Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

possible ZeroAccess infection.


  • This topic is locked This topic is locked
33 replies to this topic

#1 deepthinker

deepthinker

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 24 March 2013 - 09:35 PM

These files were identified Microsoft Security Essentials:  exploit: java/cve-2013-0422
                                                                                            trojan:win32/sirefef!cfg

 

Another program identified ZeroAccess on my computer.  Please help if possible.  thanks. 



BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 25 March 2013 - 08:38 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

Please take note:

  • If you have since resolved the original problem you were having, we would appreciate you letting us know.
  • If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.
  • If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.
  • If you have already posted a DDS log, please do so again, as your situation may have changed.
  • Use the 'Add Reply' and add the new log to this thread.


We need to see some information about what is happening in your machine.  Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available.  Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool.  No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note:  You may have to disable any script protection running if the scan fails to run.  After downloading the tool, disconnect from the internet and disable all antivirus protection.  Run the scan, enable your A/V and reconnect to the internet. 

Information on A/V control


We also need a new log from the GMER anti-rootkit Scanner



Please first disable any CD emulation programs using the steps found in this topic:


Then create another GMER log and post it as an attachment to the reply where you post your new DDS log.  Instructions on how to properly create a GMER log can be found here:




Please download ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the  save log button, save it to your desktop and post it in your next reply.



Do you have a USB Flash Drive you can use?
Thanks and again sorry for the delay.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 deepthinker

deepthinker
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 25 March 2013 - 05:11 PM

My computer works okay; the infection mainly changed the look of my screen and the internet explorer look.  It didn't change it drastically, but just enough to know something is wrong.

 

If a flash drive is the same as a jump/thumb drive, I do have one.

 

thanks for the help.

 

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16457  BrowserJavaVersion: 10.13.2
Run by Kevin at 12:06:17 on 2013-03-25
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.3061.1482 [GMT -5:00]
.
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\system32\SLsvc.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Windows\system32\FsUsbExService.Exe
C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdqserv.exe
C:\Windows\system32\lxdqcoms.exe
C:\Toshiba\IVP\ISM\pinger.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
c:\Toshiba\IVP\swupdate\swupdtmr.exe
C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Windows\system32\SearchIndexer.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Vistanita\WallShuffler\wallShuffler.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\Explorer.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wermgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k GPSvcGroup

 

 

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-03-25 12:09:17
-----------------------------
12:09:17.953    OS Version: Windows 6.0.6002 Service Pack 2
12:09:17.953    Number of processors: 2 586 0xF0D
12:09:17.955    ComputerName: KEVIN-LAPTOP  UserName: Kevin
12:09:29.872    Initialize success
12:09:33.989    AVAST engine defs: 13032501
12:13:05.547    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
12:13:05.552    Disk 0 Vendor: FUJITSU_ 0040 Size: 238475MB BusType: 3
12:13:12.470    Disk 1  \Device\Harddisk1\SR0 -> \Device\SdBus-0
12:13:12.504    Disk 1 Vendor: (  Size: 24445MB BusType: 12
12:13:13.173    Disk 0 MBR read successfully
12:13:13.182    Disk 0 MBR scan
12:13:13.948    Disk 0 Windows VISTA default MBR code
12:13:13.982    Disk 0 Partition 1 00     27 Hidden NTFS WinRE NTFS         1500 MB offset 2048
12:13:14.831    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS       236974 MB offset 3074048
12:13:14.909    Disk 0 scanning sectors +488396800
12:13:16.027    Disk 0 scanning C:\Windows\system32\drivers
12:13:43.852    Service scanning
12:13:58.259    Service MpKsl710c2d6f c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{05559D7C-4A0C-411F-9F9A-A14AE4A18277}\MpKsl710c2d6f.sys **LOCKED** 32
12:14:16.024    Modules scanning
12:14:26.908    Disk 0 trace - called modules:
12:14:26.936    ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
12:14:26.948    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86b38ac8]
12:14:26.960    3 CLASSPNP.SYS[8a7138b3] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x85922028]
12:14:30.525    AVAST engine scan C:\Windows
12:14:37.316    AVAST engine scan C:\Windows\system32
12:17:48.629    AVAST engine scan C:\Windows\system32\drivers
12:18:10.080    AVAST engine scan C:\Users\Kevin
12:30:55.683    AVAST engine scan C:\ProgramData
12:41:35.625    Scan finished successfully
17:01:48.947    Disk 0 MBR has been saved successfully to "C:\Users\Kevin\Desktop\bleepingfiles\MBR.dat"
17:01:48.964    The log file has been saved successfully to "C:\Users\Kevin\Desktop\bleepingfiles\aswMBR.txt"
 

Attached Files



#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 25 March 2013 - 06:06 PM

1.

Download AdwCleaner

  • Double click on AdwCleaner.exe to run the tool.
    ***Note: Windows Vista and Windows 7 users:
    Right click in the adwCleaner.exe and select
    Run%20as%20admin.png
  • Click the Delete button.
  • A logfile will automatically open after the scan has finished.
  • Please post the content of that logfile in your next reply.
  • Or you can find the logfile at C:\AdwCleaner[R1].txt.

 

2.

  •    
  • Download RogueKiller on the desktop
       
  • Close all the running processes
       
  • Under Vista/Seven, right click -> Run as Administrator
       
  • Otherwise just double-click on RogueKiller.exe
       
  • When prompted, Click Scan 
       
  • A report should open, give its content to your helper. (RKreport could also be found next to the executable)
       
  • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename in winlogon.exe (or winlogon.com) and try again

 

Things to include in your next reply::

AdwCleaner log

Roguekiller log

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 deepthinker

deepthinker
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 25 March 2013 - 08:31 PM

# AdwCleaner v2.115 - Logfile created 03/25/2013 at 20:09:56
# Updated 17/03/2013 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : Kevin - KEVIN-LAPTOP
# Boot Mode : Normal
# Running from : C:\Users\Kevin\Downloads\adwcleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmlkabjddkpgkgfhdhpimhcbonapngoh
Folder Deleted : C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmlkabjddkpgkgfhdhpimhcbonapngoh
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\Google\Chrome\Extensions\mmlkabjddkpgkgfhdhpimhcbonapngoh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mmlkabjddkpgkgfhdhpimhcbonapngoh
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16457
 
[OK] Registry is clean.
 
-\\ Google Chrome v25.0.1364.172
 
File : C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.30] : icon_url = "hxxp://search.conduit.com/fav.ico",
Deleted [l.33] : keyword = "search.conduit.com",
Deleted [l.36] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN18[...]
Deleted [l.37] : suggest_url = "hxxp://suggest.search.conduit.com/Suggest.ashx?q=[{searchTerms}]"
 
*************************
 
AdwCleaner[R1].txt - [6254 octets] - [24/03/2013 18:53:51]
AdwCleaner[S1].txt - [1791 octets] - [20/12/2012 19:10:09]
AdwCleaner[S2].txt - [6335 octets] - [24/03/2013 18:55:18]
AdwCleaner[S3].txt - [1586 octets] - [25/03/2013 20:09:56]
 
########## EOF - C:\AdwCleaner[S3].txt - [1646 octets] ##########
 
RogueKiller V8.5.4 [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
 
Operating System : Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Started in : Normal mode
User : Kevin [Admin rights]
Mode : Scan -- Date : 03/25/2013 20:26:39
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 0 ¤¤¤
 
¤¤¤ Registry Entries : 4 ¤¤¤
[HJ DESK] HKCU\[...]\ClassicStartMenu : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {59031A47-3F72-44A7-89C5-5595FE6B30EE} (1) -> FOUND
[HJ DESK] HKCU\[...]\ClassicStartMenu : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
[HJ DESK] HKCU\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [LOADED] ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
 
127.0.0.1       localhost
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: FUJITSU MHY2250BH +++++
--- User ---
[MBR] 860d79fbfc29b951e5dc26e373f72d92
[BSP] 8966047d32f97800494f8f8b82365d4d : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 236974 Mo
User = LL1 ... OK!
User = LL2 ... OK!
 
Finished : << RKreport[1]_S_03252013_02d2026.txt >>
RKreport[1]_S_03252013_02d2026.txt
 
 
My computer works pretty well.  Internet explorer won't let me scroll freely.  It has a delayed response of about 15 seconds.  I also keep getting pop up message that says: "Host Process for windows services stopped working and was closed".


#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 25 March 2013 - 09:13 PM

1.
Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    image000q.png
  • Put a checkmark beside loaded modules.
    2012081514h0118.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    2012081517h0349.png
  • Click the Start Scan button.
    19695967.jpg
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    67776163.jpg
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here
  •  
  • 2.
  • Install Recovery Console and Run ComboFix

    This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

    Download Combofix from any of the links below, and save it to your desktop.

    http://download.bleepingcomputer.com/sUBs/ComboFix.exe
    • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
    • Close any open windows, including this one.
    • Double click on ComboFix.exe & follow the prompts.
    • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
    • If you did not have it installed, you will see the prompt below. Choose YES.
    • RcAuto1.gif
    • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
    **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

    Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
    should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.
    • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

      whatnext.png
    • Click on Yes, to continue scanning for malware.
    • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
    Leave your computer alone while ComboFix is running.
    ComboFix will restart your computer if malware is found; allow it to do so.


    Note:

Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.

 

 

 

Things to include in your next reply::

TdssKiller log

Combofix.txt

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 deepthinker

deepthinker
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 26 March 2013 - 07:33 AM

ComboFix 13-03-25.01 - Kevin 03/25/2013  21:45:10.3.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.1.1033.18.3061.1982 [GMT -5:00]
Running from: c:\users\Kevin\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Files Created from 2013-02-26 to 2013-03-26  )))))))))))))))))))))))))))))))
.
.
2013-03-26 03:16 . 2013-03-26 03:20 -------- d-----w- c:\users\Kevin\AppData\Local\temp
2013-03-26 03:16 . 2013-03-26 03:16 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-03-26 03:16 . 2013-03-26 03:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-26 01:10 . 2013-03-26 01:10 172 ----a-w- c:\windows\DeleteOnReboot.bat
2013-03-25 12:47 . 2013-03-15 07:21 7108640 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{05559D7C-4A0C-411F-9F9A-A14AE4A18277}\mpengine.dll
2013-03-24 01:42 . 2013-03-24 01:42 -------- d-----w- c:\program files\Vistanita
2013-03-23 11:51 . 2013-03-15 07:21 7108640 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-03-21 22:13 . 2013-03-06 22:33 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-21 22:13 . 2013-03-06 22:33 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-21 02:07 . 2013-03-20 02:05 740840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2013-03-21 02:07 . 2013-03-20 02:05 740840 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C3584825-D2C3-420E-992B-0ECE2DD949D2}\gapaengine.dll
2013-03-19 20:34 . 2012-12-19 20:53 18096 ----a-w- c:\windows\system32\roboot.exe
2013-03-19 20:32 . 2013-03-06 10:38 770384 ----a-w- c:\windows\system32\msvcr100.dll
2013-03-19 20:32 . 2013-03-06 10:38 421200 ----a-w- c:\windows\system32\msvcp100.dll
2013-03-19 20:32 . 2013-03-19 20:32 -------- d-----w- c:\users\Kevin\AppData\Local\CRE
2013-03-19 11:19 . 2010-07-05 00:07 238952 ----a-w- c:\windows\system32\FsUsbExService.Exe
2013-03-19 11:19 . 2010-06-14 14:32 36608 ----a-w- c:\windows\system32\FsUsbExDisk.Sys
2013-03-19 11:19 . 2010-06-14 14:32 36608 ----a-w- c:\windows\system32\FsUsbExDisk.Sy_
2013-03-19 11:19 . 2010-06-14 14:32 110592 ----a-w- c:\windows\system32\FsUsbExDevice.Dll
2013-03-19 11:16 . 2013-03-19 11:16 -------- d-----w- c:\program files\MarkAny
2013-03-19 01:03 . 2013-03-19 01:03 -------- d-----w- c:\programdata\Samsung
2013-03-18 23:53 . 2013-03-18 23:53 -------- d-----w- c:\programdata\PC Suite
2013-03-18 23:53 . 2013-03-18 23:53 -------- d-----w- c:\users\Kevin\AppData\Roaming\PC Suite
2013-03-18 23:52 . 2013-03-19 11:18 -------- d-----w- c:\users\Kevin\AppData\Roaming\Samsung
2013-03-18 23:37 . 2013-03-18 23:37 -------- d-----w- c:\program files\DIFX
2013-03-18 23:37 . 2008-08-26 14:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2013-03-18 23:35 . 2013-03-18 23:37 -------- dc----w- c:\windows\system32\DRVSTORE
2013-03-18 23:34 . 2013-03-18 23:34 -------- d-----w- c:\program files\PC Connectivity Solution
2013-03-18 23:29 . 2007-05-02 21:31 90624 ----a-w- c:\windows\system32\nmwcdcls.dll
2013-03-18 23:29 . 2013-03-19 11:14 -------- d-----w- c:\program files\Samsung
2013-03-18 23:28 . 2013-03-18 23:28 -------- d-----w- c:\programdata\Installations
2013-02-24 03:22 . 2013-02-24 03:39 -------- d-----w- c:\users\Kevin\AppData\Roaming\SmartDraw
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-22 11:53 . 2012-12-12 04:30 693976 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-03-22 11:53 . 2012-12-12 04:30 73432 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-06 22:33 . 2012-12-19 14:56 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 22:33 . 2012-12-19 14:56 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 22:33 . 2012-12-19 14:56 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-03-06 22:33 . 2012-12-19 14:56 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 22:33 . 2012-12-19 14:56 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 22:33 . 2012-12-19 14:56 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 22:32 . 2012-12-19 14:55 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 22:32 . 2012-12-19 14:55 228600 ----a-w- c:\windows\system32\aswBoot.exe
2013-02-04 23:55 . 2013-02-04 23:56 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-02-04 23:55 . 2012-12-18 14:52 861088 ----a-w- c:\windows\system32\npDeployJava1.dll
2013-02-04 23:55 . 2012-12-18 14:52 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-02-02 14:54 . 2013-02-02 14:54 652296 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsTemplate\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2013-02-02 14:54 . 2013-02-02 14:54 677136 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-02-02 14:53 . 2013-02-02 14:53 416128 ----a-w- c:\programdata\Microsoft\eHome\Packages\NetTV\Browse\NetTVResources.dll
2013-01-30 10:53 . 2012-12-19 20:09 232336 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2012-12-18 01:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2012-12-18 01:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2012-12-18 01:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2012-12-18 01:50 556648 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WallShuffler"="c:\program files\Vistanita\WallShuffler\wallShuffler.exe" [2009-07-24 1923072]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Manager.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
backup=c:\windows\pss\Bluetooth Manager.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\00TCrdMain]
2008-01-22 22:25 712704 ----a-w- c:\program files\Toshiba\FlashCards\TCrdMain.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-12-03 07:35 946352 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOL Fast Start]
2012-10-15 16:45 72312 ----a-w- c:\program files\AOL Desktop 9.7a\aol.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent]
2010-07-05 00:13 95576 ----a-w- c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Camera Assistant Software]
2007-10-26 01:41 413696 ----a-w- c:\program files\Camera Assistant Software for Toshiba\traybar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
2008-02-14 19:08 184320 ----a-w- c:\program files\CyberLink\PowerCinema for TOSHIBA\Kernel\CLML\CLMLSvc.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EaseUS EPM tray]
2012-11-29 16:32 2086984 ----a-w- c:\program files\EaseUS\EaseUS Partition Master 9.1.1 Home Edition\bin\EpmNews.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
2008-01-21 02:25 125952 ----a-w- c:\windows\ehome\ehtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]
2010-03-08 07:27 41800 ----a-w- c:\program files\Common Files\AOL\1355317369\ee\aolsoftware.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2008-02-05 19:24 154136 ----a-w- c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HSON]
2007-11-01 06:01 54608 ----a-w- c:\program files\Toshiba\TBS\HSON.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2008-02-05 19:24 141848 ----a-w- c:\windows\System32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ITSecMng]
2011-04-01 23:42 80840 ----a-w- c:\program files\Toshiba\Bluetooth Toshiba Stack\ItSecMng.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxdqamon]
2008-03-27 15:04 16040 ----a-w- c:\program files\Lexmark Z2400 Series\lxdqamon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxdqmon.exe]
2008-03-27 15:04 656040 ----a-w- c:\program files\Lexmark Z2400 Series\lxdqmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSC]
2012-09-12 23:19 947176 ----a-w- c:\program files\Microsoft Security Client\msseces.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMAgent]
2007-12-14 03:52 143360 ----a-w- c:\program files\CyberLink\PowerCinema for TOSHIBA\PCMAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2008-02-05 19:24 129560 ----a-w- c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhotoExplosionCalCheck]
2006-09-20 17:54 69632 ----a-w- c:\program files\Nova Development\Photo Explosion 3.0 SE\CalCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2008-01-30 02:51 4911104 ----a-w- c:\windows\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2012-11-09 17:27 17877168 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmoothView]
2007-06-16 05:01 448080 ----a-w- c:\program files\Toshiba\SmoothView\SmoothView.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-07-03 15:04 252848 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2012-11-01 19:45 4763008 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
2008-08-14 16:40 1348904 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPwrMain]
2008-01-18 00:27 431456 ----a-w- c:\program files\Toshiba\Power Saver\TPwrMain.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WindowsWelcomeCenter]
2009-04-11 05:28 2153472 ----a-w- c:\windows\System32\oobefldr.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-3249523153-583631774-1591893668-1000]
"EnableNotificationsRef"=dword:00000001
.
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ    FontCache
bthsvcs REG_MULTI_SZ    BthServ
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-13 21:22 1629648 ----a-w- c:\program files\Google\Chrome\Application\25.0.1364.172\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-03-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-12 11:53]
.
2013-03-21 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-12-19 22:32]
.
2013-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-12-19 14:56]
.
2013-03-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-12-19 14:56]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.foxnews.com/
IE: Download with &Shareaza - c:\program files\Shareaza\RazaWebHook32.dll/3000
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.254
DPF: {62415890-4985-0825-2508-23487C2A845F} - hxxp://www.killenrealestate.com/ipcamera_V1224_YCAM.cab
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-NPSStartup - (no file)
SafeBoot-35398618.sys
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-ares - c:\program files\Ares\Ares.exe
MSConfigStartUp-cfWPSEnabler - cfWPSEnabler.exe
MSConfigStartUp-NDSTray - NDSTray.exe
MSConfigStartUp-SearchProtect - c:\users\Kevin\AppData\Roaming\SearchProtect\bin\cltmng.exe
MSConfigStartUp-SearchProtectAll - c:\program files\SearchProtect\bin\cltmng.exe
AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe
AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe
AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe
AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe
AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe
AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe
AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe
AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe
AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe
AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe
AddRemove-12_Symbian_USB_Download_Driver - c:\program files\SAMSUNG\USB Drivers\12_Symbian_USB_Download_Driver\Uninstall.exe
AddRemove-15_Symbian_Samsung_PC_DLC_Driver - c:\program files\SAMSUNG\USB Drivers\15_Symbian_Samsung_PC_DLC_Driver\Uninstall.exe
AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe
AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe
AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe
AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe
AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe
AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe
AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-03-25 22:19
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ... 
.
scanning hidden autostart entries ...
.
scanning hidden files ... 
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
------------------------ Other Running Processes ------------------------
.
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Microsoft Security Client\MsMpEng.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\WLANExt.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\agrsmsvc.exe
c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\windows\system32\FsUsbExService.Exe
c:\windows\system32\spool\DRIVERS\W32X86\3\lxdqserv.exe
c:\windows\system32\lxdqcoms.exe
c:\toshiba\IVP\ISM\pinger.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe
c:\toshiba\IVP\swupdate\swupdtmr.exe
c:\program files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
c:\windows\system32\TODDSrv.exe
c:\program files\Toshiba\Power Saver\TosCoSrv.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
c:\windows\System32\WUDFHost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\wermgr.exe
c:\windows\ehome\mcupdate.EXE
.
**************************************************************************
.
Completion time: 2013-03-25  22:26:45 - machine was rebooted
ComboFix-quarantined-files.txt  2013-03-26 03:26
.
Pre-Run: 170,863,894,528 bytes free
Post-Run: 170,778,120,192 bytes free
.
- - End Of File - - B38E5F04BCD31A5450657454F3C69DF0

 

008  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

 



#8 deepthinker

deepthinker
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 26 March 2013 - 07:45 AM

Both logs together wouldn't fit in same reply. 

 

