 3756 Windows directory: C:\Windows
21:46:36.0520 3756 System windows directory: C:\Windows
21:46:36.0520 3756 Processor architecture: Intel x86
21:46:36.0520 3756 Number of processors: 4
21:46:36.0520 3756 Page size: 0x1000
21:46:36.0520 3756 Boot type: Normal boot
21:46:36.0520 3756 ============================================================
21:46:42.0152 3756 BG loaded
21:46:42.0557 3756 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:46:42.0573 3756 ============================================================
21:46:42.0573 3756 \Device\Harddisk0\DR0:
21:46:42.0588 3756 MBR partitions:
21:46:42.0588 3756 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:46:42.0588 3756 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6176000
21:46:42.0588 3756 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x61A8800, BlocksNum 0xC350000
21:46:42.0620 3756 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x124F9000, BlocksNum 0xC350000
21:46:43.0275 3756 \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x1E849800, BlocksNum 0xC350000
21:46:43.0353 3756 \Device\Harddisk0\DR0\Partition6: MBR, Type 0x7, StartLBA 0x2AB9A000, BlocksNum 0xC350000
21:46:43.0712 3756 ============================================================
21:46:43.0774 3756 C: <-> \Device\Harddisk0\DR0\Partition2
21:46:43.0852 3756 F: <-> \Device\Harddisk0\DR0\Partition3
21:46:43.0930 3756 G: <-> \Device\Harddisk0\DR0\Partition4
21:46:44.0008 3756 H: <-> \Device\Harddisk0\DR0\Partition5
21:46:44.0148 3756 I: <-> \Device\Harddisk0\DR0\Partition6
21:46:44.0148 3756 ============================================================
21:46:44.0148 3756 Initialize success
21:46:44.0148 3756 ============================================================
21:47:09.0779 4240 ============================================================
21:47:09.0779 4240 Scan started
21:47:09.0779 4240 Mode: Manual; SigCheck; TDLFS;
21:47:09.0779 4240 ============================================================
21:47:12.0618 4240 ================ Scan system memory ========================
21:47:12.0618 4240 System memory - ok
21:47:12.0634 4240 ================ Scan services =============================
21:47:13.0414 4240 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:47:14.0272 4240 1394ohci - ok
21:47:14.0319 4240 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
21:47:14.0335 4240 ACPI - ok
21:47:14.0350 4240 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
21:47:14.0413 4240 AcpiPmi - ok
21:47:14.0569 4240 [ ED6D98E58406F2779C844943076EB4EE ] ADBlockerSrv C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
21:47:14.0693 4240 ADBlockerSrv - ok
21:47:14.0756 4240 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:47:14.0787 4240 adp94xx - ok
21:47:14.0818 4240 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:47:14.0849 4240 adpahci - ok
21:47:14.0865 4240 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:47:14.0912 4240 adpu320 - ok
21:47:14.0927 4240 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:47:15.0037 4240 AeLookupSvc - ok
21:47:15.0068 4240 [ A6CE73469591554279DA63BE715DBC93 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
21:47:15.0239 4240 AERTFilters - ok
21:47:15.0271 4240 [ DDC040FDB01EF1712A6B13E52AFB104C ] AFD C:\Windows\system32\drivers\afd.sys
21:47:15.0411 4240 AFD - ok
21:47:15.0442 4240 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
21:47:15.0536 4240 agp440 - ok
21:47:15.0567 4240 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
21:47:15.0583 4240 aic78xx - ok
21:47:15.0629 4240 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
21:47:15.0692 4240 ALG - ok
21:47:15.0707 4240 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
21:47:15.0723 4240 aliide - ok
21:47:15.0754 4240 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
21:47:15.0801 4240 amdagp - ok
21:47:15.0817 4240 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
21:47:15.0832 4240 amdide - ok
21:47:15.0848 4240 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:47:15.0879 4240 AmdK8 - ok
21:47:15.0895 4240 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:47:15.0941 4240 AmdPPM - ok
21:47:15.0973 4240 [ 2101A86C25C154F8314B24EF49D7FBC2 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
21:47:15.0988 4240 amdsata - ok
21:47:16.0019 4240 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:47:16.0035 4240 amdsbs - ok
21:47:16.0051 4240 [ B81C2B5616F6420A9941EA093A92B150 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
21:47:16.0066 4240 amdxata - ok
21:47:16.0097 4240 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
21:47:16.0160 4240 AppID - ok
21:47:16.0207 4240 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:47:16.0238 4240 AppIDSvc - ok
21:47:16.0285 4240 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
21:47:16.0316 4240 Appinfo - ok
21:47:16.0347 4240 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
21:47:16.0456 4240 AppMgmt - ok
21:47:16.0487 4240 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
21:47:16.0503 4240 arc - ok
21:47:16.0519 4240 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:47:16.0534 4240 arcsas - ok
21:47:16.0612 4240 [ F370579987F35BA161CD23419E930F4C ] asdnet C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys
21:47:16.0628 4240 asdnet - ok
21:47:16.0659 4240 [ 8C3A4F8342F1336C960B5EED3128CE31 ] asdrm C:\Windows\system32\DRIVERS\asdrm.sys
21:47:16.0675 4240 asdrm - ok
21:47:16.0690 4240 [ 67B1C96DF3C34D66190126639A2C0260 ] asdrs C:\Windows\system32\DRIVERS\asdrs.sys
21:47:16.0706 4240 asdrs - ok
21:47:16.0753 4240 [ 86D4ABC1B01D39C810E14D54C2D6AEE1 ] asdsrv C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
21:47:16.0784 4240 asdsrv - ok
21:47:16.0815 4240 [ 4F3BC96F7C45ED12955892C310F1E3DB ] asdws C:\Windows\system32\DRIVERS\asdws.sys
21:47:16.0831 4240 asdws - ok
21:47:16.0909 4240 [ 39CDCB109BF200CC8A05B9C7E6272D11 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:47:16.0987 4240 aspnet_state - ok
21:47:17.0018 4240 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:47:17.0065 4240 AsyncMac - ok
21:47:17.0080 4240 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
21:47:17.0096 4240 atapi - ok
21:47:17.0143 4240 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:47:17.0221 4240 AudioEndpointBuilder - ok
21:47:17.0377 4240 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:47:17.0439 4240 Audiosrv - ok
21:47:17.0501 4240 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:47:17.0595 4240 AxInstSV - ok
21:47:17.0673 4240 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
21:47:17.0720 4240 b06bdrv - ok
21:47:17.0767 4240 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
21:47:17.0798 4240 b57nd60x - ok
21:47:17.0845 4240 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
21:47:17.0876 4240 BDESVC - ok
21:47:17.0907 4240 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
21:47:17.0954 4240 Beep - ok
21:47:18.0001 4240 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll
21:47:18.0079 4240 BFE - ok
21:47:18.0125 4240 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\system32\qmgr.dll
21:47:18.0235 4240 BITS - ok
21:47:18.0266 4240 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:47:18.0281 4240 blbdrive - ok
21:47:18.0313 4240 [ FCAFAEF6798D7B51FF029F99A9898961 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:47:18.0391 4240 bowser - ok
21:47:18.0422 4240 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:47:18.0453 4240 BrFiltLo - ok
21:47:18.0469 4240 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:47:18.0484 4240 BrFiltUp - ok
21:47:18.0515 4240 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:47:18.0562 4240 BridgeMP - ok
21:47:18.0593 4240 [ 598E1280E7FF3744F4B8329366CC5635 ] Browser C:\Windows\System32\browser.dll
21:47:18.0640 4240 Browser - ok
21:47:18.0703 4240 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:47:18.0781 4240 Brserid - ok
21:47:18.0812 4240 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:47:18.0843 4240 BrSerWdm - ok
21:47:18.0874 4240 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:47:18.0905 4240 BrUsbMdm - ok
21:47:18.0921 4240 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:47:18.0937 4240 BrUsbSer - ok
21:47:18.0968 4240 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:47:18.0999 4240 BthEnum - ok
21:47:18.0999 4240 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:47:19.0046 4240 BTHMODEM - ok
21:47:19.0061 4240 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:47:19.0093 4240 BthPan - ok
21:47:19.0108 4240 [ 4A34888E13224678DD062466AFEC4240 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:47:19.0139 4240 BTHPORT - ok
21:47:19.0171 4240 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
21:47:19.0233 4240 bthserv - ok
21:47:19.0249 4240 [ FA04C63916FA221DBB91FCE153D07A55 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:47:19.0280 4240 BTHUSB - ok
21:47:19.0295 4240 [ D57D29132EFE13A83133D9BD449E0CF1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:47:19.0311 4240 btwaudio - ok
21:47:19.0327 4240 [ D282C14A69357D0E1BAFAECC2CA98C3A ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
21:47:19.0342 4240 btwavdt - ok
21:47:19.0451 4240 [ F7434401AE320BB97903A3C1865242FB ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:47:19.0763 4240 btwdins - ok
21:47:19.0779 4240 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:47:19.0810 4240 btwl2cap - ok
21:47:19.0826 4240 [ 02EB4D2B05967DF2D32F29C84AB1FB17 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:47:19.0857 4240 btwrchid - ok
21:47:19.0951 4240 catchme - ok
21:47:19.0982 4240 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:47:20.0029 4240 cdfs - ok
21:47:20.0075 4240 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:47:20.0107 4240 cdrom - ok
21:47:20.0138 4240 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
21:47:20.0185 4240 CertPropSvc - ok
21:47:20.0200 4240 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:47:20.0231 4240 circlass - ok
21:47:20.0247 4240 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
21:47:20.0278 4240 CLFS - ok
21:47:20.0309 4240 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:47:20.0387 4240 clr_optimization_v2.0.50727_32 - ok
21:47:20.0450 4240 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:47:20.0481 4240 CmBatt - ok
21:47:20.0481 4240 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
21:47:20.0497 4240 cmdide - ok
21:47:20.0559 4240 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys
21:47:20.0590 4240 CNG - ok
21:47:20.0606 4240 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:47:20.0637 4240 Compbatt - ok
21:47:20.0637 4240 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:47:20.0653 4240 CompositeBus - ok
21:47:20.0668 4240 COMSysApp - ok
21:47:20.0668 4240 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:47:20.0684 4240 crcdisk - ok
21:47:20.0731 4240 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:47:20.0762 4240 CryptSvc - ok
21:47:20.0809 4240 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
21:47:20.0840 4240 CSC - ok
21:47:20.0871 4240 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
21:47:20.0918 4240 CscService - ok
21:47:20.0933 4240 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
21:47:21.0011 4240 DcomLaunch - ok
21:47:21.0074 4240 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
21:47:21.0167 4240 defragsvc - ok
21:47:21.0183 4240 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:47:21.0230 4240 DfsC - ok
21:47:21.0277 4240 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
21:47:21.0339 4240 Dhcp - ok
21:47:21.0355 4240 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
21:47:21.0417 4240 discache - ok
21:47:21.0433 4240 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:47:21.0464 4240 Disk - ok
21:47:21.0479 4240 [ D0722E963D3C6145446874241401B209 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:47:21.0542 4240 Dnscache - ok
21:47:21.0557 4240 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
21:47:21.0698 4240 dot3svc - ok
21:47:21.0776 4240 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
21:47:21.0838 4240 DPS - ok
21:47:21.0885 4240 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:47:21.0932 4240 drmkaud - ok
21:47:21.0963 4240 [ 39806CFEDDCC55E686A49BCCD2972F23 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:47:22.0025 4240 DXGKrnl - ok
21:47:22.0041 4240 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
21:47:22.0103 4240 EapHost - ok
21:47:22.0197 4240 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
21:47:22.0306 4240 ebdrv - ok
21:47:22.0337 4240 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe
21:47:22.0353 4240 EFS - ok
21:47:22.0431 4240 [ 3A74A6E33685662B125A3269B1F2114F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:47:22.0493 4240 ehRecvr - ok
21:47:22.0509 4240 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
21:47:22.0556 4240 ehSched - ok
21:47:22.0603 4240 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:47:22.0634 4240 elxstor - ok
21:47:22.0649 4240 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
21:47:22.0681 4240 ErrDev - ok
21:47:22.0696 4240 esgiguard - ok
21:47:22.0743 4240 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
21:47:22.0805 4240 EventSystem - ok
21:47:22.0883 4240 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
21:47:22.0946 4240 ew_hwusbdev - ok
21:47:22.0961 4240 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
21:47:22.0993 4240 exfat - ok
21:47:23.0008 4240 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:47:23.0039 4240 fastfat - ok
21:47:23.0086 4240 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
21:47:23.0164 4240 Fax - ok
21:47:23.0195 4240 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:47:23.0227 4240 fdc - ok
21:47:23.0242 4240 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
21:47:23.0289 4240 fdPHost - ok
21:47:23.0305 4240 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
21:47:23.0336 4240 FDResPub - ok
21:47:23.0367 4240 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:47:23.0383 4240 FileInfo - ok
21:47:23.0398 4240 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:47:23.0445 4240 Filetrace - ok
21:47:23.0445 4240 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:47:23.0507 4240 flpydisk - ok
21:47:23.0523 4240 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:47:23.0554 4240 FltMgr - ok
21:47:23.0585 4240 [ B6512A85815FDC3D560C3705F5BDB93D ] FontCache C:\Windows\system32\FntCache.dll
21:47:23.0679 4240 FontCache - ok
21:47:23.0741 4240 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:47:23.0757 4240 FontCache3.0.0.0 - ok
21:47:23.0773 4240 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:47:23.0835 4240 FsDepends - ok
21:47:23.0851 4240 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:47:23.0866 4240 Fs_Rec - ok
21:47:23.0882 4240 [ 5592F5DBA26282D24D2B080EB438A4D7 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:47:23.0913 4240 fvevol - ok
21:47:23.0929 4240 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:47:23.0944 4240 gagp30kx - ok
21:47:23.0991 4240 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
21:47:24.0038 4240 gpsvc - ok
21:47:24.0131 4240 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:47:24.0303 4240 gupdate - ok
21:47:24.0334 4240 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:47:24.0521 4240 gupdatem - ok
21:47:24.0553 4240 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:47:24.0599 4240 hcw85cir - ok
21:47:24.0631 4240 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:47:24.0662 4240 HdAudAddService - ok
21:47:24.0693 4240 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:47:24.0709 4240 HDAudBus - ok
21:47:24.0709 4240 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:47:24.0740 4240 HidBatt - ok
21:47:24.0755 4240 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:47:24.0787 4240 HidBth - ok
21:47:24.0802 4240 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:47:24.0833 4240 HidIr - ok
21:47:24.0849 4240 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
21:47:24.0911 4240 hidserv - ok
21:47:24.0943 4240 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:47:24.0958 4240 HidUsb - ok
21:47:24.0989 4240 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:47:25.0036 4240 hkmsvc - ok
21:47:25.0067 4240 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:47:25.0130 4240 HomeGroupListener - ok
21:47:25.0145 4240 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:47:25.0192 4240 HomeGroupProvider - ok
21:47:25.0223 4240 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
21:47:25.0239 4240 HpSAMD - ok
21:47:25.0270 4240 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbmdm C:\Windows\system32\DRIVERS\HSPADataCardusbmdm.sys
21:47:25.0317 4240 HSPADataCardusbmdm - ok
21:47:25.0333 4240 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbnmea C:\Windows\system32\DRIVERS\HSPADataCardusbnmea.sys
21:47:25.0364 4240 HSPADataCardusbnmea - ok
21:47:25.0364 4240 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbser C:\Windows\system32\DRIVERS\HSPADataCardusbser.sys
21:47:25.0395 4240 HSPADataCardusbser - ok
21:47:25.0411 4240 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbvoice C:\Windows\system32\DRIVERS\HSPADataCardusbvoice.sys
21:47:25.0426 4240 HSPADataCardusbvoice - ok
21:47:25.0457 4240 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:47:25.0504 4240 HTTP - ok
21:47:25.0535 4240 [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
21:47:25.0598 4240 huawei_enumerator - ok
21:47:25.0629 4240 [ F547F862B8907F1BCBD9B72A72A6449E ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:47:25.0691 4240 hwdatacard - ok
21:47:25.0769 4240 [ 5EF3427AE503B5C03A48F7C9FF458B69 ] HWDeviceService.exe C:\ProgramData\DatacardService\HWDeviceService.exe
21:47:25.0832 4240 HWDeviceService.exe - ok
21:47:25.0847 4240 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:47:25.0879 4240 hwpolicy - ok
21:47:25.0894 4240 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:47:25.0925 4240 i8042prt - ok
21:47:25.0972 4240 [ 934AF4D7C5F457B9F0743F4299B77B67 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
21:47:26.0003 4240 iaStorV - ok
21:47:26.0097 4240 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:47:26.0144 4240 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:47:26.0144 4240 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:47:26.0347 4240 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:47:26.0393 4240 idsvc - ok
21:47:26.0659 4240 [ DCE0B53570703CCE580D066F89EF58CD ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
21:47:26.0799 4240 igfx - ok
21:47:26.0830 4240 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:47:26.0861 4240 iirsp - ok
21:47:26.0893 4240 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
21:47:27.0049 4240 IKEEXT - ok
21:47:27.0095 4240 [ E3C36AC5AE87EC970AE8EA2A93D59AE1 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
21:47:27.0158 4240 Impcd - ok
21:47:27.0314 4240 [ DBA9CB792CAF474C2DE11D98112E5FED ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:47:27.0470 4240 IntcAzAudAddService - ok
21:47:27.0517 4240 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:47:27.0563 4240 intelide - ok
21:47:27.0610 4240 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:47:27.0688 4240 intelppm - ok
21:47:27.0719 4240 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:47:27.0797 4240 IPBusEnum - ok
21:47:27.0829 4240 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:47:27.0907 4240 IpFilterDriver - ok
21:47:27.0953 4240 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:47:28.0063 4240 iphlpsvc - ok
21:47:28.0078 4240 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:47:28.0125 4240 IPMIDRV - ok
21:47:28.0141 4240 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:47:28.0219 4240 IPNAT - ok
21:47:28.0265 4240 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:47:28.0297 4240 IRENUM - ok
21:47:28.0312 4240 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
21:47:28.0359 4240 isapnp - ok
21:47:28.0375 4240 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:47:28.0421 4240 iScsiPrt - ok
21:47:28.0531 4240 [ 790385B5D3BC420551FA6969E5A50103 ] K7CrvSvc C:\Program Files\K7 Computing\K7TSecurity\K7CrvSvc.exe
21:47:28.0624 4240 K7CrvSvc - ok
21:47:28.0687 4240 [ 024CBDAC9E26AEDB16E2CC3B0954272A ] K7EmlPxy C:\Program Files\K7 Computing\K7TSecurity\K7EmlPxy.exe
21:47:28.0749 4240 K7EmlPxy - ok
21:47:28.0780 4240 [ 2F8F1F3CC5FABE6B4C6A658658001C20 ] K7FWHlpr C:\Windows\system32\drivers\K7FWHlpr.sys
21:47:28.0827 4240 K7FWHlpr - ok
21:47:28.0843 4240 [ ECE6F33B41DEFB15059FD12FCECB8B3C ] K7FWSrvc C:\Program Files\K7 Computing\K7TSecurity\K7FWSrvc.exe
21:47:28.0921 4240 K7FWSrvc - ok
21:47:28.0936 4240 [ F494D8EB409EBB8CE111A2E977B475BC ] K7PSSrvc C:\Program Files\K7 Computing\K7TSecurity\K7PSSrvc.exe
21:47:28.0999 4240 K7PSSrvc - ok
21:47:29.0045 4240 [ 6A6977B9DB05A51A23F118043D62A988 ] K7RTScan C:\Program Files\K7 Computing\K7TSecurity\K7RTScan.exe
21:47:29.0123 4240 K7RTScan - ok
21:47:29.0201 4240 [ 87D6BDEB6EB1CAA434D629CF6F750795 ] K7Sentry C:\Windows\system32\drivers\K7Sentry.sys
21:47:29.0311 4240 K7Sentry - ok
21:47:29.0389 4240 [ 43530DE5728810466BF6B115C9DD7D5E ] K7SpmSrc C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe
21:47:29.0467 4240 K7SpmSrc - ok
21:47:29.0498 4240 [ C85345BFE012279E20DC63A7AA6150EF ] K7TSMngr C:\Program Files\K7 Computing\K7TSecurity\K7TSMngr.exe
21:47:29.0576 4240 K7TSMngr - ok
21:47:29.0623 4240 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:47:29.0654 4240 kbdclass - ok
21:47:29.0685 4240 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:47:29.0716 4240 kbdhid - ok
21:47:29.0732 4240 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe
21:47:29.0763 4240 KeyIso - ok
21:47:29.0779 4240 [ E36A061EC11B373826905B21BE10948F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:47:29.0810 4240 KSecDD - ok
21:47:29.0810 4240 [ 26C046977E85B95036453D7B88BA1820 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:47:29.0841 4240 KSecPkg - ok
21:47:29.0888 4240 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
21:47:29.0981 4240 KtmRm - ok
21:47:30.0013 4240 [ 6EF8146358452995A4A9335E44ABB015 ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
21:47:30.0028 4240 L1C - ok
21:47:30.0075 4240 [ BCA92CB047A4326925ECEF759DBAA233 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:47:30.0169 4240 LanmanServer - ok
21:47:30.0184 4240 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:47:30.0247 4240 LanmanWorkstation - ok
21:47:30.0278 4240 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:47:30.0340 4240 lltdio - ok
21:47:30.0387 4240 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:47:30.0449 4240 lltdsvc - ok
21:47:30.0465 4240 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
21:47:30.0543 4240 lmhosts - ok
21:47:30.0574 4240 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:47:30.0605 4240 LSI_FC - ok
21:47:30.0637 4240 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:47:30.0668 4240 LSI_SAS - ok
21:47:30.0683 4240 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:47:30.0715 4240 LSI_SAS2 - ok
21:47:30.0730 4240 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:47:30.0761 4240 LSI_SCSI - ok
21:47:30.0777 4240 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
21:47:30.0855 4240 luafv - ok
21:47:30.0917 4240 [ D1D7EF163775449FDC38208ABF94B926 ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
21:47:30.0949 4240 mbamchameleon - ok
21:47:30.0995 4240 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:47:31.0011 4240 MBAMProtector - ok
21:47:31.0089 4240 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:47:31.0151 4240 MBAMScheduler - ok
21:47:31.0183 4240 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:47:31.0276 4240 MBAMService - ok
21:47:31.0276 4240 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:47:31.0307 4240 Mcx2Svc - ok
21:47:31.0339 4240 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:47:31.0370 4240 megasas - ok
21:47:31.0385 4240 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:47:31.0417 4240 MegaSR - ok
21:47:31.0495 4240 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:47:31.0510 4240 Microsoft Office Groove Audit Service - ok
21:47:31.0526 4240 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
21:47:31.0588 4240 MMCSS - ok
21:47:31.0619 4240 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
21:47:31.0713 4240 Modem - ok
21:47:31.0729 4240 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:47:31.0791 4240 monitor - ok
21:47:31.0807 4240 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:47:31.0838 4240 mouclass - ok
21:47:31.0869 4240 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:47:31.0931 4240 mouhid - ok
21:47:31.0947 4240 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:47:31.0994 4240 mountmgr - ok
21:47:32.0041 4240 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:47:32.0103 4240 MozillaMaintenance - ok
21:47:32.0150 4240 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
21:47:32.0212 4240 mpio - ok
21:47:32.0228 4240 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:47:32.0321 4240 mpsdrv - ok
21:47:32.0399 4240 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll
21:47:32.0571 4240 MpsSvc - ok
21:47:32.0602 4240 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:47:32.0649 4240 MRxDAV - ok
21:47:32.0680 4240 [ F4A054BE78AF7F410129C4B64B07DC9B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:47:32.0758 4240 mrxsmb - ok
21:47:32.0758 4240 [ DEFFA295BD1895C6ED8E3078412AC60B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:47:32.0821 4240 mrxsmb10 - ok
21:47:32.0836 4240 [ 24D76ABE5DCAD22F19D105F76FDF0CE1 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:47:32.0899 4240 mrxsmb20 - ok
21:47:32.0930 4240 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
21:47:32.0961 4240 msahci - ok
21:47:32.0992 4240 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
21:47:33.0023 4240 msdsm - ok
21:47:33.0055 4240 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
21:47:33.0133 4240 MSDTC - ok
21:47:33.0148 4240 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:47:33.0211 4240 Msfs - ok
21:47:33.0242 4240 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:47:33.0320 4240 mshidkmdf - ok
21:47:33.0335 4240 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
21:47:33.0351 4240 msisadrv - ok
21:47:33.0382 4240 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:47:33.0476 4240 MSiSCSI - ok
21:47:33.0476 4240 msiserver - ok
21:47:33.0507 4240 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:47:33.0585 4240 MSKSSRV - ok
21:47:33.0616 4240 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:47:33.0710 4240 MSPCLOCK - ok
21:47:33.0725 4240 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:47:33.0803 4240 MSPQM - ok
21:47:33.0819 4240 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:47:33.0866 4240 MsRPC - ok
21:47:33.0881 4240 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:47:33.0913 4240 mssmbios - ok
21:47:33.0975 4240 MSSQL$SQLEXPRESS - ok
21:47:34.0006 4240 [ ADAF062116B4E6D96E44D26486A87AF6 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:47:34.0022 4240 MSSQLServerADHelper - ok
21:47:34.0053 4240 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:47:34.0115 4240 MSTEE - ok
21:47:34.0240 4240 [ 73FA09B84B23A1897809A84F976D5D99 ] msvsmon80 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe
21:47:34.0349 4240 msvsmon80 - ok
21:47:34.0365 4240 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:47:34.0459 4240 MTConfig - ok
21:47:34.0474 4240 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
21:47:34.0521 4240 Mup - ok
21:47:34.0599 4240 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
21:47:34.0724 4240 napagent - ok
21:47:34.0771 4240 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:47:34.0833 4240 NativeWifiP - ok
21:47:34.0942 4240 [ 5836B9E91863A00EC1B8E785EFD86ECB ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:47:35.0020 4240 NBService - ok
21:47:35.0051 4240 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:47:35.0129 4240 NDIS - ok
21:47:35.0161 4240 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:47:35.0223 4240 NdisCap - ok
21:47:35.0239 4240 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:47:35.0317 4240 NdisTapi - ok
21:47:35.0332 4240 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:47:35.0395 4240 Ndisuio - ok
21:47:35.0426 4240 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:47:35.0504 4240 NdisWan - ok
21:47:35.0504 4240 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:47:35.0582 4240 NDProxy - ok
21:47:35.0613 4240 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:47:35.0691 4240 NetBIOS - ok
21:47:35.0691 4240 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:47:35.0769 4240 NetBT - ok
21:47:35.0785 4240 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe
21:47:35.0831 4240 Netlogon - ok
21:47:35.0863 4240 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
21:47:35.0987 4240 Netman - ok
21:47:36.0003 4240 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
21:47:36.0065 4240 netprofm - ok
21:47:36.0112 4240 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:47:36.0143 4240 NetTcpPortSharing - ok
21:47:36.0175 4240 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:47:36.0206 4240 nfrd960 - ok
21:47:36.0237 4240 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
21:47:36.0346 4240 NlaSvc - ok
21:47:36.0409 4240 [ 9A5F53B55E09ECC2DAB8C74E4DD18B8D ] nlsX86cc C:\Windows\system32\NLSSRV32.EXE
21:47:36.0455 4240 nlsX86cc - ok
21:47:36.0518 4240 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:47:36.0705 4240 NMIndexingService - ok
21:47:36.0783 4240 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:47:36.0939 4240 Npfs - ok
21:47:36.0970 4240 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
21:47:37.0033 4240 nsi - ok
21:47:37.0048 4240 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:47:37.0126 4240 nsiproxy - ok
21:47:37.0220 4240 [ 3795DCD21F740EE799FB7223234215AF ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:47:37.0313 4240 Ntfs - ok
21:47:37.0329 4240 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
21:47:37.0376 4240 Null - ok
21:47:37.0423 4240 [ 3F3D04B1D08D43C16EA7963954EC768D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
21:47:37.0454 4240 nvraid - ok
21:47:37.0469 4240 [ C99F251A5DE63C6F129CF71933ACED0F ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
21:47:37.0501 4240 nvstor - ok
21:47:37.0516 4240 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
21:47:37.0547 4240 nv_agp - ok
21:47:37.0641 4240 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:47:37.0703 4240 odserv - ok
21:47:37.0750 4240 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:47:37.0797 4240 ohci1394 - ok
21:47:37.0828 4240 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:47:37.0844 4240 ose - ok
21:47:37.0875 4240 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:47:37.0922 4240 p2pimsvc - ok
21:47:37.0937 4240 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
21:47:38.0000 4240 p2psvc - ok
21:47:38.0015 4240 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:47:38.0047 4240 Parport - ok
21:47:38.0062 4240 [ FF4218952B51DE44FE910953A3E686B9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:47:38.0078 4240 partmgr - ok
21:47:38.0109 4240 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
21:47:38.0125 4240 Parvdm - ok
21:47:38.0140 4240 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:47:38.0187 4240 PcaSvc - ok
21:47:38.0187 4240 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
21:47:38.0218 4240 pci - ok
21:47:38.0234 4240 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
21:47:38.0265 4240 pciide - ok
21:47:38.0281 4240 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:47:38.0327 4240 pcmcia - ok
21:47:38.0343 4240 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
21:47:38.0359 4240 pcw - ok
21:47:38.0437 4240 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:47:38.0499 4240 PEAUTH - ok
21:47:38.0530 4240 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:47:38.0655 4240 PeerDistSvc - ok
21:47:38.0811 4240 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
21:47:38.0983 4240 pla - ok
21:47:39.0029 4240 [ 2CC2008F1296968FBA162ED9F9AFE328 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:47:39.0154 4240 PlugPlay - ok
21:47:39.0201 4240 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:47:39.0232 4240 PNRPAutoReg - ok
21:47:39.0248 4240 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:47:39.0310 4240 PNRPsvc - ok
21:47:39.0357 4240 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:47:39.0497 4240 PolicyAgent - ok
21:47:39.0513 4240 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
21:47:39.0591 4240 Power - ok
21:47:39.0622 4240 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:47:39.0700 4240 PptpMiniport - ok
21:47:39.0731 4240 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:47:39.0778 4240 Processor - ok
21:47:39.0794 4240 [ 630CF26F0227498B7D5A92B12548960F ] ProfSvc C:\Windows\system32\profsvc.dll
21:47:39.0872 4240 ProfSvc - ok
21:47:39.0903 4240 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:47:39.0950 4240 ProtectedStorage - ok
21:47:39.0981 4240 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:47:40.0059 4240 Psched - ok
21:47:40.0121 4240 [ DA4ECE4EC909E1791339F3FFAF36418A ] QDLService2kDell C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe
21:47:40.0199 4240 QDLService2kDell - ok
21:47:40.0309 4240 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:47:40.0480 4240 ql2300 - ok
21:47:40.0496 4240 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:47:40.0527 4240 ql40xx - ok
21:47:40.0574 4240 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
21:47:40.0636 4240 QWAVE - ok
21:47:40.0667 4240 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:47:40.0714 4240 QWAVEdrv - ok
21:47:40.0745 4240 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:47:40.0839 4240 RasAcd - ok
21:47:40.0855 4240 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:47:40.0948 4240 RasAgileVpn - ok
21:47:40.0995 4240 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
21:47:41.0057 4240 RasAuto - ok
21:47:41.0089 4240 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:47:41.0167 4240 Rasl2tp - ok
21:47:41.0198 4240 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
21:47:41.0307 4240 RasMan - ok
21:47:41.0338 4240 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:47:41.0416 4240 RasPppoe - ok
21:47:41.0432 4240 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:47:41.0494 4240 RasSstp - ok
21:47:41.0510 4240 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:47:41.0603 4240 rdbss - ok
21:47:41.0635 4240 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:47:41.0666 4240 rdpbus - ok
21:47:41.0697 4240 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:47:41.0775 4240 RDPCDD - ok
21:47:41.0791 4240 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:47:41.0853 4240 RDPDR - ok
21:47:41.0884 4240 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:47:41.0947 4240 RDPENCDD - ok
21:47:41.0962 4240 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:47:42.0040 4240 RDPREFMP - ok
21:47:42.0071 4240 [ 801371BA9782282892D00AADB08EE367 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:47:42.0165 4240 RDPWD - ok
21:47:42.0196 4240 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:47:42.0227 4240 rdyboost - ok
21:47:42.0305 4240 [ EA569D48B2E755AF6D96F03F3335D98A ] Realtek11nCU C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe
21:47:42.0337 4240 Realtek11nCU ( UnsignedFile.Multi.Generic ) - warning
21:47:42.0337 4240 Realtek11nCU - detected UnsignedFile.Multi.Generic (1)
21:47:42.0399 4240 [ 38106C7BD34EAE89D2769AC0BA2E846B ] Reliance Netconnect. RunOuc C:\Program Files\Reliance Netconnect+\UpdateDog\ouc.exe
21:47:42.0493 4240 Reliance Netconnect. RunOuc ( UnsignedFile.Multi.Generic ) - warning
21:47:42.0493 4240 Reliance Netconnect. RunOuc - detected UnsignedFile.Multi.Generic (1)
21:47:42.0539 4240 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
21:47:42.0649 4240 RemoteAccess - ok
21:47:42.0680 4240 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:47:42.0805 4240 RemoteRegistry - ok
21:47:42.0836 4240 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:47:42.0883 4240 RFCOMM - ok
21:47:42.0898 4240 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:47:42.0992 4240 RpcEptMapper - ok
21:47:43.0007 4240 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
21:47:43.0054 4240 RpcLocator - ok
21:47:43.0070 4240 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
21:47:43.0148 4240 RpcSs - ok
21:47:43.0179 4240 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:47:43.0241 4240 rspndr - ok
21:47:43.0304 4240 [ 08E0B15F88CBFFEE0BB18D321C42E1B4 ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
21:47:43.0351 4240 RTL8192cu - ok
21:47:43.0351 4240 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
21:47:43.0397 4240 s3cap - ok
21:47:43.0413 4240 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe
21:47:43.0444 4240 SamSs - ok
21:47:43.0460 4240 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
21:47:43.0491 4240 sbp2port - ok
21:47:43.0522 4240 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:47:43.0600 4240 SCardSvr - ok
21:47:43.0616 4240 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:47:43.0709 4240 scfilter - ok
21:47:43.0741 4240 [ 3E8B0C453E25613A1F59762A5C42AA75 ] Schedule C:\Windows\system32\schedsvc.dll
21:47:43.0865 4240 Schedule - ok
21:47:43.0897 4240 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:47:43.0990 4240 SCPolicySvc - ok
21:47:44.0006 4240 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:47:44.0068 4240 SDRSVC - ok
21:47:44.0099 4240 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:47:44.0177 4240 secdrv - ok
21:47:44.0209 4240 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
21:47:44.0287 4240 seclogon - ok
21:47:44.0302 4240 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
21:47:44.0427 4240 SENS - ok
21:47:44.0443 4240 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:47:44.0489 4240 SensrSvc - ok
21:47:44.0505 4240 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:47:44.0552 4240 Serenum - ok
21:47:44.0583 4240 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:47:44.0630 4240 Serial - ok
21:47:44.0661 4240 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:47:44.0708 4240 sermouse - ok
21:47:44.0739 4240 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
21:47:44.0848 4240 SessionEnv - ok
21:47:44.0864 4240 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:47:44.0911 4240 sffdisk - ok
21:47:44.0926 4240 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:47:44.0989 4240 sffp_mmc - ok
21:47:45.0004 4240 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:47:45.0051 4240 sffp_sd - ok
21:47:45.0067 4240 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:47:45.0113 4240 sfloppy - ok
21:47:45.0145 4240 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:47:45.0254 4240 SharedAccess - ok
21:47:45.0285 4240 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:47:45.0379 4240 ShellHWDetection - ok
21:47:45.0394 4240 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
21:47:45.0425 4240 sisagp - ok
21:47:45.0472 4240 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:47:45.0503 4240 SiSRaid2 - ok
21:47:45.0519 4240 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:47:45.0566 4240 SiSRaid4 - ok
21:47:45.0628 4240 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:47:50.0183 4240 SkypeUpdate - ok
21:47:50.0215 4240 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:47:50.0293 4240 Smb - ok
21:47:50.0324 4240 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:47:50.0636 4240 SNMPTRAP - ok
21:47:50.0651 4240 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
21:47:50.0683 4240 spldr - ok
21:47:50.0714 4240 [ 49B6DD6AB3715B7A67965F17194E98A9 ] Spooler C:\Windows\System32\spoolsv.exe
21:47:50.0776 4240 Spooler - ok
21:47:50.0854 4240 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
21:47:50.0963 4240 sppsvc - ok
21:47:50.0979 4240 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:47:51.0057 4240 sppuinotify - ok
21:47:51.0088 4240 [ 3612108D36EA74F6F9FC5005E88E353B ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:47:51.0151 4240 SQLBrowser - ok
21:47:51.0197 4240 [ D37B8CE340B71D9E0AB2440ADDB2FDBF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:47:51.0229 4240 SQLWriter - ok
21:47:51.0260 4240 [ 2BA4EBC7DFBA845A1EDBE1F75913BE33 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:47:51.0353 4240 srv - ok
21:47:51.0369 4240 [ DCE7E10FEAABD4CAE95948B3DE5340BB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:47:51.0447 4240 srv2 - ok
21:47:51.0447 4240 [ B5665BAA2120B8A54E22E9CD07C05106 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:47:51.0525 4240 srvnet - ok
21:47:51.0556 4240 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:47:51.0619 4240 SSDPSRV - ok
21:47:51.0634 4240 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:47:51.0697 4240 SstpSvc - ok
21:47:51.0712 4240 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:47:51.0743 4240 stexstor - ok
21:47:51.0790 4240 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
21:47:51.0837 4240 StiSvc - ok
21:47:51.0868 4240 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
21:47:51.0899 4240 storflt - ok
21:47:51.0931 4240 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
21:47:51.0962 4240 storvsc - ok
21:47:51.0962 4240 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:47:52.0009 4240 swenum - ok
21:47:52.0040 4240 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
21:47:52.0149 4240 swprv - ok
21:47:52.0180 4240 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
21:47:52.0305 4240 SysMain - ok
21:47:52.0321 4240 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:47:52.0367 4240 TabletInputService - ok
21:47:52.0383 4240 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
21:47:52.0445 4240 TapiSrv - ok
21:47:52.0477 4240 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
21:47:52.0539 4240 TBS - ok
21:47:52.0586 4240 [ 2CC3D75488ABD3EC628BBB9A4FC84EFC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:47:52.0695 4240 Tcpip - ok
21:47:52.0726 4240 [ 2CC3D75488ABD3EC628BBB9A4FC84EFC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:47:52.0804 4240 TCPIP6 - ok
21:47:52.0820 4240 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:47:52.0898 4240 tcpipreg - ok
21:47:52.0913 4240 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:47:52.0991 4240 TDPIPE - ok
21:47:52.0991 4240 [ 7551E91EA999EE9A8E9C331D5A9C31F3 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:47:53.0054 4240 TDTCP - ok
21:47:53.0069 4240 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:47:53.0132 4240 tdx - ok
21:47:53.0147 4240 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:47:53.0179 4240 TermDD - ok
21:47:53.0210 4240 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
21:47:53.0319 4240 TermService - ok
21:47:53.0335 4240 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
21:47:53.0381 4240 Themes - ok
21:47:53.0397 4240 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
21:47:53.0444 4240 THREADORDER - ok
21:47:53.0459 4240 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
21:47:53.0522 4240 TrkWks - ok
21:47:53.0569 4240 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:47:53.0818 4240 TrustedInstaller - ok
21:47:53.0865 4240 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:47:53.0912 4240 tssecsrv - ok
21:47:53.0927 4240 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:47:54.0005 4240 tunnel - ok
21:47:54.0021 4240 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:47:54.0052 4240 uagp35 - ok
21:47:54.0083 4240 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:47:54.0161 4240 udfs - ok
21:47:54.0193 4240 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:47:54.0239 4240 UI0Detect - ok
21:47:54.0286 4240 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
21:47:54.0317 4240 uliagpkx - ok
21:47:54.0333 4240 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:47:54.0364 4240 umbus - ok
21:47:54.0395 4240 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:47:54.0442 4240 UmPass - ok
21:47:54.0489 4240 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
21:47:54.0536 4240 UmRdpService - ok
21:47:54.0551 4240 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
21:47:54.0676 4240 upnphost - ok
21:47:54.0692 4240 [ 8455C4ED038EFD09E99327F9D2D48FFA ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:47:54.0723 4240 usbccgp - ok
21:47:54.0754 4240 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
21:47:54.0801 4240 usbcir - ok
21:47:54.0817 4240 [ 1C333BFD60F2FED2C7AD5DAF533CB742 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:47:54.0863 4240 usbehci - ok
21:47:54.0895 4240 [ EE6EF93CCFA94FAE8C6AB298273D8AE2 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:47:54.0926 4240 usbhub - ok
21:47:54.0941 4240 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:47:54.0973 4240 usbohci - ok
21:47:55.0004 4240 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:47:55.0035 4240 usbprint - ok
21:47:55.0051 4240 [ D8889D56E0D27E57ED4591837FE71D27 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:47:55.0097 4240 USBSTOR - ok
21:47:55.0113 4240 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:47:55.0160 4240 usbuhci - ok
21:47:55.0191 4240 [ F642A7E4BF78CFA359CCA0A3557C28D7 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:47:55.0253 4240 usbvideo - ok
21:47:55.0269 4240 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
21:47:55.0347 4240 UxSms - ok
21:47:55.0378 4240 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe
21:47:55.0409 4240 VaultSvc - ok
21:47:55.0441 4240 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
21:47:55.0472 4240 vdrvroot - ok
21:47:55.0503 4240 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
21:47:55.0565 4240 vds - ok
21:47:55.0597 4240 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:47:55.0628 4240 vga - ok
21:47:55.0643 4240 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:47:55.0721 4240 VgaSave - ok
21:47:55.0737 4240 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
21:47:55.0784 4240 vhdmp - ok
21:47:55.0815 4240 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
21:47:55.0846 4240 viaagp - ok
21:47:55.0862 4240 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
21:47:55.0893 4240 ViaC7 - ok
21:47:55.0909 4240 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
21:47:55.0924 4240 viaide - ok
21:47:55.0940 4240 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
21:47:55.0987 4240 vmbus - ok
21:47:56.0002 4240 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
21:47:56.0033 4240 VMBusHID - ok
21:47:56.0049 4240 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
21:47:56.0096 4240 volmgr - ok
21:47:56.0111 4240 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:47:56.0143 4240 volmgrx - ok
21:47:56.0158 4240 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
21:47:56.0205 4240 volsnap - ok
21:47:56.0236 4240 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:47:56.0283 4240 vsmraid - ok
21:47:56.0330 4240 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
21:47:56.0455 4240 VSS - ok
21:47:56.0470 4240 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:47:56.0533 4240 vwifibus - ok
21:47:56.0564 4240 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:47:56.0595 4240 vwififlt - ok
21:47:56.0626 4240 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
21:47:56.0720 4240 W32Time - ok
21:47:56.0751 4240 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:47:56.0782 4240 WacomPen - ok
21:47:56.0798 4240 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:47:56.0845 4240 WANARP - ok
21:47:56.0860 4240 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:47:56.0907 4240 Wanarpv6 - ok
21:47:56.0954 4240 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
21:47:57.0079 4240 wbengine - ok
21:47:57.0094 4240 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:47:57.0125 4240 WbioSrvc - ok
21:47:57.0157 4240 [ D0F88AA11EE1A62BCC6D6A8A7783CA11 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:47:57.0235 4240 wcncsvc - ok
21:47:57.0250 4240 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:47:57.0297 4240 WcsPlugInService - ok
21:47:57.0328 4240 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:47:57.0359 4240 Wd - ok
21:47:57.0391 4240 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:47:57.0422 4240 Wdf01000 - ok
21:47:57.0437 4240 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:47:57.0484 4240 WdiServiceHost - ok
21:47:57.0484 4240 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:47:57.0515 4240 WdiSystemHost - ok
21:47:57.0547 4240 [ D87C7D2C517F82A5AB7A73E203063D9E ] WebClient C:\Windows\System32\webclnt.dll
21:47:57.0609 4240 WebClient - ok
21:47:57.0640 4240 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:47:57.0718 4240 Wecsvc - ok
21:47:57.0734 4240 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:47:57.0827 4240 wercplsupport - ok
21:47:57.0859 4240 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
21:47:57.0921 4240 WerSvc - ok
21:47:57.0952 4240 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:47:58.0015 4240 WfpLwf - ok
21:47:58.0015 4240 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:47:58.0046 4240 WIMMount - ok
21:47:58.0108 4240 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:47:58.0217 4240 WinDefend - ok
21:47:58.0217 4240 WinHttpAutoProxySvc - ok
21:47:58.0264 4240 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:47:58.0358 4240 Winmgmt - ok
21:47:58.0405 4240 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
21:47:58.0607 4240 WinRM - ok
21:47:58.0654 4240 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:47:58.0701 4240 WinUsb - ok
21:47:58.0748 4240 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:47:58.0857 4240 Wlansvc - ok
21:47:58.0904 4240 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:47:58.0935 4240 WmiAcpi - ok
21:47:58.0966 4240 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:47:59.0044 4240 wmiApSrv - ok
21:47:59.0107 4240 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:47:59.0341 4240 WMPNetworkSvc - ok
21:47:59.0356 4240 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:47:59.0403 4240 WPCSvc - ok
21:47:59.0419 4240 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:47:59.0481 4240 WPDBusEnum - ok
21:47:59.0497 4240 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:47:59.0575 4240 ws2ifsl - ok
21:47:59.0606 4240 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
21:47:59.0699 4240 wscsvc - ok
21:47:59.0699 4240 WSearch - ok
21:47:59.0762 4240 [ A33408CC036F9C08142B11BE5E93F0A1 ] wuauserv C:\Windows\system32\wuaueng.dll
21:48:00.0058 4240 wuauserv - ok
21:48:00.0074 4240 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:48:00.0152 4240 WudfPf - ok
21:48:00.0199 4240 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:48:00.0277 4240 WUDFRd - ok
21:48:00.0308 4240 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:48:00.0386 4240 wudfsvc - ok
21:48:00.0433 4240 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
21:48:00.0479 4240 WwanSvc - ok
21:48:00.0526 4240 ================ Scan global ===============================
21:48:00.0557 4240 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
21:48:00.0589 4240 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
21:48:00.0604 4240 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
21:48:00.0682 4240 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
21:48:00.0729 4240 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
21:48:00.0729 4240 [Global] - ok
21:48:00.0729 4240 ================ Scan MBR ==================================
21:48:00.0745 4240 [ BBF86A75EA3672BB80AB782ADABF6BE5 ] \Device\Harddisk0\DR0
21:48:01.0213 4240 \Device\Harddisk0\DR0 - ok
21:48:01.0213 4240 ================ Scan VBR ==================================
21:48:01.0259 4240 [ 3FDFE43F5D6D532FB31692F918C60FA3 ] \Device\Harddisk0\DR0\Partition1
21:48:01.0275 4240 \Device\Harddisk0\DR0\Partition1 - ok
21:48:01.0291 4240 [ D12400FE41677F1BFA78B1FD247A139A ] \Device\Harddisk0\DR0\Partition2
21:48:01.0291 4240 \Device\Harddisk0\DR0\Partition2 - ok
21:48:01.0306 4240 [ 3E26E46417FF06350BD291D1958BE97B ] \Device\Harddisk0\DR0\Partition3
21:48:01.0322 4240 \Device\Harddisk0\DR0\Partition3 - ok
21:48:01.0322 4240 [ 47A50F26D27B7DBE34A840F47CE7FE25 ] \Device\Harddisk0\DR0\Partition4
21:48:01.0337 4240 \Device\Harddisk0\DR0\Partition4 - ok
21:48:01.0369 4240 [ 9189A2E9C7E3ADFFFBBCDAFC6E29B0EF ] \Device\Harddisk0\DR0\Partition5
21:48:01.0369 4240 \Device\Harddisk0\DR0\Partition5 - ok
21:48:01.0415 4240 [ 7F39CE5141C577C6034DDDDA46349646 ] \Device\Harddisk0\DR0\Partition6
21:48:01.0431 4240 \Device\Harddisk0\DR0\Partition6 - ok
21:48:01.0431 4240 ================ Scan active images ========================
21:48:01.0431 4240 [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys
21:48:01.0431 4240 C:\Windows\System32\drivers\crashdmp.sys - ok
21:48:01.0431 4240 [ 5428227D4730EBDFC842E9FB593F8C8A ] C:\Windows\System32\drivers\Dumpata.sys
21:48:01.0431 4240 C:\Windows\System32\drivers\Dumpata.sys - ok
21:48:01.0431 4240 [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys
21:48:01.0431 4240 C:\Windows\System32\drivers\dumpfve.sys - ok
21:48:01.0447 4240 [ 4326D168944123F38DD3B2D9C37A0B12 ] C:\Windows\System32\drivers\msahci.sys
21:48:01.0447 4240 C:\Windows\System32\drivers\msahci.sys - ok
21:48:01.0447 4240 [ 8C3A4F8342F1336C960B5EED3128CE31 ] C:\Windows\System32\drivers\asdrm.sys
21:48:01.0447 4240 C:\Windows\System32\drivers\asdrm.sys - ok
21:48:01.0447 4240 [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys
21:48:01.0447 4240 C:\Windows\System32\drivers\beep.sys - ok
21:48:01.0462 4240 [ BA6E70AA0E6091BC39DE29477D866A77 ] C:\Windows\System32\drivers\cdrom.sys
21:48:01.0462 4240 C:\Windows\System32\drivers\cdrom.sys - ok
21:48:01.0462 4240 [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys
21:48:01.0462 4240 C:\Windows\System32\drivers\null.sys - ok
21:48:01.0462 4240 [ 1E016846895B15A99F9A176A05029075 ] C:\Windows\System32\drivers\RDPCDD.sys
21:48:01.0462 4240 C:\Windows\System32\drivers\RDPCDD.sys - ok
21:48:01.0478 4240 [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys
21:48:01.0478 4240 C:\Windows\System32\drivers\vga.sys - ok
21:48:01.0478 4240 [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys
21:48:01.0478 4240 C:\Windows\System32\drivers\videoprt.sys - ok
21:48:01.0478 4240 [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys
21:48:01.0478 4240 C:\Windows\System32\drivers\watchdog.sys - ok
21:48:01.0493 4240 [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys
21:48:01.0493 4240 C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:48:01.0493 4240 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys
21:48:01.0493 4240 C:\Windows\System32\drivers\RDPREFMP.sys - ok
21:48:01.0493 4240 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys
21:48:01.0493 4240 C:\Windows\System32\drivers\msfs.sys - ok
21:48:01.0509 4240 [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys
21:48:01.0509 4240 C:\Windows\System32\drivers\npfs.sys - ok
21:48:01.0509 4240 [ DDC040FDB01EF1712A6B13E52AFB104C ] C:\Windows\System32\drivers\afd.sys
21:48:01.0509 4240 C:\Windows\System32\drivers\afd.sys - ok
21:48:01.0509 4240 [ DD52A733BF4CA5AF84562A5E2F963B91 ] C:\Windows\System32\drivers\netbt.sys
21:48:01.0509 4240 C:\Windows\System32\drivers\netbt.sys - ok
21:48:01.0525 4240 [ 52639C994FE3CD975BFE7428B939B320 ] C:\Windows\System32\drivers\tdi.sys
21:48:01.0525 4240 C:\Windows\System32\drivers\tdi.sys - ok
21:48:01.0525 4240 [ CB39E896A2A83702D1737BFD402B3542 ] C:\Windows\System32\drivers\tdx.sys
21:48:01.0525 4240 C:\Windows\System32\drivers\tdx.sys - ok
21:48:01.0525 4240 [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys
21:48:01.0525 4240 C:\Windows\System32\drivers\pacer.sys - ok
21:48:01.0525 4240 [ 7090D3436EEB4E7DA3373090A23448F7 ] C:\Windows\System32\drivers\vwififlt.sys
21:48:01.0525 4240 C:\Windows\System32\drivers\vwififlt.sys - ok
21:48:01.0540 4240 [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys
21:48:01.0540 4240 C:\Windows\System32\drivers\wfplwf.sys - ok
21:48:01.0540 4240 [ 6DB3276587B853BF886B69528FDB048C ] C:\Windows\System32\drivers\ws2ifsl.sys
21:48:01.0540 4240 C:\Windows\System32\drivers\ws2ifsl.sys - ok
21:48:01.0540 4240 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys
21:48:01.0540 4240 C:\Windows\System32\drivers\netbios.sys - ok
21:48:01.0556 4240 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys
21:48:01.0556 4240 C:\Windows\System32\drivers\nsiproxy.sys - ok
21:48:01.0556 4240 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] C:\Windows\System32\drivers\rdbss.sys
21:48:01.0556 4240 C:\Windows\System32\drivers\rdbss.sys - ok
21:48:01.0556 4240 [ C36F41EE20E6999DBF4B0425963268A5 ] C:\Windows\System32\drivers\termdd.sys
21:48:01.0556 4240 C:\Windows\System32\drivers\termdd.sys - ok
21:48:01.0571 4240 [ 692A712062146E96D28BA0B7D75DE31B ] C:\Windows\System32\drivers\wanarp.sys
21:48:01.0571 4240 C:\Windows\System32\drivers\wanarp.sys - ok
21:48:01.0571 4240 [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys
21:48:01.0571 4240 C:\Windows\System32\drivers\blbdrive.sys - ok
21:48:01.0571 4240 [ 27C9490BDD0AE48911AB8CF1932591ED ] C:\Windows\System32\drivers\csc.sys
21:48:01.0571 4240 C:\Windows\System32\drivers\csc.sys - ok
21:48:01.0587 4240 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] C:\Windows\System32\drivers\dfsc.sys
21:48:01.0587 4240 C:\Windows\System32\drivers\dfsc.sys - ok
21:48:01.0587 4240 [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys
21:48:01.0587 4240 C:\Windows\System32\drivers\discache.sys - ok
21:48:01.0587 4240 [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys
21:48:01.0587 4240 C:\Windows\System32\drivers\mssmbios.sys - ok
21:48:01.0603 4240 [ F370579987F35BA161CD23419E930F4C ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys
21:48:01.0603 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys - ok
21:48:01.0634 4240 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] C:\Windows\System32\drivers\tunnel.sys
21:48:01.0634 4240 C:\Windows\System32\drivers\tunnel.sys - ok
21:48:01.0634 4240 [ F87212E64DE6DACDD55610B847DC2A60 ] C:\Windows\System32\ntdll.dll
21:48:01.0634 4240 C:\Windows\System32\ntdll.dll - ok
21:48:01.0634 4240 [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe
21:48:01.0634 4240 C:\Windows\System32\smss.exe - ok
21:48:01.0634 4240 [ DCE0B53570703CCE580D066F89EF58CD ] C:\Windows\System32\drivers\igdkmd32.sys
21:48:01.0634 4240 C:\Windows\System32\drivers\igdkmd32.sys - ok
21:48:01.0649 4240 [ 39806CFEDDCC55E686A49BCCD2972F23 ] C:\Windows\System32\drivers\dxgkrnl.sys
21:48:01.0649 4240 C:\Windows\System32\drivers\dxgkrnl.sys - ok
21:48:01.0649 4240 [ F9BA894F72F78A5B74EECD97394F97E0 ] C:\Windows\System32\drivers\dxgmms1.sys
21:48:01.0649 4240 C:\Windows\System32\drivers\dxgmms1.sys - ok
21:48:01.0649 4240 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] C:\Windows\System32\drivers\hdaudbus.sys
