Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox thinks every site is unsafe, pages loading weird with red x's, wonky


  • This topic is locked This topic is locked
23 replies to this topic

#1 newguy40

newguy40

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 25 March 2013 - 11:47 AM

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16470
Run by Sol Chitlins at 12:07:23 on 2013-03-25
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.32183.29784 [GMT -4:00]
.
AV: ESET Smart Security 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET Smart Security 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\IDT\WDM\STacSV64.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
E:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
C:\Windows\SysWOW64\vmnat.exe
C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
C:\Windows\SysWOW64\vmnetdhcp.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\System32\WUDFHost.exe
C:\Program Files\IDT\WDM\sttray64.exe
C:\Program Files\IDT\WDM\Beats64.exe
E:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
E:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT3220468
uURLSearchHooks: {7473b6bd-4691-4744-a82b-7854eb3d70b6} - <orphaned>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - <orphaned>
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [vmware-tray] "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [iTunesHelper] "E:\Program Files (x86)\iTunes\iTunesHelper.exe"
StartupFolder: E:\Users\SOLCHI~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
LSP: C:\Program Files (x86)\VMware\VMware Workstation\vsocklib.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
TCP: NameServer = 75.75.76.76 75.75.75.75
TCP: Interfaces\{FA3FCCC2-32F4-4CFD-A6D5-864A92C8ABD2} : DHCPNameServer = 75.75.76.76 75.75.75.75
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\25.0.1364.172\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
x64-Run: [BeatsOSDApp] C:\Program Files\IDT\WDM\beats64.exe
x64-Run: [egui] "E:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
x64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
x64-DPF: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0-windows-i586.cab
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - E:\Users\Sol Chitlins\AppData\Roaming\Mozilla\Firefox\Profiles\as3e6q02.default\
FF - prefs.js: browser.search.selectedEngine - Bing
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_180.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
FF - plugin: E:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2012-1-16 82048]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2012-1-16 42624]
R0 epfwwfp;epfwwfp;C:\Windows\System32\drivers\epfwwfp.sys [2012-3-14 62496]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-9-21 283200]
R1 eamonm;eamonm;C:\Windows\System32\drivers\eamonm.sys [2012-3-14 209768]
R1 EpfwLWF;Epfw NDIS LightWeight Filter;C:\Windows\System32\drivers\EpfwLWF.sys [2012-3-14 38288]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-8-21 235520]
R2 ekrn;ESET Service;E:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [2012-3-7 913144]
R2 VMUSBArbService;VMware USB Arbitration Service;C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-11-11 539248]
R3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-3-25 103552]
R3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-3-25 220288]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-1-29 104048]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\System32\drivers\ssadbus.sys [2011-5-13 157672]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\System32\drivers\ssadmdfl.sys [2011-5-13 16872]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\System32\drivers\ssadmdm.sys [2011-5-13 177640]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);C:\Windows\System32\drivers\ssadserd.sys [2011-5-13 146920]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-8-22 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-8-22 1255736]
.
=============== Created Last 30 ================
.
2013-03-23 23:56:01 -------- d-----w- C:\Program Files\iPod
2013-03-23 23:56:00 -------- d-----w- E:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-03-23 23:56:00 -------- d-----w- C:\Program Files\iTunes
2013-03-23 23:18:38 9311288 ----a-w- E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{AF950190-77A3-47D0-B0CB-7F0EA26B6645}\mpengine.dll
2013-03-20 22:04:00 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-03-20 22:03:58 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-03-20 22:03:57 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-03-20 22:03:13 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2013-03-20 18:01:35 768000 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-20 18:01:34 996352 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-19 23:54:03 3153408 ----a-w- C:\Windows\System32\win32k.sys
2013-03-19 23:53:58 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-03-19 23:53:57 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-03-19 23:53:57 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-03-19 23:53:56 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-03-19 23:53:56 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-03-19 23:53:55 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-03-19 23:53:51 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-03-19 23:53:51 1913192 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-03-17 15:59:32 -------- d-----w- E:\Users\Sol Chitlins\AppData\Roaming\Malwarebytes
2013-03-17 15:59:29 -------- d-----w- E:\ProgramData\Malwarebytes
2013-03-17 15:23:45 91544 ----a-w- C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
2013-02-24 17:11:19 -------- d-----w- C:\Crash
2013-02-24 17:11:11 24920 ----a-w- C:\Windows\System32\X3DAudio1_7.dll
2013-02-24 17:10:42 17688 ----a-w- C:\Windows\System32\x3daudio1_1.dll
2013-02-24 17:07:12 -------- d-----w- C:\Windows\SysWow64\directx
.
==================== Find3M  ====================
.
2013-03-20 01:01:11 73432 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-20 01:01:11 693976 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-02-17 15:05:40 99384 ----a-w- E:\Users\Sol Chitlins\AppData\Roaming\inst.exe
2013-02-17 15:05:40 82816 ----a-w- E:\Users\Sol Chitlins\AppData\Roaming\pcouffin.sys
2013-02-12 05:45:24 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45:22 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45:22 308736 ----a-w- C:\Windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45:22 111104 ----a-w- C:\Windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48:31 474112 ----a-w- C:\Windows\apppatch\AcSpecfc.dll
2013-02-12 04:48:26 2176512 ----a-w- C:\Windows\apppatch\AcGenral.dll
2013-02-04 14:42:43 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-02-04 14:42:43 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-02-02 06:57:02 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-02-02 06:47:24 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-02-02 06:47:19 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-02-02 06:42:18 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-02-02 06:41:51 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-02-02 06:38:01 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-02-02 03:38:35 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-02-02 03:30:32 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-02-02 03:30:21 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-02-02 03:26:47 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-02-02 03:26:21 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-02-02 03:23:28 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-01-17 05:28:58 273840 ------w- C:\Windows\System32\MpSigStub.exe
2013-01-04 04:43:21 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-01-04 01:36:28 627600 ----a-w- C:\Windows\System32\deployJava1.dll
.
============= FINISH: 12:22:04.83 ===============

 

 

I have been disabling my av to use these tools, I hope thats ok. Firefox is pretty much unuseable and now using IE, never use IE so cant tell if it's acting weird.

 

here is my orig. post:

 

http://www.bleepingcomputer.com/forums/t/489285/hacked-by-cyberbully-or-a-virus-im-a-mess-over-here/

 

thanks for the help


 


Edited by newguy40, 25 March 2013 - 11:49 AM.


BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:53 PM

Posted 26 March 2013 - 07:20 AM


Hello newguy40,

Welcome to The Forums!!

Around here they call me Gringo and I'll be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-
  • Download Security Check by screen317 from here.
    • Save it to your Desktop.
    • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
    • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
-AdwCleaner-
  • Please download AdwCleaner by Xplode onto your desktop.
    • Close all open programs and internet browsers.
    • Double click on AdwCleaner.exe to run the tool.
    • Click on Delete.
    • Confirm each time with Ok.
    • Your computer will be rebooted automatically. A text file will open after the restart.
    • Please post the content of that logfile with your next answer.
    • You can find the logfile at C:\AdwCleaner[S1].txt as well.
--RogueKiller--
  • Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
    • Quit all programs that you may have started.
    • Please disconnect any USB or external drives from the computer before you run this scan!
    • For Vista or Windows 7, right-click and select "Run as Administrator to start"
    • For Windows XP, double-click to start.
    • Wait until Prescan has finished ...
    • Then Click on "Scan" button
    • Wait until the Status box shows "Scan Finished"
    • click on "delete"
    • Wait until the Status box shows "Deleting Finished"
    • Click on "Report" and copy/paste the content of the Notepad into your next reply.
    • The log should be found in RKreport[1].txt on your Desktop
    • Exit/Close RogueKiller+
  • Gringo



I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 26 March 2013 - 05:48 PM

 Results of screen317's Security Check version 0.99.61 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 9 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled! 
ESET Smart Security 5.2  
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player 11.6.602.180 
 Adobe Reader 10.1.5 Adobe Reader out of Date! 
 Mozilla Firefox (19.0.2)
 Google Chrome 24.0.1312.57 
 Google Chrome 25.0.1364.172 
````````Process Check: objlist.exe by Laurent```````` 
 ESET NOD32 Antivirus egui.exe 
 ESET NOD32 Antivirus ekrn.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 2%
````````````````````End of Log``````````````````````
 



#4 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 26 March 2013 - 05:51 PM

# AdwCleaner v2.115 - Logfile created 03/26/2013 at 18:49:52
# Updated 17/03/2013 by Xplode
# Operating system : Windows 7 Professional Service Pack 1 (64 bits)
# User : Sol Chitlins - SOLCHITLINS-PC
# Boot Mode : Normal
# Running from : E:\Users\Sol Chitlins\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : E:\Users\Sol Chitlins\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage-journal
File Deleted : E:\Users\Sol Chitlins\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : E:\Users\Sol Chitlins\AppData\Local\Conduit
Folder Deleted : E:\Users\Sol Chitlins\AppData\LocalLow\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT3220468 --> hxxp://www.google.com