008  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:32:33.0214 1008  ============================================================
21:32:33.0214 1008  Current date / time: 2013/03/25 21:32:33.0214
21:32:33.0214 1008  SystemInfo:
21:32:33.0214 1008 
21:32:33.0214 1008  OS Version: 6.0.6002 ServicePack: 2.0
21:32:33.0214 1008  Product type: Workstation
21:32:33.0214 1008  ComputerName: KEVIN-LAPTOP
21:32:33.0214 1008  UserName: Kevin
21:32:33.0214 1008  Windows directory: C:\Windows
21:32:33.0214 1008  System windows directory: C:\Windows
21:32:33.0214 1008  Processor architecture: Intel x86
21:32:33.0214 1008  Number of processors: 2
21:32:33.0214 1008  Page size: 0x1000
21:32:33.0214 1008  Boot type: Normal boot
21:32:33.0214 1008  ============================================================
21:32:33.0307 1008  BG loaded
21:32:34.0040 1008  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:32:34.0072 1008  ============================================================
21:32:34.0072 1008  \Device\Harddisk0\DR0:
21:32:34.0087 1008  MBR partitions:
21:32:34.0087 1008  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1CED7000
21:32:34.0087 1008  ============================================================
21:32:34.0118 1008  C: <-> \Device\Harddisk0\DR0\Partition1
21:32:34.0118 1008  ============================================================
21:32:34.0118 1008  Initialize success
21:32:34.0118 1008  ============================================================
21:32:42.0340 3208  ============================================================
21:32:42.0340 3208  Scan started
21:32:42.0340 3208  Mode: Manual; SigCheck; TDLFS;
21:32:42.0340 3208  ============================================================
21:32:42.0667 3208  ================ Scan system memory ========================
21:32:42.0667 3208  System memory - ok
21:32:42.0667 3208  ================ Scan services =============================
21:32:42.0854 3208  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
21:32:43.0042 3208  !SASCORE - ok
21:32:43.0634 3208  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:32:43.0697 3208  ACPI - ok
21:32:43.0853 3208  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:32:43.0868 3208  AdobeARMservice - ok
21:32:44.0024 3208  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:32:44.0056 3208  AdobeFlashPlayerUpdateSvc - ok
21:32:44.0196 3208  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:32:44.0243 3208  adp94xx - ok
21:32:44.0274 3208  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:32:44.0305 3208  adpahci - ok
21:32:44.0336 3208  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:32:44.0368 3208  adpu160m - ok
21:32:44.0430 3208  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:32:44.0461 3208  adpu320 - ok
21:32:44.0524 3208  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:32:44.0648 3208  AeLookupSvc - ok
21:32:44.0711 3208  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
21:32:44.0820 3208  AFD - ok
21:32:44.0882 3208  [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:32:44.0914 3208  AgereModemAudio - ok
21:32:45.0054 3208  [ CE91B158FA490CF4C4D487A4130F4660 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
21:32:45.0148 3208  AgereSoftModem - ok
21:32:45.0210 3208  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:32:45.0241 3208  agp440 - ok
21:32:45.0257 3208  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:32:45.0288 3208  aic78xx - ok
21:32:45.0304 3208  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
21:32:45.0428 3208  ALG - ok
21:32:45.0460 3208  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:32:45.0491 3208  aliide - ok
21:32:45.0522 3208  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:32:45.0538 3208  amdagp - ok
21:32:45.0569 3208  [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide          C:\Windows\system32\drivers\amdide.sys
21:32:45.0584 3208  amdide - ok
21:32:45.0647 3208  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:32:45.0694 3208  AmdK7 - ok
21:32:45.0709 3208  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:32:45.0772 3208  AmdK8 - ok
21:32:45.0943 3208  [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS         C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
21:32:45.0959 3208  AOL ACS - ok
21:32:46.0021 3208  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
21:32:46.0052 3208  Appinfo - ok
21:32:46.0115 3208  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
21:32:46.0130 3208  arc - ok
21:32:46.0177 3208  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:32:46.0208 3208  arcsas - ok
21:32:46.0271 3208  [ CCDA8D84FD02AEC52E62F296433AE9DC ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
21:32:46.0302 3208  aswFsBlk - ok
21:32:46.0364 3208  [ A6E20E62871A28A0F1C05B1681848FA7 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
21:32:46.0380 3208  aswMonFlt - ok
21:32:46.0411 3208  [ C1A411B7CCD604554D96EFDAC2F83617 ] AswRdr          C:\Windows\system32\drivers\AswRdr.sys
21:32:46.0442 3208  AswRdr - ok
21:32:46.0505 3208  [ 657A61979F40D67CA29716149766FFA7 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
21:32:46.0552 3208  aswRvrt - ok
21:32:46.0708 3208  [ 0E604867FC28F00D91CB0B00D2EC830D ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
21:32:46.0817 3208  aswSnx - ok
21:32:46.0910 3208  [ 6FC4AA106AA505394C908D37CCCB9148 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
21:32:46.0942 3208  aswSP - ok
21:32:47.0004 3208  [ 33E21FFB063CA6C7E00D568467DC72E4 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
21:32:47.0020 3208  aswTdi - ok
21:32:47.0051 3208  [ EDB0C9BA44B748E420CCA989FD8B826E ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
21:32:47.0082 3208  aswVmm - ok
21:32:47.0144 3208  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:32:47.0191 3208  AsyncMac - ok
21:32:47.0285 3208  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:32:47.0316 3208  atapi - ok
21:32:47.0410 3208  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:32:47.0456 3208  AudioEndpointBuilder - ok
21:32:47.0503 3208  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:32:47.0550 3208  Audiosrv - ok
21:32:47.0815 3208  [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:32:47.0831 3208  avast! Antivirus - ok
21:32:47.0909 3208  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:32:47.0956 3208  Beep - ok
21:32:48.0034 3208  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
21:32:48.0080 3208  BFE - ok
21:32:48.0221 3208  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\System32\qmgr.dll
21:32:48.0299 3208  BITS - ok
21:32:48.0314 3208  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:32:48.0377 3208  blbdrive - ok
21:32:48.0424 3208  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:32:48.0470 3208  bowser - ok
21:32:48.0517 3208  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:32:48.0548 3208  BrFiltLo - ok
21:32:48.0580 3208  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:32:48.0611 3208  BrFiltUp - ok
21:32:48.0658 3208  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
21:32:48.0704 3208  Browser - ok
21:32:48.0736 3208  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:32:48.0938 3208  Brserid - ok
21:32:48.0954 3208  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:32:49.0048 3208  BrSerWdm - ok
21:32:49.0063 3208  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:32:49.0141 3208  BrUsbMdm - ok
21:32:49.0157 3208  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:32:49.0235 3208  BrUsbSer - ok
21:32:49.0313 3208  [ 6D39C954799B63BA866910234CF7D726 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
21:32:49.0375 3208  BthEnum - ok
21:32:49.0422 3208  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:32:49.0500 3208  BTHMODEM - ok
21:32:49.0547 3208  [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:32:49.0594 3208  BthPan - ok
21:32:49.0672 3208  [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
21:32:49.0734 3208  BTHPORT - ok
21:32:49.0796 3208  [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ         C:\Windows\System32\bthserv.dll
21:32:49.0859 3208  BthServ - ok
21:32:49.0874 3208  [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
21:32:49.0921 3208  BTHUSB - ok
21:32:49.0937 3208  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:32:49.0999 3208  cdfs - ok
21:32:50.0015 3208  Cdr4_xp - ok
21:32:50.0015 3208  Cdralw2k - ok
21:32:50.0062 3208  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:32:50.0108 3208  cdrom - ok
21:32:50.0155 3208  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:32:50.0202 3208  CertPropSvc - ok
21:32:50.0249 3208  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
21:32:50.0296 3208  circlass - ok
21:32:50.0327 3208  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
21:32:50.0358 3208  CLFS - ok
21:32:50.0420 3208  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:32:50.0452 3208  clr_optimization_v2.0.50727_32 - ok
21:32:50.0467 3208  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:32:50.0530 3208  CmBatt - ok
21:32:50.0530 3208  [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:32:50.0561 3208  cmdide - ok
21:32:50.0576 3208  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:32:50.0592 3208  Compbatt - ok
21:32:50.0608 3208  COMSysApp - ok
21:32:50.0670 3208  [ 596E452B5152EC9AFE8153D296459D2B ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
21:32:50.0686 3208  ConfigFree Service ( UnsignedFile.Multi.Generic ) - warning
21:32:50.0686 3208  ConfigFree Service - detected UnsignedFile.Multi.Generic (1)
21:32:50.0717 3208  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:32:50.0732 3208  crcdisk - ok
21:32:50.0764 3208  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:32:50.0826 3208  Crusoe - ok
21:32:50.0888 3208  [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:32:50.0935 3208  CryptSvc - ok
21:32:51.0013 3208  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:32:51.0091 3208  DcomLaunch - ok
21:32:51.0138 3208  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:32:51.0200 3208  DfsC - ok
21:32:51.0310 3208  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
21:32:51.0450 3208  DFSR - ok
21:32:51.0481 3208  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:32:51.0528 3208  Dhcp - ok
21:32:51.0559 3208  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
21:32:51.0590 3208  disk - ok
21:32:51.0622 3208  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:32:51.0653 3208  Dnscache - ok
21:32:51.0668 3208  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:32:51.0715 3208  dot3svc - ok
21:32:51.0762 3208  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
21:32:51.0809 3208  DPS - ok
21:32:51.0887 3208  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:32:51.0934 3208  drmkaud - ok
21:32:51.0996 3208  [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:32:52.0058 3208  DXGKrnl - ok
21:32:52.0105 3208  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:32:52.0168 3208  E1G60 - ok
21:32:52.0183 3208  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
21:32:52.0230 3208  EapHost - ok
21:32:52.0308 3208  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:32:52.0339 3208  Ecache - ok
21:32:52.0558 3208  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:32:52.0604 3208  ehRecvr - ok
21:32:52.0620 3208  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
21:32:52.0667 3208  ehSched - ok
21:32:52.0667 3208  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
21:32:52.0698 3208  ehstart - ok
21:32:52.0838 3208  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:32:52.0901 3208  elxstor - ok
21:32:53.0135 3208  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:32:53.0244 3208  EMDMgmt - ok
21:32:53.0306 3208  [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv        C:\Windows\system32\epmntdrv.sys
21:32:53.0322 3208  epmntdrv ( UnsignedFile.Multi.Generic ) - warning
21:32:53.0322 3208  epmntdrv - detected UnsignedFile.Multi.Generic (1)
21:32:53.0384 3208  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:32:53.0431 3208  ErrDev - ok
21:32:53.0478 3208  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv        C:\Windows\system32\EuGdiDrv.sys
21:32:53.0494 3208  EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning
21:32:53.0494 3208  EuGdiDrv - detected UnsignedFile.Multi.Generic (1)
21:32:53.0572 3208  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
21:32:53.0618 3208  EventSystem - ok
21:32:53.0993 3208  [ F10E7AA8BDF4488E3DFA989B8E7F7C9F ] EvtEng          C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
21:32:54.0040 3208  EvtEng ( UnsignedFile.Multi.Generic ) - warning
21:32:54.0040 3208  EvtEng - detected UnsignedFile.Multi.Generic (1)
21:32:54.0133 3208  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
21:32:54.0211 3208  exfat - ok
21:32:54.0258 3208  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:32:54.0336 3208  fastfat - ok
21:32:54.0398 3208  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:32:54.0445 3208  fdc - ok
21:32:54.0476 3208  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:32:54.0539 3208  fdPHost - ok
21:32:54.0554 3208  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:32:54.0664 3208  FDResPub - ok
21:32:54.0710 3208  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:32:54.0742 3208  FileInfo - ok
21:32:54.0804 3208  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:32:54.0851 3208  Filetrace - ok
21:32:54.0929 3208  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:32:54.0991 3208  flpydisk - ok
21:32:55.0038 3208  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:32:55.0069 3208  FltMgr - ok
21:32:55.0241 3208  [ 8CE364388C8ECA59B14B539179276D44 ] FontCache       C:\Windows\system32\FntCache.dll
21:32:55.0334 3208  FontCache - ok
21:32:55.0412 3208  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:32:55.0428 3208  FontCache3.0.0.0 - ok
21:32:55.0537 3208  [ CBE5F69A5E5B918225F420BA748F3742 ] FsUsbExDisk     C:\Windows\system32\FsUsbExDisk.SYS
21:32:55.0537 3208  FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
21:32:55.0553 3208  FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
21:32:55.0693 3208  [ 96633419F4A1E37ACB89B45EBCCFE001 ] FsUsbExService  C:\Windows\system32\FsUsbExService.Exe
21:32:55.0724 3208  FsUsbExService - ok
21:32:55.0771 3208  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:32:55.0802 3208  Fs_Rec - ok
21:32:55.0865 3208  [ CBC22823628544735625B280665E434E ] FwLnk           C:\Windows\system32\DRIVERS\FwLnk.sys
21:32:55.0880 3208  FwLnk - ok
21:32:55.0912 3208  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:32:55.0943 3208  gagp30kx - ok
21:32:56.0068 3208  [ 01A5829DD261B4F3DD66D7E9F9B973F5 ] GameConsoleService C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
21:32:56.0083 3208  GameConsoleService - ok
21:32:56.0114 3208  [ 4AC51459805264AFFD5F6FDFB9D9235F ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
21:32:56.0130 3208  GEARAspiWDM - ok
21:32:56.0192 3208  [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio          C:\Windows\system32\giveio.sys
21:32:56.0208 3208  giveio ( UnsignedFile.Multi.Generic ) - warning
21:32:56.0208 3208  giveio - detected UnsignedFile.Multi.Generic (1)
21:32:56.0302 3208  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:32:56.0380 3208  gpsvc - ok
21:32:56.0520 3208  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:32:56.0536 3208  gupdate - ok
21:32:56.0567 3208  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:32:56.0582 3208  gupdatem - ok
21:32:56.0707 3208  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:32:56.0816 3208  HdAudAddService - ok
21:32:57.0004 3208  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:32:57.0331 3208  HDAudBus - ok
21:32:57.0362 3208  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:32:57.0830 3208  HidBth - ok
21:32:57.0955 3208  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:32:58.0127 3208  HidIr - ok
21:32:58.0220 3208  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\System32\hidserv.dll
21:32:58.0267 3208  hidserv - ok
21:32:58.0345 3208  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:32:58.0486 3208  HidUsb - ok
21:32:58.0579 3208  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:32:58.0688 3208  hkmsvc - ok
21:32:58.0752 3208  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:32:58.0816 3208  HpCISSs - ok
21:32:58.0896 3208  [ F870AA3E254628EBEAFE754108D664DE ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:32:59.0117 3208  HTTP - ok
21:32:59.0189 3208  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:32:59.0216 3208  i2omp - ok
21:32:59.0286 3208  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:32:59.0330 3208  i8042prt - ok
21:32:59.0408 3208  [ E5A0034847537EAEE3C00349D5C34C5F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:32:59.0440 3208  iaStor - ok
21:32:59.0502 3208  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:32:59.0537 3208  iaStorV - ok
21:32:59.0647 3208  [ DAF66902F08796F9C694901660E5A64A ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
21:32:59.0659 3208  IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:32:59.0659 3208  IDriverT - detected UnsignedFile.Multi.Generic (1)
21:32:59.0771 3208  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:32:59.0892 3208  idsvc - ok
21:33:00.0099 3208  [ 038815297078D236D8CC064C295A74C6 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
21:33:00.0360 3208  igfx - ok
21:33:00.0378 3208  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:33:00.0404 3208  iirsp - ok
21:33:00.0478 3208  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:33:00.0547 3208  IKEEXT - ok
21:33:00.0705 3208  [ 8A4341616976E47712B60F18C7049DCC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:33:00.0995 3208  IntcAzAudAddService - ok
21:33:01.0062 3208  [ 83AA759F3189E6370C30DE5DC5590718 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:33:01.0093 3208  intelide - ok
21:33:01.0127 3208  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:33:01.0190 3208  intelppm - ok
21:33:01.0267 3208  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:33:01.0335 3208  IPBusEnum - ok
21:33:01.0390 3208  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:33:01.0443 3208  IpFilterDriver - ok
21:33:01.0506 3208  [ 1998BD97F950680BB55F55A7244679C2 ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
21:33:01.0552 3208  IpHlpSvc - ok
21:33:01.0566 3208  IpInIp - ok
21:33:01.0626 3208  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:33:01.0678 3208  IPMIDRV - ok
21:33:01.0755 3208  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:33:01.0833 3208  IPNAT - ok
21:33:01.0883 3208  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:33:01.0934 3208  IRENUM - ok
21:33:01.0956 3208  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:33:01.0987 3208  isapnp - ok
21:33:02.0079 3208  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:33:02.0127 3208  iScsiPrt - ok
21:33:02.0209 3208  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:33:02.0232 3208  iteatapi - ok
21:33:02.0246 3208  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:33:02.0271 3208  iteraid - ok
21:33:02.0289 3208  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:33:02.0336 3208  kbdclass - ok
21:33:02.0406 3208  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
21:33:02.0466 3208  kbdhid - ok
21:33:02.0512 3208  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
21:33:02.0574 3208  KeyIso - ok
21:33:02.0604 3208  [ E8CA038F51F7761BD6E3A3B0B8014263 ] KR10I           C:\Windows\system32\drivers\kr10i.sys
21:33:02.0653 3208  KR10I - ok
21:33:02.0755 3208  [ 6A4ADB9186DD0E114E623DAF57E42B31 ] KR10N           C:\Windows\system32\drivers\kr10n.sys
21:33:02.0797 3208  KR10N - ok
21:33:02.0914 3208  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:33:02.0957 3208  KSecDD - ok
21:33:03.0032 3208  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:33:03.0102 3208  KtmRm - ok
21:33:03.0152 3208  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\System32\srvsvc.dll
21:33:03.0203 3208  LanmanServer - ok
21:33:03.0264 3208  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:33:03.0312 3208  LanmanWorkstation - ok
21:33:03.0399 3208  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:33:03.0462 3208  lltdio - ok
21:33:03.0524 3208  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:33:03.0592 3208  lltdsvc - ok
21:33:03.0633 3208  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:33:03.0763 3208  lmhosts - ok
21:33:03.0830 3208  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:33:03.0859 3208  LSI_FC - ok
21:33:03.0896 3208  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:33:03.0925 3208  LSI_SAS - ok
21:33:03.0976 3208  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:33:04.0005 3208  LSI_SCSI - ok
21:33:04.0042 3208  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
21:33:04.0118 3208  luafv - ok
21:33:04.0852 3208  [ 4A0B6533F035D74729942EE1D19C35C5 ] lxdqCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdqserv.exe
21:33:04.0926 3208  lxdqCATSCustConnectService ( UnsignedFile.Multi.Generic ) - warning
21:33:04.0926 3208  lxdqCATSCustConnectService - detected UnsignedFile.Multi.Generic (1)
21:33:05.0081 3208  lxdq_device - ok
21:33:05.0174 3208  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:33:05.0211 3208  Mcx2Svc - ok
21:33:05.0341 3208  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:33:05.0376 3208  megasas - ok
21:33:05.0458 3208  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:33:05.0505 3208  MegaSR - ok
21:33:05.0562 3208  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
21:33:05.0620 3208  MMCSS - ok
21:33:05.0640 3208  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
21:33:05.0707 3208  Modem - ok
21:33:05.0792 3208  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:33:05.0849 3208  monitor - ok
21:33:05.0954 3208  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:33:05.0980 3208  mouclass - ok
21:33:06.0015 3208  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:33:06.0069 3208  mouhid - ok
21:33:06.0143 3208  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:33:06.0187 3208  MountMgr - ok
21:33:06.0286 3208  [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
21:33:06.0330 3208  MpFilter - ok
21:33:06.0410 3208  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:33:06.0459 3208  mpio - ok
21:33:06.0499 3208  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:33:06.0572 3208  mpsdrv - ok
21:33:06.0651 3208  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:33:06.0774 3208  MpsSvc - ok
21:33:06.0852 3208  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:33:06.0882 3208  Mraid35x - ok
21:33:06.0946 3208  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:33:07.0030 3208  MRxDAV - ok
21:33:07.0087 3208  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:33:07.0140 3208  mrxsmb - ok
21:33:07.0210 3208  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:33:07.0249 3208  mrxsmb10 - ok
21:33:07.0284 3208  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:33:07.0337 3208  mrxsmb20 - ok
21:33:07.0407 3208  [ 28023E86F17001F7CD9B15A5BC9AE07D ] msahci          C:\Windows\system32\drivers\msahci.sys
21:33:07.0437 3208  msahci - ok
21:33:07.0500 3208  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:33:07.0529 3208  msdsm - ok
21:33:07.0564 3208  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
21:33:07.0629 3208  MSDTC - ok
21:33:07.0736 3208  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:33:07.0788 3208  Msfs - ok
21:33:07.0817 3208  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:33:07.0844 3208  msisadrv - ok
21:33:07.0876 3208  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:33:07.0941 3208  MSiSCSI - ok
21:33:07.0948 3208  msiserver - ok
21:33:07.0985 3208  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:33:08.0036 3208  MSKSSRV - ok
21:33:08.0139 3208  [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:33:08.0178 3208  MsMpSvc - ok
21:33:08.0247 3208  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:33:08.0297 3208  MSPCLOCK - ok
21:33:08.0327 3208  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:33:08.0386 3208  MSPQM - ok
21:33:08.0481 3208  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:33:08.0516 3208  MsRPC - ok
21:33:08.0551 3208  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:33:08.0582 3208  mssmbios - ok
21:33:08.0597 3208  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:33:08.0667 3208  MSTEE - ok
21:33:08.0769 3208  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
21:33:08.0799 3208  Mup - ok
21:33:08.0934 3208  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
21:33:08.0998 3208  napagent - ok
21:33:09.0106 3208  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:33:09.0138 3208  NativeWifiP - ok
21:33:09.0255 3208  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:33:09.0300 3208  NDIS - ok
21:33:09.0367 3208  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:33:09.0417 3208  NdisTapi - ok
21:33:09.0448 3208  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:33:09.0504 3208  Ndisuio - ok
21:33:09.0557 3208  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:33:09.0600 3208  NdisWan - ok
21:33:09.0655 3208  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:33:09.0695 3208  NDProxy - ok
21:33:09.0736 3208  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:33:09.0789 3208  NetBIOS - ok
21:33:09.0837 3208  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:33:09.0885 3208  netbt - ok
21:33:09.0930 3208  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
21:33:09.0966 3208  Netlogon - ok
21:33:10.0038 3208  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
21:33:10.0100 3208  Netman - ok
21:33:10.0166 3208  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
21:33:10.0227 3208  netprofm - ok
21:33:10.0324 3208  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:33:10.0348 3208  NetTcpPortSharing - ok
21:33:10.0533 3208  [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32        C:\Windows\system32\DRIVERS\NETw3v32.sys
21:33:10.0733 3208  NETw3v32 - ok
21:33:11.0019 3208  [ 6522DD40A5F67CED020BD81B856613FB ] NETw4v32        C:\Windows\system32\DRIVERS\NETw4v32.sys
21:33:11.0329 3208  NETw4v32 - ok
21:33:11.0427 3208  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:33:11.0454 3208  nfrd960 - ok
21:33:11.0517 3208  [ 2CD24A6AF497D0E9B9BF3DA924ED05E6 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:33:11.0546 3208  NisDrv - ok
21:33:11.0622 3208  [ 3B846434055F80D9E89D0742F3ADAD34 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
21:33:11.0658 3208  NisSrv - ok
21:33:11.0690 3208  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:33:11.0752 3208  NlaSvc - ok
21:33:11.0814 3208  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:33:11.0857 3208  Npfs - ok
21:33:11.0912 3208  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
21:33:11.0981 3208  nsi - ok
21:33:12.0020 3208  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:33:12.0079 3208  nsiproxy - ok
21:33:12.0234 3208  [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:33:12.0353 3208  Ntfs - ok
21:33:12.0459 3208  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:33:12.0548 3208  ntrigdigi - ok
21:33:12.0576 3208  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
21:33:12.0627 3208  Null - ok
21:33:12.0650 3208  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:33:12.0682 3208  nvraid - ok
21:33:12.0699 3208  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:33:12.0732 3208  nvstor - ok
21:33:12.0794 3208  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:33:12.0841 3208  nv_agp - ok
21:33:12.0856 3208  NwlnkFlt - ok
21:33:12.0872 3208  NwlnkFwd - ok
21:33:13.0042 3208  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:33:13.0082 3208  odserv - ok
21:33:13.0152 3208  [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:33:13.0193 3208  ohci1394 - ok
21:33:13.0243 3208  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:33:13.0269 3208  ose - ok
21:33:13.0375 3208  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:33:13.0456 3208  p2pimsvc - ok
21:33:13.0553 3208  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:33:13.0610 3208  p2psvc - ok
21:33:13.0686 3208  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
21:33:13.0776 3208  Parport - ok
21:33:13.0826 3208  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:33:13.0853 3208  partmgr - ok
21:33:13.0875 3208  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
21:33:13.0962 3208  Parvdm - ok
21:33:14.0018 3208  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:33:14.0077 3208  PcaSvc - ok
21:33:14.0259 3208  [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfd.sys
21:33:14.0306 3208  pccsmcfd - ok
21:33:14.0364 3208  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
21:33:14.0422 3208  pci - ok
21:33:14.0475 3208  [ FC175F5DDAB666D7F4D17449A547626F ] pciide          C:\Windows\system32\drivers\pciide.sys
21:33:14.0505 3208  pciide - ok
21:33:14.0542 3208  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:33:14.0606 3208  pcmcia - ok
21:33:14.0849 3208  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:33:15.0002 3208  PEAUTH - ok
21:33:15.0092 3208  [ 6DBF2AC2BDAFF355995AB25ECCC4CFE1 ] pinger          C:\Toshiba\IVP\ISM\pinger.exe
21:33:15.0116 3208  pinger - ok
21:33:15.0261 3208  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
21:33:15.0440 3208  pla - ok
21:33:15.0525 3208  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:33:15.0718 3208  PlugPlay - ok
21:33:15.0781 3208  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:33:15.0836 3208  PNRPAutoReg - ok
21:33:15.0898 3208  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:33:15.0952 3208  PNRPsvc - ok
21:33:16.0029 3208  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:33:16.0126 3208  PolicyAgent - ok
21:33:16.0170 3208  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:33:16.0222 3208  PptpMiniport - ok
21:33:16.0269 3208  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
21:33:16.0320 3208  Processor - ok
21:33:16.0385 3208  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:33:16.0437 3208  ProfSvc - ok
21:33:16.0476 3208  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:33:16.0507 3208  ProtectedStorage - ok
21:33:16.0561 3208  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:33:16.0606 3208  PSched - ok
21:33:16.0631 3208  [ F7BB4E7A7C02AB4A2672937E124E306E ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
21:33:16.0656 3208  PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
21:33:16.0656 3208  PxHelp20 - detected UnsignedFile.Multi.Generic (1)
21:33:16.0815 3208  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:33:16.0888 3208  ql2300 - ok
21:33:16.0917 3208  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:33:16.0951 3208  ql40xx - ok
21:33:17.0013 3208  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
21:33:17.0051 3208  QWAVE - ok
21:33:17.0108 3208  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:33:17.0136 3208  QWAVEdrv - ok
21:33:17.0165 3208  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:33:17.0216 3208  RasAcd - ok
21:33:17.0252 3208  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
21:33:17.0309 3208  RasAuto - ok
21:33:17.0330 3208  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:33:17.0382 3208  Rasl2tp - ok
21:33:17.0453 3208  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
21:33:17.0505 3208  RasMan - ok
21:33:17.0524 3208  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:33:17.0579 3208  RasPppoe - ok
21:33:17.0644 3208  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:33:17.0691 3208  RasSstp - ok
21:33:17.0721 3208  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:33:17.0777 3208  rdbss - ok
21:33:17.0815 3208  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:33:17.0884 3208  RDPCDD - ok
21:33:17.0915 3208  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:33:17.0991 3208  rdpdr - ok
21:33:18.0000 3208  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:33:18.0056 3208  RDPENCDD - ok
21:33:18.0124 3208  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:33:18.0171 3208  RDPWD - ok
21:33:18.0224 3208  [ 7274BD434B6165BAA382BDD87F6CA4CE ] RegSrvc         C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
21:33:18.0269 3208  RegSrvc ( UnsignedFile.Multi.Generic ) - warning
21:33:18.0270 3208  RegSrvc - detected UnsignedFile.Multi.Generic (1)
21:33:18.0361 3208  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:33:18.0422 3208  RemoteAccess - ok
21:33:18.0514 3208  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:33:18.0588 3208  RemoteRegistry - ok
21:33:18.0674 3208  [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:33:18.0725 3208  RFCOMM - ok