21:48:01.0649 4240 C:\Windows\System32\drivers\hdaudbus.sys - ok
21:48:01.0665 4240 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys
21:48:01.0665 4240 C:\Windows\System32\drivers\i8042prt.sys - ok
21:48:01.0665 4240 [ 6EF8146358452995A4A9335E44ABB015 ] C:\Windows\System32\drivers\L1C62x86.sys
21:48:01.0665 4240 C:\Windows\System32\drivers\L1C62x86.sys - ok
21:48:01.0665 4240 [ 1C333BFD60F2FED2C7AD5DAF533CB742 ] C:\Windows\System32\drivers\usbehci.sys
21:48:01.0665 4240 C:\Windows\System32\drivers\usbehci.sys - ok
21:48:01.0681 4240 [ F6D1C957C5BF4F274AAD1DA7059916E4 ] C:\Windows\System32\drivers\usbport.sys
21:48:01.0681 4240 C:\Windows\System32\drivers\usbport.sys - ok
21:48:01.0681 4240 [ E3C36AC5AE87EC970AE8EA2A93D59AE1 ] C:\Windows\System32\drivers\Impcd.sys
21:48:01.0681 4240 C:\Windows\System32\drivers\Impcd.sys - ok
21:48:01.0681 4240 [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys
21:48:01.0681 4240 C:\Windows\System32\drivers\kbdclass.sys - ok
21:48:01.0681 4240 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys
21:48:01.0681 4240 C:\Windows\System32\drivers\mouclass.sys - ok
21:48:01.0696 4240 [ DEA805815E587DAD1DD2C502220B5616 ] C:\Windows\System32\drivers\CmBatt.sys
21:48:01.0696 4240 C:\Windows\System32\drivers\CmBatt.sys - ok
21:48:01.0696 4240 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] C:\Windows\System32\drivers\intelppm.sys
21:48:01.0696 4240 C:\Windows\System32\drivers\intelppm.sys - ok
21:48:01.0696 4240 [ 0217679B8FCA58714C3BF2726D2CA84E ] C:\Windows\System32\drivers\wmiacpi.sys
21:48:01.0696 4240 C:\Windows\System32\drivers\wmiacpi.sys - ok
21:48:01.0712 4240 [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys
21:48:01.0712 4240 C:\Windows\System32\drivers\agilevpn.sys - ok
21:48:01.0712 4240 [ F1724BA27E97D627F808FB0BA77A28A6 ] C:\Windows\System32\drivers\CompositeBus.sys
21:48:01.0712 4240 C:\Windows\System32\drivers\CompositeBus.sys - ok
21:48:01.0712 4240 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys
21:48:01.0712 4240 C:\Windows\System32\drivers\ndistapi.sys - ok
21:48:01.0727 4240 [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys
21:48:01.0727 4240 C:\Windows\System32\drivers\rasl2tp.sys - ok
21:48:01.0727 4240 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] C:\Windows\System32\drivers\ndiswan.sys
21:48:01.0727 4240 C:\Windows\System32\drivers\ndiswan.sys - ok
21:48:01.0727 4240 [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys
21:48:01.0727 4240 C:\Windows\System32\drivers\raspppoe.sys - ok
21:48:01.0727 4240 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys
21:48:01.0727 4240 C:\Windows\System32\drivers\raspptp.sys - ok
21:48:01.0743 4240 [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys
21:48:01.0743 4240 C:\Windows\System32\drivers\rassstp.sys - ok
21:48:01.0743 4240 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys
21:48:01.0743 4240 C:\Windows\System32\drivers\rdpbus.sys - ok
21:48:01.0743 4240 [ F44461E66F1B7DD267957FE9BAA63ED0 ] C:\Windows\System32\drivers\ew_jubusenum.sys
21:48:01.0743 4240 C:\Windows\System32\drivers\ew_jubusenum.sys - ok
21:48:01.0759 4240 [ F762EDD3ACCA095F5AF4D719F3B8AE3D ] C:\Windows\System32\drivers\ks.sys
21:48:01.0759 4240 C:\Windows\System32\drivers\ks.sys - ok
21:48:01.0759 4240 [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys
21:48:01.0759 4240 C:\Windows\System32\drivers\swenum.sys - ok
21:48:01.0759 4240 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] C:\Windows\System32\drivers\umbus.sys
21:48:01.0759 4240 C:\Windows\System32\drivers\umbus.sys - ok
21:48:01.0774 4240 [ EE6EF93CCFA94FAE8C6AB298273D8AE2 ] C:\Windows\System32\drivers\usbhub.sys
21:48:01.0774 4240 C:\Windows\System32\drivers\usbhub.sys - ok
21:48:01.0774 4240 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] C:\Windows\System32\drivers\ndproxy.sys
21:48:01.0774 4240 C:\Windows\System32\drivers\ndproxy.sys - ok
21:48:01.0774 4240 [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys
21:48:01.0774 4240 C:\Windows\System32\drivers\drmk.sys - ok
21:48:01.0790 4240 [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys
21:48:01.0790 4240 C:\Windows\System32\drivers\portcls.sys - ok
21:48:01.0790 4240 [ DBA9CB792CAF474C2DE11D98112E5FED ] C:\Windows\System32\drivers\RTKVHDA.sys
21:48:01.0790 4240 C:\Windows\System32\drivers\RTKVHDA.sys - ok
21:48:01.0790 4240 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] C:\Windows\System32\drivers\HdAudio.sys
21:48:01.0790 4240 C:\Windows\System32\drivers\HdAudio.sys - ok
21:48:01.0790 4240 [ 18E71EA0E063037A5C3C8272A5262B7C ] C:\Windows\System32\drivers\usbd.sys
21:48:01.0790 4240 C:\Windows\System32\drivers\usbd.sys - ok
21:48:01.0805 4240 [ 8455C4ED038EFD09E99327F9D2D48FFA ] C:\Windows\System32\drivers\usbccgp.sys
21:48:01.0805 4240 C:\Windows\System32\drivers\usbccgp.sys - ok
21:48:01.0805 4240 [ 08E0B15F88CBFFEE0BB18D321C42E1B4 ] C:\Windows\System32\drivers\rtl8192cu.sys
21:48:01.0805 4240 C:\Windows\System32\drivers\rtl8192cu.sys - ok
21:48:01.0821 4240 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] C:\Windows\System32\drivers\vwifibus.sys
21:48:01.0821 4240 C:\Windows\System32\drivers\vwifibus.sys - ok
21:48:01.0821 4240 [ F642A7E4BF78CFA359CCA0A3557C28D7 ] C:\Windows\System32\drivers\usbvideo.sys
21:48:01.0821 4240 C:\Windows\System32\drivers\usbvideo.sys - ok
21:48:01.0821 4240 [ 6C26122F1931D4D7810240F32DDCE890 ] C:\Windows\System32\drivers\hidparse.sys
21:48:01.0821 4240 C:\Windows\System32\drivers\hidparse.sys - ok
21:48:01.0837 4240 [ B682E1CC0FDC7AC04B71D1FA9A07EF21 ] C:\Windows\System32\drivers\hidclass.sys
21:48:01.0837 4240 C:\Windows\System32\drivers\hidclass.sys - ok
21:48:01.0837 4240 [ 25072FB35AC90B25F9E4E3BACF774102 ] C:\Windows\System32\drivers\hidusb.sys
21:48:01.0837 4240 C:\Windows\System32\drivers\hidusb.sys - ok
21:48:01.0837 4240 [ 3D9F0EBF350EDCFD6498057301455964 ] C:\Windows\System32\drivers\kbdhid.sys
21:48:01.0837 4240 C:\Windows\System32\drivers\kbdhid.sys - ok
21:48:01.0837 4240 [ D8889D56E0D27E57ED4591837FE71D27 ] C:\Windows\System32\drivers\USBSTOR.SYS
21:48:01.0837 4240 C:\Windows\System32\drivers\USBSTOR.SYS - ok
21:48:01.0852 4240 [ 41E4C8EBA464E7D6A5BA5E8827732AEB ] C:\Windows\System32\autochk.exe
21:48:01.0852 4240 C:\Windows\System32\autochk.exe - ok
21:48:01.0852 4240 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] C:\Windows\System32\drivers\mouhid.sys
21:48:01.0852 4240 C:\Windows\System32\drivers\mouhid.sys - ok
21:48:01.0852 4240 [ DF39C7C61225BCE4B9C152BBAE150E16 ] C:\Windows\System32\K7TSDbg.exe
21:48:01.0852 4240 C:\Windows\System32\K7TSDbg.exe - ok
21:48:01.0868 4240 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\System32\advapi32.dll
21:48:01.0868 4240 C:\Windows\System32\advapi32.dll - ok
21:48:01.0868 4240 [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll
21:48:01.0868 4240 C:\Windows\System32\difxapi.dll - ok
21:48:01.0868 4240 [ 225F6F663B94ACAF4307055FBB42E55F ] C:\Windows\System32\gdi32.dll
21:48:01.0868 4240 C:\Windows\System32\gdi32.dll - ok
21:48:01.0883 4240 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\System32\comdlg32.dll
21:48:01.0883 4240 C:\Windows\System32\comdlg32.dll - ok
21:48:01.0883 4240 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll
21:48:01.0883 4240 C:\Windows\System32\sechost.dll - ok
21:48:01.0883 4240 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\System32\ws2_32.dll
21:48:01.0883 4240 C:\Windows\System32\ws2_32.dll - ok
21:48:01.0899 4240 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll
21:48:01.0899 4240 C:\Windows\System32\psapi.dll - ok
21:48:01.0899 4240 [ 518C6116079414E7074E726925D07A41 ] C:\Windows\System32\shell32.dll
21:48:01.0899 4240 C:\Windows\System32\shell32.dll - ok
21:48:01.0899 4240 [ 0D874F3BC751CC2198AF2E6783FB8B35 ] C:\Windows\System32\wininet.dll
21:48:01.0899 4240 C:\Windows\System32\wininet.dll - ok
21:48:01.0915 4240 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\System32\setupapi.dll
21:48:01.0915 4240 C:\Windows\System32\setupapi.dll - ok
21:48:01.0915 4240 [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll
21:48:01.0915 4240 C:\Windows\System32\lpk.dll - ok
21:48:01.0915 4240 [ 4ACB903AD1693858A918907358CBD9E4 ] C:\Windows\System32\ole32.dll
21:48:01.0915 4240 C:\Windows\System32\ole32.dll - ok
21:48:01.0930 4240 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\System32\shlwapi.dll
21:48:01.0930 4240 C:\Windows\System32\shlwapi.dll - ok
21:48:01.0930 4240 [ 4605F7EE9805F7E1C98D6C959DD2949C ] C:\Windows\System32\kernel32.dll
21:48:01.0930 4240 C:\Windows\System32\kernel32.dll - ok
21:48:01.0930 4240 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll
21:48:01.0930 4240 C:\Windows\System32\nsi.dll - ok
21:48:01.0930 4240 [ E46D48A7FE961401F1CBF85531CDF05D ] C:\Windows\System32\msvcrt.dll
21:48:01.0930 4240 C:\Windows\System32\msvcrt.dll - ok
21:48:01.0946 4240 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\System32\usp10.dll
21:48:01.0946 4240 C:\Windows\System32\usp10.dll - ok
21:48:01.0946 4240 [ 5DF8132ADF721329234403189FC94E16 ] C:\Windows\System32\imm32.dll
21:48:01.0946 4240 C:\Windows\System32\imm32.dll - ok
21:48:01.0961 4240 [ FADBB267FE9846233ED486DE6EEAAEB9 ] C:\Windows\System32\oleaut32.dll
21:48:01.0961 4240 C:\Windows\System32\oleaut32.dll - ok
21:48:01.0961 4240 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\System32\Wldap32.dll
21:48:01.0961 4240 C:\Windows\System32\Wldap32.dll - ok
21:48:01.0961 4240 [ 13D1F490AF6C7649F51BA29F9CCBB778 ] C:\Windows\System32\iertutil.dll
21:48:01.0961 4240 C:\Windows\System32\iertutil.dll - ok
21:48:01.0977 4240 [ 61DA1DD85F7A9A8F8DEA8771931FAAF6 ] C:\Windows\System32\imagehlp.dll
21:48:01.0977 4240 C:\Windows\System32\imagehlp.dll - ok
21:48:01.0977 4240 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll
21:48:01.0977 4240 C:\Windows\System32\normaliz.dll - ok
21:48:01.0993 4240 [ 34B7E222E81FAFA885F0C5F2CFA56861 ] C:\Windows\System32\user32.dll
21:48:01.0993 4240 C:\Windows\System32\user32.dll - ok
21:48:01.0993 4240 [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll
21:48:01.0993 4240 C:\Windows\System32\clbcatq.dll - ok
21:48:01.0993 4240 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll
21:48:01.0993 4240 C:\Windows\System32\msctf.dll - ok
21:48:02.0008 4240 [ 4AF9FD44342A024B867E1950EE46FCB8 ] C:\Windows\System32\urlmon.dll
21:48:02.0008 4240 C:\Windows\System32\urlmon.dll - ok
21:48:02.0008 4240 [ 416D1DC8224A64B8C59DF79096EE6D1D ] C:\Windows\System32\rpcrt4.dll
21:48:02.0008 4240 C:\Windows\System32\rpcrt4.dll - ok
21:48:02.0024 4240 [ 15B94E4AC75C9295275BDC9A1D7054C3 ] C:\Windows\System32\cfgmgr32.dll
21:48:02.0024 4240 C:\Windows\System32\cfgmgr32.dll - ok
21:48:02.0024 4240 [ E6B5DE86ABF68D7D67E451C29287B5C5 ] C:\Windows\System32\crypt32.dll
21:48:02.0024 4240 C:\Windows\System32\crypt32.dll - ok
21:48:02.0024 4240 [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll
21:48:02.0024 4240 C:\Windows\System32\devobj.dll - ok
21:48:02.0039 4240 [ 27CBC636ABCE09CDB5227A872BE7A79C ] C:\Windows\System32\wintrust.dll
21:48:02.0039 4240 C:\Windows\System32\wintrust.dll - ok
21:48:02.0039 4240 [ B62AA1BB1F63839051441D2C6DD7B775 ] C:\Windows\System32\comctl32.dll
21:48:02.0039 4240 C:\Windows\System32\comctl32.dll - ok
21:48:02.0055 4240 [ B03C89367C03C19A742482DC78904DD0 ] C:\Windows\System32\KernelBase.dll
21:48:02.0055 4240 C:\Windows\System32\KernelBase.dll - ok
21:48:02.0055 4240 [ F5777C29E38E4BF12C6F93A0B2F1B2D7 ] C:\Windows\System32\msasn1.dll
21:48:02.0055 4240 C:\Windows\System32\msasn1.dll - ok
21:48:02.0055 4240 [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys
21:48:02.0055 4240 C:\Windows\System32\drivers\dxapi.sys - ok
21:48:02.0071 4240 [ 34999766FBCAB11BA5C4D26CE0378903 ] C:\Windows\System32\win32k.sys
21:48:02.0071 4240 C:\Windows\System32\win32k.sys - ok
21:48:02.0071 4240 [ 10DE24CCCD418C31107813682EB73542 ] C:\Windows\System32\csrsrv.dll
21:48:02.0071 4240 C:\Windows\System32\csrsrv.dll - ok
21:48:02.0086 4240 [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe
21:48:02.0086 4240 C:\Windows\System32\csrss.exe - ok
21:48:02.0086 4240 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\System32\basesrv.dll
21:48:02.0086 4240 C:\Windows\System32\basesrv.dll - ok
21:48:02.0086 4240 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\System32\winsrv.dll
21:48:02.0086 4240 C:\Windows\System32\winsrv.dll - ok
21:48:02.0102 4240 [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys
21:48:02.0102 4240 C:\Windows\System32\drivers\monitor.sys - ok
21:48:02.0102 4240 [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll
21:48:02.0102 4240 C:\Windows\System32\tsddd.dll - ok
21:48:02.0117 4240 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll
21:48:02.0117 4240 C:\Windows\System32\profapi.dll - ok
21:48:02.0117 4240 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll
21:48:02.0117 4240 C:\Windows\System32\sxssrv.dll - ok
21:48:02.0133 4240 [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe
21:48:02.0133 4240 C:\Windows\System32\wininit.exe - ok
21:48:02.0133 4240 [ 56FEFE9BB63CC6386CA1B8E49E5C5B7B ] C:\Windows\System32\cdd.dll
21:48:02.0133 4240 C:\Windows\System32\cdd.dll - ok
21:48:02.0133 4240 [ B4A73F01055635AE9E65F85712663D3B ] C:\Windows\System32\KBDUS.DLL
21:48:02.0133 4240 C:\Windows\System32\KBDUS.DLL - ok
21:48:02.0149 4240 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\System32\RpcRtRemote.dll
21:48:02.0149 4240 C:\Windows\System32\RpcRtRemote.dll - ok
21:48:02.0149 4240 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\System32\sxs.dll
21:48:02.0149 4240 C:\Windows\System32\sxs.dll - ok
21:48:02.0164 4240 [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll
21:48:02.0164 4240 C:\Windows\System32\WlS0WndH.dll - ok
21:48:02.0164 4240 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll
21:48:02.0164 4240 C:\Windows\System32\cryptbase.dll - ok
21:48:02.0164 4240 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\System32\apphelp.dll
21:48:02.0164 4240 C:\Windows\System32\apphelp.dll - ok
21:48:02.0180 4240 [ 4BC5B6D0B7BA1B92C9610A7EB1BAD8AB ] C:\Windows\System32\lsasrv.dll
21:48:02.0180 4240 C:\Windows\System32\lsasrv.dll - ok
21:48:02.0180 4240 [ F42309C4191C506B71DB5D1126D26318 ] C:\Windows\System32\lsass.exe
21:48:02.0180 4240 C:\Windows\System32\lsass.exe - ok
21:48:02.0195 4240 [ 398DC10274C0CB861338CFC56E727C9F ] C:\Windows\System32\lsm.exe
21:48:02.0195 4240 C:\Windows\System32\lsm.exe - ok
21:48:02.0195 4240 [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll
21:48:02.0195 4240 C:\Windows\System32\scext.dll - ok
21:48:02.0195 4240 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe
21:48:02.0195 4240 C:\Windows\System32\services.exe - ok
21:48:02.0211 4240 [ 3450BB5465D61E8876FD3006F772DEA9 ] C:\Windows\System32\sspicli.dll
21:48:02.0211 4240 C:\Windows\System32\sspicli.dll - ok
21:48:02.0211 4240 [ 54C5EB1FD11027FB23BC4F79146CE159 ] C:\Windows\System32\sspisrv.dll
21:48:02.0211 4240 C:\Windows\System32\sspisrv.dll - ok
21:48:02.0211 4240 [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll
21:48:02.0211 4240 C:\Windows\System32\sysntfy.dll - ok
21:48:02.0227 4240 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll
21:48:02.0227 4240 C:\Windows\System32\wmsgapi.dll - ok
21:48:02.0227 4240 [ 1C9CDBDF895A556E66AEBFD93A36B536 ] C:\Windows\System32\scesrv.dll
21:48:02.0227 4240 C:\Windows\System32\scesrv.dll - ok
21:48:02.0242 4240 [ 033CA30E335588E243C42D715BF48DDF ] C:\Windows\System32\secur32.dll
21:48:02.0242 4240 C:\Windows\System32\secur32.dll - ok
21:48:02.0242 4240 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\System32\srvcli.dll
21:48:02.0242 4240 C:\Windows\System32\srvcli.dll - ok
21:48:02.0242 4240 [ 4BEF53964DC519550EE030253FC1E25E ] C:\Windows\System32\samsrv.dll
21:48:02.0242 4240 C:\Windows\System32\samsrv.dll - ok
21:48:02.0258 4240 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll
21:48:02.0258 4240 C:\Windows\System32\cryptdll.dll - ok
21:48:02.0258 4240 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll
21:48:02.0258 4240 C:\Windows\System32\wevtapi.dll - ok
21:48:02.0273 4240 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll
21:48:02.0273 4240 C:\Windows\System32\authz.dll - ok
21:48:02.0273 4240 [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll
21:48:02.0273 4240 C:\Windows\System32\bcrypt.dll - ok
21:48:02.0273 4240 [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll
21:48:02.0273 4240 C:\Windows\System32\cngaudit.dll - ok
21:48:02.0289 4240 [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll
21:48:02.0289 4240 C:\Windows\System32\msprivs.dll - ok
21:48:02.0289 4240 [ C20FF1A17726C357461A7AC5B3BFC3AD ] C:\Windows\System32\ncrypt.dll
21:48:02.0289 4240 C:\Windows\System32\ncrypt.dll - ok
21:48:02.0305 4240 [ C1AE600C554A0EBC6CD211541FA6815F ] C:\Windows\System32\netjoin.dll
21:48:02.0305 4240 C:\Windows\System32\netjoin.dll - ok
21:48:02.0305 4240 [ 718B8DD9C887576E078EC2F84315F864 ] C:\Windows\System32\kerberos.dll
21:48:02.0305 4240 C:\Windows\System32\kerberos.dll - ok
21:48:02.0305 4240 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll
21:48:02.0305 4240 C:\Windows\System32\negoexts.dll - ok
21:48:02.0320 4240 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll
21:48:02.0320 4240 C:\Windows\System32\cryptsp.dll - ok
21:48:02.0320 4240 [ F40388A19F3BE3CEC25656CE07392877 ] C:\Windows\System32\msv1_0.dll
21:48:02.0320 4240 C:\Windows\System32\msv1_0.dll - ok
21:48:02.0320 4240 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\System32\mswsock.dll
21:48:02.0320 4240 C:\Windows\System32\mswsock.dll - ok
21:48:02.0336 4240 [ EAA75D9000B71F10EEC04D2AE6C60E81 ] C:\Windows\System32\netlogon.dll
21:48:02.0336 4240 C:\Windows\System32\netlogon.dll - ok
21:48:02.0336 4240 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll
21:48:02.0336 4240 C:\Windows\System32\wship6.dll - ok
21:48:02.0351 4240 [ 6D5A49D6479EB753C7879F73A4C35E0F ] C:\Windows\System32\dnsapi.dll
21:48:02.0351 4240 C:\Windows\System32\dnsapi.dll - ok
21:48:02.0351 4240 [ D8ECA7A87AAA3AE308B5277411666622 ] C:\Windows\System32\logoncli.dll
21:48:02.0351 4240 C:\Windows\System32\logoncli.dll - ok
21:48:02.0351 4240 [ 0A53FD4EBBD92002CCC362A9B8087885 ] C:\Windows\System32\schannel.dll
21:48:02.0351 4240 C:\Windows\System32\schannel.dll - ok
21:48:02.0367 4240 [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll
21:48:02.0367 4240 C:\Windows\System32\wdigest.dll - ok
21:48:02.0367 4240 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll
21:48:02.0367 4240 C:\Windows\System32\rsaenh.dll - ok
21:48:02.0367 4240 [ A739793F1A4F04B66E2444E90AE9E694 ] C:\Windows\System32\TSpkg.dll
21:48:02.0367 4240 C:\Windows\System32\TSpkg.dll - ok
21:48:02.0383 4240 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll
21:48:02.0383 4240 C:\Windows\System32\bcryptprimitives.dll - ok
21:48:02.0383 4240 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\System32\credssp.dll
21:48:02.0383 4240 C:\Windows\System32\credssp.dll - ok
21:48:02.0398 4240 [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll
21:48:02.0398 4240 C:\Windows\System32\efslsaext.dll - ok
21:48:02.0398 4240 [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll
21:48:02.0398 4240 C:\Windows\System32\pku2u.dll - ok
21:48:02.0398 4240 [ 26073302DAEA83CC5B944C546D6B47D2 ] C:\Windows\System32\scecli.dll
21:48:02.0398 4240 C:\Windows\System32\scecli.dll - ok
21:48:02.0398 4240 [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll
21:48:02.0398 4240 C:\Windows\System32\ubpm.dll - ok
21:48:02.0414 4240 [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\System32\winsta.dll
21:48:02.0414 4240 C:\Windows\System32\winsta.dll - ok
21:48:02.0414 4240 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe
21:48:02.0414 4240 C:\Windows\System32\svchost.exe - ok
21:48:02.0429 4240 [ 2CC2008F1296968FBA162ED9F9AFE328 ] C:\Windows\System32\umpnpmgr.dll
21:48:02.0429 4240 C:\Windows\System32\umpnpmgr.dll - ok
21:48:02.0429 4240 [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll
21:48:02.0429 4240 C:\Windows\System32\devrtl.dll - ok
21:48:02.0429 4240 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll
21:48:02.0429 4240 C:\Windows\System32\gpapi.dll - ok
21:48:02.0445 4240 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll
21:48:02.0445 4240 C:\Windows\System32\SPInf.dll - ok
21:48:02.0445 4240 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\System32\userenv.dll
21:48:02.0445 4240 C:\Windows\System32\userenv.dll - ok
21:48:02.0445 4240 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll
21:48:02.0445 4240 C:\Windows\System32\pcwum.dll - ok
21:48:02.0461 4240 [ DBFF83F709A91049621C1D35DD45C92C ] C:\Windows\System32\umpo.dll
21:48:02.0461 4240 C:\Windows\System32\umpo.dll - ok
21:48:02.0461 4240 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys
21:48:02.0461 4240 C:\Windows\System32\drivers\luafv.sys - ok
21:48:02.0461 4240 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll
21:48:02.0461 4240 C:\Windows\System32\powrprof.dll - ok
21:48:02.0476 4240 [ 500D089CE760D83DA2B6CBA681AA9949 ] C:\Windows\System32\drivers\mbam.sys
21:48:02.0476 4240 C:\Windows\System32\drivers\mbam.sys - ok
21:48:02.0476 4240 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] C:\Windows\System32\drivers\WUDFPf.sys
21:48:02.0476 4240 C:\Windows\System32\drivers\WUDFPf.sys - ok
21:48:02.0476 4240 [ 8EC6A4AB12B8F3759E21F8E3A388F2CF ] C:\Windows\System32\winlogon.exe
21:48:02.0476 4240 C:\Windows\System32\winlogon.exe - ok
21:48:02.0492 4240 [ B82CD39E336973359D7C9BF911E8E84F ] C:\Windows\System32\rpcss.dll
21:48:02.0492 4240 C:\Windows\System32\rpcss.dll - ok
21:48:02.0492 4240 [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll
21:48:02.0492 4240 C:\Windows\System32\RpcEpMap.dll - ok
21:48:02.0492 4240 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll
21:48:02.0492 4240 C:\Windows\System32\wshqos.dll - ok
21:48:02.0507 4240 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL
21:48:02.0507 4240 C:\Windows\System32\WSHTCPIP.DLL - ok
21:48:02.0507 4240 [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll
21:48:02.0507 4240 C:\Windows\System32\FirewallAPI.dll - ok
21:48:02.0507 4240 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll
21:48:02.0507 4240 C:\Windows\System32\version.dll - ok
21:48:02.0523 4240 [ 2873DFE622F4A3929D93F7BC85ADE13E ] C:\Windows\System32\wevtsvc.dll
21:48:02.0523 4240 C:\Windows\System32\wevtsvc.dll - ok
21:48:02.0523 4240 [ 510C873BFA135AA829F4180352772734 ] C:\Windows\System32\audiosrv.dll
21:48:02.0523 4240 C:\Windows\System32\audiosrv.dll - ok
21:48:02.0523 4240 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll
21:48:02.0523 4240 C:\Windows\System32\avrt.dll - ok
21:48:02.0523 4240 [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll
21:48:02.0523 4240 C:\Windows\System32\mmcss.dll - ok
21:48:02.0539 4240 [ 1B97EBF7F60798814C4E5C8FDC79EAD2 ] C:\Windows\System32\LogonUI.exe
21:48:02.0539 4240 C:\Windows\System32\LogonUI.exe - ok
21:48:02.0539 4240 [ FABFC817547EABB19B74849CEF410622 ] C:\Windows\System32\authui.dll
21:48:02.0539 4240 C:\Windows\System32\authui.dll - ok
21:48:02.0539 4240 [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\System32\MMDevAPI.dll
21:48:02.0539 4240 C:\Windows\System32\MMDevAPI.dll - ok
21:48:02.0554 4240 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\System32\propsys.dll
21:48:02.0554 4240 C:\Windows\System32\propsys.dll - ok
21:48:02.0554 4240 [ E8132FB3BAC7C0CDBD581485B8BA947F ] C:\Windows\System32\cryptui.dll
21:48:02.0554 4240 C:\Windows\System32\cryptui.dll - ok
21:48:02.0554 4240 [ B45DA4D9075AF4297DF675CCD11D4997 ] C:\Windows\System32\audiodg.exe
21:48:02.0554 4240 C:\Windows\System32\audiodg.exe - ok
21:48:02.0570 4240 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll
21:48:02.0570 4240 C:\Windows\System32\ntmarta.dll - ok
21:48:02.0570 4240 [ 56FB5F222EA30D3D3FC459879772CB73 ] C:\Windows\System32\cscsvc.dll
21:48:02.0570 4240 C:\Windows\System32\cscsvc.dll - ok
21:48:02.0585 4240 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] C:\Windows\System32\gpsvc.dll
21:48:02.0585 4240 C:\Windows\System32\gpsvc.dll - ok
21:48:02.0585 4240 [ 0FA436A553408CBEBA070E3182658DE3 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
21:48:02.0585 4240 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll - ok
21:48:02.0601 4240 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\System32\nlaapi.dll
21:48:02.0601 4240 C:\Windows\System32\nlaapi.dll - ok
21:48:02.0601 4240 [ 630CF26F0227498B7D5A92B12548960F ] C:\Windows\System32\profsvc.dll
21:48:02.0601 4240 C:\Windows\System32\profsvc.dll - ok
21:48:02.0617 4240 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll
21:48:02.0617 4240 C:\Windows\System32\atl.dll - ok
21:48:02.0617 4240 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll
21:48:02.0617 4240 C:\Windows\System32\dsrole.dll - ok
21:48:02.0617 4240 [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll
21:48:02.0617 4240 C:\Windows\System32\PeerDist.dll - ok
21:48:02.0632 4240 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll
21:48:02.0632 4240 C:\Windows\System32\slc.dll - ok
21:48:02.0632 4240 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll
21:48:02.0632 4240 C:\Windows\System32\themeservice.dll - ok
21:48:02.0648 4240 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll
21:48:02.0648 4240 C:\Windows\System32\es.dll - ok
21:48:02.0648 4240 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\System32\mstask.dll
21:48:02.0648 4240 C:\Windows\System32\mstask.dll - ok
21:48:02.0663 4240 [ 9F758BF982DE530C8C77C9F03334DEEB ] C:\Windows\System32\taskschd.dll
21:48:02.0663 4240 C:\Windows\System32\taskschd.dll - ok
21:48:02.0663 4240 [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll
21:48:02.0663 4240 C:\Windows\System32\Sens.dll - ok
21:48:02.0679 4240 [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys
21:48:02.0679 4240 C:\Windows\System32\drivers\fltMgr.sys - ok
21:48:02.0679 4240 [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL
21:48:02.0679 4240 C:\Windows\System32\PSHED.DLL - ok
21:48:02.0679 4240 [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll
21:48:02.0679 4240 C:\Windows\System32\adtschema.dll - ok
21:48:02.0695 4240 [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll
21:48:02.0695 4240 C:\Windows\System32\comres.dll - ok
21:48:02.0695 4240 [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
21:48:02.0695 4240 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
21:48:02.0710 4240 [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
21:48:02.0710 4240 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
21:48:02.0710 4240 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll
21:48:02.0710 4240 C:\Windows\System32\samlib.dll - ok
21:48:02.0726 4240 [ D6415224AD96840153E283A0268DE384 ] C:\Windows\System32\shacct.dll
21:48:02.0726 4240 C:\Windows\System32\shacct.dll - ok
21:48:02.0726 4240 [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll
21:48:02.0726 4240 C:\Windows\System32\uxsms.dll - ok
21:48:02.0726 4240 [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll
21:48:02.0726 4240 C:\Windows\System32\uxtheme.dll - ok
21:48:02.0741 4240 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\System32\wtsapi32.dll
21:48:02.0741 4240 C:\Windows\System32\wtsapi32.dll - ok
21:48:02.0741 4240 [ 688975CEA9ADD749E339168A2841205A ] C:\Windows\System32\WUDFPlatform.dll
21:48:02.0741 4240 C:\Windows\System32\WUDFPlatform.dll - ok
21:48:02.0757 4240 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] C:\Windows\System32\WUDFSvc.dll
21:48:02.0757 4240 C:\Windows\System32\WUDFSvc.dll - ok
21:48:02.0757 4240 [ EDB57065790B62EF83BE117AD3EDFDE2 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll
21:48:02.0757 4240 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll - ok
21:48:02.0757 4240 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll
21:48:02.0757 4240 C:\Windows\System32\dui70.dll - ok
21:48:02.0773 4240 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll
21:48:02.0773 4240 C:\Windows\System32\duser.dll - ok
21:48:02.0773 4240 [ 6B18F23108E6FA70B9F62B4D89668ED8 ] C:\Windows\System32\SndVolSSO.dll
21:48:02.0773 4240 C:\Windows\System32\SndVolSSO.dll - ok
21:48:02.0788 4240 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys
21:48:02.0788 4240 C:\Windows\System32\drivers\lltdio.sys - ok
21:48:02.0788 4240 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] C:\Windows\System32\drivers\ndisuio.sys
21:48:02.0788 4240 C:\Windows\System32\drivers\ndisuio.sys - ok
21:48:02.0804 4240 [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys
21:48:02.0804 4240 C:\Windows\System32\drivers\nwifi.sys - ok
21:48:02.0804 4240 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll
21:48:02.0804 4240 C:\Windows\System32\dwmapi.dll - ok
21:48:02.0819 4240 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll
21:48:02.0819 4240 C:\Windows\System32\hid.dll - ok
21:48:02.0819 4240 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\System32\winmm.dll
21:48:02.0819 4240 C:\Windows\System32\winmm.dll - ok
21:48:02.0819 4240 [ 7BF5EA753D4CC056B9462A02AC51B160 ] C:\Windows\System32\xmllite.dll
21:48:02.0819 4240 C:\Windows\System32\xmllite.dll - ok
21:48:02.0835 4240 [ C56495FBD770712367CAD35E5DE72DA6 ] C:\Windows\System32\dhcpcore.dll
21:48:02.0835 4240 C:\Windows\System32\dhcpcore.dll - ok
21:48:02.0835 4240 [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys
21:48:02.0835 4240 C:\Windows\System32\drivers\rspndr.sys - ok
21:48:02.0851 4240 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\System32\IPHLPAPI.DLL
21:48:02.0851 4240 C:\Windows\System32\IPHLPAPI.DLL - ok
21:48:02.0851 4240 [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll
21:48:02.0851 4240 C:\Windows\System32\lmhsvc.dll - ok
21:48:02.0866 4240 [ 16707EC5FD029A4415B138796F0981CE ] C:\Windows\System32\nrpsrv.dll
21:48:02.0866 4240 C:\Windows\System32\nrpsrv.dll - ok
21:48:02.0866 4240 [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll
21:48:02.0866 4240 C:\Windows\System32\nsisvc.dll - ok
21:48:02.0866 4240 [ B24ABFAB2D541996A38905369D511953 ] C:\Windows\System32\wdmaud.drv
21:48:02.0866 4240 C:\Windows\System32\wdmaud.drv - ok
21:48:02.0882 4240 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll
21:48:02.0882 4240 C:\Windows\System32\winnsi.dll - ok
21:48:02.0882 4240 [ D0722E963D3C6145446874241401B209 ] C:\Windows\System32\dnsrslvr.dll
21:48:02.0882 4240 C:\Windows\System32\dnsrslvr.dll - ok
21:48:02.0882 4240 [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\System32\keyiso.dll
21:48:02.0882 4240 C:\Windows\System32\keyiso.dll - ok
21:48:02.0897 4240 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll
21:48:02.0897 4240 C:\Windows\System32\ksuser.dll - ok
21:48:02.0897 4240 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\System32\WindowsCodecs.dll
21:48:02.0897 4240 C:\Windows\System32\WindowsCodecs.dll - ok
21:48:02.0913 4240 [ 990A58A0B01720E419B55EFC5FF387F8 ] C:\Windows\System32\dhcpcore6.dll
21:48:02.0913 4240 C:\Windows\System32\dhcpcore6.dll - ok
21:48:02.0913 4240 [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll
21:48:02.0913 4240 C:\Windows\System32\dnsext.dll - ok
21:48:02.0929 4240 [ 496C56361F57C2CA54931EBBC7D6C2CF ] C:\Windows\System32\eapphost.dll
21:48:02.0929 4240 C:\Windows\System32\eapphost.dll - ok
21:48:02.0929 4240 [ 8600142FA91C1B96367D3300AD0F3F3A ] C:\Windows\System32\eapsvc.dll
21:48:02.0929 4240 C:\Windows\System32\eapsvc.dll - ok
21:48:02.0929 4240 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\System32\FWPUCLNT.DLL
21:48:02.0929 4240 C:\Windows\System32\FWPUCLNT.DLL - ok
21:48:02.0944 4240 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll
21:48:02.0944 4240 C:\Windows\System32\dhcpcsvc.dll - ok
21:48:02.0944 4240 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\System32\dhcpcsvc6.dll
21:48:02.0944 4240 C:\Windows\System32\dhcpcsvc6.dll - ok
21:48:02.0960 4240 [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll
21:48:02.0960 4240 C:\Windows\System32\wlansvc.dll - ok
21:48:02.0960 4240 [ 91DA0906B27ADC98B7CC9D17F6F8227C ] C:\Windows\System32\umb.dll
21:48:02.0960 4240 C:\Windows\System32\umb.dll - ok
21:48:02.0960 4240 [ 81E1423A5D3F0F350307B537D33599FC ] C:\Windows\System32\wlanmsm.dll
21:48:02.0960 4240 C:\Windows\System32\wlanmsm.dll - ok
21:48:02.0975 4240 [ AFBB5060A2DAD431A2EAEB2C86CFFE81 ] C:\Windows\System32\AudioSes.dll
21:48:02.0975 4240 C:\Windows\System32\AudioSes.dll - ok
21:48:02.0975 4240 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll
21:48:02.0975 4240 C:\Windows\System32\midimap.dll - ok
21:48:02.0991 4240 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll
21:48:02.0991 4240 C:\Windows\System32\msacm32.dll - ok
21:48:02.0991 4240 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv
21:48:02.0991 4240 C:\Windows\System32\msacm32.drv - ok
21:48:02.0991 4240 [ 20C06A50DFC097E134BC6FA8444CA9BC ] C:\Windows\System32\wlansec.dll
21:48:02.0991 4240 C:\Windows\System32\wlansec.dll - ok
21:48:03.0007 4240 [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll
21:48:03.0007 4240 C:\Windows\System32\AudioEng.dll - ok
21:48:03.0007 4240 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll
21:48:03.0007 4240 C:\Windows\System32\eappcfg.dll - ok
21:48:03.0007 4240 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll
21:48:03.0007 4240 C:\Windows\System32\eappprxy.dll - ok
21:48:03.0022 4240 [ C1585EAA67C37A05BF6F93726FAFC069 ] C:\Windows\System32\l2gpstore.dll
21:48:03.0022 4240 C:\Windows\System32\l2gpstore.dll - ok
21:48:03.0022 4240 [ ADEE99F825F8C247C37541EA102CA975 ] C:\Windows\System32\onex.dll
21:48:03.0022 4240 C:\Windows\System32\onex.dll - ok
21:48:03.0022 4240 [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll
21:48:03.0022 4240 C:\Windows\System32\VaultCredProvider.dll - ok
21:48:03.0038 4240 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll
21:48:03.0038 4240 C:\Windows\System32\winbrand.dll - ok
21:48:03.0038 4240 [ 3C33562F4FAE3D58E47F662DCE07675E ] C:\Windows\System32\WinSCard.dll
21:48:03.0038 4240 C:\Windows\System32\WinSCard.dll - ok
21:48:03.0053 4240 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll
21:48:03.0053 4240 C:\Windows\System32\wlanutil.dll - ok
21:48:03.0053 4240 [ 749F9795F01C35EEBE100A87D82B9681 ] C:\Windows\System32\wlgpclnt.dll
21:48:03.0053 4240 C:\Windows\System32\wlgpclnt.dll - ok
21:48:03.0053 4240 [ 2DAE86D453525BECEFBC298A66E4D2FC ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
21:48:03.0053 4240 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
21:48:03.0069 4240 [ 3612142EAA6227028F010714D71BBD5F ] C:\Windows\System32\msxml6.dll
21:48:03.0069 4240 C:\Windows\System32\msxml6.dll - ok
21:48:03.0069 4240 [ 2D15C41214F518FC3C72A4C01C30882F ] C:\Windows\System32\bthprops.cpl
21:48:03.0069 4240 C:\Windows\System32\bthprops.cpl - ok
21:48:03.0069 4240 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\System32\winspool.drv
21:48:03.0069 4240 C:\Windows\System32\winspool.drv - ok
21:48:03.0085 4240 [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll
21:48:03.0085 4240 C:\Windows\System32\AUDIOKSE.dll - ok
21:48:03.0085 4240 [ 2F6A27F48154D20AC9F27C19B3A0FEAC ] C:\Windows\System32\MBWrp32.dll
21:48:03.0085 4240 C:\Windows\System32\MBWrp32.dll - ok
21:48:03.0100 4240 [ 53407BDDFBB93BFBC2F2E7948F05A7AC ] C:\Windows\System32\MBAPO32.dll
21:48:03.0100 4240 C:\Windows\System32\MBAPO32.dll - ok
21:48:03.0100 4240 [ 9F1BB2E5177D8C7AF7CC45BFC18010C8 ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:48:03.0100 4240 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:48:03.0100 4240 [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll
21:48:03.0100 4240 C:\Windows\System32\BioCredProv.dll - ok
21:48:03.0116 4240 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] C:\Windows\System32\shsvcs.dll
21:48:03.0116 4240 C:\Windows\System32\shsvcs.dll - ok
21:48:03.0116 4240 [ 7BC8F1F1701FCD9E42EBD3271CF20935 ] C:\Windows\System32\RtkAPO.dll
21:48:03.0116 4240 C:\Windows\System32\RtkAPO.dll - ok
21:48:03.0116 4240 [ 702A13ED6F2B4740FA77A7A19B382348 ] C:\Windows\System32\credui.dll
21:48:03.0116 4240 C:\Windows\System32\credui.dll - ok
21:48:03.0131 4240 [ C3DBF7DFF5A38136E26BADB7AB4E2972 ] C:\Windows\System32\netapi32.dll
21:48:03.0131 4240 C:\Windows\System32\netapi32.dll - ok
21:48:03.0131 4240 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\System32\netutils.dll
21:48:03.0131 4240 C:\Windows\System32\netutils.dll - ok
21:48:03.0131 4240 [ 3E8B0C453E25613A1F59762A5C42AA75 ] C:\Windows\System32\schedsvc.dll
21:48:03.0131 4240 C:\Windows\System32\schedsvc.dll - ok
21:48:03.0147 4240 [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll
21:48:03.0147 4240 C:\Windows\System32\vaultcli.dll - ok
21:48:03.0147 4240 [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll
21:48:03.0147 4240 C:\Windows\System32\winbio.dll - ok
21:48:03.0147 4240 [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll
21:48:03.0147 4240 C:\Windows\System32\certCredProvider.dll - ok
21:48:03.0163 4240 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\System32\samcli.dll
21:48:03.0163 4240 C:\Windows\System32\samcli.dll - ok
21:48:03.0163 4240 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\System32\wkscli.dll
21:48:03.0163 4240 C:\Windows\System32\wkscli.dll - ok
21:48:03.0163 4240 [ C5B5CCDBF8ED1475240313ED88234E3F ] C:\Windows\System32\netcfgx.dll
21:48:03.0163 4240 C:\Windows\System32\netcfgx.dll - ok
21:48:03.0178 4240 [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll
21:48:03.0178 4240 C:\Windows\System32\rasplap.dll - ok
21:48:03.0178 4240 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll
21:48:03.0178 4240 C:\Windows\System32\ktmw32.dll - ok
21:48:03.0194 4240 [ 0D4E8439AD3159A335FA720E043EA22E ] C:\Windows\System32\taskcomp.dll
21:48:03.0194 4240 C:\Windows\System32\taskcomp.dll - ok
21:48:03.0194 4240 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll
21:48:03.0194 4240 C:\Windows\System32\rasapi32.dll - ok
21:48:03.0194 4240 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll
21:48:03.0194 4240 C:\Windows\System32\rasman.dll - ok
21:48:03.0194 4240 [ 2DD44566FF92EC81726C5FAFEFA3FE8B ] C:\Windows\System32\rtutils.dll
21:48:03.0209 4240 C:\Windows\System32\rtutils.dll - ok
21:48:03.0209 4240 [ DB7F4DE9079F8D073622F18A96A671D5 ] C:\Windows\System32\fveapi.dll
21:48:03.0209 4240 C:\Windows\System32\fveapi.dll - ok
21:48:03.0209 4240 [ CBD010BFBED9657C3813400AAD03CF8A ] C:\Windows\System32\oleacc.dll
21:48:03.0209 4240 C:\Windows\System32\oleacc.dll - ok
21:48:03.0225 4240 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll
21:48:03.0225 4240 C:\Windows\System32\UIAutomationCore.dll - ok
21:48:03.0225 4240 [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll
21:48:03.0225 4240 C:\Windows\System32\fvecerts.dll - ok
21:48:03.0225 4240 [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll
21:48:03.0225 4240 C:\Windows\System32\tbs.dll - ok
21:48:03.0241 4240 [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll
21:48:03.0241 4240 C:\Windows\System32\UXInit.dll - ok
21:48:03.0241 4240 [ C531C7FD9E8B62021112787C4E2C5A5A ] C:\Windows\System32\drivers\http.sys
21:48:03.0241 4240 C:\Windows\System32\drivers\http.sys - ok
21:48:03.0241 4240 [ 4E30ED3E551E867ADD1C8D58F5EDD9DF ] C:\Windows\System32\WMALFXGFXDSP.dll
21:48:03.0241 4240 C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:48:03.0256 4240 [ DE5DACEBD4C89834EC6D2C41C8643CDA ] C:\Windows\System32\taskeng.exe
21:48:03.0256 4240 C:\Windows\System32\taskeng.exe - ok
21:48:03.0256 4240 [ 329474C0AB680B425DFB467B910371A1 ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
21:48:03.0256 4240 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
21:48:03.0256 4240 [ 49B6DD6AB3715B7A67965F17194E98A9 ] C:\Windows\System32\spoolsv.exe
21:48:03.0256 4240 C:\Windows\System32\spoolsv.exe - ok
21:48:03.0272 4240 [ 85AC71C045CEB054ED48A7841AAE0C11 ] C:\Windows\System32\BFE.DLL
21:48:03.0272 4240 C:\Windows\System32\BFE.DLL - ok
21:48:03.0272 4240 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\System32\rundll32.exe
21:48:03.0272 4240 C:\Windows\System32\rundll32.exe - ok
21:48:03.0272 4240 [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\System32\TSChannel.dll
21:48:03.0272 4240 C:\Windows\System32\TSChannel.dll - ok
21:48:03.0287 4240 [ 1351931877DE0C46C4D42DAA26F7B5B1 ] C:\Windows\AppPatch\AcLayers.dll
21:48:03.0287 4240 C:\Windows\AppPatch\AcLayers.dll - ok
21:48:03.0287 4240 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll
21:48:03.0287 4240 C:\Windows\System32\mpr.dll - ok
21:48:03.0287 4240 [ 500E39533F9C7E1AE22B4CB1DAE71AB4 ] C:\Windows\System32\msacm325.dll
21:48:03.0287 4240 C:\Windows\System32\msacm325.dll - ok
21:48:03.0303 4240 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll
21:48:03.0303 4240 C:\Windows\System32\mfplat.dll - ok
21:48:03.0303 4240 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\System32\opengl32.dll
21:48:03.0303 4240 C:\Windows\System32\opengl32.dll - ok
21:48:03.0303 4240 [ A6F02BCD555A5F93932E6944F93D06CC ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp32.dll
21:48:03.0303 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp32.dll - ok
21:48:03.0319 4240 [ 07EC995CCB69063C430E88008013FA8C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq32.dll
21:48:03.0319 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq32.dll - ok
21:48:03.0319 4240 [ 185B4D605DC1204D20755F19BEA72BA7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36032.dll
21:48:03.0319 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36032.dll - ok
21:48:03.0319 4240 [ F86BEE12E78C5D43606CEB3AFC6ACAF2 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit32.dll
21:48:03.0319 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit32.dll - ok
21:48:03.0334 4240 [ 1841EE0F22FA77FA059462E883801793 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv32.dll
21:48:03.0334 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv32.dll - ok
21:48:03.0334 4240 [ F763787274D0903EDC581408A6F07302 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo32.dll
21:48:03.0334 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo32.dll - ok
21:48:03.0350 4240 [ 919EE79FBFC324C8F6AE3586CE5185F0 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd32.dll
21:48:03.0350 4240 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd32.dll - ok
21:48:03.0350 4240 [ FCAFAEF6798D7B51FF029F99A9898961 ] C:\Windows\System32\drivers\bowser.sys
21:48:03.0350 4240 C:\Windows\System32\drivers\bowser.sys - ok
21:48:03.0350 4240 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys
21:48:03.0350 4240 C:\Windows\System32\drivers\mpsdrv.sys - ok
21:48:03.0365 4240 [ 5CD996CECF45CBC3E8D109C86B82D69E ] C:\Windows\System32\MPSSVC.dll
21:48:03.0365 4240 C:\Windows\System32\MPSSVC.dll - ok
21:48:03.0365 4240 [ F4A054BE78AF7F410129C4B64B07DC9B ] C:\Windows\System32\drivers\mrxsmb.sys
21:48:03.0365 4240 C:\Windows\System32\drivers\mrxsmb.sys - ok
21:48:03.0365 4240 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\System32\glu32.dll
21:48:03.0365 4240 C:\Windows\System32\glu32.dll - ok
21:48:03.0381 4240 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\System32\ddraw.dll
21:48:03.0381 4240 C:\Windows\System32\ddraw.dll - ok
21:48:03.0381 4240 [ DEFFA295BD1895C6ED8E3078412AC60B ] C:\Windows\System32\drivers\mrxsmb10.sys
21:48:03.0381 4240 C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:48:03.0381 4240 [ 24D76ABE5DCAD22F19D105F76FDF0CE1 ] C:\Windows\System32\drivers\mrxsmb20.sys
21:48:03.0381 4240 C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:48:03.0397 4240 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\System32\dciman32.dll
21:48:03.0397 4240 C:\Windows\System32\dciman32.dll - ok
21:48:03.0397 4240 [ B9891F885DCF1F0513A51CB58493CB1F ] C:\Windows\System32\wkssvc.dll
21:48:03.0397 4240 C:\Windows\System32\wkssvc.dll - ok
21:48:03.0397 4240 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys
21:48:03.0397 4240 C:\Windows\System32\drivers\parport.sys - ok
21:48:03.0412 4240 [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll
21:48:03.0412 4240 C:\Windows\System32\wfapigp.dll - ok
21:48:03.0412 4240 [ ED6D98E58406F2779C844943076EB4EE ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
21:48:03.0412 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe - ok
21:48:03.0412 4240 [ E60878164EAB0FFA8024451E579DBEE4 ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\Swordfish.dll
21:48:03.0412 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\Swordfish.dll - ok
21:48:03.0428 4240 [ D3F6A83F6EC6B76B19342F348AD5A6D5 ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sqlite3.dll
21:48:03.0428 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sqlite3.dll - ok
21:48:03.0428 4240 [ E0FE1259D88A89493098D9269144FD5F ] C:\Windows\System32\wiarpc.dll
21:48:03.0428 4240 C:\Windows\System32\wiarpc.dll - ok
21:48:03.0428 4240 [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\System32\mscms.dll
21:48:03.0428 4240 C:\Windows\System32\mscms.dll - ok
21:48:03.0443 4240 [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll
21:48:03.0443 4240 C:\Windows\System32\pcasvc.dll - ok
21:48:03.0443 4240 [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe
21:48:03.0443 4240 C:\Windows\System32\snmptrap.exe - ok
21:48:03.0443 4240 [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll
21:48:03.0443 4240 C:\Windows\System32\PeerDistSh.dll - ok
21:48:03.0459 4240 [ A6CE73469591554279DA63BE715DBC93 ] C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
21:48:03.0459 4240 C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe - ok
21:48:03.0459 4240 [ 86D4ABC1B01D39C810E14D54C2D6AEE1 ] C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
21:48:03.0459 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe - ok
21:48:03.0459 4240 [ 67B1C96DF3C34D66190126639A2C0260 ] C:\Windows\System32\drivers\asdrs.sys
21:48:03.0459 4240 C:\Windows\System32\drivers\asdrs.sys - ok
21:48:03.0475 4240 [ E0AE816D41F326F37EDFFC1CB0D462B1 ] C:\Program Files\Anvisoft\Anvi Smart Defender\sqlite3.dll
21:48:03.0475 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\sqlite3.dll - ok
21:48:03.0475 4240 [ 6775931D9F2E203126251A28D6E7E0EC ] C:\Program Files\Anvisoft\Anvi Smart Defender\Swordfish.dll
21:48:03.0475 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\Swordfish.dll - ok
21:48:03.0475 4240 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\System32\fltLib.dll
21:48:03.0475 4240 C:\Windows\System32\fltLib.dll - ok
21:48:03.0490 4240 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\System32\dbghelp.dll
21:48:03.0490 4240 C:\Windows\System32\dbghelp.dll - ok
21:48:03.0490 4240 [ 4F3BC96F7C45ED12955892C310F1E3DB ] C:\Windows\System32\drivers\asdws.sys
21:48:03.0490 4240 C:\Windows\System32\drivers\asdws.sys - ok
21:48:03.0490 4240 [ F7434401AE320BB97903A3C1865242FB ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:48:03.0490 4240 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
21:48:03.0506 4240 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] C:\Windows\System32\provsvc.dll
21:48:03.0506 4240 C:\Windows\System32\provsvc.dll - ok
21:48:03.0506 4240 [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll
21:48:03.0506 4240 C:\Windows\System32\sstpsvc.dll - ok
21:48:03.0506 4240 [ CE5214D1F3343C7937C4300F33B67A53 ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
21:48:03.0506 4240 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
21:48:03.0521 4240 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] C:\Windows\System32\cryptsvc.dll
21:48:03.0521 4240 C:\Windows\System32\cryptsvc.dll - ok
21:48:03.0521 4240 [ EFBC1DD333C99CA52A1371C74D4BA7A7 ] C:\Windows\System32\vssapi.dll
21:48:03.0521 4240 C:\Windows\System32\vssapi.dll - ok
21:48:03.0521 4240 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] C:\Windows\System32\dps.dll
21:48:03.0521 4240 C:\Windows\System32\dps.dll - ok
21:48:03.0537 4240 [ 5EF3427AE503B5C03A48F7C9FF458B69 ] C:\ProgramData\DatacardService\HWDeviceService.exe
21:48:03.0537 4240 C:\ProgramData\DatacardService\HWDeviceService.exe - ok
21:48:03.0537 4240 [ FAC0EE6562B121B1399D6E855583F7A5 ] C:\Windows\System32\IKEEXT.DLL
21:48:03.0537 4240 C:\Windows\System32\IKEEXT.DLL - ok
21:48:03.0537 4240 [ 790385B5D3BC420551FA6969E5A50103 ] C:\Program Files\K7 Computing\K7TSecurity\k7crvsvc.exe
21:48:03.0537 4240 C:\Program Files\K7 Computing\K7TSecurity\k7crvsvc.exe - ok
21:48:03.0553 4240 [ C85345BFE012279E20DC63A7AA6150EF ] C:\Program Files\K7 Computing\K7TSecurity\k7tsmngr.exe
21:48:03.0553 4240 C:\Program Files\K7 Computing\K7TSecurity\k7tsmngr.exe - ok
21:48:03.0553 4240 [ AE6AF014B616F53BA762F0BCFD8F7F21 ] C:\Windows\System32\msi.dll
21:48:03.0553 4240 C:\Windows\System32\msi.dll - ok
21:48:03.0553 4240 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll
21:48:03.0553 4240 C:\Windows\System32\vsstrace.dll - ok
21:48:03.0553 4240 [ 85B16A92B117A5A800032ECD904B86DB ] C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:48:03.0553 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
21:48:03.0568 4240 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\System32\tapi32.dll
21:48:03.0568 4240 C:\Windows\System32\tapi32.dll - ok
21:48:03.0568 4240 [ 70CD0920DBC82305EE1A8276F29DD653 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
21:48:03.0568 4240 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
21:48:03.0568 4240 [ 56931BAF613550CE64141BE8153D03AC ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfc80.dll
21:48:03.0568 4240 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfc80.dll - ok
21:48:03.0584 4240 [ C4E9E285E1730D864DD4B35B73CDAFDB ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcr80.dll
21:48:03.0584 4240 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcr80.dll - ok
21:48:03.0584 4240 [ B5475858C52BBD7E43EA10AB7EE3FBA8 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ENU.dll
21:48:03.0584 4240 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ENU.dll - ok
21:48:03.0584 4240 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll
21:48:03.0584 4240 C:\Windows\System32\imageres.dll - ok
21:48:03.0584 4240 [ 770DCEF52E70ED5C0D86B0F937CF2D4E ] C:\Windows\ehome\mcupdate.exe
21:48:03.0584 4240 C:\Windows\ehome\mcupdate.exe - ok
21:48:03.0599 4240 [ 2C25814DCF6C4CE1E89D442495519BAB ] C:\Windows\System32\aitagent.exe
21:48:03.0599 4240 C:\Windows\System32\aitagent.exe - ok
21:48:03.0599 4240 [ D1AB72DB2BEDD2F255D35DA3DA0D4B16 ] C:\Windows\System32\wscript.exe
21:48:03.0599 4240 C:\Windows\System32\wscript.exe - ok
21:48:03.0599 4240 [ DDE2F93D9BC87224B052B43CB07CE128 ] C:\Program Files\K7 Computing\K7TSecurity\k7cmnres.dll
21:48:03.0599 4240 C:\Program Files\K7 Computing\K7TSecurity\k7cmnres.dll - ok
21:48:03.0615 4240 [ C0F7C25EEFB1C5FD554AAA801201A83C ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll
21:48:03.0615 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok
21:48:03.0615 4240 [ A8AD2773202A3913D1E1564BD5703183 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll
21:48:03.0615 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok
21:48:03.0615 4240 [ 20E2469DB709FC675E655CEAA11BE312 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:48:03.0615 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe - ok
21:48:03.0631 4240 [ 8EB9DF4D405524D5EF69AE9ECB0EDD16 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll
21:48:03.0631 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll - ok
21:48:03.0631 4240 [ 5B0A0E295AA93737D80E1BCE447086B8 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
21:48:03.0631 4240 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe - ok
21:48:03.0631 4240 [ CFC54225D1870FDBF6E9E75FB83A27CB ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcp80.dll
21:48:03.0631 4240 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcp80.dll - ok
21:48:03.0631 4240 [ E111CED19D6A9FF9BBA5C219D0C5A3CE ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll
21:48:03.0631 4240 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll - ok
21:48:03.0646 4240 [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
21:48:03.0646 4240 C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
21:48:03.0646 4240 [ E519AF60FAE24F3E0D287CBD90FB0A30 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll
21:48:03.0646 4240 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
21:48:03.0662 4240 [ FEB71CCE3DB8460971E6A36085489E56 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll
21:48:03.0662 4240 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll - ok
21:48:03.0662 4240 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\System32\cscapi.dll
21:48:03.0662 4240 C:\Windows\System32\cscapi.dll - ok
21:48:03.0662 4240 [ 9A5F53B55E09ECC2DAB8C74E4DD18B8D ] C:\Windows\System32\NLSSRV32.EXE
21:48:03.0662 4240 C:\Windows\System32\NLSSRV32.EXE - ok
21:48:03.0677 4240 [ 2226496E34BD40734946A054B1CD657F ] C:\Windows\System32\nlasvc.dll
21:48:03.0677 4240 C:\Windows\System32\nlasvc.dll - ok
21:48:03.0677 4240 [ 3F2DEAFC463D75611CB9C5E36A8CCF15 ] C:\Windows\System32\ncsi.dll
21:48:03.0677 4240 C:\Windows\System32\ncsi.dll - ok
21:48:03.0677 4240 [ D757F59EED634C595727534B60E640B8 ] C:\Windows\System32\winhttp.dll
21:48:03.0677 4240 C:\Windows\System32\winhttp.dll - ok
21:48:03.0677 4240 [ 7F739F89F7F60221740DA9DE1B1DABB6 ] C:\Windows\System32\webio.dll
21:48:03.0677 4240 C:\Windows\System32\webio.dll - ok
21:48:03.0693 4240 [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys
21:48:03.0693 4240 C:\Windows\System32\drivers\PEAuth.sys - ok
21:48:03.0693 4240 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll
21:48:03.0693 4240 C:\Windows\System32\ssdpapi.dll - ok
21:48:03.0693 4240 [ 84E3249B984160849979E291D45846B9 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll
21:48:03.0693 4240 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll - ok
21:48:03.0693 4240 [ DA4ECE4EC909E1791339F3FFAF36418A ] C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe
21:48:03.0693 4240 C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe - ok
21:48:03.0709 4240 [ EA569D48B2E755AF6D96F03F3335D98A ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe
21:48:03.0709 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe - ok
21:48:03.0709 4240 [ 2B9C29DE5729E5872CFAD16A69CCB5F7 ] C:\Windows\System32\mfc42.dll
21:48:03.0709 4240 C:\Windows\System32\mfc42.dll - ok
21:48:03.0709 4240 [ 466A832C2E56D0B55AF8BB26FE3FE257 ] C:\Windows\System32\odbc32.dll
21:48:03.0709 4240 C:\Windows\System32\odbc32.dll - ok
21:48:03.0709 4240 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\System32\odbcint.dll
21:48:03.0709 4240 C:\Windows\System32\odbcint.dll - ok
21:48:03.0724 4240 [ 38106C7BD34EAE89D2769AC0BA2E846B ] C:\Program Files\Reliance Netconnect+\UpdateDog\ouc.exe
21:48:03.0724 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\ouc.exe - ok
21:48:03.0724 4240 [ C4B4409F186DA70FCF2BCC60D5F05489 ] C:\Program Files\Reliance Netconnect+\UpdateDog\libgcc_s_dw2-1.dll
21:48:03.0724 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\libgcc_s_dw2-1.dll - ok
21:48:03.0724 4240 [ DBDA60D92E774B4ACB3B1CD71F909426 ] C:\Program Files\Reliance Netconnect+\UpdateDog\mingwm10.dll
21:48:03.0724 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\mingwm10.dll - ok
21:48:03.0740 4240 [ FB398D88FF38A97E069E9DFB44D84FC6 ] C:\Program Files\Reliance Netconnect+\UpdateDog\QtCore4.dll
21:48:03.0740 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\QtCore4.dll - ok
21:48:03.0740 4240 [ A58BC88BD84D6D2325CA2475F94AFA37 ] C:\Program Files\Reliance Netconnect+\UpdateDog\QtNetwork4.dll
21:48:03.0740 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\QtNetwork4.dll - ok
21:48:03.0755 4240 [ 9C32939B75035B85AEB1BAA82295A51E ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtWLan.exe
21:48:03.0755 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtWLan.exe - ok
21:48:03.0755 4240 [ 94142D05F00EC6601A4EA9939DE49C98 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\EnumDevLib.dll
21:48:03.0755 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\EnumDevLib.dll - ok
21:48:03.0771 4240 [ 923DA0AFDD901C39A54E832D530F76BC ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlLib.dll
21:48:03.0771 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlLib.dll - ok
21:48:03.0771 4240 [ 2B552D133A5486B03CC01AC4B492BF98 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlIhvOid.dll
21:48:03.0787 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlIhvOid.dll - ok
21:48:03.0787 4240 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll
21:48:03.0787 4240 C:\Windows\System32\wlanapi.dll - ok
21:48:03.0787 4240 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll
21:48:03.0787 4240 C:\Windows\System32\wlanhlp.dll - ok
21:48:03.0802 4240 [ 14B637A11EA46E3FF277F6D6CAD7585F ] C:\Windows\System32\wlanui.dll
21:48:03.0802 4240 C:\Windows\System32\wlanui.dll - ok
21:48:03.0802 4240 [ 7C02774740B2EA1F5237808B1A363D34 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\IpLib.dll
21:48:03.0802 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\IpLib.dll - ok
21:48:03.0802 4240 [ F1ED09F4F1FE819031F9140B76F20395 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\libeay32.dll
21:48:03.0802 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\libeay32.dll - ok
21:48:03.0818 4240 [ 29064E69158ECF8EE9D9C4F6C9F1BEBA ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlICS.dll
21:48:03.0818 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlICS.dll - ok
21:48:03.0818 4240 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\System32\oledlg.dll
21:48:03.0818 4240 C:\Windows\System32\oledlg.dll - ok
21:48:03.0833 4240 [ C10459DBDC2099C5A8428CB7D87DB85F ] C:\Windows\System32\olepro32.dll
21:48:03.0833 4240 C:\Windows\System32\olepro32.dll - ok
21:48:03.0833 4240 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll
21:48:03.0833 4240 C:\Windows\System32\wsock32.dll - ok
21:48:03.0849 4240 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll
21:48:03.0849 4240 C:\Windows\System32\netman.dll - ok
21:48:03.0849 4240 [ 2584E99B00EBDC77613E8E5EF57FC0F7 ] C:\Program Files\K7 Computing\K7TSecurity\k7tsecurity.exe
21:48:03.0849 4240 C:\Program Files\K7 Computing\K7TSecurity\k7tsecurity.exe - ok
21:48:03.0865 4240 [ D98E2B275CF625FC26513CD6CBE430F8 ] C:\Program Files\K7 Computing\K7TSecurity\k7tlmtry.exe
21:48:03.0865 4240 C:\Program Files\K7 Computing\K7TSecurity\k7tlmtry.exe - ok
21:48:03.0880 4240 [ B23361750C8F918C282070895BF62200 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RTLDHCP.exe
21:48:03.0880 4240 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RTLDHCP.exe - ok
21:48:03.0880 4240 [ E2A8596576873BC5D509031DECD8C95D ] C:\Windows\System32\ntkrnlpa.exe
21:48:03.0880 4240 C:\Windows\System32\ntkrnlpa.exe - ok
21:48:03.0896 4240 [ 38106C7BD34EAE89D2769AC0BA2E846B ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\ouc.exe
21:48:03.0896 4240 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\ouc.exe - ok
21:48:03.0896 4240 [ 4ACC7E29ACFF27CE9552CCBD1F5F3E59 ] C:\Program Files\Reliance Netconnect+\UpdateDog\LiveUpd.exe
21:48:03.0896 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\LiveUpd.exe - ok
21:48:03.0911 4240 [ A4762935DC36550181A1A8F2C13678AA ] C:\Program Files\Reliance Netconnect+\UpdateDog\RunLiveUpd.exe
21:48:03.0911 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\RunLiveUpd.exe - ok