-\\ Mozilla Firefox v19.0.2 (en-US)

File : E:\Users\Sol Chitlins\AppData\Roaming\Mozilla\Firefox\Profiles\as3e6q02.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v25.0.1364.172

File : E:\Users\Sol Chitlins\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.23] : icon_url = "hxxp://search.conduit.com/fav.ico",
Deleted [l.26] : keyword = "search.conduit.com",
Deleted [l.29] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&ctid=CT3[...]
Deleted [l.30] : suggest_url = "hxxp://search.conduit.com/"
Deleted [l.1701] : homepage = "hxxp://search.conduit.com/?ctid=CT3220468&SearchSource=48",
Deleted [l.1879] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3220468&SearchSource=48" ]

*************************

AdwCleaner[R1].txt - [2308 octets] - [23/03/2013 21:10:49]
AdwCleaner[R2].txt - [2368 octets] - [26/03/2013 18:49:42]
AdwCleaner[S1].txt - [2365 octets] - [26/03/2013 18:49:52]

########## EOF - E:\AdwCleaner[S1].txt - [2425 octets] ##########



#5 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 26 March 2013 - 06:05 PM

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Sol Chitlins [Admin rights]
Mode : Remove -- Date : 03/26/2013 19:00:27
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
[RUN][HJNAME] [ON_E:Default]HKCU[...]\RunOnce : mctadmin (C:\Windows\System32\mctadmin.exe) [7] -> DELETED

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ Extern Hives: ¤¤¤
-> E:\Users\Default\NTUSER.DAT
-> E:\Users\Default User\NTUSER.DAT
-> E:\Users\Guest\NTUSER.DAT
-> E:\Documents and Settings\Default\NTUSER.DAT
-> E:\Documents and Settings\Default User\NTUSER.DAT
-> E:\Documents and Settings\Guest\NTUSER.DAT

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

 

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: M4-CT128 M4SSD2 SATA Disk Device +++++
--- User ---
[MBR] 868cba0756c80d96f28c9bbd2b3cc871
[BSP] e577fcb7a92f6c817587d9c2c77bdf1e : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 122002 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Hitachi HDS721010CLA630 SATA Disk Device +++++
--- User ---
[MBR] 89a23987966b794ec4cd946a18f6f05a
[BSP] a0fcdd082620c99d6350c6e656f7616b : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0xee) [VISIBLE] Offset (sectors): 1 | Size: 2097152 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive2: Generic- SD/MMC USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive3: Generic- Compact Flash USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive4: Generic- SM/xD-Picture USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[2]_D_03262013_02d1900.txt >>
RKreport[1]_S_03262013_02d1854.txt ; RKreport[2]_D_03262013_02d1900.txt



#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:53 PM

Posted 26 March 2013 - 08:55 PM


Hello newguy40

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

  • Gringo




I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 27 March 2013 - 12:08 AM

ComboFix 13-03-26.01 - Sol Chitlins 03/27/2013   1:02.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.32183.29795 [GMT -4:00]
Running from: e:\users\Sol Chitlins\Desktop\ComboFix.exe
AV: ESET Smart Security 5.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET Personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
e:\users\Sol Chitlins\AppData\Roaming\inst.exe
.
.
(((((((((((((((((((((((((   Files Created from 2013-02-27 to 2013-03-27  )))))))))))))))))))))))))))))))
.
.
2013-03-27 05:05 . 2013-03-27 05:05 -------- d-----w- e:\users\Guest\AppData\Local\temp
2013-03-27 05:05 . 2013-03-27 05:05 -------- d-----w- e:\users\Default\AppData\Local\temp
2013-03-23 23:56 . 2013-03-23 23:56 -------- d-----w- c:\program files\iPod
2013-03-23 23:56 . 2013-03-23 23:56 -------- d-----w- c:\program files\iTunes
2013-03-20 22:04 . 2013-01-05 05:53 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-20 22:03 . 2013-01-05 05:00 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-20 22:03 . 2013-01-05 05:00 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-20 22:03 . 2013-02-12 04:12 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-20 18:01 . 2013-01-08 22:01 768000 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-20 18:01 . 2013-01-09 01:10 996352 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-03-19 23:54 . 2013-01-04 03:26 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-03-19 23:53 . 2013-01-04 05:46 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-03-19 23:53 . 2013-01-04 02:47 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-03-19 23:53 . 2013-01-04 02:47 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-03-19 23:53 . 2013-01-04 04:51 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-03-19 23:53 . 2013-01-04 02:47 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-03-19 23:53 . 2013-01-04 02:47 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-03-19 23:53 . 2013-01-03 06:00 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-03-19 23:53 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-03-17 15:59 . 2013-03-17 15:59 -------- d-----w- e:\users\Sol Chitlins\AppData\Roaming\Malwarebytes
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-20 01:01 . 2012-08-22 02:37 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-20 01:01 . 2012-08-22 02:37 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-04 18:53 . 2012-08-22 03:33 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-02-17 15:05 . 2013-02-17 00:02 82816 ----a-w- e:\users\Sol Chitlins\AppData\Roaming\pcouffin.sys
2013-02-12 05:45 . 2013-03-19 23:52 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-19 23:52 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-19 23:52 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 05:45 . 2013-03-19 23:52 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 04:48 . 2013-03-19 23:52 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-19 23:52 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-04 14:42 . 2013-01-04 01:42 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-02-04 14:42 . 2013-01-04 01:42 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-01-17 05:28 . 2012-08-22 02:30 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-04 04:43 . 2013-03-19 23:53 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 01:36 . 2013-01-04 01:36 627600 ----a-w- c:\windows\system32\deployJava1.dll
2013-01-04 01:36 . 2013-01-04 01:36 252296 ----a-w- c:\windows\system32\javaws.exe
2013-01-04 01:36 . 2013-01-04 01:36 188808 ----a-w- c:\windows\system32\javaw.exe
2013-01-04 01:36 . 2013-01-04 01:36 188808 ----a-w- c:\windows\system32\java.exe
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-01-21 630912]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-01-28 59720]
"vmware-tray"="c:\program files (x86)\VMware\VMware Workstation\vmware-tray.exe" [2010-11-11 129648]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"iTunesHelper"="e:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
.
e:\users\Sol Chitlins\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-12-13 54784]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-08-22 1255736]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [2012-01-16 82048]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [2012-01-16 42624]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2012-03-14 62496]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-09-22 283200]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2012-03-14 38288]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-03-29 235520]
S2 ekrn;ESET Service;e:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2012-03-07 913144]
S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [2010-11-11 81008]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2010-11-11 539248]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys [2012-03-25 103552]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys [2012-03-25 220288]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2012-01-29 104048]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-03-20 23:00 1629648 ----a-w- c:\program files (x86)\Google\Chrome\Application\25.0.1364.172\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-03-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-22 01:01]
.
2013-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-22 02:38]
.
2013-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-22 02:38]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-12-13 1425408]
"BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2011-12-13 37888]
"egui"="e:\program files\ESET\ESET Smart Security\egui.exe" [2012-03-07 4081008]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
LSP: c:\program files (x86)\VMware\VMware Workstation\vsocklib.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 75.75.76.76 75.75.75.75
FF - ProfilePath - e:\users\Sol Chitlins\AppData\Roaming\Mozilla\Firefox\Profiles\as3e6q02.default\
FF - prefs.js: browser.search.selectedEngine - Bing
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{7473b6bd-4691-4744-a82b-7854eb3d70b6} - (no file)
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2604121 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656351 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656368v2 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2656405 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2686827 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2729449 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2737019 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2742595 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2789642 - c:\windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe
AddRemove-SOE-EverQuest - f:\users\Public\Sony Online Entertainment\Installed Games\EverQuest\Uninstaller.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-03-27  01:07:28
ComboFix-quarantined-files.txt  2013-03-27 05:07
.
Pre-Run: 62,232,231,936 bytes free
Post-Run: 61,584,330,752 bytes free
.
- - End Of File - - 01DCC6B1F7465D2FAA694C057E384CA9
 



#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:53 PM

Posted 27 March 2013 - 12:49 AM

Status update please
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 27 March 2013 - 09:41 AM

everything seems the same as before

 

117fiid.jpg

 

still having this problem in firefox.