21:33:18.0789 3208  [ 355AAC141B214BEF1DBC1483AFD9BD50 ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys
21:33:18.0813 3208  rimmptsk - ok
21:33:18.0863 3208  [ A4216C71DD4F60B26418CCFD99CD0815 ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys
21:33:18.0890 3208  rimsptsk - ok
21:33:18.0920 3208  [ D231B577024AA324AF13A42F3A807D10 ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
21:33:18.0944 3208  rismxdp - ok
21:33:19.0049 3208  [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
21:33:19.0108 3208  ROOTMODEM - ok
21:33:19.0157 3208  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
21:33:19.0277 3208  RpcLocator - ok
21:33:19.0318 3208  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\system32\rpcss.dll
21:33:19.0397 3208  RpcSs - ok
21:33:19.0426 3208  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:33:19.0496 3208  rspndr - ok
21:33:19.0590 3208  [ 2D19A7469EA19993D0C12E627F4530BC ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
21:33:19.0623 3208  RTL8169 - ok
21:33:19.0687 3208  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
21:33:19.0719 3208  SamSs - ok
21:33:19.0831 3208  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
21:33:19.0850 3208  SASDIFSV - ok
21:33:19.0896 3208  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
21:33:19.0917 3208  SASKUTIL - ok
21:33:19.0986 3208  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:33:20.0012 3208  sbp2port - ok
21:33:20.0109 3208  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:33:20.0158 3208  SCardSvr - ok
21:33:20.0292 3208  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
21:33:20.0414 3208  Schedule - ok
21:33:20.0472 3208  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:33:20.0528 3208  SCPolicySvc - ok
21:33:20.0653 3208  [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:33:20.0697 3208  sdbus - ok
21:33:20.0756 3208  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:33:20.0819 3208  SDRSVC - ok
21:33:20.0881 3208  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:33:20.0970 3208  secdrv - ok
21:33:21.0033 3208  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
21:33:21.0091 3208  seclogon - ok
21:33:21.0133 3208  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\system32\sens.dll
21:33:21.0196 3208  SENS - ok
21:33:21.0245 3208  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:33:21.0334 3208  Serenum - ok
21:33:21.0407 3208  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
21:33:21.0499 3208  Serial - ok
21:33:21.0540 3208  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:33:21.0603 3208  sermouse - ok
21:33:21.0789 3208  [ 3EC8DE67B1C78C31E54C0F030E6BD7D5 ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
21:33:21.0840 3208  ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
21:33:21.0840 3208  ServiceLayer - detected UnsignedFile.Multi.Generic (1)
21:33:21.0912 3208  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:33:21.0974 3208  SessionEnv - ok
21:33:21.0998 3208  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
21:33:22.0039 3208  sffdisk - ok
21:33:22.0103 3208  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:33:22.0213 3208  sffp_mmc - ok
21:33:22.0286 3208  [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
21:33:22.0327 3208  sffp_sd - ok
21:33:22.0382 3208  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:33:22.0471 3208  sfloppy - ok
21:33:22.0532 3208  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:33:22.0627 3208  SharedAccess - ok
21:33:22.0718 3208  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:33:22.0771 3208  ShellHWDetection - ok
21:33:22.0837 3208  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:33:22.0866 3208  sisagp - ok
21:33:22.0895 3208  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:33:22.0928 3208  SiSRaid2 - ok
21:33:22.0993 3208  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:33:23.0022 3208  SiSRaid4 - ok
21:33:23.0457 3208  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:33:23.0721 3208  Skype C2C Service - ok
21:33:23.0885 3208  [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
21:33:23.0906 3208  SkypeUpdate - ok
21:33:24.0939 3208  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
21:33:25.0824 3208  slsvc - ok
21:33:26.0040 3208  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:33:26.0087 3208  SLUINotify - ok
21:33:26.0190 3208  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:33:26.0238 3208  Smb - ok
21:33:26.0416 3208  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:33:26.0449 3208  SNMPTRAP - ok
21:33:26.0509 3208  [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan        C:\Windows\system32\speedfan.sys
21:33:26.0556 3208  speedfan - ok
21:33:26.0683 3208  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
21:33:26.0748 3208  spldr - ok
21:33:26.0801 3208  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
21:33:26.0891 3208  Spooler - ok
21:33:27.0027 3208  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:33:27.0071 3208  srv - ok
21:33:27.0147 3208  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:33:27.0211 3208  srv2 - ok
21:33:27.0264 3208  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:33:27.0295 3208  srvnet - ok
21:33:27.0416 3208  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:33:27.0476 3208  SSDPSRV - ok
21:33:27.0594 3208  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:33:27.0630 3208  SstpSvc - ok
21:33:27.0820 3208  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
21:33:27.0905 3208  stisvc - ok
21:33:27.0970 3208  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:33:27.0996 3208  swenum - ok
21:33:28.0153 3208  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
21:33:28.0207 3208  swprv - ok
21:33:28.0318 3208  [ E1292C1ED4DEB17B8A9B586D22CB2061 ] Swupdtmr        c:\Toshiba\IVP\swupdate\swupdtmr.exe
21:33:28.0337 3208  Swupdtmr - ok
21:33:28.0363 3208  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:33:28.0388 3208  Symc8xx - ok
21:33:28.0503 3208  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:33:28.0539 3208  Sym_hi - ok
21:33:28.0588 3208  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:33:28.0619 3208  Sym_u3 - ok
21:33:28.0677 3208  [ 70534D1E4F9AC990536D5FB5B550B3DE ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:33:28.0732 3208  SynTP - ok
21:33:28.0827 3208  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
21:33:28.0932 3208  SysMain - ok
21:33:28.0994 3208  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:33:29.0100 3208  TabletInputService - ok
21:33:29.0187 3208  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:33:29.0265 3208  TapiSrv - ok
21:33:29.0330 3208  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
21:33:29.0409 3208  TBS - ok
21:33:29.0637 3208  [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:33:29.0719 3208  Tcpip - ok
21:33:29.0783 3208  [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:33:29.0848 3208  Tcpip6 - ok
21:33:29.0862 3208  [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:33:29.0897 3208  tcpipreg - ok
21:33:29.0936 3208  [ 1825BCEB47BF41C5A9F0E44DE82FC27A ] tdcmdpst        C:\Windows\system32\DRIVERS\tdcmdpst.sys
21:33:29.0990 3208  tdcmdpst - ok
21:33:30.0036 3208  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:33:30.0088 3208  TDPIPE - ok
21:33:30.0113 3208  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:33:30.0166 3208  TDTCP - ok
21:33:30.0241 3208  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:33:30.0282 3208  tdx - ok
21:33:30.0298 3208  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:33:30.0328 3208  TermDD - ok
21:33:30.0368 3208  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
21:33:30.0483 3208  TermService - ok
21:33:30.0527 3208  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
21:33:30.0583 3208  Themes - ok
21:33:30.0612 3208  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
21:33:30.0677 3208  THREADORDER - ok
21:33:30.0813 3208  [ E47F35A87FF0DA38DEF37A0EB0C2D2DF ] TNaviSrv        C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
21:33:30.0845 3208  TNaviSrv - ok
21:33:30.0933 3208  [ C5AC715B65B01788ABC22D10749DDDD8 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
21:33:30.0980 3208  TODDSrv - ok
21:33:31.0125 3208  [ DA6903958CBDC091FFCBBCA70CCFF34C ] TosCoSrv        C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
21:33:31.0161 3208  TosCoSrv - ok
21:33:31.0368 3208  [ F95208D35A9667C58CF8122EE22805A6 ] TOSHIBA Bluetooth Service C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
21:33:31.0403 3208  TOSHIBA Bluetooth Service - ok
21:33:31.0487 3208  [ 22690DFFC7F2A18279A7A0489AA02BAC ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
21:33:31.0499 3208  TOSHIBA SMART Log Service ( UnsignedFile.Multi.Generic ) - warning
21:33:31.0499 3208  TOSHIBA SMART Log Service - detected UnsignedFile.Multi.Generic (1)
21:33:31.0574 3208  [ 90AFA1A4451BBBEE87C9F18A665D8121 ] tosporte        C:\Windows\system32\DRIVERS\tosporte.sys
21:33:31.0597 3208  tosporte - ok
21:33:31.0649 3208  [ 490A76AB428F34EA676A23E429DD6DA4 ] tosrfbd         C:\Windows\system32\DRIVERS\tosrfbd.sys
21:33:31.0708 3208  tosrfbd - ok
21:33:31.0746 3208  [ 75CD3C238A0FFC66C4581C3870C09314 ] tosrfbnp        C:\Windows\system32\Drivers\tosrfbnp.sys
21:33:31.0772 3208  tosrfbnp - ok
21:33:31.0842 3208  [ B551D3F266DDA311256F963E8CFD1E9B ] Tosrfcom        C:\Windows\system32\Drivers\tosrfcom.sys
21:33:31.0863 3208  Tosrfcom - ok
21:33:31.0927 3208  [ 5C4103544612E5011EF46301B93D1AA6 ] tosrfec         C:\Windows\system32\DRIVERS\tosrfec.sys
21:33:31.0950 3208  tosrfec - ok
21:33:31.0980 3208  [ F3E8762163EE87F3AC95537584CF5B4F ] Tosrfhid        C:\Windows\system32\DRIVERS\Tosrfhid.sys
21:33:32.0001 3208  Tosrfhid - ok
21:33:32.0016 3208  [ B2A1A6538245FD69578224BBF2FD4677 ] tosrfnds        C:\Windows\system32\DRIVERS\tosrfnds.sys
21:33:32.0034 3208  tosrfnds - ok
21:33:32.0063 3208  [ F1CA74CCA8241D8B8A024AECC643C547 ] TosRfSnd        C:\Windows\system32\drivers\tosrfsnd.sys
21:33:32.0085 3208  TosRfSnd - ok
21:33:32.0158 3208  [ AF5126FB6E9ED41C99AB7A10E98729CD ] Tosrfusb        C:\Windows\system32\DRIVERS\tosrfusb.sys
21:33:32.0177 3208  Tosrfusb - ok
21:33:32.0270 3208  [ 1EA5F27C29405BF49799FECA77186DA9 ] tos_sps32       C:\Windows\system32\DRIVERS\tos_sps32.sys
21:33:32.0300 3208  tos_sps32 - ok
21:33:32.0392 3208  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
21:33:32.0455 3208  TrkWks - ok
21:33:32.0532 3208  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:33:32.0573 3208  TrustedInstaller - ok
21:33:32.0636 3208  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:33:32.0690 3208  tssecsrv - ok
21:33:32.0711 3208  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:33:32.0739 3208  tunmp - ok
21:33:32.0771 3208  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:33:32.0809 3208  tunnel - ok
21:33:32.0844 3208  [ 792A8B80F8188ABA4B2BE271583F3E46 ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS
21:33:32.0864 3208  TVALZ - ok
21:33:32.0923 3208  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:33:32.0952 3208  uagp35 - ok
21:33:33.0019 3208  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:33:33.0066 3208  udfs - ok
21:33:33.0169 3208  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:33:33.0230 3208  UI0Detect - ok
21:33:33.0302 3208  [ 332D341D92B933600D41953B08360DFB ] UleadBurningHelper C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
21:33:33.0311 3208  UleadBurningHelper ( UnsignedFile.Multi.Generic ) - warning
21:33:33.0311 3208  UleadBurningHelper - detected UnsignedFile.Multi.Generic (1)
21:33:33.0377 3208  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:33:33.0405 3208  uliagpkx - ok
21:33:33.0468 3208  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:33:33.0502 3208  uliahci - ok
21:33:33.0546 3208  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:33:33.0573 3208  UlSata - ok
21:33:33.0651 3208  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:33:33.0679 3208  ulsata2 - ok
21:33:33.0728 3208  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:33:33.0782 3208  umbus - ok
21:33:33.0840 3208  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
21:33:33.0905 3208  upnphost - ok
21:33:33.0972 3208  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:33:34.0014 3208  usbccgp - ok
21:33:34.0033 3208  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:33:34.0124 3208  usbcir - ok
21:33:34.0236 3208  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:33:34.0277 3208  usbehci - ok
21:33:34.0302 3208  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:33:34.0351 3208  usbhub - ok
21:33:34.0418 3208  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:33:34.0507 3208  usbohci - ok
21:33:34.0586 3208  [ B51E52ACF758BE00EF3A58EA452FE360 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
21:33:34.0676 3208  usbprint - ok
21:33:34.0765 3208  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:33:34.0809 3208  USBSTOR - ok
21:33:34.0857 3208  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:33:34.0898 3208  usbuhci - ok
21:33:34.0961 3208  [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:33:35.0018 3208  usbvideo - ok
21:33:35.0076 3208  [ 8C5094A8AB24DE7496C7C19942F2DF04 ] UVCFTR          C:\Windows\system32\Drivers\UVCFTR_S.SYS
21:33:35.0106 3208  UVCFTR - ok
21:33:35.0161 3208  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
21:33:35.0210 3208  UxSms - ok
21:33:35.0253 3208  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
21:33:35.0312 3208  vds - ok
21:33:35.0349 3208  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:33:35.0402 3208  vga - ok
21:33:35.0421 3208  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:33:35.0474 3208  VgaSave - ok
21:33:35.0528 3208  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
21:33:35.0556 3208  viaagp - ok
21:33:35.0579 3208  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
21:33:35.0632 3208  ViaC7 - ok
21:33:36.0484 3208  [ AADF5587A4063F52C2C3FED7887426FC ] viaide          C:\Windows\system32\drivers\viaide.sys
21:33:36.0513 3208  viaide - ok
21:33:36.0537 3208  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:33:36.0568 3208  volmgr - ok
21:33:36.0635 3208  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:33:36.0672 3208  volmgrx - ok
21:33:36.0719 3208  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:33:36.0752 3208  volsnap - ok
21:33:36.0841 3208  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:33:36.0870 3208  vsmraid - ok
21:33:36.0936 3208  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
21:33:37.0015 3208  VSS - ok
21:33:37.0057 3208  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
21:33:37.0111 3208  W32Time - ok
21:33:37.0150 3208  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:33:37.0246 3208  WacomPen - ok
21:33:37.0263 3208  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:33:37.0305 3208  Wanarp - ok
21:33:37.0312 3208  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:33:37.0354 3208  Wanarpv6 - ok
21:33:37.0416 3208  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\Windows\system32\DRIVERS\wanatw4.sys
21:33:37.0449 3208  wanatw - ok
21:33:37.0511 3208  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:33:37.0585 3208  wcncsvc - ok
21:33:37.0647 3208  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:33:37.0696 3208  WcsPlugInService - ok
21:33:37.0735 3208  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
21:33:37.0761 3208  Wd - ok
21:33:37.0829 3208  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:33:37.0922 3208  Wdf01000 - ok
21:33:37.0957 3208  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:33:38.0017 3208  WdiServiceHost - ok
21:33:38.0025 3208  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:33:38.0084 3208  WdiSystemHost - ok
21:33:38.0134 3208  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
21:33:38.0175 3208  WebClient - ok
21:33:38.0298 3208  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:33:38.0342 3208  Wecsvc - ok
21:33:38.0387 3208  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:33:38.0437 3208  wercplsupport - ok
21:33:38.0455 3208  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:33:38.0505 3208  WerSvc - ok
21:33:38.0567 3208  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
21:33:38.0600 3208  WinDefend - ok
21:33:38.0610 3208  WinHttpAutoProxySvc - ok
21:33:38.0686 3208  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:33:38.0730 3208  Winmgmt - ok
21:33:38.0812 3208  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:33:38.0928 3208  WinRM - ok
21:33:38.0991 3208  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:33:39.0056 3208  Wlansvc - ok
21:33:39.0098 3208  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:33:39.0141 3208  WmiAcpi - ok
21:33:39.0201 3208  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:33:39.0244 3208  wmiApSrv - ok
21:33:39.0315 3208  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:33:39.0406 3208  WMPNetworkSvc - ok
21:33:39.0430 3208  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:33:39.0480 3208  WPCSvc - ok
21:33:39.0548 3208  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:33:39.0613 3208  WPDBusEnum - ok
21:33:39.0630 3208  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:33:39.0682 3208  ws2ifsl - ok
21:33:39.0739 3208  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\System32\wscsvc.dll
21:33:39.0777 3208  wscsvc - ok
21:33:39.0785 3208  WSearch - ok
21:33:39.0982 3208  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
21:33:40.0169 3208  wuauserv - ok
21:33:40.0237 3208  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:33:40.0307 3208  WudfPf - ok
21:33:40.0345 3208  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:33:40.0375 3208  WUDFRd - ok
21:33:40.0452 3208  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:33:40.0488 3208  wudfsvc - ok
21:33:40.0519 3208  ================ Scan global ===============================
21:33:40.0551 3208  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:33:40.0707 3208  [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
21:33:40.0732 3208  [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
21:33:40.0783 3208  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
21:33:40.0794 3208  [Global] - ok
21:33:40.0795 3208  ================ Scan MBR ==================================
21:33:40.0811 3208  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
21:33:41.0753 3208  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
21:33:41.0754 3208  \Device\Harddisk0\DR0 - detected TDSS File System (1)
21:33:41.0754 3208  ================ Scan VBR ==================================
21:33:41.0759 3208  [ EF3A98421121B87EB259A3EAD9553465 ] \Device\Harddisk0\DR0\Partition1
21:33:41.0762 3208  \Device\Harddisk0\DR0\Partition1 - ok
21:33:41.0764 3208  ================ Scan active images ========================
21:33:41.0769 3208  [ 36975327EF03949CC378AB01E316B574 ] C:\Windows\System32\drivers\crashdmp.sys
21:33:41.0769 3208  C:\Windows\System32\drivers\crashdmp.sys - ok
21:33:41.0778 3208  [ E5A0034847537EAEE3C00349D5C34C5F ] C:\Windows\System32\drivers\iaStor.sys
21:33:41.0778 3208  C:\Windows\System32\drivers\iaStor.sys - ok
21:33:41.0789 3208  [ 300DB877AC094FEAB0BE7688C3454A9C ] C:\Windows\System32\drivers\tunnel.sys
21:33:41.0789 3208  C:\Windows\System32\drivers\tunnel.sys - ok
21:33:41.0798 3208  [ CBC22823628544735625B280665E434E ] C:\Windows\System32\drivers\FwLnk.sys
21:33:41.0798 3208  C:\Windows\System32\drivers\FwLnk.sys - ok
21:33:41.0807 3208  [ CAECC0120AC49E3D2F758B9169872D38 ] C:\Windows\System32\drivers\TUNMP.SYS
21:33:41.0807 3208  C:\Windows\System32\drivers\TUNMP.SYS - ok
21:33:41.0818 3208  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] C:\Windows\System32\drivers\CmBatt.sys
21:33:41.0818 3208  C:\Windows\System32\drivers\CmBatt.sys - ok
21:33:41.0827 3208  [ 224191001E78C89DFA78924C3EA595FF ] C:\Windows\System32\drivers\intelppm.sys
21:33:41.0827 3208  C:\Windows\System32\drivers\intelppm.sys - ok
21:33:41.0836 3208  [ 038815297078D236D8CC064C295A74C6 ] C:\Windows\System32\drivers\igdkmd32.sys
21:33:41.0836 3208  C:\Windows\System32\drivers\igdkmd32.sys - ok
21:33:41.0845 3208  [ C68AC676B0EF30CFBB1080ADCE49EB1F ] C:\Windows\System32\drivers\dxgkrnl.sys
21:33:41.0845 3208  C:\Windows\System32\drivers\dxgkrnl.sys - ok
21:33:41.0855 3208  [ 4A5C31E2C1646034E6A60EBA4C747FF6 ] C:\Windows\System32\drivers\watchdog.sys
21:33:41.0855 3208  C:\Windows\System32\drivers\watchdog.sys - ok
21:33:41.0865 3208  [ A1C100A87D981AD0774FBC0B4B82E913 ] C:\Windows\System32\drivers\usbport.sys
21:33:41.0865 3208  C:\Windows\System32\drivers\usbport.sys - ok
21:33:41.0874 3208  [ 814D653EFC4D48BE3B04A307ECEFF56F ] C:\Windows\System32\drivers\usbuhci.sys
21:33:41.0874 3208  C:\Windows\System32\drivers\usbuhci.sys - ok
21:33:41.0884 3208  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] C:\Windows\System32\drivers\usbehci.sys
21:33:41.0884 3208  C:\Windows\System32\drivers\usbehci.sys - ok
21:33:41.0893 3208  [ 062452B7FFD68C8C042A6261FE8DFF4A ] C:\Windows\System32\drivers\hdaudbus.sys
21:33:41.0894 3208  C:\Windows\System32\drivers\hdaudbus.sys - ok
21:33:41.0903 3208  [ 2D19A7469EA19993D0C12E627F4530BC ] C:\Windows\System32\drivers\Rtlh86.sys
21:33:41.0904 3208  C:\Windows\System32\drivers\Rtlh86.sys - ok
21:33:41.0912 3208  [ 6522DD40A5F67CED020BD81B856613FB ] C:\Windows\System32\drivers\NETw4v32.sys
21:33:41.0913 3208  C:\Windows\System32\drivers\NETw4v32.sys - ok
21:33:41.0922 3208  [ 0349BE02F329F4F48F1D48097FD65974 ] C:\Windows\System32\drivers\1394bus.sys
21:33:41.0922 3208  C:\Windows\System32\drivers\1394bus.sys - ok
21:33:41.0928 3208  [ 6F310E890D46E246E0E261A63D9B36B4 ] C:\Windows\System32\drivers\ohci1394.sys
21:33:41.0928 3208  C:\Windows\System32\drivers\ohci1394.sys - ok
21:33:41.0937 3208  [ 8F36B54688C31EED4580129040C6A3D3 ] C:\Windows\System32\drivers\sdbus.sys
21:33:41.0937 3208  C:\Windows\System32\drivers\sdbus.sys - ok
21:33:41.0946 3208  [ 355AAC141B214BEF1DBC1483AFD9BD50 ] C:\Windows\System32\drivers\rimmptsk.sys
21:33:41.0947 3208  C:\Windows\System32\drivers\rimmptsk.sys - ok
21:33:41.0956 3208  [ A4216C71DD4F60B26418CCFD99CD0815 ] C:\Windows\System32\drivers\rimsptsk.sys
21:33:41.0956 3208  C:\Windows\System32\drivers\rimsptsk.sys - ok
21:33:41.0965 3208  [ D231B577024AA324AF13A42F3A807D10 ] C:\Windows\System32\drivers\rixdptsk.sys
21:33:41.0967 3208  C:\Windows\System32\drivers\rixdptsk.sys - ok
21:33:41.0975 3208  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] C:\Windows\System32\drivers\i8042prt.sys
21:33:41.0976 3208  C:\Windows\System32\drivers\i8042prt.sys - ok
21:33:41.0985 3208  [ 37605E0A8CF00CBBA538E753E4344C6E ] C:\Windows\System32\drivers\kbdclass.sys
21:33:41.0985 3208  C:\Windows\System32\drivers\kbdclass.sys - ok
21:33:41.0994 3208  [ 70534D1E4F9AC990536D5FB5B550B3DE ] C:\Windows\System32\drivers\SynTP.sys
21:33:41.0994 3208  C:\Windows\System32\drivers\SynTP.sys - ok
21:33:42.0004 3208  [ 790FDAC6D0C762DF9047C3C625A6FF6C ] C:\Windows\System32\drivers\usbd.sys
21:33:42.0004 3208  C:\Windows\System32\drivers\usbd.sys - ok
21:33:42.0014 3208  [ 5BF6A1326A335C5298477754A506D263 ] C:\Windows\System32\drivers\mouclass.sys
21:33:42.0014 3208  C:\Windows\System32\drivers\mouclass.sys - ok
21:33:42.0023 3208  [ 1825BCEB47BF41C5A9F0E44DE82FC27A ] C:\Windows\System32\drivers\tdcmdpst.sys
21:33:42.0023 3208  C:\Windows\System32\drivers\tdcmdpst.sys - ok
21:33:42.0032 3208  [ 6B4BFFB9BECD728097024276430DB314 ] C:\Windows\System32\drivers\cdrom.sys
21:33:42.0032 3208  C:\Windows\System32\drivers\cdrom.sys - ok
21:33:42.0042 3208  [ 4AC51459805264AFFD5F6FDFB9D9235F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
21:33:42.0042 3208  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
21:33:42.0052 3208  [ B551D3F266DDA311256F963E8CFD1E9B ] C:\Windows\System32\drivers\tosrfcom.sys
21:33:42.0052 3208  C:\Windows\System32\drivers\tosrfcom.sys - ok
21:33:42.0061 3208  [ 47E55AFE1ED1D5AFF09690DB226F4A7A ] C:\Windows\System32\drivers\Storport.sys
21:33:42.0061 3208  C:\Windows\System32\drivers\Storport.sys - ok
21:33:42.0070 3208  [ 232FA340531D940AAC623B121A595034 ] C:\Windows\System32\drivers\msiscsi.sys
21:33:42.0070 3208  C:\Windows\System32\drivers\msiscsi.sys - ok
21:33:42.0080 3208  [ 77937EFF009AC696B90E09F671F9D0A4 ] C:\Windows\System32\drivers\tdi.sys
21:33:42.0080 3208  C:\Windows\System32\drivers\tdi.sys - ok
21:33:42.0090 3208  [ 0E186E90404980569FB449BA7519AE61 ] C:\Windows\System32\drivers\ndistapi.sys
21:33:42.0090 3208  C:\Windows\System32\drivers\ndistapi.sys - ok
21:33:42.0099 3208  [ A214ADBAF4CB47DD2728859EF31F26B0 ] C:\Windows\System32\drivers\rasl2tp.sys
21:33:42.0100 3208  C:\Windows\System32\drivers\rasl2tp.sys - ok
21:33:42.0109 3208  [ 818F648618AE34F729FDB47EC68345C3 ] C:\Windows\System32\drivers\ndiswan.sys
21:33:42.0109 3208  C:\Windows\System32\drivers\ndiswan.sys - ok
21:33:42.0118 3208  [ 509A98DD18AF4375E1FC40BC175F1DEF ] C:\Windows\System32\drivers\raspppoe.sys
21:33:42.0118 3208  C:\Windows\System32\drivers\raspppoe.sys - ok
21:33:42.0128 3208  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] C:\Windows\System32\drivers\raspptp.sys
21:33:42.0128 3208  C:\Windows\System32\drivers\raspptp.sys - ok
21:33:42.0138 3208  [ 2005F4A1E05FA09389AC85840F0A9E4D ] C:\Windows\System32\drivers\rassstp.sys
21:33:42.0138 3208  C:\Windows\System32\drivers\rassstp.sys - ok
21:33:42.0147 3208  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] C:\Windows\System32\drivers\wanatw4.sys
21:33:42.0147 3208  C:\Windows\System32\drivers\wanatw4.sys - ok
21:33:42.0156 3208  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] C:\Windows\System32\drivers\termdd.sys
21:33:42.0156 3208  C:\Windows\System32\drivers\termdd.sys - ok
21:33:42.0165 3208  [ EF73C1E29FBE7B0FD0274BF4394E346A ] C:\Windows\System32\drivers\ks.sys
21:33:42.0165 3208  C:\Windows\System32\drivers\ks.sys - ok
21:33:42.0175 3208  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] C:\Windows\System32\drivers\swenum.sys
21:33:42.0175 3208  C:\Windows\System32\drivers\swenum.sys - ok
21:33:42.0181 3208  [ E384487CB84BE41D09711C30CA79646C ] C:\Windows\System32\drivers\mssmbios.sys
21:33:42.0181 3208  C:\Windows\System32\drivers\mssmbios.sys - ok
21:33:42.0190 3208  [ 32CFF9F809AE9AED85464492BF3E32D2 ] C:\Windows\System32\drivers\umbus.sys
21:33:42.0190 3208  C:\Windows\System32\drivers\umbus.sys - ok
21:33:42.0200 3208  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] C:\Windows\System32\drivers\usbhub.sys
21:33:42.0200 3208  C:\Windows\System32\drivers\usbhub.sys - ok
21:33:42.0210 3208  [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] C:\Windows\System32\drivers\sffp_sd.sys
21:33:42.0210 3208  C:\Windows\System32\drivers\sffp_sd.sys - ok
21:33:42.0219 3208  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] C:\Windows\System32\drivers\sffdisk.sys
21:33:42.0219 3208  C:\Windows\System32\drivers\sffdisk.sys - ok
21:33:42.0228 3208  [ 71DAB552B41936358F3B541AE5997FB3 ] C:\Windows\System32\drivers\ndproxy.sys
21:33:42.0229 3208  C:\Windows\System32\drivers\ndproxy.sys - ok
21:33:42.0238 3208  [ 7BE5A3C671A2CB56E94403BFC2020A0D ] C:\Windows\System32\drivers\drmk.sys
21:33:42.0238 3208  C:\Windows\System32\drivers\drmk.sys - ok
21:33:42.0247 3208  [ 218286724EC530FF252648369E05B090 ] C:\Windows\System32\drivers\portcls.sys
21:33:42.0247 3208  C:\Windows\System32\drivers\portcls.sys - ok
21:33:42.0256 3208  [ 8A4341616976E47712B60F18C7049DCC ] C:\Windows\System32\drivers\RTKVHDA.sys
21:33:42.0256 3208  C:\Windows\System32\drivers\RTKVHDA.sys - ok
21:33:42.0265 3208  [ CE91B158FA490CF4C4D487A4130F4660 ] C:\Windows\System32\drivers\AGRSM.sys
21:33:42.0266 3208  C:\Windows\System32\drivers\AGRSM.sys - ok
21:33:42.0275 3208  [ E13B5EA0F51BA5B1512EC671393D09BA ] C:\Windows\System32\drivers\modem.sys
21:33:42.0275 3208  C:\Windows\System32\drivers\modem.sys - ok
21:33:42.0284 3208  [ CAF811AE4C147FFCD5B51750C7F09142 ] C:\Windows\System32\drivers\usbccgp.sys
21:33:42.0284 3208  C:\Windows\System32\drivers\usbccgp.sys - ok
21:33:42.0294 3208  [ 90AFA1A4451BBBEE87C9F18A665D8121 ] C:\Windows\System32\drivers\tosporte.sys
21:33:42.0294 3208  C:\Windows\System32\drivers\tosporte.sys - ok
21:33:42.0303 3208  [ 8C5094A8AB24DE7496C7C19942F2DF04 ] C:\Windows\System32\drivers\UVCFTR_S.SYS
21:33:42.0303 3208  C:\Windows\System32\drivers\UVCFTR_S.SYS - ok
21:33:42.0314 3208  [ E67998E8F14CB0627A769F6530BCB352 ] C:\Windows\System32\drivers\usbvideo.sys
21:33:42.0314 3208  C:\Windows\System32\drivers\usbvideo.sys - ok
21:33:42.0323 3208  [ 0E604867FC28F00D91CB0B00D2EC830D ] C:\Windows\System32\drivers\aswSnx.sys
21:33:42.0323 3208  C:\Windows\System32\drivers\aswSnx.sys - ok
21:33:42.0332 3208  [ B972A66758577E0BFD1DE0F91AAA27B5 ] C:\Windows\System32\drivers\fs_rec.sys
21:33:42.0332 3208  C:\Windows\System32\drivers\fs_rec.sys - ok
21:33:42.0342 3208  [ C5DBBCDA07D780BDA9B685DF333BB41E ] C:\Windows\System32\drivers\null.sys
21:33:42.0342 3208  C:\Windows\System32\drivers\null.sys - ok
21:33:42.0351 3208  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] C:\Windows\System32\drivers\beep.sys
21:33:42.0351 3208  C:\Windows\System32\drivers\beep.sys - ok
21:33:42.0360 3208  [ C048D2C33D27441A0CDCAAE2651EB03D ] C:\Windows\System32\drivers\videoprt.sys
21:33:42.0360 3208  C:\Windows\System32\drivers\videoprt.sys - ok
21:33:42.0369 3208  [ 2E93AC0A1D8C79D019DB6C51F036636C ] C:\Windows\System32\drivers\vga.sys
21:33:42.0369 3208  C:\Windows\System32\drivers\vga.sys - ok
21:33:42.0378 3208  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] C:\Windows\System32\drivers\RDPCDD.sys
21:33:42.0379 3208  C:\Windows\System32\drivers\RDPCDD.sys - ok
21:33:42.0388 3208  [ 9D91FE5286F748862ECFFA05F8A0710C ] C:\Windows\System32\drivers\RDPENCDD.sys
21:33:42.0388 3208  C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:33:42.0397 3208  [ A9927F4A46B816C92F461ACB90CF8515 ] C:\Windows\System32\drivers\msfs.sys
21:33:42.0397 3208  C:\Windows\System32\drivers\msfs.sys - ok
21:33:42.0406 3208  [ D36F239D7CCE1931598E8FB90A0DBC26 ] C:\Windows\System32\drivers\npfs.sys
21:33:42.0407 3208  C:\Windows\System32\drivers\npfs.sys - ok
21:33:42.0416 3208  [ 147D7F9C556D259924351FEB0DE606C3 ] C:\Windows\System32\drivers\rasacd.sys
21:33:42.0416 3208  C:\Windows\System32\drivers\rasacd.sys - ok
21:33:42.0425 3208  [ 76B06EB8A01FC8624D699E7045303E54 ] C:\Windows\System32\drivers\tdx.sys
21:33:42.0425 3208  C:\Windows\System32\drivers\tdx.sys - ok
21:33:42.0431 3208  [ 33E21FFB063CA6C7E00D568467DC72E4 ] C:\Windows\System32\drivers\aswTdi.sys
21:33:42.0431 3208  C:\Windows\System32\drivers\aswTdi.sys - ok
21:33:42.0441 3208  [ 7B75299A4D201D6A6533603D6914AB04 ] C:\Windows\System32\drivers\smb.sys
21:33:42.0441 3208  C:\Windows\System32\drivers\smb.sys - ok
21:33:42.0450 3208  [ 3911B972B55FEA0478476B2E777B29FA ] C:\Windows\System32\drivers\afd.sys
21:33:42.0450 3208  C:\Windows\System32\drivers\afd.sys - ok
21:33:42.0459 3208  [ C1A411B7CCD604554D96EFDAC2F83617 ] C:\Windows\System32\drivers\aswRdr.sys
21:33:42.0459 3208  C:\Windows\System32\drivers\aswRdr.sys - ok
21:33:42.0468 3208  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] C:\Windows\System32\drivers\netbt.sys
21:33:42.0468 3208  C:\Windows\System32\drivers\netbt.sys - ok
21:33:42.0478 3208  [ E3A3CB253C0EC2494D4A61F5E43A389C ] C:\Windows\System32\drivers\ws2ifsl.sys
21:33:42.0478 3208  C:\Windows\System32\drivers\ws2ifsl.sys - ok
21:33:42.0487 3208  [ 99514FAA8DF93D34B5589187DB3AA0BA ] C:\Windows\System32\drivers\pacer.sys
21:33:42.0487 3208  C:\Windows\System32\drivers\pacer.sys - ok
21:33:42.0496 3208  [ BCD093A5A6777CF626434568DC7DBA78 ] C:\Windows\System32\drivers\netbios.sys
21:33:42.0496 3208  C:\Windows\System32\drivers\netbios.sys - ok
21:33:42.0505 3208  [ 55201897378CCA7AF8B5EFD874374A26 ] C:\Windows\System32\drivers\wanarp.sys
21:33:42.0506 3208  C:\Windows\System32\drivers\wanarp.sys - ok
21:33:42.0515 3208  [ 77B9FC20084B48408AD3E87570EB4A85 ] C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
21:33:42.0515 3208  C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS - ok
21:33:42.0524 3208  [ 39763504067962108505BFF25F024345 ] C:\Program Files\SUPERAntiSpyware\sasdifsv.sys
21:33:42.0524 3208  C:\Program Files\SUPERAntiSpyware\sasdifsv.sys - ok
21:33:42.0534 3208  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] C:\Windows\System32\drivers\rdbss.sys
21:33:42.0534 3208  C:\Windows\System32\drivers\rdbss.sys - ok
21:33:42.0545 3208  [ 609773E344A97410CE4EBF74A8914FCF ] C:\Windows\System32\drivers\nsiproxy.sys
21:33:42.0545 3208  C:\Windows\System32\drivers\nsiproxy.sys - ok
21:33:42.0553 3208  [ 622C41A07CA7E6DD91770F50D532CB6C ] C:\Windows\System32\drivers\dfsc.sys
21:33:42.0554 3208  C:\Windows\System32\drivers\dfsc.sys - ok
21:33:42.0563 3208  [ 6FC4AA106AA505394C908D37CCCB9148 ] C:\Windows\System32\drivers\aswSP.sys
 