#10 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 15 December 2012 - 05:00 PM

21:48:03.0911 4240 [ CEB8055D25776F567C164E57F3930F3E ] C:\Program Files\Reliance Netconnect+\UpdateDog\RunOuc.exe
21:48:03.0911 4240 C:\Program Files\Reliance Netconnect+\UpdateDog\RunOuc.exe - ok
21:48:03.0911 4240 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe
21:48:03.0911 4240 C:\Windows\System32\dllhost.exe - ok
21:48:03.0927 4240 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll
21:48:03.0927 4240 C:\Windows\System32\IDStore.dll - ok
21:48:03.0927 4240 [ 8F4F5A5C1BAE72CE6EAEEA1CA3F98CA2 ] C:\Windows\System32\taskhost.exe
21:48:03.0927 4240 C:\Windows\System32\taskhost.exe - ok
21:48:03.0943 4240 [ 12E33DD823D74680DE6F33BFA359EFB3 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
21:48:03.0943 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe - ok
21:48:03.0943 4240 [ 29D9FCDF65B7C823688A035937BB6697 ] C:\Windows\System32\conhost.exe
21:48:03.0943 4240 C:\Windows\System32\conhost.exe - ok
21:48:03.0943 4240 [ C4B4409F186DA70FCF2BCC60D5F05489 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\libgcc_s_dw2-1.dll
21:48:03.0943 4240 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\libgcc_s_dw2-1.dll - ok
21:48:03.0958 4240 [ DBDA60D92E774B4ACB3B1CD71F909426 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\mingwm10.dll
21:48:03.0958 4240 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\mingwm10.dll - ok
21:48:03.0958 4240 [ FB398D88FF38A97E069E9DFB44D84FC6 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtCore4.dll
21:48:03.0958 4240 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtCore4.dll - ok
21:48:03.0974 4240 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
21:48:03.0974 4240 C:\Windows\System32\drivers\secdrv.sys - ok
21:48:03.0974 4240 [ A58BC88BD84D6D2325CA2475F94AFA37 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtNetwork4.dll
21:48:03.0974 4240 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtNetwork4.dll - ok
21:48:03.0989 4240 [ A59B3A4442C52060CC7A85293AA3546F ] C:\Windows\System32\seclogon.dll
21:48:03.0989 4240 C:\Windows\System32\seclogon.dll - ok
21:48:03.0989 4240 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files\Skype\Updater\Updater.exe
21:48:03.0989 4240 C:\Program Files\Skype\Updater\Updater.exe - ok
21:48:04.0005 4240 [ 3CA2BB895E204478C7A4C9BAF70970CE ] C:\Windows\System32\AtBroker.exe
21:48:04.0005 4240 C:\Windows\System32\AtBroker.exe - ok
21:48:04.0005 4240 [ F7CD6BC217C7277B987103002DD99032 ] C:\Windows\System32\HotStartUserAgent.dll
21:48:04.0005 4240 C:\Windows\System32\HotStartUserAgent.dll - ok
21:48:04.0021 4240 [ 6DE80F60D7DE9CE6B8C2DDFDF79EF175 ] C:\Windows\System32\userinit.exe
21:48:04.0021 4240 C:\Windows\System32\userinit.exe - ok
21:48:04.0021 4240 [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe
21:48:04.0021 4240 C:\Windows\System32\dwm.exe - ok
21:48:04.0021 4240 [ B73793F6A0EE0F61D6FA578B2EBF197A ] C:\Windows\System32\dwmredir.dll
21:48:04.0021 4240 C:\Windows\System32\dwmredir.dll - ok
21:48:04.0036 4240 [ 4C287F9069FEDBD791178876EE9DE536 ] C:\Windows\System32\sppsvc.exe
21:48:04.0036 4240 C:\Windows\System32\sppsvc.exe - ok
21:48:04.0036 4240 [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\System32\MsCtfMonitor.dll
21:48:04.0036 4240 C:\Windows\System32\MsCtfMonitor.dll - ok
21:48:04.0036 4240 [ 415132079EAF93D6E90D9CA1B641F068 ] C:\Windows\System32\msutb.dll
21:48:04.0036 4240 C:\Windows\System32\msutb.dll - ok
21:48:04.0052 4240 [ B5665BAA2120B8A54E22E9CD07C05106 ] C:\Windows\System32\drivers\srvnet.sys
21:48:04.0052 4240 C:\Windows\System32\drivers\srvnet.sys - ok
21:48:04.0052 4240 [ 8E33E2B24306C5249154322BC99493F5 ] C:\Windows\System32\httpapi.dll
21:48:04.0052 4240 C:\Windows\System32\httpapi.dll - ok
21:48:04.0067 4240 [ E64444523ADD154F86567C469BC0B17F ] C:\Windows\System32\drivers\tcpipreg.sys
21:48:04.0067 4240 C:\Windows\System32\drivers\tcpipreg.sys - ok
21:48:04.0067 4240 [ 04105C8DA62353589C29BDAEB8D88BD8 ] C:\Windows\System32\sysmain.dll
21:48:04.0067 4240 C:\Windows\System32\sysmain.dll - ok
21:48:04.0083 4240 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] C:\Windows\System32\tapisrv.dll
21:48:04.0083 4240 C:\Windows\System32\tapisrv.dll - ok
21:48:04.0083 4240 [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\System32\PlaySndSrv.dll
21:48:04.0083 4240 C:\Windows\System32\PlaySndSrv.dll - ok
21:48:04.0099 4240 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll
21:48:04.0099 4240 C:\Windows\System32\trkwks.dll - ok
21:48:04.0099 4240 [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll
21:48:04.0099 4240 C:\Windows\System32\wbem\WMIsvc.dll - ok
21:48:04.0114 4240 [ 024CBDAC9E26AEDB16E2CC3B0954272A ] C:\Program Files\K7 Computing\K7TSecurity\k7emlpxy.exe
21:48:04.0114 4240 C:\Program Files\K7 Computing\K7TSecurity\k7emlpxy.exe - ok
21:48:04.0114 4240 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\System32\wbemcomn.dll
21:48:04.0114 4240 C:\Windows\System32\wbemcomn.dll - ok
21:48:04.0130 4240 [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll
21:48:04.0130 4240 C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:48:04.0130 4240 [ 0E7441BE4D8C31C7F94D4E09AF8339C8 ] C:\Windows\System32\wbem\WmiDcPrv.dll
21:48:04.0130 4240 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
21:48:04.0145 4240 [ ECE6F33B41DEFB15059FD12FCECB8B3C ] C:\Program Files\K7 Computing\K7TSecurity\k7fwsrvc.exe
21:48:04.0145 4240 C:\Program Files\K7 Computing\K7TSecurity\k7fwsrvc.exe - ok
21:48:04.0145 4240 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll
21:48:04.0145 4240 C:\Windows\System32\ntdsapi.dll - ok
21:48:04.0145 4240 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\System32\wbem\fastprox.dll
21:48:04.0145 4240 C:\Windows\System32\wbem\fastprox.dll - ok
21:48:04.0161 4240 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll
21:48:04.0161 4240 C:\Windows\System32\wbem\wbemprox.dll - ok
21:48:04.0161 4240 [ 23C17A63B63CD2BA49737E54D6743E6F ] C:\Program Files\K7 Computing\K7TSecurity\K7RTSpam.dll
21:48:04.0161 4240 C:\Program Files\K7 Computing\K7TSecurity\K7RTSpam.dll - ok
21:48:04.0177 4240 [ F494D8EB409EBB8CE111A2E977B475BC ] C:\Program Files\K7 Computing\K7TSecurity\k7pssrvc.exe
21:48:04.0177 4240 C:\Program Files\K7 Computing\K7TSecurity\k7pssrvc.exe - ok
21:48:04.0177 4240 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\System32\shfolder.dll
21:48:04.0177 4240 C:\Windows\System32\shfolder.dll - ok
21:48:04.0192 4240 [ 6A6977B9DB05A51A23F118043D62A988 ] C:\Program Files\K7 Computing\K7TSecurity\k7rtscan.exe
21:48:04.0192 4240 C:\Program Files\K7 Computing\K7TSecurity\k7rtscan.exe - ok
21:48:04.0192 4240 [ 6B90F99BC80B473B5F2AAA42AED990A5 ] C:\Program Files\K7 Computing\K7TSecurity\K7AVEvnt.dll
21:48:04.0192 4240 C:\Program Files\K7 Computing\K7TSecurity\K7AVEvnt.dll - ok
21:48:04.0192 4240 [ 2BA4EBC7DFBA845A1EDBE1F75913BE33 ] C:\Windows\System32\drivers\srv.sys
21:48:04.0192 4240 C:\Windows\System32\drivers\srv.sys - ok
21:48:04.0208 4240 [ DCE7E10FEAABD4CAE95948B3DE5340BB ] C:\Windows\System32\drivers\srv2.sys
21:48:04.0208 4240 C:\Windows\System32\drivers\srv2.sys - ok
21:48:04.0208 4240 [ B2D1DFF59D6BDB58D03D43CD0FFB0BAC ] C:\Program Files\K7 Computing\K7TSecurity\K7EmlScn.dll
21:48:04.0208 4240 C:\Program Files\K7 Computing\K7TSecurity\K7EmlScn.dll - ok
21:48:04.0208 4240 [ A22825E7BB7018E8AF3E229A5AF17221 ] C:\Windows\System32\wiaservc.dll
21:48:04.0208 4240 C:\Windows\System32\wiaservc.dll - ok
21:48:04.0223 4240 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll
21:48:04.0223 4240 C:\Windows\System32\wiatrace.dll - ok
21:48:04.0223 4240 [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys
21:48:04.0223 4240 C:\Windows\System32\drivers\spsys.sys - ok
21:48:04.0239 4240 [ 2D1830A62EE573E1BFFCBCBEFDE921AF ] C:\Windows\System32\browcli.dll
21:48:04.0239 4240 C:\Windows\System32\browcli.dll - ok
21:48:04.0239 4240 [ 3CDEDF4059A2BDBB9CD888EA1979D54C ] C:\Windows\System32\mscoree.dll
21:48:04.0239 4240 C:\Windows\System32\mscoree.dll - ok
21:48:04.0239 4240 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll
21:48:04.0239 4240 C:\Windows\System32\security.dll - ok
21:48:04.0255 4240 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll
21:48:04.0255 4240 C:\Windows\System32\dssenh.dll - ok
21:48:04.0255 4240 [ 801211DCFD6414FFA48BCA661A76C6FA ] C:\Windows\System32\wbem\wbemcore.dll
21:48:04.0255 4240 C:\Windows\System32\wbem\wbemcore.dll - ok
21:48:04.0270 4240 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll
21:48:04.0270 4240 C:\Windows\System32\wbem\esscli.dll - ok
21:48:04.0270 4240 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] C:\Windows\System32\rasmans.dll
21:48:04.0270 4240 C:\Windows\System32\rasmans.dll - ok
21:48:04.0286 4240 [ 477397B432A256A50EE7E4339EB9EA14 ] C:\Windows\System32\iphlpsvc.dll
21:48:04.0286 4240 C:\Windows\System32\iphlpsvc.dll - ok
21:48:04.0286 4240 [ 6AC23D88F560593F5138F54C751A9979 ] C:\Windows\System32\sqmapi.dll
21:48:04.0286 4240 C:\Windows\System32\sqmapi.dll - ok
21:48:04.0301 4240 [ 36F0BAA49BD0EBB5E8DBDED3EC75806C ] C:\Windows\System32\wdscore.dll
21:48:04.0301 4240 C:\Windows\System32\wdscore.dll - ok
21:48:04.0301 4240 [ 598E1280E7FF3744F4B8329366CC5635 ] C:\Windows\System32\browser.dll
21:48:04.0301 4240 C:\Windows\System32\browser.dll - ok
21:48:04.0317 4240 [ BCA92CB047A4326925ECEF759DBAA233 ] C:\Windows\System32\srvsvc.dll
21:48:04.0317 4240 C:\Windows\System32\srvsvc.dll - ok
21:48:04.0317 4240 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll
21:48:04.0317 4240 C:\Windows\System32\wbem\wbemsvc.dll - ok
21:48:04.0317 4240 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll
21:48:04.0317 4240 C:\Windows\System32\netmsg.dll - ok
21:48:04.0333 4240 [ B5C452BAF3A3914EF87628252EA12FEB ] C:\Windows\System32\rastapi.dll
21:48:04.0333 4240 C:\Windows\System32\rastapi.dll - ok
21:48:04.0333 4240 [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll
21:48:04.0333 4240 C:\Windows\System32\wbem\repdrvfs.dll - ok
21:48:04.0333 4240 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll
21:48:04.0333 4240 C:\Windows\System32\wbem\wmiutils.dll - ok
21:48:04.0348 4240 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll
21:48:04.0348 4240 C:\Windows\System32\hnetcfg.dll - ok
21:48:04.0348 4240 [ 5F610783FBF01F9885D80A1DB1A2F220 ] C:\Windows\System32\nci.dll
21:48:04.0348 4240 C:\Windows\System32\nci.dll - ok
21:48:04.0364 4240 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll
21:48:04.0364 4240 C:\Windows\System32\netprofm.dll - ok
21:48:04.0364 4240 [ F45330F0364BC8223EF835EA5E3EBB8E ] C:\Windows\System32\unimdm.tsp
21:48:04.0364 4240 C:\Windows\System32\unimdm.tsp - ok
21:48:04.0364 4240 [ E675DE8CF57D8814218733B3DAE896D7 ] C:\Windows\System32\uniplat.dll
21:48:04.0364 4240 C:\Windows\System32\uniplat.dll - ok
21:48:04.0379 4240 [ F3FB146CDBDD26FCD0CF7941C547BEE4 ] C:\Windows\System32\kmddsp.tsp
21:48:04.0379 4240 C:\Windows\System32\kmddsp.tsp - ok
21:48:04.0379 4240 [ E2F6CC0D191361EE94FEA3957653F531 ] C:\Windows\System32\hidphone.tsp
21:48:04.0379 4240 C:\Windows\System32\hidphone.tsp - ok
21:48:04.0395 4240 [ AA11A26692E0DB2996CAEFE9EC61F61F ] C:\Windows\System32\ndptsp.tsp
21:48:04.0395 4240 C:\Windows\System32\ndptsp.tsp - ok
21:48:04.0395 4240 [ 60CC965A89E2072EBD26D63D5E1E1D18 ] C:\Windows\System32\dwmcore.dll
21:48:04.0395 4240 C:\Windows\System32\dwmcore.dll - ok
21:48:04.0395 4240 [ 98963BD29723A373009B017E87BE9CE8 ] C:\Windows\System32\rasppp.dll
21:48:04.0395 4240 C:\Windows\System32\rasppp.dll - ok
21:48:04.0411 4240 [ ED752483CEE9F76F0BBE46D30158BB35 ] C:\Program Files\K7 Computing\K7TSecurity\k7crvr.dll
21:48:04.0411 4240 C:\Program Files\K7 Computing\K7TSecurity\k7crvr.dll - ok
21:48:04.0411 4240 [ 582C191F861D18B8C937FB9859B80E9C ] C:\Windows\System32\vpnike.dll
21:48:04.0411 4240 C:\Windows\System32\vpnike.dll - ok
21:48:04.0426 4240 [ 75DD1448B57D1F9382A8B59ED8E3790B ] C:\Windows\System32\raschap.dll
21:48:04.0426 4240 C:\Windows\System32\raschap.dll - ok
21:48:04.0426 4240 [ D1A079A0DE2EA524513B6930C24527A2 ] C:\Windows\System32\ipnathlp.dll
21:48:04.0426 4240 C:\Windows\System32\ipnathlp.dll - ok
21:48:04.0426 4240 [ E8D0FA821AAA7DF5EE42E1AA4D7E4193 ] C:\Windows\System32\mprapi.dll
21:48:04.0426 4240 C:\Windows\System32\mprapi.dll - ok
21:48:04.0442 4240 [ F7611E0F05B4EB272102CA9883CA98A7 ] C:\Windows\System32\netshell.dll
21:48:04.0442 4240 C:\Windows\System32\netshell.dll - ok
21:48:04.0442 4240 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll
21:48:04.0442 4240 C:\Windows\System32\p2pcollab.dll - ok
21:48:04.0457 4240 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] C:\Windows\System32\QAGENTRT.DLL
21:48:04.0457 4240 C:\Windows\System32\QAGENTRT.DLL - ok
21:48:04.0457 4240 [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll
21:48:04.0457 4240 C:\Windows\System32\fveui.dll - ok
21:48:04.0473 4240 [ 04D16553664796613FE98D441A0C35D7 ] C:\Windows\System32\cryptnet.dll
21:48:04.0473 4240 C:\Windows\System32\cryptnet.dll - ok
21:48:04.0473 4240 [ 2F94E3709F029512A1BD8F6C108D7B62 ] C:\Windows\System32\sscore.dll
21:48:04.0473 4240 C:\Windows\System32\sscore.dll - ok
21:48:04.0489 4240 [ 9092668DAF4061898FD3F2C19D8C7F85 ] C:\Windows\System32\clusapi.dll
21:48:04.0489 4240 C:\Windows\System32\clusapi.dll - ok
21:48:04.0489 4240 [ 9015EE5171BCB15653DA27024BD27128 ] C:\Windows\System32\resutils.dll
21:48:04.0489 4240 C:\Windows\System32\resutils.dll - ok
21:48:04.0504 4240 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll
21:48:04.0504 4240 C:\Windows\System32\rasadhlp.dll - ok
21:48:04.0504 4240 [ 15BC38A7492BEFE831966ADB477CF76F ] C:\Windows\explorer.exe
21:48:04.0504 4240 C:\Windows\explorer.exe - ok
21:48:04.0504 4240 [ 10566977FD29C4DCAE10F3D0C289E5DA ] C:\Program Files\K7 Computing\K7TSecurity\k7srcore.dll
21:48:04.0504 4240 C:\Program Files\K7 Computing\K7TSecurity\k7srcore.dll - ok
21:48:04.0520 4240 [ FD13400115D3D0D70E087AB826DF593A ] C:\Windows\System32\ExplorerFrame.dll
21:48:04.0520 4240 C:\Windows\System32\ExplorerFrame.dll - ok
21:48:04.0520 4240 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll
21:48:04.0520 4240 C:\Windows\System32\mlang.dll - ok
21:48:04.0535 4240 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll
21:48:04.0535 4240 C:\Windows\System32\EhStorShell.dll - ok
21:48:04.0535 4240 [ 349AB4F70E2AC44970894E7F03E1576E ] C:\ProgramData\DatacardService\DCSHelper.exe
21:48:04.0535 4240 C:\ProgramData\DatacardService\DCSHelper.exe - ok
21:48:04.0551 4240 [ 57D56901BA1B27EE1EEE94497F3DB41D ] C:\Windows\System32\sppwinob.dll
21:48:04.0551 4240 C:\Windows\System32\sppwinob.dll - ok
21:48:04.0551 4240 [ B8F4A6990A6295159792B4AD189D460D ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:48:04.0551 4240 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:48:04.0551 4240 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll
21:48:04.0551 4240 C:\Windows\System32\ncobjapi.dll - ok
21:48:04.0567 4240 [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll
21:48:04.0567 4240 C:\Windows\System32\wbem\wbemess.dll - ok
21:48:04.0567 4240 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll
21:48:04.0567 4240 C:\Windows\System32\wdi.dll - ok
21:48:04.0582 4240 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\System32\hidserv.dll
21:48:04.0582 4240 C:\Windows\System32\hidserv.dll - ok
21:48:04.0582 4240 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll
21:48:04.0582 4240 C:\Windows\System32\npmproxy.dll - ok
21:48:04.0598 4240 [ B7F658A2EBC07129538AD9AB35212637 ] C:\Windows\System32\wpdbusenum.dll
21:48:04.0598 4240 C:\Windows\System32\wpdbusenum.dll - ok
21:48:04.0598 4240 [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll
21:48:04.0598 4240 C:\Windows\System32\perftrack.dll - ok
21:48:04.0598 4240 [ 8019A904EBB6F8CFBA9E41A76A99604A ] C:\Windows\System32\wer.dll
21:48:04.0598 4240 C:\Windows\System32\wer.dll - ok
21:48:04.0613 4240 [ 786DD1892B553EFE5A004AC39775C851 ] C:\PROGRA~1\MICROS~2\Office12\GrooveShellExtensions.dll
21:48:04.0613 4240 C:\PROGRA~1\MICROS~2\Office12\GrooveShellExtensions.dll - ok
21:48:04.0613 4240 [ 36060A75D9EDB1AEF0825988C7DD8511 ] C:\Windows\System32\PortableDeviceApi.dll
21:48:04.0613 4240 C:\Windows\System32\PortableDeviceApi.dll - ok
21:48:04.0613 4240 [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll
21:48:04.0613 4240 C:\Windows\System32\aepic.dll - ok
21:48:04.0629 4240 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll
21:48:04.0629 4240 C:\Windows\System32\Apphlpdm.dll - ok
21:48:04.0629 4240 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll
21:48:04.0629 4240 C:\Windows\System32\sfc.dll - ok
21:48:04.0629 4240 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll
21:48:04.0629 4240 C:\Windows\System32\sfc_os.dll - ok
21:48:04.0645 4240 [ 86CAA1B14F29093EC790779F47C9D99F ] C:\Windows\System32\diagperf.dll
21:48:04.0645 4240 C:\Windows\System32\diagperf.dll - ok
21:48:04.0645 4240 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:48:04.0645 4240 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:48:04.0660 4240 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll
21:48:04.0660 4240 C:\Windows\System32\winrnr.dll - ok
21:48:04.0660 4240 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll
21:48:04.0660 4240 C:\Windows\System32\NapiNSP.dll - ok
21:48:04.0676 4240 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll
21:48:04.0676 4240 C:\Windows\System32\pnrpnsp.dll - ok
21:48:04.0676 4240 [ 3A2BB97D54A2189C9900A735C0531B59 ] C:\Windows\System32\wshbth.dll
21:48:04.0676 4240 C:\Windows\System32\wshbth.dll - ok
21:48:04.0691 4240 [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll
21:48:04.0691 4240 C:\Windows\System32\pnpts.dll - ok
21:48:04.0691 4240 [ 23D5AE191D918BB82FD8027E1BA869D4 ] C:\Windows\System32\wdiasqmmodule.dll
21:48:04.0691 4240 C:\Windows\System32\wdiasqmmodule.dll - ok
21:48:04.0707 4240 [ F91FF1E51FCA30B3C3981DB7D5924252 ] C:\Windows\System32\drivers\WUDFRd.sys
21:48:04.0707 4240 C:\Windows\System32\drivers\WUDFRd.sys - ok
21:48:04.0707 4240 [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\System32\radardt.dll
21:48:04.0707 4240 C:\Windows\System32\radardt.dll - ok
21:48:04.0723 4240 [ C6E7AB7E798167095987EBCCB76DF61B ] C:\Windows\System32\WUDFHost.exe
21:48:04.0723 4240 C:\Windows\System32\WUDFHost.exe - ok
21:48:04.0723 4240 [ 6814B25C2B339B9F509063FECA36601A ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
21:48:04.0723 4240 C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
21:48:04.0723 4240 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] C:\Windows\System32\aelupsvc.dll
21:48:04.0723 4240 C:\Windows\System32\aelupsvc.dll - ok
21:48:04.0738 4240 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] C:\Windows\System32\IPSECSVC.DLL
21:48:04.0738 4240 C:\Windows\System32\IPSECSVC.DLL - ok
21:48:04.0738 4240 [ EBFC4D631D9DA54CAA2DEB6808E196AD ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
21:48:04.0738 4240 C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
21:48:04.0754 4240 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\System32\dimsjob.dll
21:48:04.0754 4240 C:\Windows\System32\dimsjob.dll - ok
21:48:04.0754 4240 [ 16B206229B2A348C8BCD8B5A6102A979 ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.dll
21:48:04.0754 4240 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.dll - ok
21:48:04.0769 4240 [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\System32\FwRemoteSvr.dll
21:48:04.0769 4240 C:\Windows\System32\FwRemoteSvr.dll - ok
21:48:04.0769 4240 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll
21:48:04.0769 4240 C:\Windows\System32\msimg32.dll - ok
21:48:04.0785 4240 [ 46663013E49875B6C5BA32BC206A6519 ] C:\Windows\System32\cscui.dll
21:48:04.0785 4240 C:\Windows\System32\cscui.dll - ok
21:48:04.0785 4240 [ 49358A80DED5A4F564A203C0E0CAB253 ] C:\Windows\System32\cscdll.dll
21:48:04.0785 4240 C:\Windows\System32\cscdll.dll - ok
21:48:04.0801 4240 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\System32\pautoenr.dll
21:48:04.0801 4240 C:\Windows\System32\pautoenr.dll - ok
21:48:04.0801 4240 [ 0174C3636D001197F10A52DB8BBF960D ] C:\Windows\System32\certcli.dll
21:48:04.0801 4240 C:\Windows\System32\certcli.dll - ok
21:48:04.0816 4240 [ 36333D345062E42E849C0AF00CBEFC97 ] C:\Windows\System32\ntshrui.dll
21:48:04.0816 4240 C:\Windows\System32\ntshrui.dll - ok
21:48:04.0816 4240 [ 390261F19400BA8F7C318CD3DC0EE242 ] C:\Windows\System32\WUDFx.dll
21:48:04.0816 4240 C:\Windows\System32\WUDFx.dll - ok
21:48:04.0816 4240 [ 431BF8D33C8933D76FD4ED6098806A56 ] C:\Windows\System32\CertEnroll.dll
21:48:04.0816 4240 C:\Windows\System32\CertEnroll.dll - ok
21:48:04.0832 4240 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll
21:48:04.0832 4240 C:\Windows\System32\IconCodecService.dll - ok
21:48:04.0832 4240 [ 7ABBDC3B08950992D218FA1E52D52A96 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:48:04.0832 4240 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:48:04.0847 4240 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] C:\Windows\System32\appinfo.dll
21:48:04.0847 4240 C:\Windows\System32\appinfo.dll - ok
21:48:04.0847 4240 [ E6EE5019E84F23C9FFFF7B6E2A5158D0 ] C:\Windows\System32\WMVCORE.DLL
21:48:04.0847 4240 C:\Windows\System32\WMVCORE.DLL - ok
21:48:04.0863 4240 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\System32\WMASF.DLL
21:48:04.0863 4240 C:\Windows\System32\WMASF.DLL - ok
21:48:04.0863 4240 [ 81490FDAE27F0082E5CC2DC78DCA96FA ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:48:04.0863 4240 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:48:04.0863 4240 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll
21:48:04.0863 4240 C:\Windows\System32\PortableDeviceTypes.dll - ok
21:48:04.0879 4240 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files\Google\Update\GoogleUpdate.exe
21:48:04.0879 4240 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
21:48:04.0879 4240 [ 6E05F39AF5B91CEE0D2A84501EEEDBD8 ] C:\Windows\System32\d3d10_1.dll
21:48:04.0879 4240 C:\Windows\System32\d3d10_1.dll - ok
21:48:04.0879 4240 [ 724A74BA9B5832A91562D2AC393E540B ] C:\Windows\System32\localspl.dll
21:48:04.0879 4240 C:\Windows\System32\localspl.dll - ok
21:48:04.0894 4240 [ D7953299DD7ABA019A9C7F21A1515A5D ] C:\Windows\System32\d3d10_1core.dll
21:48:04.0894 4240 C:\Windows\System32\d3d10_1core.dll - ok
21:48:04.0894 4240 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\System32\dxgi.dll
21:48:04.0894 4240 C:\Windows\System32\dxgi.dll - ok
21:48:04.0910 4240 [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll
21:48:04.0910 4240 C:\Windows\System32\spoolss.dll - ok
21:48:04.0910 4240 [ DDA6CFD632DCB8D9C72ADA58799BF776 ] C:\Windows\System32\PrintIsolationProxy.dll
21:48:04.0910 4240 C:\Windows\System32\PrintIsolationProxy.dll - ok
21:48:04.0925 4240 [ 07F7AE68602448F4B6D5A9A40BBA977C ] C:\Program Files\Google\Update\1.3.21.124\goopdate.dll
21:48:04.0925 4240 C:\Program Files\Google\Update\1.3.21.124\goopdate.dll - ok
21:48:04.0925 4240 [ 56D0146CDE4E9FC88FD06305E617C860 ] C:\Windows\System32\ZLhp1020.DLL
21:48:04.0925 4240 C:\Windows\System32\ZLhp1020.DLL - ok
21:48:04.0941 4240 [ A648AB50A6FE18002C762674F4E0F41C ] C:\Windows\System32\igd10umd32.dll
21:48:04.0941 4240 C:\Windows\System32\igd10umd32.dll - ok
21:48:04.0941 4240 [ D5CC5113671AC70993A5B46923212F16 ] C:\Windows\System32\FXSMON.dll
21:48:04.0941 4240 C:\Windows\System32\FXSMON.dll - ok
21:48:04.0941 4240 [ B9B3F6D8B8F1E0029C58B304632A729B ] C:\Windows\System32\msonpmon.dll
21:48:04.0941 4240 C:\Windows\System32\msonpmon.dll - ok
21:48:04.0957 4240 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\System32\runonce.exe
21:48:04.0957 4240 C:\Windows\System32\runonce.exe - ok
21:48:04.0957 4240 [ 2100560AF3F7F2948F2676E44DFB4ECF ] C:\Windows\System32\uDWM.dll
21:48:04.0957 4240 C:\Windows\System32\uDWM.dll - ok
21:48:04.0957 4240 [ 1D92037692E4F275EF2925AB804619E1 ] C:\Program Files\Common Files\SpeedBit\SBUpdate\SBUpdate.exe
21:48:04.0957 4240 C:\Program Files\Common Files\SpeedBit\SBUpdate\SBUpdate.exe - ok
21:48:04.0972 4240 [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll
21:48:04.0972 4240 C:\Windows\System32\tcpmon.dll - ok
21:48:04.0972 4240 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll
21:48:04.0972 4240 C:\Windows\System32\snmpapi.dll - ok
21:48:04.0972 4240 [ 596371A825C6ABB55E436B6F0966A24F ] C:\Windows\System32\wsnmp32.dll
21:48:04.0972 4240 C:\Windows\System32\wsnmp32.dll - ok
21:48:04.0988 4240 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\System32\cmd.exe
21:48:04.0988 4240 C:\Windows\System32\cmd.exe - ok
21:48:04.0988 4240 [ 2F391DBF98702DBC9B2E0639545BB0E7 ] C:\Windows\System32\dlhsszil.dll
21:48:04.0988 4240 C:\Windows\System32\dlhsszil.dll - ok
21:48:05.0003 4240 [ 79D5BE1EA619F18CEE08F0F9EF8C2ECE ] C:\Program Files\Common Files\SpeedBit\SBUpdate\SBupd.dll
21:48:05.0003 4240 C:\Program Files\Common Files\SpeedBit\SBUpdate\SBupd.dll - ok
21:48:05.0003 4240 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.124\GoogleCrashHandler.exe
21:48:05.0003 4240 C:\Program Files\Google\Update\1.3.21.124\GoogleCrashHandler.exe - ok
21:48:05.0003 4240 [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll
21:48:05.0003 4240 C:\Windows\System32\usbmon.dll - ok
21:48:05.0019 4240 [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll
21:48:05.0019 4240 C:\Windows\System32\WSDMon.dll - ok
21:48:05.0019 4240 [ 206ECCF79765E9F3FC6CCA04114EE058 ] C:\Windows\System32\WSDApi.dll
21:48:05.0019 4240 C:\Windows\System32\WSDApi.dll - ok
21:48:05.0019 4240 [ BD25E3537B54C1BFF40335992B3686FD ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
21:48:05.0019 4240 C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
21:48:05.0035 4240 [ 4262220B609AD082CE66914172597A96 ] C:\Windows\System32\webservices.dll
21:48:05.0035 4240 C:\Windows\System32\webservices.dll - ok
21:48:05.0035 4240 [ 3225369E73FC336C7C7824EA53B26AD5 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
21:48:05.0035 4240 C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
21:48:05.0050 4240 [ 26EB385F014AE2592D6495E6D4E9EFE8 ] C:\Windows\System32\msxml3.dll
21:48:05.0050 4240 C:\Windows\System32\msxml3.dll - ok
21:48:05.0050 4240 [ 58E1354D5CF82E33AF9A1CD1E31C9ED7 ] C:\Windows\System32\sppobjs.dll
21:48:05.0050 4240 C:\Windows\System32\sppobjs.dll - ok
21:48:05.0066 4240 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll
21:48:05.0066 4240 C:\Windows\System32\fundisc.dll - ok
21:48:05.0066 4240 [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll
21:48:05.0066 4240 C:\Windows\System32\fdPnp.dll - ok
21:48:05.0081 4240 [ DBD10464E7246C9E722025DEBC093D01 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
21:48:05.0081 4240 C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
21:48:05.0081 4240 [ FA7EE2EC13600214F874C4D474CDF003 ] C:\Windows\System32\spool\prtprocs\w32x86\PPhp1020.DLL
21:48:05.0081 4240 C:\Windows\System32\spool\prtprocs\w32x86\PPhp1020.DLL - ok
21:48:05.0097 4240 [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
21:48:05.0097 4240 C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
21:48:05.0097 4240 [ 2F03490092C032392FB6FF635222B9B2 ] C:\Windows\System32\apisetschema.dll
21:48:05.0097 4240 C:\Windows\System32\apisetschema.dll - ok
21:48:05.0097 4240 [ 2F998E1FCA7749E836FDFAFE88DE9237 ] C:\Windows\System32\win32spl.dll
21:48:05.0097 4240 C:\Windows\System32\win32spl.dll - ok
21:48:05.0113 4240 [ 258A532CFFAAD910B5B14F27DCD7BFB3 ] C:\Windows\System32\inetpp.dll
21:48:05.0113 4240 C:\Windows\System32\inetpp.dll - ok
21:48:05.0113 4240 [ 72854A70D02507F21DBA4FE079618A0D ] C:\Windows\System32\en-US\cmd.exe.mui
21:48:05.0113 4240 C:\Windows\System32\en-US\cmd.exe.mui - ok
21:48:05.0128 4240 [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll
21:48:05.0128 4240 C:\Windows\System32\FXSRESM.dll - ok
21:48:05.0128 4240 [ 9ABDDAECCA28054BAEA1A4A1912F6819 ] C:\Windows\System32\en-US\conhost.exe.mui
21:48:05.0128 4240 C:\Windows\System32\en-US\conhost.exe.mui - ok
21:48:05.0128 4240 [ 0297C72529807322B152F517FDB0A9FC ] C:\Windows\SWSC.exe
21:48:05.0128 4240 C:\Windows\SWSC.exe - ok
21:48:05.0144 4240 [ 672ECBB050F17BF90FE00758596F38CA ] C:\Windows\System32\ieframe.dll
21:48:05.0144 4240 C:\Windows\System32\ieframe.dll - ok
21:48:05.0144 4240 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Dell\AppData\Local\temp\2887CDE7-83CC-43AB-9C2E-429C2594BD35.exe
21:48:05.0144 4240 C:\Users\Dell\AppData\Local\temp\2887CDE7-83CC-43AB-9C2E-429C2594BD35.exe - ok
21:48:05.0159 4240 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\System32\shdocvw.dll
21:48:05.0159 4240 C:\Windows\System32\shdocvw.dll - ok
21:48:05.0159 4240 [ 48610F455B27BA98ADAF6AE2A925D59D ] C:\Windows\System32\iedkcs32.dll
21:48:05.0159 4240 C:\Windows\System32\iedkcs32.dll - ok
21:48:05.0175 4240 [ AE571A4036D5770B64E10EA49CB930FE ] C:\Windows\System32\ie4uinit.exe
21:48:05.0175 4240 C:\Windows\System32\ie4uinit.exe - ok
21:48:05.0175 4240 [ A4155E8A6B30607FB2609B27493BC0AD ] C:\Windows\System32\timedate.cpl
21:48:05.0175 4240 C:\Windows\System32\timedate.cpl - ok
21:48:05.0191 4240 [ B6C4063297C7D07CD0532BDC3350436C ] C:\Windows\System32\actxprxy.dll
21:48:05.0191 4240 C:\Windows\System32\actxprxy.dll - ok
21:48:05.0191 4240 [ 1F0F6AB1808781D2A2C2CA02E712ED8C ] C:\Program Files\Windows Media Player\wmplayer.exe
21:48:05.0191 4240 C:\Program Files\Windows Media Player\wmplayer.exe - ok
21:48:05.0206 4240 [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll
21:48:05.0206 4240 C:\Windows\System32\aeevts.dll - ok
21:48:05.0206 4240 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll
21:48:05.0206 4240 C:\Windows\System32\linkinfo.dll - ok
21:48:05.0206 4240 [ D378BFFB70923139D6A4F546864AA61C ] C:\Windows\System32\notepad.exe
21:48:05.0206 4240 C:\Windows\System32\notepad.exe - ok
21:48:05.0222 4240 [ 5744FFF8E72D105C138DAE9E17BB29FE ] C:\Program Files\Mozilla Firefox\firefox.exe
21:48:05.0222 4240 C:\Program Files\Mozilla Firefox\firefox.exe - ok
21:48:05.0222 4240 [ 2D08AC1443FFA7FBED9A5EA5FD49AEB3 ] C:\Program Files\Google\Chrome\Application\chrome.exe
21:48:05.0222 4240 C:\Program Files\Google\Chrome\Application\chrome.exe - ok
21:48:05.0237 4240 [ C01A5E602E827FD00240370C1B617608 ] C:\Windows\System32\gameux.dll
21:48:05.0237 4240 C:\Windows\System32\gameux.dll - ok
21:48:05.0237 4240 [ FBE9BC55CF7ED9CC1452F7AF02C31864 ] C:\Windows\System32\msftedit.dll
21:48:05.0237 4240 C:\Windows\System32\msftedit.dll - ok
21:48:05.0253 4240 [ 26025A46FB3FDB40FF06BBF1834093B5 ] C:\Windows\System32\msls31.dll
21:48:05.0253 4240 C:\Windows\System32\msls31.dll - ok
21:48:05.0253 4240 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
21:48:05.0253 4240 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
21:48:05.0269 4240 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll
21:48:05.0269 4240 C:\Windows\System32\msiltcfg.dll - ok
21:48:05.0269 4240 [ 3E19163966261CCDBA4C8C030E601998 ] C:\Windows\System32\DeviceCenter.dll
21:48:05.0269 4240 C:\Windows\System32\DeviceCenter.dll - ok
21:48:05.0284 4240 [ 9C586DF860FDC6980D901D7D708F0CCF ] C:\Program Files\K7 Computing\K7TSecurity\k7ui.dll
21:48:05.0284 4240 C:\Program Files\K7 Computing\K7TSecurity\k7ui.dll - ok
21:48:05.0284 4240 [ B22D4EC78C8F626D81F4E9EDDCA62FEA ] C:\Program Files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe
21:48:05.0284 4240 C:\Program Files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe - ok
21:48:05.0300 4240 [ 8760760326B0CE221149C961D3F72BD9 ] C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe
21:48:05.0300 4240 C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
21:48:05.0300 4240 [ D316F55B336E624048A9483FB59D3164 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
21:48:05.0300 4240 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe - ok
21:48:05.0315 4240 [ DBE2AA52B5D67DA319D33A175B8BB41E ] C:\Windows\System32\thumbcache.dll
21:48:05.0315 4240 C:\Windows\System32\thumbcache.dll - ok
21:48:05.0315 4240 [ C6408B67C2DBD2158E189E1C9C894925 ] C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE
21:48:05.0315 4240 C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE - ok
21:48:05.0331 4240 [ DC53BA349C9284775893B5377E860F2E ] C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE
21:48:05.0331 4240 C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE - ok
21:48:05.0331 4240 [ 89D3DE5E2C77DCD99C56F0E46310AEA0 ] C:\Windows\System32\igfxpers.exe
21:48:05.0331 4240 C:\Windows\System32\igfxpers.exe - ok
21:48:05.0331 4240 [ A42B4C676E0E516DF6B913C338FDC53D ] C:\Program Files\Microsoft Office\Office12\MSPUB.EXE
21:48:05.0347 4240 C:\Program Files\Microsoft Office\Office12\MSPUB.EXE - ok
21:48:05.0347 4240 [ CEAA5817A65E914AA178B28F12359A46 ] C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
21:48:05.0347 4240 C:\Program Files\Microsoft Office\Office12\WINWORD.EXE - ok
21:48:05.0347 4240 [ 4A056D7392F31EDA3AE1975E7010D7E3 ] C:\Windows\System32\networkexplorer.dll
21:48:05.0347 4240 C:\Windows\System32\networkexplorer.dll - ok
21:48:05.0362 4240 [ FC3396B88F31636817D31F592A0DA848 ] C:\Program Files\Microsoft Office\Office12\OIS.EXE
21:48:05.0362 4240 C:\Program Files\Microsoft Office\Office12\OIS.EXE - ok
21:48:05.0362 4240 [ CE9BB918CF467639704C6C1352006AB0 ] C:\Program Files\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE
21:48:05.0362 4240 C:\Program Files\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE - ok
21:48:05.0378 4240 [ 35AD442D5D81F63F00D5570A3DD53108 ] C:\Program Files\Microsoft Office\Office12\MSTORE.EXE
21:48:05.0378 4240 C:\Program Files\Microsoft Office\Office12\MSTORE.EXE - ok
21:48:05.0378 4240 [ 8112D0DACAE746290FC87B3A980FA719 ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
21:48:05.0378 4240 C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe - ok
21:48:05.0393 4240 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll
21:48:05.0393 4240 C:\Windows\System32\dsound.dll - ok
21:48:05.0393 4240 [ 5F12DCBECEE0ADE819E3F710F5508B31 ] C:\Windows\System32\hccutils.dll
21:48:05.0393 4240 C:\Windows\System32\hccutils.dll - ok
21:48:05.0409 4240 [ 308A6AC560F273068CD551D536EFB3CD ] C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe
21:48:05.0409 4240 C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe - ok
21:48:05.0409 4240 [ 5E350C463EE596321C79CF23ADA56E7A ] C:\Windows\System32\igfxsrvc.exe
21:48:05.0409 4240 C:\Windows\System32\igfxsrvc.exe - ok
21:48:05.0425 4240 [ 2C1B1E9174D94E9F6EE3CF373ABAB7DD ] C:\Windows\System32\igfxtray.exe
21:48:05.0425 4240 C:\Windows\System32\igfxtray.exe - ok
21:48:05.0425 4240 [ 5C0641AD69FEA0DD4700202ED8D7CF53 ] C:\Program Files\K7 Computing\K7TSecurity\K7OEPlgn.dll
21:48:05.0425 4240 C:\Program Files\K7 Computing\K7TSecurity\K7OEPlgn.dll - ok
21:48:05.0440 4240 [ 47F89099D140C42591BEB4FD829B6AFA ] C:\Program Files\K7 Computing\K7TSecurity\K7TSHelp.dll
21:48:05.0440 4240 C:\Program Files\K7 Computing\K7TSecurity\K7TSHelp.dll - ok
21:48:05.0440 4240 [ 87D78CF6365BDDACBE9D34B60FE0E23B ] C:\Windows\System32\hkcmd.exe
21:48:05.0440 4240 C:\Windows\System32\hkcmd.exe - ok
21:48:05.0456 4240 [ 53EE5AF5320FEA562A7A7BE6F71A534A ] C:\Windows\System32\igfxsrvc.dll
21:48:05.0456 4240 C:\Windows\System32\igfxsrvc.dll - ok
21:48:05.0456 4240 [ 38D198A2DD54A67120040566A38103BA ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
21:48:05.0456 4240 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
21:48:05.0456 4240 [ E81530A46F7AB9913FC8CF1969354493 ] C:\Windows\System32\RTCOM\RtkCfg.dll
21:48:05.0456 4240 C:\Windows\System32\RTCOM\RtkCfg.dll - ok
21:48:05.0471 4240 [ 7B2E20CAE7730B2ADD47E09FD14F18C3 ] C:\Windows\System32\igfxdev.dll
21:48:05.0471 4240 C:\Windows\System32\igfxdev.dll - ok
21:48:05.0471 4240 [ 06D938F476FEB52DB54FAA3EA1145A03 ] C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe
21:48:05.0471 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe - ok
21:48:05.0487 4240 [ 33E5A8FC8EB0EE42478F8538D0215D8F ] C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
21:48:05.0487 4240 C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
21:48:05.0487 4240 [ 19126B5388F39773DAD69392130E30B5 ] C:\Windows\System32\igfxrenu.lrc
21:48:05.0487 4240 C:\Windows\System32\igfxrenu.lrc - ok
21:48:05.0503 4240 [ 9A69089E04F060CB25657EA0EA2ED503 ] C:\Windows\System32\GfxUI.exe
21:48:05.0503 4240 C:\Windows\System32\GfxUI.exe - ok
21:48:05.0503 4240 [ 6C263E8DC9B1F9D97C243FE65A41C483 ] C:\Program Files\Anvisoft\Anvi Smart Defender\libcurl.dll
21:48:05.0503 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\libcurl.dll - ok
21:48:05.0518 4240 [ B8E421C0890356CD4A793D8A346D9096 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
21:48:05.0518 4240 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
21:48:05.0518 4240 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\64493566.sys
21:48:05.0518 4240 C:\Windows\System32\drivers\64493566.sys - ok
21:48:05.0534 4240 [ 2B8064BFF1C61C7E61232D2652894CD4 ] C:\Windows\System32\igfxress.dll
21:48:05.0534 4240 C:\Windows\System32\igfxress.dll - ok
21:48:05.0534 4240 [ 0157B343F8DB15E0C3E7CFC6A6A072A3 ] C:\Program Files\K7 Computing\K7TSecurity\K7AVMScn.exe
21:48:05.0534 4240 C:\Program Files\K7 Computing\K7TSecurity\K7AVMScn.exe - ok
21:48:05.0534 4240 [ 3B4E438789DE4D459D57A6CC73D46B24 ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe
21:48:05.0534 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe - ok
21:48:05.0549 4240 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\System32\riched20.dll
21:48:05.0549 4240 C:\Windows\System32\riched20.dll - ok
21:48:05.0549 4240 [ 63C8C9657A1D4F940B1710F6E1B28FBB ] C:\Program Files\K7 Computing\K7TSecurity\K7SysMon.Exe
21:48:05.0549 4240 C:\Program Files\K7 Computing\K7TSecurity\K7SysMon.Exe - ok
21:48:05.0549 4240 [ 495926E657DD02E6A2E3EC556C53983A ] C:\Users\Dell\Desktop\RogueKiller.exe
21:48:05.0549 4240 C:\Users\Dell\Desktop\RogueKiller.exe - ok
21:48:05.0565 4240 [ 73165EE830627D2B974124F57209F98F ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
21:48:05.0565 4240 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
21:48:05.0565 4240 [ BE3AB4803C963BE0357541EC3B17D443 ] C:\Users\Dell\Desktop\aswMBR.exe
21:48:05.0565 4240 C:\Users\Dell\Desktop\aswMBR.exe - ok
21:48:05.0581 4240 [ 27CD04A0F47C403DAD539FBEB73B2BEF ] C:\Users\Dell\Desktop\ComboFix.exe
21:48:05.0581 4240 C:\Users\Dell\Desktop\ComboFix.exe - ok
21:48:05.0581 4240 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Dell\Desktop\tdsskiller.exe
21:48:05.0581 4240 C:\Users\Dell\Desktop\tdsskiller.exe - ok
21:48:05.0596 4240 [ 6850CAB88C6689D9A9936AFF033578AF ] C:\Windows\System32\stobject.dll
21:48:05.0596 4240 C:\Windows\System32\stobject.dll - ok
21:48:05.0596 4240 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll
21:48:05.0596 4240 C:\Windows\System32\SensApi.dll - ok
21:48:05.0596 4240 [ DAD1F753E1F8563629FBC93F8B15D9F8 ] C:\Windows\System32\batmeter.dll
21:48:05.0596 4240 C:\Windows\System32\batmeter.dll - ok
21:48:05.0612 4240 [ 0F49D070CB4B1FC4B4653846F0946C5C ] C:\Program Files\K7 Computing\K7TSecurity\K7TSSplh.exe
21:48:05.0612 4240 C:\Program Files\K7 Computing\K7TSecurity\K7TSSplh.exe - ok
21:48:05.0612 4240 [ B1B4D14CEFA7D1C0E1FD1B4ECB5DDCE2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll
21:48:05.0612 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll - ok
21:48:05.0627 4240 [ CF0F0B551F95B46055EE39F767665672 ] C:\Users\Dell\Desktop\adwcleaner.exe
21:48:05.0627 4240 C:\Users\Dell\Desktop\adwcleaner.exe - ok
21:48:05.0627 4240 [ 31F3CF74759BE9196408EEBFE9E93626 ] C:\Users\Dell\Desktop\SecurityCheck.exe
21:48:05.0627 4240 C:\Users\Dell\Desktop\SecurityCheck.exe - ok
21:48:05.0627 4240 [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll
21:48:05.0627 4240 C:\Windows\System32\UIAnimation.dll - ok
21:48:05.0643 4240 [ BA65E5850C8180FB03C9F996EE2D7069 ] C:\Windows\System32\tzres.dll
21:48:05.0643 4240 C:\Windows\System32\tzres.dll - ok
21:48:05.0643 4240 [ 16551C7B5F66E34D8CA3620FE1ABD906 ] C:\Program Files\K7 Computing\K7TSecurity\k7sysmn1.dll
21:48:05.0643 4240 C:\Program Files\K7 Computing\K7TSecurity\k7sysmn1.dll - ok
21:48:05.0659 4240 [ 61B193F8E187BADA79D8330E3DE35D29 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll
21:48:05.0659 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll - ok
21:48:05.0659 4240 [ 8B968045D75783A09592C3105F2865DA ] C:\Users\Dell\Desktop\dds.com
21:48:05.0659 4240 C:\Users\Dell\Desktop\dds.com - ok
21:48:05.0659 4240 [ BB1DCBA6C366ECAA43A68F9C1CB788DB ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\libcurl.dll
21:48:05.0659 4240 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\libcurl.dll - ok
21:48:05.0674 4240 [ 803768444B482D61B92D715A05B5712A ] C:\Windows\System32\prnfldr.dll
21:48:05.0674 4240 C:\Windows\System32\prnfldr.dll - ok
21:48:05.0674 4240 [ 5A13FEB986445B7F1D88A5CA98714E57 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll
21:48:05.0674 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll - ok
21:48:05.0690 4240 [ ED32504409D55E8304A3415FFF714038 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll
21:48:05.0690 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll - ok
21:48:05.0690 4240 [ 27991D7B9FCAD45AE530B7A4A7B74AEC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll
21:48:05.0690 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll - ok
21:48:05.0705 4240 [ 6EC0A1BC384DA75511FAEDE0B45A82D4 ] C:\Windows\System32\DXP.dll
21:48:05.0705 4240 C:\Windows\System32\DXP.dll - ok
21:48:05.0705 4240 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll
21:48:05.0705 4240 C:\Windows\System32\Syncreg.dll - ok
21:48:05.0721 4240 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\System32\qmgrprxy.dll
21:48:05.0721 4240 C:\Windows\System32\qmgrprxy.dll - ok
21:48:05.0721 4240 [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll
21:48:05.0721 4240 C:\Windows\ehome\ehSSO.dll - ok
21:48:05.0721 4240 [ B0222BD0F9D97488D691BCC02B051A92 ] C:\Windows\ehome\ehshell.exe
21:48:05.0721 4240 C:\Windows\ehome\ehshell.exe - ok
21:48:05.0737 4240 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll
21:48:05.0737 4240 C:\Windows\System32\AltTab.dll - ok
21:48:05.0737 4240 [ D875FF86664F102B97A4BD5746AD40F5 ] C:\Windows\System32\en-US\msctf.dll.mui
21:48:05.0737 4240 C:\Windows\System32\en-US\msctf.dll.mui - ok
21:48:05.0752 4240 [ F5EB1E039498D6F1D106E96CE7C1F3C6 ] C:\Windows\System32\WPDShServiceObj.dll
21:48:05.0752 4240 C:\Windows\System32\WPDShServiceObj.dll - ok
21:48:05.0752 4240 [ 2862A3819BBC9757DD27BAC41A4E0A3E ] C:\Windows\System32\pnidui.dll
21:48:05.0752 4240 C:\Windows\System32\pnidui.dll - ok
21:48:05.0752 4240 [ 82315178C6C3E2E54776567EEE0349C0 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
21:48:05.0752 4240 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
21:48:05.0768 4240 [ 45F0F12A11861CE0FB682B87A310FE41 ] C:\Windows\System32\QUTIL.DLL
21:48:05.0768 4240 C:\Windows\System32\QUTIL.DLL - ok
21:48:05.0768 4240 [ 069A3E419FDE3C63E490969C0B10E51E ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
21:48:05.0768 4240 C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
21:48:05.0768 4240 [ 4D87C59972B6E539FC8942CFC4969B2D ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
21:48:05.0768 4240 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
21:48:05.0783 4240 [ 622D95520182F6D3D05310D5810CA8B3 ] C:\Windows\System32\SearchIndexer.exe
21:48:05.0783 4240 C:\Windows\System32\SearchIndexer.exe - ok
21:48:05.0783 4240 [ B1E5099DC69DA99E7D90E442DE297D4F ] C:\Windows\System32\cscobj.dll
21:48:05.0783 4240 C:\Windows\System32\cscobj.dll - ok
21:48:05.0783 4240 [ 56099A6F865EA7771CBB88674545DB44 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
21:48:05.0783 4240 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
21:48:05.0799 4240 [ 07F4FCC206CCD2B95E842BB127609C1C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
21:48:05.0799 4240 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
21:48:05.0799 4240 [ D4C438883154C3D082FB2E629191C45F ] C:\Windows\System32\srchadmin.dll
21:48:05.0799 4240 C:\Windows\System32\srchadmin.dll - ok
21:48:05.0815 4240 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
21:48:05.0815 4240 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
21:48:05.0815 4240 [ 18A54E132947CD98FEA9ACCC57F98F13 ] C:\Windows\System32\alg.exe
21:48:05.0815 4240 C:\Windows\System32\alg.exe - ok
21:48:05.0815 4240 [ 1A1AD07741376454410B61AF233862B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
21:48:05.0815 4240 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll - ok
21:48:05.0830 4240 [ F4055BF49A90375FD7672A604F3B0B8E ] C:\Windows\System32\ActionCenter.dll
21:48:05.0830 4240 C:\Windows\System32\ActionCenter.dll - ok
21:48:05.0830 4240 [ 8050B4440BA297EFAE6616C4FF0EAD27 ] C:\Windows\System32\gfxSrvc.dll
21:48:05.0830 4240 C:\Windows\System32\gfxSrvc.dll - ok
21:48:05.0846 4240 [ 39CDCB109BF200CC8A05B9C7E6272D11 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:48:05.0846 4240 C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe - ok
21:48:05.0846 4240 [ 028B2DCFC468CF98B5428AF8AEF2C849 ] C:\Windows\System32\IGFXDEVLib.dll
21:48:05.0846 4240 C:\Windows\System32\IGFXDEVLib.dll - ok
21:48:05.0861 4240 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll
21:48:05.0861 4240 C:\Windows\System32\rasdlg.dll - ok
21:48:05.0861 4240 [ F79828CEF4F501F60F94B1CD00C47041 ] C:\Windows\System32\dot3api.dll