 

If we cant get this sorted I'm thinking I'll take out the ssd I have my OS on and wipe everything and reinstall everything on the big internal drive and just start a new routeen of backing everything up to a external drive. I can save the ssd for a future laptop or sell it I guess :-(

 

pc still acting a bit wonky like this site taking 2 minutes to save this post lol



#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:53 PM

Posted 27 March 2013 - 12:38 PM


Hello newguy40

I want you to reset firefox back to defaults, this will remove everything from Firefox

I will let you keep your bookmarks so to do that you can go here - Export BookMarks

Now to reset firefox do the following.
  • At the top of the Firefox window, click the "Firefox" button,
  • go over to the "Help" sub-menu
    • (on Windows XP, click the Help menu at the top of the Firefox window) and select "Troubleshooting Information".
  • Click the "Reset Firefox" button in the upper-right corner of the Troubleshooting Information page.
  • click "Reset Firefox" in the confirmation window that opens.
  • Firefox will close and be reset. When it's done. Click "Finish" and Firefox will open.
  • restart the computer and check firefox for me now

    Gringo





I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 27 March 2013 - 06:08 PM

Did that and it didn't help or change the problem.

 

edit: now IE is loading facebook like this:

33cpw1g.jpg


Edited by newguy40, 27 March 2013 - 07:09 PM.


#12 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:53 PM

Posted 27 March 2013 - 08:58 PM



Hello newguy40


I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================
  • and I will see if I want to see the whole report

    Malwarebytes Anti-Rootkit

    1.Download Malwarebytes Anti-Rootkit
    2.Unzip the contents to a folder in a convenient location.
    3.Open the folder where the contents were unzipped and run mbar.exe
    4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
    5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
    6.Wait while the system shuts down and the cleanup process is performed.
    7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
    8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
    • •Internet access
      •Windows Update
      •Windows Firewall
    9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
    10.Verify that your system is now functioning normally.

    If you have any problems running either one come back and let me know

    please reply with the reports from TDSSKiller and MBAR

    Gringo







I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#13 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 29 March 2013 - 04:08 PM