21:33:42.0563 3208 C:\Windows\System32\drivers\aswSP.sys - ok
21:33:42.0572 3208 [ DDA770BBD7C2ED024D6F50E279D90E5B ] C:\Windows\System32\ntdll.dll
21:33:42.0572 3208 C:\Windows\System32\ntdll.dll - ok
21:33:42.0581 3208 [ 98AF15A94CD6AC37248E72E5FE789B35 ] C:\Windows\System32\smss.exe
21:33:42.0581 3208 C:\Windows\System32\smss.exe - ok
21:33:42.0590 3208 [ 10761177A6EBE45843F443E99509F5E7 ] C:\Windows\System32\autochk.exe
21:33:42.0590 3208 C:\Windows\System32\autochk.exe - ok
21:33:42.0599 3208 [ B8A609FB5EFB4E44FC1355B1C01C64BC ] C:\Windows\System32\Wldap32.dll
21:33:42.0599 3208 C:\Windows\System32\Wldap32.dll - ok
21:33:42.0608 3208 [ 7856E3B4594714EF89BB97375E8644EE ] C:\Windows\System32\gdi32.dll
21:33:42.0608 3208 C:\Windows\System32\gdi32.dll - ok
21:33:42.0617 3208 [ E2281CFF793D7A09CE2B35F9F8732EE3 ] C:\Windows\System32\rpcrt4.dll
21:33:42.0617 3208 C:\Windows\System32\rpcrt4.dll - ok
21:33:42.0626 3208 [ B218342214D9BBA0F54EA12BA2E9278C ] C:\Windows\System32\oleaut32.dll
21:33:42.0626 3208 C:\Windows\System32\oleaut32.dll - ok
21:33:42.0635 3208 [ 17AF64D727545F2804F6E6D998327E3F ] C:\Windows\System32\msvcrt.dll
21:33:42.0635 3208 C:\Windows\System32\msvcrt.dll - ok
21:33:42.0644 3208 [ 6F29236AB5926100972924BD29D9D225 ] C:\Windows\System32\normaliz.dll
21:33:42.0644 3208 C:\Windows\System32\normaliz.dll - ok
21:33:42.0654 3208 [ 9176285122B7B849FEC2AA1B72A8F7A8 ] C:\Windows\System32\shlwapi.dll
21:33:42.0654 3208 C:\Windows\System32\shlwapi.dll - ok
21:33:42.0663 3208 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\System32\iertutil.dll
21:33:42.0663 3208 C:\Windows\System32\iertutil.dll - ok
21:33:42.0672 3208 [ 80FFF14F1757B9AF8BE9D314FC1AE88B ] C:\Windows\System32\usp10.dll
21:33:42.0672 3208 C:\Windows\System32\usp10.dll - ok
21:33:42.0681 3208 [ 551F51B66E5EA87A38D8197EB3BDB57A ] C:\Windows\System32\setupapi.dll
21:33:42.0681 3208 C:\Windows\System32\setupapi.dll - ok
21:33:42.0687 3208 [ 50CAA7072C171B9887215C83D52069E4 ] C:\Windows\System32\advapi32.dll
21:33:42.0687 3208 C:\Windows\System32\advapi32.dll - ok
21:33:42.0696 3208 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\System32\urlmon.dll
21:33:42.0696 3208 C:\Windows\System32\urlmon.dll - ok
21:33:42.0705 3208 [ DC3105CC925A0D47F61B54E66AB730FC ] C:\Windows\System32\kernel32.dll
21:33:42.0705 3208 C:\Windows\System32\kernel32.dll - ok
21:33:42.0714 3208 [ AAF101900A23D75AE1AE00840FA6F3B8 ] C:\Windows\System32\shell32.dll
21:33:42.0714 3208 C:\Windows\System32\shell32.dll - ok
21:33:42.0723 3208 [ E3C3BD69701CE6B7B17101E4F7740534 ] C:\Windows\System32\msctf.dll
21:33:42.0723 3208 C:\Windows\System32\msctf.dll - ok
21:33:42.0733 3208 [ B304D47D5744BA20FCB99FB8B2C07B0B ] C:\Windows\System32\ws2_32.dll
21:33:42.0733 3208 C:\Windows\System32\ws2_32.dll - ok
21:33:42.0741 3208 [ EB0E02749CE5C488741C9A0ABEAB5DEC ] C:\Windows\System32\lpk.dll
21:33:42.0741 3208 C:\Windows\System32\lpk.dll - ok
21:33:42.0751 3208 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\System32\wininet.dll
21:33:42.0751 3208 C:\Windows\System32\wininet.dll - ok
21:33:42.0759 3208 [ 4AA2A0E26CEF1A803741253DCF9A1503 ] C:\Windows\System32\comdlg32.dll
21:33:42.0760 3208 C:\Windows\System32\comdlg32.dll - ok
21:33:42.0769 3208 [ C8BDCECEE082B54F0BAC838BF0A34597 ] C:\Windows\System32\imm32.dll
21:33:42.0769 3208 C:\Windows\System32\imm32.dll - ok
21:33:42.0779 3208 [ A64AEBC6C78B4CFD7F41A7277879DF8F ] C:\Windows\System32\nsi.dll
21:33:42.0779 3208 C:\Windows\System32\nsi.dll - ok
21:33:42.0788 3208 [ EB49FAA5EBBC06356FB12476438781B9 ] C:\Windows\System32\imagehlp.dll
21:33:42.0788 3208 C:\Windows\System32\imagehlp.dll - ok
21:33:42.0797 3208 [ C394079EB162E812D682C73FA96AF6E4 ] C:\Windows\System32\clbcatq.dll
21:33:42.0797 3208 C:\Windows\System32\clbcatq.dll - ok
21:33:42.0805 3208 [ 9586E7CB2255A8B097A7E4538202585E ] C:\Windows\System32\ole32.dll
21:33:42.0806 3208 C:\Windows\System32\ole32.dll - ok
21:33:42.0815 3208 [ 75510147B94598407666F4802797C75A ] C:\Windows\System32\user32.dll
21:33:42.0815 3208 C:\Windows\System32\user32.dll - ok
21:33:42.0824 3208 [ DC8891A9203810FC994E7FCCF76E94C8 ] C:\Windows\System32\comctl32.dll
21:33:42.0824 3208 C:\Windows\System32\comctl32.dll - ok
21:33:42.0833 3208 [ 93A1732F7F997E36A5C3893539E2FF02 ] C:\Windows\System32\psapi.dll
21:33:42.0833 3208 C:\Windows\System32\psapi.dll - ok
21:33:42.0842 3208 [ EAAAFEF04FBB45665C9576E525D45A12 ] C:\Windows\System32\drivers\dxapi.sys
21:33:42.0842 3208 C:\Windows\System32\drivers\dxapi.sys - ok
21:33:42.0852 3208 [ F167606EC2C01D804FC72F8F84E73E19 ] C:\Windows\System32\win32k.sys
21:33:42.0852 3208 C:\Windows\System32\win32k.sys - ok
21:33:42.0860 3208 [ 187076DD5D8D4D5D23079D0741195EAD ] C:\Windows\System32\csrsrv.dll
21:33:42.0860 3208 C:\Windows\System32\csrsrv.dll - ok
21:33:42.0869 3208 [ ABCA209EBA02CB59233614DB83B4F50D ] C:\Windows\System32\csrss.exe
21:33:42.0869 3208 C:\Windows\System32\csrss.exe - ok
21:33:42.0878 3208 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\System32\basesrv.dll
21:33:42.0879 3208 C:\Windows\System32\basesrv.dll - ok
21:33:42.0888 3208 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\System32\winsrv.dll
21:33:42.0888 3208 C:\Windows\System32\winsrv.dll - ok
21:33:42.0897 3208 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] C:\Windows\System32\drivers\monitor.sys
21:33:42.0897 3208 C:\Windows\System32\drivers\monitor.sys - ok
21:33:42.0907 3208 [ CC21507D246861671A0BF97E75CE1B00 ] C:\Windows\System32\tsddd.dll
21:33:42.0907 3208 C:\Windows\System32\tsddd.dll - ok
21:33:42.0916 3208 [ D602FEDBD9155FC2DED6863FB60C950F ] C:\Windows\System32\secur32.dll
21:33:42.0916 3208 C:\Windows\System32\secur32.dll - ok
21:33:42.0925 3208 [ 665417528489096BBCB8AEA46D3DA924 ] C:\Windows\System32\userenv.dll
21:33:42.0925 3208 C:\Windows\System32\userenv.dll - ok
21:33:42.0934 3208 [ 101BA3EA053480BB5D957EF37C06B5ED ] C:\Windows\System32\wininit.exe
21:33:42.0934 3208 C:\Windows\System32\wininit.exe - ok
21:33:42.0940 3208 [ 12C8D6C564702B0776512932290A3F6B ] C:\Windows\System32\KBDUS.DLL
21:33:42.0940 3208 C:\Windows\System32\KBDUS.DLL - ok
21:33:42.0950 3208 [ 1107BD574A84367735FEC38B9BD64E6B ] C:\Windows\System32\apphelp.dll
21:33:42.0950 3208 C:\Windows\System32\apphelp.dll - ok
21:33:42.0959 3208 [ 92283D9E33EC5F41ECC0B430B7459241 ] C:\Windows\System32\WlS0WndH.dll
21:33:42.0959 3208 C:\Windows\System32\WlS0WndH.dll - ok
21:33:42.0968 3208 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\System32\Services.exe
21:33:42.0969 3208 C:\Windows\System32\Services.exe - ok
21:33:42.0977 3208 [ BE6FAC6F0745C67DAE7522C96406D083 ] C:\Windows\System32\sxs.dll
21:33:42.0977 3208 C:\Windows\System32\sxs.dll - ok
21:33:42.0987 3208 [ CF9F5BBC2740C41DD471278C41B91F5F ] C:\Windows\System32\cdd.dll
21:33:42.0987 3208 C:\Windows\System32\cdd.dll - ok
21:33:42.0996 3208 [ A3E186B4B935905B829219502557314E ] C:\Windows\System32\lsass.exe
21:33:42.0996 3208 C:\Windows\System32\lsass.exe - ok
21:33:43.0005 3208 [ 4774AD6C447E02E954BD9A793614EBEC ] C:\Windows\System32\lsm.exe
21:33:43.0005 3208 C:\Windows\System32\lsm.exe - ok
21:33:43.0014 3208 [ D90911B3FA05D7B930C1286084B404DE ] C:\Windows\System32\scesrv.dll
21:33:43.0014 3208 C:\Windows\System32\scesrv.dll - ok
21:33:43.0023 3208 [ 71F5A7104FDF16C0AC5283A6CE666553 ] C:\Windows\System32\sysntfy.dll
21:33:43.0023 3208 C:\Windows\System32\sysntfy.dll - ok
21:33:43.0032 3208 [ F0321DA5203F1E71917F3B7A13DC4912 ] C:\Windows\System32\wmsgapi.dll
21:33:43.0032 3208 C:\Windows\System32\wmsgapi.dll - ok
21:33:43.0041 3208 [ 178FAC2B7C66E9A4400CE7AC37623E3F ] C:\Windows\System32\lsasrv.dll
21:33:43.0041 3208 C:\Windows\System32\lsasrv.dll - ok
21:33:43.0050 3208 [ 1AE011BB950A5E0B05023D2AFEC3666D ] C:\Windows\System32\authz.dll
21:33:43.0050 3208 C:\Windows\System32\authz.dll - ok
21:33:43.0059 3208 [ 98B656EAF128CD06F625B09C84D959E1 ] C:\Windows\System32\netapi32.dll
21:33:43.0060 3208 C:\Windows\System32\netapi32.dll - ok
21:33:43.0069 3208 [ 2FA16465F64DB54B1F7F511395EB4FD7 ] C:\Windows\System32\ncobjapi.dll
21:33:43.0069 3208 C:\Windows\System32\ncobjapi.dll - ok
21:33:43.0078 3208 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] C:\Windows\System32\aelupsvc.dll
21:33:43.0078 3208 C:\Windows\System32\aelupsvc.dll - ok
21:33:43.0087 3208 [ A1545B731579895D8CC44FC0481C1192 ] C:\Windows\System32\alg.exe
21:33:43.0087 3208 C:\Windows\System32\alg.exe - ok
21:33:43.0096 3208 [ 7808BF0E367ED7348808879CEF482AB3 ] C:\Windows\System32\samsrv.dll
21:33:43.0096 3208 C:\Windows\System32\samsrv.dll - ok
21:33:43.0105 3208 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] C:\Windows\System32\appinfo.dll
21:33:43.0105 3208 C:\Windows\System32\appinfo.dll - ok
21:33:43.0114 3208 [ 459B48188494490707DCA8BAA91AA185 ] C:\Windows\System32\cryptdll.dll
21:33:43.0114 3208 C:\Windows\System32\cryptdll.dll - ok
21:33:43.0123 3208 [ 85E861D0B88DB2B54ACB0839654C09F7 ] C:\Windows\System32\dnsapi.dll
21:33:43.0124 3208 C:\Windows\System32\dnsapi.dll - ok
21:33:43.0132 3208 [ 3464DAE0E801F5A81A23C571D86F30B2 ] C:\Windows\System32\rascfg.dll
21:33:43.0132 3208 C:\Windows\System32\rascfg.dll - ok
21:33:43.0141 3208 [ 453DE2958C885527E20C79A3FEFE6AF7 ] C:\Windows\System32\samlib.dll
21:33:43.0141 3208 C:\Windows\System32\samlib.dll - ok
21:33:43.0150 3208 [ 68E2A1A0407A66CF50DA0300852424AB ] C:\Windows\System32\audiosrv.dll
21:33:43.0150 3208 C:\Windows\System32\audiosrv.dll - ok
21:33:43.0159 3208 [ 965AC9FBF2C67231C157E99C03C58D24 ] C:\Windows\System32\feclient.dll
21:33:43.0159 3208 C:\Windows\System32\feclient.dll - ok
21:33:43.0168 3208 [ 1F94EA31C9543B855F53BDAC7792DA4E ] C:\Windows\System32\mpr.dll
21:33:43.0168 3208 C:\Windows\System32\mpr.dll - ok
21:33:43.0178 3208 [ EE2FF9A3FC4404234BE3B7C6AA383AF8 ] C:\Windows\System32\msasn1.dll
21:33:43.0178 3208 C:\Windows\System32\msasn1.dll - ok
21:33:43.0187 3208 [ 7F0F1D4B0D847696F8E309423D227DCE ] C:\Windows\System32\ntdsapi.dll
21:33:43.0187 3208 C:\Windows\System32\ntdsapi.dll - ok
21:33:43.0192 3208 [ C789AF0F724FDA5852FB9A7D3A432381 ] C:\Windows\System32\BFE.DLL
21:33:43.0192 3208 C:\Windows\System32\BFE.DLL - ok
21:33:43.0201 3208 [ B0F9073BE86C6D4EDD4EBA674251E699 ] C:\Windows\System32\crypt32.dll
21:33:43.0201 3208 C:\Windows\System32\crypt32.dll - ok
21:33:43.0210 3208 [ 93952506C6D67330367F7E7934B6A02F ] C:\Windows\System32\qmgr.dll
21:33:43.0211 3208 C:\Windows\System32\qmgr.dll - ok
21:33:43.0219 3208 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] C:\Windows\System32\browser.dll
21:33:43.0219 3208 C:\Windows\System32\browser.dll - ok
21:33:43.0229 3208 [ A4C8377FA4A994E07075107DBE2E3DCE ] C:\Windows\System32\bthserv.dll
21:33:43.0229 3208 C:\Windows\System32\bthserv.dll - ok
21:33:43.0239 3208 [ 312EC3E37A0A1F2006534913E37B4423 ] C:\Windows\System32\certprop.dll
21:33:43.0239 3208 C:\Windows\System32\certprop.dll - ok
21:33:43.0247 3208 [ 4211249955AF9133E2E357CC92B54DFD ] C:\Windows\System32\comres.dll
21:33:43.0248 3208 C:\Windows\System32\comres.dll - ok
21:33:43.0257 3208 [ C6DF7A87063D006ECF1FD8156CB6DE3F ] C:\Windows\System32\SLC.dll
21:33:43.0257 3208 C:\Windows\System32\SLC.dll - ok
21:33:43.0265 3208 [ 898E7C06A350D4A1A64A9EA264D55452 ] C:\Windows\System32\winlogon.exe
21:33:43.0266 3208 C:\Windows\System32\winlogon.exe - ok
21:33:43.0275 3208 [ 4AAFC7461633848AA87A363B2CBEC522 ] C:\Windows\System32\winsta.dll
21:33:43.0275 3208 C:\Windows\System32\winsta.dll - ok
21:33:43.0284 3208 [ 4DE3C4D07BAFDE616EFA0ADE076CBAC2 ] C:\Windows\System32\wevtapi.dll
21:33:43.0284 3208 C:\Windows\System32\wevtapi.dll - ok
21:33:43.0293 3208 [ 9028559C132146FB75EB7ACF384B086A ] C:\Windows\System32\dhcpcsvc.dll
21:33:43.0293 3208 C:\Windows\System32\dhcpcsvc.dll - ok
21:33:43.0302 3208 [ 4FE8425F21B3F0F8C4B4726351D43EAA ] C:\Windows\System32\IPHLPAPI.DLL
21:33:43.0302 3208 C:\Windows\System32\IPHLPAPI.DLL - ok
21:33:43.0311 3208 [ DFB6B71CDABA9DFB49C9D2B318B97A1A ] C:\Windows\System32\dhcpcsvc6.dll
21:33:43.0311 3208 C:\Windows\System32\dhcpcsvc6.dll - ok
21:33:43.0320 3208 [ 6B09105742C75DF80CEF21700F20F55A ] C:\Windows\System32\winnsi.dll
21:33:43.0320 3208 C:\Windows\System32\winnsi.dll - ok
21:33:43.0329 3208 [ DE0DD9AE3430F84A96B5501112A696BE ] C:\Windows\System32\bcrypt.dll
21:33:43.0330 3208 C:\Windows\System32\bcrypt.dll - ok
21:33:43.0338 3208 [ 7F15B4953378C8B5161D65C26D5FED4D ] C:\Windows\System32\cngaudit.dll
21:33:43.0338 3208 C:\Windows\System32\cngaudit.dll - ok
21:33:43.0348 3208 [ 188CC19108B0EBD6332D6628D4EDE469 ] C:\Windows\System32\ncrypt.dll
21:33:43.0348 3208 C:\Windows\System32\ncrypt.dll - ok
21:33:43.0357 3208 [ F1E8C34892336D33EDDCDFE44E474F64 ] C:\Windows\System32\cryptsvc.dll
21:33:43.0357 3208 C:\Windows\System32\cryptsvc.dll - ok
21:33:43.0366 3208 [ 74F380C8EC8813626C670D46E8A714D1 ] C:\Windows\System32\dfsrres.dll
21:33:43.0366 3208 C:\Windows\System32\dfsrres.dll - ok
21:33:43.0376 3208 [ 08D6D1692B62C9EE4062E1FA04D8FE2F ] C:\Windows\System32\oleres.dll
21:33:43.0376 3208 C:\Windows\System32\oleres.dll - ok
21:33:43.0384 3208 [ 26F139DDEC6407508071930D3D07337E ] C:\Windows\System32\credssp.dll
21:33:43.0385 3208 C:\Windows\System32\credssp.dll - ok
21:33:43.0394 3208 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] C:\Windows\System32\dot3svc.dll
21:33:43.0394 3208 C:\Windows\System32\dot3svc.dll - ok
21:33:43.0403 3208 [ AA01497884F9CBAC89470120AF78D2B1 ] C:\Windows\System32\kerberos.dll
21:33:43.0403 3208 C:\Windows\System32\kerberos.dll - ok
21:33:43.0412 3208 [ ABE9EEA1EABEA0711610A637A7B1C25D ] C:\Windows\System32\msprivs.dll
21:33:43.0412 3208 C:\Windows\System32\msprivs.dll - ok
21:33:43.0421 3208 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] C:\Windows\System32\dps.dll
21:33:43.0421 3208 C:\Windows\System32\dps.dll - ok
21:33:43.0430 3208 [ 9BE3744D295A7701EB425332014F0797 ] C:\Windows\ehome\ehrecvr.exe
21:33:43.0430 3208 C:\Windows\ehome\ehrecvr.exe - ok
21:33:43.0439 3208 [ C0B95E40D85CD807D614E264248A45B9 ] C:\Windows\System32\eapsvc.dll
21:33:43.0439 3208 C:\Windows\System32\eapsvc.dll - ok
21:33:43.0445 3208 [ 9E80FF0752E365F97FD2D1D68C2AFDA1 ] C:\Windows\System32\wship6.dll
21:33:43.0445 3208 C:\Windows\System32\wship6.dll - ok
21:33:43.0454 3208 [ 22CFAEB9172F5F198048401485CD0571 ] C:\Windows\System32\WSHTCPIP.DLL
21:33:43.0454 3208 C:\Windows\System32\WSHTCPIP.DLL - ok
21:33:43.0463 3208 [ AD1870C8E5D6DD340C829E6074BF3C3F ] C:\Windows\ehome\ehsched.exe
21:33:43.0463 3208 C:\Windows\ehome\ehsched.exe - ok
21:33:43.0472 3208 [ 05C3B38DB95BA5585817A4F898EE5581 ] C:\Windows\System32\wshqos.dll
21:33:43.0472 3208 C:\Windows\System32\wshqos.dll - ok
21:33:43.0482 3208 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] C:\Windows\ehome\ehstart.dll
21:33:43.0482 3208 C:\Windows\ehome\ehstart.dll - ok
21:33:43.0491 3208 [ 4E6B23DFC917EA39306B529B773950F4 ] C:\Windows\System32\emdmgmt.dll
21:33:43.0491 3208 C:\Windows\System32\emdmgmt.dll - ok
21:33:43.0500 3208 [ FC62A635063B762E1C3C60EA77279378 ] C:\Windows\System32\NapiNSP.dll
21:33:43.0500 3208 C:\Windows\System32\NapiNSP.dll - ok
21:33:43.0509 3208 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] C:\Windows\System32\nlasvc.dll
21:33:43.0509 3208 C:\Windows\System32\nlasvc.dll - ok
21:33:43.0519 3208 [ 690D41DF1D555F96D4898A0F54EBA065 ] C:\Windows\System32\pnrpnsp.dll
21:33:43.0519 3208 C:\Windows\System32\pnrpnsp.dll - ok
21:33:43.0528 3208 [ 4ABCE74D012971305249E45E095E9EA6 ] C:\Windows\System32\msv1_0.dll
21:33:43.0528 3208 C:\Windows\System32\msv1_0.dll - ok
21:33:43.0537 3208 [ 8617350C9B590B63E620881092751BCB ] C:\Windows\System32\mswsock.dll
21:33:43.0537 3208 C:\Windows\System32\mswsock.dll - ok
21:33:43.0546 3208 [ 95DAECF0FB120A7B5DA679CC54E37DDE ] C:\Windows\System32\netlogon.dll
21:33:43.0547 3208 C:\Windows\System32\netlogon.dll - ok
21:33:43.0555 3208 [ A1B40A28F38D27A7E3229EE4C7064434 ] C:\Windows\System32\wevtsvc.dll
21:33:43.0555 3208 C:\Windows\System32\wevtsvc.dll - ok
21:33:43.0565 3208 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] C:\Windows\System32\fdPHost.dll
21:33:43.0565 3208 C:\Windows\System32\fdPHost.dll - ok
21:33:43.0574 3208 [ 72910BC4A218C49EA8E43D1FAEC403A5 ] C:\Windows\System32\winbrand.dll
21:33:43.0574 3208 C:\Windows\System32\winbrand.dll - ok
21:33:43.0583 3208 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] C:\Windows\System32\FDResPub.dll
21:33:43.0583 3208 C:\Windows\System32\FDResPub.dll - ok
21:33:43.0592 3208 [ 8CE364388C8ECA59B14B539179276D44 ] C:\Windows\System32\FntCache.dll
21:33:43.0592 3208 C:\Windows\System32\FntCache.dll - ok
21:33:43.0601 3208 [ 50E3E76B0901BB4FC029BB88BFA5CE79 ] C:\Windows\System32\schannel.dll
21:33:43.0601 3208 C:\Windows\System32\schannel.dll - ok
21:33:43.0610 3208 [ 93620229F3CC3B67A3528BF39F064C30 ] C:\Windows\System32\wdigest.dll
21:33:43.0610 3208 C:\Windows\System32\wdigest.dll - ok
21:33:43.0620 3208 [ 302964DCAC79D618CC7B72C778DA9FD2 ] C:\Windows\System32\PresentationHost.exe
21:33:43.0620 3208 C:\Windows\System32\PresentationHost.exe - ok
21:33:43.0629 3208 [ E14170AEA125119B98FA2BDE3FF4F462 ] C:\Windows\System32\rsaenh.dll
21:33:43.0629 3208 C:\Windows\System32\rsaenh.dll - ok
21:33:43.0638 3208 [ 0F420E81062757EA8363CBACD4D40D6D ] C:\Windows\System32\gpapi.dll
21:33:43.0638 3208 C:\Windows\System32\gpapi.dll - ok
21:33:43.0648 3208 [ 84067081F3318162797385E11A8F0582 ] C:\Windows\System32\hidserv.dll
21:33:43.0648 3208 C:\Windows\System32\hidserv.dll - ok
21:33:43.0656 3208 [ F8873D15018F411588BEC02C1725BADA ] C:\Windows\System32\TSpkg.dll
21:33:43.0656 3208 C:\Windows\System32\TSpkg.dll - ok
21:33:43.0666 3208 [ 05586F5438AB0DA4F5149159E0E5FD4B ] C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
21:33:43.0666 3208 C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
21:33:43.0675 3208 [ D8AD255B37DA92434C26E4876DB7D418 ] C:\Windows\System32\KMSVC.DLL
21:33:43.0675 3208 C:\Windows\System32\KMSVC.DLL - ok
21:33:43.0684 3208 [ 9908D8A397B76CD8D31D0D383C5773C9 ] C:\Windows\System32\IKEEXT.DLL
21:33:43.0685 3208 C:\Windows\System32\IKEEXT.DLL - ok
21:33:43.0690 3208 [ 9AC218C6E6105477484C6FDBE7D409A4 ] C:\Windows\System32\IPBusEnum.dll
21:33:43.0690 3208 C:\Windows\System32\IPBusEnum.dll - ok
21:33:43.0700 3208 [ 1998BD97F950680BB55F55A7244679C2 ] C:\Windows\System32\iphlpsvc.dll
21:33:43.0700 3208 C:\Windows\System32\iphlpsvc.dll - ok
21:33:43.0709 3208 [ 74C2F29CC612B2B34231BEBD824D2FB2 ] C:\Windows\System32\keyiso.dll
21:33:43.0709 3208 C:\Windows\System32\keyiso.dll - ok
21:33:43.0718 3208 [ FA0593D936C9B95FB6FAA32AD1595D49 ] C:\Windows\System32\lltdres.dll
21:33:43.0718 3208 C:\Windows\System32\lltdres.dll - ok
21:33:43.0727 3208 [ 35D40113E4A5B961B6CE5C5857702518 ] C:\Windows\System32\lmhsvc.dll
21:33:43.0727 3208 C:\Windows\System32\lmhsvc.dll - ok
21:33:43.0736 3208 [ 1BF5EEBFD518DD7298434D8C862F825D ] C:\Windows\System32\srvsvc.dll
21:33:43.0736 3208 C:\Windows\System32\srvsvc.dll - ok
21:33:43.0745 3208 [ 1DB69705B695B987082C8BAEC0C6B34F ] C:\Windows\System32\wkssvc.dll
21:33:43.0745 3208 C:\Windows\System32\wkssvc.dll - ok
21:33:43.0754 3208 [ 132F6237FA3BF3E9715F63A1CCF72BF1 ] C:\Windows\ehome\ehres.dll
21:33:43.0754 3208 C:\Windows\ehome\ehres.dll - ok
21:33:43.0763 3208 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] C:\Windows\System32\mmcss.dll
21:33:43.0763 3208 C:\Windows\System32\mmcss.dll - ok
21:33:43.0772 3208 [ 95F1EB99B81CFD6F581C85F0A0AA9B2B ] C:\Windows\System32\FirewallAPI.dll
21:33:43.0772 3208 C:\Windows\System32\FirewallAPI.dll - ok
21:33:43.0782 3208 [ EA822412BBBA9B7D2B1A3748AD50EFB8 ] C:\Windows\System32\iscsidsc.dll
21:33:43.0782 3208 C:\Windows\System32\iscsidsc.dll - ok
21:33:43.0791 3208 [ ED21401F1E2F6BC2F54C462BB66D0D6B ] C:\Windows\System32\msimsg.dll
21:33:43.0791 3208 C:\Windows\System32\msimsg.dll - ok
21:33:43.0800 3208 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] C:\Windows\System32\QAGENTRT.DLL
21:33:43.0800 3208 C:\Windows\System32\QAGENTRT.DLL - ok
21:33:43.0808 3208 [ C8052711DAECC48B982434C5116CA401 ] C:\Windows\System32\netman.dll
21:33:43.0809 3208 C:\Windows\System32\netman.dll - ok
21:33:43.0818 3208 [ ED640F4CE585058119B824CC76591D9C ] C:\Windows\System32\netprof.dll
21:33:43.0818 3208 C:\Windows\System32\netprof.dll - ok
21:33:43.0827 3208 [ CA461A203EF40A98C1C23DE3CBEE68B2 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
21:33:43.0827 3208 C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
21:33:43.0836 3208 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] C:\Windows\System32\nsisvc.dll
21:33:43.0837 3208 C:\Windows\System32\nsisvc.dll - ok
21:33:43.0845 3208 [ 0C8E8E61AD1EB0B250B846712C917506 ] C:\Windows\System32\p2psvc.dll
21:33:43.0845 3208 C:\Windows\System32\p2psvc.dll - ok
21:33:43.0854 3208 [ C6276AD11F4BB49B58AA1ED88537F14A ] C:\Windows\System32\pcasvc.dll
21:33:43.0854 3208 C:\Windows\System32\pcasvc.dll - ok
21:33:43.0863 3208 [ B1689DF169143F57053F795390C99DB3 ] C:\Windows\System32\pla.dll
21:33:43.0863 3208 C:\Windows\System32\pla.dll - ok
21:33:43.0872 3208 [ C5E7F8A996EC0A82D508FD9064A5569E ] C:\Windows\System32\umpnpmgr.dll
21:33:43.0872 3208 C:\Windows\System32\umpnpmgr.dll - ok
21:33:43.0881 3208 [ 64B28D672B5B6A01E87B0C3096B1E047 ] C:\Windows\System32\polstore.dll
21:33:43.0881 3208 C:\Windows\System32\polstore.dll - ok
21:33:43.0891 3208 [ 0508FAA222D28835310B7BFCA7A77346 ] C:\Windows\System32\profsvc.dll
21:33:43.0891 3208 C:\Windows\System32\profsvc.dll - ok
21:33:43.0900 3208 [ 08F9134A2215B7ED985409A4DF60AC60 ] C:\Windows\System32\psbase.dll
21:33:43.0900 3208 C:\Windows\System32\psbase.dll - ok
21:33:43.0908 3208 [ E9ECAE663F47E6CB43962D18AB18890F ] C:\Windows\System32\qwave.dll
21:33:43.0909 3208 C:\Windows\System32\qwave.dll - ok
21:33:43.0918 3208 [ 9F5E0E1926014D17486901C88ECA2DB7 ] C:\Windows\System32\drivers\qwavedrv.sys
21:33:43.0918 3208 C:\Windows\System32\drivers\qwavedrv.sys - ok
21:33:43.0927 3208 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] C:\Windows\System32\rasauto.dll
21:33:43.0927 3208 C:\Windows\System32\rasauto.dll - ok
21:33:43.0936 3208 [ 75D47445D70CA6F9F894B032FBC64FCF ] C:\Windows\System32\rasmans.dll
21:33:43.0936 3208 C:\Windows\System32\rasmans.dll - ok
21:33:43.0941 3208 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] C:\Windows\System32\sstpsvc.dll
21:33:43.0941 3208 C:\Windows\System32\sstpsvc.dll - ok
21:33:43.0951 3208 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] C:\Windows\System32\mprdim.dll
21:33:43.0951 3208 C:\Windows\System32\mprdim.dll - ok
21:33:43.0961 3208 [ 5123F83CBC4349D065534EEB6BBDC42B ] C:\Windows\System32\Locator.exe
21:33:43.0961 3208 C:\Windows\System32\Locator.exe - ok
21:33:43.0970 3208 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] C:\Windows\System32\regsvc.dll
21:33:43.0970 3208 C:\Windows\System32\regsvc.dll - ok
21:33:43.0979 3208 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] C:\Windows\System32\SCardSvr.dll
21:33:43.0979 3208 C:\Windows\System32\SCardSvr.dll - ok
21:33:43.0988 3208 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] C:\Windows\System32\schedsvc.dll
21:33:43.0988 3208 C:\Windows\System32\schedsvc.dll - ok
21:33:43.0997 3208 [ 716313D9F6B0529D03F726D5AAF6F191 ] C:\Windows\System32\sdrsvc.dll
21:33:43.0997 3208 C:\Windows\System32\sdrsvc.dll - ok
21:33:44.0006 3208 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] C:\Windows\System32\ipnathlp.dll
21:33:44.0006 3208 C:\Windows\System32\ipnathlp.dll - ok
21:33:44.0015 3208 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] C:\Windows\System32\seclogon.dll
21:33:44.0015 3208 C:\Windows\System32\seclogon.dll - ok
21:33:44.0024 3208 [ A9BBAB5759771E523F55563D6CBE140F ] C:\Windows\System32\Sens.dll
21:33:44.0024 3208 C:\Windows\System32\Sens.dll - ok
21:33:44.0033 3208 [ D2193326F729B163125610DBF3E17D57 ] C:\Windows\System32\SessEnv.dll
21:33:44.0033 3208 C:\Windows\System32\SessEnv.dll - ok
21:33:44.0042 3208 [ C7230FBEE14437716701C15BE02C27B8 ] C:\Windows\System32\shsvcs.dll
21:33:44.0042 3208 C:\Windows\System32\shsvcs.dll - ok
21:33:44.0051 3208 [ 862BB4CBC05D80C5B45BE430E5EF872F ] C:\Windows\System32\SLsvc.exe
21:33:44.0051 3208 C:\Windows\System32\SLsvc.exe - ok
21:33:44.0060 3208 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] C:\Windows\System32\SLUINotify.dll
21:33:44.0060 3208 C:\Windows\System32\SLUINotify.dll - ok
21:33:44.0070 3208 [ 2A146A055B4401C16EE62D18B8E2A032 ] C:\Windows\System32\snmptrap.exe
21:33:44.0070 3208 C:\Windows\System32\snmptrap.exe - ok
21:33:44.0079 3208 [ E4060CFE50F87C72316CB0FDB20E4913 ] C:\Windows\System32\tcpipcfg.dll
21:33:44.0079 3208 C:\Windows\System32\tcpipcfg.dll - ok
21:33:44.0088 3208 [ 8554097E5136C3BF9F69FE578A1B35F4 ] C:\Windows\System32\spoolsv.exe
21:33:44.0088 3208 C:\Windows\System32\spoolsv.exe - ok
21:33:44.0097 3208 [ 03D50B37234967433A5EA5BA72BC0B62 ] C:\Windows\System32\ssdpsrv.dll
21:33:44.0097 3208 C:\Windows\System32\ssdpsrv.dll - ok
21:33:44.0106 3208 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] C:\Windows\System32\wiaservc.dll
21:33:44.0106 3208 C:\Windows\System32\wiaservc.dll - ok
21:33:44.0115 3208 [ F21FD248040681CCA1FB6C9A03AAA93D ] C:\Windows\System32\swprv.dll
21:33:44.0115 3208 C:\Windows\System32\swprv.dll - ok
21:33:44.0124 3208 [ 9A51B04E9886AA4EE90093586B0BA88D ] C:\Windows\System32\sysmain.dll
21:33:44.0124 3208 C:\Windows\System32\sysmain.dll - ok
21:33:44.0133 3208 [ 2DCA225EAE15F42C0933E998EE0231C3 ] C:\Windows\System32\TabSvc.dll
21:33:44.0133 3208 C:\Windows\System32\TabSvc.dll - ok
21:33:44.0142 3208 [ D7673E4B38CE21EE54C59EEEB65E2483 ] C:\Windows\System32\tapisrv.dll
21:33:44.0142 3208 C:\Windows\System32\tapisrv.dll - ok
21:33:44.0151 3208 [ CB05822CD9CC6C688168E113C603DBE7 ] C:\Windows\System32\tbssvc.dll
21:33:44.0151 3208 C:\Windows\System32\tbssvc.dll - ok
21:33:44.0160 3208 [ BB95DA09BEF6E7A131BFF3BA5032090D ] C:\Windows\System32\termsrv.dll
21:33:44.0160 3208 C:\Windows\System32\termsrv.dll - ok
21:33:44.0170 3208 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] C:\Windows\servicing\TrustedInstaller.exe
21:33:44.0170 3208 C:\Windows\servicing\TrustedInstaller.exe - ok
21:33:44.0179 3208 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] C:\Windows\System32\trkwks.dll
21:33:44.0179 3208 C:\Windows\System32\trkwks.dll - ok
21:33:44.0189 3208 [ ECEF404F62863755951E09C802C94AD5 ] C:\Windows\System32\UI0Detect.exe
21:33:44.0189 3208 C:\Windows\System32\UI0Detect.exe - ok
21:33:44.0194 3208 [ 68308183F4AE0BE7BF8ECD07CB297999 ] C:\Windows\System32\upnphost.dll
21:33:44.0194 3208 C:\Windows\System32\upnphost.dll - ok
21:33:44.0203 3208 [ 01DD1004181FD46ECDC3628228EB269D ] C:\Windows\System32\dwm.exe
21:33:44.0203 3208 C:\Windows\System32\dwm.exe - ok
21:33:44.0212 3208 [ CD88D1B7776DC17A119049742EC07EB4 ] C:\Windows\System32\vds.exe
21:33:44.0212 3208 C:\Windows\System32\vds.exe - ok
21:33:44.0220 3208 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] C:\Windows\System32\VSSVC.exe
21:33:44.0221 3208 C:\Windows\System32\VSSVC.exe - ok
21:33:44.0230 3208 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] C:\Windows\System32\w32time.dll
21:33:44.0231 3208 C:\Windows\System32\w32time.dll - ok
21:33:44.0239 3208 [ A3CD60FD826381B49F03832590E069AF ] C:\Windows\System32\wcncsvc.dll
21:33:44.0240 3208 C:\Windows\System32\wcncsvc.dll - ok
21:33:44.0249 3208 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] C:\Windows\System32\WcsPlugInService.dll
21:33:44.0249 3208 C:\Windows\System32\WcsPlugInService.dll - ok
21:33:44.0258 3208 [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] C:\Windows\System32\drivers\Wdf01000.sys