21:48:05.0861 4240 C:\Windows\System32\dot3api.dll - ok
21:48:05.0861 4240 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll
21:48:05.0861 4240 C:\Windows\System32\WWanAPI.dll - ok
21:48:05.0877 4240 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\System32\d3d9.dll
21:48:05.0877 4240 C:\Windows\System32\d3d9.dll - ok
21:48:05.0877 4240 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\System32\d3d8thk.dll
21:48:05.0877 4240 C:\Windows\System32\d3d8thk.dll - ok
21:48:05.0893 4240 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll
21:48:05.0893 4240 C:\Windows\System32\wwapi.dll - ok
21:48:05.0893 4240 [ F5ECEAF5132D00B3DA565DBDD14E430F ] C:\Windows\System32\igdumdx32.dll
21:48:05.0893 4240 C:\Windows\System32\igdumdx32.dll - ok
21:48:05.0893 4240 [ 7C6A2CCF98024A5EF8740162701CE3E7 ] C:\Windows\System32\tquery.dll
21:48:05.0893 4240 C:\Windows\System32\tquery.dll - ok
21:48:05.0908 4240 [ 99BD4B9B15A823A6C46B561329178122 ] C:\Windows\System32\QAGENT.DLL
21:48:05.0908 4240 C:\Windows\System32\QAGENT.DLL - ok
21:48:05.0908 4240 [ F58E87DE0F2855BAE62EED30D306358D ] C:\Windows\System32\igdumd32.dll
21:48:05.0908 4240 C:\Windows\System32\igdumd32.dll - ok
21:48:05.0924 4240 [ 0CE7A0FFBBA93810384B6794C6901F4C ] C:\Windows\System32\mssrch.dll
21:48:05.0924 4240 C:\Windows\System32\mssrch.dll - ok
21:48:05.0924 4240 [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll
21:48:05.0924 4240 C:\Windows\System32\FXSST.dll - ok
21:48:05.0924 4240 [ 92B214B7E5436A3310A9138CE4A03D23 ] C:\Windows\System32\esent.dll
21:48:05.0924 4240 C:\Windows\System32\esent.dll - ok
21:48:05.0939 4240 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll
21:48:05.0939 4240 C:\Windows\System32\FXSAPI.dll - ok
21:48:05.0939 4240 [ 6B285819C2D8648837743B57FD449939 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll
21:48:05.0939 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll - ok
21:48:05.0939 4240 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll
21:48:05.0939 4240 C:\Windows\System32\msidle.dll - ok
21:48:05.0955 4240 [ 0DE5BAEEC29ECB3A7C0A40F1D1B02362 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll
21:48:05.0955 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll - ok
21:48:05.0955 4240 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\System32\WindowsCodecsExt.dll
21:48:05.0955 4240 C:\Windows\System32\WindowsCodecsExt.dll - ok
21:48:05.0971 4240 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\System32\icm32.dll
21:48:05.0971 4240 C:\Windows\System32\icm32.dll - ok
21:48:05.0971 4240 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll
21:48:05.0971 4240 C:\Windows\System32\mssprxy.dll - ok
21:48:05.0971 4240 [ 774B2C572288D24FE58AD67F34BCAE3B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\de8525cc2e6327337e1c6917352bfe16\WindowsFormsIntegration.ni.dll
21:48:05.0971 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\de8525cc2e6327337e1c6917352bfe16\WindowsFormsIntegration.ni.dll - ok
21:48:05.0986 4240 [ 632BAD0D4268EA51F808C63DBE26F346 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll
21:48:05.0986 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll - ok
21:48:05.0986 4240 [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\System32\en-US\tquery.dll.mui
21:48:05.0986 4240 C:\Windows\System32\en-US\tquery.dll.mui - ok
21:48:06.0002 4240 [ E5FC214DE61AC769CDC8FA6A61C7578D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll
21:48:06.0002 4240 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll - ok
21:48:06.0002 4240 [ 53F476476F55A27F580661BDE09C4EC4 ] C:\Windows\System32\qmgr.dll
21:48:06.0002 4240 C:\Windows\System32\qmgr.dll - ok
21:48:06.0017 4240 [ 177DF28315BF4300ECB5CBEEEE961292 ] C:\Windows\System32\webcheck.dll
21:48:06.0017 4240 C:\Windows\System32\webcheck.dll - ok
21:48:06.0017 4240 [ 704A8B68374E6309B8D67F997FD3034B ] C:\Windows\System32\bitsperf.dll
21:48:06.0017 4240 C:\Windows\System32\bitsperf.dll - ok
21:48:06.0017 4240 [ F45ED8C4F9AF862CD9992849B5203C11 ] C:\Windows\System32\bitsigd.dll
21:48:06.0017 4240 C:\Windows\System32\bitsigd.dll - ok
21:48:06.0017 4240 [ 89ED7C028A487340B7D93D5A38FDCB54 ] C:\Windows\System32\SearchProtocolHost.exe
21:48:06.0017 4240 C:\Windows\System32\SearchProtocolHost.exe - ok
21:48:06.0033 4240 [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll
21:48:06.0033 4240 C:\Windows\System32\msshooks.dll - ok
21:48:06.0033 4240 [ 8A674F9AB20B4937357BF6F5A0938EBF ] C:\Windows\System32\SearchFilterHost.exe
21:48:06.0033 4240 C:\Windows\System32\SearchFilterHost.exe - ok
21:48:06.0033 4240 [ 5B35E2C2B2B00253C60C552107AB14D2 ] C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.dll
21:48:06.0033 4240 C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.dll - ok
21:48:06.0049 4240 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] C:\Windows\System32\FXSSVC.exe
21:48:06.0049 4240 C:\Windows\System32\FXSSVC.exe - ok
21:48:06.0049 4240 [ D88040F816FDA31C3B466F0FA0918F29 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:48:06.0049 4240 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - ok
21:48:06.0049 4240 [ 3A74A6E33685662B125A3269B1F2114F ] C:\Windows\ehome\ehrecvr.exe
21:48:06.0049 4240 C:\Windows\ehome\ehrecvr.exe - ok
21:48:06.0064 4240 [ 8C7FE6B9559204765849BFF308764FA5 ] C:\Windows\System32\SyncCenter.dll
21:48:06.0064 4240 C:\Windows\System32\SyncCenter.dll - ok
21:48:06.0064 4240 [ D389BFF34F80CAEDE417BF9D1507996A ] C:\Windows\ehome\ehsched.exe
21:48:06.0064 4240 C:\Windows\ehome\ehsched.exe - ok
21:48:06.0080 4240 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:48:06.0080 4240 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - ok
21:48:06.0080 4240 [ 5F16C07CFA97228DB5AC98D61D770827 ] C:\Windows\System32\imapi2.dll
21:48:06.0080 4240 C:\Windows\System32\imapi2.dll - ok
21:48:06.0080 4240 [ DAF66902F08796F9C694901660E5A64A ] C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:48:06.0080 4240 C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe - ok
21:48:06.0095 4240 [ 7372A79A5F906CD959A74A32E6FEDB1F ] C:\Windows\System32\upnp.dll
21:48:06.0095 4240 C:\Windows\System32\upnp.dll - ok
21:48:06.0095 4240 [ 8CC4ECA2177510674DB92BB8F1CEBBEE ] C:\Windows\System32\hgcpl.dll
21:48:06.0095 4240 C:\Windows\System32\hgcpl.dll - ok
21:48:06.0111 4240 [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll
21:48:06.0111 4240 C:\Windows\System32\ssdpsrv.dll - ok
21:48:06.0111 4240 [ 81E1B1330468CB855D770CD12B82A22A ] C:\Program Files\Smart PDF Creator\ExplorerExt.dll
21:48:06.0111 4240 C:\Program Files\Smart PDF Creator\ExplorerExt.dll - ok
21:48:06.0111 4240 [ F11FE030158F8EF14A56A3EA9E9BD47D ] C:\Program Files\WinRAR\RarExt.dll
21:48:06.0111 4240 C:\Program Files\WinRAR\RarExt.dll - ok
21:48:06.0127 4240 [ E0AE8FDDFB86BA5DB783DB8EF70A79CA ] C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
21:48:06.0127 4240 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll - ok
21:48:06.0127 4240 [ 66841B493B4FA59E1886246BC62E7A10 ] C:\Program Files\K7 Computing\K7TSecurity\K7SRExt.dll
21:48:06.0127 4240 C:\Program Files\K7 Computing\K7TSecurity\K7SRExt.dll - ok
21:48:06.0127 4240 [ 5CF6190CD875DA6B35256FEE573E7908 ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
21:48:06.0127 4240 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
21:48:06.0142 4240 [ 7C9BDA82E4B558B74D5E19F4213E2BC6 ] C:\Program Files\SearchPredict\SearchPredict.dll
21:48:06.0142 4240 C:\Program Files\SearchPredict\SearchPredict.dll - ok
21:48:06.0142 4240 [ BA117114BF4B094718BA561117F16445 ] C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
21:48:06.0142 4240 C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll - ok
21:48:06.0142 4240 [ 820B9AA4223EB2D83D91F0485EAF3768 ] C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll
21:48:06.0142 4240 C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll - ok
21:48:06.0158 4240 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:48:06.0158 4240 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe - ok
21:48:06.0158 4240 [ 43530DE5728810466BF6B115C9DD7D5E ] C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe
21:48:06.0158 4240 C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe - ok
21:48:06.0158 4240 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:48:06.0158 4240 C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe - ok
21:48:06.0173 4240 [ E1BCE74A3BD9902B72599C0192A07E27 ] C:\Windows\System32\msdtc.exe
21:48:06.0173 4240 C:\Windows\System32\msdtc.exe - ok
21:48:06.0173 4240 [ A8492E3929E7B981DA541286709C8479 ] C:\Windows\System32\msiexec.exe
21:48:06.0173 4240 C:\Windows\System32\msiexec.exe - ok
21:48:06.0189 4240 [ ADAF062116B4E6D96E44D26486A87AF6 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:48:06.0189 4240 C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe - ok
21:48:06.0189 4240 [ 73FA09B84B23A1897809A84F976D5D99 ] C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe
21:48:06.0189 4240 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe - ok
21:48:06.0205 4240 [ 5836B9E91863A00EC1B8E785EFD86ECB ] C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:48:06.0205 4240 C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe - ok
21:48:06.0205 4240 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:48:06.0205 4240 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe - ok
21:48:06.0220 4240 [ A328A46D87BB92CE4D8A4528E9D84787 ] C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:48:06.0220 4240 C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe - ok
21:48:06.0220 4240 [ 84DE1DD996B48B05ACE31AD015FA108A ] C:\Program Files\Common Files\microsoft shared\OFFICE12\ODSERV.EXE
21:48:06.0220 4240 C:\Program Files\Common Files\microsoft shared\OFFICE12\ODSERV.EXE - ok
21:48:06.0220 4240 [ 5A432A042DAE460ABE7199B758E8606C ] C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE
21:48:06.0220 4240 C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE - ok
21:48:06.0236 4240 [ 94D36C0E44677DD26981D2BFEEF2A29D ] C:\Windows\System32\Locator.exe
21:48:06.0236 4240 C:\Windows\System32\Locator.exe - ok
21:48:06.0236 4240 [ 3612108D36EA74F6F9FC5005E88E353B ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:48:06.0236 4240 C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - ok
21:48:06.0236 4240 [ D37B8CE340B71D9E0AB2440ADDB2FDBF ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:48:06.0236 4240 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
21:48:06.0251 4240 [ 41A4C781D2286208D397D72099304133 ] C:\Windows\servicing\TrustedInstaller.exe
21:48:06.0251 4240 C:\Windows\servicing\TrustedInstaller.exe - ok
21:48:06.0251 4240 [ 8344FD4FCE927880AA1AA7681D4927E5 ] C:\Windows\System32\UI0Detect.exe
21:48:06.0251 4240 C:\Windows\System32\UI0Detect.exe - ok
21:48:06.0251 4240 [ 8C4E7C49D3641BC9E299E466A7F8867D ] C:\Windows\System32\vds.exe
21:48:06.0251 4240 C:\Windows\System32\vds.exe - ok
21:48:06.0267 4240 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] C:\Windows\System32\VSSVC.exe
21:48:06.0267 4240 C:\Windows\System32\VSSVC.exe - ok
21:48:06.0267 4240 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] C:\Windows\System32\wbengine.exe
21:48:06.0267 4240 C:\Windows\System32\wbengine.exe - ok
21:48:06.0267 4240 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] C:\Windows\System32\wbem\WmiApSrv.exe
21:48:06.0283 4240 C:\Windows\System32\wbem\WmiApSrv.exe - ok
21:48:06.0283 4240 [ 77FBD400984CF72BA0FC4B3489D65F74 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
21:48:06.0283 4240 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
21:48:06.0283 4240 [ 3AC9064EBF625C19CE7DB96FC66068DF ] C:\Program Files\K7 Computing\K7TSecurity\K7TSNews.exe
21:48:06.0283 4240 C:\Program Files\K7 Computing\K7TSecurity\K7TSNews.exe - ok
21:48:06.0298 4240 [ 533631FE7DB9FF2A1D456A3D15A2DD46 ] C:\Windows\System32\icmp.dll
21:48:06.0298 4240 C:\Windows\System32\icmp.dll - ok
21:48:06.0298 4240 ============================================================
21:48:06.0298 4240 Scan finished
21:48:06.0298 4240 ============================================================
21:48:06.0314 4232 Detected object count: 3
21:48:06.0314 4232 Actual detected object count: 3
21:48:29.0729 4232 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:48:29.0729 4232 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:48:29.0729 4232 Realtek11nCU ( UnsignedFile.Multi.Generic ) - skipped by user
21:48:29.0729 4232 Realtek11nCU ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:48:29.0729 4232 Reliance Netconnect. RunOuc ( UnsignedFile.Multi.Generic ) - skipped by user
21:48:29.0729 4232 Reliance Netconnect. RunOuc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:49:12.0099 3008 ============================================================
21:49:12.0099 3008 Scan started
21:49:12.0099 3008 Mode: Manual; SigCheck; TDLFS;
21:49:12.0099 3008 ============================================================
21:49:13.0846 3008 ================ Scan system memory ========================
21:49:13.0846 3008 System memory - ok
21:49:13.0846 3008 ================ Scan services =============================
21:49:14.0720 3008 [ 6D2ACA41739BFE8CB86EE8E85F29697D ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
21:49:14.0767 3008 1394ohci - ok
21:49:14.0814 3008 [ F0E07D144C8685B8774BC32FC8DA4DF0 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
21:49:14.0845 3008 ACPI - ok
21:49:14.0860 3008 [ 98D81CA942D19F7D9153B095162AC013 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
21:49:14.0892 3008 AcpiPmi - ok
21:49:15.0016 3008 [ ED6D98E58406F2779C844943076EB4EE ] ADBlockerSrv C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
21:49:15.0063 3008 ADBlockerSrv - ok
21:49:15.0126 3008 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:49:15.0157 3008 adp94xx - ok
21:49:15.0204 3008 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:49:15.0235 3008 adpahci - ok
21:49:15.0266 3008 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:49:15.0282 3008 adpu320 - ok
21:49:15.0297 3008 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:49:15.0344 3008 AeLookupSvc - ok
21:49:15.0375 3008 [ A6CE73469591554279DA63BE715DBC93 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
21:49:15.0672 3008 AERTFilters - ok
21:49:15.0765 3008 [ DDC040FDB01EF1712A6B13E52AFB104C ] AFD C:\Windows\system32\drivers\afd.sys
21:49:15.0874 3008 AFD - ok
21:49:15.0921 3008 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
21:49:15.0952 3008 agp440 - ok
21:49:15.0968 3008 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
21:49:15.0999 3008 aic78xx - ok
21:49:16.0046 3008 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
21:49:16.0093 3008 ALG - ok
21:49:16.0108 3008 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
21:49:16.0140 3008 aliide - ok
21:49:16.0155 3008 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\DRIVERS\amdagp.sys
21:49:16.0171 3008 amdagp - ok
21:49:16.0186 3008 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
21:49:16.0202 3008 amdide - ok
21:49:16.0218 3008 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:49:16.0264 3008 AmdK8 - ok
21:49:16.0280 3008 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:49:16.0311 3008 AmdPPM - ok
21:49:16.0327 3008 [ 2101A86C25C154F8314B24EF49D7FBC2 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
21:49:16.0358 3008 amdsata - ok
21:49:16.0389 3008 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:49:16.0405 3008 amdsbs - ok
21:49:16.0436 3008 [ B81C2B5616F6420A9941EA093A92B150 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
21:49:16.0452 3008 amdxata - ok
21:49:16.0483 3008 [ FEB834C02CE1E84B6A38F953CA067706 ] AppID C:\Windows\system32\drivers\appid.sys
21:49:16.0498 3008 AppID - ok
21:49:16.0530 3008 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:49:16.0576 3008 AppIDSvc - ok
21:49:16.0670 3008 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] Appinfo C:\Windows\System32\appinfo.dll
21:49:16.0701 3008 Appinfo - ok
21:49:16.0717 3008 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
21:49:16.0764 3008 AppMgmt - ok
21:49:16.0810 3008 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
21:49:16.0826 3008 arc - ok
21:49:16.0873 3008 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:49:16.0904 3008 arcsas - ok
21:49:16.0935 3008 [ F370579987F35BA161CD23419E930F4C ] asdnet C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys
21:49:16.0951 3008 asdnet - ok
21:49:16.0966 3008 [ 8C3A4F8342F1336C960B5EED3128CE31 ] asdrm C:\Windows\system32\DRIVERS\asdrm.sys
21:49:16.0998 3008 asdrm - ok
21:49:17.0013 3008 [ 67B1C96DF3C34D66190126639A2C0260 ] asdrs C:\Windows\system32\DRIVERS\asdrs.sys
21:49:17.0044 3008 asdrs - ok
21:49:17.0216 3008 [ 86D4ABC1B01D39C810E14D54C2D6AEE1 ] asdsrv C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
21:49:17.0263 3008 asdsrv - ok
21:49:17.0278 3008 [ 4F3BC96F7C45ED12955892C310F1E3DB ] asdws C:\Windows\system32\DRIVERS\asdws.sys
21:49:17.0310 3008 asdws - ok
21:49:17.0497 3008 [ 39CDCB109BF200CC8A05B9C7E6272D11 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:49:17.0512 3008 aspnet_state - ok
21:49:17.0544 3008 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:49:17.0590 3008 AsyncMac - ok
21:49:17.0606 3008 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\DRIVERS\atapi.sys
21:49:17.0622 3008 atapi - ok
21:49:17.0746 3008 [ 510C873BFA135AA829F4180352772734 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:49:17.0809 3008 AudioEndpointBuilder - ok
21:49:17.0840 3008 [ 510C873BFA135AA829F4180352772734 ] Audiosrv C:\Windows\System32\Audiosrv.dll
21:49:17.0902 3008 Audiosrv - ok
21:49:17.0965 3008 [ DD6A431B43E34B91A767D1CE33728175 ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:49:17.0996 3008 AxInstSV - ok
21:49:18.0261 3008 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
21:49:18.0292 3008 b06bdrv - ok
21:49:18.0339 3008 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
21:49:18.0355 3008 b57nd60x - ok
21:49:18.0370 3008 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
21:49:18.0386 3008 BDESVC - ok
21:49:18.0402 3008 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
21:49:18.0433 3008 Beep - ok
21:49:18.0480 3008 [ 85AC71C045CEB054ED48A7841AAE0C11 ] BFE C:\Windows\System32\bfe.dll
21:49:18.0526 3008 BFE - ok
21:49:18.0620 3008 [ 53F476476F55A27F580661BDE09C4EC4 ] BITS C:\Windows\system32\qmgr.dll
21:49:18.0698 3008 BITS - ok
21:49:18.0745 3008 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:49:18.0760 3008 blbdrive - ok
21:49:18.0776 3008 [ FCAFAEF6798D7B51FF029F99A9898961 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:49:18.0870 3008 bowser - ok
21:49:18.0870 3008 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:49:18.0901 3008 BrFiltLo - ok
21:49:18.0916 3008 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:49:18.0932 3008 BrFiltUp - ok
21:49:18.0948 3008 [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
21:49:18.0979 3008 BridgeMP - ok
21:49:19.0010 3008 [ 598E1280E7FF3744F4B8329366CC5635 ] Browser C:\Windows\System32\browser.dll
21:49:19.0057 3008 Browser - ok
21:49:19.0072 3008 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:49:19.0119 3008 Brserid - ok
21:49:19.0135 3008 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:49:19.0135 3008 BrSerWdm - ok
21:49:19.0150 3008 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:49:19.0166 3008 BrUsbMdm - ok
21:49:19.0182 3008 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:49:19.0197 3008 BrUsbSer - ok
21:49:19.0213 3008 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
21:49:19.0244 3008 BthEnum - ok
21:49:19.0244 3008 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:49:19.0275 3008 BTHMODEM - ok
21:49:19.0291 3008 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:49:19.0306 3008 BthPan - ok
21:49:19.0322 3008 [ 4A34888E13224678DD062466AFEC4240 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
21:49:19.0353 3008 BTHPORT - ok
21:49:19.0384 3008 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
21:49:19.0447 3008 bthserv - ok
21:49:19.0462 3008 [ FA04C63916FA221DBB91FCE153D07A55 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
21:49:19.0478 3008 BTHUSB - ok
21:49:19.0494 3008 [ D57D29132EFE13A83133D9BD449E0CF1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:49:19.0509 3008 btwaudio - ok
21:49:19.0525 3008 [ D282C14A69357D0E1BAFAECC2CA98C3A ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
21:49:19.0556 3008 btwavdt - ok
21:49:19.0618 3008 [ F7434401AE320BB97903A3C1865242FB ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:49:19.0962 3008 btwdins - ok
21:49:19.0977 3008 [ AAFD7CB76BA61FBB08E302DA208C974A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:49:19.0993 3008 btwl2cap - ok
21:49:20.0008 3008 [ 02EB4D2B05967DF2D32F29C84AB1FB17 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:49:20.0040 3008 btwrchid - ok
21:49:20.0086 3008 catchme - ok
21:49:20.0118 3008 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:49:20.0149 3008 cdfs - ok
21:49:20.0164 3008 [ BA6E70AA0E6091BC39DE29477D866A77 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
21:49:20.0196 3008 cdrom - ok
21:49:20.0211 3008 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] CertPropSvc C:\Windows\System32\certprop.dll
21:49:20.0242 3008 CertPropSvc - ok
21:49:20.0258 3008 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:49:20.0289 3008 circlass - ok
21:49:20.0289 3008 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
21:49:20.0320 3008 CLFS - ok
21:49:20.0352 3008 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:49:20.0367 3008 clr_optimization_v2.0.50727_32 - ok
21:49:20.0383 3008 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:49:20.0398 3008 CmBatt - ok
21:49:20.0414 3008 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
21:49:20.0430 3008 cmdide - ok
21:49:20.0461 3008 [ 1B675691ED940766149C93E8F4488D68 ] CNG C:\Windows\system32\Drivers\cng.sys
21:49:20.0476 3008 CNG - ok
21:49:20.0492 3008 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:49:20.0508 3008 Compbatt - ok
21:49:20.0523 3008 [ F1724BA27E97D627F808FB0BA77A28A6 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
21:49:20.0554 3008 CompositeBus - ok
21:49:20.0554 3008 COMSysApp - ok
21:49:20.0570 3008 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:49:20.0586 3008 crcdisk - ok
21:49:20.0617 3008 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:49:20.0664 3008 CryptSvc - ok
21:49:20.0695 3008 [ 27C9490BDD0AE48911AB8CF1932591ED ] CSC C:\Windows\system32\drivers\csc.sys
21:49:20.0710 3008 CSC - ok
21:49:20.0742 3008 [ 56FB5F222EA30D3D3FC459879772CB73 ] CscService C:\Windows\System32\cscsvc.dll
21:49:20.0788 3008 CscService - ok
21:49:20.0820 3008 [ B82CD39E336973359D7C9BF911E8E84F ] DcomLaunch C:\Windows\system32\rpcss.dll
21:49:20.0866 3008 DcomLaunch - ok
21:49:20.0898 3008 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
21:49:20.0960 3008 defragsvc - ok
21:49:20.0960 3008 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:49:20.0991 3008 DfsC - ok
21:49:21.0022 3008 [ C56495FBD770712367CAD35E5DE72DA6 ] Dhcp C:\Windows\system32\dhcpcore.dll
21:49:21.0054 3008 Dhcp - ok
21:49:21.0069 3008 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
21:49:21.0116 3008 discache - ok
21:49:21.0116 3008 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:49:21.0132 3008 Disk - ok
21:49:21.0147 3008 [ D0722E963D3C6145446874241401B209 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:49:21.0194 3008 Dnscache - ok
21:49:21.0210 3008 [ 4408C85C21EEA48EB0CE486BAEEF0502 ] dot3svc C:\Windows\System32\dot3svc.dll
21:49:21.0272 3008 dot3svc - ok
21:49:21.0288 3008 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] DPS C:\Windows\system32\dps.dll
21:49:21.0334 3008 DPS - ok
21:49:21.0350 3008 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:49:21.0381 3008 drmkaud - ok
21:49:21.0412 3008 [ 39806CFEDDCC55E686A49BCCD2972F23 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:49:21.0459 3008 DXGKrnl - ok
21:49:21.0475 3008 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
21:49:21.0506 3008 EapHost - ok
21:49:21.0584 3008 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
21:49:21.0631 3008 ebdrv - ok
21:49:21.0678 3008 [ F42309C4191C506B71DB5D1126D26318 ] EFS C:\Windows\System32\lsass.exe
21:49:21.0693 3008 EFS - ok
21:49:21.0756 3008 [ 3A74A6E33685662B125A3269B1F2114F ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:49:21.0787 3008 ehRecvr - ok
21:49:21.0818 3008 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
21:49:21.0849 3008 ehSched - ok
21:49:21.0880 3008 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:49:21.0912 3008 elxstor - ok
21:49:21.0927 3008 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
21:49:21.0943 3008 ErrDev - ok
21:49:21.0943 3008 esgiguard - ok
21:49:21.0974 3008 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
21:49:22.0036 3008 EventSystem - ok
21:49:22.0068 3008 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
21:49:22.0114 3008 ew_hwusbdev - ok
21:49:22.0130 3008 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
21:49:22.0161 3008 exfat - ok
21:49:22.0177 3008 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:49:22.0208 3008 fastfat - ok
21:49:22.0239 3008 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] Fax C:\Windows\system32\fxssvc.exe
21:49:22.0286 3008 Fax - ok
21:49:22.0302 3008 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:49:22.0317 3008 fdc - ok
21:49:22.0333 3008 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
21:49:22.0364 3008 fdPHost - ok
21:49:22.0364 3008 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
21:49:22.0395 3008 FDResPub - ok
21:49:22.0411 3008 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:49:22.0426 3008 FileInfo - ok
21:49:22.0442 3008 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:49:22.0473 3008 Filetrace - ok
21:49:22.0489 3008 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:49:22.0504 3008 flpydisk - ok
21:49:22.0520 3008 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:49:22.0536 3008 FltMgr - ok
21:49:22.0629 3008 [ B6512A85815FDC3D560C3705F5BDB93D ] FontCache C:\Windows\system32\FntCache.dll
21:49:22.0692 3008 FontCache - ok
21:49:22.0738 3008 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:49:22.0770 3008 FontCache3.0.0.0 - ok
21:49:22.0801 3008 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:49:22.0832 3008 FsDepends - ok
21:49:22.0863 3008 [ A574B4360E438977038AAE4BF60D79A2 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:49:22.0894 3008 Fs_Rec - ok
21:49:22.0910 3008 [ 5592F5DBA26282D24D2B080EB438A4D7 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:49:22.0941 3008 fvevol - ok
21:49:22.0957 3008 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:49:23.0004 3008 gagp30kx - ok
21:49:23.0050 3008 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] gpsvc C:\Windows\System32\gpsvc.dll
21:49:23.0144 3008 gpsvc - ok
21:49:23.0222 3008 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:49:23.0659 3008 gupdate - ok
21:49:23.0674 3008 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:49:24.0111 3008 gupdatem - ok
21:49:24.0127 3008 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:49:24.0158 3008 hcw85cir - ok
21:49:24.0205 3008 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:49:24.0236 3008 HdAudAddService - ok
21:49:24.0267 3008 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
21:49:24.0298 3008 HDAudBus - ok
21:49:24.0298 3008 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:49:24.0330 3008 HidBatt - ok
21:49:24.0345 3008 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:49:24.0376 3008 HidBth - ok
21:49:24.0392 3008 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:49:24.0423 3008 HidIr - ok
21:49:24.0454 3008 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\System32\hidserv.dll
21:49:24.0532 3008 hidserv - ok
21:49:24.0532 3008 [ 25072FB35AC90B25F9E4E3BACF774102 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
21:49:24.0564 3008 HidUsb - ok
21:49:24.0610 3008 [ 741C2A45CA8407E374AABA3E330B7872 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:49:24.0704 3008 hkmsvc - ok
21:49:24.0720 3008 [ A768CA158BB06782A2835B907F4873C3 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:49:24.0782 3008 HomeGroupListener - ok
21:49:24.0813 3008 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:49:24.0860 3008 HomeGroupProvider - ok
21:49:24.0876 3008 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
21:49:24.0907 3008 HpSAMD - ok
21:49:24.0938 3008 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbmdm C:\Windows\system32\DRIVERS\HSPADataCardusbmdm.sys
21:49:24.0969 3008 HSPADataCardusbmdm - ok
21:49:25.0000 3008 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbnmea C:\Windows\system32\DRIVERS\HSPADataCardusbnmea.sys
21:49:25.0047 3008 HSPADataCardusbnmea - ok
21:49:25.0047 3008 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbser C:\Windows\system32\DRIVERS\HSPADataCardusbser.sys
21:49:25.0094 3008 HSPADataCardusbser - ok
21:49:25.0125 3008 [ 4E431ECDDE5FA6E188C2E81EBB54E14B ] HSPADataCardusbvoice C:\Windows\system32\DRIVERS\HSPADataCardusbvoice.sys
21:49:25.0172 3008 HSPADataCardusbvoice - ok
21:49:25.0188 3008 [ C531C7FD9E8B62021112787C4E2C5A5A ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:49:25.0281 3008 HTTP - ok
21:49:25.0312 3008 [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
21:49:25.0344 3008 huawei_enumerator - ok
21:49:25.0375 3008 [ F547F862B8907F1BCBD9B72A72A6449E ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
21:49:25.0437 3008 hwdatacard - ok
21:49:25.0515 3008 [ 5EF3427AE503B5C03A48F7C9FF458B69 ] HWDeviceService.exe C:\ProgramData\DatacardService\HWDeviceService.exe
21:49:25.0609 3008 HWDeviceService.exe - ok
21:49:25.0640 3008 [ 8305F33CDE89AD6C7A0763ED0B5A8D42 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:49:25.0671 3008 hwpolicy - ok
21:49:25.0687 3008 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
21:49:25.0718 3008 i8042prt - ok
21:49:25.0749 3008 [ 934AF4D7C5F457B9F0743F4299B77B67 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
21:49:25.0780 3008 iaStorV - ok
21:49:25.0827 3008 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:49:25.0874 3008 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:49:25.0874 3008 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:49:25.0921 3008 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:49:25.0999 3008 idsvc - ok
21:49:26.0217 3008 [ DCE0B53570703CCE580D066F89EF58CD ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
21:49:26.0373 3008 igfx - ok
21:49:26.0389 3008 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:49:26.0420 3008 iirsp - ok
21:49:26.0467 3008 [ FAC0EE6562B121B1399D6E855583F7A5 ] IKEEXT C:\Windows\System32\ikeext.dll
21:49:26.0545 3008 IKEEXT - ok
21:49:26.0592 3008 [ E3C36AC5AE87EC970AE8EA2A93D59AE1 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
21:49:26.0623 3008 Impcd - ok
21:49:26.0701 3008 [ DBA9CB792CAF474C2DE11D98112E5FED ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:49:26.0779 3008 IntcAzAudAddService - ok
21:49:26.0810 3008 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
21:49:26.0841 3008 intelide - ok
21:49:26.0841 3008 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:49:26.0872 3008 intelppm - ok
21:49:26.0904 3008 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:49:26.0950 3008 IPBusEnum - ok
21:49:26.0966 3008 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:49:27.0013 3008 IpFilterDriver - ok
21:49:27.0044 3008 [ 477397B432A256A50EE7E4339EB9EA14 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:49:27.0106 3008 iphlpsvc - ok
21:49:27.0122 3008 [ E4454B6C37D7FFD5649611F6496308A7 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
21:49:27.0153 3008 IPMIDRV - ok
21:49:27.0169 3008 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:49:27.0216 3008 IPNAT - ok
21:49:27.0231 3008 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:49:27.0262 3008 IRENUM - ok
21:49:27.0262 3008 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
21:49:27.0294 3008 isapnp - ok
21:49:27.0309 3008 [ ED46C223AE46C6866AB77CDC41C404B7 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
21:49:27.0340 3008 iScsiPrt - ok
21:49:27.0403 3008 [ 790385B5D3BC420551FA6969E5A50103 ] K7CrvSvc C:\Program Files\K7 Computing\K7TSecurity\K7CrvSvc.exe
21:49:27.0450 3008 K7CrvSvc - ok
21:49:27.0481 3008 [ 024CBDAC9E26AEDB16E2CC3B0954272A ] K7EmlPxy C:\Program Files\K7 Computing\K7TSecurity\K7EmlPxy.exe
21:49:27.0543 3008 K7EmlPxy - ok
21:49:27.0606 3008 [ 2F8F1F3CC5FABE6B4C6A658658001C20 ] K7FWHlpr C:\Windows\system32\drivers\K7FWHlpr.sys
21:49:27.0621 3008 K7FWHlpr - ok
21:49:27.0652 3008 [ ECE6F33B41DEFB15059FD12FCECB8B3C ] K7FWSrvc C:\Program Files\K7 Computing\K7TSecurity\K7FWSrvc.exe
21:49:27.0746 3008 K7FWSrvc - ok
21:49:27.0746 3008 [ F494D8EB409EBB8CE111A2E977B475BC ] K7PSSrvc C:\Program Files\K7 Computing\K7TSecurity\K7PSSrvc.exe
21:49:27.0793 3008 K7PSSrvc - ok
21:49:27.0824 3008 [ 6A6977B9DB05A51A23F118043D62A988 ] K7RTScan C:\Program Files\K7 Computing\K7TSecurity\K7RTScan.exe
21:49:27.0871 3008 K7RTScan - ok
21:49:27.0902 3008 [ 87D6BDEB6EB1CAA434D629CF6F750795 ] K7Sentry C:\Windows\system32\drivers\K7Sentry.sys
21:49:27.0980 3008 K7Sentry - ok
21:49:28.0011 3008 [ 43530DE5728810466BF6B115C9DD7D5E ] K7SpmSrc C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe
21:49:28.0105 3008 K7SpmSrc - ok
21:49:28.0136 3008 [ C85345BFE012279E20DC63A7AA6150EF ] K7TSMngr C:\Program Files\K7 Computing\K7TSecurity\K7TSMngr.exe
21:49:28.0183 3008 K7TSMngr - ok
21:49:28.0198 3008 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
21:49:28.0230 3008 kbdclass - ok
21:49:28.0245 3008 [ 3D9F0EBF350EDCFD6498057301455964 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
21:49:28.0276 3008 kbdhid - ok
21:49:28.0292 3008 [ F42309C4191C506B71DB5D1126D26318 ] KeyIso C:\Windows\system32\lsass.exe
21:49:28.0323 3008 KeyIso - ok
21:49:28.0339 3008 [ E36A061EC11B373826905B21BE10948F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:49:28.0354 3008 KSecDD - ok
21:49:28.0370 3008 [ 26C046977E85B95036453D7B88BA1820 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:49:28.0401 3008 KSecPkg - ok
21:49:28.0432 3008 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
21:49:28.0495 3008 KtmRm - ok
21:49:28.0510 3008 [ 6EF8146358452995A4A9335E44ABB015 ] L1C C:\Windows\system32\DRIVERS\L1C62x86.sys
21:49:28.0542 3008 L1C - ok
21:49:28.0588 3008 [ BCA92CB047A4326925ECEF759DBAA233 ] LanmanServer C:\Windows\System32\srvsvc.dll
21:49:28.0666 3008 LanmanServer - ok
21:49:28.0682 3008 [ B9891F885DCF1F0513A51CB58493CB1F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:49:28.0744 3008 LanmanWorkstation - ok
21:49:28.0760 3008 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:49:28.0807 3008 lltdio - ok
21:49:28.0838 3008 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:49:28.0885 3008 lltdsvc - ok
21:49:28.0900 3008 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
21:49:28.0963 3008 lmhosts - ok
21:49:28.0978 3008 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:49:29.0010 3008 LSI_FC - ok
21:49:29.0025 3008 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:49:29.0056 3008 LSI_SAS - ok
21:49:29.0072 3008 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:49:29.0103 3008 LSI_SAS2 - ok
21:49:29.0119 3008 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:49:29.0150 3008 LSI_SCSI - ok
21:49:29.0166 3008 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
21:49:29.0212 3008 luafv - ok
21:49:29.0228 3008 [ D1D7EF163775449FDC38208ABF94B926 ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
21:49:29.0259 3008 mbamchameleon - ok
21:49:29.0275 3008 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
21:49:29.0306 3008 MBAMProtector - ok
21:49:29.0322 3008 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:49:29.0384 3008 MBAMScheduler - ok
21:49:29.0415 3008 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:49:29.0493 3008 MBAMService - ok
21:49:29.0509 3008 [ E2B0887816ED336685954E3D8FDAA51D ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:49:29.0540 3008 Mcx2Svc - ok
21:49:29.0602 3008 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:49:29.0618 3008 megasas - ok
21:49:29.0634 3008 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:49:29.0665 3008 MegaSR - ok
21:49:29.0727 3008 [ FAFE367D032ED82E9332B4C741A20216 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:49:29.0743 3008 Microsoft Office Groove Audit Service - ok
21:49:29.0758 3008 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
21:49:29.0805 3008 MMCSS - ok
21:49:29.0821 3008 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
21:49:29.0883 3008 Modem - ok
21:49:29.0914 3008 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:49:29.0946 3008 monitor - ok
21:49:29.0946 3008 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
21:49:29.0977 3008 mouclass - ok
21:49:29.0992 3008 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:49:30.0024 3008 mouhid - ok
21:49:30.0039 3008 [ 921C18727C5920D6C0300736646931C2 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:49:30.0055 3008 mountmgr - ok
21:49:30.0086 3008 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:49:30.0148 3008 MozillaMaintenance - ok
21:49:30.0164 3008 [ 2AF5997438C55FB79D33D015C30E1974 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
21:49:30.0195 3008 mpio - ok
21:49:30.0195 3008 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:49:30.0258 3008 mpsdrv - ok
21:49:30.0289 3008 [ 5CD996CECF45CBC3E8D109C86B82D69E ] MpsSvc C:\Windows\system32\mpssvc.dll
21:49:30.0367 3008 MpsSvc - ok
21:49:30.0382 3008 [ B1BE47008D20E43DA3ADC37C24CDB89D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:49:30.0429 3008 MRxDAV - ok
21:49:30.0429 3008 [ F4A054BE78AF7F410129C4B64B07DC9B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:49:30.0492 3008 mrxsmb - ok
21:49:30.0492 3008 [ DEFFA295BD1895C6ED8E3078412AC60B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:49:30.0554 3008 mrxsmb10 - ok
21:49:30.0554 3008 [ 24D76ABE5DCAD22F19D105F76FDF0CE1 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:49:30.0601 3008 mrxsmb20 - ok
21:49:30.0601 3008 [ 4326D168944123F38DD3B2D9C37A0B12 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
21:49:30.0632 3008 msahci - ok
21:49:30.0648 3008 [ 455029C7174A2DBB03DBA8A0D8BDDD9A ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
21:49:30.0679 3008 msdsm - ok
21:49:30.0710 3008 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
21:49:30.0741 3008 MSDTC - ok
21:49:30.0741 3008 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:49:30.0804 3008 Msfs - ok
21:49:30.0819 3008 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:49:30.0866 3008 mshidkmdf - ok
21:49:30.0866 3008 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
21:49:30.0882 3008 msisadrv - ok
21:49:30.0897 3008 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:49:30.0960 3008 MSiSCSI - ok
21:49:30.0960 3008 msiserver - ok
21:49:30.0975 3008 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:49:31.0022 3008 MSKSSRV - ok
21:49:31.0038 3008 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:49:31.0084 3008 MSPCLOCK - ok
21:49:31.0100 3008 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:49:31.0147 3008 MSPQM - ok
21:49:31.0162 3008 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:49:31.0194 3008 MsRPC - ok
21:49:31.0209 3008 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
21:49:31.0240 3008 mssmbios - ok
21:49:31.0272 3008 MSSQL$SQLEXPRESS - ok
21:49:31.0303 3008 [ ADAF062116B4E6D96E44D26486A87AF6 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:49:31.0303 3008 MSSQLServerADHelper - ok
21:49:31.0334 3008 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:49:31.0365 3008 MSTEE - ok
21:49:31.0474 3008 [ 73FA09B84B23A1897809A84F976D5D99 ] msvsmon80 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe
21:49:31.0537 3008 msvsmon80 - ok
21:49:31.0568 3008 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:49:31.0584 3008 MTConfig - ok
21:49:31.0615 3008 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
21:49:31.0630 3008 Mup - ok
21:49:31.0662 3008 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] napagent C:\Windows\system32\qagentRT.dll
21:49:31.0724 3008 napagent - ok
21:49:31.0771 3008 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:49:31.0802 3008 NativeWifiP - ok
21:49:31.0864 3008 [ 5836B9E91863A00EC1B8E785EFD86ECB ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:49:31.0927 3008 NBService - ok
21:49:31.0958 3008 [ 23759D175A0A9BAAF04D05047BC135A8 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:49:32.0020 3008 NDIS - ok
21:49:32.0052 3008 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:49:32.0114 3008 NdisCap - ok
21:49:32.0130 3008 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:49:32.0208 3008 NdisTapi - ok
21:49:32.0223 3008 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:49:32.0301 3008 Ndisuio - ok
21:49:32.0301 3008 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:49:32.0364 3008 NdisWan - ok
21:49:32.0379 3008 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:49:32.0473 3008 NDProxy - ok
21:49:32.0488 3008 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:49:32.0582 3008 NetBIOS - ok
21:49:32.0582 3008 [ DD52A733BF4CA5AF84562A5E2F963B91 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:49:32.0660 3008 NetBT - ok
21:49:32.0676 3008 [ F42309C4191C506B71DB5D1126D26318 ] Netlogon C:\Windows\system32\lsass.exe
21:49:32.0707 3008 Netlogon - ok
21:49:32.0738 3008 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
21:49:32.0816 3008 Netman - ok
21:49:32.0832 3008 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
21:49:32.0894 3008 netprofm - ok
21:49:32.0910 3008 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:49:32.0956 3008 NetTcpPortSharing - ok
21:49:32.0972 3008 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:49:33.0003 3008 nfrd960 - ok
21:49:33.0034 3008 [ 2226496E34BD40734946A054B1CD657F ] NlaSvc C:\Windows\System32\nlasvc.dll
21:49:33.0112 3008 NlaSvc - ok
21:49:33.0144 3008 [ 9A5F53B55E09ECC2DAB8C74E4DD18B8D ] nlsX86cc C:\Windows\system32\NLSSRV32.EXE
21:49:33.0190 3008 nlsX86cc - ok
21:49:33.0253 3008 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:49:33.0487 3008 NMIndexingService - ok
21:49:33.0502 3008 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:49:33.0690 3008 Npfs - ok
21:49:33.0721 3008 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
21:49:33.0783 3008 nsi - ok
21:49:33.0799 3008 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:49:33.0861 3008 nsiproxy - ok
21:49:33.0939 3008 [ 3795DCD21F740EE799FB7223234215AF ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:49:34.0033 3008 Ntfs - ok
21:49:34.0048 3008 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
21:49:34.0111 3008 Null - ok
21:49:34.0126 3008 [ 3F3D04B1D08D43C16EA7963954EC768D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
21:49:34.0158 3008 nvraid - ok
21:49:34.0173 3008 [ C99F251A5DE63C6F129CF71933ACED0F ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
21:49:34.0204 3008 nvstor - ok
21:49:34.0236 3008 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
21:49:34.0267 3008 nv_agp - ok
21:49:34.0345 3008 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:49:34.0392 3008 odserv - ok
21:49:34.0423 3008 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
21:49:34.0485 3008 ohci1394 - ok
21:49:34.0516 3008 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:49:34.0532 3008 ose - ok
21:49:34.0563 3008 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:49:34.0626 3008 p2pimsvc - ok
21:49:34.0672 3008 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
21:49:34.0735 3008 p2psvc - ok
21:49:34.0750 3008 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:49:34.0797 3008 Parport - ok
21:49:34.0797 3008 [ FF4218952B51DE44FE910953A3E686B9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:49:34.0828 3008 partmgr - ok
21:49:34.0844 3008 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
21:49:34.0875 3008 Parvdm - ok
21:49:34.0906 3008 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:49:34.0953 3008 PcaSvc - ok
21:49:34.0953 3008 [ C858CB77C577780ECC456A892E7E7D0F ] pci C:\Windows\system32\DRIVERS\pci.sys
21:49:35.0000 3008 pci - ok
21:49:35.0016 3008 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\DRIVERS\pciide.sys
21:49:35.0047 3008 pciide - ok
21:49:35.0062 3008 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:49:35.0109 3008 pcmcia - ok
21:49:35.0125 3008 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
21:49:35.0156 3008 pcw - ok
21:49:35.0172 3008 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:49:35.0265 3008 PEAUTH - ok
21:49:35.0296 3008 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
21:49:35.0406 3008 PeerDistSvc - ok
21:49:35.0468 3008 [ 9C1BFF7910C89A1D12E57343475840CB ] pla C:\Windows\system32\pla.dll
21:49:35.0655 3008 pla - ok
21:49:35.0686 3008 [ 2CC2008F1296968FBA162ED9F9AFE328 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:49:35.0780 3008 PlugPlay - ok
21:49:35.0811 3008 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:49:35.0858 3008 PNRPAutoReg - ok
21:49:35.0874 3008 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:49:35.0936 3008 PNRPsvc - ok
21:49:35.0967 3008 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