17:01:45.0291 1580  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:01:45.0641 1580  ============================================================
17:01:45.0641 1580  Current date / time: 2013/03/29 17:01:45.0641
17:01:45.0641 1580  SystemInfo:
17:01:45.0641 1580 
17:01:45.0641 1580  OS Version: 6.1.7601 ServicePack: 1.0
17:01:45.0641 1580  Product type: Workstation
17:01:45.0641 1580  ComputerName: SOLCHITLINS-PC
17:01:45.0641 1580  UserName: Sol Chitlins
17:01:45.0641 1580  Windows directory: C:\Windows
17:01:45.0641 1580  System windows directory: C:\Windows
17:01:45.0641 1580  Running under WOW64
17:01:45.0641 1580  Processor architecture: Intel x64
17:01:45.0641 1580  Number of processors: 4
17:01:45.0641 1580  Page size: 0x1000
17:01:45.0641 1580  Boot type: Normal boot
17:01:45.0641 1580  ============================================================
17:01:46.0011 1580  BG loaded
17:01:46.0391 1580  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:01:46.0431 1580  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:01:46.0481 1580  ============================================================
17:01:46.0481 1580  \Device\Harddisk0\DR0:
17:01:46.0481 1580  MBR partitions:
17:01:46.0481 1580  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:01:46.0481 1580  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
17:01:46.0481 1580  \Device\Harddisk1\DR1:
17:01:46.0481 1580  GPT partitions:
17:01:46.0521 1580  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {8660C7B5-D61C-4185-B908-7F29E67460EF}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
17:01:46.0521 1580  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {B4E492C4-3083-4F01-8E9C-3AE568169DC2}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x40000
17:01:46.0521 1580  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3A214648-45B0-4E82-97C8-FD4CEB3D525B}, Name: Basic data partition, StartLBA 0x72800, BlocksNum 0x74693800
17:01:46.0521 1580  MBR partitions:
17:01:46.0521 1580  ============================================================
17:01:46.0521 1580  C: <-> \Device\Harddisk0\DR0\Partition2
17:01:46.0641 1580  E: <-> \Device\Harddisk1\DR1\Partition3
17:01:46.0641 1580  ============================================================
17:01:46.0641 1580  Initialize success
17:01:46.0641 1580  ============================================================
17:02:40.0746 4612  ============================================================
17:02:40.0746 4612  Scan started
17:02:40.0746 4612  Mode: Manual; SigCheck; TDLFS;
17:02:40.0746 4612  ============================================================
17:02:41.0216 4612  ================ Scan system memory ========================
17:02:41.0216 4612  System memory - ok
17:02:41.0216 4612  ================ Scan services =============================
17:02:41.0246 4612  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:02:41.0326 4612  1394ohci - ok
17:02:41.0326 4612  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:02:41.0336 4612  ACPI - ok
17:02:41.0346 4612  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:02:41.0366 4612  AcpiPmi - ok
17:02:41.0366 4612  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:02:41.0376 4612  AdobeARMservice - ok
17:02:41.0386 4612  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:02:41.0406 4612  AdobeFlashPlayerUpdateSvc - ok
17:02:41.0406 4612  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:02:41.0426 4612  adp94xx - ok
17:02:41.0426 4612  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:02:41.0446 4612  adpahci - ok
17:02:41.0446 4612  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:02:41.0456 4612  adpu320 - ok
17:02:41.0466 4612  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:02:41.0506 4612  AeLookupSvc - ok
17:02:41.0516 4612  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
17:02:41.0526 4612  AFD - ok
17:02:41.0536 4612  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:02:41.0546 4612  agp440 - ok
17:02:41.0546 4612  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
17:02:41.0556 4612  ALG - ok
17:02:41.0566 4612  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:02:41.0576 4612  aliide - ok
17:02:41.0576 4612  [ 8893C00A6D0A5820D4608202F99E8AD6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:02:41.0616 4612  AMD External Events Utility - ok
17:02:41.0616 4612  [ C17BAFA60F941A1AF5C2B10D8632C409 ] amdhub30        C:\Windows\system32\DRIVERS\amdhub30.sys
17:02:41.0636 4612  amdhub30 - ok
17:02:41.0636 4612  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
17:02:41.0646 4612  amdide - ok
17:02:41.0646 4612  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:02:41.0656 4612  AmdK8 - ok
17:02:41.0736 4612  [ ACF6058602D202F36C0A2C0C97DB5E3B ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:02:41.0856 4612  amdkmdag - ok
17:02:41.0866 4612  [ 1E55EA0AD65688EB43CCE6AED573E82C ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
17:02:41.0896 4612  amdkmdap - ok
17:02:41.0896 4612  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:02:41.0906 4612  AmdPPM - ok
17:02:41.0906 4612  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:02:41.0916 4612  amdsata - ok
17:02:41.0926 4612  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:02:41.0936 4612  amdsbs - ok
17:02:41.0936 4612  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:02:41.0946 4612  amdxata - ok
17:02:41.0956 4612  [ 3DC51308F5E7A4BB8020D16E64E9D882 ] amdxhc          C:\Windows\system32\DRIVERS\amdxhc.sys
17:02:41.0966 4612  amdxhc - ok
17:02:41.0966 4612  [ A1434F35B7B171CB697D74D33F7D029F ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
17:02:41.0976 4612  amd_sata - ok
17:02:41.0976 4612  [ E9B5A82FA268BB2D1B012030D5F4E096 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
17:02:41.0986 4612  amd_xata - ok
17:02:41.0996 4612  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
17:02:42.0036 4612  AppID - ok
17:02:42.0046 4612  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:02:42.0076 4612  AppIDSvc - ok
17:02:42.0076 4612  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
17:02:42.0106 4612  Appinfo - ok
17:02:42.0106 4612  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:02:42.0116 4612  Apple Mobile Device - ok
17:02:42.0126 4612  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
17:02:42.0136 4612  AppMgmt - ok
17:02:42.0146 4612  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:02:42.0156 4612  arc - ok
17:02:42.0156 4612  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:02:42.0166 4612  arcsas - ok
17:02:42.0176 4612  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:02:42.0196 4612  AsyncMac - ok
17:02:42.0206 4612  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
17:02:42.0216 4612  atapi - ok
17:02:42.0226 4612  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:02:42.0256 4612  AudioEndpointBuilder - ok
17:02:42.0256 4612  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:02:42.0296 4612  AudioSrv - ok
17:02:42.0296 4612  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:02:42.0316 4612  AxInstSV - ok
17:02:42.0326 4612  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
17:02:42.0346 4612  b06bdrv - ok
17:02:42.0346 4612  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:02:42.0356 4612  b57nd60a - ok
17:02:42.0386 4612  [ FDE8C8DC07E75347E4C6B455A0964217 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
17:02:42.0446 4612  BCM43XX - ok
17:02:42.0446 4612  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:02:42.0466 4612  BDESVC - ok
17:02:42.0466 4612  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:02:42.0496 4612  Beep - ok
17:02:42.0506 4612  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
17:02:42.0536 4612  BFE - ok
17:02:42.0546 4612  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
17:02:42.0576 4612  BITS - ok
17:02:42.0586 4612  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:02:42.0596 4612  blbdrive - ok
17:02:42.0596 4612  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:02:42.0616 4612  Bonjour Service - ok
17:02:42.0616 4612  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:02:42.0626 4612  bowser - ok
17:02:42.0636 4612  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:02:42.0646 4612  BrFiltLo - ok
17:02:42.0656 4612  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:02:42.0666 4612  BrFiltUp - ok
17:02:42.0666 4612  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
17:02:42.0706 4612  BridgeMP - ok
17:02:42.0706 4612  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
17:02:42.0716 4612  Browser - ok
17:02:42.0726 4612  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:02:42.0736 4612  Brserid - ok
17:02:42.0746 4612  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:02:42.0756 4612  BrSerWdm - ok
17:02:42.0756 4612  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:02:42.0776 4612  BrUsbMdm - ok
17:02:42.0776 4612  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:02:42.0786 4612  BrUsbSer - ok
17:02:42.0786 4612  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
17:02:42.0806 4612  BthEnum - ok
17:02:42.0806 4612  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:02:42.0816 4612  BTHMODEM - ok
17:02:42.0826 4612  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
17:02:42.0836 4612  BthPan - ok
17:02:42.0846 4612  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
17:02:42.0866 4612  BTHPORT - ok
17:02:42.0876 4612  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
17:02:42.0906 4612  bthserv - ok
17:02:42.0906 4612  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
17:02:42.0916 4612  BTHUSB - ok
17:02:42.0916 4612  catchme - ok
17:02:42.0926 4612  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:02:42.0956 4612  cdfs - ok
17:02:42.0956 4612  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:02:42.0966 4612  cdrom - ok
17:02:42.0966 4612  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
17:02:42.0996 4612  CertPropSvc - ok
17:02:43.0006 4612  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:02:43.0016 4612  circlass - ok
17:02:43.0026 4612  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
17:02:43.0036 4612  CLFS - ok
17:02:43.0046 4612  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:02:43.0056 4612  clr_optimization_v2.0.50727_32 - ok
17:02:43.0056 4612  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:02:43.0066 4612  clr_optimization_v2.0.50727_64 - ok
17:02:43.0076 4612  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:02:43.0086 4612  clr_optimization_v4.0.30319_32 - ok
17:02:43.0096 4612  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:02:43.0106 4612  clr_optimization_v4.0.30319_64 - ok
17:02:43.0106 4612  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:02:43.0116 4612  CmBatt - ok
17:02:43.0126 4612  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:02:43.0136 4612  cmdide - ok
17:02:43.0136 4612  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
17:02:43.0156 4612  CNG - ok
17:02:43.0166 4612  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:02:43.0166 4612  Compbatt - ok
17:02:43.0176 4612  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:02:43.0186 4612  CompositeBus - ok
17:02:43.0186 4612  COMSysApp - ok
17:02:43.0196 4612  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:02:43.0206 4612  crcdisk - ok
17:02:43.0206 4612  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:02:43.0226 4612  CryptSvc - ok