21:33:44.0259 3208 C:\Windows\System32\drivers\Wdf01000.sys - ok
21:33:44.0267 3208 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] C:\Windows\System32\wdi.dll
21:33:44.0267 3208 C:\Windows\System32\wdi.dll - ok
21:33:44.0276 3208 [ 04C37D8107320312FBAE09926103D5E2 ] C:\Windows\System32\WebClnt.dll
21:33:44.0276 3208 C:\Windows\System32\WebClnt.dll - ok
21:33:44.0285 3208 [ AE3736E7E8892241C23E4EBBB7453B60 ] C:\Windows\System32\wecsvc.dll
21:33:44.0285 3208 C:\Windows\System32\wecsvc.dll - ok
21:33:44.0295 3208 [ 670FF720071ED741206D69BD995EA453 ] C:\Windows\System32\wercplsupport.dll
21:33:44.0295 3208 C:\Windows\System32\wercplsupport.dll - ok
21:33:44.0304 3208 [ 32B88481D3B326DA6DEB07B1D03481E7 ] C:\Windows\System32\wersvc.dll
21:33:44.0304 3208 C:\Windows\System32\wersvc.dll - ok
21:33:44.0313 3208 [ 62DB790A860CDFC4278D2F03CC5675D8 ] C:\Program Files\Windows Defender\MsMpRes.dll
21:33:44.0313 3208 C:\Program Files\Windows Defender\MsMpRes.dll - ok
21:33:44.0322 3208 [ DBD02E3E6F061EBBBF9B99A9D7CBA30B ] C:\Windows\System32\winhttp.dll
21:33:44.0322 3208 C:\Windows\System32\winhttp.dll - ok
21:33:44.0332 3208 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] C:\Windows\System32\wbem\WMIsvc.dll
21:33:44.0332 3208 C:\Windows\System32\wbem\WMIsvc.dll - ok
21:33:44.0341 3208 [ 7CFE68BDC065E55AA5E8421607037511 ] C:\Windows\System32\WsmSvc.dll
21:33:44.0341 3208 C:\Windows\System32\WsmSvc.dll - ok
21:33:44.0350 3208 [ C008405E4FEEB069E30DA1D823910234 ] C:\Windows\System32\wlansvc.dll
21:33:44.0351 3208 C:\Windows\System32\wlansvc.dll - ok
21:33:44.0360 3208 [ 43BE3875207DCB62A85C8C49970B66CC ] C:\Windows\System32\wbem\WmiApSrv.exe
21:33:44.0360 3208 C:\Windows\System32\wbem\WmiApSrv.exe - ok
21:33:44.0369 3208 [ 3978704576A121A9204F8CC49A301A9B ] C:\Program Files\Windows Media Player\wmpnetwk.exe
21:33:44.0369 3208 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
21:33:44.0378 3208 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] C:\Windows\System32\wpcsvc.dll
21:33:44.0378 3208 C:\Windows\System32\wpcsvc.dll - ok
21:33:44.0387 3208 [ 801FBDB89D472B3C467EB112A0FC9246 ] C:\Windows\System32\wpdbusenum.dll
21:33:44.0387 3208 C:\Windows\System32\wpdbusenum.dll - ok
21:33:44.0397 3208 [ 1CA6C40261DDC0425987980D0CD2AAAB ] C:\Windows\System32\wscsvc.dll
21:33:44.0397 3208 C:\Windows\System32\wscsvc.dll - ok
21:33:44.0405 3208 [ AED0DFF80C6B3914769407E78D7AB21A ] C:\Windows\System32\SearchIndexer.exe
21:33:44.0406 3208 C:\Windows\System32\SearchIndexer.exe - ok
21:33:44.0415 3208 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\Windows\System32\wuaueng.dll
21:33:44.0415 3208 C:\Windows\System32\wuaueng.dll - ok
21:33:44.0424 3208 [ 06E6F32C8D0A3F66D956F57B43A2E070 ] C:\Windows\System32\drivers\WUDFPf.sys
21:33:44.0424 3208 C:\Windows\System32\drivers\WUDFPf.sys - ok
21:33:44.0433 3208 [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] C:\Windows\System32\WUDFSvc.dll
21:33:44.0433 3208 C:\Windows\System32\WUDFSvc.dll - ok
21:33:44.0442 3208 [ 8FC182167381E9915651267044105EE1 ] C:\Windows\System32\scecli.dll
21:33:44.0442 3208 C:\Windows\System32\scecli.dll - ok
21:33:44.0453 3208 [ CD08EEC61C591AF59A39F4363C567D30 ] C:\Windows\System32\ntmarta.dll
21:33:44.0453 3208 C:\Windows\System32\ntmarta.dll - ok
21:33:44.0462 3208 [ 9A7F4B2EDACD11444D048AA19CBB26AF ] C:\Windows\System32\powrprof.dll
21:33:44.0463 3208 C:\Windows\System32\powrprof.dll - ok
21:33:44.0471 3208 [ 3794B461C45882E06856F282EEF025AF ] C:\Windows\System32\svchost.exe
21:33:44.0471 3208 C:\Windows\System32\svchost.exe - ok
21:33:44.0481 3208 [ 8F5C7426567798E62A3B3614965D62CC ] C:\Windows\System32\drivers\luafv.sys
21:33:44.0481 3208 C:\Windows\System32\drivers\luafv.sys - ok
21:33:44.0490 3208 [ A6E20E62871A28A0F1C05B1681848FA7 ] C:\Windows\System32\drivers\aswMonFlt.sys
21:33:44.0490 3208 C:\Windows\System32\drivers\aswMonFlt.sys - ok
21:33:44.0499 3208 [ CCDA8D84FD02AEC52E62F296433AE9DC ] C:\Windows\System32\drivers\aswFsBlk.sys
21:33:44.0499 3208 C:\Windows\System32\drivers\aswFsBlk.sys - ok
21:33:44.0509 3208 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:33:44.0509 3208 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - ok
21:33:44.0518 3208 [ 128DD9AF8640DBCC711940903C8B554F ] C:\Windows\System32\mscoree.dll
21:33:44.0519 3208 C:\Windows\System32\mscoree.dll - ok
21:33:44.0528 3208 [ BE3C082837866C4C291ADAF163C10EA6 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
21:33:44.0528 3208 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll - ok
21:33:44.0538 3208 [ 4E289C24E5BEB5FF9CF5B118AB96FDB0 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
21:33:44.0538 3208 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
21:33:44.0548 3208 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
21:33:44.0548 3208 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
21:33:44.0559 3208 [ 143A247AB424D2AB25A94189D10484AA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7ad9c44df3b85848590e63f13fc59804\mscorlib.ni.dll
21:33:44.0559 3208 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7ad9c44df3b85848590e63f13fc59804\mscorlib.ni.dll - ok
21:33:44.0569 3208 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] C:\Windows\System32\rpcss.dll
21:33:44.0569 3208 C:\Windows\System32\rpcss.dll - ok
21:33:44.0579 3208 [ 48F7A3E0B70C815A5AE88BF7736103A9 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b2052acbbbba4f98585196872195e009\System.ni.dll
21:33:44.0580 3208 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b2052acbbbba4f98585196872195e009\System.ni.dll - ok
21:33:44.0590 3208 [ F2533BD06936D2A9D9F4FD41CAEAA6E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\6525d5b1a3b2cbea3301959a47b353c2\System.ServiceProcess.ni.dll
21:33:44.0590 3208 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\6525d5b1a3b2cbea3301959a47b353c2\System.ServiceProcess.ni.dll - ok
21:33:44.0601 3208 [ 3787A4BC97CE6C630F4B581425223D96 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
21:33:44.0601 3208 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
21:33:44.0610 3208 [ D139CF0B95D9CA98389016423605996B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\0e3cff5f58a9a75de7fcac112c8bbca0\WindowsBase.ni.dll
21:33:44.0610 3208 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\0e3cff5f58a9a75de7fcac112c8bbca0\WindowsBase.ni.dll - ok
21:33:44.0621 3208 [ AF065E82D88BCAC2EAE7E5971A6CFE22 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\09ab834223f9c860f08de8d58688b1a3\PresentationCore.ni.dll
21:33:44.0621 3208 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\09ab834223f9c860f08de8d58688b1a3\PresentationCore.ni.dll - ok
21:33:44.0632 3208 [ 61E69498B2724FD093B23C87ED90CC9A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
21:33:44.0632 3208 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
21:33:44.0642 3208 [ 41826F4A4FCDDFCAD0A66CF004A67BE8 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
21:33:44.0642 3208 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
21:33:44.0651 3208 [ 3606CE1AC3D6A9A9CB7DB35D7F5C54EC ] C:\Windows\System32\shfolder.dll
21:33:44.0652 3208 C:\Windows\System32\shfolder.dll - ok
21:33:44.0660 3208 [ 69827805A221C21450BA22F4326A2EE3 ] C:\Windows\System32\version.dll
21:33:44.0660 3208 C:\Windows\System32\version.dll - ok
21:33:44.0670 3208 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
21:33:44.0670 3208 C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
21:33:44.0681 3208 [ 9AC7F31404F784753C4C04296E48CFAB ] C:\Program Files\Microsoft Security Client\MpSvc.dll
21:33:44.0681 3208 C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
21:33:44.0690 3208 [ 62D577288B48998FC6667BF22DC5B690 ] C:\Windows\System32\LogonUI.exe
21:33:44.0690 3208 C:\Windows\System32\LogonUI.exe - ok
21:33:44.0699 3208 [ 58C2521D87C494831A625202C80354AD ] C:\Windows\System32\authui.dll
21:33:44.0699 3208 C:\Windows\System32\authui.dll - ok
21:33:44.0705 3208 [ 84204FDA617A3611D510A1DCBAE64004 ] C:\Program Files\Microsoft Security Client\MpClient.dll
21:33:44.0705 3208 C:\Program Files\Microsoft Security Client\MpClient.dll - ok
21:33:44.0715 3208 [ F42483814FC39170B3982A184EC5AAA2 ] C:\Windows\System32\wtsapi32.dll
21:33:44.0715 3208 C:\Windows\System32\wtsapi32.dll - ok
21:33:44.0724 3208 [ B2E569EF26DAC9D6994A2AFF4F601B7A ] C:\Windows\System32\wintrust.dll
21:33:44.0724 3208 C:\Windows\System32\wintrust.dll - ok
21:33:44.0733 3208 [ 2EC53B5A351C4D443896DBAD117F7E82 ] C:\Windows\System32\msimg32.dll
21:33:44.0733 3208 C:\Windows\System32\msimg32.dll - ok
21:33:44.0742 3208 [ 999D69DEB576C2C424294DF025891CC6 ] C:\Windows\System32\uxtheme.dll
21:33:44.0742 3208 C:\Windows\System32\uxtheme.dll - ok
21:33:44.0753 3208 [ 76EAEF4DDEBBC7C38853F586C0E91DCE ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll
21:33:44.0753 3208 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\GdiPlus.dll - ok
21:33:44.0762 3208 [ 75EB73E64F5B4655D9797D20F26DE320 ] C:\Windows\System32\duser.dll
21:33:44.0762 3208 C:\Windows\System32\duser.dll - ok
21:33:44.0771 3208 [ 1908CC7673F72601AFFDCA022689CEDF ] C:\Windows\System32\xmllite.dll
21:33:44.0772 3208 C:\Windows\System32\xmllite.dll - ok
21:33:44.0783 3208 [ B25DBBA6C63A61FF4AFDB5ADAB4E70CB ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:33:44.0783 3208 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:33:44.0792 3208 [ 93BF790FCB9FBE1E82D2981BA1B7E134 ] C:\Windows\System32\SmartFaceVCP.dll
21:33:44.0792 3208 C:\Windows\System32\SmartFaceVCP.dll - ok
21:33:44.0801 3208 [ 4575AA12561C5648483403541D0D7F2B ] C:\Program Files\Windows Defender\MpSvc.dll
21:33:44.0801 3208 C:\Program Files\Windows Defender\MpSvc.dll - ok
21:33:44.0810 3208 [ 5EC8FB83F31AA2D6F421F02C3F4F4475 ] C:\Windows\System32\winspool.drv
21:33:44.0810 3208 C:\Windows\System32\winspool.drv - ok
21:33:44.0819 3208 [ DC15AB7168C0309D8F04FD95B6240422 ] C:\Windows\System32\oleacc.dll
21:33:44.0820 3208 C:\Windows\System32\oleacc.dll - ok
21:33:44.0829 3208 [ 0DBEE38060475A4C3E04D3B908AEC0B9 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
21:33:44.0829 3208 C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
21:33:44.0838 3208 [ 1BD363738B672A394EBE3B8A78EAB9D3 ] C:\Program Files\Windows Defender\MpClient.dll
21:33:44.0838 3208 C:\Program Files\Windows Defender\MpClient.dll - ok
21:33:44.0847 3208 [ 9DC3723519F52B6BC63EACD4BD411313 ] C:\Windows\System32\rasplap.dll
21:33:44.0847 3208 C:\Windows\System32\rasplap.dll - ok
21:33:44.0856 3208 [ 3CB863B78642405371CB3A71C07E2382 ] C:\Windows\System32\rasapi32.dll
21:33:44.0857 3208 C:\Windows\System32\rasapi32.dll - ok
21:33:44.0865 3208 [ 3A1DDA77F331D107BA40DB06E4D666E9 ] C:\Windows\System32\rasman.dll
21:33:44.0865 3208 C:\Windows\System32\rasman.dll - ok
21:33:44.0875 3208 [ 70F08ECE7A30A639D3F0C8C433685C7D ] C:\Windows\System32\tapi32.dll
21:33:44.0875 3208 C:\Windows\System32\tapi32.dll - ok
21:33:44.0884 3208 [ 7C29BC74635524E13FAA556A5FD48968 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
21:33:44.0885 3208 C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
21:33:44.0894 3208 [ 3D418A22A56471295AEB1CEB9027C3DA ] C:\Windows\System32\rtutils.dll
21:33:44.0894 3208 C:\Windows\System32\rtutils.dll - ok
21:33:44.0904 3208 [ 14FF750EFE13B0C21E5A06507C3A97B1 ] C:\Windows\System32\winmm.dll
21:33:44.0904 3208 C:\Windows\System32\winmm.dll - ok
21:33:44.0912 3208 [ 627920CFF5DFCF8CF54CF2D592D61307 ] C:\Windows\System32\WinSCard.dll
21:33:44.0912 3208 C:\Windows\System32\WinSCard.dll - ok
21:33:44.0922 3208 [ A9542FF2E9A82CF100E5729EC79068F0 ] C:\Windows\System32\fltLib.dll
21:33:44.0922 3208 C:\Windows\System32\fltLib.dll - ok
21:33:44.0931 3208 [ 00A0231FCA55C815853B957767E34B02 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
21:33:44.0931 3208 C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
21:33:44.0940 3208 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] C:\Windows\System32\drivers\MpFilter.sys
21:33:44.0941 3208 C:\Windows\System32\drivers\MpFilter.sys - ok
21:33:44.0950 3208 [ 12A1DF1B84FB45A00D47B2CDE2CEEBBA ] C:\Windows\System32\shgina.dll
21:33:44.0950 3208 C:\Windows\System32\shgina.dll - ok
21:33:44.0956 3208 [ 2EF4E53ACB0DF0B34091335BB26C2BC2 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
21:33:44.0956 3208 C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
21:33:44.0966 3208 [ 70932D6C3D59B416CBD2BE5A3B3D4BE6 ] C:\Windows\System32\shacct.dll
21:33:44.0966 3208 C:\Windows\System32\shacct.dll - ok
21:33:44.0975 3208 [ 7DACD94118E2D8B6D72F47ADEB0367BF ] C:\Windows\System32\propsys.dll
21:33:44.0975 3208 C:\Windows\System32\propsys.dll - ok
21:33:44.0984 3208 [ 56B5914070B2C243DFB3D186070DA89D ] C:\Windows\System32\MMDevAPI.dll
21:33:44.0984 3208 C:\Windows\System32\MMDevAPI.dll - ok
21:33:44.0993 3208 [ C9244BCAC83B259B920BBEE18A97BFE1 ] C:\Windows\System32\avrt.dll
21:33:44.0993 3208 C:\Windows\System32\avrt.dll - ok
21:33:45.0003 3208 [ A99871BA522CB2539AE275AC18CACC8F ] C:\Windows\System32\cabinet.dll
21:33:45.0003 3208 C:\Windows\System32\cabinet.dll - ok
21:33:45.0012 3208 [ D5CF1536137026ACDED95BF6CBF849F6 ] C:\Windows\System32\WUDFPlatform.dll
21:33:45.0013 3208 C:\Windows\System32\WUDFPlatform.dll - ok
21:33:45.0022 3208 [ 9F4003841689C663254D54177EB97219 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{05559D7C-4A0C-411F-9F9A-A14AE4A18277}\mpengine.dll
21:33:45.0022 3208 C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{05559D7C-4A0C-411F-9F9A-A14AE4A18277}\mpengine.dll - ok
21:33:45.0031 3208 [ EC43D9CC95C3BB5FEFDBCF22D375E1F5 ] C:\Windows\System32\adtschema.dll
21:33:45.0032 3208 C:\Windows\System32\adtschema.dll - ok
21:33:45.0041 3208 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] C:\Windows\System32\drivers\fltMgr.sys
21:33:45.0041 3208 C:\Windows\System32\drivers\fltMgr.sys - ok
21:33:45.0050 3208 [ 22F73612087430A94DBE912AB58E0C79 ] C:\Windows\System32\ci.dll
21:33:45.0050 3208 C:\Windows\System32\ci.dll - ok
21:33:45.0059 3208 [ 57418956DDAE128D1023C508E7D07071 ] C:\Windows\System32\PSHED.DLL
21:33:45.0059 3208 C:\Windows\System32\PSHED.DLL - ok
21:33:45.0068 3208 [ 3437B9E218A2E4586BEF4F7A3BD00777 ] C:\Windows\System32\audiodg.exe
21:33:45.0068 3208 C:\Windows\System32\audiodg.exe - ok
21:33:45.0077 3208 [ 919CC2A0476D5A6A4C935D4B88E29912 ] C:\Windows\System32\ksuser.dll
21:33:45.0077 3208 C:\Windows\System32\ksuser.dll - ok
21:33:45.0086 3208 [ 4DF066ECEE5A7B20BF8B39EF4D646600 ] C:\Windows\System32\wdmaud.drv
21:33:45.0086 3208 C:\Windows\System32\wdmaud.drv - ok
21:33:45.0095 3208 [ DB7F4AB85298F3FE522C5512B8B0F56D ] C:\Windows\System32\AudioEng.dll
21:33:45.0095 3208 C:\Windows\System32\AudioEng.dll - ok
21:33:45.0104 3208 [ 7258434974EA735725FD2D4A65C5E821 ] C:\Windows\System32\AudioSes.dll
21:33:45.0104 3208 C:\Windows\System32\AudioSes.dll - ok
21:33:45.0114 3208 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] C:\Windows\System32\gpsvc.dll
21:33:45.0114 3208 C:\Windows\System32\gpsvc.dll - ok
21:33:45.0123 3208 [ D1A84F7D4CAFCFE2A32149FF418056E5 ] C:\Windows\System32\nlaapi.dll
21:33:45.0123 3208 C:\Windows\System32\nlaapi.dll - ok
21:33:45.0132 3208 [ 409F36C8BD06FCE184631EB4142B009A ] C:\Windows\System32\atl.dll
21:33:45.0132 3208 C:\Windows\System32\atl.dll - ok
21:33:45.0141 3208 [ BDBB449425991154135E5ED1559927E6 ] C:\Windows\System32\msacm32.dll
21:33:45.0141 3208 C:\Windows\System32\msacm32.dll - ok
21:33:45.0150 3208 [ 166F004D73EA2CF4AC61800CA469458D ] C:\Windows\System32\msacm32.drv
21:33:45.0150 3208 C:\Windows\System32\msacm32.drv - ok
21:33:45.0159 3208 [ 67058C46504BC12D821F38CF99B7B28F ] C:\Windows\System32\es.dll
21:33:45.0159 3208 C:\Windows\System32\es.dll - ok
21:33:45.0168 3208 [ 83199EF88D691E730B80666E29F90D58 ] C:\Windows\System32\midimap.dll
21:33:45.0168 3208 C:\Windows\System32\midimap.dll - ok
21:33:45.0177 3208 [ 296937202E4D930AAE98085B99D744D8 ] C:\Windows\System32\AUDIOKSE.dll
21:33:45.0177 3208 C:\Windows\System32\AUDIOKSE.dll - ok
21:33:45.0186 3208 [ 824D940CD81A2814D4862C2AD62FACDD ] C:\Windows\System32\RtkAPO.dll
21:33:45.0186 3208 C:\Windows\System32\RtkAPO.dll - ok
21:33:45.0195 3208 [ 8269CC01940A202BBB9FDF26705DBD67 ] C:\Windows\System32\hid.dll
21:33:45.0195 3208 C:\Windows\System32\hid.dll - ok
21:33:45.0204 3208 [ A7F8BAD9590ADDC425B4003E94780DFA ] C:\Windows\System32\drivers\spsys.sys
21:33:45.0204 3208 C:\Windows\System32\drivers\spsys.sys - ok
21:33:45.0210 3208 [ 6836D001FC733F205ACB80A7986CB6C9 ] C:\Windows\System32\WindowsCodecs.dll
21:33:45.0210 3208 C:\Windows\System32\WindowsCodecs.dll - ok
21:33:45.0219 3208 [ D1C5883087A0C3F1344D9D55A44901F6 ] C:\Windows\System32\drivers\lltdio.sys
21:33:45.0219 3208 C:\Windows\System32\drivers\lltdio.sys - ok
21:33:45.0229 3208 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] C:\Windows\System32\drivers\nwifi.sys
21:33:45.0229 3208 C:\Windows\System32\drivers\nwifi.sys - ok
21:33:45.0238 3208 [ D6973AA34C4D5D76C0430B181C3CD389 ] C:\Windows\System32\drivers\ndisuio.sys
21:33:45.0239 3208 C:\Windows\System32\drivers\ndisuio.sys - ok
21:33:45.0248 3208 [ 9C508F4074A39E8B4B31D27198146FAD ] C:\Windows\System32\drivers\rspndr.sys
21:33:45.0249 3208 C:\Windows\System32\drivers\rspndr.sys - ok
21:33:45.0258 3208 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] C:\Windows\System32\dnsrslvr.dll
21:33:45.0258 3208 C:\Windows\System32\dnsrslvr.dll - ok
21:33:45.0267 3208 [ 80C147EBC5C4FD5804305BB357E3CE6E ] C:\Program Files\Toshiba\SmartFaceV\SmartFaceVLogOn.dll
21:33:45.0267 3208 C:\Program Files\Toshiba\SmartFaceV\SmartFaceVLogOn.dll - ok
21:33:45.0276 3208 [ 3AB4023CBD406AC33AB8CDFF6C8079A0 ] C:\Windows\System32\eapphost.dll
21:33:45.0277 3208 C:\Windows\System32\eapphost.dll - ok
21:33:45.0286 3208 [ AF317401E53B058529628FA11B14BBDA ] C:\Program Files\Cisco\Cisco LEAP Module\CiscoEapLeap.dll
21:33:45.0286 3208 C:\Program Files\Cisco\Cisco LEAP Module\CiscoEapLeap.dll - ok
21:33:45.0295 3208 [ 608E8DDAC1A340B6A3CD15897D6DE60C ] C:\Windows\System32\SmartFaceVHelper.dll
21:33:45.0295 3208 C:\Windows\System32\SmartFaceVHelper.dll - ok
21:33:45.0304 3208 [ 492A72C1D41701F8D8DF27264A838B1D ] C:\Program Files\Cisco\Cisco PEAP Module\CiscoEapPeap.dll
21:33:45.0305 3208 C:\Program Files\Cisco\Cisco PEAP Module\CiscoEapPeap.dll - ok
21:33:45.0314 3208 [ B69909B8D9B82A47C73F2AD7F9E187BE ] C:\Windows\System32\SmartFaceVCtrl.dll
21:33:45.0314 3208 C:\Windows\System32\SmartFaceVCtrl.dll - ok
21:33:45.0323 3208 [ 2E2876C96A801019B847BD9A17112E99 ] C:\Windows\System32\FaceRec.dll
21:33:45.0323 3208 C:\Windows\System32\FaceRec.dll - ok
21:33:45.0332 3208 [ 97B9D1F06328B3132FA77CFF6DE2AD2F ] C:\Windows\System32\FaceHI.dll
21:33:45.0333 3208 C:\Windows\System32\FaceHI.dll - ok
21:33:45.0343 3208 [ 26AE7FE6953D584D349A91A72849A771 ] C:\Windows\System32\maxxaudioapo.dll
21:33:45.0343 3208 C:\Windows\System32\maxxaudioapo.dll - ok
21:33:45.0351 3208 [ 3B0489DE8CC3058B48471660C60A7B75 ] C:\Windows\System32\rastls.dll
21:33:45.0352 3208 C:\Windows\System32\rastls.dll - ok
21:33:45.0361 3208 [ 82A79D5BE740D0AE9C91AA6DE4B3AC5A ] C:\Windows\System32\raschap.dll
21:33:45.0361 3208 C:\Windows\System32\raschap.dll - ok
21:33:45.0370 3208 [ 0727200F10320A6BA7E59433094FBBA7 ] C:\Windows\System32\WMALFXGFXDSP.dll
21:33:45.0370 3208 C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:33:45.0379 3208 [ E45051C374F845EDF3DB02A35BA13193 ] C:\Windows\System32\umb.dll
21:33:45.0379 3208 C:\Windows\System32\umb.dll - ok
21:33:45.0388 3208 [ 3727F8B85E24BBDD325BFF75F029DDE3 ] C:\Windows\System32\wlanmsm.dll
21:33:45.0388 3208 C:\Windows\System32\wlanmsm.dll - ok
21:33:45.0397 3208 [ 4662AF853DFAD5648CE3814E7D9EF3D6 ] C:\Windows\System32\wlansec.dll
21:33:45.0397 3208 C:\Windows\System32\wlansec.dll - ok
21:33:45.0406 3208 [ B64AC7967D6B9FB2D6152AC768A1CB88 ] C:\Windows\System32\onex.dll
21:33:45.0406 3208 C:\Windows\System32\onex.dll - ok
21:33:45.0415 3208 [ 5D0FE613570CABE3992F7DBCD68E61D1 ] C:\Windows\System32\eappcfg.dll
21:33:45.0415 3208 C:\Windows\System32\eappcfg.dll - ok
21:33:45.0424 3208 [ 9D9FFC923FADBB575E0452EA0BBB15BD ] C:\Windows\System32\eappprxy.dll
21:33:45.0424 3208 C:\Windows\System32\eappprxy.dll - ok
21:33:45.0433 3208 [ BF142D4F8C61ED3629A9CDD7BA867900 ] C:\Windows\System32\mfplat.dll
21:33:45.0433 3208 C:\Windows\System32\mfplat.dll - ok
21:33:45.0442 3208 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
21:33:45.0442 3208 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
21:33:45.0454 3208 [ 91D995A67D9447592A1BF21CBC15C628 ] C:\Windows\System32\wlgpclnt.dll
21:33:45.0454 3208 C:\Windows\System32\wlgpclnt.dll - ok
21:33:45.0460 3208 [ 19FFAD68A02AF1BF0BC336EE26CD6767 ] C:\Windows\System32\l2gpstore.dll
21:33:45.0460 3208 C:\Windows\System32\l2gpstore.dll - ok
21:33:45.0469 3208 [ EB2170D0DDF3B2A92506AE16BC524B0B ] C:\Windows\System32\wlanutil.dll
21:33:45.0470 3208 C:\Windows\System32\wlanutil.dll - ok
21:33:45.0480 3208 [ 024528E25BBE8768536861EA09BE1672 ] C:\Windows\System32\msxml6.dll
21:33:45.0480 3208 C:\Windows\System32\msxml6.dll - ok
21:33:45.0489 3208 [ 41735B82DB57E4EBE9504EC400FD120E ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:33:45.0489 3208 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
21:33:45.0499 3208 [ BE01E566D1F569AAB32D0335613E1EEA ] C:\Windows\System32\dllhost.exe
21:33:45.0499 3208 C:\Windows\System32\dllhost.exe - ok
21:33:45.0508 3208 [ 23C3A0680042C0D1DE1F360F8B62BC57 ] C:\Windows\System32\wlanext.exe
21:33:45.0508 3208 C:\Windows\System32\wlanext.exe - ok
21:33:45.0518 3208 [ 81BC2B7B6C5C46EB31DEDAC66548053E ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
21:33:45.0518 3208 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
21:33:45.0527 3208 [ 4021AEBD765FBFD22E5E7B21FB0E9549 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
21:33:45.0527 3208 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
21:33:45.0537 3208 [ B2EB988E3D31DFC94D7F22B4DB0BF207 ] C:\Windows\System32\IWMSSvc.dll
21:33:45.0537 3208 C:\Windows\System32\IWMSSvc.dll - ok
21:33:45.0560 3208 [ 1DACD1530C6E58AEAE9F6DE7DA851935 ] C:\Windows\System32\shimeng.dll
21:33:45.0560 3208 C:\Windows\System32\shimeng.dll - ok
21:33:45.0575 3208 [ 35868C1F8B1BFF5CA1F957E3548A96FC ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
21:33:45.0575 3208 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
21:33:45.0591 3208 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
21:33:45.0591 3208 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
21:33:45.0607 3208 [ 35ACD5EA63D75E97DD0E9A1629E582B2 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll
21:33:45.0607 3208 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\comctl32.dll - ok
21:33:45.0622 3208 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
21:33:45.0622 3208 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
21:33:45.0634 3208 [ E9CE9F8CD76B81B1CE5C9F3F58D0591A ] C:\Program Files\AVAST Software\Avast\ashBase.dll
21:33:45.0634 3208 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
21:33:45.0651 3208 [ E582816A4855914DEFFC212E12B3B744 ] C:\Windows\System32\wsock32.dll
21:33:45.0651 3208 C:\Windows\System32\wsock32.dll - ok
21:33:45.0666 3208 [ FFF65CA2746E1FA5673D2BF2CC706955 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
21:33:45.0666 3208 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
21:33:45.0688 3208 [ 17C0E094BEE5BC03CF491972F71AA6EF ] C:\Windows\System32\wlanapi.dll
21:33:45.0688 3208 C:\Windows\System32\wlanapi.dll - ok
21:33:45.0718 3208 [ 0E135526E9785D085BCD9AEDE6FBCBF9 ] C:\Windows\System32\userinit.exe
21:33:45.0719 3208 C:\Windows\System32\userinit.exe - ok
21:33:45.0737 3208 [ 9B96F6952186336CC6E3D4E08BE2E0AF ] C:\Windows\System32\dwmapi.dll
21:33:45.0738 3208 C:\Windows\System32\dwmapi.dll - ok
21:33:45.0749 3208 [ D07D4C3038F3578FFCE1C0237F2A1253 ] C:\Windows\explorer.exe
21:33:45.0749 3208 C:\Windows\explorer.exe - ok
21:33:45.0795 3208 [ 47742160BBC1B66D0CB09AA45F907540 ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
21:33:45.0795 3208 C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
21:33:45.0813 3208 [ B25143B50DAED6199F74D5DF38B82DEF ] C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll
21:33:45.0813 3208 C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll - ok
21:33:45.0838 3208 [ 129D3C6FF2E0C60FBD757C63C72F15B8 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
21:33:45.0838 3208 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
21:33:45.0855 3208 [ 31472162FB12CFE31226343FDEE94318 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
21:33:45.0855 3208 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
21:33:45.0869 3208 [ 4B7FF6905E069EB02FABD04FFB6E418E ] C:\Program Files\Intel\Wireless\Bin\KmmdlPlugins\CCXPlugin.dll
21:33:45.0869 3208 C:\Program Files\Intel\Wireless\Bin\KmmdlPlugins\CCXPlugin.dll - ok
21:33:45.0881 3208 [ 167AC31450C0C53A01FA1491E94D7678 ] C:\Windows\System32\shdocvw.dll
21:33:45.0881 3208 C:\Windows\System32\shdocvw.dll - ok
21:33:45.0893 3208 [ 5CAAE5333EF36DB4A8D294418AB37E80 ] C:\Windows\System32\p2pcollab.dll
21:33:45.0893 3208 C:\Windows\System32\p2pcollab.dll - ok
21:33:45.0905 3208 [ 4504819D18FAC09B6108D8728467E5B2 ] C:\Windows\System32\browseui.dll
21:33:45.0905 3208 C:\Windows\System32\browseui.dll - ok
21:33:45.0918 3208 [ 4934241CD20AC87D78121352E3BA8318 ] C:\Windows\System32\dbghelp.dll
21:33:45.0918 3208 C:\Windows\System32\dbghelp.dll - ok
21:33:45.0930 3208 [ 56DEC67E273BA88A630C4B7B29D9D7BB ] C:\Program Files\AVAST Software\Avast\ashShell.dll
21:33:45.0930 3208 C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
21:33:45.0946 3208 [ 0127F0E5C76C1C02842952DD7B38157A ] C:\PROGRA~1\AVASTS~1\Avast\1033\Base.dll
21:33:45.0946 3208 C:\PROGRA~1\AVASTS~1\Avast\1033\Base.dll - ok
21:33:45.0957 3208 [ 401DFFDBBBD3F07C747ED1AE2BB88106 ] C:\Windows\System32\msi.dll
21:33:45.0957 3208 C:\Windows\System32\msi.dll - ok
21:33:45.0969 3208 [ 14E4470BF8ACA69A85D741BA99F75F96 ] C:\Windows\System32\EhStorShell.dll
21:33:45.0969 3208 C:\Windows\System32\EhStorShell.dll - ok
21:33:45.0976 3208 [ 1BE8D8DCCEBD1174BCC22D0BC575C237 ] C:\Program Files\AVAST Software\Avast\ashServ.dll
21:33:45.0976 3208 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
21:33:46.0104 3208 [ F55DB197B472671289C5DC67EC88FB3D ] C:\Program Files\Google\Drive\googledrivesync32.dll
21:33:46.0104 3208 C:\Program Files\Google\Drive\googledrivesync32.dll - ok
21:33:46.0125 3208 [ 1078EBBBB809FFC96737BBC34B9AA1A1 ] C:\Program Files\Intel\Wireless\Bin\TraceAPI.dll
21:33:46.0125 3208 C:\Program Files\Intel\Wireless\Bin\TraceAPI.dll - ok
21:33:46.0146 3208 [ FD639FEEE160F399DB58A3FDB2E0DF4D ] C:\Program Files\AVAST Software\Avast\aswAux.dll
21:33:46.0146 3208 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
21:33:46.0159 3208 [ 3B8707AC8BB05CD0D4D96333D4411EE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
21:33:46.0159 3208 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
21:33:46.0171 3208 [ 111C47816F39A91EAAA18DA0A54E8E63 ] C:\Windows\System32\imageres.dll
21:33:46.0171 3208 C:\Windows\System32\imageres.dll - ok
21:33:46.0183 3208 [ 8588D68F3A51C147EA8019E496F805EB ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
21:33:46.0183 3208 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
21:33:46.0195 3208 [ 9C9388C22E6C1367E1513926EF51EFF7 ] C:\Program Files\Common Files\System\ado\msado15.dll
21:33:46.0195 3208 C:\Program Files\Common Files\System\ado\msado15.dll - ok
21:33:46.0210 3208 [ 720B5083FC3037150801504F9ECA1591 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
21:33:46.0210 3208 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