21:49:36.0061 3008 PolicyAgent - ok
21:49:36.0076 3008 [ DBFF83F709A91049621C1D35DD45C92C ] Power C:\Windows\system32\umpo.dll
21:49:36.0154 3008 Power - ok
21:49:36.0186 3008 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:49:36.0248 3008 PptpMiniport - ok
21:49:36.0264 3008 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:49:36.0295 3008 Processor - ok
21:49:36.0326 3008 [ 630CF26F0227498B7D5A92B12548960F ] ProfSvc C:\Windows\system32\profsvc.dll
21:49:36.0404 3008 ProfSvc - ok
21:49:36.0404 3008 [ F42309C4191C506B71DB5D1126D26318 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:49:36.0451 3008 ProtectedStorage - ok
21:49:36.0466 3008 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:49:36.0544 3008 Psched - ok
21:49:36.0591 3008 [ DA4ECE4EC909E1791339F3FFAF36418A ] QDLService2kDell C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe
21:49:36.0685 3008 QDLService2kDell - ok
21:49:36.0716 3008 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:49:36.0810 3008 ql2300 - ok
21:49:36.0825 3008 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:49:36.0872 3008 ql40xx - ok
21:49:36.0903 3008 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
21:49:36.0950 3008 QWAVE - ok
21:49:36.0966 3008 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:49:36.0997 3008 QWAVEdrv - ok
21:49:37.0012 3008 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:49:37.0075 3008 RasAcd - ok
21:49:37.0106 3008 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:49:37.0168 3008 RasAgileVpn - ok
21:49:37.0184 3008 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
21:49:37.0246 3008 RasAuto - ok
21:49:37.0278 3008 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:49:37.0340 3008 Rasl2tp - ok
21:49:37.0356 3008 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] RasMan C:\Windows\System32\rasmans.dll
21:49:37.0449 3008 RasMan - ok
21:49:37.0449 3008 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:49:37.0512 3008 RasPppoe - ok
21:49:37.0527 3008 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:49:37.0590 3008 RasSstp - ok
21:49:37.0605 3008 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:49:37.0683 3008 rdbss - ok
21:49:37.0683 3008 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:49:37.0730 3008 rdpbus - ok
21:49:37.0746 3008 [ 1E016846895B15A99F9A176A05029075 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:49:37.0792 3008 RDPCDD - ok
21:49:37.0808 3008 [ C5FF95883FFEF704D50C40D21CFB3AB5 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
21:49:37.0839 3008 RDPDR - ok
21:49:37.0855 3008 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:49:37.0902 3008 RDPENCDD - ok
21:49:37.0917 3008 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:49:37.0980 3008 RDPREFMP - ok
21:49:37.0995 3008 [ 801371BA9782282892D00AADB08EE367 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:49:38.0058 3008 RDPWD - ok
21:49:38.0073 3008 [ 4EA225BF1CF05E158853F30A99CA29A7 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:49:38.0104 3008 rdyboost - ok
21:49:38.0151 3008 [ EA569D48B2E755AF6D96F03F3335D98A ] Realtek11nCU C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe
21:49:38.0182 3008 Realtek11nCU ( UnsignedFile.Multi.Generic ) - warning
21:49:38.0182 3008 Realtek11nCU - detected UnsignedFile.Multi.Generic (1)
21:49:38.0245 3008 [ 38106C7BD34EAE89D2769AC0BA2E846B ] Reliance Netconnect. RunOuc C:\Program Files\Reliance Netconnect+\UpdateDog\ouc.exe
21:49:38.0354 3008 Reliance Netconnect. RunOuc ( UnsignedFile.Multi.Generic ) - warning
21:49:38.0354 3008 Reliance Netconnect. RunOuc - detected UnsignedFile.Multi.Generic (1)
21:49:38.0385 3008 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
21:49:38.0463 3008 RemoteAccess - ok
21:49:38.0494 3008 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:49:38.0572 3008 RemoteRegistry - ok
21:49:38.0588 3008 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:49:38.0635 3008 RFCOMM - ok
21:49:38.0650 3008 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:49:38.0744 3008 RpcEptMapper - ok
21:49:38.0744 3008 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
21:49:38.0791 3008 RpcLocator - ok
21:49:38.0806 3008 [ B82CD39E336973359D7C9BF911E8E84F ] RpcSs C:\Windows\system32\rpcss.dll
21:49:38.0900 3008 RpcSs - ok
21:49:38.0931 3008 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:49:38.0994 3008 rspndr - ok
21:49:39.0025 3008 [ 08E0B15F88CBFFEE0BB18D321C42E1B4 ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
21:49:39.0087 3008 RTL8192cu - ok
21:49:39.0118 3008 [ 5423D8437051E89DD34749F242C98648 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys
21:49:39.0150 3008 s3cap - ok
21:49:39.0165 3008 [ F42309C4191C506B71DB5D1126D26318 ] SamSs C:\Windows\system32\lsass.exe
21:49:39.0196 3008 SamSs - ok
21:49:39.0228 3008 [ 34EE0C44B724E3E4CE2EFF29126DE5B5 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
21:49:39.0259 3008 sbp2port - ok
21:49:39.0290 3008 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:49:39.0368 3008 SCardSvr - ok
21:49:39.0384 3008 [ A95C54B2AC3CC9C73FCDF9E51A1D6B51 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:49:39.0446 3008 scfilter - ok
21:49:39.0477 3008 [ 3E8B0C453E25613A1F59762A5C42AA75 ] Schedule C:\Windows\system32\schedsvc.dll
21:49:39.0602 3008 Schedule - ok
21:49:39.0618 3008 [ 628A9E30EC5E18DD5DE6BE4DBDC12198 ] SCPolicySvc C:\Windows\System32\certprop.dll
21:49:39.0680 3008 SCPolicySvc - ok
21:49:39.0696 3008 [ 5FD90ABDBFAEE85986802622CBB03446 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:49:39.0742 3008 SDRSVC - ok
21:49:39.0758 3008 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:49:39.0805 3008 secdrv - ok
21:49:39.0805 3008 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
21:49:39.0867 3008 seclogon - ok
21:49:39.0883 3008 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\system32\sens.dll
21:49:39.0961 3008 SENS - ok
21:49:39.0976 3008 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:49:40.0008 3008 SensrSvc - ok
21:49:40.0008 3008 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:49:40.0039 3008 Serenum - ok
21:49:40.0054 3008 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:49:40.0086 3008 Serial - ok
21:49:40.0101 3008 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:49:40.0132 3008 sermouse - ok
21:49:40.0164 3008 [ 8F55CE568C543D5ADF45C409D16718FC ] SessionEnv C:\Windows\system32\sessenv.dll
21:49:40.0210 3008 SessionEnv - ok
21:49:40.0226 3008 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
21:49:40.0273 3008 sffdisk - ok
21:49:40.0273 3008 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
21:49:40.0304 3008 sffp_mmc - ok
21:49:40.0320 3008 [ 4F1E5B0FE7C8050668DBFADE8999AEFB ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
21:49:40.0351 3008 sffp_sd - ok
21:49:40.0351 3008 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:49:40.0382 3008 sfloppy - ok
21:49:40.0398 3008 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:49:40.0476 3008 SharedAccess - ok
21:49:40.0491 3008 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:49:40.0554 3008 ShellHWDetection - ok
21:49:40.0554 3008 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\DRIVERS\sisagp.sys
21:49:40.0585 3008 sisagp - ok
21:49:40.0600 3008 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:49:40.0632 3008 SiSRaid2 - ok
21:49:40.0632 3008 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:49:40.0663 3008 SiSRaid4 - ok
21:49:40.0694 3008 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
21:49:45.0811 3008 SkypeUpdate - ok
21:49:45.0826 3008 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:49:45.0889 3008 Smb - ok
21:49:45.0920 3008 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:49:46.0185 3008 SNMPTRAP - ok
21:49:46.0201 3008 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
21:49:46.0232 3008 spldr - ok
21:49:46.0248 3008 [ 49B6DD6AB3715B7A67965F17194E98A9 ] Spooler C:\Windows\System32\spoolsv.exe
21:49:46.0326 3008 Spooler - ok
21:49:46.0404 3008 [ 4C287F9069FEDBD791178876EE9DE536 ] sppsvc C:\Windows\system32\sppsvc.exe
21:49:46.0513 3008 sppsvc - ok
21:49:46.0528 3008 [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:49:46.0591 3008 sppuinotify - ok
21:49:46.0622 3008 [ 3612108D36EA74F6F9FC5005E88E353B ] SQLBrowser C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:49:46.0684 3008 SQLBrowser - ok
21:49:46.0716 3008 [ D37B8CE340B71D9E0AB2440ADDB2FDBF ] SQLWriter C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:49:46.0747 3008 SQLWriter - ok
21:49:46.0794 3008 [ 2BA4EBC7DFBA845A1EDBE1F75913BE33 ] srv C:\Windows\system32\DRIVERS\srv.sys
21:49:46.0856 3008 srv - ok
21:49:46.0872 3008 [ DCE7E10FEAABD4CAE95948B3DE5340BB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:49:46.0934 3008 srv2 - ok
21:49:46.0950 3008 [ B5665BAA2120B8A54E22E9CD07C05106 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:49:47.0012 3008 srvnet - ok
21:49:47.0043 3008 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:49:47.0121 3008 SSDPSRV - ok
21:49:47.0137 3008 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:49:47.0199 3008 SstpSvc - ok
21:49:47.0215 3008 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:49:47.0246 3008 stexstor - ok
21:49:47.0277 3008 [ A22825E7BB7018E8AF3E229A5AF17221 ] StiSvc C:\Windows\System32\wiaservc.dll
21:49:47.0355 3008 StiSvc - ok
21:49:47.0371 3008 [ 957E346CA948668F2496A6CCF6FF82CC ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
21:49:47.0418 3008 storflt - ok
21:49:47.0433 3008 [ D5751969DC3E4B88BF482AC8EC9FE019 ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys
21:49:47.0464 3008 storvsc - ok
21:49:47.0480 3008 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
21:49:47.0527 3008 swenum - ok
21:49:47.0542 3008 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
21:49:47.0652 3008 swprv - ok
21:49:47.0683 3008 [ 04105C8DA62353589C29BDAEB8D88BD8 ] SysMain C:\Windows\system32\sysmain.dll
21:49:47.0808 3008 SysMain - ok
21:49:47.0823 3008 [ FCFB6C552FBC0DA299799CBD50AD9FD4 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:49:47.0870 3008 TabletInputService - ok
21:49:47.0886 3008 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] TapiSrv C:\Windows\System32\tapisrv.dll
21:49:47.0964 3008 TapiSrv - ok
21:49:47.0979 3008 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
21:49:48.0042 3008 TBS - ok
21:49:48.0088 3008 [ 2CC3D75488ABD3EC628BBB9A4FC84EFC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:49:48.0166 3008 Tcpip - ok
21:49:48.0213 3008 [ 2CC3D75488ABD3EC628BBB9A4FC84EFC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:49:48.0291 3008 TCPIP6 - ok
21:49:48.0322 3008 [ E64444523ADD154F86567C469BC0B17F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:49:48.0385 3008 tcpipreg - ok
21:49:48.0400 3008 [ 1875C1490D99E70E449E3AFAE9FCBADF ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:49:48.0447 3008 TDPIPE - ok
21:49:48.0463 3008 [ 7551E91EA999EE9A8E9C331D5A9C31F3 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:49:48.0525 3008 TDTCP - ok
21:49:48.0541 3008 [ CB39E896A2A83702D1737BFD402B3542 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:49:48.0603 3008 tdx - ok
21:49:48.0619 3008 [ C36F41EE20E6999DBF4B0425963268A5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
21:49:48.0634 3008 TermDD - ok
21:49:48.0681 3008 [ A01E50A04D7B1960B33E92B9080E6A94 ] TermService C:\Windows\System32\termsrv.dll
21:49:48.0775 3008 TermService - ok
21:49:48.0790 3008 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
21:49:48.0822 3008 Themes - ok
21:49:48.0837 3008 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
21:49:48.0900 3008 THREADORDER - ok
21:49:48.0900 3008 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
21:49:48.0962 3008 TrkWks - ok
21:49:49.0009 3008 [ 41A4C781D2286208D397D72099304133 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:49:49.0290 3008 TrustedInstaller - ok
21:49:49.0321 3008 [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:49:49.0383 3008 tssecsrv - ok
21:49:49.0399 3008 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:49:49.0461 3008 tunnel - ok
21:49:49.0477 3008 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:49:49.0508 3008 uagp35 - ok
21:49:49.0539 3008 [ 09CC3E16F8E5EE7168E01CF8FCBE061A ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:49:49.0602 3008 udfs - ok
21:49:49.0617 3008 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:49:49.0664 3008 UI0Detect - ok
21:49:49.0680 3008 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
21:49:49.0711 3008 uliagpkx - ok
21:49:49.0726 3008 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:49:49.0758 3008 umbus - ok
21:49:49.0773 3008 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:49:49.0804 3008 UmPass - ok
21:49:49.0820 3008 [ 8ECACA5454844F66386F7BE4AE0D7CD1 ] UmRdpService C:\Windows\System32\umrdp.dll
21:49:49.0851 3008 UmRdpService - ok
21:49:49.0882 3008 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
21:49:49.0992 3008 upnphost - ok
21:49:49.0992 3008 [ 8455C4ED038EFD09E99327F9D2D48FFA ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:49:50.0023 3008 usbccgp - ok
21:49:50.0038 3008 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
21:49:50.0070 3008 usbcir - ok
21:49:50.0085 3008 [ 1C333BFD60F2FED2C7AD5DAF533CB742 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
21:49:50.0116 3008 usbehci - ok
21:49:50.0132 3008 [ EE6EF93CCFA94FAE8C6AB298273D8AE2 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:49:50.0179 3008 usbhub - ok
21:49:50.0194 3008 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
21:49:50.0226 3008 usbohci - ok
21:49:50.0241 3008 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:49:50.0288 3008 usbprint - ok
21:49:50.0304 3008 [ D8889D56E0D27E57ED4591837FE71D27 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:49:50.0335 3008 USBSTOR - ok
21:49:50.0366 3008 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
21:49:50.0397 3008 usbuhci - ok
21:49:50.0428 3008 [ F642A7E4BF78CFA359CCA0A3557C28D7 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
21:49:50.0475 3008 usbvideo - ok
21:49:50.0506 3008 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
21:49:50.0569 3008 UxSms - ok
21:49:50.0584 3008 [ F42309C4191C506B71DB5D1126D26318 ] VaultSvc C:\Windows\system32\lsass.exe
21:49:50.0631 3008 VaultSvc - ok
21:49:50.0647 3008 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
21:49:50.0678 3008 vdrvroot - ok
21:49:50.0709 3008 [ 8C4E7C49D3641BC9E299E466A7F8867D ] vds C:\Windows\System32\vds.exe
21:49:50.0772 3008 vds - ok
21:49:50.0803 3008 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:49:50.0850 3008 vga - ok
21:49:50.0865 3008 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
21:49:50.0928 3008 VgaSave - ok
21:49:50.0943 3008 [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
21:49:50.0974 3008 vhdmp - ok
21:49:50.0990 3008 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\DRIVERS\viaagp.sys
21:49:51.0021 3008 viaagp - ok
21:49:51.0037 3008 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
21:49:51.0068 3008 ViaC7 - ok
21:49:51.0084 3008 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\DRIVERS\viaide.sys
21:49:51.0115 3008 viaide - ok
21:49:51.0130 3008 [ 379B349F65F453D2A6E75EA6B7448E49 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys
21:49:51.0162 3008 vmbus - ok
21:49:51.0177 3008 [ EC2BBAB4B84D0738C6C83D2234DC36FE ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys
21:49:51.0208 3008 VMBusHID - ok
21:49:51.0240 3008 [ 384E5A2AA49934295171E499F86BA6F3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
21:49:51.0271 3008 volmgr - ok
21:49:51.0286 3008 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:49:51.0333 3008 volmgrx - ok
21:49:51.0349 3008 [ 58DF9D2481A56EDDE167E51B334D44FD ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
21:49:51.0380 3008 volsnap - ok
21:49:51.0411 3008 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:49:51.0442 3008 vsmraid - ok
21:49:51.0489 3008 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] VSS C:\Windows\system32\vssvc.exe
21:49:51.0614 3008 VSS - ok
21:49:51.0630 3008 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:49:51.0676 3008 vwifibus - ok
21:49:51.0692 3008 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:49:51.0739 3008 vwififlt - ok
21:49:51.0770 3008 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
21:49:51.0864 3008 W32Time - ok
21:49:51.0895 3008 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:49:51.0942 3008 WacomPen - ok
21:49:51.0957 3008 [ 692A712062146E96D28BA0B7D75DE31B ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:49:52.0020 3008 WANARP - ok
21:49:52.0035 3008 [ 692A712062146E96D28BA0B7D75DE31B ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:49:52.0098 3008 Wanarpv6 - ok
21:49:52.0144 3008 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] wbengine C:\Windows\system32\wbengine.exe
21:49:52.0269 3008 wbengine - ok
21:49:52.0285 3008 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:49:52.0347 3008 WbioSrvc - ok
21:49:52.0378 3008 [ D0F88AA11EE1A62BCC6D6A8A7783CA11 ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:49:52.0441 3008 wcncsvc - ok
21:49:52.0456 3008 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:49:52.0534 3008 WcsPlugInService - ok
21:49:52.0550 3008 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:49:52.0581 3008 Wd - ok
21:49:52.0612 3008 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:49:52.0659 3008 Wdf01000 - ok
21:49:52.0675 3008 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:49:52.0722 3008 WdiServiceHost - ok
21:49:52.0737 3008 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:49:52.0800 3008 WdiSystemHost - ok
21:49:52.0815 3008 [ D87C7D2C517F82A5AB7A73E203063D9E ] WebClient C:\Windows\System32\webclnt.dll
21:49:52.0878 3008 WebClient - ok
21:49:52.0893 3008 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:49:52.0971 3008 Wecsvc - ok
21:49:52.0987 3008 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:49:53.0080 3008 wercplsupport - ok
21:49:53.0096 3008 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
21:49:53.0174 3008 WerSvc - ok
21:49:53.0190 3008 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:49:53.0268 3008 WfpLwf - ok
21:49:53.0283 3008 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:49:53.0314 3008 WIMMount - ok
21:49:53.0361 3008 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
21:49:53.0455 3008 WinDefend - ok
21:49:53.0455 3008 WinHttpAutoProxySvc - ok
21:49:53.0517 3008 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:49:53.0595 3008 Winmgmt - ok
21:49:53.0642 3008 [ C4F5D3901D1B41D602DDC196E0B95B51 ] WinRM C:\Windows\system32\WsmSvc.dll
21:49:53.0782 3008 WinRM - ok
21:49:53.0814 3008 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:49:53.0845 3008 WinUsb - ok
21:49:53.0892 3008 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
21:49:53.0985 3008 Wlansvc - ok
21:49:54.0016 3008 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
21:49:54.0032 3008 WmiAcpi - ok
21:49:54.0063 3008 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:49:54.0126 3008 wmiApSrv - ok
21:49:54.0188 3008 [ 77FBD400984CF72BA0FC4B3489D65F74 ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
21:49:54.0406 3008 WMPNetworkSvc - ok
21:49:54.0422 3008 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:49:54.0453 3008 WPCSvc - ok
21:49:54.0469 3008 [ B7F658A2EBC07129538AD9AB35212637 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:49:54.0500 3008 WPDBusEnum - ok
21:49:54.0516 3008 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:49:54.0578 3008 ws2ifsl - ok
21:49:54.0594 3008 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\system32\wscsvc.dll
21:49:54.0656 3008 wscsvc - ok
21:49:54.0656 3008 WSearch - ok
21:49:54.0703 3008 [ A33408CC036F9C08142B11BE5E93F0A1 ] wuauserv C:\Windows\system32\wuaueng.dll
21:49:54.0890 3008 wuauserv - ok
21:49:54.0921 3008 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:49:54.0968 3008 WudfPf - ok
21:49:54.0984 3008 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:49:55.0062 3008 WUDFRd - ok
21:49:55.0077 3008 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:49:55.0155 3008 wudfsvc - ok
21:49:55.0171 3008 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
21:49:55.0218 3008 WwanSvc - ok
21:49:55.0218 3008 ================ Scan global ===============================
21:49:55.0249 3008 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\system32\basesrv.dll
21:49:55.0264 3008 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
21:49:55.0296 3008 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\system32\winsrv.dll
21:49:55.0311 3008 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
21:49:55.0327 3008 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
21:49:55.0342 3008 [Global] - ok
21:49:55.0342 3008 ================ Scan MBR ==================================
21:49:55.0342 3008 [ BBF86A75EA3672BB80AB782ADABF6BE5 ] \Device\Harddisk0\DR0
21:49:55.0576 3008 \Device\Harddisk0\DR0 - ok
21:49:55.0576 3008 ================ Scan VBR ==================================
21:49:55.0576 3008 [ 3FDFE43F5D6D532FB31692F918C60FA3 ] \Device\Harddisk0\DR0\Partition1
21:49:55.0576 3008 \Device\Harddisk0\DR0\Partition1 - ok
21:49:55.0623 3008 [ D12400FE41677F1BFA78B1FD247A139A ] \Device\Harddisk0\DR0\Partition2
21:49:55.0623 3008 \Device\Harddisk0\DR0\Partition2 - ok
21:49:55.0639 3008 [ 3E26E46417FF06350BD291D1958BE97B ] \Device\Harddisk0\DR0\Partition3
21:49:55.0639 3008 \Device\Harddisk0\DR0\Partition3 - ok
21:49:55.0639 3008 [ 47A50F26D27B7DBE34A840F47CE7FE25 ] \Device\Harddisk0\DR0\Partition4
21:49:55.0639 3008 \Device\Harddisk0\DR0\Partition4 - ok
21:49:55.0670 3008 [ 9189A2E9C7E3ADFFFBBCDAFC6E29B0EF ] \Device\Harddisk0\DR0\Partition5
21:49:55.0670 3008 \Device\Harddisk0\DR0\Partition5 - ok
21:49:55.0686 3008 [ 7F39CE5141C577C6034DDDDA46349646 ] \Device\Harddisk0\DR0\Partition6
21:49:55.0686 3008 \Device\Harddisk0\DR0\Partition6 - ok
21:49:55.0686 3008 ================ Scan active images ========================
21:49:55.0686 3008 [ B7EFEF22FF426EC4158A177CB3B558D3 ] C:\Windows\System32\drivers\crashdmp.sys
21:49:55.0686 3008 C:\Windows\System32\drivers\crashdmp.sys - ok
21:49:55.0701 3008 [ 5428227D4730EBDFC842E9FB593F8C8A ] C:\Windows\System32\drivers\Dumpata.sys
21:49:55.0701 3008 C:\Windows\System32\drivers\Dumpata.sys - ok
21:49:55.0701 3008 [ 62A63EF2F3053B461CB327E4D69AAA74 ] C:\Windows\System32\drivers\dumpfve.sys
21:49:55.0701 3008 C:\Windows\System32\drivers\dumpfve.sys - ok
21:49:55.0701 3008 [ 4326D168944123F38DD3B2D9C37A0B12 ] C:\Windows\System32\drivers\msahci.sys
21:49:55.0701 3008 C:\Windows\System32\drivers\msahci.sys - ok
21:49:55.0717 3008 [ 8C3A4F8342F1336C960B5EED3128CE31 ] C:\Windows\System32\drivers\asdrm.sys
21:49:55.0717 3008 C:\Windows\System32\drivers\asdrm.sys - ok
21:49:55.0717 3008 [ 505506526A9D467307B3C393DEDAF858 ] C:\Windows\System32\drivers\beep.sys
21:49:55.0717 3008 C:\Windows\System32\drivers\beep.sys - ok
21:49:55.0717 3008 [ BA6E70AA0E6091BC39DE29477D866A77 ] C:\Windows\System32\drivers\cdrom.sys
21:49:55.0717 3008 C:\Windows\System32\drivers\cdrom.sys - ok
21:49:55.0717 3008 [ F9756A98D69098DCA8945D62858A812C ] C:\Windows\System32\drivers\null.sys
21:49:55.0717 3008 C:\Windows\System32\drivers\null.sys - ok
21:49:55.0732 3008 [ 1E016846895B15A99F9A176A05029075 ] C:\Windows\System32\drivers\RDPCDD.sys
21:49:55.0732 3008 C:\Windows\System32\drivers\RDPCDD.sys - ok
21:49:55.0732 3008 [ 8E38096AD5C8570A6F1570A61E251561 ] C:\Windows\System32\drivers\vga.sys
21:49:55.0732 3008 C:\Windows\System32\drivers\vga.sys - ok
21:49:55.0732 3008 [ 15C126D1B55814B9E5CAB10A9C1F4C67 ] C:\Windows\System32\drivers\videoprt.sys
21:49:55.0732 3008 C:\Windows\System32\drivers\videoprt.sys - ok
21:49:55.0748 3008 [ CB45A417C8EF7BA6BAC67EDCDDED8700 ] C:\Windows\System32\drivers\watchdog.sys
21:49:55.0748 3008 C:\Windows\System32\drivers\watchdog.sys - ok
21:49:55.0748 3008 [ 5A53CA1598DD4156D44196D200C94B8A ] C:\Windows\System32\drivers\RDPENCDD.sys
21:49:55.0748 3008 C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:49:55.0748 3008 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] C:\Windows\System32\drivers\RDPREFMP.sys
21:49:55.0748 3008 C:\Windows\System32\drivers\RDPREFMP.sys - ok
21:49:55.0764 3008 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] C:\Windows\System32\drivers\msfs.sys
21:49:55.0764 3008 C:\Windows\System32\drivers\msfs.sys - ok
21:49:55.0764 3008 [ 1DB262A9F8C087E8153D89BEF3D2235F ] C:\Windows\System32\drivers\npfs.sys
21:49:55.0764 3008 C:\Windows\System32\drivers\npfs.sys - ok
21:49:55.0764 3008 [ DDC040FDB01EF1712A6B13E52AFB104C ] C:\Windows\System32\drivers\afd.sys
21:49:55.0764 3008 C:\Windows\System32\drivers\afd.sys - ok
21:49:55.0779 3008 [ DD52A733BF4CA5AF84562A5E2F963B91 ] C:\Windows\System32\drivers\netbt.sys
21:49:55.0779 3008 C:\Windows\System32\drivers\netbt.sys - ok
21:49:55.0779 3008 [ 52639C994FE3CD975BFE7428B939B320 ] C:\Windows\System32\drivers\tdi.sys
21:49:55.0779 3008 C:\Windows\System32\drivers\tdi.sys - ok
21:49:55.0779 3008 [ CB39E896A2A83702D1737BFD402B3542 ] C:\Windows\System32\drivers\tdx.sys
21:49:55.0779 3008 C:\Windows\System32\drivers\tdx.sys - ok
21:49:55.0795 3008 [ 6270CCAE2A86DE6D146529FE55B3246A ] C:\Windows\System32\drivers\pacer.sys
21:49:55.0795 3008 C:\Windows\System32\drivers\pacer.sys - ok
21:49:55.0795 3008 [ 7090D3436EEB4E7DA3373090A23448F7 ] C:\Windows\System32\drivers\vwififlt.sys
21:49:55.0795 3008 C:\Windows\System32\drivers\vwififlt.sys - ok
21:49:55.0795 3008 [ 8B9A943F3B53861F2BFAF6C186168F79 ] C:\Windows\System32\drivers\wfplwf.sys
21:49:55.0795 3008 C:\Windows\System32\drivers\wfplwf.sys - ok
21:49:55.0810 3008 [ 6DB3276587B853BF886B69528FDB048C ] C:\Windows\System32\drivers\ws2ifsl.sys
21:49:55.0810 3008 C:\Windows\System32\drivers\ws2ifsl.sys - ok
21:49:55.0810 3008 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] C:\Windows\System32\drivers\netbios.sys
21:49:55.0810 3008 C:\Windows\System32\drivers\netbios.sys - ok
21:49:55.0810 3008 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] C:\Windows\System32\drivers\nsiproxy.sys
21:49:55.0810 3008 C:\Windows\System32\drivers\nsiproxy.sys - ok
21:49:55.0810 3008 [ 835D7E81BF517A3B72384BDCC85E1CE6 ] C:\Windows\System32\drivers\rdbss.sys
21:49:55.0810 3008 C:\Windows\System32\drivers\rdbss.sys - ok
21:49:55.0826 3008 [ C36F41EE20E6999DBF4B0425963268A5 ] C:\Windows\System32\drivers\termdd.sys
21:49:55.0826 3008 C:\Windows\System32\drivers\termdd.sys - ok
21:49:55.0826 3008 [ 692A712062146E96D28BA0B7D75DE31B ] C:\Windows\System32\drivers\wanarp.sys
21:49:55.0826 3008 C:\Windows\System32\drivers\wanarp.sys - ok
21:49:55.0826 3008 [ 2287078ED48FCFC477B05B20CF38F36F ] C:\Windows\System32\drivers\blbdrive.sys
21:49:55.0826 3008 C:\Windows\System32\drivers\blbdrive.sys - ok
21:49:55.0842 3008 [ 27C9490BDD0AE48911AB8CF1932591ED ] C:\Windows\System32\drivers\csc.sys
21:49:55.0842 3008 C:\Windows\System32\drivers\csc.sys - ok
21:49:55.0842 3008 [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB ] C:\Windows\System32\drivers\dfsc.sys
21:49:55.0842 3008 C:\Windows\System32\drivers\dfsc.sys - ok
21:49:55.0842 3008 [ 1A050B0274BFB3890703D490F330C0DA ] C:\Windows\System32\drivers\discache.sys
21:49:55.0842 3008 C:\Windows\System32\drivers\discache.sys - ok
21:49:55.0842 3008 [ FC6B9FF600CC585EA38B12589BD4E246 ] C:\Windows\System32\drivers\mssmbios.sys
21:49:55.0842 3008 C:\Windows\System32\drivers\mssmbios.sys - ok
21:49:55.0857 3008 [ F370579987F35BA161CD23419E930F4C ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys
21:49:55.0857 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys - ok
21:49:55.0857 3008 [ 3E461D890A97F9D4C168F5FDA36E1D00 ] C:\Windows\System32\drivers\tunnel.sys
21:49:55.0857 3008 C:\Windows\System32\drivers\tunnel.sys - ok
21:49:55.0857 3008 [ F87212E64DE6DACDD55610B847DC2A60 ] C:\Windows\System32\ntdll.dll
21:49:55.0857 3008 C:\Windows\System32\ntdll.dll - ok
21:49:55.0873 3008 [ 16742790895960690237A5143CEDEC8B ] C:\Windows\System32\smss.exe
21:49:55.0873 3008 C:\Windows\System32\smss.exe - ok
21:49:55.0873 3008 [ DCE0B53570703CCE580D066F89EF58CD ] C:\Windows\System32\drivers\igdkmd32.sys
21:49:55.0873 3008 C:\Windows\System32\drivers\igdkmd32.sys - ok
21:49:55.0873 3008 [ 39806CFEDDCC55E686A49BCCD2972F23 ] C:\Windows\System32\drivers\dxgkrnl.sys
21:49:55.0873 3008 C:\Windows\System32\drivers\dxgkrnl.sys - ok
21:49:55.0873 3008 [ F9BA894F72F78A5B74EECD97394F97E0 ] C:\Windows\System32\drivers\dxgmms1.sys
21:49:55.0873 3008 C:\Windows\System32\drivers\dxgmms1.sys - ok
21:49:55.0888 3008 [ 717A2207FD6F13AD3E664C7D5A43C7BF ] C:\Windows\System32\drivers\hdaudbus.sys
21:49:55.0888 3008 C:\Windows\System32\drivers\hdaudbus.sys - ok
21:49:55.0888 3008 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] C:\Windows\System32\drivers\i8042prt.sys
21:49:55.0888 3008 C:\Windows\System32\drivers\i8042prt.sys - ok
21:49:55.0888 3008 [ 6EF8146358452995A4A9335E44ABB015 ] C:\Windows\System32\drivers\L1C62x86.sys
21:49:55.0888 3008 C:\Windows\System32\drivers\L1C62x86.sys - ok
21:49:55.0904 3008 [ 1C333BFD60F2FED2C7AD5DAF533CB742 ] C:\Windows\System32\drivers\usbehci.sys
21:49:55.0904 3008 C:\Windows\System32\drivers\usbehci.sys - ok
21:49:55.0904 3008 [ F6D1C957C5BF4F274AAD1DA7059916E4 ] C:\Windows\System32\drivers\usbport.sys
21:49:55.0904 3008 C:\Windows\System32\drivers\usbport.sys - ok
21:49:55.0904 3008 [ E3C36AC5AE87EC970AE8EA2A93D59AE1 ] C:\Windows\System32\drivers\Impcd.sys
21:49:55.0904 3008 C:\Windows\System32\drivers\Impcd.sys - ok
21:49:55.0904 3008 [ ADEF52CA1AEAE82B50DF86B56413107E ] C:\Windows\System32\drivers\kbdclass.sys
21:49:55.0904 3008 C:\Windows\System32\drivers\kbdclass.sys - ok
21:49:55.0920 3008 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] C:\Windows\System32\drivers\mouclass.sys
21:49:55.0920 3008 C:\Windows\System32\drivers\mouclass.sys - ok
21:49:55.0920 3008 [ DEA805815E587DAD1DD2C502220B5616 ] C:\Windows\System32\drivers\CmBatt.sys
21:49:55.0920 3008 C:\Windows\System32\drivers\CmBatt.sys - ok
21:49:55.0920 3008 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] C:\Windows\System32\drivers\intelppm.sys
21:49:55.0920 3008 C:\Windows\System32\drivers\intelppm.sys - ok
21:49:55.0935 3008 [ 0217679B8FCA58714C3BF2726D2CA84E ] C:\Windows\System32\drivers\wmiacpi.sys
21:49:55.0935 3008 C:\Windows\System32\drivers\wmiacpi.sys - ok
21:49:55.0935 3008 [ 57EC4AEF73660166074D8F7F31C0D4FD ] C:\Windows\System32\drivers\agilevpn.sys
21:49:55.0935 3008 C:\Windows\System32\drivers\agilevpn.sys - ok
21:49:55.0935 3008 [ F1724BA27E97D627F808FB0BA77A28A6 ] C:\Windows\System32\drivers\CompositeBus.sys
21:49:55.0935 3008 C:\Windows\System32\drivers\CompositeBus.sys - ok
21:49:55.0951 3008 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] C:\Windows\System32\drivers\ndistapi.sys
21:49:55.0951 3008 C:\Windows\System32\drivers\ndistapi.sys - ok
21:49:55.0951 3008 [ D9F91EAFEC2815365CBE6D167E4E332A ] C:\Windows\System32\drivers\rasl2tp.sys
21:49:55.0951 3008 C:\Windows\System32\drivers\rasl2tp.sys - ok
21:49:55.0951 3008 [ 267C415EADCBE53C9CA873DEE39CF3A4 ] C:\Windows\System32\drivers\ndiswan.sys
21:49:55.0951 3008 C:\Windows\System32\drivers\ndiswan.sys - ok
21:49:55.0951 3008 [ 0FE8B15916307A6AC12BFB6A63E45507 ] C:\Windows\System32\drivers\raspppoe.sys
21:49:55.0951 3008 C:\Windows\System32\drivers\raspppoe.sys - ok
21:49:55.0966 3008 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] C:\Windows\System32\drivers\raspptp.sys
21:49:55.0966 3008 C:\Windows\System32\drivers\raspptp.sys - ok
21:49:55.0966 3008 [ 44101F495A83EA6401D886E7FD70096B ] C:\Windows\System32\drivers\rassstp.sys
21:49:55.0966 3008 C:\Windows\System32\drivers\rassstp.sys - ok
21:49:55.0966 3008 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] C:\Windows\System32\drivers\rdpbus.sys
21:49:55.0966 3008 C:\Windows\System32\drivers\rdpbus.sys - ok
21:49:55.0982 3008 [ F44461E66F1B7DD267957FE9BAA63ED0 ] C:\Windows\System32\drivers\ew_jubusenum.sys
21:49:55.0982 3008 C:\Windows\System32\drivers\ew_jubusenum.sys - ok
21:49:55.0982 3008 [ F762EDD3ACCA095F5AF4D719F3B8AE3D ] C:\Windows\System32\drivers\ks.sys
21:49:55.0982 3008 C:\Windows\System32\drivers\ks.sys - ok
21:49:55.0982 3008 [ E58C78A848ADD9610A4DB6D214AF5224 ] C:\Windows\System32\drivers\swenum.sys
21:49:55.0982 3008 C:\Windows\System32\drivers\swenum.sys - ok
21:49:55.0998 3008 [ 049B3A50B3D646BAEEEE9EEC9B0668DC ] C:\Windows\System32\drivers\umbus.sys
21:49:55.0998 3008 C:\Windows\System32\drivers\umbus.sys - ok
21:49:55.0998 3008 [ EE6EF93CCFA94FAE8C6AB298273D8AE2 ] C:\Windows\System32\drivers\usbhub.sys
21:49:55.0998 3008 C:\Windows\System32\drivers\usbhub.sys - ok
21:49:55.0998 3008 [ AF7E7C63DCEF3F8772726F86039D6EB4 ] C:\Windows\System32\drivers\ndproxy.sys
21:49:55.0998 3008 C:\Windows\System32\drivers\ndproxy.sys - ok
21:49:56.0013 3008 [ 27F9288AF019E6DACA281EDE51FF5928 ] C:\Windows\System32\drivers\drmk.sys
21:49:56.0013 3008 C:\Windows\System32\drivers\drmk.sys - ok
21:49:56.0013 3008 [ D72708C9F49500C13D7D067E169B7715 ] C:\Windows\System32\drivers\portcls.sys
21:49:56.0013 3008 C:\Windows\System32\drivers\portcls.sys - ok
21:49:56.0013 3008 [ DBA9CB792CAF474C2DE11D98112E5FED ] C:\Windows\System32\drivers\RTKVHDA.sys
21:49:56.0013 3008 C:\Windows\System32\drivers\RTKVHDA.sys - ok
21:49:56.0013 3008 [ 3530CAD25DEBA7DC7DE8BB51632CBC5F ] C:\Windows\System32\drivers\HdAudio.sys
21:49:56.0013 3008 C:\Windows\System32\drivers\HdAudio.sys - ok
21:49:56.0029 3008 [ 18E71EA0E063037A5C3C8272A5262B7C ] C:\Windows\System32\drivers\usbd.sys
21:49:56.0029 3008 C:\Windows\System32\drivers\usbd.sys - ok
21:49:56.0029 3008 [ 8455C4ED038EFD09E99327F9D2D48FFA ] C:\Windows\System32\drivers\usbccgp.sys
21:49:56.0029 3008 C:\Windows\System32\drivers\usbccgp.sys - ok
21:49:56.0029 3008 [ 08E0B15F88CBFFEE0BB18D321C42E1B4 ] C:\Windows\System32\drivers\rtl8192cu.sys
21:49:56.0029 3008 C:\Windows\System32\drivers\rtl8192cu.sys - ok
21:49:56.0044 3008 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] C:\Windows\System32\drivers\vwifibus.sys
21:49:56.0044 3008 C:\Windows\System32\drivers\vwifibus.sys - ok
21:49:56.0044 3008 [ F642A7E4BF78CFA359CCA0A3557C28D7 ] C:\Windows\System32\drivers\usbvideo.sys
21:49:56.0044 3008 C:\Windows\System32\drivers\usbvideo.sys - ok
21:49:56.0044 3008 [ 6C26122F1931D4D7810240F32DDCE890 ] C:\Windows\System32\drivers\hidparse.sys
21:49:56.0044 3008 C:\Windows\System32\drivers\hidparse.sys - ok
21:49:56.0044 3008 [ B682E1CC0FDC7AC04B71D1FA9A07EF21 ] C:\Windows\System32\drivers\hidclass.sys
21:49:56.0044 3008 C:\Windows\System32\drivers\hidclass.sys - ok
21:49:56.0060 3008 [ 25072FB35AC90B25F9E4E3BACF774102 ] C:\Windows\System32\drivers\hidusb.sys
21:49:56.0060 3008 C:\Windows\System32\drivers\hidusb.sys - ok
21:49:56.0060 3008 [ 3D9F0EBF350EDCFD6498057301455964 ] C:\Windows\System32\drivers\kbdhid.sys
21:49:56.0060 3008 C:\Windows\System32\drivers\kbdhid.sys - ok
21:49:56.0060 3008 [ D8889D56E0D27E57ED4591837FE71D27 ] C:\Windows\System32\drivers\USBSTOR.SYS
21:49:56.0060 3008 C:\Windows\System32\drivers\USBSTOR.SYS - ok
21:49:56.0076 3008 [ 41E4C8EBA464E7D6A5BA5E8827732AEB ] C:\Windows\System32\autochk.exe
21:49:56.0076 3008 C:\Windows\System32\autochk.exe - ok
21:49:56.0076 3008 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] C:\Windows\System32\drivers\mouhid.sys
21:49:56.0076 3008 C:\Windows\System32\drivers\mouhid.sys - ok
21:49:56.0076 3008 [ DF39C7C61225BCE4B9C152BBAE150E16 ] C:\Windows\System32\K7TSDbg.exe
21:49:56.0076 3008 C:\Windows\System32\K7TSDbg.exe - ok
21:49:56.0076 3008 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A ] C:\Windows\System32\advapi32.dll
21:49:56.0076 3008 C:\Windows\System32\advapi32.dll - ok
21:49:56.0091 3008 [ 070C5B9D3006602A07757179D9B56F5D ] C:\Windows\System32\difxapi.dll
21:49:56.0091 3008 C:\Windows\System32\difxapi.dll - ok
21:49:56.0091 3008 [ 225F6F663B94ACAF4307055FBB42E55F ] C:\Windows\System32\gdi32.dll
21:49:56.0091 3008 C:\Windows\System32\gdi32.dll - ok
21:49:56.0091 3008 [ A223CF703E28CBD7E9E7982141FA403C ] C:\Windows\System32\comdlg32.dll
21:49:56.0091 3008 C:\Windows\System32\comdlg32.dll - ok
21:49:56.0091 3008 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\System32\sechost.dll
21:49:56.0091 3008 C:\Windows\System32\sechost.dll - ok
21:49:56.0107 3008 [ DAAE8A9B8C0ACC7F858454132553C30D ] C:\Windows\System32\ws2_32.dll
21:49:56.0107 3008 C:\Windows\System32\ws2_32.dll - ok
21:49:56.0107 3008 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\System32\psapi.dll
21:49:56.0107 3008 C:\Windows\System32\psapi.dll - ok
21:49:56.0107 3008 [ 518C6116079414E7074E726925D07A41 ] C:\Windows\System32\shell32.dll
21:49:56.0107 3008 C:\Windows\System32\shell32.dll - ok
21:49:56.0122 3008 [ 0D874F3BC751CC2198AF2E6783FB8B35 ] C:\Windows\System32\wininet.dll
21:49:56.0122 3008 C:\Windows\System32\wininet.dll - ok
21:49:56.0122 3008 [ 41323AB614A2B66AD77B1121D24AC895 ] C:\Windows\System32\setupapi.dll
21:49:56.0122 3008 C:\Windows\System32\setupapi.dll - ok
21:49:56.0122 3008 [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE ] C:\Windows\System32\lpk.dll
21:49:56.0122 3008 C:\Windows\System32\lpk.dll - ok
21:49:56.0122 3008 [ 4ACB903AD1693858A918907358CBD9E4 ] C:\Windows\System32\ole32.dll
21:49:56.0122 3008 C:\Windows\System32\ole32.dll - ok
21:49:56.0138 3008 [ F037DB14CF6165C62F4A64D12A25B07C ] C:\Windows\System32\shlwapi.dll
21:49:56.0138 3008 C:\Windows\System32\shlwapi.dll - ok
21:49:56.0138 3008 [ 4605F7EE9805F7E1C98D6C959DD2949C ] C:\Windows\System32\kernel32.dll
21:49:56.0138 3008 C:\Windows\System32\kernel32.dll - ok
21:49:56.0138 3008 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\System32\nsi.dll
21:49:56.0138 3008 C:\Windows\System32\nsi.dll - ok
21:49:56.0154 3008 [ E46D48A7FE961401F1CBF85531CDF05D ] C:\Windows\System32\msvcrt.dll
21:49:56.0154 3008 C:\Windows\System32\msvcrt.dll - ok
21:49:56.0154 3008 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6 ] C:\Windows\System32\usp10.dll
21:49:56.0154 3008 C:\Windows\System32\usp10.dll - ok
21:49:56.0154 3008 [ 5DF8132ADF721329234403189FC94E16 ] C:\Windows\System32\imm32.dll
21:49:56.0154 3008 C:\Windows\System32\imm32.dll - ok
21:49:56.0169 3008 [ FADBB267FE9846233ED486DE6EEAAEB9 ] C:\Windows\System32\oleaut32.dll
21:49:56.0169 3008 C:\Windows\System32\oleaut32.dll - ok
21:49:56.0169 3008 [ BFA70A99AD1434263F2DFBBA103BDEF8 ] C:\Windows\System32\Wldap32.dll
21:49:56.0169 3008 C:\Windows\System32\Wldap32.dll - ok
21:49:56.0169 3008 [ 13D1F490AF6C7649F51BA29F9CCBB778 ] C:\Windows\System32\iertutil.dll
21:49:56.0169 3008 C:\Windows\System32\iertutil.dll - ok
21:49:56.0185 3008 [ 61DA1DD85F7A9A8F8DEA8771931FAAF6 ] C:\Windows\System32\imagehlp.dll
21:49:56.0185 3008 C:\Windows\System32\imagehlp.dll - ok
21:49:56.0185 3008 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\System32\normaliz.dll
21:49:56.0185 3008 C:\Windows\System32\normaliz.dll - ok
21:49:56.0185 3008 [ 34B7E222E81FAFA885F0C5F2CFA56861 ] C:\Windows\System32\user32.dll
21:49:56.0185 3008 C:\Windows\System32\user32.dll - ok
21:49:56.0200 3008 [ FF5688D309347F2720911D8796912834 ] C:\Windows\System32\clbcatq.dll
21:49:56.0200 3008 C:\Windows\System32\clbcatq.dll - ok
21:49:56.0200 3008 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\System32\msctf.dll
21:49:56.0200 3008 C:\Windows\System32\msctf.dll - ok
21:49:56.0200 3008 [ 4AF9FD44342A024B867E1950EE46FCB8 ] C:\Windows\System32\urlmon.dll
21:49:56.0200 3008 C:\Windows\System32\urlmon.dll - ok
21:49:56.0216 3008 [ 416D1DC8224A64B8C59DF79096EE6D1D ] C:\Windows\System32\rpcrt4.dll
21:49:56.0216 3008 C:\Windows\System32\rpcrt4.dll - ok
21:49:56.0216 3008 [ 15B94E4AC75C9295275BDC9A1D7054C3 ] C:\Windows\System32\cfgmgr32.dll
21:49:56.0216 3008 C:\Windows\System32\cfgmgr32.dll - ok
21:49:56.0216 3008 [ E6B5DE86ABF68D7D67E451C29287B5C5 ] C:\Windows\System32\crypt32.dll
21:49:56.0216 3008 C:\Windows\System32\crypt32.dll - ok
21:49:56.0232 3008 [ CC4ED8BEA78B0DCA6F217E014C3291A7 ] C:\Windows\System32\devobj.dll
21:49:56.0232 3008 C:\Windows\System32\devobj.dll - ok
21:49:56.0232 3008 [ 27CBC636ABCE09CDB5227A872BE7A79C ] C:\Windows\System32\wintrust.dll
21:49:56.0232 3008 C:\Windows\System32\wintrust.dll - ok
21:49:56.0232 3008 [ B62AA1BB1F63839051441D2C6DD7B775 ] C:\Windows\System32\comctl32.dll
21:49:56.0232 3008 C:\Windows\System32\comctl32.dll - ok
21:49:56.0247 3008 [ B03C89367C03C19A742482DC78904DD0 ] C:\Windows\System32\KernelBase.dll
21:49:56.0247 3008 C:\Windows\System32\KernelBase.dll - ok
21:49:56.0247 3008 [ F5777C29E38E4BF12C6F93A0B2F1B2D7 ] C:\Windows\System32\msasn1.dll
21:49:56.0247 3008 C:\Windows\System32\msasn1.dll - ok
21:49:56.0247 3008 [ 5FCD3320AAE71506B43F9E12E4E72172 ] C:\Windows\System32\drivers\dxapi.sys
21:49:56.0247 3008 C:\Windows\System32\drivers\dxapi.sys - ok
21:49:56.0263 3008 [ 34999766FBCAB11BA5C4D26CE0378903 ] C:\Windows\System32\win32k.sys
21:49:56.0263 3008 C:\Windows\System32\win32k.sys - ok
21:49:56.0263 3008 [ 10DE24CCCD418C31107813682EB73542 ] C:\Windows\System32\csrsrv.dll
21:49:56.0263 3008 C:\Windows\System32\csrsrv.dll - ok
21:49:56.0278 3008 [ 342271F6142E7C70805B8A81E1BA5F5C ] C:\Windows\System32\csrss.exe
21:49:56.0278 3008 C:\Windows\System32\csrss.exe - ok
21:49:56.0278 3008 [ 9A595DF601070DA78C40481120DD2C06 ] C:\Windows\System32\basesrv.dll
21:49:56.0278 3008 C:\Windows\System32\basesrv.dll - ok
21:49:56.0278 3008 [ 827E4F75901CA3F990B1487D3301841E ] C:\Windows\System32\winsrv.dll
21:49:56.0278 3008 C:\Windows\System32\winsrv.dll - ok
21:49:56.0294 3008 [ 79D10964DE86B292320E9DFE02282A23 ] C:\Windows\System32\drivers\monitor.sys
21:49:56.0294 3008 C:\Windows\System32\drivers\monitor.sys - ok
21:49:56.0294 3008 [ 7C76B61A5E1EF5D1FA554CF134100F18 ] C:\Windows\System32\tsddd.dll
21:49:56.0294 3008 C:\Windows\System32\tsddd.dll - ok
21:49:56.0294 3008 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\System32\profapi.dll
21:49:56.0294 3008 C:\Windows\System32\profapi.dll - ok
21:49:56.0310 3008 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\System32\sxssrv.dll
21:49:56.0310 3008 C:\Windows\System32\sxssrv.dll - ok
21:49:56.0310 3008 [ B5C5DCAD3899512020D135600129D665 ] C:\Windows\System32\wininit.exe
21:49:56.0310 3008 C:\Windows\System32\wininit.exe - ok
21:49:56.0310 3008 [ 56FEFE9BB63CC6386CA1B8E49E5C5B7B ] C:\Windows\System32\cdd.dll
21:49:56.0310 3008 C:\Windows\System32\cdd.dll - ok
21:49:56.0325 3008 [ B4A73F01055635AE9E65F85712663D3B ] C:\Windows\System32\KBDUS.DLL
21:49:56.0325 3008 C:\Windows\System32\KBDUS.DLL - ok
21:49:56.0325 3008 [ 6C0BD9D59C7E97DEE2FB3407D17BF697 ] C:\Windows\System32\RpcRtRemote.dll
21:49:56.0325 3008 C:\Windows\System32\RpcRtRemote.dll - ok
21:49:56.0325 3008 [ ACCBA604D34842844133A731F8045B32 ] C:\Windows\System32\sxs.dll
21:49:56.0325 3008 C:\Windows\System32\sxs.dll - ok
21:49:56.0341 3008 [ 633C2C060CF857099F6C4F8D75C952B1 ] C:\Windows\System32\WlS0WndH.dll
21:49:56.0341 3008 C:\Windows\System32\WlS0WndH.dll - ok
21:49:56.0341 3008 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\System32\cryptbase.dll
21:49:56.0341 3008 C:\Windows\System32\cryptbase.dll - ok
21:49:56.0341 3008 [ C02E3CE20E7776C922B5C8938350B5F1 ] C:\Windows\System32\apphelp.dll
21:49:56.0341 3008 C:\Windows\System32\apphelp.dll - ok
21:49:56.0356 3008 [ 4BC5B6D0B7BA1B92C9610A7EB1BAD8AB ] C:\Windows\System32\lsasrv.dll
21:49:56.0356 3008 C:\Windows\System32\lsasrv.dll - ok
21:49:56.0356 3008 [ F42309C4191C506B71DB5D1126D26318 ] C:\Windows\System32\lsass.exe
21:49:56.0356 3008 C:\Windows\System32\lsass.exe - ok
21:49:56.0356 3008 [ 398DC10274C0CB861338CFC56E727C9F ] C:\Windows\System32\lsm.exe
21:49:56.0356 3008 C:\Windows\System32\lsm.exe - ok
21:49:56.0372 3008 [ 3369D021265E369D57317D61FA86DD79 ] C:\Windows\System32\scext.dll
21:49:56.0372 3008 C:\Windows\System32\scext.dll - ok
21:49:56.0372 3008 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\System32\services.exe
21:49:56.0372 3008 C:\Windows\System32\services.exe - ok
21:49:56.0372 3008 [ 3450BB5465D61E8876FD3006F772DEA9 ] C:\Windows\System32\sspicli.dll
21:49:56.0372 3008 C:\Windows\System32\sspicli.dll - ok
21:49:56.0388 3008 [ 54C5EB1FD11027FB23BC4F79146CE159 ] C:\Windows\System32\sspisrv.dll
21:49:56.0388 3008 C:\Windows\System32\sspisrv.dll - ok
21:49:56.0388 3008 [ BA51FFE170C5B3AE8EC4F5BD2581A29E ] C:\Windows\System32\sysntfy.dll
21:49:56.0388 3008 C:\Windows\System32\sysntfy.dll - ok
21:49:56.0388 3008 [ D412B1B72C5AB020218E9A047D90CA05 ] C:\Windows\System32\wmsgapi.dll
21:49:56.0388 3008 C:\Windows\System32\wmsgapi.dll - ok
21:49:56.0403 3008 [ 1C9CDBDF895A556E66AEBFD93A36B536 ] C:\Windows\System32\scesrv.dll
21:49:56.0403 3008 C:\Windows\System32\scesrv.dll - ok
21:49:56.0403 3008 [ 033CA30E335588E243C42D715BF48DDF ] C:\Windows\System32\secur32.dll
21:49:56.0403 3008 C:\Windows\System32\secur32.dll - ok
21:49:56.0403 3008 [ 89D840773C9C4358A5031DCC860449EC ] C:\Windows\System32\srvcli.dll
21:49:56.0403 3008 C:\Windows\System32\srvcli.dll - ok
21:49:56.0419 3008 [ 4BEF53964DC519550EE030253FC1E25E ] C:\Windows\System32\samsrv.dll
21:49:56.0419 3008 C:\Windows\System32\samsrv.dll - ok
21:49:56.0419 3008 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\System32\cryptdll.dll
21:49:56.0419 3008 C:\Windows\System32\cryptdll.dll - ok
21:49:56.0419 3008 [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\System32\wevtapi.dll
21:49:56.0419 3008 C:\Windows\System32\wevtapi.dll - ok
21:49:56.0434 3008 [ FB4EB9352B7D698E6B3C2AA2ED724DAD ] C:\Windows\System32\authz.dll
21:49:56.0434 3008 C:\Windows\System32\authz.dll - ok
21:49:56.0434 3008 [ FC7650224790CAE75A5E9231961FDEC5 ] C:\Windows\System32\bcrypt.dll
21:49:56.0434 3008 C:\Windows\System32\bcrypt.dll - ok
21:49:56.0434 3008 [ 50BA656134F78AF64E4DD3C8B6FEFD7E ] C:\Windows\System32\cngaudit.dll
21:49:56.0434 3008 C:\Windows\System32\cngaudit.dll - ok
21:49:56.0450 3008 [ C90878913DF3DC504790282043DB5F4C ] C:\Windows\System32\msprivs.dll
21:49:56.0450 3008 C:\Windows\System32\msprivs.dll - ok
21:49:56.0450 3008 [ C20FF1A17726C357461A7AC5B3BFC3AD ] C:\Windows\System32\ncrypt.dll
21:49:56.0450 3008 C:\Windows\System32\ncrypt.dll - ok
21:49:56.0450 3008 [ C1AE600C554A0EBC6CD211541FA6815F ] C:\Windows\System32\netjoin.dll
21:49:56.0450 3008 C:\Windows\System32\netjoin.dll - ok
21:49:56.0466 3008 [ 718B8DD9C887576E078EC2F84315F864 ] C:\Windows\System32\kerberos.dll
21:49:56.0466 3008 C:\Windows\System32\kerberos.dll - ok
21:49:56.0466 3008 [ 6DCFAEC6D1334AA6CDF8961DB4633CBF ] C:\Windows\System32\negoexts.dll
21:49:56.0466 3008 C:\Windows\System32\negoexts.dll - ok
21:49:56.0466 3008 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\System32\cryptsp.dll
21:49:56.0466 3008 C:\Windows\System32\cryptsp.dll - ok
21:49:56.0481 3008 [ F40388A19F3BE3CEC25656CE07392877 ] C:\Windows\System32\msv1_0.dll
21:49:56.0481 3008 C:\Windows\System32\msv1_0.dll - ok
21:49:56.0481 3008 [ 11A41F17527ED75D6B758FDD7F4FD00D ] C:\Windows\System32\mswsock.dll
21:49:56.0481 3008 C:\Windows\System32\mswsock.dll - ok
21:49:56.0481 3008 [ EAA75D9000B71F10EEC04D2AE6C60E81 ] C:\Windows\System32\netlogon.dll
21:49:56.0481 3008 C:\Windows\System32\netlogon.dll - ok
21:49:56.0497 3008 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\System32\wship6.dll
21:49:56.0497 3008 C:\Windows\System32\wship6.dll - ok
21:49:56.0497 3008 [ 6D5A49D6479EB753C7879F73A4C35E0F ] C:\Windows\System32\dnsapi.dll
21:49:56.0497 3008 C:\Windows\System32\dnsapi.dll - ok
21:49:56.0497 3008 [ D8ECA7A87AAA3AE308B5277411666622 ] C:\Windows\System32\logoncli.dll
21:49:56.0497 3008 C:\Windows\System32\logoncli.dll - ok
21:49:56.0512 3008 [ 0A53FD4EBBD92002CCC362A9B8087885 ] C:\Windows\System32\schannel.dll
21:49:56.0512 3008 C:\Windows\System32\schannel.dll - ok
21:49:56.0512 3008 [ 0450CF487ECD8A67B56F59F9A96D024D ] C:\Windows\System32\wdigest.dll
21:49:56.0512 3008 C:\Windows\System32\wdigest.dll - ok
21:49:56.0528 3008 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\System32\rsaenh.dll
21:49:56.0528 3008 C:\Windows\System32\rsaenh.dll - ok
21:49:56.0528 3008 [ A739793F1A4F04B66E2444E90AE9E694 ] C:\Windows\System32\TSpkg.dll
21:49:56.0528 3008 C:\Windows\System32\TSpkg.dll - ok
21:49:56.0528 3008 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\System32\bcryptprimitives.dll
21:49:56.0528 3008 C:\Windows\System32\bcryptprimitives.dll - ok
21:49:56.0544 3008 [ BF591B5C2CC38314518467E883AE37C5 ] C:\Windows\System32\credssp.dll
21:49:56.0544 3008 C:\Windows\System32\credssp.dll - ok
21:49:56.0544 3008 [ 91F434FF6606ED9BDC6A05D651B69553 ] C:\Windows\System32\efslsaext.dll
21:49:56.0544 3008 C:\Windows\System32\efslsaext.dll - ok
21:49:56.0544 3008 [ 37CC990D4E2CDFAE12AC47F6B620FC13 ] C:\Windows\System32\pku2u.dll
21:49:56.0544 3008 C:\Windows\System32\pku2u.dll - ok
21:49:56.0559 3008 [ 26073302DAEA83CC5B944C546D6B47D2 ] C:\Windows\System32\scecli.dll
21:49:56.0559 3008 C:\Windows\System32\scecli.dll - ok
21:49:56.0559 3008 [ 7222995615BF93B628DCEA4BD6CCACF7 ] C:\Windows\System32\ubpm.dll
21:49:56.0559 3008 C:\Windows\System32\ubpm.dll - ok
21:49:56.0559 3008 [ AE5FF948400A51B040F999BF04290373 ] C:\Windows\System32\winsta.dll
21:49:56.0559 3008 C:\Windows\System32\winsta.dll - ok
21:49:56.0575 3008 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\System32\svchost.exe
21:49:56.0575 3008 C:\Windows\System32\svchost.exe - ok
21:49:56.0575 3008 [ 2CC2008F1296968FBA162ED9F9AFE328 ] C:\Windows\System32\umpnpmgr.dll
21:49:56.0575 3008 C:\Windows\System32\umpnpmgr.dll - ok
21:49:56.0575 3008 [ FD07F21E0A19C27ED4E1EEC2B07452B3 ] C:\Windows\System32\devrtl.dll
21:49:56.0575 3008 C:\Windows\System32\devrtl.dll - ok
21:49:56.0590 3008 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\System32\gpapi.dll
21:49:56.0590 3008 C:\Windows\System32\gpapi.dll - ok
21:49:56.0590 3008 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\System32\SPInf.dll
21:49:56.0590 3008 C:\Windows\System32\SPInf.dll - ok
21:49:56.0590 3008 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E ] C:\Windows\System32\userenv.dll
21:49:56.0590 3008 C:\Windows\System32\userenv.dll - ok
21:49:56.0590 3008 [ 5893EBDCE371174AC89ECD7731DD6D77 ] C:\Windows\System32\pcwum.dll
21:49:56.0590 3008 C:\Windows\System32\pcwum.dll - ok
21:49:56.0606 3008 [ DBFF83F709A91049621C1D35DD45C92C ] C:\Windows\System32\umpo.dll
21:49:56.0606 3008 C:\Windows\System32\umpo.dll - ok
21:49:56.0606 3008 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] C:\Windows\System32\drivers\luafv.sys
21:49:56.0606 3008 C:\Windows\System32\drivers\luafv.sys - ok
21:49:56.0606 3008 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\System32\powrprof.dll
21:49:56.0606 3008 C:\Windows\System32\powrprof.dll - ok
21:49:56.0622 3008 [ 500D089CE760D83DA2B6CBA681AA9949 ] C:\Windows\System32\drivers\mbam.sys
21:49:56.0622 3008 C:\Windows\System32\drivers\mbam.sys - ok
21:49:56.0622 3008 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] C:\Windows\System32\drivers\WUDFPf.sys
21:49:56.0622 3008 C:\Windows\System32\drivers\WUDFPf.sys - ok
21:49:56.0622 3008 [ 8EC6A4AB12B8F3759E21F8E3A388F2CF ] C:\Windows\System32\winlogon.exe
21:49:56.0622 3008 C:\Windows\System32\winlogon.exe - ok
21:49:56.0637 3008 [ B82CD39E336973359D7C9BF911E8E84F ] C:\Windows\System32\rpcss.dll
21:49:56.0637 3008 C:\Windows\System32\rpcss.dll - ok
21:49:56.0637 3008 [ 78D072F35BC45D9E4E1B61895C152234 ] C:\Windows\System32\RpcEpMap.dll
21:49:56.0637 3008 C:\Windows\System32\RpcEpMap.dll - ok
21:49:56.0637 3008 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\System32\wshqos.dll
21:49:56.0637 3008 C:\Windows\System32\wshqos.dll - ok
21:49:56.0653 3008 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\System32\WSHTCPIP.DLL
21:49:56.0653 3008 C:\Windows\System32\WSHTCPIP.DLL - ok
21:49:56.0653 3008 [ 3F50200237961034FACE602373838980 ] C:\Windows\System32\FirewallAPI.dll
21:49:56.0653 3008 C:\Windows\System32\FirewallAPI.dll - ok
21:49:56.0653 3008 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\System32\version.dll
21:49:56.0653 3008 C:\Windows\System32\version.dll - ok
21:49:56.0668 3008 [ 2873DFE622F4A3929D93F7BC85ADE13E ] C:\Windows\System32\wevtsvc.dll
21:49:56.0668 3008 C:\Windows\System32\wevtsvc.dll - ok
21:49:56.0668 3008 [ 510C873BFA135AA829F4180352772734 ] C:\Windows\System32\audiosrv.dll
21:49:56.0668 3008 C:\Windows\System32\audiosrv.dll - ok
21:49:56.0668 3008 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\System32\avrt.dll
21:49:56.0668 3008 C:\Windows\System32\avrt.dll - ok
21:49:56.0684 3008 [ 146B6F43A673379A3C670E86D89BE5EA ] C:\Windows\System32\mmcss.dll
21:49:56.0684 3008 C:\Windows\System32\mmcss.dll - ok
21:49:56.0684 3008 [ 1B97EBF7F60798814C4E5C8FDC79EAD2 ] C:\Windows\System32\LogonUI.exe
21:49:56.0684 3008 C:\Windows\System32\LogonUI.exe - ok
21:49:56.0684 3008 [ FABFC817547EABB19B74849CEF410622 ] C:\Windows\System32\authui.dll
21:49:56.0684 3008 C:\Windows\System32\authui.dll - ok
21:49:56.0700 3008 [ 8C680C0E6B3D6711B2B88AC82FE1804E ] C:\Windows\System32\MMDevAPI.dll
21:49:56.0700 3008 C:\Windows\System32\MMDevAPI.dll - ok
21:49:56.0700 3008 [ 26EAEE08CAF82AA7F03C5020F51DA541 ] C:\Windows\System32\propsys.dll
21:49:56.0700 3008 C:\Windows\System32\propsys.dll - ok
21:49:56.0700 3008 [ E8132FB3BAC7C0CDBD581485B8BA947F ] C:\Windows\System32\cryptui.dll
21:49:56.0700 3008 C:\Windows\System32\cryptui.dll - ok
21:49:56.0715 3008 [ B45DA4D9075AF4297DF675CCD11D4997 ] C:\Windows\System32\audiodg.exe
21:49:56.0715 3008 C:\Windows\System32\audiodg.exe - ok
21:49:56.0715 3008 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\System32\ntmarta.dll
21:49:56.0715 3008 C:\Windows\System32\ntmarta.dll - ok
21:49:56.0715 3008 [ 56FB5F222EA30D3D3FC459879772CB73 ] C:\Windows\System32\cscsvc.dll
21:49:56.0715 3008 C:\Windows\System32\cscsvc.dll - ok
21:49:56.0731 3008 [ 8BA3C04702BF8F927AB36AE8313CA4EE ] C:\Windows\System32\gpsvc.dll
21:49:56.0731 3008 C:\Windows\System32\gpsvc.dll - ok
21:49:56.0731 3008 [ 0FA436A553408CBEBA070E3182658DE3 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
21:49:56.0731 3008 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll - ok
21:49:56.0731 3008 [ 045DB4EAB4FBD23210E85ECC3F464A2E ] C:\Windows\System32\nlaapi.dll
21:49:56.0731 3008 C:\Windows\System32\nlaapi.dll - ok
21:49:56.0746 3008 [ 630CF26F0227498B7D5A92B12548960F ] C:\Windows\System32\profsvc.dll
21:49:56.0746 3008 C:\Windows\System32\profsvc.dll - ok
21:49:56.0746 3008 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\System32\atl.dll
21:49:56.0746 3008 C:\Windows\System32\atl.dll - ok
21:49:56.0746 3008 [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\System32\dsrole.dll
21:49:56.0746 3008 C:\Windows\System32\dsrole.dll - ok
21:49:56.0762 3008 [ 772F44012DBE49DE894976AE2259A659 ] C:\Windows\System32\PeerDist.dll
21:49:56.0762 3008 C:\Windows\System32\PeerDist.dll - ok
21:49:56.0762 3008 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\System32\slc.dll
21:49:56.0762 3008 C:\Windows\System32\slc.dll - ok
21:49:56.0762 3008 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] C:\Windows\System32\themeservice.dll
21:49:56.0762 3008 C:\Windows\System32\themeservice.dll - ok
21:49:56.0762 3008 [ F6916EFC29D9953D5D0DF06882AE8E16 ] C:\Windows\System32\es.dll
21:49:56.0762 3008 C:\Windows\System32\es.dll - ok
21:49:56.0778 3008 [ 0089563F324FA784DA849D6A636141E0 ] C:\Windows\System32\mstask.dll
21:49:56.0778 3008 C:\Windows\System32\mstask.dll - ok
21:49:56.0778 3008 [ 9F758BF982DE530C8C77C9F03334DEEB ] C:\Windows\System32\taskschd.dll
21:49:56.0778 3008 C:\Windows\System32\taskschd.dll - ok
21:49:56.0778 3008 [ DCB7FCDCC97F87360F75D77425B81737 ] C:\Windows\System32\Sens.dll
21:49:56.0778 3008 C:\Windows\System32\Sens.dll - ok
21:49:56.0793 3008 [ 7520EC808E0C35E0EE6F841294316653 ] C:\Windows\System32\drivers\fltMgr.sys
21:49:56.0793 3008 C:\Windows\System32\drivers\fltMgr.sys - ok
21:49:56.0793 3008 [ D93A937A2A9D2CBC06B3A615A197011F ] C:\Windows\System32\PSHED.DLL
21:49:56.0793 3008 C:\Windows\System32\PSHED.DLL - ok
21:49:56.0793 3008 [ AC8C80DC4F1A6E60C9A762C1799F0B39 ] C:\Windows\System32\adtschema.dll
21:49:56.0793 3008 C:\Windows\System32\adtschema.dll - ok
21:49:56.0809 3008 [ 808D8A8B2A3074002852BC856D419576 ] C:\Windows\System32\comres.dll
21:49:56.0809 3008 C:\Windows\System32\comres.dll - ok
21:49:56.0809 3008 [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
21:49:56.0809 3008 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