17:02:43.0236 4612  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC             C:\Windows\system32\drivers\csc.sys
17:02:43.0246 4612  CSC - ok
17:02:43.0256 4612  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService      C:\Windows\System32\cscsvc.dll
17:02:43.0276 4612  CscService - ok
17:02:43.0276 4612  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:02:43.0316 4612  DcomLaunch - ok
17:02:43.0316 4612  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
17:02:43.0346 4612  defragsvc - ok
17:02:43.0356 4612  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:02:43.0376 4612  DfsC - ok
17:02:43.0386 4612  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:02:43.0396 4612  Dhcp - ok
17:02:43.0406 4612  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
17:02:43.0436 4612  discache - ok
17:02:43.0436 4612  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:02:43.0446 4612  Disk - ok
17:02:43.0446 4612  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:02:43.0456 4612  Dnscache - ok
17:02:43.0466 4612  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:02:43.0496 4612  dot3svc - ok
17:02:43.0496 4612  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
17:02:43.0526 4612  DPS - ok
17:02:43.0526 4612  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:02:43.0546 4612  drmkaud - ok
17:02:43.0546 4612  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
17:02:43.0556 4612  dtsoftbus01 - ok
17:02:43.0566 4612  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:02:43.0586 4612  DXGKrnl - ok
17:02:43.0596 4612  [ D00EAE9C735A7DEE8049E50D73D25434 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
17:02:43.0606 4612  eamonm - ok
17:02:43.0606 4612  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
17:02:43.0636 4612  EapHost - ok
17:02:43.0666 4612  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
17:02:43.0706 4612  ebdrv - ok
17:02:43.0706 4612  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
17:02:43.0726 4612  EFS - ok
17:02:43.0726 4612  [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
17:02:43.0736 4612  ehdrv - ok
17:02:43.0746 4612  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:02:43.0766 4612  ehRecvr - ok
17:02:43.0766 4612  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
17:02:43.0776 4612  ehSched - ok
17:02:43.0846 4612  [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn            E:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
17:02:43.0866 4612  ekrn - ok
17:02:43.0876 4612  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:02:43.0886 4612  elxstor - ok
17:02:43.0896 4612  [ 587F0F4145A1536A6E37EFD769B7665F ] epfw            C:\Windows\system32\DRIVERS\epfw.sys
17:02:43.0906 4612  epfw - ok
17:02:43.0906 4612  [ D2F812358EE8EE23CBB5C4DAFFB5B819 ] EpfwLWF         C:\Windows\system32\DRIVERS\EpfwLWF.sys
17:02:43.0916 4612  EpfwLWF - ok
17:02:43.0916 4612  [ 34BF55D69AB74D14C7E7A17259CB7DF8 ] epfwwfp         C:\Windows\system32\DRIVERS\epfwwfp.sys
17:02:43.0926 4612  epfwwfp - ok
17:02:43.0926 4612  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:02:43.0946 4612  ErrDev - ok
17:02:43.0946 4612  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
17:02:43.0986 4612  EventSystem - ok
17:02:43.0986 4612  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
17:02:44.0016 4612  exfat - ok
17:02:44.0026 4612  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:02:44.0046 4612  fastfat - ok
17:02:44.0056 4612  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
17:02:44.0076 4612  Fax - ok
17:02:44.0076 4612  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:02:44.0086 4612  fdc - ok
17:02:44.0096 4612  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:02:44.0116 4612  fdPHost - ok
17:02:44.0126 4612  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:02:44.0146 4612  FDResPub - ok
17:02:44.0156 4612  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:02:44.0166 4612  FileInfo - ok
17:02:44.0166 4612  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:02:44.0196 4612  Filetrace - ok
17:02:44.0196 4612  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:02:44.0206 4612  flpydisk - ok
17:02:44.0216 4612  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:02:44.0226 4612  FltMgr - ok
17:02:44.0236 4612  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
17:02:44.0256 4612  FontCache - ok
17:02:44.0266 4612  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:02:44.0266 4612  FontCache3.0.0.0 - ok
17:02:44.0276 4612  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:02:44.0286 4612  FsDepends - ok
17:02:44.0286 4612  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:02:44.0296 4612  Fs_Rec - ok
17:02:44.0296 4612  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:02:44.0316 4612  fvevol - ok
17:02:44.0316 4612  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:02:44.0326 4612  gagp30kx - ok
17:02:44.0326 4612  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:02:44.0336 4612  GEARAspiWDM - ok
17:02:44.0346 4612  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
17:02:44.0376 4612  gpsvc - ok
17:02:44.0386 4612  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:02:44.0386 4612  gupdate - ok
17:02:44.0396 4612  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:02:44.0406 4612  gupdatem - ok
17:02:44.0406 4612  [ BA207B48AA3D9D73FD4856400F852458 ] hcmon           C:\Windows\system32\drivers\hcmon.sys
17:02:44.0416 4612  hcmon - ok
17:02:44.0416 4612  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:02:44.0436 4612  hcw85cir - ok
17:02:44.0436 4612  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:02:44.0456 4612  HdAudAddService - ok
17:02:44.0456 4612  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
17:02:44.0466 4612  HDAudBus - ok
17:02:44.0476 4612  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:02:44.0486 4612  HidBatt - ok
17:02:44.0486 4612  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:02:44.0506 4612  HidBth - ok
17:02:44.0506 4612  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:02:44.0516 4612  HidIr - ok
17:02:44.0526 4612  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
17:02:44.0546 4612  hidserv - ok
17:02:44.0556 4612  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:02:44.0566 4612  HidUsb - ok
17:02:44.0566 4612  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:02:44.0596 4612  hkmsvc - ok
17:02:44.0596 4612  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:02:44.0616 4612  HomeGroupListener - ok
17:02:44.0617 4612  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:02:44.0627 4612  HomeGroupProvider - ok
17:02:44.0627 4612  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:02:44.0637 4612  HpSAMD - ok
17:02:44.0647 4612  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:02:44.0677 4612  HTTP - ok
17:02:44.0687 4612  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:02:44.0697 4612  hwpolicy - ok
17:02:44.0697 4612  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:02:44.0707 4612  i8042prt - ok
17:02:44.0717 4612  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:02:44.0727 4612  iaStorV - ok
17:02:44.0737 4612  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:02:44.0757 4612  idsvc - ok
17:02:44.0767 4612  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:02:44.0767 4612  iirsp - ok
17:02:44.0777 4612  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:02:44.0817 4612  IKEEXT - ok
17:02:44.0817 4612  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
17:02:44.0827 4612  intelide - ok
17:02:44.0837 4612  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:02:44.0847 4612  intelppm - ok
17:02:44.0847 4612  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:02:44.0877 4612  IPBusEnum - ok
17:02:44.0877 4612  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:02:44.0907 4612  IpFilterDriver - ok
17:02:44.0917 4612  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:02:44.0927 4612  iphlpsvc - ok
17:02:44.0937 4612  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:02:44.0947 4612  IPMIDRV - ok
17:02:44.0947 4612  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:02:44.0977 4612  IPNAT - ok
17:02:44.0987 4612  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:02:44.0997 4612  iPod Service - ok
17:02:45.0007 4612  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:02:45.0017 4612  IRENUM - ok
17:02:45.0017 4612  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:02:45.0027 4612  isapnp - ok
17:02:45.0037 4612  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:02:45.0047 4612  iScsiPrt - ok
17:02:45.0047 4612  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:02:45.0057 4612  kbdclass - ok
17:02:45.0067 4612  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:02:45.0077 4612  kbdhid - ok
17:02:45.0077 4612  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
17:02:45.0087 4612  KeyIso - ok
17:02:45.0087 4612  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:02:45.0097 4612  KSecDD - ok
17:02:45.0107 4612  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:02:45.0117 4612  KSecPkg - ok
17:02:45.0117 4612  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:02:45.0147 4612  ksthunk - ok
17:02:45.0147 4612  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:02:45.0187 4612  KtmRm - ok
17:02:45.0187 4612  [ BD56BAE4403497E31727096CEBC42956 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
17:02:45.0197 4612  L1C - ok
17:02:45.0197 4612  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
17:02:45.0227 4612  LanmanServer - ok
17:02:45.0237 4612  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:02:45.0257 4612  LanmanWorkstation - ok
17:02:45.0267 4612  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:02:45.0297 4612  lltdio - ok
17:02:45.0297 4612  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:02:45.0327 4612  lltdsvc - ok
17:02:45.0337 4612  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:02:45.0357 4612  lmhosts - ok
17:02:45.0367 4612  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:02:45.0377 4612  LSI_FC - ok
17:02:45.0377 4612  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:02:45.0387 4612  LSI_SAS - ok
17:02:45.0397 4612  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:02:45.0407 4612  LSI_SAS2 - ok
17:02:45.0407 4612  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:02:45.0417 4612  LSI_SCSI - ok
17:02:45.0427 4612  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
17:02:45.0457 4612  luafv - ok
17:02:45.0457 4612  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:02:45.0467 4612  Mcx2Svc - ok
17:02:45.0477 4612  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:02:45.0487 4612  megasas - ok
17:02:45.0487 4612  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:02:45.0507 4612  MegaSR - ok
17:02:45.0507 4612  Microsoft SharePoint Workspace Audit Service - ok
17:02:45.0517 4612  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
17:02:45.0537 4612  MMCSS - ok
17:02:45.0547 4612  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
17:02:45.0567 4612  Modem - ok
17:02:45.0577 4612  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:02:45.0587 4612  monitor - ok
17:02:45.0587 4612  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:02:45.0597 4612  mouclass - ok
17:02:45.0597 4612  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:02:45.0607 4612  mouhid - ok
17:02:45.0617 4612  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:02:45.0627 4612  mountmgr - ok