21:33:46.0221 3208 [ F5FEDB7D35E030A2DACD40FB3245C765 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
21:33:46.0221 3208 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
21:33:46.0227 3208 [ 482310DD75538EB321210FF1E2538C72 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
21:33:46.0227 3208 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
21:33:46.0236 3208 [ 1650A06EB48C18969057761AFCCBF001 ] C:\Program Files\AVAST Software\Avast\avastIP.dll
21:33:46.0237 3208 C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
21:33:46.0246 3208 [ 682F67B86B4F586D813BACA7A0AA06A7 ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
21:33:46.0246 3208 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
21:33:46.0255 3208 [ 554ED6988E44FDF18941429E8B2CB652 ] C:\Windows\System32\msdart.dll
21:33:46.0255 3208 C:\Windows\System32\msdart.dll - ok
21:33:46.0265 3208 [ EB6613261E287A8B9783C9C8B7F118F8 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
21:33:46.0265 3208 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
21:33:46.0275 3208 [ 20EEC2605DC89048E9989FE8D73E26BD ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
21:33:46.0275 3208 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
21:33:46.0284 3208 [ 951F36219C7384C6ED6C9F44D45C5235 ] C:\Program Files\Common Files\System\Ole DB\oledb32.dll
21:33:46.0284 3208 C:\Program Files\Common Files\System\Ole DB\oledb32.dll - ok
21:33:46.0293 3208 [ CA0B849566776A17F35F0339BE17DFD9 ] C:\Windows\System32\ktmw32.dll
21:33:46.0294 3208 C:\Windows\System32\ktmw32.dll - ok
21:33:46.0302 3208 [ D0A95E567224B4C347CBDD6541E5D928 ] C:\Windows\System32\wscisvif.dll
21:33:46.0303 3208 C:\Windows\System32\wscisvif.dll - ok
21:33:46.0312 3208 [ A0F4852A5DB9754BEC06F84B400AE743 ] C:\Windows\System32\wscapi.dll
21:33:46.0312 3208 C:\Windows\System32\wscapi.dll - ok
21:33:46.0321 3208 [ 892125B60BA6C2A66F485A89C4A6B918 ] C:\Program Files\Common Files\System\Ole DB\oledb32r.dll
21:33:46.0321 3208 C:\Program Files\Common Files\System\Ole DB\oledb32r.dll - ok
21:33:46.0331 3208 [ 2A6A2C09ECC2CB495628E45F1379ECE8 ] C:\Windows\System32\taskcomp.dll
21:33:46.0331 3208 C:\Windows\System32\taskcomp.dll - ok
21:33:46.0340 3208 [ 95A5497D129D95D12A46F7848AFFE1DB ] C:\Windows\System32\comsvcs.dll
21:33:46.0340 3208 C:\Windows\System32\comsvcs.dll - ok
21:33:46.0350 3208 [ F870AA3E254628EBEAFE754108D664DE ] C:\Windows\System32\drivers\http.sys
21:33:46.0350 3208 C:\Windows\System32\drivers\http.sys - ok
21:33:46.0360 3208 [ 7C8F47424B45A14D4CBDB1803E3F25BC ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswEngin.dll
21:33:46.0360 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswEngin.dll - ok
21:33:46.0369 3208 [ E79FDA8D320147FDC347C504B3487F87 ] C:\Windows\System32\spoolss.dll
21:33:46.0369 3208 C:\Windows\System32\spoolss.dll - ok
21:33:46.0379 3208 [ 3D50C4B10352367D5CB20ED1F50F8DA2 ] C:\Windows\System32\taskeng.exe
21:33:46.0379 3208 C:\Windows\System32\taskeng.exe - ok
21:33:46.0388 3208 [ 7605C0E1D01A08F3ECD743F38B834A44 ] C:\Windows\System32\drivers\srvnet.sys
21:33:46.0388 3208 C:\Windows\System32\drivers\srvnet.sys - ok
21:33:46.0398 3208 [ 2B13E9849ACC136E65AAE5ACC6A89826 ] C:\Program Files\Common Files\System\Ole DB\msdasql.dll
21:33:46.0398 3208 C:\Program Files\Common Files\System\Ole DB\msdasql.dll - ok
21:33:46.0407 3208 [ C3D821190C04C6782B65CDF00896A7B0 ] C:\Program Files\Common Files\System\Ole DB\msdatl3.dll
21:33:46.0407 3208 C:\Program Files\Common Files\System\Ole DB\msdatl3.dll - ok
21:33:46.0416 3208 [ 862363973DCBCC31DD161EF41A69153C ] C:\Windows\System32\odbc32.dll
21:33:46.0416 3208 C:\Windows\System32\odbc32.dll - ok
21:33:46.0425 3208 [ B0D12F4344EB2AE96E487D2DF6F74413 ] C:\Windows\System32\FWPUCLNT.DLL
21:33:46.0425 3208 C:\Windows\System32\FWPUCLNT.DLL - ok
21:33:46.0434 3208 [ B11FDCA4410D6252964EF97F9A47DE74 ] C:\Windows\System32\TSChannel.dll
21:33:46.0435 3208 C:\Windows\System32\TSChannel.dll - ok
21:33:46.0444 3208 [ 0DAAF8032546D1B4543D7B101B53FD6C ] C:\Windows\System32\odbcint.dll
21:33:46.0445 3208 C:\Windows\System32\odbcint.dll - ok
21:33:46.0454 3208 [ 782C8019C89920A77B1907AD3B4C8FF9 ] C:\Windows\System32\HotStartUserAgent.dll
21:33:46.0454 3208 C:\Windows\System32\HotStartUserAgent.dll - ok
21:33:46.0463 3208 [ E479DDDD960DCCD8B5338B6E0F34AA97 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswCmnIS.dll
21:33:46.0463 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswCmnIS.dll - ok
21:33:46.0473 3208 [ 3E2F2CD837734A0577C9E392D7E73886 ] C:\Program Files\Common Files\System\Ole DB\msdasqlr.dll
21:33:46.0473 3208 C:\Program Files\Common Files\System\Ole DB\msdasqlr.dll - ok
21:33:46.0480 3208 [ 35F376253F687BDE63976CCB3F2108CA ] C:\Windows\System32\drivers\bowser.sys
21:33:46.0480 3208 C:\Windows\System32\drivers\bowser.sys - ok
21:33:46.0488 3208 [ AA9AF23BD99F81784AF0C8F1EF4702AD ] C:\Windows\System32\odbcjt32.dll
21:33:46.0490 3208 C:\Windows\System32\odbcjt32.dll - ok
21:33:46.0499 3208 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] C:\Windows\System32\drivers\mpsdrv.sys
21:33:46.0499 3208 C:\Windows\System32\drivers\mpsdrv.sys - ok
21:33:46.0509 3208 [ 82CEA0395524AACFEB58BA1448E8325C ] C:\Windows\System32\drivers\mrxdav.sys
21:33:46.0509 3208 C:\Windows\System32\drivers\mrxdav.sys - ok
21:33:46.0519 3208 [ 5DE62C6E9108F14F6794060A9BDECAEC ] C:\Windows\System32\MPSSVC.dll
21:33:46.0519 3208 C:\Windows\System32\MPSSVC.dll - ok
21:33:46.0527 3208 [ 7CE1E4240F9FA41EE85683B9EEAB8767 ] C:\Windows\System32\msjet40.dll
21:33:46.0527 3208 C:\Windows\System32\msjet40.dll - ok
21:33:46.0537 3208 [ 3E4604CDB52F5E242C6E7D373160A684 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswCmnOS.dll
21:33:46.0538 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswCmnOS.dll - ok
21:33:46.0547 3208 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] C:\Windows\System32\drivers\mrxsmb.sys
21:33:46.0547 3208 C:\Windows\System32\drivers\mrxsmb.sys - ok
21:33:46.0556 3208 [ 4FCCB34D793B116423209C0F8B7A3B03 ] C:\Windows\System32\drivers\mrxsmb10.sys
21:33:46.0556 3208 C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:33:46.0565 3208 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] C:\Windows\System32\drivers\mrxsmb20.sys
21:33:46.0566 3208 C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:33:46.0574 3208 [ FF33AFF99564B1AA534F58868CBE41EF ] C:\Windows\System32\drivers\srv2.sys
21:33:46.0575 3208 C:\Windows\System32\drivers\srv2.sys - ok
21:33:46.0584 3208 [ 57125869A7B9638A5D11DD685AA65EB4 ] C:\Windows\System32\PlaySndSrv.dll
21:33:46.0584 3208 C:\Windows\System32\PlaySndSrv.dll - ok
21:33:46.0593 3208 [ 43E1054C713C48D252A1826C5E14AACA ] C:\Windows\System32\MsCtfMonitor.dll
21:33:46.0593 3208 C:\Windows\System32\MsCtfMonitor.dll - ok
21:33:46.0604 3208 [ C6DA42ADA0C5FC8CB05744229D632B47 ] C:\Windows\System32\msutb.dll
21:33:46.0604 3208 C:\Windows\System32\msutb.dll - ok
21:33:46.0612 3208 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files\Google\Update\GoogleUpdate.exe
21:33:46.0613 3208 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
21:33:46.0623 3208 [ 08CEB05CD6B318D1E36CB122B062FFE4 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswCmnBS.dll
21:33:46.0623 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswCmnBS.dll - ok
21:33:46.0633 3208 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files\Google\Update\1.3.21.135\goopdate.dll
21:33:46.0633 3208 C:\Program Files\Google\Update\1.3.21.135\goopdate.dll - ok
21:33:46.0642 3208 [ 41987F9FC0E61ADF54F581E15029AD91 ] C:\Windows\System32\drivers\srv.sys
21:33:46.0642 3208 C:\Windows\System32\drivers\srv.sys - ok
21:33:46.0652 3208 [ A324D72A06C110152E7607745F39BFA1 ] C:\Windows\System32\netmsg.dll
21:33:46.0652 3208 C:\Windows\System32\netmsg.dll - ok
21:33:46.0660 3208 [ 452341E471D2D961229DFE0842957272 ] C:\Windows\System32\sscore.dll
21:33:46.0660 3208 C:\Windows\System32\sscore.dll - ok
21:33:46.0670 3208 [ D333058925CE305E39DE8D5AD2B52A46 ] C:\Windows\System32\clusapi.dll
21:33:46.0670 3208 C:\Windows\System32\clusapi.dll - ok
21:33:46.0678 3208 [ 0745D6EAD386710110817FBEC03F5161 ] C:\Windows\System32\wfapigp.dll
21:33:46.0679 3208 C:\Windows\System32\wfapigp.dll - ok
21:33:46.0688 3208 [ 6468C3FF6D0C7874FA8C619AF3E23B22 ] C:\Windows\System32\activeds.dll
21:33:46.0688 3208 C:\Windows\System32\activeds.dll - ok
21:33:46.0696 3208 [ D922592AB65C5D9B88B30B4510A3464E ] C:\Windows\System32\cscapi.dll
21:33:46.0697 3208 C:\Windows\System32\cscapi.dll - ok
21:33:46.0708 3208 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
21:33:46.0708 3208 C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
21:33:46.0718 3208 [ 6769DBB1021EA758A86E0D8927F49E69 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswScan.dll
21:33:46.0718 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswScan.dll - ok
21:33:46.0727 3208 [ 73FD66B14D3C4252F7A524B8836A4359 ] C:\Windows\System32\mstask.dll
21:33:46.0727 3208 C:\Windows\System32\mstask.dll - ok
21:33:46.0733 3208 [ E0B787702BAF0CF4CEDF8F61B71F8383 ] C:\Windows\System32\mswstr10.dll
21:33:46.0733 3208 C:\Windows\System32\mswstr10.dll - ok
21:33:46.0742 3208 [ E9B9C1B98C8D6D48407E1C1203EAC659 ] C:\Windows\System32\adsldpc.dll
21:33:46.0742 3208 C:\Windows\System32\adsldpc.dll - ok
21:33:46.0751 3208 [ 93E317D7AD783D8EAEE2E3500BFE889D ] C:\Windows\System32\credui.dll
21:33:46.0751 3208 C:\Windows\System32\credui.dll - ok
21:33:46.0760 3208 [ 8539ED943138AF05A92BD69A4DA092B2 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswRep.dll
21:33:46.0760 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswRep.dll - ok
21:33:46.0770 3208 [ B9F3FF52B84FD9E3CAFB29B8EE385E5B ] C:\Windows\System32\resutils.dll
21:33:46.0770 3208 C:\Windows\System32\resutils.dll - ok
21:33:46.0779 3208 [ 9371540C7231BC156501AB933F269762 ] C:\Windows\System32\msjint40.dll
21:33:46.0779 3208 C:\Windows\System32\msjint40.dll - ok
21:33:46.0788 3208 [ 534FD777CB2684392411CE7BCBBDF78E ] C:\Windows\System32\msjter40.dll
21:33:46.0789 3208 C:\Windows\System32\msjter40.dll - ok
21:33:46.0797 3208 [ DA5599911D138F6A2B471B3A60478022 ] C:\Windows\System32\odbcji32.dll
21:33:46.0797 3208 C:\Windows\System32\odbcji32.dll - ok
21:33:46.0807 3208 [ A1B46928E107D770053E6B4D248298A5 ] C:\Windows\System32\odbccp32.dll
21:33:46.0807 3208 C:\Windows\System32\odbccp32.dll - ok
21:33:46.0816 3208 [ 0928FFC8BD4391F5878AD08085AE676E ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswFiDb.dll
21:33:46.0816 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswFiDb.dll - ok
21:33:46.0826 3208 [ FC5372FD2DEB28E847C8394C58BC76FA ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
21:33:46.0826 3208 C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
21:33:46.0836 3208 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] C:\Program Files\SUPERAntiSpyware\SASCore.exe
21:33:46.0836 3208 C:\Program Files\SUPERAntiSpyware\SASCore.exe - ok
21:33:46.0845 3208 [ D4DAA80B44A6C904D87A79CCD10FF911 ] C:\Program Files\Common Files\System\msadc\msadce.dll
21:33:46.0845 3208 C:\Program Files\Common Files\System\msadc\msadce.dll - ok
21:33:46.0855 3208 [ 9E064B07B1625BFF18393917519A73CD ] C:\Program Files\Common Files\System\msadc\msadcer.dll
21:33:46.0856 3208 C:\Program Files\Common Files\System\msadc\msadcer.dll - ok
21:33:46.0865 3208 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:33:46.0865 3208 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
21:33:46.0874 3208 [ 293C5CCD99D332ECC94637FEDA38D1F2 ] C:\Windows\System32\TMM.dll
21:33:46.0874 3208 C:\Windows\System32\TMM.dll - ok
21:33:46.0883 3208 [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] C:\Windows\System32\agrsmsvc.exe
21:33:46.0883 3208 C:\Windows\System32\agrsmsvc.exe - ok
21:33:46.0893 3208 [ 596E452B5152EC9AFE8153D296459D2B ] C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
21:33:46.0893 3208 C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe - ok
21:33:46.0902 3208 [ 09AB39B3164C3E3AB48DC81E914203D3 ] C:\Program Files\Toshiba\ConfigFree\NDSAPI.dll
21:33:46.0902 3208 C:\Program Files\Toshiba\ConfigFree\NDSAPI.dll - ok
21:33:46.0912 3208 [ C328B03E5DC2B83A37B62971018BFFD7 ] C:\Program Files\Toshiba\ConfigFree\CFWlApi.dll
21:33:46.0912 3208 C:\Program Files\Toshiba\ConfigFree\CFWlApi.dll - ok
21:33:46.0921 3208 [ 52E9FE1CA26B7FB6A7F1B2442E400886 ] C:\Program Files\AVAST Software\Avast\defs\13032502\algo.dll
21:33:46.0921 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\algo.dll - ok
21:33:46.0930 3208 [ 8AAEEE8E59A70F37579993D118A34EE0 ] C:\Windows\System32\d3d9.dll
21:33:46.0930 3208 C:\Windows\System32\d3d9.dll - ok
21:33:46.0941 3208 [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
21:33:46.0941 3208 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
21:33:46.0952 3208 [ 3B47E60E1012B23873ED2E4A9B4F2310 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
21:33:46.0952 3208 C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
21:33:46.0961 3208 [ DA887F28054D78EE8637BEBB924A2DB5 ] C:\Windows\System32\slwga.dll
21:33:46.0961 3208 C:\Windows\System32\slwga.dll - ok
21:33:46.0970 3208 [ C3E53C4C5C1B3C8D38956EDB4E5A5F0F ] C:\Program Files\Toshiba\ConfigFree\IpAdrSet.dll
21:33:46.0970 3208 C:\Program Files\Toshiba\ConfigFree\IpAdrSet.dll - ok
21:33:46.0979 3208 [ 2DD6AF8E97F59C9D39329BBC2A81F13F ] C:\Windows\System32\rasdlg.dll
21:33:46.0979 3208 C:\Windows\System32\rasdlg.dll - ok
21:33:46.0985 3208 [ 56E315ACFB08A177B4D01E42B9044DB5 ] C:\Windows\System32\mprapi.dll
21:33:46.0986 3208 C:\Windows\System32\mprapi.dll - ok
21:33:46.0998 3208 [ CD6DA5770CAE9D5E6E86722E17B442E0 ] C:\Windows\System32\d3d8thk.dll
21:33:46.0998 3208 C:\Windows\System32\d3d8thk.dll - ok
21:33:47.0004 3208 [ 4B555106290BD117334E9A08761C035A ] C:\Windows\System32\rundll32.exe
21:33:47.0004 3208 C:\Windows\System32\rundll32.exe - ok
21:33:47.0013 3208 [ 08578F3CA5365F896D90CE2BF97FD000 ] C:\Windows\System32\IconCodecService.dll
21:33:47.0013 3208 C:\Windows\System32\IconCodecService.dll - ok
21:33:47.0023 3208 [ 4E5464EC70A2BE2B250AEE6670CC326B ] C:\Windows\System32\igdumd32.dll
21:33:47.0023 3208 C:\Windows\System32\igdumd32.dll - ok
21:33:47.0034 3208 [ 903FF9BA73E379237C0EDDDA8F17168C ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
21:33:47.0034 3208 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
21:33:47.0045 3208 [ D6804F089CBB6749E95124E7C4D80900 ] C:\Windows\AppPatch\AcLayers.dll
21:33:47.0045 3208 C:\Windows\AppPatch\AcLayers.dll - ok
21:33:47.0055 3208 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
21:33:47.0055 3208 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
21:33:47.0064 3208 [ F10E7AA8BDF4488E3DFA989B8E7F7C9F ] C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
21:33:47.0064 3208 C:\Program Files\Intel\Wireless\Bin\EvtEng.exe - ok
21:33:47.0074 3208 [ E7D0F91E44D9D3B2116FA549BDCDB756 ] C:\Windows\System32\wdscore.dll
21:33:47.0074 3208 C:\Windows\System32\wdscore.dll - ok
21:33:47.0083 3208 [ 52E129522C1775DBB8CC252E7A0655C7 ] C:\Windows\System32\taskschd.dll
21:33:47.0083 3208 C:\Windows\System32\taskschd.dll - ok
21:33:47.0093 3208 [ 17FC3EDA0162F513E858B8C8FA7FA6E0 ] C:\Windows\System32\vssapi.dll
21:33:47.0093 3208 C:\Windows\System32\vssapi.dll - ok
21:33:47.0101 3208 [ 295363D4317820AED0D527E15B90A8ED ] C:\Windows\System32\pdh.dll
21:33:47.0102 3208 C:\Windows\System32\pdh.dll - ok
21:33:47.0110 3208 [ 8A38B5E8493A9D103083B8620AC5F3A1 ] C:\Windows\System32\tdh.dll
21:33:47.0110 3208 C:\Windows\System32\tdh.dll - ok
21:33:47.0119 3208 [ D23EDB159250CC227231EE0A349C53F4 ] C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll
21:33:47.0119 3208 C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll - ok
21:33:47.0129 3208 [ 1DFC366D2154EF2B381A7F2CB165C7F4 ] C:\Windows\System32\diagperf.dll
21:33:47.0129 3208 C:\Windows\System32\diagperf.dll - ok
21:33:47.0139 3208 [ F0B4976F781460BD1588546BA5FE096D ] C:\Program Files\Intel\Wireless\Bin\Dot1xCfg.dll
21:33:47.0139 3208 C:\Program Files\Intel\Wireless\Bin\Dot1xCfg.dll - ok
21:33:47.0148 3208 [ 98606059BF69ED5BD13FD973F9652564 ] C:\Program Files\Intel\Wireless\Bin\acAuth.dll
21:33:47.0148 3208 C:\Program Files\Intel\Wireless\Bin\acAuth.dll - ok
21:33:47.0158 3208 [ 0AE5ED5D245987E172C63813166CAE53 ] C:\Program Files\Intel\Wireless\Bin\DbEngine.dll
21:33:47.0158 3208 C:\Program Files\Intel\Wireless\Bin\DbEngine.dll - ok
21:33:47.0167 3208 [ DC3AE9F1554DCD97F90983DDBDACD83D ] C:\Windows\System32\vsstrace.dll
21:33:47.0167 3208 C:\Windows\System32\vsstrace.dll - ok
21:33:47.0176 3208 [ 09469B8EDD2755143FDA06867AAD7E73 ] C:\Windows\System32\cryptnet.dll
21:33:47.0176 3208 C:\Windows\System32\cryptnet.dll - ok
21:33:47.0185 3208 [ 11ADD8816D61A6025844EB5123EC92D3 ] C:\Program Files\Intel\Wireless\Bin\Libeay32.dll
21:33:47.0185 3208 C:\Program Files\Intel\Wireless\Bin\Libeay32.dll - ok
21:33:47.0194 3208 [ EC760B0B76A4353DE49D66520EB2141F ] C:\Windows\System32\SensApi.dll
21:33:47.0195 3208 C:\Windows\System32\SensApi.dll - ok
21:33:47.0204 3208 [ 22DC784B32BEE306A99F50D6DC2460BC ] C:\Windows\System32\esent.dll
21:33:47.0204 3208 C:\Windows\System32\esent.dll - ok
21:33:47.0213 3208 [ 5C9E27E56EC79DEF0BA7744B1660BB13 ] C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
21:33:47.0213 3208 C:\Program Files\Intel\Wireless\Bin\IntStngs.dll - ok
21:33:47.0223 3208 [ 9EFCC865A907E77D3679EF2AE18387A5 ] C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll
21:33:47.0223 3208 C:\Program Files\Intel\Wireless\Bin\iWMSProv.dll - ok
21:33:47.0233 3208 [ 73337094EAD89CE19ED79515E0309597 ] C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll
21:33:47.0233 3208 C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll - ok
21:33:47.0238 3208 [ 2D2B41A3A3F014D5583CD605F560AC0D ] C:\Program Files\Intel\Wireless\Bin\MurocApi.dll
21:33:47.0238 3208 C:\Program Files\Intel\Wireless\Bin\MurocApi.dll - ok
21:33:47.0248 3208 [ 5B636388F65B3D73A50BB397F275CF34 ] C:\Windows\System32\igfxTMM.dll
21:33:47.0248 3208 C:\Windows\System32\igfxTMM.dll - ok
21:33:47.0257 3208 [ DCA3FA9F9DD103DC39C24C85EF073DB1 ] C:\Windows\System32\icmp.dll
21:33:47.0258 3208 C:\Windows\System32\icmp.dll - ok
21:33:47.0266 3208 [ 80BD4B26E2CBC0D65445D0463DFF6FC2 ] C:\Windows\System32\oledlg.dll
21:33:47.0266 3208 C:\Windows\System32\oledlg.dll - ok
21:33:47.0276 3208 [ 6D6491EEBFD230CB6E6D0F74DA8DB216 ] C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll
21:33:47.0276 3208 C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll - ok
21:33:47.0285 3208 [ 2CEDCEECCB62D59C55E80A6ED816FF72 ] C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll
21:33:47.0285 3208 C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll - ok
21:33:47.0294 3208 [ 21322832C99E8DE85BD047689A2A69DB ] C:\Windows\System32\pnpts.dll
21:33:47.0294 3208 C:\Windows\System32\pnpts.dll - ok
21:33:47.0303 3208 [ 96633419F4A1E37ACB89B45EBCCFE001 ] C:\Windows\System32\FsUsbExService.Exe
21:33:47.0303 3208 C:\Windows\System32\FsUsbExService.Exe - ok
21:33:47.0313 3208 [ AD48183027CAFCEBC322CB9CAC60F9B8 ] C:\Windows\System32\WSDApi.dll
21:33:47.0313 3208 C:\Windows\System32\WSDApi.dll - ok
21:33:47.0322 3208 [ F86293D93760C70ADF4F19E66E3FA5E8 ] C:\Windows\System32\httpapi.dll
21:33:47.0322 3208 C:\Windows\System32\httpapi.dll - ok
21:33:47.0332 3208 [ 4EDA94333BDB75B1BC0A7610BED34F00 ] C:\Windows\System32\fundisc.dll
21:33:47.0332 3208 C:\Windows\System32\fundisc.dll - ok
21:33:47.0341 3208 [ A944A73CEC5921B871542FE5CC5E03E4 ] C:\Windows\System32\olepro32.dll
21:33:47.0341 3208 C:\Windows\System32\olepro32.dll - ok
21:33:47.0351 3208 [ 4A0B6533F035D74729942EE1D19C35C5 ] C:\Windows\System32\spool\drivers\w32x86\3\lxdqserv.exe
21:33:47.0351 3208 C:\Windows\System32\spool\drivers\w32x86\3\lxdqserv.exe - ok
21:33:47.0360 3208 [ 6ABD253226770EAE1292B4C945ED4B4B ] C:\Windows\System32\msxml3.dll
21:33:47.0360 3208 C:\Windows\System32\msxml3.dll - ok
21:33:47.0369 3208 [ 044F7E9BE1358D1D94C2C8263C9BCE84 ] C:\Windows\System32\lxdqcoms.exe
21:33:47.0369 3208 C:\Windows\System32\lxdqcoms.exe - ok
21:33:47.0378 3208 [ 6349F6ED9C623B44B52EA3C63C831A92 ] C:\Windows\System32\drivers\PEAuth.sys
21:33:47.0378 3208 C:\Windows\System32\drivers\PEAuth.sys - ok
21:33:47.0387 3208 [ F4D9ED6BD74AD7CC0BEC83C43A1CB76B ] C:\Windows\System32\ncsi.dll
21:33:47.0387 3208 C:\Windows\System32\ncsi.dll - ok
21:33:47.0397 3208 [ 1ECAD6CDB2CEE77C847BF579482B3270 ] C:\Program Files\Intel\Wireless\Bin\acCTA.dll
21:33:47.0397 3208 C:\Program Files\Intel\Wireless\Bin\acCTA.dll - ok
21:33:47.0406 3208 [ 1A09CB187440993FA5E24DE1EEB7B916 ] C:\Windows\System32\cfgmgr32.dll
21:33:47.0406 3208 C:\Windows\System32\cfgmgr32.dll - ok
21:33:47.0415 3208 [ 6DBF2AC2BDAFF355995AB25ECCC4CFE1 ] C:\Toshiba\IVP\ISM\pinger.exe
21:33:47.0415 3208 C:\Toshiba\IVP\ISM\pinger.exe - ok
21:33:47.0424 3208 [ 01BCD91CC2B0EFDA4890F547010750BD ] C:\Windows\System32\ssdpapi.dll
21:33:47.0424 3208 C:\Windows\System32\ssdpapi.dll - ok
21:33:47.0433 3208 [ D0494460421A03CD5225CCA0059AA146 ] C:\Windows\System32\IPSECSVC.DLL
21:33:47.0433 3208 C:\Windows\System32\IPSECSVC.DLL - ok
21:33:47.0442 3208 [ 7274BD434B6165BAA382BDD87F6CA4CE ] C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
21:33:47.0443 3208 C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe - ok
21:33:47.0452 3208 [ 4E16E778982E5F5744E279E5B1CBD253 ] C:\Windows\System32\lxdqserv.dll
21:33:47.0453 3208 C:\Windows\System32\lxdqserv.dll - ok
21:33:47.0462 3208 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\Windows\System32\drivers\secdrv.sys
21:33:47.0462 3208 C:\Windows\System32\drivers\secdrv.sys - ok
21:33:47.0471 3208 [ 23E3C83DFF7B09A97B01A85ED8A44478 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:33:47.0471 3208 C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
21:33:47.0481 3208 [ EB7DA1FA2A2EC9D5D6CEEF7BB5A687D8 ] C:\Windows\System32\lxdqinpa.dll
21:33:47.0481 3208 C:\Windows\System32\lxdqinpa.dll - ok
21:33:47.0486 3208 [ 42608AE9AF2641EE473A1797C25CFFC2 ] C:\Windows\System32\FwRemoteSvr.dll
21:33:47.0486 3208 C:\Windows\System32\FwRemoteSvr.dll - ok
21:33:47.0496 3208 [ 19A15034DFFD042A3044455F6D89C374 ] C:\Windows\System32\lxdqiesc.dll
21:33:47.0497 3208 C:\Windows\System32\lxdqiesc.dll - ok
21:33:47.0505 3208 [ 70A7531D55B6E03AC51D63FEA8FCD3D0 ] C:\Windows\System32\lxdqusb1.dll
21:33:47.0506 3208 C:\Windows\System32\lxdqusb1.dll - ok
21:33:47.0515 3208 [ 371A28995100CDC4AACEE295672AD660 ] C:\Windows\System32\lxdqhbn3.dll
21:33:47.0515 3208 C:\Windows\System32\lxdqhbn3.dll - ok
21:33:47.0524 3208 [ D538D955EEFAFF5A6349A96158048813 ] C:\Windows\System32\LXDQhcp.dll
21:33:47.0524 3208 C:\Windows\System32\LXDQhcp.dll - ok
21:33:47.0533 3208 [ BDE89AB6F15F0093A2A7861D1FC413ED ] C:\Windows\System32\QAGENT.DLL
21:33:47.0533 3208 C:\Windows\System32\QAGENT.DLL - ok
21:33:47.0542 3208 [ C411C80F90D6732380352B98B37BBD53 ] C:\Windows\System32\winrnr.dll
21:33:47.0542 3208 C:\Windows\System32\winrnr.dll - ok
21:33:47.0552 3208 [ EFA80360111D8D179E39E314A49C9ED4 ] C:\Windows\System32\wshbth.dll
21:33:47.0552 3208 C:\Windows\System32\wshbth.dll - ok
21:33:47.0561 3208 [ 769D027B977CED05658C85E698D3C5B1 ] C:\Windows\System32\QUTIL.DLL
21:33:47.0561 3208 C:\Windows\System32\QUTIL.DLL - ok
21:33:47.0570 3208 [ A7D525E5C0D91C8C1D84C6BCD25AD77D ] C:\Windows\System32\rasadhlp.dll
21:33:47.0570 3208 C:\Windows\System32\rasadhlp.dll - ok
21:33:47.0580 3208 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files\Skype\Updater\Updater.exe
21:33:47.0581 3208 C:\Program Files\Skype\Updater\Updater.exe - ok
21:33:47.0590 3208 [ E1292C1ED4DEB17B8A9B586D22CB2061 ] C:\Toshiba\IVP\swupdate\swupdtmr.exe
21:33:47.0590 3208 C:\Toshiba\IVP\swupdate\swupdtmr.exe - ok
21:33:47.0599 3208 [ 428FF21418ADCD6FAD6189CD9520A67B ] C:\Windows\System32\wiatrace.dll
21:33:47.0599 3208 C:\Windows\System32\wiatrace.dll - ok
21:33:47.0608 3208 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] C:\Windows\System32\drivers\tcpipreg.sys
21:33:47.0608 3208 C:\Windows\System32\drivers\tcpipreg.sys - ok
21:33:47.0618 3208 [ E47F35A87FF0DA38DEF37A0EB0C2D2DF ] C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
21:33:47.0618 3208 C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe - ok
21:33:47.0627 3208 [ 0C84B6AFFA7486422235584110D7176F ] C:\Windows\System32\icaapi.dll
21:33:47.0628 3208 C:\Windows\System32\icaapi.dll - ok
21:33:47.0637 3208 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
21:33:47.0638 3208 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
21:33:47.0647 3208 [ 4DBA143F06BAD1DF935CB9603140CF2A ] C:\Windows\System32\wsdchngr.dll
21:33:47.0647 3208 C:\Windows\System32\wsdchngr.dll - ok
21:33:47.0656 3208 [ 6BC5FCEF351E4CB5A269C1E84B5A06DA ] C:\Windows\System32\netcfgx.dll
21:33:47.0657 3208 C:\Windows\System32\netcfgx.dll - ok
21:33:47.0666 3208 [ C5AC715B65B01788ABC22D10749DDDD8 ] C:\Windows\System32\TODDSrv.exe
21:33:47.0666 3208 C:\Windows\System32\TODDSrv.exe - ok
21:33:47.0675 3208 [ DA6903958CBDC091FFCBBCA70CCFF34C ] C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
21:33:47.0675 3208 C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe - ok
21:33:47.0685 3208 [ 387ECAF254AB992EEA44091194551A4B ] C:\Program Files\Toshiba\Power Saver\TPwrReg.dll
21:33:47.0685 3208 C:\Program Files\Toshiba\Power Saver\TPwrReg.dll - ok
21:33:47.0694 3208 [ 254CFBF1DAA777825B139CFA1A4C8B7D ] C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll
21:33:47.0694 3208 C:\Program Files\Toshiba\Power Saver\TPwrFunc.dll - ok
21:33:47.0704 3208 [ F95208D35A9667C58CF8122EE22805A6 ] C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
21:33:47.0704 3208 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe - ok
21:33:47.0713 3208 [ 74B8C2EA72D43727142D12397D5A49F9 ] C:\Windows\System32\wbemcomn.dll
21:33:47.0713 3208 C:\Windows\System32\wbemcomn.dll - ok
21:33:47.0723 3208 [ 2205A220A264E8C8B86492BF3D112907 ] C:\Windows\System32\PortableDeviceApi.dll
21:33:47.0723 3208 C:\Windows\System32\PortableDeviceApi.dll - ok
21:33:47.0732 3208 [ DEB9D08750423069647C3A066CEC7A1B ] C:\Windows\System32\tquery.dll
21:33:47.0732 3208 C:\Windows\System32\tquery.dll - ok
21:33:47.0738 3208 [ 1F18B9EA1BBFF033413414C3BEA13AD6 ] C:\Windows\System32\wbem\WinMgmtR.dll
21:33:47.0738 3208 C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:33:47.0747 3208 [ B53BD9E63867CD9FD853F666CA172713 ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:33:47.0748 3208 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:33:47.0758 3208 [ 867C301E8B790040AE9CF6486E8041DF ] C:\Windows\System32\drivers\WUDFRd.sys
21:33:47.0758 3208 C:\Windows\System32\drivers\WUDFRd.sys - ok
21:33:47.0767 3208 [ 218B73EA8341EA9FDF018D43052E790A ] C:\Windows\System32\mssrch.dll
21:33:47.0767 3208 C:\Windows\System32\mssrch.dll - ok
21:33:47.0776 3208 [ 980B6A5F92B8DB235C4A26728C2BE732 ] C:\Windows\System32\WUDFHost.exe
21:33:47.0776 3208 C:\Windows\System32\WUDFHost.exe - ok
21:33:47.0787 3208 [ 30F0DC266B46118E9FBCF5B2A30EB1DB ] C:\Windows\System32\wbem\wbemprox.dll
21:33:47.0787 3208 C:\Windows\System32\wbem\wbemprox.dll - ok
21:33:47.0795 3208 [ AAB5FEAABF4CB6F76D794203831C8D94 ] C:\Windows\System32\msidle.dll
21:33:47.0795 3208 C:\Windows\System32\msidle.dll - ok
21:33:47.0805 3208 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] C:\Windows\System32\netprofm.dll
21:33:47.0805 3208 C:\Windows\System32\netprofm.dll - ok
21:33:47.0813 3208 [ BF7E4D6F60A6D9E866432855C6F8C262 ] C:\Windows\System32\sqmapi.dll
21:33:47.0814 3208 C:\Windows\System32\sqmapi.dll - ok
21:33:47.0823 3208 [ DFCAB29E8FD38F95650CC1E203E8D318 ] C:\Windows\System32\npmproxy.dll
21:33:47.0823 3208 C:\Windows\System32\npmproxy.dll - ok