21:49:56.0824 3008 [ 8B0B4C5927A333A05513791758350DC4 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
21:49:56.0824 3008 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
21:49:56.0824 3008 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\System32\samlib.dll
21:49:56.0824 3008 C:\Windows\System32\samlib.dll - ok
21:49:56.0824 3008 [ D6415224AD96840153E283A0268DE384 ] C:\Windows\System32\shacct.dll
21:49:56.0824 3008 C:\Windows\System32\shacct.dll - ok
21:49:56.0840 3008 [ 081E6E1C91AEC36758902A9F727CD23C ] C:\Windows\System32\uxsms.dll
21:49:56.0840 3008 C:\Windows\System32\uxsms.dll - ok
21:49:56.0840 3008 [ 63BFDF555DA2075A77D677829C3CCCD0 ] C:\Windows\System32\uxtheme.dll
21:49:56.0840 3008 C:\Windows\System32\uxtheme.dll - ok
21:49:56.0840 3008 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9 ] C:\Windows\System32\wtsapi32.dll
21:49:56.0840 3008 C:\Windows\System32\wtsapi32.dll - ok
21:49:56.0840 3008 [ 688975CEA9ADD749E339168A2841205A ] C:\Windows\System32\WUDFPlatform.dll
21:49:56.0840 3008 C:\Windows\System32\WUDFPlatform.dll - ok
21:49:56.0856 3008 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] C:\Windows\System32\WUDFSvc.dll
21:49:56.0856 3008 C:\Windows\System32\WUDFSvc.dll - ok
21:49:56.0856 3008 [ EDB57065790B62EF83BE117AD3EDFDE2 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll
21:49:56.0856 3008 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\GdiPlus.dll - ok
21:49:56.0871 3008 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\System32\dui70.dll
21:49:56.0871 3008 C:\Windows\System32\dui70.dll - ok
21:49:56.0871 3008 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\System32\duser.dll
21:49:56.0871 3008 C:\Windows\System32\duser.dll - ok
21:49:56.0871 3008 [ 6B18F23108E6FA70B9F62B4D89668ED8 ] C:\Windows\System32\SndVolSSO.dll
21:49:56.0871 3008 C:\Windows\System32\SndVolSSO.dll - ok
21:49:56.0887 3008 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] C:\Windows\System32\drivers\lltdio.sys
21:49:56.0887 3008 C:\Windows\System32\drivers\lltdio.sys - ok
21:49:56.0887 3008 [ B30AE7F2B6D7E343B0DF32E6C08FCE75 ] C:\Windows\System32\drivers\ndisuio.sys
21:49:56.0887 3008 C:\Windows\System32\drivers\ndisuio.sys - ok
21:49:56.0887 3008 [ 26384429FCD85D83746F63E798AB1480 ] C:\Windows\System32\drivers\nwifi.sys
21:49:56.0887 3008 C:\Windows\System32\drivers\nwifi.sys - ok
21:49:56.0902 3008 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\System32\dwmapi.dll
21:49:56.0902 3008 C:\Windows\System32\dwmapi.dll - ok
21:49:56.0902 3008 [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\System32\hid.dll
21:49:56.0902 3008 C:\Windows\System32\hid.dll - ok
21:49:56.0902 3008 [ 26A634B2E0FD87F23541AD13A503CA72 ] C:\Windows\System32\winmm.dll
21:49:56.0902 3008 C:\Windows\System32\winmm.dll - ok
21:49:56.0902 3008 [ 7BF5EA753D4CC056B9462A02AC51B160 ] C:\Windows\System32\xmllite.dll
21:49:56.0902 3008 C:\Windows\System32\xmllite.dll - ok
21:49:56.0918 3008 [ C56495FBD770712367CAD35E5DE72DA6 ] C:\Windows\System32\dhcpcore.dll
21:49:56.0918 3008 C:\Windows\System32\dhcpcore.dll - ok
21:49:56.0918 3008 [ 032B0D36AD92B582D869879F5AF5B928 ] C:\Windows\System32\drivers\rspndr.sys
21:49:56.0918 3008 C:\Windows\System32\drivers\rspndr.sys - ok
21:49:56.0918 3008 [ 6095266CAAF5E75F394CFD4844CC4C25 ] C:\Windows\System32\IPHLPAPI.DLL
21:49:56.0918 3008 C:\Windows\System32\IPHLPAPI.DLL - ok
21:49:56.0934 3008 [ 55CA01BA19D0006C8F2639B6C045E08B ] C:\Windows\System32\lmhsvc.dll
21:49:56.0934 3008 C:\Windows\System32\lmhsvc.dll - ok
21:49:56.0934 3008 [ 16707EC5FD029A4415B138796F0981CE ] C:\Windows\System32\nrpsrv.dll
21:49:56.0934 3008 C:\Windows\System32\nrpsrv.dll - ok
21:49:56.0934 3008 [ BA387E955E890C8A88306D9B8D06BF17 ] C:\Windows\System32\nsisvc.dll
21:49:56.0934 3008 C:\Windows\System32\nsisvc.dll - ok
21:49:56.0949 3008 [ B24ABFAB2D541996A38905369D511953 ] C:\Windows\System32\wdmaud.drv
21:49:56.0949 3008 C:\Windows\System32\wdmaud.drv - ok
21:49:56.0949 3008 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\System32\winnsi.dll
21:49:56.0949 3008 C:\Windows\System32\winnsi.dll - ok
21:49:56.0949 3008 [ D0722E963D3C6145446874241401B209 ] C:\Windows\System32\dnsrslvr.dll
21:49:56.0949 3008 C:\Windows\System32\dnsrslvr.dll - ok
21:49:56.0965 3008 [ AF75DBA674E55221B7A055B0A4345F16 ] C:\Windows\System32\keyiso.dll
21:49:56.0965 3008 C:\Windows\System32\keyiso.dll - ok
21:49:56.0965 3008 [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\System32\ksuser.dll
21:49:56.0965 3008 C:\Windows\System32\ksuser.dll - ok
21:49:56.0965 3008 [ 691C8DFB208227F0CBB5C0897C742ACE ] C:\Windows\System32\WindowsCodecs.dll
21:49:56.0965 3008 C:\Windows\System32\WindowsCodecs.dll - ok
21:49:56.0980 3008 [ 990A58A0B01720E419B55EFC5FF387F8 ] C:\Windows\System32\dhcpcore6.dll
21:49:56.0980 3008 C:\Windows\System32\dhcpcore6.dll - ok
21:49:56.0980 3008 [ 100103C6535C66265267F5EEA5F5846E ] C:\Windows\System32\dnsext.dll
21:49:56.0980 3008 C:\Windows\System32\dnsext.dll - ok
21:49:56.0980 3008 [ 496C56361F57C2CA54931EBBC7D6C2CF ] C:\Windows\System32\eapphost.dll
21:49:56.0980 3008 C:\Windows\System32\eapphost.dll - ok
21:49:56.0996 3008 [ 8600142FA91C1B96367D3300AD0F3F3A ] C:\Windows\System32\eapsvc.dll
21:49:56.0996 3008 C:\Windows\System32\eapsvc.dll - ok
21:49:56.0996 3008 [ 158117F3CF278F01C6F24E89E2141E81 ] C:\Windows\System32\FWPUCLNT.DLL
21:49:56.0996 3008 C:\Windows\System32\FWPUCLNT.DLL - ok
21:49:56.0996 3008 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\System32\dhcpcsvc.dll
21:49:56.0996 3008 C:\Windows\System32\dhcpcsvc.dll - ok
21:49:57.0012 3008 [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\System32\dhcpcsvc6.dll
21:49:57.0012 3008 C:\Windows\System32\dhcpcsvc6.dll - ok
21:49:57.0012 3008 [ 16935C98FF639D185086A3529B1F2067 ] C:\Windows\System32\wlansvc.dll
21:49:57.0012 3008 C:\Windows\System32\wlansvc.dll - ok
21:49:57.0012 3008 [ 91DA0906B27ADC98B7CC9D17F6F8227C ] C:\Windows\System32\umb.dll
21:49:57.0012 3008 C:\Windows\System32\umb.dll - ok
21:49:57.0027 3008 [ 81E1423A5D3F0F350307B537D33599FC ] C:\Windows\System32\wlanmsm.dll
21:49:57.0027 3008 C:\Windows\System32\wlanmsm.dll - ok
21:49:57.0027 3008 [ AFBB5060A2DAD431A2EAEB2C86CFFE81 ] C:\Windows\System32\AudioSes.dll
21:49:57.0027 3008 C:\Windows\System32\AudioSes.dll - ok
21:49:57.0027 3008 [ 5A12C364AD1D4FCC0AD0E56DBBC34462 ] C:\Windows\System32\midimap.dll
21:49:57.0027 3008 C:\Windows\System32\midimap.dll - ok
21:49:57.0043 3008 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\System32\msacm32.dll
21:49:57.0043 3008 C:\Windows\System32\msacm32.dll - ok
21:49:57.0043 3008 [ 07393A09C46083588E751B63B03C8301 ] C:\Windows\System32\msacm32.drv
21:49:57.0043 3008 C:\Windows\System32\msacm32.drv - ok
21:49:57.0043 3008 [ 20C06A50DFC097E134BC6FA8444CA9BC ] C:\Windows\System32\wlansec.dll
21:49:57.0043 3008 C:\Windows\System32\wlansec.dll - ok
21:49:57.0058 3008 [ BBA9D5A730D5E304117AD26923EBD8AA ] C:\Windows\System32\AudioEng.dll
21:49:57.0058 3008 C:\Windows\System32\AudioEng.dll - ok
21:49:57.0058 3008 [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97 ] C:\Windows\System32\eappcfg.dll
21:49:57.0058 3008 C:\Windows\System32\eappcfg.dll - ok
21:49:57.0058 3008 [ 666E57B6B51824D1D235F80A3DD70A13 ] C:\Windows\System32\eappprxy.dll
21:49:57.0058 3008 C:\Windows\System32\eappprxy.dll - ok
21:49:57.0074 3008 [ C1585EAA67C37A05BF6F93726FAFC069 ] C:\Windows\System32\l2gpstore.dll
21:49:57.0074 3008 C:\Windows\System32\l2gpstore.dll - ok
21:49:57.0074 3008 [ ADEE99F825F8C247C37541EA102CA975 ] C:\Windows\System32\onex.dll
21:49:57.0074 3008 C:\Windows\System32\onex.dll - ok
21:49:57.0074 3008 [ 65BF13016A3C22775F3E17591AE5268A ] C:\Windows\System32\VaultCredProvider.dll
21:49:57.0074 3008 C:\Windows\System32\VaultCredProvider.dll - ok
21:49:57.0090 3008 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\System32\winbrand.dll
21:49:57.0090 3008 C:\Windows\System32\winbrand.dll - ok
21:49:57.0090 3008 [ 3C33562F4FAE3D58E47F662DCE07675E ] C:\Windows\System32\WinSCard.dll
21:49:57.0090 3008 C:\Windows\System32\WinSCard.dll - ok
21:49:57.0090 3008 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\System32\wlanutil.dll
21:49:57.0090 3008 C:\Windows\System32\wlanutil.dll - ok
21:49:57.0105 3008 [ 749F9795F01C35EEBE100A87D82B9681 ] C:\Windows\System32\wlgpclnt.dll
21:49:57.0105 3008 C:\Windows\System32\wlgpclnt.dll - ok
21:49:57.0105 3008 [ 2DAE86D453525BECEFBC298A66E4D2FC ] C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll
21:49:57.0105 3008 C:\Program Files\WIDCOMM\Bluetooth Software\BtwCP.dll - ok
21:49:57.0105 3008 [ 3612142EAA6227028F010714D71BBD5F ] C:\Windows\System32\msxml6.dll
21:49:57.0105 3008 C:\Windows\System32\msxml6.dll - ok
21:49:57.0121 3008 [ 2D15C41214F518FC3C72A4C01C30882F ] C:\Windows\System32\bthprops.cpl
21:49:57.0121 3008 C:\Windows\System32\bthprops.cpl - ok
21:49:57.0121 3008 [ 61E02CC3184B63FAFE0B83EAC8B3B8EF ] C:\Windows\System32\winspool.drv
21:49:57.0121 3008 C:\Windows\System32\winspool.drv - ok
21:49:57.0121 3008 [ 96F0F8F4DEE598C8D12AD9633E0CFE2A ] C:\Windows\System32\AUDIOKSE.dll
21:49:57.0121 3008 C:\Windows\System32\AUDIOKSE.dll - ok
21:49:57.0136 3008 [ 2F6A27F48154D20AC9F27C19B3A0FEAC ] C:\Windows\System32\MBWrp32.dll
21:49:57.0136 3008 C:\Windows\System32\MBWrp32.dll - ok
21:49:57.0136 3008 [ 53407BDDFBB93BFBC2F2E7948F05A7AC ] C:\Windows\System32\MBAPO32.dll
21:49:57.0136 3008 C:\Windows\System32\MBAPO32.dll - ok
21:49:57.0136 3008 [ 9F1BB2E5177D8C7AF7CC45BFC18010C8 ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:49:57.0136 3008 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:49:57.0152 3008 [ E59F08ED9D2A128CE436BBFC232247F6 ] C:\Windows\System32\BioCredProv.dll
21:49:57.0152 3008 C:\Windows\System32\BioCredProv.dll - ok
21:49:57.0152 3008 [ CD2E48FA5B29EE2B3B5858056D246EF2 ] C:\Windows\System32\shsvcs.dll
21:49:57.0152 3008 C:\Windows\System32\shsvcs.dll - ok
21:49:57.0152 3008 [ 7BC8F1F1701FCD9E42EBD3271CF20935 ] C:\Windows\System32\RtkAPO.dll
21:49:57.0152 3008 C:\Windows\System32\RtkAPO.dll - ok
21:49:57.0168 3008 [ 702A13ED6F2B4740FA77A7A19B382348 ] C:\Windows\System32\credui.dll
21:49:57.0168 3008 C:\Windows\System32\credui.dll - ok
21:49:57.0168 3008 [ C3DBF7DFF5A38136E26BADB7AB4E2972 ] C:\Windows\System32\netapi32.dll
21:49:57.0168 3008 C:\Windows\System32\netapi32.dll - ok
21:49:57.0168 3008 [ C6BB27D9A8AC13D4A44486F528B5C884 ] C:\Windows\System32\netutils.dll
21:49:57.0168 3008 C:\Windows\System32\netutils.dll - ok
21:49:57.0183 3008 [ 3E8B0C453E25613A1F59762A5C42AA75 ] C:\Windows\System32\schedsvc.dll
21:49:57.0183 3008 C:\Windows\System32\schedsvc.dll - ok
21:49:57.0183 3008 [ 36B8D5903CEEF0AA42A1EE002BD27FF1 ] C:\Windows\System32\vaultcli.dll
21:49:57.0183 3008 C:\Windows\System32\vaultcli.dll - ok
21:49:57.0183 3008 [ 3FAD263CE1E2A6FFF40D00043B2275E3 ] C:\Windows\System32\winbio.dll
21:49:57.0183 3008 C:\Windows\System32\winbio.dll - ok
21:49:57.0183 3008 [ 6D8CACF3B1B54943EFCF420C2D667B37 ] C:\Windows\System32\certCredProvider.dll
21:49:57.0183 3008 C:\Windows\System32\certCredProvider.dll - ok
21:49:57.0199 3008 [ 742AA02BD9FA3492C9E525BBD427D87D ] C:\Windows\System32\samcli.dll
21:49:57.0199 3008 C:\Windows\System32\samcli.dll - ok
21:49:57.0199 3008 [ 7AD12703039056D2A0815F85960E1FA1 ] C:\Windows\System32\wkscli.dll
21:49:57.0199 3008 C:\Windows\System32\wkscli.dll - ok
21:49:57.0199 3008 [ C5B5CCDBF8ED1475240313ED88234E3F ] C:\Windows\System32\netcfgx.dll
21:49:57.0199 3008 C:\Windows\System32\netcfgx.dll - ok
21:49:57.0214 3008 [ FFE4BEC5C187C426A17AE76A773063A6 ] C:\Windows\System32\rasplap.dll
21:49:57.0214 3008 C:\Windows\System32\rasplap.dll - ok
21:49:57.0214 3008 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\System32\ktmw32.dll
21:49:57.0214 3008 C:\Windows\System32\ktmw32.dll - ok
21:49:57.0214 3008 [ 0D4E8439AD3159A335FA720E043EA22E ] C:\Windows\System32\taskcomp.dll
21:49:57.0214 3008 C:\Windows\System32\taskcomp.dll - ok
21:49:57.0230 3008 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\System32\rasapi32.dll
21:49:57.0230 3008 C:\Windows\System32\rasapi32.dll - ok
21:49:57.0230 3008 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\System32\rasman.dll
21:49:57.0230 3008 C:\Windows\System32\rasman.dll - ok
21:49:57.0230 3008 [ 2DD44566FF92EC81726C5FAFEFA3FE8B ] C:\Windows\System32\rtutils.dll
21:49:57.0230 3008 C:\Windows\System32\rtutils.dll - ok
21:49:57.0246 3008 [ DB7F4DE9079F8D073622F18A96A671D5 ] C:\Windows\System32\fveapi.dll
21:49:57.0246 3008 C:\Windows\System32\fveapi.dll - ok
21:49:57.0246 3008 [ CBD010BFBED9657C3813400AAD03CF8A ] C:\Windows\System32\oleacc.dll
21:49:57.0246 3008 C:\Windows\System32\oleacc.dll - ok
21:49:57.0246 3008 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\System32\UIAutomationCore.dll
21:49:57.0246 3008 C:\Windows\System32\UIAutomationCore.dll - ok
21:49:57.0246 3008 [ C87F28A34B3840F4B40011D170B1A159 ] C:\Windows\System32\fvecerts.dll
21:49:57.0246 3008 C:\Windows\System32\fvecerts.dll - ok
21:49:57.0261 3008 [ EAFC149CD3BD78C443E31BB157841197 ] C:\Windows\System32\tbs.dll
21:49:57.0261 3008 C:\Windows\System32\tbs.dll - ok
21:49:57.0261 3008 [ A12829E9974F57E9B5DBFEA7C93190F6 ] C:\Windows\System32\UXInit.dll
21:49:57.0261 3008 C:\Windows\System32\UXInit.dll - ok
21:49:57.0261 3008 [ C531C7FD9E8B62021112787C4E2C5A5A ] C:\Windows\System32\drivers\http.sys
21:49:57.0261 3008 C:\Windows\System32\drivers\http.sys - ok
21:49:57.0277 3008 [ 4E30ED3E551E867ADD1C8D58F5EDD9DF ] C:\Windows\System32\WMALFXGFXDSP.dll
21:49:57.0277 3008 C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:49:57.0277 3008 [ DE5DACEBD4C89834EC6D2C41C8643CDA ] C:\Windows\System32\taskeng.exe
21:49:57.0277 3008 C:\Windows\System32\taskeng.exe - ok
21:49:57.0277 3008 [ 329474C0AB680B425DFB467B910371A1 ] C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll
21:49:57.0277 3008 C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll - ok
21:49:57.0292 3008 [ 49B6DD6AB3715B7A67965F17194E98A9 ] C:\Windows\System32\spoolsv.exe
21:49:57.0292 3008 C:\Windows\System32\spoolsv.exe - ok
21:49:57.0292 3008 [ 85AC71C045CEB054ED48A7841AAE0C11 ] C:\Windows\System32\BFE.DLL
21:49:57.0292 3008 C:\Windows\System32\BFE.DLL - ok
21:49:57.0292 3008 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\System32\rundll32.exe
21:49:57.0292 3008 C:\Windows\System32\rundll32.exe - ok
21:49:57.0308 3008 [ 659E04E74135927CA6D7BC5E75C84417 ] C:\Windows\System32\TSChannel.dll
21:49:57.0308 3008 C:\Windows\System32\TSChannel.dll - ok
21:49:57.0308 3008 [ 1351931877DE0C46C4D42DAA26F7B5B1 ] C:\Windows\AppPatch\AcLayers.dll
21:49:57.0308 3008 C:\Windows\AppPatch\AcLayers.dll - ok
21:49:57.0308 3008 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\System32\mpr.dll
21:49:57.0308 3008 C:\Windows\System32\mpr.dll - ok
21:49:57.0324 3008 [ 500E39533F9C7E1AE22B4CB1DAE71AB4 ] C:\Windows\System32\msacm325.dll
21:49:57.0324 3008 C:\Windows\System32\msacm325.dll - ok
21:49:57.0324 3008 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\System32\mfplat.dll
21:49:57.0324 3008 C:\Windows\System32\mfplat.dll - ok
21:49:57.0324 3008 [ D1BBE227367ED791D5FCF08E132D2956 ] C:\Windows\System32\opengl32.dll
21:49:57.0324 3008 C:\Windows\System32\opengl32.dll - ok
21:49:57.0324 3008 [ A6F02BCD555A5F93932E6944F93D06CC ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp32.dll
21:49:57.0324 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp32.dll - ok
21:49:57.0339 3008 [ 07EC995CCB69063C430E88008013FA8C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq32.dll
21:49:57.0339 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slgeq32.dll - ok
21:49:57.0339 3008 [ 185B4D605DC1204D20755F19BEA72BA7 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36032.dll
21:49:57.0339 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36032.dll - ok
21:49:57.0355 3008 [ F86BEE12E78C5D43606CEB3AFC6ACAF2 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit32.dll
21:49:57.0355 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slInit32.dll - ok
21:49:57.0355 3008 [ 1841EE0F22FA77FA059462E883801793 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv32.dll
21:49:57.0355 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slmaxv32.dll - ok
21:49:57.0355 3008 [ F763787274D0903EDC581408A6F07302 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo32.dll
21:49:57.0355 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo32.dll - ok
21:49:57.0370 3008 [ 919EE79FBFC324C8F6AE3586CE5185F0 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd32.dll
21:49:57.0370 3008 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd32.dll - ok
21:49:57.0370 3008 [ FCAFAEF6798D7B51FF029F99A9898961 ] C:\Windows\System32\drivers\bowser.sys
21:49:57.0370 3008 C:\Windows\System32\drivers\bowser.sys - ok
21:49:57.0370 3008 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] C:\Windows\System32\drivers\mpsdrv.sys
21:49:57.0370 3008 C:\Windows\System32\drivers\mpsdrv.sys - ok
21:49:57.0386 3008 [ 5CD996CECF45CBC3E8D109C86B82D69E ] C:\Windows\System32\MPSSVC.dll
21:49:57.0386 3008 C:\Windows\System32\MPSSVC.dll - ok
21:49:57.0386 3008 [ F4A054BE78AF7F410129C4B64B07DC9B ] C:\Windows\System32\drivers\mrxsmb.sys
21:49:57.0386 3008 C:\Windows\System32\drivers\mrxsmb.sys - ok
21:49:57.0386 3008 [ DE3897365B04C4DA1CF8FF725577C082 ] C:\Windows\System32\glu32.dll
21:49:57.0386 3008 C:\Windows\System32\glu32.dll - ok
21:49:57.0402 3008 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\System32\ddraw.dll
21:49:57.0402 3008 C:\Windows\System32\ddraw.dll - ok
21:49:57.0402 3008 [ DEFFA295BD1895C6ED8E3078412AC60B ] C:\Windows\System32\drivers\mrxsmb10.sys
21:49:57.0402 3008 C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:49:57.0402 3008 [ 24D76ABE5DCAD22F19D105F76FDF0CE1 ] C:\Windows\System32\drivers\mrxsmb20.sys
21:49:57.0402 3008 C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:49:57.0417 3008 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\System32\dciman32.dll
21:49:57.0417 3008 C:\Windows\System32\dciman32.dll - ok
21:49:57.0417 3008 [ B9891F885DCF1F0513A51CB58493CB1F ] C:\Windows\System32\wkssvc.dll
21:49:57.0417 3008 C:\Windows\System32\wkssvc.dll - ok
21:49:57.0417 3008 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] C:\Windows\System32\drivers\parport.sys
21:49:57.0417 3008 C:\Windows\System32\drivers\parport.sys - ok
21:49:57.0433 3008 [ 019C372B1A9DA73A22D0D35A4D40F5C9 ] C:\Windows\System32\wfapigp.dll
21:49:57.0433 3008 C:\Windows\System32\wfapigp.dll - ok
21:49:57.0433 3008 [ ED6D98E58406F2779C844943076EB4EE ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe
21:49:57.0433 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe - ok
21:49:57.0433 3008 [ E60878164EAB0FFA8024451E579DBEE4 ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\Swordfish.dll
21:49:57.0433 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\Swordfish.dll - ok
21:49:57.0448 3008 [ D3F6A83F6EC6B76B19342F348AD5A6D5 ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sqlite3.dll
21:49:57.0448 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sqlite3.dll - ok
21:49:57.0448 3008 [ E0FE1259D88A89493098D9269144FD5F ] C:\Windows\System32\wiarpc.dll
21:49:57.0448 3008 C:\Windows\System32\wiarpc.dll - ok
21:49:57.0448 3008 [ 205B7034B64DE5A68DEB96B47B7E889B ] C:\Windows\System32\mscms.dll
21:49:57.0448 3008 C:\Windows\System32\mscms.dll - ok
21:49:57.0464 3008 [ 358AB7956D3160000726574083DFC8A6 ] C:\Windows\System32\pcasvc.dll
21:49:57.0464 3008 C:\Windows\System32\pcasvc.dll - ok
21:49:57.0464 3008 [ 6A984831644ECA1A33FFEAE4126F4F37 ] C:\Windows\System32\snmptrap.exe
21:49:57.0464 3008 C:\Windows\System32\snmptrap.exe - ok
21:49:57.0464 3008 [ A2F17346CC5C502D4E29EF986BD17D34 ] C:\Windows\System32\PeerDistSh.dll
21:49:57.0464 3008 C:\Windows\System32\PeerDistSh.dll - ok
21:49:57.0480 3008 [ A6CE73469591554279DA63BE715DBC93 ] C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
21:49:57.0480 3008 C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe - ok
21:49:57.0480 3008 [ 86D4ABC1B01D39C810E14D54C2D6AEE1 ] C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe
21:49:57.0480 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe - ok
21:49:57.0480 3008 [ 67B1C96DF3C34D66190126639A2C0260 ] C:\Windows\System32\drivers\asdrs.sys
21:49:57.0480 3008 C:\Windows\System32\drivers\asdrs.sys - ok
21:49:57.0495 3008 [ E0AE816D41F326F37EDFFC1CB0D462B1 ] C:\Program Files\Anvisoft\Anvi Smart Defender\sqlite3.dll
21:49:57.0495 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\sqlite3.dll - ok
21:49:57.0495 3008 [ 6775931D9F2E203126251A28D6E7E0EC ] C:\Program Files\Anvisoft\Anvi Smart Defender\Swordfish.dll
21:49:57.0495 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\Swordfish.dll - ok
21:49:57.0495 3008 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\System32\fltLib.dll
21:49:57.0495 3008 C:\Windows\System32\fltLib.dll - ok
21:49:57.0495 3008 [ 79C7CFAEA6879A8C1A1E8B5FFE8983AA ] C:\Windows\System32\dbghelp.dll
21:49:57.0495 3008 C:\Windows\System32\dbghelp.dll - ok
21:49:57.0511 3008 [ 4F3BC96F7C45ED12955892C310F1E3DB ] C:\Windows\System32\drivers\asdws.sys
21:49:57.0511 3008 C:\Windows\System32\drivers\asdws.sys - ok
21:49:57.0511 3008 [ F7434401AE320BB97903A3C1865242FB ] C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:49:57.0511 3008 C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe - ok
21:49:57.0511 3008 [ FB08DEC5EF43D0C66D83B8E9694E7549 ] C:\Windows\System32\provsvc.dll
21:49:57.0511 3008 C:\Windows\System32\provsvc.dll - ok
21:49:57.0526 3008 [ D318F23BE45D5E3A107469EB64815B50 ] C:\Windows\System32\sstpsvc.dll
21:49:57.0526 3008 C:\Windows\System32\sstpsvc.dll - ok
21:49:57.0526 3008 [ CE5214D1F3343C7937C4300F33B67A53 ] C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll
21:49:57.0526 3008 C:\Program Files\WIDCOMM\Bluetooth Software\btins.dll - ok
21:49:57.0526 3008 [ 9C231178CE4FB385F4B54B0A9080B8A4 ] C:\Windows\System32\cryptsvc.dll
21:49:57.0526 3008 C:\Windows\System32\cryptsvc.dll - ok
21:49:57.0542 3008 [ EFBC1DD333C99CA52A1371C74D4BA7A7 ] C:\Windows\System32\vssapi.dll
21:49:57.0542 3008 C:\Windows\System32\vssapi.dll - ok
21:49:57.0542 3008 [ 7FA81C6E11CAA594ADB52084DA73A1E5 ] C:\Windows\System32\dps.dll
21:49:57.0542 3008 C:\Windows\System32\dps.dll - ok
21:49:57.0542 3008 [ 5EF3427AE503B5C03A48F7C9FF458B69 ] C:\ProgramData\DatacardService\HWDeviceService.exe
21:49:57.0542 3008 C:\ProgramData\DatacardService\HWDeviceService.exe - ok
21:49:57.0558 3008 [ FAC0EE6562B121B1399D6E855583F7A5 ] C:\Windows\System32\IKEEXT.DLL
21:49:57.0558 3008 C:\Windows\System32\IKEEXT.DLL - ok
21:49:57.0558 3008 [ 790385B5D3BC420551FA6969E5A50103 ] C:\Program Files\K7 Computing\K7TSecurity\k7crvsvc.exe
21:49:57.0558 3008 C:\Program Files\K7 Computing\K7TSecurity\k7crvsvc.exe - ok
21:49:57.0558 3008 [ C85345BFE012279E20DC63A7AA6150EF ] C:\Program Files\K7 Computing\K7TSecurity\k7tsmngr.exe
21:49:57.0558 3008 C:\Program Files\K7 Computing\K7TSecurity\k7tsmngr.exe - ok
21:49:57.0573 3008 [ AE6AF014B616F53BA762F0BCFD8F7F21 ] C:\Windows\System32\msi.dll
21:49:57.0573 3008 C:\Windows\System32\msi.dll - ok
21:49:57.0573 3008 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\System32\vsstrace.dll
21:49:57.0573 3008 C:\Windows\System32\vsstrace.dll - ok
21:49:57.0573 3008 [ 85B16A92B117A5A800032ECD904B86DB ] C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:49:57.0573 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
21:49:57.0589 3008 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\System32\tapi32.dll
21:49:57.0589 3008 C:\Windows\System32\tapi32.dll - ok
21:49:57.0589 3008 [ 70CD0920DBC82305EE1A8276F29DD653 ] C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll
21:49:57.0589 3008 C:\Program Files\WIDCOMM\Bluetooth Software\btwprofpack.dll - ok
21:49:57.0589 3008 [ 56931BAF613550CE64141BE8153D03AC ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfc80.dll
21:49:57.0589 3008 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\mfc80.dll - ok
21:49:57.0604 3008 [ C4E9E285E1730D864DD4B35B73CDAFDB ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcr80.dll
21:49:57.0604 3008 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcr80.dll - ok
21:49:57.0604 3008 [ B5475858C52BBD7E43EA10AB7EE3FBA8 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ENU.dll
21:49:57.0604 3008 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\mfc80ENU.dll - ok
21:49:57.0604 3008 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\System32\imageres.dll
21:49:57.0604 3008 C:\Windows\System32\imageres.dll - ok
21:49:57.0620 3008 [ 770DCEF52E70ED5C0D86B0F937CF2D4E ] C:\Windows\ehome\mcupdate.exe
21:49:57.0620 3008 C:\Windows\ehome\mcupdate.exe - ok
21:49:57.0620 3008 [ 2C25814DCF6C4CE1E89D442495519BAB ] C:\Windows\System32\aitagent.exe
21:49:57.0620 3008 C:\Windows\System32\aitagent.exe - ok
21:49:57.0620 3008 [ D1AB72DB2BEDD2F255D35DA3DA0D4B16 ] C:\Windows\System32\wscript.exe
21:49:57.0620 3008 C:\Windows\System32\wscript.exe - ok
21:49:57.0636 3008 [ DDE2F93D9BC87224B052B43CB07CE128 ] C:\Program Files\K7 Computing\K7TSecurity\k7cmnres.dll
21:49:57.0636 3008 C:\Program Files\K7 Computing\K7TSecurity\k7cmnres.dll - ok
21:49:57.0636 3008 [ C0F7C25EEFB1C5FD554AAA801201A83C ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll
21:49:57.0636 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok
21:49:57.0636 3008 [ A8AD2773202A3913D1E1564BD5703183 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll
21:49:57.0636 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok
21:49:57.0651 3008 [ 20E2469DB709FC675E655CEAA11BE312 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:49:57.0651 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe - ok
21:49:57.0651 3008 [ 8EB9DF4D405524D5EF69AE9ECB0EDD16 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll
21:49:57.0651 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbamcore.dll - ok
21:49:57.0651 3008 [ 5B0A0E295AA93737D80E1BCE447086B8 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
21:49:57.0651 3008 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe - ok
21:49:57.0667 3008 [ CFC54225D1870FDBF6E9E75FB83A27CB ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcp80.dll
21:49:57.0667 3008 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_d08a205e442db5b5\msvcp80.dll - ok
21:49:57.0667 3008 [ E111CED19D6A9FF9BBA5C219D0C5A3CE ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll
21:49:57.0667 3008 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll - ok
21:49:57.0667 3008 [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
21:49:57.0667 3008 C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
21:49:57.0682 3008 [ E519AF60FAE24F3E0D287CBD90FB0A30 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll
21:49:57.0682 3008 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
21:49:57.0682 3008 [ FEB71CCE3DB8460971E6A36085489E56 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll
21:49:57.0682 3008 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll - ok
21:49:57.0682 3008 [ ADD9D33D685DFADDFAD5AFB42CF31A70 ] C:\Windows\System32\cscapi.dll
21:49:57.0682 3008 C:\Windows\System32\cscapi.dll - ok
21:49:57.0698 3008 [ 9A5F53B55E09ECC2DAB8C74E4DD18B8D ] C:\Windows\System32\NLSSRV32.EXE
21:49:57.0698 3008 C:\Windows\System32\NLSSRV32.EXE - ok
21:49:57.0698 3008 [ 2226496E34BD40734946A054B1CD657F ] C:\Windows\System32\nlasvc.dll
21:49:57.0698 3008 C:\Windows\System32\nlasvc.dll - ok
21:49:57.0698 3008 [ 3F2DEAFC463D75611CB9C5E36A8CCF15 ] C:\Windows\System32\ncsi.dll
21:49:57.0698 3008 C:\Windows\System32\ncsi.dll - ok
21:49:57.0714 3008 [ D757F59EED634C595727534B60E640B8 ] C:\Windows\System32\winhttp.dll
21:49:57.0714 3008 C:\Windows\System32\winhttp.dll - ok
21:49:57.0714 3008 [ 7F739F89F7F60221740DA9DE1B1DABB6 ] C:\Windows\System32\webio.dll
21:49:57.0714 3008 C:\Windows\System32\webio.dll - ok
21:49:57.0714 3008 [ 9E0104BA49F4E6973749A02BF41344ED ] C:\Windows\System32\drivers\PEAuth.sys
21:49:57.0714 3008 C:\Windows\System32\drivers\PEAuth.sys - ok
21:49:57.0729 3008 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\System32\ssdpapi.dll
21:49:57.0729 3008 C:\Windows\System32\ssdpapi.dll - ok
21:49:57.0729 3008 [ 84E3249B984160849979E291D45846B9 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll
21:49:57.0729 3008 C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll - ok
21:49:57.0729 3008 [ DA4ECE4EC909E1791339F3FFAF36418A ] C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe
21:49:57.0729 3008 C:\Program Files\QUALCOMM\QDLService2k\QDLService2kDell.exe - ok
21:49:57.0745 3008 [ EA569D48B2E755AF6D96F03F3335D98A ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe
21:49:57.0745 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlService.exe - ok
21:49:57.0745 3008 [ 2B9C29DE5729E5872CFAD16A69CCB5F7 ] C:\Windows\System32\mfc42.dll
21:49:57.0745 3008 C:\Windows\System32\mfc42.dll - ok
21:49:57.0745 3008 [ 466A832C2E56D0B55AF8BB26FE3FE257 ] C:\Windows\System32\odbc32.dll
21:49:57.0745 3008 C:\Windows\System32\odbc32.dll - ok
21:49:57.0745 3008 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\System32\odbcint.dll
21:49:57.0745 3008 C:\Windows\System32\odbcint.dll - ok
21:49:57.0760 3008 [ 38106C7BD34EAE89D2769AC0BA2E846B ] C:\Program Files\Reliance Netconnect+\UpdateDog\ouc.exe
21:49:57.0760 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\ouc.exe - ok
21:49:57.0760 3008 [ C4B4409F186DA70FCF2BCC60D5F05489 ] C:\Program Files\Reliance Netconnect+\UpdateDog\libgcc_s_dw2-1.dll
21:49:57.0760 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\libgcc_s_dw2-1.dll - ok
21:49:57.0760 3008 [ DBDA60D92E774B4ACB3B1CD71F909426 ] C:\Program Files\Reliance Netconnect+\UpdateDog\mingwm10.dll
21:49:57.0760 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\mingwm10.dll - ok
21:49:57.0776 3008 [ FB398D88FF38A97E069E9DFB44D84FC6 ] C:\Program Files\Reliance Netconnect+\UpdateDog\QtCore4.dll
21:49:57.0776 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\QtCore4.dll - ok
21:49:57.0776 3008 [ A58BC88BD84D6D2325CA2475F94AFA37 ] C:\Program Files\Reliance Netconnect+\UpdateDog\QtNetwork4.dll
21:49:57.0776 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\QtNetwork4.dll - ok
21:49:57.0776 3008 [ 9C32939B75035B85AEB1BAA82295A51E ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtWLan.exe
21:49:57.0776 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtWLan.exe - ok
21:49:57.0792 3008 [ 94142D05F00EC6601A4EA9939DE49C98 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\EnumDevLib.dll
21:49:57.0792 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\EnumDevLib.dll - ok
21:49:57.0792 3008 [ 923DA0AFDD901C39A54E832D530F76BC ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlLib.dll
21:49:57.0792 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlLib.dll - ok
21:49:57.0807 3008 [ 2B552D133A5486B03CC01AC4B492BF98 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlIhvOid.dll
21:49:57.0807 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlIhvOid.dll - ok
21:49:57.0807 3008 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\System32\wlanapi.dll
21:49:57.0807 3008 C:\Windows\System32\wlanapi.dll - ok
21:49:57.0807 3008 [ 8063046AA70B97CA9985672B8848FB2E ] C:\Windows\System32\wlanhlp.dll
21:49:57.0807 3008 C:\Windows\System32\wlanhlp.dll - ok
21:49:57.0807 3008 [ 14B637A11EA46E3FF277F6D6CAD7585F ] C:\Windows\System32\wlanui.dll
21:49:57.0807 3008 C:\Windows\System32\wlanui.dll - ok
21:49:57.0823 3008 [ 7C02774740B2EA1F5237808B1A363D34 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\IpLib.dll
21:49:57.0823 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\IpLib.dll - ok
21:49:57.0823 3008 [ F1ED09F4F1FE819031F9140B76F20395 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\libeay32.dll
21:49:57.0823 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\libeay32.dll - ok
21:49:57.0838 3008 [ 29064E69158ECF8EE9D9C4F6C9F1BEBA ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlICS.dll
21:49:57.0838 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RtlICS.dll - ok
21:49:57.0838 3008 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\System32\oledlg.dll
21:49:57.0838 3008 C:\Windows\System32\oledlg.dll - ok
21:49:57.0838 3008 [ C10459DBDC2099C5A8428CB7D87DB85F ] C:\Windows\System32\olepro32.dll
21:49:57.0838 3008 C:\Windows\System32\olepro32.dll - ok
21:49:57.0838 3008 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\System32\wsock32.dll
21:49:57.0838 3008 C:\Windows\System32\wsock32.dll - ok
21:49:57.0854 3008 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] C:\Windows\System32\netman.dll
21:49:57.0854 3008 C:\Windows\System32\netman.dll - ok
21:49:57.0854 3008 [ 2584E99B00EBDC77613E8E5EF57FC0F7 ] C:\Program Files\K7 Computing\K7TSecurity\k7tsecurity.exe
21:49:57.0854 3008 C:\Program Files\K7 Computing\K7TSecurity\k7tsecurity.exe - ok
21:49:57.0854 3008 [ D98E2B275CF625FC26513CD6CBE430F8 ] C:\Program Files\K7 Computing\K7TSecurity\k7tlmtry.exe
21:49:57.0854 3008 C:\Program Files\K7 Computing\K7TSecurity\k7tlmtry.exe - ok
21:49:57.0870 3008 [ B23361750C8F918C282070895BF62200 ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\RTLDHCP.exe
21:49:57.0870 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\RTLDHCP.exe - ok
21:49:57.0870 3008 [ E2A8596576873BC5D509031DECD8C95D ] C:\Windows\System32\ntkrnlpa.exe
21:49:57.0870 3008 C:\Windows\System32\ntkrnlpa.exe - ok
21:49:57.0870 3008 [ 38106C7BD34EAE89D2769AC0BA2E846B ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\ouc.exe
21:49:57.0870 3008 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\ouc.exe - ok
21:49:57.0885 3008 [ 4ACC7E29ACFF27CE9552CCBD1F5F3E59 ] C:\Program Files\Reliance Netconnect+\UpdateDog\LiveUpd.exe
21:49:57.0885 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\LiveUpd.exe - ok
21:49:57.0885 3008 [ A4762935DC36550181A1A8F2C13678AA ] C:\Program Files\Reliance Netconnect+\UpdateDog\RunLiveUpd.exe
21:49:57.0885 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\RunLiveUpd.exe - ok
21:49:57.0885 3008 [ CEB8055D25776F567C164E57F3930F3E ] C:\Program Files\Reliance Netconnect+\UpdateDog\RunOuc.exe
21:49:57.0885 3008 C:\Program Files\Reliance Netconnect+\UpdateDog\RunOuc.exe - ok
21:49:57.0901 3008 [ A63DC5C2EA944E6657203E0C8EDEAF61 ] C:\Windows\System32\dllhost.exe
21:49:57.0901 3008 C:\Windows\System32\dllhost.exe - ok
21:49:57.0901 3008 [ 0B31464B7B2D616BD5F7036673588EC1 ] C:\Windows\System32\IDStore.dll
21:49:57.0901 3008 C:\Windows\System32\IDStore.dll - ok
21:49:57.0901 3008 [ 8F4F5A5C1BAE72CE6EAEEA1CA3F98CA2 ] C:\Windows\System32\taskhost.exe
21:49:57.0901 3008 C:\Windows\System32\taskhost.exe - ok
21:49:57.0916 3008 [ 12E33DD823D74680DE6F33BFA359EFB3 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
21:49:57.0916 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe - ok
21:49:57.0916 3008 [ 29D9FCDF65B7C823688A035937BB6697 ] C:\Windows\System32\conhost.exe
21:49:57.0916 3008 C:\Windows\System32\conhost.exe - ok
21:49:57.0916 3008 [ C4B4409F186DA70FCF2BCC60D5F05489 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\libgcc_s_dw2-1.dll
21:49:57.0916 3008 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\libgcc_s_dw2-1.dll - ok
21:49:57.0916 3008 [ DBDA60D92E774B4ACB3B1CD71F909426 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\mingwm10.dll
21:49:57.0916 3008 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\mingwm10.dll - ok
21:49:57.0932 3008 [ FB398D88FF38A97E069E9DFB44D84FC6 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtCore4.dll
21:49:57.0932 3008 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtCore4.dll - ok
21:49:57.0932 3008 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
21:49:57.0932 3008 C:\Windows\System32\drivers\secdrv.sys - ok
21:49:57.0932 3008 [ A58BC88BD84D6D2325CA2475F94AFA37 ] C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtNetwork4.dll
21:49:57.0948 3008 C:\ProgramData\Reliance Netconnect+\OnlineUpdate\QtNetwork4.dll - ok
21:49:57.0948 3008 [ A59B3A4442C52060CC7A85293AA3546F ] C:\Windows\System32\seclogon.dll
21:49:57.0948 3008 C:\Windows\System32\seclogon.dll - ok
21:49:57.0948 3008 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files\Skype\Updater\Updater.exe
21:49:57.0948 3008 C:\Program Files\Skype\Updater\Updater.exe - ok
21:49:57.0948 3008 [ 3CA2BB895E204478C7A4C9BAF70970CE ] C:\Windows\System32\AtBroker.exe
21:49:57.0948 3008 C:\Windows\System32\AtBroker.exe - ok
21:49:57.0963 3008 [ F7CD6BC217C7277B987103002DD99032 ] C:\Windows\System32\HotStartUserAgent.dll
21:49:57.0963 3008 C:\Windows\System32\HotStartUserAgent.dll - ok
21:49:57.0963 3008 [ 6DE80F60D7DE9CE6B8C2DDFDF79EF175 ] C:\Windows\System32\userinit.exe
21:49:57.0963 3008 C:\Windows\System32\userinit.exe - ok
21:49:57.0963 3008 [ 505BF4D1CADEB8D4F8BCD08D944DE25D ] C:\Windows\System32\dwm.exe
21:49:57.0963 3008 C:\Windows\System32\dwm.exe - ok
21:49:57.0979 3008 [ B73793F6A0EE0F61D6FA578B2EBF197A ] C:\Windows\System32\dwmredir.dll
21:49:57.0979 3008 C:\Windows\System32\dwmredir.dll - ok
21:49:57.0979 3008 [ 4C287F9069FEDBD791178876EE9DE536 ] C:\Windows\System32\sppsvc.exe
21:49:57.0979 3008 C:\Windows\System32\sppsvc.exe - ok
21:49:57.0979 3008 [ B43687C534A49700BF4B3C9898763752 ] C:\Windows\System32\MsCtfMonitor.dll
21:49:57.0979 3008 C:\Windows\System32\MsCtfMonitor.dll - ok
21:49:57.0979 3008 [ 415132079EAF93D6E90D9CA1B641F068 ] C:\Windows\System32\msutb.dll
21:49:57.0979 3008 C:\Windows\System32\msutb.dll - ok
21:49:57.0994 3008 [ B5665BAA2120B8A54E22E9CD07C05106 ] C:\Windows\System32\drivers\srvnet.sys
21:49:57.0994 3008 C:\Windows\System32\drivers\srvnet.sys - ok
21:49:57.0994 3008 [ 8E33E2B24306C5249154322BC99493F5 ] C:\Windows\System32\httpapi.dll
21:49:57.0994 3008 C:\Windows\System32\httpapi.dll - ok
21:49:57.0994 3008 [ E64444523ADD154F86567C469BC0B17F ] C:\Windows\System32\drivers\tcpipreg.sys
21:49:57.0994 3008 C:\Windows\System32\drivers\tcpipreg.sys - ok
21:49:58.0010 3008 [ 04105C8DA62353589C29BDAEB8D88BD8 ] C:\Windows\System32\sysmain.dll
21:49:58.0010 3008 C:\Windows\System32\sysmain.dll - ok
21:49:58.0010 3008 [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF ] C:\Windows\System32\tapisrv.dll
21:49:58.0010 3008 C:\Windows\System32\tapisrv.dll - ok
21:49:58.0010 3008 [ F58516E2DC0D963EF70D6BFC21FD82C4 ] C:\Windows\System32\PlaySndSrv.dll
21:49:58.0010 3008 C:\Windows\System32\PlaySndSrv.dll - ok
21:49:58.0026 3008 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] C:\Windows\System32\trkwks.dll
21:49:58.0026 3008 C:\Windows\System32\trkwks.dll - ok
21:49:58.0026 3008 [ F62E510B6AD4C21EB9FE8668ED251826 ] C:\Windows\System32\wbem\WMIsvc.dll
21:49:58.0026 3008 C:\Windows\System32\wbem\WMIsvc.dll - ok
21:49:58.0026 3008 [ 024CBDAC9E26AEDB16E2CC3B0954272A ] C:\Program Files\K7 Computing\K7TSecurity\k7emlpxy.exe
21:49:58.0026 3008 C:\Program Files\K7 Computing\K7TSecurity\k7emlpxy.exe - ok
21:49:58.0026 3008 [ 96F3F676B4D0DF4DA9C4081358C4662F ] C:\Windows\System32\wbemcomn.dll
21:49:58.0026 3008 C:\Windows\System32\wbemcomn.dll - ok
21:49:58.0041 3008 [ 881D9F2D6E04E1C323050CF1574870F7 ] C:\Windows\System32\wbem\WinMgmtR.dll
21:49:58.0041 3008 C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:49:58.0041 3008 [ 0E7441BE4D8C31C7F94D4E09AF8339C8 ] C:\Windows\System32\wbem\WmiDcPrv.dll
21:49:58.0041 3008 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
21:49:58.0041 3008 [ ECE6F33B41DEFB15059FD12FCECB8B3C ] C:\Program Files\K7 Computing\K7TSecurity\k7fwsrvc.exe
21:49:58.0041 3008 C:\Program Files\K7 Computing\K7TSecurity\k7fwsrvc.exe - ok
21:49:58.0057 3008 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\System32\ntdsapi.dll
21:49:58.0057 3008 C:\Windows\System32\ntdsapi.dll - ok
21:49:58.0057 3008 [ 1CEDFE91F527858CACA1B08B04666BC0 ] C:\Windows\System32\wbem\fastprox.dll
21:49:58.0057 3008 C:\Windows\System32\wbem\fastprox.dll - ok
21:49:58.0057 3008 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\System32\wbem\wbemprox.dll
21:49:58.0057 3008 C:\Windows\System32\wbem\wbemprox.dll - ok
21:49:58.0072 3008 [ 23C17A63B63CD2BA49737E54D6743E6F ] C:\Program Files\K7 Computing\K7TSecurity\K7RTSpam.dll
21:49:58.0072 3008 C:\Program Files\K7 Computing\K7TSecurity\K7RTSpam.dll - ok
21:49:58.0072 3008 [ F494D8EB409EBB8CE111A2E977B475BC ] C:\Program Files\K7 Computing\K7TSecurity\k7pssrvc.exe
21:49:58.0072 3008 C:\Program Files\K7 Computing\K7TSecurity\k7pssrvc.exe - ok
21:49:58.0072 3008 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\System32\shfolder.dll
21:49:58.0072 3008 C:\Windows\System32\shfolder.dll - ok
21:49:58.0088 3008 [ 6A6977B9DB05A51A23F118043D62A988 ] C:\Program Files\K7 Computing\K7TSecurity\k7rtscan.exe
21:49:58.0088 3008 C:\Program Files\K7 Computing\K7TSecurity\k7rtscan.exe - ok
21:49:58.0088 3008 [ 6B90F99BC80B473B5F2AAA42AED990A5 ] C:\Program Files\K7 Computing\K7TSecurity\K7AVEvnt.dll
21:49:58.0088 3008 C:\Program Files\K7 Computing\K7TSecurity\K7AVEvnt.dll - ok
21:49:58.0088 3008 [ 2BA4EBC7DFBA845A1EDBE1F75913BE33 ] C:\Windows\System32\drivers\srv.sys
21:49:58.0088 3008 C:\Windows\System32\drivers\srv.sys - ok
21:49:58.0104 3008 [ DCE7E10FEAABD4CAE95948B3DE5340BB ] C:\Windows\System32\drivers\srv2.sys
21:49:58.0104 3008 C:\Windows\System32\drivers\srv2.sys - ok
21:49:58.0104 3008 [ B2D1DFF59D6BDB58D03D43CD0FFB0BAC ] C:\Program Files\K7 Computing\K7TSecurity\K7EmlScn.dll
21:49:58.0104 3008 C:\Program Files\K7 Computing\K7TSecurity\K7EmlScn.dll - ok
21:49:58.0104 3008 [ A22825E7BB7018E8AF3E229A5AF17221 ] C:\Windows\System32\wiaservc.dll
21:49:58.0104 3008 C:\Windows\System32\wiaservc.dll - ok
21:49:58.0119 3008 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\System32\wiatrace.dll
21:49:58.0119 3008 C:\Windows\System32\wiatrace.dll - ok
21:49:58.0119 3008 [ D16D818E9930A6E5B4F6476DD0998D1A ] C:\Windows\System32\drivers\spsys.sys
21:49:58.0119 3008 C:\Windows\System32\drivers\spsys.sys - ok
21:49:58.0119 3008 [ 2D1830A62EE573E1BFFCBCBEFDE921AF ] C:\Windows\System32\browcli.dll
21:49:58.0119 3008 C:\Windows\System32\browcli.dll - ok
21:49:58.0119 3008 [ 3CDEDF4059A2BDBB9CD888EA1979D54C ] C:\Windows\System32\mscoree.dll
21:49:58.0119 3008 C:\Windows\System32\mscoree.dll - ok
21:49:58.0135 3008 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\System32\security.dll
21:49:58.0135 3008 C:\Windows\System32\security.dll - ok
21:49:58.0135 3008 [ 99B9343280AF6A4C0F27CF2E28E94BBF ] C:\Windows\System32\dssenh.dll
21:49:58.0135 3008 C:\Windows\System32\dssenh.dll - ok
21:49:58.0135 3008 [ 801211DCFD6414FFA48BCA661A76C6FA ] C:\Windows\System32\wbem\wbemcore.dll
21:49:58.0135 3008 C:\Windows\System32\wbem\wbemcore.dll - ok
21:49:58.0150 3008 [ 5AE88135C6A86FCD67BA16AFBB1C8389 ] C:\Windows\System32\wbem\esscli.dll
21:49:58.0150 3008 C:\Windows\System32\wbem\esscli.dll - ok
21:49:58.0150 3008 [ 0CE66EC736B7FC526D78F7624C7D2A94 ] C:\Windows\System32\rasmans.dll
21:49:58.0150 3008 C:\Windows\System32\rasmans.dll - ok
21:49:58.0150 3008 [ 477397B432A256A50EE7E4339EB9EA14 ] C:\Windows\System32\iphlpsvc.dll
21:49:58.0150 3008 C:\Windows\System32\iphlpsvc.dll - ok
21:49:58.0166 3008 [ 6AC23D88F560593F5138F54C751A9979 ] C:\Windows\System32\sqmapi.dll
21:49:58.0166 3008 C:\Windows\System32\sqmapi.dll - ok
21:49:58.0166 3008 [ 36F0BAA49BD0EBB5E8DBDED3EC75806C ] C:\Windows\System32\wdscore.dll
21:49:58.0166 3008 C:\Windows\System32\wdscore.dll - ok
21:49:58.0166 3008 [ 598E1280E7FF3744F4B8329366CC5635 ] C:\Windows\System32\browser.dll
21:49:58.0166 3008 C:\Windows\System32\browser.dll - ok
21:49:58.0182 3008 [ BCA92CB047A4326925ECEF759DBAA233 ] C:\Windows\System32\srvsvc.dll
21:49:58.0182 3008 C:\Windows\System32\srvsvc.dll - ok
21:49:58.0182 3008 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\System32\wbem\wbemsvc.dll
21:49:58.0182 3008 C:\Windows\System32\wbem\wbemsvc.dll - ok
21:49:58.0182 3008 [ E4B72E71EC37A59FE574A998A0C0EB9B ] C:\Windows\System32\netmsg.dll
21:49:58.0182 3008 C:\Windows\System32\netmsg.dll - ok
21:49:58.0182 3008 [ B5C452BAF3A3914EF87628252EA12FEB ] C:\Windows\System32\rastapi.dll
21:49:58.0182 3008 C:\Windows\System32\rastapi.dll - ok
21:49:58.0197 3008 [ 371E3B05894549113D07CD3081ED55EF ] C:\Windows\System32\wbem\repdrvfs.dll
21:49:58.0197 3008 C:\Windows\System32\wbem\repdrvfs.dll - ok
21:49:58.0197 3008 [ 5610B0425518D185331CB8E968D060E6 ] C:\Windows\System32\wbem\wmiutils.dll
21:49:58.0197 3008 C:\Windows\System32\wbem\wmiutils.dll - ok
21:49:58.0197 3008 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\System32\hnetcfg.dll
21:49:58.0197 3008 C:\Windows\System32\hnetcfg.dll - ok
21:49:58.0213 3008 [ 5F610783FBF01F9885D80A1DB1A2F220 ] C:\Windows\System32\nci.dll
21:49:58.0213 3008 C:\Windows\System32\nci.dll - ok
21:49:58.0213 3008 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\System32\netprofm.dll
21:49:58.0213 3008 C:\Windows\System32\netprofm.dll - ok
21:49:58.0213 3008 [ F45330F0364BC8223EF835EA5E3EBB8E ] C:\Windows\System32\unimdm.tsp
21:49:58.0213 3008 C:\Windows\System32\unimdm.tsp - ok
21:49:58.0228 3008 [ E675DE8CF57D8814218733B3DAE896D7 ] C:\Windows\System32\uniplat.dll
21:49:58.0228 3008 C:\Windows\System32\uniplat.dll - ok
21:49:58.0228 3008 [ F3FB146CDBDD26FCD0CF7941C547BEE4 ] C:\Windows\System32\kmddsp.tsp
21:49:58.0228 3008 C:\Windows\System32\kmddsp.tsp - ok
21:49:58.0228 3008 [ E2F6CC0D191361EE94FEA3957653F531 ] C:\Windows\System32\hidphone.tsp
21:49:58.0228 3008 C:\Windows\System32\hidphone.tsp - ok
21:49:58.0228 3008 [ AA11A26692E0DB2996CAEFE9EC61F61F ] C:\Windows\System32\ndptsp.tsp
21:49:58.0244 3008 C:\Windows\System32\ndptsp.tsp - ok
21:49:58.0244 3008 [ 60CC965A89E2072EBD26D63D5E1E1D18 ] C:\Windows\System32\dwmcore.dll
21:49:58.0244 3008 C:\Windows\System32\dwmcore.dll - ok
21:49:58.0244 3008 [ 98963BD29723A373009B017E87BE9CE8 ] C:\Windows\System32\rasppp.dll
21:49:58.0244 3008 C:\Windows\System32\rasppp.dll - ok
21:49:58.0244 3008 [ ED752483CEE9F76F0BBE46D30158BB35 ] C:\Program Files\K7 Computing\K7TSecurity\k7crvr.dll
21:49:58.0244 3008 C:\Program Files\K7 Computing\K7TSecurity\k7crvr.dll - ok
21:49:58.0260 3008 [ 582C191F861D18B8C937FB9859B80E9C ] C:\Windows\System32\vpnike.dll
21:49:58.0260 3008 C:\Windows\System32\vpnike.dll - ok
21:49:58.0260 3008 [ 75DD1448B57D1F9382A8B59ED8E3790B ] C:\Windows\System32\raschap.dll
21:49:58.0260 3008 C:\Windows\System32\raschap.dll - ok
21:49:58.0260 3008 [ D1A079A0DE2EA524513B6930C24527A2 ] C:\Windows\System32\ipnathlp.dll
21:49:58.0260 3008 C:\Windows\System32\ipnathlp.dll - ok
21:49:58.0275 3008 [ E8D0FA821AAA7DF5EE42E1AA4D7E4193 ] C:\Windows\System32\mprapi.dll
21:49:58.0275 3008 C:\Windows\System32\mprapi.dll - ok
21:49:58.0275 3008 [ F7611E0F05B4EB272102CA9883CA98A7 ] C:\Windows\System32\netshell.dll
21:49:58.0275 3008 C:\Windows\System32\netshell.dll - ok
21:49:58.0275 3008 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\System32\p2pcollab.dll
21:49:58.0275 3008 C:\Windows\System32\p2pcollab.dll - ok
21:49:58.0291 3008 [ 80284F1985C70C86F0B5F86DA2DFE1DF ] C:\Windows\System32\QAGENTRT.DLL
21:49:58.0291 3008 C:\Windows\System32\QAGENTRT.DLL - ok
21:49:58.0291 3008 [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2 ] C:\Windows\System32\fveui.dll
21:49:58.0291 3008 C:\Windows\System32\fveui.dll - ok
21:49:58.0291 3008 [ 04D16553664796613FE98D441A0C35D7 ] C:\Windows\System32\cryptnet.dll
21:49:58.0291 3008 C:\Windows\System32\cryptnet.dll - ok
21:49:58.0291 3008 [ 2F94E3709F029512A1BD8F6C108D7B62 ] C:\Windows\System32\sscore.dll
21:49:58.0291 3008 C:\Windows\System32\sscore.dll - ok
21:49:58.0306 3008 [ 9092668DAF4061898FD3F2C19D8C7F85 ] C:\Windows\System32\clusapi.dll
21:49:58.0306 3008 C:\Windows\System32\clusapi.dll - ok
21:49:58.0306 3008 [ 9015EE5171BCB15653DA27024BD27128 ] C:\Windows\System32\resutils.dll
21:49:58.0306 3008 C:\Windows\System32\resutils.dll - ok
21:49:58.0306 3008 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\System32\rasadhlp.dll
21:49:58.0306 3008 C:\Windows\System32\rasadhlp.dll - ok
21:49:58.0322 3008 [ 15BC38A7492BEFE831966ADB477CF76F ] C:\Windows\explorer.exe
21:49:58.0322 3008 C:\Windows\explorer.exe - ok
21:49:58.0322 3008 [ 10566977FD29C4DCAE10F3D0C289E5DA ] C:\Program Files\K7 Computing\K7TSecurity\k7srcore.dll
21:49:58.0322 3008 C:\Program Files\K7 Computing\K7TSecurity\k7srcore.dll - ok
21:49:58.0322 3008 [ FD13400115D3D0D70E087AB826DF593A ] C:\Windows\System32\ExplorerFrame.dll
21:49:58.0322 3008 C:\Windows\System32\ExplorerFrame.dll - ok
21:49:58.0338 3008 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\System32\mlang.dll
21:49:58.0338 3008 C:\Windows\System32\mlang.dll - ok
21:49:58.0338 3008 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\System32\EhStorShell.dll
21:49:58.0338 3008 C:\Windows\System32\EhStorShell.dll - ok
21:49:58.0338 3008 [ 349AB4F70E2AC44970894E7F03E1576E ] C:\ProgramData\DatacardService\DCSHelper.exe
21:49:58.0338 3008 C:\ProgramData\DatacardService\DCSHelper.exe - ok
21:49:58.0338 3008 [ 57D56901BA1B27EE1EEE94497F3DB41D ] C:\Windows\System32\sppwinob.dll
21:49:58.0338 3008 C:\Windows\System32\sppwinob.dll - ok
21:49:58.0353 3008 [ B8F4A6990A6295159792B4AD189D460D ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:49:58.0353 3008 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:49:58.0353 3008 [ A4CC7227A452C4909F9499D91B184364 ] C:\Windows\System32\ncobjapi.dll
21:49:58.0353 3008 C:\Windows\System32\ncobjapi.dll - ok
21:49:58.0353 3008 [ B350509B6C9296529BC464C60FEEAEF1 ] C:\Windows\System32\wbem\wbemess.dll
21:49:58.0353 3008 C:\Windows\System32\wbem\wbemess.dll - ok
21:49:58.0369 3008 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] C:\Windows\System32\wdi.dll
21:49:58.0369 3008 C:\Windows\System32\wdi.dll - ok
21:49:58.0369 3008 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] C:\Windows\System32\hidserv.dll
21:49:58.0369 3008 C:\Windows\System32\hidserv.dll - ok
21:49:58.0369 3008 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\System32\npmproxy.dll
21:49:58.0369 3008 C:\Windows\System32\npmproxy.dll - ok
21:49:58.0369 3008 [ B7F658A2EBC07129538AD9AB35212637 ] C:\Windows\System32\wpdbusenum.dll
21:49:58.0369 3008 C:\Windows\System32\wpdbusenum.dll - ok
21:49:58.0384 3008 [ 7E82616BEE76BF5EAA5B30F681414E21 ] C:\Windows\System32\perftrack.dll
21:49:58.0384 3008 C:\Windows\System32\perftrack.dll - ok
21:49:58.0384 3008 [ 8019A904EBB6F8CFBA9E41A76A99604A ] C:\Windows\System32\wer.dll
21:49:58.0384 3008 C:\Windows\System32\wer.dll - ok
21:49:58.0384 3008 [ 786DD1892B553EFE5A004AC39775C851 ] C:\PROGRA~1\MICROS~2\Office12\GrooveShellExtensions.dll
21:49:58.0384 3008 C:\PROGRA~1\MICROS~2\Office12\GrooveShellExtensions.dll - ok
21:49:58.0400 3008 [ 36060A75D9EDB1AEF0825988C7DD8511 ] C:\Windows\System32\PortableDeviceApi.dll
21:49:58.0400 3008 C:\Windows\System32\PortableDeviceApi.dll - ok
21:49:58.0400 3008 [ 8B794AE6D5C7D42092804BC39A2EB8F6 ] C:\Windows\System32\aepic.dll
21:49:58.0400 3008 C:\Windows\System32\aepic.dll - ok
21:49:58.0400 3008 [ D99621C0735B21DCC8BC4FEF02F379EF ] C:\Windows\System32\Apphlpdm.dll
21:49:58.0400 3008 C:\Windows\System32\Apphlpdm.dll - ok
21:49:58.0416 3008 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\System32\sfc.dll
21:49:58.0416 3008 C:\Windows\System32\sfc.dll - ok
21:49:58.0416 3008 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\System32\sfc_os.dll
21:49:58.0416 3008 C:\Windows\System32\sfc_os.dll - ok
21:49:58.0416 3008 [ 86CAA1B14F29093EC790779F47C9D99F ] C:\Windows\System32\diagperf.dll
21:49:58.0416 3008 C:\Windows\System32\diagperf.dll - ok
21:49:58.0416 3008 [ C693E642ACFBDD76433AF6BE3C3EEE6F ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:49:58.0416 3008 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:49:58.0431 3008 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\System32\winrnr.dll
21:49:58.0431 3008 C:\Windows\System32\winrnr.dll - ok
21:49:58.0431 3008 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\System32\NapiNSP.dll
21:49:58.0431 3008 C:\Windows\System32\NapiNSP.dll - ok
21:49:58.0431 3008 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\System32\pnrpnsp.dll
21:49:58.0431 3008 C:\Windows\System32\pnrpnsp.dll - ok
21:49:58.0447 3008 [ 3A2BB97D54A2189C9900A735C0531B59 ] C:\Windows\System32\wshbth.dll
21:49:58.0447 3008 C:\Windows\System32\wshbth.dll - ok
21:49:58.0447 3008 [ F8E882C10AF4C29E378D1E28D4817CB1 ] C:\Windows\System32\pnpts.dll
21:49:58.0447 3008 C:\Windows\System32\pnpts.dll - ok
21:49:58.0447 3008 [ 23D5AE191D918BB82FD8027E1BA869D4 ] C:\Windows\System32\wdiasqmmodule.dll
21:49:58.0447 3008 C:\Windows\System32\wdiasqmmodule.dll - ok
21:49:58.0447 3008 [ F91FF1E51FCA30B3C3981DB7D5924252 ] C:\Windows\System32\drivers\WUDFRd.sys
21:49:58.0447 3008 C:\Windows\System32\drivers\WUDFRd.sys - ok
21:49:58.0462 3008 [ 7FFD52D73352806969D424EF327D10A7 ] C:\Windows\System32\radardt.dll
21:49:58.0462 3008 C:\Windows\System32\radardt.dll - ok
21:49:58.0462 3008 [ C6E7AB7E798167095987EBCCB76DF61B ] C:\Windows\System32\WUDFHost.exe
21:49:58.0462 3008 C:\Windows\System32\WUDFHost.exe - ok
21:49:58.0462 3008 [ 6814B25C2B339B9F509063FECA36601A ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
21:49:58.0462 3008 C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
21:49:58.0478 3008 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] C:\Windows\System32\aelupsvc.dll
21:49:58.0478 3008 C:\Windows\System32\aelupsvc.dll - ok
21:49:58.0478 3008 [ 48E1B75C6DC0232FD92BAAE4BD344721 ] C:\Windows\System32\IPSECSVC.DLL
21:49:58.0478 3008 C:\Windows\System32\IPSECSVC.DLL - ok
21:49:58.0478 3008 [ EBFC4D631D9DA54CAA2DEB6808E196AD ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
21:49:58.0478 3008 C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
21:49:58.0494 3008 [ C5C867CD7EFAC60D5021223E374DEEC5 ] C:\Windows\System32\dimsjob.dll
21:49:58.0494 3008 C:\Windows\System32\dimsjob.dll - ok
21:49:58.0494 3008 [ 16B206229B2A348C8BCD8B5A6102A979 ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.dll
21:49:58.0494 3008 C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.dll - ok
21:49:58.0494 3008 [ DB603D3FD090C66F9709EF6493C26BA3 ] C:\Windows\System32\FwRemoteSvr.dll
21:49:58.0494 3008 C:\Windows\System32\FwRemoteSvr.dll - ok
21:49:58.0494 3008 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\System32\msimg32.dll
21:49:58.0494 3008 C:\Windows\System32\msimg32.dll - ok
21:49:58.0509 3008 [ 46663013E49875B6C5BA32BC206A6519 ] C:\Windows\System32\cscui.dll
21:49:58.0509 3008 C:\Windows\System32\cscui.dll - ok
21:49:58.0509 3008 [ 49358A80DED5A4F564A203C0E0CAB253 ] C:\Windows\System32\cscdll.dll
21:49:58.0509 3008 C:\Windows\System32\cscdll.dll - ok
21:49:58.0509 3008 [ 14486EB6AF542F2BD3239F7FC3E713F7 ] C:\Windows\System32\pautoenr.dll
21:49:58.0509 3008 C:\Windows\System32\pautoenr.dll - ok
21:49:58.0525 3008 [ 0174C3636D001197F10A52DB8BBF960D ] C:\Windows\System32\certcli.dll
21:49:58.0525 3008 C:\Windows\System32\certcli.dll - ok
21:49:58.0525 3008 [ 36333D345062E42E849C0AF00CBEFC97 ] C:\Windows\System32\ntshrui.dll
21:49:58.0525 3008 C:\Windows\System32\ntshrui.dll - ok
21:49:58.0525 3008 [ 390261F19400BA8F7C318CD3DC0EE242 ] C:\Windows\System32\WUDFx.dll
21:49:58.0525 3008 C:\Windows\System32\WUDFx.dll - ok
21:49:58.0525 3008 [ 431BF8D33C8933D76FD4ED6098806A56 ] C:\Windows\System32\CertEnroll.dll
21:49:58.0525 3008 C:\Windows\System32\CertEnroll.dll - ok
21:49:58.0540 3008 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\System32\IconCodecService.dll
21:49:58.0540 3008 C:\Windows\System32\IconCodecService.dll - ok
21:49:58.0540 3008 [ 7ABBDC3B08950992D218FA1E52D52A96 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:49:58.0540 3008 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:49:58.0540 3008 [ 7DEAD9E3F65DCB2794F2711003BBF650 ] C:\Windows\System32\appinfo.dll
21:49:58.0540 3008 C:\Windows\System32\appinfo.dll - ok
21:49:58.0556 3008 [ E6EE5019E84F23C9FFFF7B6E2A5158D0 ] C:\Windows\System32\WMVCORE.DLL
21:49:58.0556 3008 C:\Windows\System32\WMVCORE.DLL - ok
21:49:58.0556 3008 [ A7DD56261518373F70F23079EB3CD0A2 ] C:\Windows\System32\WMASF.DLL
21:49:58.0556 3008 C:\Windows\System32\WMASF.DLL - ok
21:49:58.0556 3008 [ 81490FDAE27F0082E5CC2DC78DCA96FA ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:49:58.0556 3008 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:49:58.0556 3008 [ ADB45A977BD9E45790CA496DB84BA148 ] C:\Windows\System32\PortableDeviceTypes.dll
21:49:58.0556 3008 C:\Windows\System32\PortableDeviceTypes.dll - ok
21:49:58.0572 3008 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files\Google\Update\GoogleUpdate.exe