17:02:45.0627 4612  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:02:45.0637 4612  MozillaMaintenance - ok
17:02:45.0647 4612  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:02:45.0657 4612  mpio - ok
17:02:45.0657 4612  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:02:45.0687 4612  mpsdrv - ok
17:02:45.0697 4612  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:02:45.0727 4612  MpsSvc - ok
17:02:45.0727 4612  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:02:45.0747 4612  MRxDAV - ok
17:02:45.0747 4612  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:02:45.0767 4612  mrxsmb - ok
17:02:45.0767 4612  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:02:45.0777 4612  mrxsmb10 - ok
17:02:45.0787 4612  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:02:45.0797 4612  mrxsmb20 - ok
17:02:45.0797 4612  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:02:45.0807 4612  msahci - ok
17:02:45.0807 4612  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:02:45.0817 4612  msdsm - ok
17:02:45.0827 4612  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
17:02:45.0837 4612  MSDTC - ok
17:02:45.0847 4612  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:02:45.0867 4612  Msfs - ok
17:02:45.0877 4612  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:02:45.0897 4612  mshidkmdf - ok
17:02:45.0907 4612  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:02:45.0917 4612  msisadrv - ok
17:02:45.0917 4612  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:02:45.0947 4612  MSiSCSI - ok
17:02:45.0947 4612  msiserver - ok
17:02:45.0957 4612  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:02:45.0977 4612  MSKSSRV - ok
17:02:45.0987 4612  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:02:46.0007 4612  MSPCLOCK - ok
17:02:46.0017 4612  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:02:46.0037 4612  MSPQM - ok
17:02:46.0047 4612  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:02:46.0057 4612  MsRPC - ok
17:02:46.0067 4612  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
17:02:46.0077 4612  mssmbios - ok
17:02:46.0077 4612  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:02:46.0107 4612  MSTEE - ok
17:02:46.0107 4612  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
17:02:46.0117 4612  MTConfig - ok
17:02:46.0117 4612  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
17:02:46.0127 4612  Mup - ok
17:02:46.0137 4612  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
17:02:46.0167 4612  napagent - ok
17:02:46.0177 4612  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:02:46.0187 4612  NativeWifiP - ok
17:02:46.0197 4612  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:02:46.0217 4612  NDIS - ok
17:02:46.0227 4612  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:02:46.0247 4612  NdisCap - ok
17:02:46.0257 4612  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:02:46.0277 4612  NdisTapi - ok
17:02:46.0287 4612  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:02:46.0307 4612  Ndisuio - ok
17:02:46.0317 4612  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:02:46.0337 4612  NdisWan - ok
17:02:46.0347 4612  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:02:46.0367 4612  NDProxy - ok
17:02:46.0377 4612  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:02:46.0397 4612  NetBIOS - ok
17:02:46.0407 4612  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:02:46.0437 4612  NetBT - ok
17:02:46.0437 4612  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
17:02:46.0447 4612  Netlogon - ok
17:02:46.0457 4612  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
17:02:46.0487 4612  Netman - ok
17:02:46.0497 4612  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
17:02:46.0527 4612  netprofm - ok
17:02:46.0527 4612  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:02:46.0577 4612  NetTcpPortSharing - ok
17:02:46.0577 4612  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
17:02:46.0587 4612  nfrd960 - ok
17:02:46.0587 4612  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:02:46.0607 4612  NlaSvc - ok
17:02:46.0607 4612  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:02:46.0637 4612  Npfs - ok
17:02:46.0637 4612  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
17:02:46.0667 4612  nsi - ok
17:02:46.0677 4612  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:02:46.0697 4612  nsiproxy - ok
17:02:46.0717 4612  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:02:46.0747 4612  Ntfs - ok
17:02:46.0757 4612  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
17:02:46.0777 4612  Null - ok
17:02:46.0787 4612  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:02:46.0797 4612  nvraid - ok
17:02:46.0797 4612  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:02:46.0807 4612  nvstor - ok
17:02:46.0817 4612  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:02:46.0827 4612  nv_agp - ok
17:02:46.0827 4612  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:02:46.0837 4612  ohci1394 - ok
17:02:46.0847 4612  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:02:46.0857 4612  ose - ok
17:02:46.0897 4612  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:02:46.0967 4612  osppsvc - ok
17:02:46.0977 4612  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:02:46.0997 4612  p2pimsvc - ok
17:02:46.0997 4612  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:02:47.0017 4612  p2psvc - ok
17:02:47.0017 4612  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:02:47.0027 4612  Parport - ok
17:02:47.0037 4612  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:02:47.0047 4612  partmgr - ok
17:02:47.0047 4612  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:02:47.0057 4612  PcaSvc - ok
17:02:47.0067 4612  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
17:02:47.0077 4612  pci - ok
17:02:47.0077 4612  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
17:02:47.0087 4612  pciide - ok
17:02:47.0097 4612  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
17:02:47.0107 4612  pcmcia - ok
17:02:47.0107 4612  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:02:47.0117 4612  pcw - ok
17:02:47.0127 4612  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:02:47.0157 4612  PEAUTH - ok
17:02:47.0177 4612  [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
17:02:47.0197 4612  PeerDistSvc - ok
17:02:47.0217 4612  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:02:47.0227 4612  PerfHost - ok
17:02:47.0247 4612  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
17:02:47.0287 4612  pla - ok
17:02:47.0287 4612  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:02:47.0307 4612  PlugPlay - ok
17:02:47.0307 4612  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:02:47.0317 4612  PNRPAutoReg - ok
17:02:47.0327 4612  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:02:47.0337 4612  PNRPsvc - ok
17:02:47.0347 4612  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:02:47.0377 4612  PolicyAgent - ok
17:02:47.0377 4612  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
17:02:47.0407 4612  Power - ok
17:02:47.0417 4612  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:02:47.0437 4612  PptpMiniport - ok
17:02:47.0447 4612  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
17:02:47.0457 4612  Processor - ok
17:02:47.0457 4612  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:02:47.0467 4612  ProfSvc - ok
17:02:47.0477 4612  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:02:47.0487 4612  ProtectedStorage - ok
17:02:47.0487 4612  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:02:47.0517 4612  Psched - ok
17:02:47.0527 4612  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
17:02:47.0557 4612  ql2300 - ok
17:02:47.0567 4612  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
17:02:47.0577 4612  ql40xx - ok
17:02:47.0577 4612  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
17:02:47.0597 4612  QWAVE - ok
17:02:47.0597 4612  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:02:47.0607 4612  QWAVEdrv - ok
17:02:47.0617 4612  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:02:47.0638 4612  RasAcd - ok
17:02:47.0648 4612  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:02:47.0668 4612  RasAgileVpn - ok
17:02:47.0678 4612  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
17:02:47.0708 4612  RasAuto - ok
17:02:47.0708 4612  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:02:47.0738 4612  Rasl2tp - ok
17:02:47.0738 4612  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
17:02:47.0768 4612  RasMan - ok
17:02:47.0778 4612  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:02:47.0798 4612  RasPppoe - ok
17:02:47.0808 4612  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:02:47.0838 4612  RasSstp - ok
17:02:47.0838 4612  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:02:47.0868 4612  rdbss - ok
17:02:47.0868 4612  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:02:47.0878 4612  rdpbus - ok
17:02:47.0888 4612  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:02:47.0908 4612  RDPCDD - ok
17:02:47.0918 4612  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
17:02:47.0938 4612  RDPDR - ok
17:02:47.0938 4612  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:02:47.0968 4612  RDPENCDD - ok
17:02:47.0978 4612  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:02:47.0998 4612  RDPREFMP - ok
17:02:48.0008 4612  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:02:48.0018 4612  RDPWD - ok
17:02:48.0018 4612  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:02:48.0028 4612  rdyboost - ok
17:02:48.0038 4612  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:02:48.0068 4612  RemoteAccess - ok
17:02:48.0068 4612  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:02:48.0098 4612  RemoteRegistry - ok
17:02:48.0108 4612  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
17:02:48.0118 4612  RFCOMM - ok
17:02:48.0118 4612  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:02:48.0148 4612  RpcEptMapper - ok
17:02:48.0148 4612  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
17:02:48.0158 4612  RpcLocator - ok
17:02:48.0168 4612  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
17:02:48.0198 4612  RpcSs - ok
17:02:48.0208 4612  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:02:48.0228 4612  rspndr - ok
17:02:48.0238 4612  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
17:02:48.0248 4612  s3cap - ok
17:02:48.0248 4612  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
17:02:48.0258 4612  SamSs - ok
17:02:48.0258 4612  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:02:48.0268 4612  sbp2port - ok
17:02:48.0278 4612  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:02:48.0308 4612  SCardSvr - ok
17:02:48.0308 4612  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:02:48.0338 4612  scfilter - ok
17:02:48.0348 4612  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
17:02:48.0378 4612  Schedule - ok
17:02:48.0388 4612  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:02:48.0408 4612  SCPolicySvc - ok
17:02:48.0418 4612  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:02:48.0428 4612  SDRSVC - ok
17:02:48.0438 4612  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:02:48.0458 4612  secdrv - ok
17:02:48.0468 4612  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
17:02:48.0488 4612  seclogon - ok