21:33:47.0832 3208 [ A36F7A256E65D858A7039DB00ADEEBDD ] C:\Windows\System32\WUDFx.dll
21:33:47.0832 3208 C:\Windows\System32\WUDFx.dll - ok
21:33:47.0841 3208 [ FC1EEE57EB9CD57279D70BA2A9131C38 ] C:\Windows\System32\wbem\wbemcore.dll
21:33:47.0841 3208 C:\Windows\System32\wbem\wbemcore.dll - ok
21:33:47.0850 3208 [ B458B58F7BB97C48D01AC3CF5805AAAC ] C:\Windows\System32\Query.dll
21:33:47.0850 3208 C:\Windows\System32\Query.dll - ok
21:33:47.0859 3208 [ 119A487B94FCB54D5154EBFBFA124755 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:33:47.0860 3208 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:33:47.0869 3208 [ 50ABE7CDA2DAE898216121D14092C182 ] C:\Windows\System32\WMVCORE.DLL
21:33:47.0869 3208 C:\Windows\System32\WMVCORE.DLL - ok
21:33:47.0878 3208 [ C10E13721B0AAEBEB5EBA914F1D18181 ] C:\Windows\System32\wbem\esscli.dll
21:33:47.0878 3208 C:\Windows\System32\wbem\esscli.dll - ok
21:33:47.0887 3208 [ BC5A34B6A14C93BF04E3F4E8EA57090A ] C:\Windows\System32\wbem\fastprox.dll
21:33:47.0888 3208 C:\Windows\System32\wbem\fastprox.dll - ok
21:33:47.0896 3208 [ DB0F37DBA4C245C61E5936DDBDE62438 ] C:\Windows\System32\wbem\wbemsvc.dll
21:33:47.0896 3208 C:\Windows\System32\wbem\wbemsvc.dll - ok
21:33:47.0907 3208 [ 2C3B09E586BDA2CC49A292BE7BADC589 ] C:\Windows\System32\wbem\wmiutils.dll
21:33:47.0907 3208 C:\Windows\System32\wbem\wmiutils.dll - ok
21:33:47.0916 3208 [ 834933F16EA839AC5AC7CBF88638DF27 ] C:\Windows\System32\wbem\repdrvfs.dll
21:33:47.0916 3208 C:\Windows\System32\wbem\repdrvfs.dll - ok
21:33:47.0925 3208 [ C2C6C014B96581EC8BF0C8604DE1743E ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:33:47.0925 3208 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:33:47.0934 3208 [ A609A192E98934A8D352704C99AB8577 ] C:\Windows\System32\wbem\wbemess.dll
21:33:47.0934 3208 C:\Windows\System32\wbem\wbemess.dll - ok
21:33:47.0944 3208 [ 36CCD8A79539C4ACE3BABE09C2CFBA16 ] C:\Windows\System32\WMASF.DLL
21:33:47.0944 3208 C:\Windows\System32\WMASF.DLL - ok
21:33:47.0952 3208 [ CBE5F69A5E5B918225F420BA748F3742 ] C:\Windows\System32\FsUsbExDisk.Sys
21:33:47.0953 3208 C:\Windows\System32\FsUsbExDisk.Sys - ok
21:33:47.0963 3208 [ A952D0DED445F26AEFCF593A935AB300 ] C:\Windows\System32\hnetcfg.dll
21:33:47.0963 3208 C:\Windows\System32\hnetcfg.dll - ok
21:33:47.0972 3208 [ FEA6D21F78922D641A0C9346D885133B ] C:\Windows\System32\mssprxy.dll
21:33:47.0973 3208 C:\Windows\System32\mssprxy.dll - ok
21:33:47.0981 3208 [ B2B117BD8D1EA80536CDD91797EF4A0A ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:33:47.0982 3208 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:33:47.0991 3208 [ 883D02AB5D350BC45E0F60E8CFA97FDC ] C:\Windows\System32\PortableDeviceTypes.dll
21:33:47.0992 3208 C:\Windows\System32\PortableDeviceTypes.dll - ok
21:33:47.0997 3208 [ F21F255B91CA4F04E4250DECD2067CBB ] C:\Windows\System32\bitsperf.dll
21:33:47.0997 3208 C:\Windows\System32\bitsperf.dll - ok
21:33:48.0006 3208 [ 632557F2495931D952161465AA177B3B ] C:\Windows\System32\bitsigd.dll
21:33:48.0007 3208 C:\Windows\System32\bitsigd.dll - ok
21:33:48.0015 3208 [ 9495FCC01D7AB7B60E5B8BA7AEFE9E3D ] C:\Windows\System32\wbem\WmiPrvSE.exe
21:33:48.0016 3208 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
21:33:48.0025 3208 [ 3192ED5E2FFDF5B630541B9643AE1AA3 ] C:\Windows\System32\upnp.dll
21:33:48.0025 3208 C:\Windows\System32\upnp.dll - ok
21:33:48.0033 3208 [ C8AE490A93C3CC2E537B6E06247785A1 ] C:\Windows\System32\wbem\NCProv.dll
21:33:48.0034 3208 C:\Windows\System32\wbem\NCProv.dll - ok
21:33:48.0043 3208 [ B8A21907FE2F1A113F3487D9AB60BEF9 ] C:\Windows\System32\en-US\tquery.dll.mui
21:33:48.0043 3208 C:\Windows\System32\en-US\tquery.dll.mui - ok
21:33:48.0052 3208 [ F723422A11CD6FA13036746272200993 ] C:\Windows\System32\wbem\cimwin32.dll
21:33:48.0052 3208 C:\Windows\System32\wbem\cimwin32.dll - ok
21:33:48.0062 3208 [ E3F535656B5ABF249702EB64F3CF9AF0 ] C:\Windows\System32\wbem\wbemcons.dll
21:33:48.0062 3208 C:\Windows\System32\wbem\wbemcons.dll - ok
21:33:48.0071 3208 [ 9A6A653ADF28D9D69670B48F535E6B90 ] C:\Windows\System32\runonce.exe
21:33:48.0071 3208 C:\Windows\System32\runonce.exe - ok
21:33:48.0080 3208 [ F85134BF76CB335A39F8D7BC4173D4FB ] C:\Windows\System32\msscb.dll
21:33:48.0080 3208 C:\Windows\System32\msscb.dll - ok
21:33:48.0089 3208 [ 67BB7141F7F5F37411F796943B3418B6 ] C:\Windows\System32\framedynos.dll
21:33:48.0089 3208 C:\Windows\System32\framedynos.dll - ok
21:33:48.0098 3208 [ 74F26FC01B180D4A99A168ED69C30A53 ] C:\Windows\System32\cmd.exe
21:33:48.0099 3208 C:\Windows\System32\cmd.exe - ok
21:33:48.0108 3208 [ 70C6489D56008D75DEDF73226FA63C11 ] C:\Windows\System32\dimsjob.dll
21:33:48.0108 3208 C:\Windows\System32\dimsjob.dll - ok
21:33:48.0116 3208 [ 87CDFFCBD09C1CA03A068343D5D93250 ] C:\Windows\System32\wmi.dll
21:33:48.0117 3208 C:\Windows\System32\wmi.dll - ok
21:33:48.0126 3208 [ 98638A4CA187245C469DA0DEC4F04A45 ] C:\Windows\System32\pautoenr.dll
21:33:48.0126 3208 C:\Windows\System32\pautoenr.dll - ok
21:33:48.0135 3208 [ 10F13FFF542FEC4A2C4FA734EEBE56B9 ] C:\Windows\System32\qmgrprxy.dll
21:33:48.0135 3208 C:\Windows\System32\qmgrprxy.dll - ok
21:33:48.0144 3208 [ AC48FD62E22C4425879FCA5A63F50497 ] C:\Windows\System32\certcli.dll
21:33:48.0144 3208 C:\Windows\System32\certcli.dll - ok
21:33:48.0153 3208 [ 0053319C4438CDE659AA75C19BBD22F1 ] C:\Windows\System32\CertEnroll.dll
21:33:48.0153 3208 C:\Windows\System32\CertEnroll.dll - ok
21:33:48.0163 3208 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\System32\ieframe.dll
21:33:48.0163 3208 C:\Windows\System32\ieframe.dll - ok
21:33:48.0172 3208 [ 4AE04D9608F272F3F468B34F2F1329E5 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
21:33:48.0172 3208 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
21:33:48.0182 3208 [ 94868FC1295C8B76B8D45C1F44D9F653 ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
21:33:48.0182 3208 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
21:33:48.0192 3208 [ DEA9DFD3E83F48D7005E066011D340F7 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
21:33:48.0192 3208 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
21:33:48.0202 3208 [ C03EC02F6C9F492293D78F850E2E48FC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
21:33:48.0202 3208 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
21:33:48.0212 3208 [ 15D7A4070D2B52D2EEA8D99E551E9E53 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
21:33:48.0212 3208 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
21:33:48.0221 3208 [ A46789AD5F3A85470F898B15D5C056BD ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
21:33:48.0221 3208 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
21:33:48.0231 3208 [ B2D91A72C78D27D9A25FFF8BAF6EB2F4 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
21:33:48.0231 3208 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
21:33:48.0241 3208 [ 39F39B23969512842F6A6D259E68FF11 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
21:33:48.0241 3208 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
21:33:48.0247 3208 [ 9D2680936DA1CB440E34482C6CAD9098 ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
21:33:48.0247 3208 C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
21:33:48.0257 3208 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Kevin\AppData\Local\temp\7A8C02AC-F4FC-4F52-B760-C5D1DD064011.exe
21:33:48.0257 3208 C:\Users\Kevin\AppData\Local\temp\7A8C02AC-F4FC-4F52-B760-C5D1DD064011.exe - ok
21:33:48.0267 3208 [ 254AC97C9AF4DDF3F5F57855198527B7 ] C:\Windows\System32\wermgr.exe
21:33:48.0267 3208 C:\Windows\System32\wermgr.exe - ok
21:33:48.0277 3208 [ A7F63C1F5CE020AA24CDCEFB422CF9E3 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswAR.dll
21:33:48.0277 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswAR.dll - ok
21:33:48.0286 3208 [ 8BE000F9A0B0FF7194AAEFB02C9BDE99 ] C:\Windows\System32\wer.dll
21:33:48.0286 3208 C:\Windows\System32\wer.dll - ok
21:33:48.0296 3208 [ 025C496DA7B48A82A40906D538BFC4AC ] C:\Program Files\AVAST Software\Avast\defs\13032502\swhealthex.dll
21:33:48.0296 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\swhealthex.dll - ok
21:33:48.0305 3208 [ 899C7993A7DE3061C74623F5523BC21D ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
21:33:48.0305 3208 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
21:33:48.0316 3208 [ 83D722F311011FB0E521737F724DEB90 ] C:\Program Files\AVAST Software\Avast\defs\13032502\aswRawFS.dll
21:33:48.0316 3208 C:\Program Files\AVAST Software\Avast\defs\13032502\aswRawFS.dll - ok
21:33:48.0325 3208 [ B95AC0CDB8F068F0C024CD344B354298 ] C:\Program Files\Google\Chrome\Application\chrome.exe
21:33:48.0325 3208 C:\Program Files\Google\Chrome\Application\chrome.exe - ok
21:33:48.0335 3208 [ B201AF83DF2E85323E29EB83E4046810 ] C:\Program Files\Internet Explorer\iexplore.exe
21:33:48.0335 3208 C:\Program Files\Internet Explorer\iexplore.exe - ok
21:33:48.0345 3208 [ B96F045D571747F8700CB43E8C458FF0 ] C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe
21:33:48.0345 3208 C:\Program Files\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
21:33:48.0354 3208 [ 08996DD4135EEDCB346BC4AD97B88A72 ] C:\Program Files\Java\jre1.6.0_03\bin\java.exe
21:33:48.0354 3208 C:\Program Files\Java\jre1.6.0_03\bin\java.exe - ok
21:33:48.0364 3208 [ 4951D2D49B400A1A722BC48FADEBD6F4 ] C:\Program Files\Java\jre7\bin\java.exe
21:33:48.0364 3208 C:\Program Files\Java\jre7\bin\java.exe - ok
21:33:48.0373 3208 [ FD647CA82ACF232DBE5F20345647B948 ] C:\Windows\AppPatch\AcGenral.dll
21:33:48.0373 3208 C:\Windows\AppPatch\AcGenral.dll - ok
21:33:48.0382 3208 [ F4E1AA5D59C849A4AB47E895DC76B9C8 ] C:\Windows\System32\sfc.dll
21:33:48.0382 3208 C:\Windows\System32\sfc.dll - ok
21:33:48.0391 3208 [ 12BCF4DAD8E5A1B3D5FA7AB4A79DA105 ] C:\Windows\System32\sfc_os.dll
21:33:48.0391 3208 C:\Windows\System32\sfc_os.dll - ok
21:33:48.0400 3208 [ 5C5E3AFD499E5146FEF1DA5EF8A23205 ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
21:33:48.0400 3208 C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
21:33:48.0409 3208 [ 1D6B95871DC006190964B04E5657E35F ] C:\Windows\System32\rastapi.dll
21:33:48.0410 3208 C:\Windows\System32\rastapi.dll - ok
21:33:48.0419 3208 [ B96B60EC821F86D445C9739A0F3DED59 ] C:\Windows\System32\unimdm.tsp
21:33:48.0419 3208 C:\Windows\System32\unimdm.tsp - ok
21:33:48.0427 3208 [ DFBAADF1B624DC71E88D34D86B3595BE ] C:\Windows\System32\uniplat.dll
21:33:48.0428 3208 C:\Windows\System32\uniplat.dll - ok
21:33:48.0437 3208 [ 2E837F3D406224DF131C34BC8F71621E ] C:\Windows\System32\modemui.dll
21:33:48.0437 3208 C:\Windows\System32\modemui.dll - ok
21:33:48.0447 3208 [ 0B71899E60D1265229BF3D080EAB573D ] C:\Windows\System32\unimdmat.dll
21:33:48.0447 3208 C:\Windows\System32\unimdmat.dll - ok
21:33:48.0455 3208 [ 953193A9DEA40348C1086D171F6440AE ] C:\Windows\System32\kmddsp.tsp
21:33:48.0456 3208 C:\Windows\System32\kmddsp.tsp - ok
21:33:48.0465 3208 [ B4B59AC042EE3733A862F26CBC0B17FC ] C:\Windows\System32\hidphone.tsp
21:33:48.0465 3208 C:\Windows\System32\hidphone.tsp - ok
21:33:48.0474 3208 [ 2F6776ACEFE41EE889C464EA407918F2 ] C:\Windows\System32\ndptsp.tsp
21:33:48.0474 3208 C:\Windows\System32\ndptsp.tsp - ok
21:33:48.0483 3208 [ 8B645890A93F1FBBC7DA3E07CC72D762 ] C:\Windows\System32\rasppp.dll
21:33:48.0483 3208 C:\Windows\System32\rasppp.dll - ok
21:33:48.0491 3208 [ 88225070DD2F7B0B2ED51E7935078641 ] C:\Windows\System32\rasqec.dll
21:33:48.0491 3208 C:\Windows\System32\rasqec.dll - ok
21:33:48.0501 3208 [ 248A1F31ABB58DDDDC01490EF0BDC777 ] C:\Windows\System32\cryptui.dll
21:33:48.0501 3208 C:\Windows\System32\cryptui.dll - ok
21:33:48.0507 3208 [ 73FE2E5FA55088A241AA2732F5D387D6 ] C:\Windows\System32\wiarpc.dll
21:33:48.0507 3208 C:\Windows\System32\wiarpc.dll - ok
21:33:48.0517 3208 [ FD3D1416A3F877579395C750C4646DD2 ] C:\Windows\System32\igfxdev.dll
21:33:48.0517 3208 C:\Windows\System32\igfxdev.dll - ok
21:33:48.0526 3208 [ C6FD3425B1ADD739B95DC4D661FF4DD3 ] C:\Windows\System32\PresentationSettings.exe
21:33:48.0526 3208 C:\Windows\System32\PresentationSettings.exe - ok
21:33:48.0536 3208 [ DF14865FD7961D9D4FA5A2A3C2F33560 ] C:\Windows\System32\igfxsrvc.exe
21:33:48.0536 3208 C:\Windows\System32\igfxsrvc.exe - ok
21:33:48.0546 3208 [ 792ABC1CB4E5BC538C0DAE212E005449 ] C:\Windows\System32\igfxsrvc.dll
21:33:48.0546 3208 C:\Windows\System32\igfxsrvc.dll - ok
21:33:48.0558 3208 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll
21:33:48.0558 3208 C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll - ok
21:33:48.0571 3208 [ B5EF1DA337DB9859709A387638AC5E07 ] C:\Windows\System32\SearchProtocolHost.exe
21:33:48.0571 3208 C:\Windows\System32\SearchProtocolHost.exe - ok
21:33:48.0580 3208 [ 582BE479E7E286BB3B31C5A4C3DC3987 ] C:\Windows\System32\msshooks.dll
21:33:48.0580 3208 C:\Windows\System32\msshooks.dll - ok
21:33:48.0589 3208 [ 771AF583BC58373A84496CCD52C36E33 ] C:\Windows\System32\mssvp.dll
21:33:48.0589 3208 C:\Windows\System32\mssvp.dll - ok
21:33:48.0597 3208 [ 98C77FD99F3DB37B2C03F32B8F837B65 ] C:\Windows\System32\mapi32.dll
21:33:48.0598 3208 C:\Windows\System32\mapi32.dll - ok
21:33:48.0607 3208 [ 351319EF11C263C95FB721AC76F436D6 ] C:\Windows\System32\mssph.dll
21:33:48.0607 3208 C:\Windows\System32\mssph.dll - ok
21:33:48.0616 3208 [ E290E3FDF645DF29D00D6368B9127E30 ] C:\Windows\System32\msfeeds.dll
21:33:48.0617 3208 C:\Windows\System32\msfeeds.dll - ok
21:33:48.0626 3208 [ A1CD5CE96F0A5426DB9A2F793854D1B8 ] C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL
21:33:48.0626 3208 C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL - ok
21:33:48.0635 3208 [ C9EE7FF225EAC1CB9C78C413667CDB80 ] C:\Windows\System32\SearchFilterHost.exe
21:33:48.0635 3208 C:\Windows\System32\SearchFilterHost.exe - ok
21:33:48.0644 3208 [ BADC359C9A0D9C217B7E8DA17BF3F5BB ] C:\Windows\System32\ntshrui.dll
21:33:48.0644 3208 C:\Windows\System32\ntshrui.dll - ok
21:33:48.0654 3208 [ 8D78BA30DB4AE040A52EDEE725782715 ] C:\Windows\System32\actxprxy.dll
21:33:48.0654 3208 C:\Windows\System32\actxprxy.dll - ok
21:33:48.0663 3208 [ 1CE4A2790EB4A96F4ED1E4264866AFE6 ] C:\Windows\System32\NaturalLanguage6.dll
21:33:48.0663 3208 C:\Windows\System32\NaturalLanguage6.dll - ok
21:33:48.0672 3208 [ AA111488C03C58A2BF66509ABB4FDE60 ] C:\Windows\System32\NlsData0009.dll
21:33:48.0672 3208 C:\Windows\System32\NlsData0009.dll - ok
21:33:48.0681 3208 [ 8629B71343F61E1140243581C63BC0C7 ] C:\Windows\System32\NlsLexicons0009.dll
21:33:48.0681 3208 C:\Windows\System32\NlsLexicons0009.dll - ok
21:33:48.0691 3208 [ AB3C4A3667AEAD147F175721D8719B78 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
21:33:48.0691 3208 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
21:33:48.0701 3208 [ 63396CBB1365769D520E0FD89C2419F2 ] C:\Windows\System32\localspl.dll
21:33:48.0701 3208 C:\Windows\System32\localspl.dll - ok
21:33:48.0709 3208 [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\Windows\System32\msonpmon.dll
21:33:48.0710 3208 C:\Windows\System32\msonpmon.dll - ok
21:33:48.0719 3208 [ BB0EB921877A1A7EF15AE2D97A71CBA9 ] C:\Windows\System32\tcpmon.dll
21:33:48.0719 3208 C:\Windows\System32\tcpmon.dll - ok
21:33:48.0727 3208 [ AF24A9DF84637BF9858EC6FB88EBA7B2 ] C:\Windows\System32\snmpapi.dll
21:33:48.0727 3208 C:\Windows\System32\snmpapi.dll - ok
21:33:48.0737 3208 [ 1EDE113859276E4B0F19B80F39E2CC95 ] C:\Windows\System32\wsnmp32.dll
21:33:48.0737 3208 C:\Windows\System32\wsnmp32.dll - ok
21:33:48.0745 3208 [ 5091452DC719281CF1DD69367E13B494 ] C:\Windows\System32\tcpmib.dll
21:33:48.0746 3208 C:\Windows\System32\tcpmib.dll - ok
21:33:48.0755 3208 [ B4F5DE3DAD8E6B97272F45DB97674878 ] C:\Windows\System32\mgmtapi.dll
21:33:48.0755 3208 C:\Windows\System32\mgmtapi.dll - ok
21:33:48.0760 3208 [ 18BA660C7022422A9B3BE14C37D7401E ] C:\Windows\System32\TBTMon.dll
21:33:48.0761 3208 C:\Windows\System32\TBTMon.dll - ok
21:33:48.0770 3208 [ E015C3AF4EBEFCD47BB05781126898BD ] C:\Windows\System32\tbtmon98Language.dll
21:33:48.0770 3208 C:\Windows\System32\tbtmon98Language.dll - ok
21:33:48.0779 3208 [ 756D84D65E727B60F149D8058720521A ] C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtHcrpAPI.dll
21:33:48.0780 3208 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtHcrpAPI.dll - ok
21:33:48.0790 3208 [ C558A6C1B69E2A69CE88A98D54AD537B ] C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtAPI.dll
21:33:48.0790 3208 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBtAPI.dll - ok
21:33:48.0800 3208 [ 404781A5862EF5BFFB63F178FD5380C3 ] C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBdAPI.dll
21:33:48.0800 3208 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\sys\TosBdAPI.dll - ok
21:33:48.0810 3208 [ 0BF0BB276F17B6AD61A8694D2551EC28 ] C:\Windows\System32\usbmon.dll
21:33:48.0810 3208 C:\Windows\System32\usbmon.dll - ok
21:33:48.0819 3208 [ 0EB1CC5EBFCAAB7DBAEE881E2887F7F9 ] C:\Windows\System32\WSDMon.dll
21:33:48.0819 3208 C:\Windows\System32\WSDMon.dll - ok
21:33:48.0828 3208 [ 9CA922153E68AF68A20A191DBC49A6D9 ] C:\Windows\System32\lxdqlmpm.dll
21:33:48.0828 3208 C:\Windows\System32\lxdqlmpm.dll - ok
21:33:48.0838 3208 [ C50231C862536CB54DCEAAC60813B14F ] C:\Windows\System32\lxdqcomc.dll
21:33:48.0838 3208 C:\Windows\System32\lxdqcomc.dll - ok
21:33:48.0847 3208 [ 4CB572B4717B28D647F3DA0C49896E7D ] C:\Windows\System32\spool\prtprocs\w32x86\lxdqdrpp.dll
21:33:48.0847 3208 C:\Windows\System32\spool\prtprocs\w32x86\lxdqdrpp.dll - ok
21:33:48.0857 3208 [ F348280907B38FDBDB3CEF55D456E149 ] C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll
21:33:48.0857 3208 C:\Windows\System32\spool\prtprocs\w32x86\msonpppr.dll - ok
21:33:48.0866 3208 [ C90B296C43EDD9DD1751AD3B590ACDE6 ] C:\Windows\System32\win32spl.dll
21:33:48.0866 3208 C:\Windows\System32\win32spl.dll - ok
21:33:48.0875 3208 [ 4BF053944E973C073339BE841C9ECF28 ] C:\Windows\System32\netrap.dll
21:33:48.0875 3208 C:\Windows\System32\netrap.dll - ok
21:33:48.0884 3208 [ E340845C8E96D107C36420065D7A5733 ] C:\Windows\System32\printcom.dll
21:33:48.0884 3208 C:\Windows\System32\printcom.dll - ok
21:33:48.0894 3208 [ 2E8E30F3B318A9FDA5A2485723F4C2B3 ] C:\Windows\System32\inetpp.dll
21:33:48.0894 3208 C:\Windows\System32\inetpp.dll - ok
21:33:48.0903 3208 [ 8078F8F8F7A79E2E6B494523A828C585 ] C:\Windows\System32\msdtckrm.dll
21:33:48.0903 3208 C:\Windows\System32\msdtckrm.dll - ok
21:33:48.0913 3208 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\Windows\System32\wuapi.dll
21:33:48.0913 3208 C:\Windows\System32\wuapi.dll - ok
21:33:48.0921 3208 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\Windows\System32\wups.dll
21:33:48.0921 3208 C:\Windows\System32\wups.dll - ok
21:33:48.0930 3208 [ 5E41139EC6EFBCAFFD96D46925E544AB ] C:\Windows\System32\mspatcha.dll
21:33:48.0931 3208 C:\Windows\System32\mspatcha.dll - ok
21:33:48.0940 3208 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\Windows\System32\wups2.dll
21:33:48.0940 3208 C:\Windows\System32\wups2.dll - ok
21:33:48.0949 3208 [ FE3702015BE4D214808A2FBC07B8E5FF ] C:\Windows\System32\wscproxystub.dll
21:33:48.0949 3208 C:\Windows\System32\wscproxystub.dll - ok
21:33:48.0958 3208 [ 0A990AFB9F2726323D61C8ECB8B70B17 ] C:\Windows\System32\security.dll
21:33:48.0958 3208 C:\Windows\System32\security.dll - ok
21:33:48.0967 3208 [ C8DBFEF835FF54467425C8F3ABCF7046 ] C:\Windows\System32\dssenh.dll
21:33:48.0967 3208 C:\Windows\System32\dssenh.dll - ok
21:33:48.0977 3208 [ 5FA382106B145A920E2A4F7087AF1B90 ] C:\Windows\System32\wbem\wmipcima.dll
21:33:48.0977 3208 C:\Windows\System32\wbem\wmipcima.dll - ok
21:33:48.0986 3208 [ 7ADD03E75BEB9E6DD102C3081D29840A ] C:\Windows\System32\drivers\cdfs.sys
21:33:48.0986 3208 C:\Windows\System32\drivers\cdfs.sys - ok
21:33:48.0995 3208 [ F8D8BB3F6173FFF00128612F33D3197A ] C:\Windows\System32\wbem\WMIADAP.exe
21:33:48.0996 3208 C:\Windows\System32\wbem\WMIADAP.exe - ok
21:33:49.0005 3208 [ 8B2D61CA83825CEAD423228ACD40CFBC ] C:\Windows\System32\loadperf.dll
21:33:49.0005 3208 C:\Windows\System32\loadperf.dll - ok
21:33:49.0015 3208 [ 10DE220BDFE330073762F89974DB8403 ] C:\Windows\System32\wbem\wmiprov.dll
21:33:49.0015 3208 C:\Windows\System32\wbem\wmiprov.dll - ok
21:33:49.0024 3208 [ 3D1ABC78415C78A9BA7F3FC2BB8EDC9A ] C:\Windows\System32\wbem\mofd.dll
21:33:49.0024 3208 C:\Windows\System32\wbem\mofd.dll - ok
21:33:49.0033 3208 [ 77784A2BD5912A4EC6284255865526BC ] C:\Windows\System32\Faultrep.dll
21:33:49.0033 3208 C:\Windows\System32\Faultrep.dll - ok
21:33:49.0044 3208 [ 7BEDD051B53821B040EAD42DB0724848 ] C:\Windows\System32\WerFault.exe
21:33:49.0044 3208 C:\Windows\System32\WerFault.exe - ok
21:33:49.0054 3208 [ 447983959A8CF49C4CC3B65DED69AF28 ] C:\Windows\System32\dbgeng.dll
21:33:49.0054 3208 C:\Windows\System32\dbgeng.dll - ok
21:33:49.0071 3208 [ 7EA4D54AAF5C0CE7865C494811515826 ] C:\Windows\System32\verifier.dll
21:33:49.0072 3208 C:\Windows\System32\verifier.dll - ok
21:33:49.0086 3208 [ C0B8B96D018849FD8CCF15FED84E8782 ] C:\Windows\System32\ie4uinit.exe
21:33:49.0086 3208 C:\Windows\System32\ie4uinit.exe - ok
21:33:49.0098 3208 [ F0FEFB0B5D25A75D478A4317139D937E ] C:\Windows\System32\iedkcs32.dll
21:33:49.0098 3208 C:\Windows\System32\iedkcs32.dll - ok
21:33:49.0107 3208 [ 4B19A9A4191353007E9819A832B81186 ] C:\Windows\System32\timedate.cpl
21:33:49.0108 3208 C:\Windows\System32\timedate.cpl - ok
21:33:49.0118 3208 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\Windows\System32\drivers\07392024.sys
21:33:49.0118 3208 C:\Windows\System32\drivers\07392024.sys - ok
21:33:49.0127 3208 [ 0CFCDE5D9D074D96B78D1F1CBF1AAB1D ] C:\Windows\System32\riched20.dll
21:33:49.0127 3208 C:\Windows\System32\riched20.dll - ok
21:33:49.0132 3208 ============================================================
21:33:49.0132 3208 Scan finished
21:33:49.0132 3208 ============================================================
21:33:49.0150 1692 Detected object count: 14
21:33:49.0150 1692 Actual detected object count: 14
21:35:34.0071 1692 ConfigFree Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0071 1692 ConfigFree Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0072 1692 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0072 1692 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0075 1692 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0075 1692 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0078 1692 EvtEng ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0078 1692 EvtEng ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0081 1692 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0081 1692 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0084 1692 giveio ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0084 1692 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0089 1692 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0089 1692 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0098 1692 lxdqCATSCustConnectService ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0098 1692 lxdqCATSCustConnectService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0098 1692 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0098 1692 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0102 1692 RegSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0102 1692 RegSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0107 1692 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0108 1692 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0112 1692 TOSHIBA SMART Log Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0112 1692 TOSHIBA SMART Log Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0118 1692 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - skipped by user
21:35:34.0118 1692 UleadBurningHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:35:34.0123 1692 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:35:34.0123 1692 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
21:40:17.0753 3168 ============================================================
21:40:17.0753 3168 Scan started
21:40:17.0753 3168 Mode: Manual; SigCheck; TDLFS;
21:40:17.0753 3168 ============================================================
21:40:18.0097 3168 ================ Scan system memory ========================
21:40:18.0097 3168 System memory - ok
21:40:18.0098 3168 ================ Scan services =============================
21:40:18.0226 3168 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
21:40:18.0267 3168 !SASCORE - ok
21:40:18.0482 3168 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
21:40:18.0522 3168 ACPI - ok
21:40:18.0615 3168 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:40:18.0642 3168 AdobeARMservice - ok
21:40:18.0728 3168 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:40:18.0758 3168 AdobeFlashPlayerUpdateSvc - ok
21:40:18.0825 3168 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
21:40:18.0868 3168 adp94xx - ok
21:40:18.0889 3168 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys
21:40:18.0921 3168 adpahci - ok
21:40:18.0941 3168 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
21:40:18.0970 3168 adpu160m - ok
21:40:18.0993 3168 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
21:40:19.0023 3168 adpu320 - ok
21:40:19.0055 3168 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:40:19.0097 3168 AeLookupSvc - ok
21:40:19.0157 3168 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
21:40:19.0192 3168 AFD - ok
21:40:19.0246 3168 [ 39E435C90C9C4F780FA0ED05CA3C3A1B ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
21:40:19.0271 3168 AgereModemAudio - ok
21:40:19.0354 3168 [ CE91B158FA490CF4C4D487A4130F4660 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
21:40:19.0425 3168 AgereSoftModem - ok
21:40:19.0475 3168 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:40:19.0501 3168 agp440 - ok
21:40:19.0519 3168 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
21:40:19.0546 3168 aic78xx - ok
21:40:19.0563 3168 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
21:40:19.0614 3168 ALG - ok
21:40:19.0629 3168 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys
21:40:19.0655 3168 aliide - ok
21:40:19.0674 3168 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys
21:40:19.0700 3168 amdagp - ok
21:40:19.0723 3168 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys
21:40:19.0748 3168 amdide - ok
21:40:19.0761 3168 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
21:40:19.0814 3168 AmdK7 - ok
21:40:19.0829 3168 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
21:40:19.0880 3168 AmdK8 - ok
21:40:19.0990 3168 [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
21:40:20.0011 3168 AOL ACS - ok
21:40:20.0068 3168 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
21:40:20.0098 3168 Appinfo - ok
21:40:20.0106 3168 Scan interrupted by user!
21:40:20.0106 3168 ================ Scan global ===============================
21:40:20.0106 3168 Scan interrupted by user!
21:40:20.0106 3168 ================ Scan MBR ==================================
21:40:20.0106 3168 Scan interrupted by user!
21:40:20.0106 3168 ================ Scan VBR ==================================
21:40:20.0106 3168 Scan interrupted by user!
21:40:20.0106 3168 ================ Scan active images ========================
21:40:20.0106 3168 Scan interrupted by user!
21:40:20.0107 3168 ============================================================
21:40:20.0107 3168 Scan finished
21:40:20.0107 3168 ============================================================
21:40:20.0121 2324 Detected object count: 0
21:40:20.0121 2324 Actual detected object count: 0
21:40:21.0888 2124 Deinitialize success