21:49:58.0572 3008 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
21:49:58.0572 3008 [ 6E05F39AF5B91CEE0D2A84501EEEDBD8 ] C:\Windows\System32\d3d10_1.dll
21:49:58.0572 3008 C:\Windows\System32\d3d10_1.dll - ok
21:49:58.0572 3008 [ 724A74BA9B5832A91562D2AC393E540B ] C:\Windows\System32\localspl.dll
21:49:58.0572 3008 C:\Windows\System32\localspl.dll - ok
21:49:58.0587 3008 [ D7953299DD7ABA019A9C7F21A1515A5D ] C:\Windows\System32\d3d10_1core.dll
21:49:58.0587 3008 C:\Windows\System32\d3d10_1core.dll - ok
21:49:58.0587 3008 [ DD76301614636306414EFA94A9AC5A03 ] C:\Windows\System32\dxgi.dll
21:49:58.0587 3008 C:\Windows\System32\dxgi.dll - ok
21:49:58.0587 3008 [ 629181C26A78EB66B0B4E774E5AC2882 ] C:\Windows\System32\spoolss.dll
21:49:58.0587 3008 C:\Windows\System32\spoolss.dll - ok
21:49:58.0603 3008 [ DDA6CFD632DCB8D9C72ADA58799BF776 ] C:\Windows\System32\PrintIsolationProxy.dll
21:49:58.0603 3008 C:\Windows\System32\PrintIsolationProxy.dll - ok
21:49:58.0603 3008 [ 07F7AE68602448F4B6D5A9A40BBA977C ] C:\Program Files\Google\Update\1.3.21.124\goopdate.dll
21:49:58.0603 3008 C:\Program Files\Google\Update\1.3.21.124\goopdate.dll - ok
21:49:58.0603 3008 [ 56D0146CDE4E9FC88FD06305E617C860 ] C:\Windows\System32\ZLhp1020.DLL
21:49:58.0603 3008 C:\Windows\System32\ZLhp1020.DLL - ok
21:49:58.0603 3008 [ A648AB50A6FE18002C762674F4E0F41C ] C:\Windows\System32\igd10umd32.dll
21:49:58.0603 3008 C:\Windows\System32\igd10umd32.dll - ok
21:49:58.0618 3008 [ D5CC5113671AC70993A5B46923212F16 ] C:\Windows\System32\FXSMON.dll
21:49:58.0618 3008 C:\Windows\System32\FXSMON.dll - ok
21:49:58.0618 3008 [ B9B3F6D8B8F1E0029C58B304632A729B ] C:\Windows\System32\msonpmon.dll
21:49:58.0618 3008 C:\Windows\System32\msonpmon.dll - ok
21:49:58.0618 3008 [ 169F916EFEAA44487E65305B7D2D754B ] C:\Windows\System32\runonce.exe
21:49:58.0618 3008 C:\Windows\System32\runonce.exe - ok
21:49:58.0634 3008 [ 2100560AF3F7F2948F2676E44DFB4ECF ] C:\Windows\System32\uDWM.dll
21:49:58.0634 3008 C:\Windows\System32\uDWM.dll - ok
21:49:58.0634 3008 [ 1D92037692E4F275EF2925AB804619E1 ] C:\Program Files\Common Files\SpeedBit\SBUpdate\SBUpdate.exe
21:49:58.0634 3008 C:\Program Files\Common Files\SpeedBit\SBUpdate\SBUpdate.exe - ok
21:49:58.0634 3008 [ B390C1D825C7687493BEDE237C6C2F25 ] C:\Windows\System32\tcpmon.dll
21:49:58.0634 3008 C:\Windows\System32\tcpmon.dll - ok
21:49:58.0650 3008 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\System32\snmpapi.dll
21:49:58.0650 3008 C:\Windows\System32\snmpapi.dll - ok
21:49:58.0650 3008 [ 596371A825C6ABB55E436B6F0966A24F ] C:\Windows\System32\wsnmp32.dll
21:49:58.0650 3008 C:\Windows\System32\wsnmp32.dll - ok
21:49:58.0650 3008 [ 8AE6DD9A6D246004DA047F704F0CC487 ] C:\Windows\System32\cmd.exe
21:49:58.0650 3008 C:\Windows\System32\cmd.exe - ok
21:49:58.0650 3008 [ 2F391DBF98702DBC9B2E0639545BB0E7 ] C:\Windows\System32\dlhsszil.dll
21:49:58.0650 3008 C:\Windows\System32\dlhsszil.dll - ok
21:49:58.0665 3008 [ 79D5BE1EA619F18CEE08F0F9EF8C2ECE ] C:\Program Files\Common Files\SpeedBit\SBUpdate\SBupd.dll
21:49:58.0665 3008 C:\Program Files\Common Files\SpeedBit\SBUpdate\SBupd.dll - ok
21:49:58.0665 3008 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.124\GoogleCrashHandler.exe
21:49:58.0665 3008 C:\Program Files\Google\Update\1.3.21.124\GoogleCrashHandler.exe - ok
21:49:58.0665 3008 [ 923CDD30092DB73EC4A0EBCDDD16C686 ] C:\Windows\System32\usbmon.dll
21:49:58.0665 3008 C:\Windows\System32\usbmon.dll - ok
21:49:58.0681 3008 [ A8EB761DE499242BECF153B2B34F020E ] C:\Windows\System32\WSDMon.dll
21:49:58.0681 3008 C:\Windows\System32\WSDMon.dll - ok
21:49:58.0681 3008 [ 206ECCF79765E9F3FC6CCA04114EE058 ] C:\Windows\System32\WSDApi.dll
21:49:58.0681 3008 C:\Windows\System32\WSDApi.dll - ok
21:49:58.0681 3008 [ BD25E3537B54C1BFF40335992B3686FD ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
21:49:58.0681 3008 C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
21:49:58.0681 3008 [ 4262220B609AD082CE66914172597A96 ] C:\Windows\System32\webservices.dll
21:49:58.0681 3008 C:\Windows\System32\webservices.dll - ok
21:49:58.0696 3008 [ 3225369E73FC336C7C7824EA53B26AD5 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
21:49:58.0696 3008 C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
21:49:58.0696 3008 [ 26EB385F014AE2592D6495E6D4E9EFE8 ] C:\Windows\System32\msxml3.dll
21:49:58.0696 3008 C:\Windows\System32\msxml3.dll - ok
21:49:58.0696 3008 [ 58E1354D5CF82E33AF9A1CD1E31C9ED7 ] C:\Windows\System32\sppobjs.dll
21:49:58.0696 3008 C:\Windows\System32\sppobjs.dll - ok
21:49:58.0712 3008 [ 89D90579E5FB1469CB0464F6512E42B7 ] C:\Windows\System32\fundisc.dll
21:49:58.0712 3008 C:\Windows\System32\fundisc.dll - ok
21:49:58.0712 3008 [ F34CFADA6C48DAA41B996D24C7D8D3CA ] C:\Windows\System32\fdPnp.dll
21:49:58.0712 3008 C:\Windows\System32\fdPnp.dll - ok
21:49:58.0712 3008 [ DBD10464E7246C9E722025DEBC093D01 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
21:49:58.0712 3008 C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
21:49:58.0728 3008 [ FA7EE2EC13600214F874C4D474CDF003 ] C:\Windows\System32\spool\prtprocs\w32x86\PPhp1020.DLL
21:49:58.0728 3008 C:\Windows\System32\spool\prtprocs\w32x86\PPhp1020.DLL - ok
21:49:58.0728 3008 [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
21:49:58.0728 3008 C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
21:49:58.0728 3008 [ 2F03490092C032392FB6FF635222B9B2 ] C:\Windows\System32\apisetschema.dll
21:49:58.0728 3008 C:\Windows\System32\apisetschema.dll - ok
21:49:58.0728 3008 [ 2F998E1FCA7749E836FDFAFE88DE9237 ] C:\Windows\System32\win32spl.dll
21:49:58.0728 3008 C:\Windows\System32\win32spl.dll - ok
21:49:58.0743 3008 [ 258A532CFFAAD910B5B14F27DCD7BFB3 ] C:\Windows\System32\inetpp.dll
21:49:58.0743 3008 C:\Windows\System32\inetpp.dll - ok
21:49:58.0743 3008 [ 72854A70D02507F21DBA4FE079618A0D ] C:\Windows\System32\en-US\cmd.exe.mui
21:49:58.0743 3008 C:\Windows\System32\en-US\cmd.exe.mui - ok
21:49:58.0743 3008 [ C4096CA42199428B3D63DC206C197F0E ] C:\Windows\System32\FXSRESM.dll
21:49:58.0743 3008 C:\Windows\System32\FXSRESM.dll - ok
21:49:58.0759 3008 [ 9ABDDAECCA28054BAEA1A4A1912F6819 ] C:\Windows\System32\en-US\conhost.exe.mui
21:49:58.0759 3008 C:\Windows\System32\en-US\conhost.exe.mui - ok
21:49:58.0759 3008 [ 0297C72529807322B152F517FDB0A9FC ] C:\Windows\SWSC.exe
21:49:58.0759 3008 C:\Windows\SWSC.exe - ok
21:49:58.0759 3008 [ 672ECBB050F17BF90FE00758596F38CA ] C:\Windows\System32\ieframe.dll
21:49:58.0759 3008 C:\Windows\System32\ieframe.dll - ok
21:49:58.0774 3008 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Dell\AppData\Local\temp\2887CDE7-83CC-43AB-9C2E-429C2594BD35.exe
21:49:58.0774 3008 C:\Users\Dell\AppData\Local\temp\2887CDE7-83CC-43AB-9C2E-429C2594BD35.exe - ok
21:49:58.0774 3008 [ E07B77C3BDC82A024E294FB67ABFEDA0 ] C:\Windows\System32\shdocvw.dll
21:49:58.0774 3008 C:\Windows\System32\shdocvw.dll - ok
21:49:58.0774 3008 [ 48610F455B27BA98ADAF6AE2A925D59D ] C:\Windows\System32\iedkcs32.dll
21:49:58.0774 3008 C:\Windows\System32\iedkcs32.dll - ok
21:49:58.0774 3008 [ AE571A4036D5770B64E10EA49CB930FE ] C:\Windows\System32\ie4uinit.exe
21:49:58.0774 3008 C:\Windows\System32\ie4uinit.exe - ok
21:49:58.0790 3008 [ A4155E8A6B30607FB2609B27493BC0AD ] C:\Windows\System32\timedate.cpl
21:49:58.0790 3008 C:\Windows\System32\timedate.cpl - ok
21:49:58.0790 3008 [ B6C4063297C7D07CD0532BDC3350436C ] C:\Windows\System32\actxprxy.dll
21:49:58.0790 3008 C:\Windows\System32\actxprxy.dll - ok
21:49:58.0790 3008 [ 1F0F6AB1808781D2A2C2CA02E712ED8C ] C:\Program Files\Windows Media Player\wmplayer.exe
21:49:58.0790 3008 C:\Program Files\Windows Media Player\wmplayer.exe - ok
21:49:58.0790 3008 [ 175383778EB24D98C84E624021E3AA0B ] C:\Windows\System32\aeevts.dll
21:49:58.0790 3008 C:\Windows\System32\aeevts.dll - ok
21:49:58.0806 3008 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\System32\linkinfo.dll
21:49:58.0806 3008 C:\Windows\System32\linkinfo.dll - ok
21:49:58.0806 3008 [ D378BFFB70923139D6A4F546864AA61C ] C:\Windows\System32\notepad.exe
21:49:58.0806 3008 C:\Windows\System32\notepad.exe - ok
21:49:58.0806 3008 [ 5744FFF8E72D105C138DAE9E17BB29FE ] C:\Program Files\Mozilla Firefox\firefox.exe
21:49:58.0806 3008 C:\Program Files\Mozilla Firefox\firefox.exe - ok
21:49:58.0821 3008 [ 2D08AC1443FFA7FBED9A5EA5FD49AEB3 ] C:\Program Files\Google\Chrome\Application\chrome.exe
21:49:58.0821 3008 C:\Program Files\Google\Chrome\Application\chrome.exe - ok
21:49:58.0821 3008 [ C01A5E602E827FD00240370C1B617608 ] C:\Windows\System32\gameux.dll
21:49:58.0821 3008 C:\Windows\System32\gameux.dll - ok
21:49:58.0821 3008 [ FBE9BC55CF7ED9CC1452F7AF02C31864 ] C:\Windows\System32\msftedit.dll
21:49:58.0821 3008 C:\Windows\System32\msftedit.dll - ok
21:49:58.0837 3008 [ 26025A46FB3FDB40FF06BBF1834093B5 ] C:\Windows\System32\msls31.dll
21:49:58.0837 3008 C:\Windows\System32\msls31.dll - ok
21:49:58.0837 3008 [ 7896EFFDEE215C172BE724A64931EF1C ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
21:49:58.0837 3008 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
21:49:58.0837 3008 [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\System32\msiltcfg.dll
21:49:58.0837 3008 C:\Windows\System32\msiltcfg.dll - ok
21:49:58.0852 3008 [ 3E19163966261CCDBA4C8C030E601998 ] C:\Windows\System32\DeviceCenter.dll
21:49:58.0852 3008 C:\Windows\System32\DeviceCenter.dll - ok
21:49:58.0852 3008 [ 9C586DF860FDC6980D901D7D708F0CCF ] C:\Program Files\K7 Computing\K7TSecurity\k7ui.dll
21:49:58.0852 3008 C:\Program Files\K7 Computing\K7TSecurity\k7ui.dll - ok
21:49:58.0852 3008 [ B22D4EC78C8F626D81F4E9EDDCA62FEA ] C:\Program Files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe
21:49:58.0852 3008 C:\Program Files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe - ok
21:49:58.0852 3008 [ 8760760326B0CE221149C961D3F72BD9 ] C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe
21:49:58.0852 3008 C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
21:49:58.0868 3008 [ D316F55B336E624048A9483FB59D3164 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
21:49:58.0868 3008 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe - ok
21:49:58.0868 3008 [ DBE2AA52B5D67DA319D33A175B8BB41E ] C:\Windows\System32\thumbcache.dll
21:49:58.0868 3008 C:\Windows\System32\thumbcache.dll - ok
21:49:58.0868 3008 [ C6408B67C2DBD2158E189E1C9C894925 ] C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE
21:49:58.0868 3008 C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE - ok
21:49:58.0884 3008 [ DC53BA349C9284775893B5377E860F2E ] C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE
21:49:58.0884 3008 C:\Program Files\Microsoft Office\Office12\POWERPNT.EXE - ok
21:49:58.0884 3008 [ 89D3DE5E2C77DCD99C56F0E46310AEA0 ] C:\Windows\System32\igfxpers.exe
21:49:58.0884 3008 C:\Windows\System32\igfxpers.exe - ok
21:49:58.0884 3008 [ A42B4C676E0E516DF6B913C338FDC53D ] C:\Program Files\Microsoft Office\Office12\MSPUB.EXE
21:49:58.0884 3008 C:\Program Files\Microsoft Office\Office12\MSPUB.EXE - ok
21:49:58.0899 3008 [ CEAA5817A65E914AA178B28F12359A46 ] C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
21:49:58.0899 3008 C:\Program Files\Microsoft Office\Office12\WINWORD.EXE - ok
21:49:58.0899 3008 [ 4A056D7392F31EDA3AE1975E7010D7E3 ] C:\Windows\System32\networkexplorer.dll
21:49:58.0899 3008 C:\Windows\System32\networkexplorer.dll - ok
21:49:58.0899 3008 [ FC3396B88F31636817D31F592A0DA848 ] C:\Program Files\Microsoft Office\Office12\OIS.EXE
21:49:58.0899 3008 C:\Program Files\Microsoft Office\Office12\OIS.EXE - ok
21:49:58.0915 3008 [ CE9BB918CF467639704C6C1352006AB0 ] C:\Program Files\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE
21:49:58.0915 3008 C:\Program Files\Common Files\microsoft shared\OFFICE12\OFFDIAG.EXE - ok
21:49:58.0915 3008 [ 35AD442D5D81F63F00D5570A3DD53108 ] C:\Program Files\Microsoft Office\Office12\MSTORE.EXE
21:49:58.0915 3008 C:\Program Files\Microsoft Office\Office12\MSTORE.EXE - ok
21:49:58.0915 3008 [ 8112D0DACAE746290FC87B3A980FA719 ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
21:49:58.0915 3008 C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe - ok
21:49:58.0915 3008 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\System32\dsound.dll
21:49:58.0915 3008 C:\Windows\System32\dsound.dll - ok
21:49:58.0930 3008 [ 5F12DCBECEE0ADE819E3F710F5508B31 ] C:\Windows\System32\hccutils.dll
21:49:58.0930 3008 C:\Windows\System32\hccutils.dll - ok
21:49:58.0930 3008 [ 308A6AC560F273068CD551D536EFB3CD ] C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe
21:49:58.0930 3008 C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe - ok
21:49:58.0930 3008 [ 5E350C463EE596321C79CF23ADA56E7A ] C:\Windows\System32\igfxsrvc.exe
21:49:58.0930 3008 C:\Windows\System32\igfxsrvc.exe - ok
21:49:58.0946 3008 [ 2C1B1E9174D94E9F6EE3CF373ABAB7DD ] C:\Windows\System32\igfxtray.exe
21:49:58.0946 3008 C:\Windows\System32\igfxtray.exe - ok
21:49:58.0946 3008 [ 5C0641AD69FEA0DD4700202ED8D7CF53 ] C:\Program Files\K7 Computing\K7TSecurity\K7OEPlgn.dll
21:49:58.0946 3008 C:\Program Files\K7 Computing\K7TSecurity\K7OEPlgn.dll - ok
21:49:58.0946 3008 [ 47F89099D140C42591BEB4FD829B6AFA ] C:\Program Files\K7 Computing\K7TSecurity\K7TSHelp.dll
21:49:58.0946 3008 C:\Program Files\K7 Computing\K7TSecurity\K7TSHelp.dll - ok
21:49:58.0946 3008 [ 87D78CF6365BDDACBE9D34B60FE0E23B ] C:\Windows\System32\hkcmd.exe
21:49:58.0946 3008 C:\Windows\System32\hkcmd.exe - ok
21:49:58.0962 3008 [ 53EE5AF5320FEA562A7A7BE6F71A534A ] C:\Windows\System32\igfxsrvc.dll
21:49:58.0962 3008 C:\Windows\System32\igfxsrvc.dll - ok
21:49:58.0962 3008 [ 38D198A2DD54A67120040566A38103BA ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
21:49:58.0962 3008 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
21:49:58.0962 3008 [ E81530A46F7AB9913FC8CF1969354493 ] C:\Windows\System32\RTCOM\RtkCfg.dll
21:49:58.0962 3008 C:\Windows\System32\RTCOM\RtkCfg.dll - ok
21:49:58.0977 3008 [ 7B2E20CAE7730B2ADD47E09FD14F18C3 ] C:\Windows\System32\igfxdev.dll
21:49:58.0977 3008 C:\Windows\System32\igfxdev.dll - ok
21:49:58.0977 3008 [ 06D938F476FEB52DB54FAA3EA1145A03 ] C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe
21:49:58.0977 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe - ok
21:49:58.0977 3008 [ 33E5A8FC8EB0EE42478F8538D0215D8F ] C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
21:49:58.0977 3008 C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
21:49:58.0977 3008 [ 19126B5388F39773DAD69392130E30B5 ] C:\Windows\System32\igfxrenu.lrc
21:49:58.0977 3008 C:\Windows\System32\igfxrenu.lrc - ok
21:49:58.0993 3008 [ 9A69089E04F060CB25657EA0EA2ED503 ] C:\Windows\System32\GfxUI.exe
21:49:58.0993 3008 C:\Windows\System32\GfxUI.exe - ok
21:49:58.0993 3008 [ 6C263E8DC9B1F9D97C243FE65A41C483 ] C:\Program Files\Anvisoft\Anvi Smart Defender\libcurl.dll
21:49:58.0993 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\libcurl.dll - ok
21:49:58.0993 3008 [ B8E421C0890356CD4A793D8A346D9096 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
21:49:58.0993 3008 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
21:49:59.0008 3008 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\64493566.sys
21:49:59.0008 3008 C:\Windows\System32\drivers\64493566.sys - ok
21:49:59.0008 3008 [ 2B8064BFF1C61C7E61232D2652894CD4 ] C:\Windows\System32\igfxress.dll
21:49:59.0008 3008 C:\Windows\System32\igfxress.dll - ok
21:49:59.0008 3008 [ 0157B343F8DB15E0C3E7CFC6A6A072A3 ] C:\Program Files\K7 Computing\K7TSecurity\K7AVMScn.exe
21:49:59.0008 3008 C:\Program Files\K7 Computing\K7TSecurity\K7AVMScn.exe - ok
21:49:59.0024 3008 [ 3B4E438789DE4D459D57A6CC73D46B24 ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe
21:49:59.0024 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe - ok
21:49:59.0024 3008 [ 6EC594AB7EFA45EACDE65FD4040F53D9 ] C:\Windows\System32\riched20.dll
21:49:59.0024 3008 C:\Windows\System32\riched20.dll - ok
21:49:59.0024 3008 [ 63C8C9657A1D4F940B1710F6E1B28FBB ] C:\Program Files\K7 Computing\K7TSecurity\K7SysMon.Exe
21:49:59.0024 3008 C:\Program Files\K7 Computing\K7TSecurity\K7SysMon.Exe - ok
21:49:59.0024 3008 [ 495926E657DD02E6A2E3EC556C53983A ] C:\Users\Dell\Desktop\RogueKiller.exe
21:49:59.0024 3008 C:\Users\Dell\Desktop\RogueKiller.exe - ok
21:49:59.0040 3008 [ 73165EE830627D2B974124F57209F98F ] C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
21:49:59.0040 3008 C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe - ok
21:49:59.0040 3008 [ BE3AB4803C963BE0357541EC3B17D443 ] C:\Users\Dell\Desktop\aswMBR.exe
21:49:59.0040 3008 C:\Users\Dell\Desktop\aswMBR.exe - ok
21:49:59.0040 3008 [ 27CD04A0F47C403DAD539FBEB73B2BEF ] C:\Users\Dell\Desktop\ComboFix.exe
21:49:59.0040 3008 C:\Users\Dell\Desktop\ComboFix.exe - ok
21:49:59.0055 3008 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Dell\Desktop\tdsskiller.exe
21:49:59.0055 3008 C:\Users\Dell\Desktop\tdsskiller.exe - ok
21:49:59.0055 3008 [ 6850CAB88C6689D9A9936AFF033578AF ] C:\Windows\System32\stobject.dll
21:49:59.0055 3008 C:\Windows\System32\stobject.dll - ok
21:49:59.0055 3008 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\System32\SensApi.dll
21:49:59.0055 3008 C:\Windows\System32\SensApi.dll - ok
21:49:59.0055 3008 [ DAD1F753E1F8563629FBC93F8B15D9F8 ] C:\Windows\System32\batmeter.dll
21:49:59.0055 3008 C:\Windows\System32\batmeter.dll - ok
21:49:59.0071 3008 [ 0F49D070CB4B1FC4B4653846F0946C5C ] C:\Program Files\K7 Computing\K7TSecurity\K7TSSplh.exe
21:49:59.0071 3008 C:\Program Files\K7 Computing\K7TSecurity\K7TSSplh.exe - ok
21:49:59.0071 3008 [ B1B4D14CEFA7D1C0E1FD1B4ECB5DDCE2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll
21:49:59.0071 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\8c1770d45c63cf5c462eeb945ef9aa5d\mscorlib.ni.dll - ok
21:49:59.0071 3008 [ CF0F0B551F95B46055EE39F767665672 ] C:\Users\Dell\Desktop\adwcleaner.exe
21:49:59.0071 3008 C:\Users\Dell\Desktop\adwcleaner.exe - ok
21:49:59.0086 3008 [ 31F3CF74759BE9196408EEBFE9E93626 ] C:\Users\Dell\Desktop\SecurityCheck.exe
21:49:59.0086 3008 C:\Users\Dell\Desktop\SecurityCheck.exe - ok
21:49:59.0086 3008 [ 0DCA6A11D09D4C2CBE6B898B897EA915 ] C:\Windows\System32\UIAnimation.dll
21:49:59.0086 3008 C:\Windows\System32\UIAnimation.dll - ok
21:49:59.0086 3008 [ BA65E5850C8180FB03C9F996EE2D7069 ] C:\Windows\System32\tzres.dll
21:49:59.0086 3008 C:\Windows\System32\tzres.dll - ok
21:49:59.0086 3008 [ 16551C7B5F66E34D8CA3620FE1ABD906 ] C:\Program Files\K7 Computing\K7TSecurity\k7sysmn1.dll
21:49:59.0086 3008 C:\Program Files\K7 Computing\K7TSecurity\k7sysmn1.dll - ok
21:49:59.0102 3008 [ 61B193F8E187BADA79D8330E3DE35D29 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll
21:49:59.0102 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\5ba3bf5367fc012300c6566f20cb7f54\System.ni.dll - ok
21:49:59.0102 3008 [ 8B968045D75783A09592C3105F2865DA ] C:\Users\Dell\Desktop\dds.com
21:49:59.0102 3008 C:\Users\Dell\Desktop\dds.com - ok
21:49:59.0102 3008 [ BB1DCBA6C366ECAA43A68F9C1CB788DB ] C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\libcurl.dll
21:49:59.0102 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\libcurl.dll - ok
21:49:59.0118 3008 [ 803768444B482D61B92D715A05B5712A ] C:\Windows\System32\prnfldr.dll
21:49:59.0118 3008 C:\Windows\System32\prnfldr.dll - ok
21:49:59.0118 3008 [ 5A13FEB986445B7F1D88A5CA98714E57 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll
21:49:59.0118 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c2f9dd7db911053edcaaadf5fefc500a\WindowsBase.ni.dll - ok
21:49:59.0118 3008 [ ED32504409D55E8304A3415FFF714038 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll
21:49:59.0118 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7b459c5815af8123e4bf30d4e05bba65\PresentationCore.ni.dll - ok
21:49:59.0133 3008 [ 27991D7B9FCAD45AE530B7A4A7B74AEC ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll
21:49:59.0133 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\68e5eeb3c6ef18ba2dc1ad70eb74aeee\PresentationFramework.ni.dll - ok
21:49:59.0133 3008 [ 6EC0A1BC384DA75511FAEDE0B45A82D4 ] C:\Windows\System32\DXP.dll
21:49:59.0133 3008 C:\Windows\System32\DXP.dll - ok
21:49:59.0133 3008 [ 856CFFCD835528136367BB1A8FE1DB87 ] C:\Windows\System32\Syncreg.dll
21:49:59.0133 3008 C:\Windows\System32\Syncreg.dll - ok
21:49:59.0149 3008 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\System32\qmgrprxy.dll
21:49:59.0149 3008 C:\Windows\System32\qmgrprxy.dll - ok
21:49:59.0149 3008 [ F8F03D206F7D5811D630349A23E9B9B9 ] C:\Windows\ehome\ehSSO.dll
21:49:59.0149 3008 C:\Windows\ehome\ehSSO.dll - ok
21:49:59.0149 3008 [ B0222BD0F9D97488D691BCC02B051A92 ] C:\Windows\ehome\ehshell.exe
21:49:59.0149 3008 C:\Windows\ehome\ehshell.exe - ok
21:49:59.0164 3008 [ B2B3DAE040F6B5AE1DF52B0CD7631A18 ] C:\Windows\System32\AltTab.dll
21:49:59.0164 3008 C:\Windows\System32\AltTab.dll - ok
21:49:59.0164 3008 [ D875FF86664F102B97A4BD5746AD40F5 ] C:\Windows\System32\en-US\msctf.dll.mui
21:49:59.0164 3008 C:\Windows\System32\en-US\msctf.dll.mui - ok
21:49:59.0164 3008 [ F5EB1E039498D6F1D106E96CE7C1F3C6 ] C:\Windows\System32\WPDShServiceObj.dll
21:49:59.0164 3008 C:\Windows\System32\WPDShServiceObj.dll - ok
21:49:59.0180 3008 [ 2862A3819BBC9757DD27BAC41A4E0A3E ] C:\Windows\System32\pnidui.dll
21:49:59.0180 3008 C:\Windows\System32\pnidui.dll - ok
21:49:59.0180 3008 [ 82315178C6C3E2E54776567EEE0349C0 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
21:49:59.0180 3008 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
21:49:59.0180 3008 [ 45F0F12A11861CE0FB682B87A310FE41 ] C:\Windows\System32\QUTIL.DLL
21:49:59.0180 3008 C:\Windows\System32\QUTIL.DLL - ok
21:49:59.0196 3008 [ 069A3E419FDE3C63E490969C0B10E51E ] C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll
21:49:59.0196 3008 C:\Program Files\WIDCOMM\Bluetooth Software\BTNCopy.dll - ok
21:49:59.0196 3008 [ 4D87C59972B6E539FC8942CFC4969B2D ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
21:49:59.0196 3008 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
21:49:59.0196 3008 [ 622D95520182F6D3D05310D5810CA8B3 ] C:\Windows\System32\SearchIndexer.exe
21:49:59.0196 3008 C:\Windows\System32\SearchIndexer.exe - ok
21:49:59.0211 3008 [ B1E5099DC69DA99E7D90E442DE297D4F ] C:\Windows\System32\cscobj.dll
21:49:59.0211 3008 C:\Windows\System32\cscobj.dll - ok
21:49:59.0211 3008 [ 56099A6F865EA7771CBB88674545DB44 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
21:49:59.0211 3008 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
21:49:59.0211 3008 [ 07F4FCC206CCD2B95E842BB127609C1C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
21:49:59.0211 3008 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
21:49:59.0227 3008 [ D4C438883154C3D082FB2E629191C45F ] C:\Windows\System32\srchadmin.dll
21:49:59.0227 3008 C:\Windows\System32\srchadmin.dll - ok
21:49:59.0227 3008 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
21:49:59.0227 3008 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
21:49:59.0227 3008 [ 18A54E132947CD98FEA9ACCC57F98F13 ] C:\Windows\System32\alg.exe
21:49:59.0227 3008 C:\Windows\System32\alg.exe - ok
21:49:59.0242 3008 [ 1A1AD07741376454410B61AF233862B3 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll
21:49:59.0242 3008 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorrc.dll - ok
21:49:59.0242 3008 [ F4055BF49A90375FD7672A604F3B0B8E ] C:\Windows\System32\ActionCenter.dll
21:49:59.0242 3008 C:\Windows\System32\ActionCenter.dll - ok
21:49:59.0242 3008 [ 8050B4440BA297EFAE6616C4FF0EAD27 ] C:\Windows\System32\gfxSrvc.dll
21:49:59.0242 3008 C:\Windows\System32\gfxSrvc.dll - ok
21:49:59.0242 3008 [ 39CDCB109BF200CC8A05B9C7E6272D11 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:49:59.0242 3008 C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe - ok
21:49:59.0242 3008 [ 028B2DCFC468CF98B5428AF8AEF2C849 ] C:\Windows\System32\IGFXDEVLib.dll
21:49:59.0258 3008 C:\Windows\System32\IGFXDEVLib.dll - ok
21:49:59.0258 3008 [ D39DA70FEA6BD713682F70635587DA9E ] C:\Windows\System32\rasdlg.dll
21:49:59.0258 3008 C:\Windows\System32\rasdlg.dll - ok
21:49:59.0258 3008 [ F79828CEF4F501F60F94B1CD00C47041 ] C:\Windows\System32\dot3api.dll
21:49:59.0258 3008 C:\Windows\System32\dot3api.dll - ok
21:49:59.0258 3008 [ C02AA67276FEE0C15CC4D6D616BDE95E ] C:\Windows\System32\WWanAPI.dll
21:49:59.0258 3008 C:\Windows\System32\WWanAPI.dll - ok
21:49:59.0258 3008 [ 7459301D21C2E21468823F73042D9F87 ] C:\Windows\System32\d3d9.dll
21:49:59.0258 3008 C:\Windows\System32\d3d9.dll - ok
21:49:59.0274 3008 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\System32\d3d8thk.dll
21:49:59.0274 3008 C:\Windows\System32\d3d8thk.dll - ok
21:49:59.0274 3008 [ F2ED6D00921CA138289E5E0CCB9ABF87 ] C:\Windows\System32\wwapi.dll
21:49:59.0274 3008 C:\Windows\System32\wwapi.dll - ok
21:49:59.0274 3008 [ F5ECEAF5132D00B3DA565DBDD14E430F ] C:\Windows\System32\igdumdx32.dll
21:49:59.0274 3008 C:\Windows\System32\igdumdx32.dll - ok
21:49:59.0274 3008 [ 7C6A2CCF98024A5EF8740162701CE3E7 ] C:\Windows\System32\tquery.dll
21:49:59.0274 3008 C:\Windows\System32\tquery.dll - ok
21:49:59.0274 3008 [ 99BD4B9B15A823A6C46B561329178122 ] C:\Windows\System32\QAGENT.DLL
21:49:59.0274 3008 C:\Windows\System32\QAGENT.DLL - ok
21:49:59.0289 3008 [ F58E87DE0F2855BAE62EED30D306358D ] C:\Windows\System32\igdumd32.dll
21:49:59.0289 3008 C:\Windows\System32\igdumd32.dll - ok
21:49:59.0289 3008 [ 0CE7A0FFBBA93810384B6794C6901F4C ] C:\Windows\System32\mssrch.dll
21:49:59.0289 3008 C:\Windows\System32\mssrch.dll - ok
21:49:59.0289 3008 [ C2D6A4475B87651D5909E364439FDA52 ] C:\Windows\System32\FXSST.dll
21:49:59.0289 3008 C:\Windows\System32\FXSST.dll - ok
21:49:59.0289 3008 [ 92B214B7E5436A3310A9138CE4A03D23 ] C:\Windows\System32\esent.dll
21:49:59.0289 3008 C:\Windows\System32\esent.dll - ok
21:49:59.0289 3008 [ 942E57152F1CD0533644AB30EF1A4728 ] C:\Windows\System32\FXSAPI.dll
21:49:59.0289 3008 C:\Windows\System32\FXSAPI.dll - ok
21:49:59.0305 3008 [ 6B285819C2D8648837743B57FD449939 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll
21:49:59.0305 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5dd9f783008543df3e642ff1e99de4e8\System.Xml.ni.dll - ok
21:49:59.0305 3008 [ 81600E2E27ED61427AAD865B9BCDDB9D ] C:\Windows\System32\msidle.dll
21:49:59.0305 3008 C:\Windows\System32\msidle.dll - ok
21:49:59.0305 3008 [ 0DE5BAEEC29ECB3A7C0A40F1D1B02362 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll
21:49:59.0305 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\4b1350e31ff09cc583b34854816d8036\System.Configuration.ni.dll - ok
21:49:59.0305 3008 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\System32\WindowsCodecsExt.dll
21:49:59.0305 3008 C:\Windows\System32\WindowsCodecsExt.dll - ok
21:49:59.0305 3008 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\System32\icm32.dll
21:49:59.0305 3008 C:\Windows\System32\icm32.dll - ok
21:49:59.0320 3008 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\System32\mssprxy.dll
21:49:59.0320 3008 C:\Windows\System32\mssprxy.dll - ok
21:49:59.0320 3008 [ 774B2C572288D24FE58AD67F34BCAE3B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\de8525cc2e6327337e1c6917352bfe16\WindowsFormsIntegration.ni.dll
21:49:59.0320 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\de8525cc2e6327337e1c6917352bfe16\WindowsFormsIntegration.ni.dll - ok
21:49:59.0320 3008 [ 632BAD0D4268EA51F808C63DBE26F346 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll
21:49:59.0320 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\39f5a71b5185d267b0f55cd4cea26d6b\PresentationFramework.Aero.ni.dll - ok
21:49:59.0336 3008 [ B63E24E9271E99FD4540E3CA22A937DA ] C:\Windows\System32\en-US\tquery.dll.mui
21:49:59.0336 3008 C:\Windows\System32\en-US\tquery.dll.mui - ok
21:49:59.0336 3008 [ E5FC214DE61AC769CDC8FA6A61C7578D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll
21:49:59.0336 3008 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ead6be8b410d56b5576b10e56af2c180\System.Drawing.ni.dll - ok
21:49:59.0336 3008 [ 53F476476F55A27F580661BDE09C4EC4 ] C:\Windows\System32\qmgr.dll
21:49:59.0336 3008 C:\Windows\System32\qmgr.dll - ok
21:49:59.0352 3008 [ 177DF28315BF4300ECB5CBEEEE961292 ] C:\Windows\System32\webcheck.dll
21:49:59.0352 3008 C:\Windows\System32\webcheck.dll - ok
21:49:59.0352 3008 [ 704A8B68374E6309B8D67F997FD3034B ] C:\Windows\System32\bitsperf.dll
21:49:59.0352 3008 C:\Windows\System32\bitsperf.dll - ok
21:49:59.0352 3008 [ F45ED8C4F9AF862CD9992849B5203C11 ] C:\Windows\System32\bitsigd.dll
21:49:59.0352 3008 C:\Windows\System32\bitsigd.dll - ok
21:49:59.0367 3008 [ 89ED7C028A487340B7D93D5A38FDCB54 ] C:\Windows\System32\SearchProtocolHost.exe
21:49:59.0367 3008 C:\Windows\System32\SearchProtocolHost.exe - ok
21:49:59.0367 3008 [ A5D237B8673025B052C0E6FDB6A883E8 ] C:\Windows\System32\msshooks.dll
21:49:59.0367 3008 C:\Windows\System32\msshooks.dll - ok
21:49:59.0367 3008 [ 8A674F9AB20B4937357BF6F5A0938EBF ] C:\Windows\System32\SearchFilterHost.exe
21:49:59.0367 3008 C:\Windows\System32\SearchFilterHost.exe - ok
21:49:59.0367 3008 [ 5B35E2C2B2B00253C60C552107AB14D2 ] C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.dll
21:49:59.0367 3008 C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.dll - ok
21:49:59.0383 3008 [ F7EA23CC5E6BF2181F3F399D54F6EFC1 ] C:\Windows\System32\FXSSVC.exe
21:49:59.0383 3008 C:\Windows\System32\FXSSVC.exe - ok
21:49:59.0383 3008 [ D88040F816FDA31C3B466F0FA0918F29 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:49:59.0383 3008 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - ok
21:49:59.0383 3008 [ 3A74A6E33685662B125A3269B1F2114F ] C:\Windows\ehome\ehrecvr.exe
21:49:59.0383 3008 C:\Windows\ehome\ehrecvr.exe - ok
21:49:59.0383 3008 [ 8C7FE6B9559204765849BFF308764FA5 ] C:\Windows\System32\SyncCenter.dll
21:49:59.0383 3008 C:\Windows\System32\SyncCenter.dll - ok
21:49:59.0398 3008 [ D389BFF34F80CAEDE417BF9D1507996A ] C:\Windows\ehome\ehsched.exe
21:49:59.0398 3008 C:\Windows\ehome\ehsched.exe - ok
21:49:59.0398 3008 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:49:59.0398 3008 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - ok
21:49:59.0398 3008 [ 5F16C07CFA97228DB5AC98D61D770827 ] C:\Windows\System32\imapi2.dll
21:49:59.0398 3008 C:\Windows\System32\imapi2.dll - ok
21:49:59.0398 3008 [ DAF66902F08796F9C694901660E5A64A ] C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:49:59.0398 3008 C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe - ok
21:49:59.0398 3008 [ 7372A79A5F906CD959A74A32E6FEDB1F ] C:\Windows\System32\upnp.dll
21:49:59.0398 3008 C:\Windows\System32\upnp.dll - ok
21:49:59.0414 3008 [ 8CC4ECA2177510674DB92BB8F1CEBBEE ] C:\Windows\System32\hgcpl.dll
21:49:59.0414 3008 C:\Windows\System32\hgcpl.dll - ok
21:49:59.0414 3008 [ D887C9FD02AC9FA880F6E5027A43E118 ] C:\Windows\System32\ssdpsrv.dll
21:49:59.0414 3008 C:\Windows\System32\ssdpsrv.dll - ok
21:49:59.0414 3008 [ 81E1B1330468CB855D770CD12B82A22A ] C:\Program Files\Smart PDF Creator\ExplorerExt.dll
21:49:59.0414 3008 C:\Program Files\Smart PDF Creator\ExplorerExt.dll - ok
21:49:59.0414 3008 [ F11FE030158F8EF14A56A3EA9E9BD47D ] C:\Program Files\WinRAR\RarExt.dll
21:49:59.0414 3008 C:\Program Files\WinRAR\RarExt.dll - ok
21:49:59.0430 3008 [ E0AE8FDDFB86BA5DB783DB8EF70A79CA ] C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
21:49:59.0430 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll - ok
21:49:59.0430 3008 [ 66841B493B4FA59E1886246BC62E7A10 ] C:\Program Files\K7 Computing\K7TSecurity\K7SRExt.dll
21:49:59.0430 3008 C:\Program Files\K7 Computing\K7TSecurity\K7SRExt.dll - ok
21:49:59.0430 3008 [ 5CF6190CD875DA6B35256FEE573E7908 ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
21:49:59.0430 3008 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
21:49:59.0430 3008 [ 7C9BDA82E4B558B74D5E19F4213E2BC6 ] C:\Program Files\SearchPredict\SearchPredict.dll
21:49:59.0430 3008 C:\Program Files\SearchPredict\SearchPredict.dll - ok
21:49:59.0430 3008 [ BA117114BF4B094718BA561117F16445 ] C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
21:49:59.0430 3008 C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll - ok
21:49:59.0445 3008 [ 820B9AA4223EB2D83D91F0485EAF3768 ] C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll
21:49:59.0445 3008 C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll - ok
21:49:59.0445 3008 [ 5AF815EB5BC9802E5A064E2BA62BFC0C ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:49:59.0445 3008 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe - ok
21:49:59.0445 3008 [ 43530DE5728810466BF6B115C9DD7D5E ] C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe
21:49:59.0445 3008 C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe - ok
21:49:59.0461 3008 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:49:59.0461 3008 C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe - ok
21:49:59.0461 3008 [ E1BCE74A3BD9902B72599C0192A07E27 ] C:\Windows\System32\msdtc.exe
21:49:59.0461 3008 C:\Windows\System32\msdtc.exe - ok
21:49:59.0461 3008 [ A8492E3929E7B981DA541286709C8479 ] C:\Windows\System32\msiexec.exe
21:49:59.0461 3008 C:\Windows\System32\msiexec.exe - ok
21:49:59.0461 3008 [ ADAF062116B4E6D96E44D26486A87AF6 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
21:49:59.0461 3008 C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe - ok
21:49:59.0476 3008 [ 73FA09B84B23A1897809A84F976D5D99 ] C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe
21:49:59.0476 3008 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe - ok
21:49:59.0476 3008 [ 5836B9E91863A00EC1B8E785EFD86ECB ] C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:49:59.0476 3008 C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe - ok
21:49:59.0476 3008 [ FE2AA5A684B0DD9B1FAE57B7817C198B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:49:59.0476 3008 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe - ok
21:49:59.0476 3008 [ A328A46D87BB92CE4D8A4528E9D84787 ] C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:49:59.0476 3008 C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe - ok
21:49:59.0492 3008 [ 84DE1DD996B48B05ACE31AD015FA108A ] C:\Program Files\Common Files\microsoft shared\OFFICE12\ODSERV.EXE
21:49:59.0492 3008 C:\Program Files\Common Files\microsoft shared\OFFICE12\ODSERV.EXE - ok
21:49:59.0492 3008 [ 5A432A042DAE460ABE7199B758E8606C ] C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE
21:49:59.0492 3008 C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE - ok
21:49:59.0492 3008 [ 94D36C0E44677DD26981D2BFEEF2A29D ] C:\Windows\System32\Locator.exe
21:49:59.0492 3008 C:\Windows\System32\Locator.exe - ok
21:49:59.0508 3008 [ 3612108D36EA74F6F9FC5005E88E353B ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:49:59.0508 3008 C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - ok
21:49:59.0508 3008 [ D37B8CE340B71D9E0AB2440ADDB2FDBF ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:49:59.0508 3008 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
21:49:59.0508 3008 [ 41A4C781D2286208D397D72099304133 ] C:\Windows\servicing\TrustedInstaller.exe
21:49:59.0508 3008 C:\Windows\servicing\TrustedInstaller.exe - ok
21:49:59.0523 3008 [ 8344FD4FCE927880AA1AA7681D4927E5 ] C:\Windows\System32\UI0Detect.exe
21:49:59.0523 3008 C:\Windows\System32\UI0Detect.exe - ok
21:49:59.0523 3008 [ 8C4E7C49D3641BC9E299E466A7F8867D ] C:\Windows\System32\vds.exe
21:49:59.0523 3008 C:\Windows\System32\vds.exe - ok
21:49:59.0523 3008 [ 7EA2BCD94D9CFAF4C556F5CC94532A6C ] C:\Windows\System32\VSSVC.exe
21:49:59.0523 3008 C:\Windows\System32\VSSVC.exe - ok
21:49:59.0523 3008 [ 7790B77FE1E5EE47DCC66247095BB4C9 ] C:\Windows\System32\wbengine.exe
21:49:59.0523 3008 C:\Windows\System32\wbengine.exe - ok
21:49:59.0539 3008 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] C:\Windows\System32\wbem\WmiApSrv.exe
21:49:59.0539 3008 C:\Windows\System32\wbem\WmiApSrv.exe - ok
21:49:59.0539 3008 [ 77FBD400984CF72BA0FC4B3489D65F74 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
21:49:59.0539 3008 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
21:49:59.0539 3008 [ 3AC9064EBF625C19CE7DB96FC66068DF ] C:\Program Files\K7 Computing\K7TSecurity\K7TSNews.exe
21:49:59.0539 3008 C:\Program Files\K7 Computing\K7TSecurity\K7TSNews.exe - ok
21:49:59.0554 3008 [ 533631FE7DB9FF2A1D456A3D15A2DD46 ] C:\Windows\System32\icmp.dll
21:49:59.0554 3008 C:\Windows\System32\icmp.dll - ok
21:49:59.0554 3008 [ DEF30CBEA881149C2AFFDF9A059FB759 ] C:\Windows\System32\cabinet.dll
21:49:59.0554 3008 C:\Windows\System32\cabinet.dll - ok
21:49:59.0554 3008 [ DCC136DD41D6C2AA7BDE0185C11513A6 ] C:\Windows\ehome\ehrec.exe
21:49:59.0554 3008 C:\Windows\ehome\ehrec.exe - ok
21:49:59.0554 3008 [ 00B0ACE97EAA8A8F1CC1867E49B1FE74 ] C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe
21:49:59.0554 3008 C:\Windows\Installer\{EA17F4FC-FDBF-4CF8-A529-2D983132D053}\SkypeIcon.exe - ok
21:49:59.0570 3008 [ FACE86ABDF4CE94989A9DA4849498EC7 ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
21:49:59.0570 3008 C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe - ok
21:49:59.0570 3008 [ 1191D84C20F70BB4D84AE689E3E57F07 ] C:\Program Files\WinRAR\WinRAR.exe
21:49:59.0570 3008 C:\Program Files\WinRAR\WinRAR.exe - ok
21:49:59.0570 3008 [ 22B96CB6C440370E58102205EA6BE71A ] C:\Program Files\K7 Computing\K7TSecurity\k7tsmain.exe
21:49:59.0570 3008 C:\Program Files\K7 Computing\K7TSecurity\k7tsmain.exe - ok
21:49:59.0570 3008 [ 6CD61FE5E16D0B8D4E0F45463D68E3B9 ] C:\Program Files\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe
21:49:59.0570 3008 C:\Program Files\Nero\Nero 7\Nero StartSmart\NeroStartSmart.exe - ok
21:49:59.0570 3008 [ F6954C32570EA632479C2D7E1145DD58 ] C:\Program Files\Yahoo! Games\Fishdom H20 - Hidden Odyssey\Fishdom H2O.exe
21:49:59.0570 3008 C:\Program Files\Yahoo! Games\Fishdom H20 - Hidden Odyssey\Fishdom H2O.exe - ok
21:49:59.0586 3008 [ 0210212465428BDC95E25AC20C78945A ] C:\Program Files\Edimax\11n USB Wireless LAN Utility\ReStart.exe
21:49:59.0586 3008 C:\Program Files\Edimax\11n USB Wireless LAN Utility\ReStart.exe - ok
21:49:59.0586 3008 [ 56AF5C59BC15F3F94845E5ECA9F8A3E6 ] C:\Program Files\BSNL 3G Data Card\BSNL 3G\BSNL 3G.exe
21:49:59.0586 3008 C:\Program Files\BSNL 3G Data Card\BSNL 3G\BSNL 3G.exe - ok
21:49:59.0586 3008 [ F031EF440952027E13A4AFAC512266D1 ] C:\Windows\Installer\{BF6F1CCB-4666-412B-810E-B6002BC01E33}\BSNL_3G.exe21_D5281F1C174F40088ADC41871C5C16EF.exe
21:49:59.0586 3008 C:\Windows\Installer\{BF6F1CCB-4666-412B-810E-B6002BC01E33}\BSNL_3G.exe21_D5281F1C174F40088ADC41871C5C16EF.exe - ok
21:49:59.0586 3008 [ 21EF4BB2A6FF4116FD83FAEE52D4A416 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
21:49:59.0586 3008 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - ok
21:49:59.0601 3008 [ 484ACF6AF85A29AC52F3CF054DFDE9D3 ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
21:49:59.0601 3008 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - ok
21:49:59.0601 3008 [ 68F21BF71D2AFF8D9AD6EC9604E97AC0 ] C:\Program Files\Microsoft Office\Office12\MSACCESS.EXE
21:49:59.0601 3008 C:\Program Files\Microsoft Office\Office12\MSACCESS.EXE - ok
21:49:59.0601 3008 [ C0F4A57BA5E09A28AE3D2F67ED219EEA ] C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
21:49:59.0601 3008 C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe - ok
21:49:59.0601 3008 [ 44044CB173F7082CCAC39678943380CA ] C:\Users\Dell\Downloads\cbsidlm-tr1_8-Desktop_Plagiarism_Checker-ORG2-75628736.exe
21:49:59.0601 3008 C:\Users\Dell\Downloads\cbsidlm-tr1_8-Desktop_Plagiarism_Checker-ORG2-75628736.exe - ok
21:49:59.0617 3008 [ 89984415BF772D2C8595EEBC475BCFDB ] C:\Program Files\VideoLAN\VLC\vlc.exe
21:49:59.0617 3008 C:\Program Files\VideoLAN\VLC\vlc.exe - ok
21:49:59.0617 3008 [ 424B044F5591C010A38D8FA7831C6FA3 ] C:\Program Files\Smart PDF Creator\Smart PDF Creator.exe
21:49:59.0617 3008 C:\Program Files\Smart PDF Creator\Smart PDF Creator.exe - ok
21:49:59.0617 3008 [ FAFE367D032ED82E9332B4C741A20216 ] C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:49:59.0617 3008 C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe - ok
21:49:59.0617 3008 [ 4884DA7754823B44CCC2B2106F21146E ] C:\Windows\System32\calc.exe
21:49:59.0617 3008 C:\Windows\System32\calc.exe - ok
21:49:59.0632 3008 [ D6CC2A45A1951ACA0905D07D16668C22 ] C:\Program Files\Reliance Netconnect+\Reliance Netconnect.exe
21:49:59.0632 3008 C:\Program Files\Reliance Netconnect+\Reliance Netconnect.exe - ok
21:49:59.0632 3008 [ 32BE4A1FAFCCD5CA9AB0CE772C43D5E2 ] C:\Windows\System32\SnippingTool.exe
21:49:59.0632 3008 C:\Windows\System32\SnippingTool.exe - ok
21:49:59.0632 3008 [ 2C32E3E596CFE660353753EABEFB0540 ] C:\Program Files\Internet Explorer\iexplore.exe
21:49:59.0632 3008 C:\Program Files\Internet Explorer\iexplore.exe - ok
21:49:59.0632 3008 [ 9130377F87A2153FEAB900A00EA1EBFF ] C:\Windows\System32\control.exe
21:49:59.0632 3008 C:\Windows\System32\control.exe - ok
21:49:59.0632 3008 [ F7351DE406289F3A2FC6E0586A24082F ] C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
21:49:59.0632 3008 C:\Program Files\Microsoft Office\Office12\GROOVE.EXE - ok
21:49:59.0648 3008 [ 597251E85F576FF61C67B2BC1AE65F0F ] C:\Program Files\Microsoft Office\Office12\INFOPATH.EXE
21:49:59.0648 3008 C:\Program Files\Microsoft Office\Office12\INFOPATH.EXE - ok
21:49:59.0648 3008 [ E745BC62FE98CE4DA12D7B18F5DDBA3F ] C:\Program Files\Windows NT\Accessories\wordpad.exe
21:49:59.0648 3008 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
21:49:59.0648 3008 [ 7255C3AC9F65161062FE5161BB743A5F ] C:\Program Files\Microsoft Office\Office12\MSOHTMED.EXE
21:49:59.0648 3008 C:\Program Files\Microsoft Office\Office12\MSOHTMED.EXE - ok
21:49:59.0648 3008 [ 5B3F7F89B618F6877831013EA497D8F9 ] C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\devenv.exe
21:49:59.0648 3008 C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\devenv.exe - ok
21:49:59.0664 3008 [ B4CA51F87E301789E2C7F746EB396AA4 ] C:\Windows\System32\mobsync.exe
21:49:59.0664 3008 C:\Windows\System32\mobsync.exe - ok
21:49:59.0664 3008 [ 47452A48C32AAE0795DE5732EA4A32DC ] C:\Program Files\Anvisoft\Anvi Smart Defender\ASD.exe
21:49:59.0664 3008 C:\Program Files\Anvisoft\Anvi Smart Defender\ASD.exe - ok
21:49:59.0664 3008 [ FD97EB722401938AD9C3E4BFAB1519A4 ] C:\Windows\System32\consent.exe
21:49:59.0664 3008 C:\Windows\System32\consent.exe - ok
21:49:59.0664 3008 [ F148865E4AC4F715E322EA06E6E21D84 ] C:\Windows\System32\wbem\NCProv.dll
21:49:59.0664 3008 C:\Windows\System32\wbem\NCProv.dll - ok
21:49:59.0679 3008 [ 601A137F6AB5F9E2151ED364E8787D8A ] C:\Program Files\K7 Computing\K7TSecurity\K7TSReminder.exe
21:49:59.0679 3008 C:\Program Files\K7 Computing\K7TSecurity\K7TSReminder.exe - ok
21:49:59.0679 3008 [ C72F3551FFBE757D8110ACDF4B2ADB88 ] C:\Program Files\K7 Computing\K7TSecurity\K7TSRemRes.dll
21:49:59.0679 3008 C:\Program Files\K7 Computing\K7TSecurity\K7TSRemRes.dll - ok
21:49:59.0679 3008 [ 395B08A4F4FE4BC39ECA0801C0D5E0D0 ] C:\Windows\System32\riched32.dll
21:49:59.0679 3008 C:\Windows\System32\riched32.dll - ok
21:49:59.0679 3008 [ 2368136FF8B2EDDADD5D81EE04693A36 ] C:\Program Files\Google\Update\1.3.21.124\goopdateres_en.dll
21:49:59.0679 3008 C:\Program Files\Google\Update\1.3.21.124\goopdateres_en.dll - ok
21:49:59.0679 3008 [ A33408CC036F9C08142B11BE5E93F0A1 ] C:\Windows\System32\wuaueng.dll
21:49:59.0679 3008 C:\Windows\System32\wuaueng.dll - ok
21:49:59.0695 3008 [ 387A8A473ECC5BA02CF453277C1F3274 ] C:\Windows\System32\mspatcha.dll
21:49:59.0695 3008 C:\Windows\System32\mspatcha.dll - ok
21:49:59.0695 3008 [ 2EA045FDD715FB03F65F6915B7FE8916 ] C:\Windows\System32\wups.dll
21:49:59.0695 3008 C:\Windows\System32\wups.dll - ok
21:49:59.0695 3008 [ 2B3D64E795F6080E02CFCD9B8553AE2F ] C:\Windows\System32\wups2.dll
21:49:59.0695 3008 C:\Windows\System32\wups2.dll - ok
21:49:59.0695 3008 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\System32\msisip.dll
21:49:59.0695 3008 C:\Windows\System32\msisip.dll - ok
21:49:59.0710 3008 [ F175E53C7C3B25A9029A131FB578B155 ] C:\Windows\System32\wscinterop.dll
21:49:59.0710 3008 C:\Windows\System32\wscinterop.dll - ok
21:49:59.0710 3008 [ 5242F0AB85D48F18C33783C86879DC19 ] C:\Windows\System32\wscapi.dll
21:49:59.0710 3008 C:\Windows\System32\wscapi.dll - ok
21:49:59.0710 3008 [ 7FD5532C142DB6C9CC47AA4DCF71FDEC ] C:\Windows\System32\wscui.cpl
21:49:59.0710 3008 C:\Windows\System32\wscui.cpl - ok
21:49:59.0710 3008 [ 9A6DEDBE309AA0CE2C31EE6799B38E4F ] C:\Windows\System32\werconcpl.dll
21:49:59.0710 3008 C:\Windows\System32\werconcpl.dll - ok
21:49:59.0710 3008 [ 173ACF6C35627AF10D8A449AB8D61C0E ] C:\Windows\System32\framedynos.dll
21:49:59.0710 3008 C:\Windows\System32\framedynos.dll - ok
21:49:59.0726 3008 [ AC804569BB2364FB6017370258A4091B ] C:\Windows\System32\wercplsupport.dll
21:49:59.0726 3008 C:\Windows\System32\wercplsupport.dll - ok
21:49:59.0726 3008 [ 57CE9D8350B1DD76EEC596C423C3C0BC ] C:\Windows\System32\hcproviders.dll
21:49:59.0726 3008 C:\Windows\System32\hcproviders.dll - ok
21:49:59.0726 3008 [ 4DDC46C5FEECF9EB92AD554D6ED37E0C ] C:\Program Files\Internet Explorer\ieproxy.dll
21:49:59.0726 3008 C:\Program Files\Internet Explorer\ieproxy.dll - ok
21:49:59.0726 3008 [ E8F6851E4600CD3674422487EE240941 ] C:\Windows\System32\wshext.dll
21:49:59.0726 3008 C:\Windows\System32\wshext.dll - ok
21:49:59.0726 3008 [ 2875B386B45B8A77E2343C5E129AE50C ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
21:49:59.0726 3008 C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll - ok
21:49:59.0726 3008 ============================================================
21:49:59.0726 3008 Scan finished
21:49:59.0742 3008 ============================================================
21:49:59.0742 2740 Detected object count: 3
21:49:59.0742 2740 Actual detected object count: 3
21:50:24.0717 2740 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:50:24.0717 2740 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:50:24.0717 2740 Realtek11nCU ( UnsignedFile.Multi.Generic ) - skipped by user
21:50:24.0717 2740 Realtek11nCU ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:50:24.0717 2740 Reliance Netconnect. RunOuc ( UnsignedFile.Multi.Generic ) - skipped by user
21:50:24.0717 2740 Reliance Netconnect. RunOuc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:50:31.0254 3580 Deinitialize success