17:02:48.0498 4612  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
17:02:48.0518 4612  SENS - ok
17:02:48.0528 4612  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:02:48.0538 4612  SensrSvc - ok
17:02:48.0538 4612  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:02:48.0548 4612  Serenum - ok
17:02:48.0558 4612  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:02:48.0568 4612  Serial - ok
17:02:48.0568 4612  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
17:02:48.0578 4612  sermouse - ok
17:02:48.0588 4612  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:02:48.0618 4612  SessionEnv - ok
17:02:48.0618 4612  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:02:48.0638 4612  sffdisk - ok
17:02:48.0638 4612  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:02:48.0648 4612  sffp_mmc - ok
17:02:48.0658 4612  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:02:48.0668 4612  sffp_sd - ok
17:02:48.0668 4612  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
17:02:48.0678 4612  sfloppy - ok
17:02:48.0688 4612  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:02:48.0718 4612  SharedAccess - ok
17:02:48.0718 4612  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:02:48.0748 4612  ShellHWDetection - ok
17:02:48.0758 4612  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:02:48.0758 4612  SiSRaid2 - ok
17:02:48.0768 4612  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
17:02:48.0778 4612  SiSRaid4 - ok
17:02:48.0778 4612  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:02:48.0808 4612  Smb - ok
17:02:48.0818 4612  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:02:48.0828 4612  SNMPTRAP - ok
17:02:48.0828 4612  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:02:48.0838 4612  spldr - ok
17:02:48.0848 4612  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
17:02:48.0858 4612  Spooler - ok
17:02:48.0888 4612  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
17:02:48.0948 4612  sppsvc - ok
17:02:48.0948 4612  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:02:48.0978 4612  sppuinotify - ok
17:02:48.0988 4612  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:02:48.0998 4612  srv - ok
17:02:49.0008 4612  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:02:49.0018 4612  srv2 - ok
17:02:49.0028 4612  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:02:49.0038 4612  srvnet - ok
17:02:49.0038 4612  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
17:02:49.0058 4612  ssadbus - ok
17:02:49.0058 4612  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
17:02:49.0068 4612  ssadmdfl - ok
17:02:49.0078 4612  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
17:02:49.0088 4612  ssadmdm - ok
17:02:49.0088 4612  [ D33D1BD3EC0E766211A234F56A12726D ] ssadserd        C:\Windows\system32\DRIVERS\ssadserd.sys
17:02:49.0108 4612  ssadserd - ok
17:02:49.0108 4612  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:02:49.0138 4612  SSDPSRV - ok
17:02:49.0138 4612  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:02:49.0168 4612  SstpSvc - ok
17:02:49.0178 4612  [ 4B1D0B5B6D043AAF45AE89EABAB7B865 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
17:02:49.0178 4612  STacSV ( UnsignedFile.Multi.Generic ) - warning
17:02:49.0178 4612  STacSV - detected UnsignedFile.Multi.Generic (1)
17:02:49.0188 4612  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
17:02:49.0198 4612  stexstor - ok
17:02:49.0198 4612  [ 542BDF7E9256189ABBC68935FA8116A4 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
17:02:49.0218 4612  STHDA - ok
17:02:49.0228 4612  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
17:02:49.0238 4612  stisvc - ok
17:02:49.0248 4612  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
17:02:49.0258 4612  storflt - ok
17:02:49.0258 4612  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
17:02:49.0268 4612  StorSvc - ok
17:02:49.0278 4612  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
17:02:49.0288 4612  storvsc - ok
17:02:49.0288 4612  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
17:02:49.0298 4612  swenum - ok
17:02:49.0298 4612  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
17:02:49.0338 4612  swprv - ok
17:02:49.0348 4612  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
17:02:49.0388 4612  SysMain - ok
17:02:49.0388 4612  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:02:49.0398 4612  TabletInputService - ok
17:02:49.0408 4612  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:02:49.0438 4612  TapiSrv - ok
17:02:49.0438 4612  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
17:02:49.0468 4612  TBS - ok
17:02:49.0488 4612  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:02:49.0538 4612  Tcpip - ok
17:02:49.0558 4612  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:02:49.0588 4612  TCPIP6 - ok
17:02:49.0588 4612  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:02:49.0598 4612  tcpipreg - ok
17:02:49.0608 4612  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:02:49.0618 4612  TDPIPE - ok
17:02:49.0618 4612  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:02:49.0628 4612  TDTCP - ok
17:02:49.0638 4612  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:02:49.0658 4612  tdx - ok
17:02:49.0668 4612  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
17:02:49.0668 4612  TermDD - ok
17:02:49.0678 4612  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
17:02:49.0718 4612  TermService - ok
17:02:49.0718 4612  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
17:02:49.0728 4612  Themes - ok
17:02:49.0738 4612  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
17:02:49.0758 4612  THREADORDER - ok
17:02:49.0768 4612  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
17:02:49.0798 4612  TrkWks - ok
17:02:49.0798 4612  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:02:49.0828 4612  TrustedInstaller - ok
17:02:49.0828 4612  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:02:49.0858 4612  tssecsrv - ok
17:02:49.0858 4612  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:02:49.0868 4612  TsUsbFlt - ok
17:02:49.0878 4612  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:02:49.0898 4612  tunnel - ok
17:02:49.0908 4612  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
17:02:49.0918 4612  uagp35 - ok
17:02:49.0918 4612  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:02:49.0948 4612  udfs - ok
17:02:49.0958 4612  [ 215462AE7E6A897D675E84DD1E3B3B56 ] ufad-ws60       C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe
17:02:49.0968 4612  ufad-ws60 - ok
17:02:49.0978 4612  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:02:49.0988 4612  UI0Detect - ok
17:02:49.0988 4612  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:02:49.0998 4612  uliagpkx - ok
17:02:49.0998 4612  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
17:02:50.0008 4612  umbus - ok
17:02:50.0018 4612  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:02:50.0028 4612  UmPass - ok
17:02:50.0028 4612  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
17:02:50.0038 4612  UmRdpService - ok
17:02:50.0048 4612  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
17:02:50.0078 4612  upnphost - ok
17:02:50.0088 4612  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
17:02:50.0098 4612  USBAAPL64 - ok
17:02:50.0098 4612  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:02:50.0108 4612  usbccgp - ok
17:02:50.0118 4612  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:02:50.0128 4612  usbcir - ok
17:02:50.0128 4612  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
17:02:50.0138 4612  usbehci - ok
17:02:50.0148 4612  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:02:50.0158 4612  usbhub - ok
17:02:50.0158 4612  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
17:02:50.0168 4612  usbohci - ok
17:02:50.0178 4612  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:02:50.0188 4612  usbprint - ok
17:02:50.0188 4612  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
17:02:50.0198 4612  usbscan - ok
17:02:50.0208 4612  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:02:50.0218 4612  USBSTOR - ok
17:02:50.0218 4612  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:02:50.0228 4612  usbuhci - ok
17:02:50.0228 4612  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
17:02:50.0258 4612  UxSms - ok
17:02:50.0268 4612  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
17:02:50.0268 4612  VaultSvc - ok
17:02:50.0278 4612  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:02:50.0288 4612  vdrvroot - ok
17:02:50.0288 4612  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
17:02:50.0328 4612  vds - ok
17:02:50.0328 4612  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:02:50.0338 4612  vga - ok
17:02:50.0338 4612  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:02:50.0368 4612  VgaSave - ok
17:02:50.0378 4612  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:02:50.0388 4612  vhdmp - ok
17:02:50.0388 4612  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:02:50.0398 4612  viaide - ok
17:02:50.0398 4612  [ 6FC9B272B838EE8F5FA0E4A7E971154A ] VMAuthdService  C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
17:02:50.0418 4612  VMAuthdService - ok
17:02:50.0418 4612  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
17:02:50.0428 4612  vmbus - ok
17:02:50.0438 4612  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
17:02:50.0438 4612  VMBusHID - ok
17:02:50.0448 4612  [ B49CB94DB99519F9DC7F77D2D1F215B5 ] vmci            C:\Windows\system32\drivers\vmci.sys
17:02:50.0458 4612  vmci - ok
17:02:50.0458 4612  [ 1AF6462718E5AB0ED55014A6EF3790EF ] vmkbd           C:\Windows\system32\drivers\VMkbd.sys
17:02:50.0468 4612  vmkbd - ok
17:02:50.0468 4612  [ 9D54F1339E78C95BF3D9939EBCB66378 ] VMnetAdapter    C:\Windows\system32\DRIVERS\vmnetadapter.sys
17:02:50.0478 4612  VMnetAdapter - ok
17:02:50.0478 4612  [ FB54EF3AA613D2832FD3812E7CB2FC75 ] VMnetBridge     C:\Windows\system32\DRIVERS\vmnetbridge.sys
17:02:50.0488 4612  VMnetBridge - ok
17:02:50.0488 4612  VMnetDHCP - ok
17:02:50.0498 4612  [ 163B05050FCD9635242EC5206C19A182 ] VMnetuserif     C:\Windows\system32\drivers\vmnetuserif.sys
17:02:50.0508 4612  VMnetuserif - ok
17:02:50.0508 4612  [ F22098DBDD13C1221C274496B3E18DA7 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
17:02:50.0528 4612  VMUSBArbService - ok
17:02:50.0528 4612  VMware NAT Service - ok
17:02:50.0538 4612  [ F2A8EE62D7161E1598CDD269BF22A03D ] vmx86           C:\Windows\system32\drivers\vmx86.sys
17:02:50.0538 4612  vmx86 - ok
17:02:50.0548 4612  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:02:50.0558 4612  volmgr - ok
17:02:50.0558 4612  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:02:50.0578 4612  volmgrx - ok
17:02:50.0578 4612  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:02:50.0588 4612  volsnap - ok
17:02:50.0598 4612  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
17:02:50.0608 4612  vsmraid - ok
17:02:50.0628 4612  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
17:02:50.0668 4612  VSS - ok
17:02:50.0668 4612  [ E61C910E2DDF4797C1B1F9239636E894 ] vstor2-ws60     C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys
17:02:50.0678 4612  vstor2-ws60 - ok
17:02:50.0678 4612  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:02:50.0698 4612  vwifibus - ok
17:02:50.0698 4612  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:02:50.0708 4612  vwififlt - ok
17:02:50.0718 4612  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