 

 

 

computer still working well. Internet Explorer has intermittent problems. computer still has pop up error that says: "Host process for windows services stopped working and was closed."



#9 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 26 March 2013 - 08:42 AM

21:35:34.0123 1692 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:35:34.0123 1692 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

Please run TdssKiller again and select delete for these entries only.

 

 

I see alot of entries you have chosen not to startup at start of machine this may be a cause of your problems.

 

 

1.

I do not recommend that you have more than one anti virus product installed and running on your computer at a time.  The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms".  It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:
1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.
Therefore please go to add/remove in the control panel and remove either Avast or Microsoft Security Essentials.

 

2.

Download Windows Repair (all in one) from this site

Install the program then run it.

Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22001645.gif



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22001646.gif


Go to Step 4 and under "System Restore" click on Create button:

p22001644.gif


Go to Start Repairs tab and click Start button.

p22001166.gif


Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default):

p22001647.gif

Click on box next to the Restart System when Finished. Then click on Start.

 

 

3.

ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Vista users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Please go here then click on: EOLS1.gif

    Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
    All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.

  • Select the option   YES, I accept the Terms of Use then click on: EOLS2.gif
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is  checked.
  • Now click on Advanced Settings and select the following:

    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: EOLS3.gif
  • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: EOLS4.gif
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!
 

 

Things to include in your next reply::

TdssKiller log. You can zip and attach this if you wish.

Eset log

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#10 deepthinker

deepthinker
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 27 March 2013 - 07:25 AM

I tried to zip the Tdss file but couldn't get it to work, so I just attached it as is.  The ESET log has only two lines, which doesn't seem right.  The ESET scan identified 5 infected files.  Computer is working fine, except Internet Explorer does odd things.

 

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK

Attached Files



#11 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 27 March 2013 - 11:59 AM

Where is the Eset log.? I click your link it sends me to yahoo mail


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#12 deepthinker

deepthinker
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:04:08 AM

Posted 27 March 2013 - 08:54 PM

That's not meant to be a link; it's a copy and paste of everything that was in the log.

#13 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 28 March 2013 - 10:27 PM

If you click on it it takes you to Yahoo mail can you repost the logs.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#14 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 31 March 2013 - 10:22 AM

Hello.

Are you still there?

If you are please follow the instructions in my previous post.

If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 3-5 days the topic will need to be closed.

Thanks for understanding :)

With Regards,
fireman4it


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#15 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,505 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:05:08 AM

Posted 07 April 2013 - 03:52 PM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users