aswMBR.txt
***********

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-15 21:51:52
-----------------------------
21:51:52.248 OS Version: Windows 6.1.7600
21:51:52.248 Number of processors: 4 586 0x2505
21:51:52.248 ComputerName: DELL-PC UserName: Dell
21:51:57.209 Initialize success
21:53:19.623 AVAST engine defs: 12121501
21:54:04.598 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
21:54:04.598 Disk 0 Vendor: ST9500325AS D005DEM1 Size: 476940MB BusType: 11
21:54:04.614 Disk 0 MBR read successfully
21:54:04.629 Disk 0 MBR scan
21:54:04.629 Disk 0 unknown MBR code
21:54:04.645 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:54:04.660 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 49900 MB offset 206848
21:54:04.676 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 100000 MB offset 102402048
21:54:04.692 Disk 0 Partition - 00 0F Extended LBA 326937 MB offset 307204094
21:54:04.723 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 100000 MB offset 307204096
21:54:04.738 Disk 0 Partition - 00 05 Extended 100001 MB offset 512004096
21:54:04.754 Disk 0 Partition 5 00 07 HPFS/NTFS NTFS 100000 MB offset 512006144
21:54:04.770 Disk 0 Partition - 00 05 Extended 100001 MB offset 921606146
21:54:05.316 Disk 0 Partition 6 00 07 HPFS/NTFS NTFS 100000 MB offset 716808192
21:54:05.331 Disk 0 Partition - 00 05 Extended 977 MB offset 1331210242
21:54:05.362 Disk 0 Partition 7 00 82 Linux swap 976 MB offset 921610240
21:54:05.378 Disk 0 Partition - 00 05 Extended 25958 MB offset 1538013186
21:54:05.425 Disk 0 Partition 8 00 83 Linux 25957 MB offset 923611136
21:54:05.472 Disk 0 scanning sectors +976771072
21:54:05.581 Disk 0 scanning C:\Windows\system32\drivers
21:54:24.472 Service scanning
21:55:15.110 Modules scanning
21:55:23.269 Disk 0 trace - called modules:
21:55:23.285 ntkrnlpa.exe CLASSPNP.SYS disk.sys ataport.SYS halmacpi.dll PCIIDEX.SYS msahci.sys
21:55:23.300 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8693d030]
21:55:23.316 3 CLASSPNP.SYS[8bbbd59e] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x86638030]
21:55:23.753 AVAST engine scan C:\Windows
21:55:41.490 AVAST engine scan C:\Windows\system32
22:00:44.786 AVAST engine scan C:\Windows\system32\drivers
22:01:08.045 AVAST engine scan C:\Users\Dell
22:03:49.459 AVAST engine scan C:\ProgramData
22:04:24.964 Scan finished successfully
22:04:43.747 Disk 0 MBR has been saved successfully to "C:\Users\Dell\Desktop\MBR.dat"
22:04:43.762 The log file has been saved successfully to "C:\Users\Dell\Desktop\aswMBR.txt"

Since the TDSSKiller log was too big, I had to split it into multiple posts. Hope it is ok.

Awaiting your instructions.

Regards
Aarthi

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:32 PM

Posted 15 December 2012 - 05:21 PM

Greetings

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Open Notepad and copy/paste the text in the box into the window:

ClearJavaCache:: 

File::
c:\windows\Tasks\ieihbtjllg.job
c:\windows\system32\msacm325.dll

Save it to your desktop as CFScript.txt

Refering to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 17 December 2012 - 06:25 AM

Thanks Gringo!

I ran into some problem this time.

First, I ran Combofix by dragging and dropping the created text file. It started running and it was waiting in the "Preparing" phase for more than 15 minutes or so. I am sure that I DID NOT click inside the window which might have caused it to stall. So, I closed it and I tried to run it again. But this time the command prompt like window does not open at all. I do not receive any error messages as well. I tried restarted the machine and running it again. Still the same situation.

I do not know if I did something wrong. Kindly let me know how to proceed now. Thanks!

Regards
Aarthi

#13 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:32 PM

Posted 17 December 2012 - 02:45 PM

Hello

Ok lets try this, I want you to run the combofix script in safe mode but it is very important that when combofix reboots the computer for you to direct it back into safe mode so it can finish the scan.

Boot into Safe Mode

Reboot your computer in Safe Mode.
  • If the computer is running, shut down Windows, and then turn off the power.
  • Wait 30 seconds, and then turn the computer on.
  • Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
  • Ensure that the Safe Mode option is selected.
  • Press Enter. The computer then begins to start in Safe mode.
  • Login on your usual account.

after combofix has finished its scan please post the report back here.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#14 aarthiyamu

aarthiyamu
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 17 December 2012 - 04:28 PM

Thanks Gringo!

Please find the combofix scan log below. Please note that combofix did not have to restart to finish the scan.

ComboFix 12-12-14.01 - Dell 17-Dec-12 21:13:43.2.4 - x86 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2997.2080 [GMT 0:00]
Running from: c:\users\Dell\Desktop\ComboFix.exe
Command switches used :: c:\users\Dell\Desktop\CFScript.txt
AV: K7TotalSecurity *Enabled/Updated* {96053243-D4B1-7CB4-BBA0-4BFBC0A5A129}
FW: K7TotalSecurity *Enabled* {AE3EB366-9EDE-7DEC-90FF-E2CE3E76E652}
SP: K7TotalSecurity *Enabled/Updated* {2D64D3A7-F28B-733A-8110-7089BB22EB94}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
FILE ::
"c:\windows\system32\msacm325.dll"
"c:\windows\Tasks\ieihbtjllg.job"
.
ADS - Windows: deleted 192 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\msacm325.dll
c:\windows\Tasks\ieihbtjllg.job
.
.
((((((((((((((((((((((((( Files Created from 2012-11-17 to 2012-12-17 )))))))))))))))))))))))))))))))
.
.
2012-12-17 21:17 . 2012-12-17 21:18 -------- d-----w- c:\users\Dell\AppData\Local\temp
2012-12-17 21:17 . 2012-12-17 21:17 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-16 23:40 . 2012-12-16 23:40 -------- d-----w- c:\programdata\Trymedia
2012-12-11 18:56 . 2012-12-11 18:56 -------- d-----w- c:\users\Dell\AppData\Roaming\Malwarebytes
2012-12-11 18:56 . 2012-12-11 18:56 -------- d-----w- c:\programdata\Malwarebytes
2012-12-11 18:56 . 2012-09-29 19:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-11 18:56 . 2012-12-11 18:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-12-11 18:15 . 2009-07-14 01:14 227328 ----a-w- c:\windows\system32\taskmgr - Copy.exe
2012-12-11 14:34 . 2012-12-11 14:34 31560 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2012-12-11 04:32 . 2012-12-11 04:32 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-12-10 02:44 . 2012-12-10 02:44 -------- d-----w- c:\users\Dell\AppData\Roaming\Anvisoft
2012-12-10 02:44 . 2012-11-07 07:16 22864 ----a-w- c:\windows\system32\drivers\asdrs.sys
2012-12-10 02:44 . 2012-11-07 07:16 14160 ----a-w- c:\windows\system32\drivers\asdws.sys
2012-12-10 02:44 . 2012-11-07 07:16 16208 ----a-w- c:\windows\system32\drivers\asdrm.sys
2012-12-10 02:43 . 2012-12-10 02:43 -------- d-----w- c:\programdata\Anvisoft
2012-12-10 02:43 . 2012-12-10 02:43 -------- d-----w- c:\program files\Anvisoft
2012-12-10 02:07 . 2012-12-11 18:04 -------- d-----w- c:\windows\DDABC66756B3412282B02F5782EA2F9A.TMP
2012-12-04 19:43 . 2012-12-11 22:53 -------- d-----w- c:\program files\Google
2012-12-04 19:42 . 2012-12-04 23:22 -------- d-----w- c:\users\Dell\AppData\Local\Google
2012-11-27 19:29 . 2012-11-27 19:29 -------- d-----w- c:\program files\Common Files\Skype
2012-11-27 19:29 . 2012-11-27 19:29 -------- d-----r- c:\program files\Skype
2012-11-22 18:58 . 2010-03-29 15:00 139374 ----a-w- c:\windows\system32\dlhsszil.dll
2012-11-20 20:05 . 2012-12-04 23:21 -------- d-----w- c:\users\Dell\AppData\Local\Deployment
2012-11-20 20:05 . 2012-11-20 20:05 -------- d-----w- c:\users\Dell\AppData\Local\Apps
2012-11-18 10:02 . 2012-11-18 10:03 -------- d-----w- c:\program files\Cisco
2012-11-18 10:01 . 2010-08-06 06:47 648808 ----a-r- c:\windows\system32\drivers\rtl8192cu.sys
2012-11-18 10:01 . 2010-04-01 02:37 614400 ------r- c:\windows\Rtlihvs.dll
2012-11-18 10:01 . 2010-04-01 02:37 188416 ------r- c:\windows\RTLExtUI.dll
2012-11-18 10:01 . 2010-04-01 02:37 380928 ------r- c:\windows\system32\RtlUI2.exe
2012-11-18 10:00 . 2010-04-01 02:37 380928 ------r- c:\windows\RtlUI2.exe
2012-11-18 10:00 . 2010-04-01 02:37 614400 ------r- c:\windows\system32\Rtlihvs.dll
2012-11-18 10:00 . 2010-04-01 02:37 188416 ------r- c:\windows\system32\RTLExtUI.dll
2012-11-18 10:00 . 2012-11-18 10:00 -------- d-----w- c:\program files\Edimax
2012-11-18 10:00 . 2009-02-05 02:49 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-21 14:56 . 2012-04-09 11:50 87392 ----a-w- c:\windows\system32\drivers\K7FWHlpr.sys
2012-11-13 06:27 . 2012-04-09 11:50 1080800 ----a-w- c:\windows\system32\drivers\K7Sentry.sys
2012-11-29 08:27 . 2012-12-11 04:32 262112 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{389943B0-C3A2-4E69-82CB-8596A84CB3DC}]
2011-06-28 12:11 498840 ----a-w- c:\program files\SearchPredict\SearchPredict.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{92A9ACF4-9333-43AE-9698-DB283326F87F}]
2012-06-20 08:31 2660016 ----a-w- c:\program files\SpeedBit Video Downloader\Toolbar\tbcore3.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"K7TSStart"="c:\program files\K7 Computing\K7TSecurity\K7TSecurity.exe" [2012-11-02 162400]
"SmartSoft PDF Printer Agent"="c:\program files\Smart PDF Creator\SmartSoft PDF Printer Agent.exe" [2011-07-19 50560]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-02-02 8493600]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 172568]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"MCtlSuc"="c:\program files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe" [2010-01-13 91136]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 137752]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 171032]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016]
"Anvi Smart Defender"="c:\program files\Anvisoft\Anvi Smart Defender\ASDTray.exe" [2012-11-15 1437464]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-02 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"ADBlocker"="c:\program files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerTray.exe" [2012-11-14 962888]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-1 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0K7TSDbg
.
R0 K7Sentry;K7AntiVirus MiniFilter Driver;c:\windows\system32\drivers\K7Sentry.sys [x]
R1 asdnet;asdnet;c:\program files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\sys\x86\asdnet.sys [x]
R1 asdrm;asdrm;c:\windows\system32\DRIVERS\asdrm.sys [x]
R2 ADBlockerSrv;AD Blocker Service;c:\program files\Anvisoft\Anvi Smart Defender\toolbox\adblocker\ADBlockerSrv.exe [x]
R2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSrv.exe [x]
R2 asdrs;AntiMalware Host-based Intrusion Prevention System;c:\windows\system32\DRIVERS\asdrs.sys [x]
R2 asdsrv;Anvi Smart Defender Realtime Guard Service;c:\program files\Anvisoft\Anvi Smart Defender\ASDSrv.exe [x]
R2 asdws;AnviSmartDefender Web Guard;c:\windows\system32\DRIVERS\asdws.sys [x]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [x]
R2 K7CrvSvc;K7Carnivore Service;c:\program files\K7 Computing\K7TSecurity\K7CrvSvc.exe [x]
R2 K7EmlPxy;K7Computng - EMail Proxy Server;c:\program files\K7 Computing\K7TSecurity\K7EmlPxy.exe [x]
R2 K7FWSrvc;K7Firewall Services;c:\program files\K7 Computing\K7TSecurity\K7FWSrvc.exe [x]
R2 K7PSSrvc;K7Privacy Services;c:\program files\K7 Computing\K7TSecurity\K7PSSrvc.exe [x]
R2 K7RTScan;K7RealTime AntiVirus Services;c:\program files\K7 Computing\K7TSecurity\K7RTScan.exe [x]
R2 K7TSMngr;K7TotalSecurity Manager;c:\program files\K7 Computing\K7TSecurity\K7TSMngr.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 nlsX86cc;NLS Service;c:\windows\system32\NLSSRV32.EXE [x]
R2 QDLService2kDell;Qualcomm Gobi 2000 Download Service (Dell);c:\program files\QUALCOMM\QDLService2k\QDLService2kDell.exe [x]
R2 Realtek11nCU;Realtek11nCU;c:\program files\Edimax\11n USB Wireless LAN Utility\RtlService.exe [x]
R2 Reliance Netconnect. RunOuc;Reliance Netconnect. OUC;c:\program files\Reliance Netconnect+\UpdateDog\ouc.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 esgiguard;esgiguard; [x]
R3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\DRIVERS\ew_hwusbdev.sys [x]
R3 HSPADataCardusbmdm;HSPADataCard Proprietary USB Driver;c:\windows\system32\DRIVERS\HSPADataCardusbmdm.sys [x]
R3 HSPADataCardusbnmea;HSPADataCard NMEA Port;c:\windows\system32\DRIVERS\HSPADataCardusbnmea.sys [x]
R3 HSPADataCardusbser;HSPADataCard Diagnostic Port;c:\windows\system32\DRIVERS\HSPADataCardusbser.sys [x]
R3 HSPADataCardusbvoice;HSPADataCard VoUSB Port;c:\windows\system32\DRIVERS\HSPADataCardusbvoice.sys [x]
R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
R3 K7SpmSrc;K7SpmSrc;c:\program files\K7 Computing\K7TSecurity\K7SpmSrc.exe [x]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [x]
R3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
R3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192cu.sys [x]
R4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [x]
S0 K7FWHlpr;K7FWHlpr;c:\windows\system32\drivers\K7FWHlpr.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-12-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-12-11 22:52]
.
2012-12-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-12-11 22:52]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://search.speedbit.com/?aff=svd_0
IE: &Clean Traces - c:\program files\DAP\Privacy Package\dapcleanerie.htm
IE: &Download with &DAP - c:\program files\DAP\dapextie.htm
IE: Download &all with DAP - c:\program files\DAP\dapextie2.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.1
Name-Space Handler: ftp\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DAP\dapie.dll
Name-Space Handler: http\ZDA - {5BFA1DAF-5EDC-11D2-959E-00C00C02DA5E} - c:\progra~1\DAP\dapie.dll
FF - ProfilePath - c:\users\Dell\AppData\Roaming\Mozilla\Firefox\Profiles\44mfo1do.default\
FF - prefs.js: browser.search.defaulturl - hxxp://home.speedbit.com/search.aspx?site=shdefault&pid=%s&aid=%s&shr=%d&q=
FF - prefs.js: browser.search.selectedEngine - Speedbit
FF - prefs.js: browser.startup.homepage - hxxp://home.speedbit.com/?pid=%s&aid=%s
FF - prefs.js: keyword.URL - hxxp://home.speedbit.com/search.aspx?site=shdefault&pid=%s&aid=%s&shr=%d&q=
FF - ExtSQL: 2012-12-11 19:24; k7srff@k7computing.com; c:\program files\K7 Computing\K7TSecurity\K7SR
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-05989346.sys
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\esgiguard]
"ImagePath"=""
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-12-17 21:18:53
ComboFix-quarantined-files.txt 2012-12-17 21:18
ComboFix2.txt 2012-12-15 20:11
.
Pre-Run: 27,720,323,072 bytes free
Post-Run: 27,651,432,448 bytes free
.
- - End Of File - - 89F1CA3E5FAD4471B1B677FB126668FE


Cheers
Aarthi

#15 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:07:32 PM

Posted 17 December 2012 - 05:41 PM

These logs are looking allot better. But we still have some work to do.

Please print out these instructions, or copy them to a Notepad file. It will make it easier for you to follow the instructions and complete all of the necessary steps..

uninstall some programs

NOTE** Because of the cleanup process some of the programs I have listed may not be in add/remove anymore this is fine just move to the next item on the list.

You can remove these programs using add/remove or you can use the free uninstaller from Revo (Revo does allot better of a job)

Programs to remove

Adobe Reader 9.2
Download Accelerator Plus (DAP)
[/list]


  • Please download and install Revo Uninstaller Free
  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes
  • when the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check/tick the bolded items only on the list then click Delete
  • when prompted click on Yes and then on next.
  • put a check on any folders that are found and select delete
  • when prompted select yes then on next
  • Once done click Finish.
.

Update Adobe Reader

Recently there have been vulnerabilities detected in older versions of Adobe Reader. It is strongly suggested that you update to the current version.

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

If you don't like Adobe Reader (53 MB), you can download Foxit PDF Reader(7 MB) from here. It's a much smaller file to download and uses a lot less resources than Adobe Reader.

Note: When installing FoxitReader, be careful not to install anything to do with AskBar.
[/list]

Install Java:

Please go here to install Java

  • click on the Free Java Download Button
  • click on Agree and start Free download
  • click on Run
  • click on run again
  • click on install
  • when install is complete click on close

Clean Out Temp Files

  • This small application you may want to keep and use once a week to keep the computer clean.

    Download CCleaner from here http://www.ccleaner.com/

  • Run the installer to install the application.
  • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
  • Run CCleaner. (make sure under Windows tab all the boxes of Internet Explorer and Windows explorer are checked. Under System check Empty Recycle Bin and Temporary Files. Under Application tab all the boxes should be checked).
  • Click Run Cleaner.
  • Close CCleaner.

: Malwarebytes' Anti-Malware :

  • I would like you to rerun MBAM
  • Double-click mbam icon
  • go to the update tab at the top
  • click on check for updates
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
  • If you accidentally close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.


Download HijackThis

If you have any problems running Hijackthis see NOTE** below (Host file not read, blank notepad ...)

  • Go Here to download HijackThis Installer
  • Save HijackThis Installer to your desktop.
  • Double-click on the HijackThis Installer icon on your desktop. (Vista and Win 7 right click and run as admin)
  • By default it will install to C:\Program Files\Trend Micro\HijackThis .
  • Click on Install.
  • It will create a HijackThis icon on the desktop.
  • Once installed it will launch Hijackthis.
  • Click on the Do a system scan and save a log file button. It will scan and the log should open in notepad.
  • Click on Edit > Select All then click on Edit > Copy to copy the entire contents of the log.
  • Come back here to this thread and Paste the log in your next reply.
  • DO NOT use the Analyze This button its findings are dangerous if misinterpreted.
  • DO NOT have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.

NOTE**
sometimes we have to run it like this To run HijackThis as an administrator, right-click HijackThis.exe
(located: C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe)<--32bit
(located: C:\Program Files(86)\Trend Micro\HiJackThis\HiJackThis.exe)<--64bit
and select to run as administrator

"information and logs"

  • In your next post I need the following

  • Log From MBAM
  • report from Hijackthis
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users