17:02:50.0748 4612  W32Time - ok
17:02:50.0758 4612  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
17:02:50.0768 4612  WacomPen - ok
17:02:50.0768 4612  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:02:50.0798 4612  WANARP - ok
17:02:50.0798 4612  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:02:50.0828 4612  Wanarpv6 - ok
17:02:50.0838 4612  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:02:50.0858 4612  WatAdminSvc - ok
17:02:50.0878 4612  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
17:02:50.0908 4612  wbengine - ok
17:02:50.0908 4612  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:02:50.0928 4612  WbioSrvc - ok
17:02:50.0928 4612  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:02:50.0948 4612  wcncsvc - ok
17:02:50.0948 4612  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:02:50.0968 4612  WcsPlugInService - ok
17:02:50.0968 4612  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
17:02:50.0978 4612  Wd - ok
17:02:50.0988 4612  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:02:51.0008 4612  Wdf01000 - ok
17:02:51.0008 4612  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:02:51.0028 4612  WdiServiceHost - ok
17:02:51.0038 4612  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:02:51.0048 4612  WdiSystemHost - ok
17:02:51.0058 4612  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
17:02:51.0068 4612  WebClient - ok
17:02:51.0078 4612  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:02:51.0108 4612  Wecsvc - ok
17:02:51.0108 4612  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:02:51.0138 4612  wercplsupport - ok
17:02:51.0148 4612  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:02:51.0168 4612  WerSvc - ok
17:02:51.0178 4612  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:02:51.0198 4612  WfpLwf - ok
17:02:51.0208 4612  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:02:51.0218 4612  WIMMount - ok
17:02:51.0218 4612  WinDefend - ok
17:02:51.0218 4612  WinHttpAutoProxySvc - ok
17:02:51.0228 4612  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:02:51.0258 4612  Winmgmt - ok
17:02:51.0278 4612  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
17:02:51.0348 4612  WinRM - ok
17:02:51.0358 4612  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:02:51.0368 4612  WinUsb - ok
17:02:51.0378 4612  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:02:51.0398 4612  Wlansvc - ok
17:02:51.0408 4612  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
17:02:51.0418 4612  WmiAcpi - ok
17:02:51.0428 4612  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:02:51.0438 4612  wmiApSrv - ok
17:02:51.0438 4612  WMPNetworkSvc - ok
17:02:51.0448 4612  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:02:51.0458 4612  WPCSvc - ok
17:02:51.0458 4612  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:02:51.0468 4612  WPDBusEnum - ok
17:02:51.0478 4612  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:02:51.0498 4612  ws2ifsl - ok
17:02:51.0508 4612  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
17:02:51.0518 4612  wscsvc - ok
17:02:51.0528 4612  WSearch - ok
17:02:51.0548 4612  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:02:51.0588 4612  wuauserv - ok
17:02:51.0588 4612  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:02:51.0598 4612  WudfPf - ok
17:02:51.0608 4612  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:02:51.0618 4612  WUDFRd - ok
17:02:51.0618 4612  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:02:51.0628 4612  wudfsvc - ok
17:02:51.0638 4612  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:02:51.0648 4612  WwanSvc - ok
17:02:51.0658 4612  ================ Scan global ===============================
17:02:51.0668 4612  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:02:51.0668 4612  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:02:51.0688 4612  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:02:51.0688 4612  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:02:51.0698 4612  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:02:51.0698 4612  [Global] - ok
17:02:51.0698 4612  ================ Scan MBR ==================================
17:02:51.0698 4612  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:02:51.0768 4612  \Device\Harddisk0\DR0 - ok
17:02:51.0778 4612  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
17:02:51.0858 4612  \Device\Harddisk1\DR1 - ok
17:02:51.0858 4612  ================ Scan VBR ==================================
17:02:51.0858 4612  [ 8FDDDC5A938321D406346CF70D983810 ] \Device\Harddisk0\DR0\Partition1
17:02:51.0858 4612  \Device\Harddisk0\DR0\Partition1 - ok
17:02:51.0868 4612  [ 3595B04979A5444DFCD959CC892429E1 ] \Device\Harddisk0\DR0\Partition2
17:02:51.0868 4612  \Device\Harddisk0\DR0\Partition2 - ok
17:02:51.0898 4612  [ 862E9A2DDA485F741695AAD14BF9C86B ] \Device\Harddisk1\DR1\Partition1
17:02:51.0898 4612  \Device\Harddisk1\DR1\Partition1 - ok
17:02:51.0908 4612  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition2
17:02:51.0908 4612  \Device\Harddisk1\DR1\Partition2 - ok
17:02:51.0918 4612  [ 9257E7856EE11C3E10861FA6A70FA434 ] \Device\Harddisk1\DR1\Partition3
17:02:51.0918 4612  \Device\Harddisk1\DR1\Partition3 - ok
17:02:51.0918 4612  ================ Scan active images ========================
17:02:51.0918 4612  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
17:02:51.0918 4612  C:\Windows\System32\drivers\crashdmp.sys - ok
17:02:51.0918 4612  [ A1434F35B7B171CB697D74D33F7D029F ] C:\Windows\System32\drivers\amd_sata.sys
17:02:51.0918 4612  C:\Windows\System32\drivers\amd_sata.sys - ok
17:02:51.0928 4612  [ 9BBD8B5855BC6578957F82341F9CDE5A ] C:\Windows\System32\drivers\Diskdump.sys
17:02:51.0928 4612  C:\Windows\System32\drivers\Diskdump.sys - ok
17:02:51.0928 4612  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
17:02:51.0928 4612  C:\Windows\System32\drivers\dumpfve.sys - ok
17:02:51.0928 4612  [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
17:02:51.0928 4612  C:\Windows\System32\drivers\dtsoftbus01.sys - ok
17:02:51.0938 4612  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
17:02:51.0938 4612  C:\Windows\System32\drivers\cdrom.sys - ok
17:02:51.0938 4612  [ D00EAE9C735A7DEE8049E50D73D25434 ] C:\Windows\System32\drivers\eamonm.sys
17:02:51.0938 4612  C:\Windows\System32\drivers\eamonm.sys - ok
17:02:51.0938 4612  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
17:02:51.0938 4612  C:\Windows\System32\drivers\beep.sys - ok
17:02:51.0948 4612  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
17:02:51.0948 4612  C:\Windows\System32\drivers\null.sys - ok
17:02:51.0948 4612  [ E5EDDE3C8158DD0CBC5812F201DCDED0 ] C:\Windows\System32\drivers\ehdrv.sys
17:02:51.0948 4612  C:\Windows\System32\drivers\ehdrv.sys - ok
17:02:51.0958 4612  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
17:02:51.0958 4612  C:\Windows\System32\drivers\videoprt.sys - ok
17:02:51.0958 4612  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
17:02:51.0958 4612  C:\Windows\System32\drivers\watchdog.sys - ok
17:02:51.0958 4612  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
17:02:51.0958 4612  C:\Windows\System32\drivers\RDPCDD.sys - ok
17:02:51.0968 4612  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
17:02:51.0968 4612  C:\Windows\System32\drivers\RDPENCDD.sys - ok
17:02:51.0968 4612  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
17:02:51.0968 4612  C:\Windows\System32\drivers\RDPREFMP.sys - ok
17:02:51.0968 4612  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
17:02:51.0968 4612  C:\Windows\System32\drivers\vga.sys - ok
17:02:51.0978 4612  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
17:02:51.0978 4612  C:\Windows\System32\drivers\msfs.sys - ok
17:02:51.0978 4612  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
17:02:51.0978 4612  C:\Windows\System32\drivers\npfs.sys - ok
17:02:51.0988 4612  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
17:02:51.0988 4612  C:\Windows\System32\drivers\afd.sys - ok
17:02:51.0988 4612  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
17:02:51.0988 4612  C:\Windows\System32\drivers\tdi.sys - ok
17:02:51.0988 4612  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
17:02:51.0988 4612  C:\Windows\System32\drivers\tdx.sys - ok
17:02:51.0988 4612  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
17:02:51.0988 4612  C:\Windows\System32\drivers\netbt.sys - ok
17:02:51.0998 4612  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
17:02:51.0998 4612  C:\Windows\System32\drivers\ws2ifsl.sys - ok
17:02:51.0998 4612  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
17:02:51.0998 4612  C:\Windows\System32\drivers\pacer.sys - ok
17:02:52.0008 4612  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
17:02:52.0008 4612  C:\Windows\System32\drivers\vwififlt.sys - ok
17:02:52.0008 4612  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
17:02:52.0008 4612  C:\Windows\System32\drivers\wfplwf.sys - ok
17:02:52.0008 4612  [ D2F812358EE8EE23CBB5C4DAFFB5B819 ] C:\Windows\System32\drivers\EpfwLWF.sys
17:02:52.0008 4612  C:\Windows\System32\drivers\EpfwLWF.sys - ok
17:02:52.0018 4612  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
17:02:52.0018 4612  C:\Windows\System32\drivers\netbios.sys - ok
17:02:52.0018 4612  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
17:02:52.0018 4612  C:\Windows\System32\drivers\wanarp.sys - ok
17:02:52.0018 4612  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
17:02:52.0018 4612  C:\Windows\System32\drivers\nsiproxy.sys - ok
17:02:52.0028 4612  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
17:02:52.0028 4612  C:\Windows\System32\drivers\rdbss.sys - ok
17:02:52.0028 4612  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
17:02:52.0028 4612  C:\Windows\System32\drivers\termdd.sys - ok
17:02:52.0038 4612  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
17:02:52.0038 4612  C:\Windows\System32\drivers\discache.sys - ok
17:02:52.0038 4612  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
17:02:52.0038 4612  C:\Windows\System32\drivers\mssmbios.sys - ok
17:02:52.0038 4612  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
17:02:52.0038 4612  C:\Windows\System32\drivers\blbdrive.sys - ok
17:02:52.0048 4612  [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys
17:02:52.0048 4612  C:\Windows\System32\drivers\csc.sys - ok
17:02:52.0048 4612  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
17:02:52.0048 4612  C:\Windows\System32\drivers\dfsc.sys - ok
17:02:52.0048 4612  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
17:02:52.0048 4612  C:\Windows\System32\drivers\tunnel.sys - ok
17:02:52.0058 4612  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
17:02:52.0058 4612  C:\Windows\System32\ntdll.dll - ok
17:02:52.0058 4612  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
17:02:52.0058 4612  C:\Windows\System32\smss.exe - ok
17:02:52.0068 4612  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
17:02:52.0068 4612  C:\Windows\System32\autochk.exe - ok
17:02:52.0068 4612  [ 1E55EA0AD65688EB43CCE6AED573E82C ] C:\Windows\System32\drivers\atikmpag.sys
17:02:52.0068 4612  C:\Windows\System32\drivers\atikmpag.sys - ok
17:02:52.0068 4612  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
17:02:52.0068 4612  C:\Windows\System32\Wldap32.dll - ok
17:02:52.0078 4612  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
17:02:52.0078 4612  C:\Windows\System32\normaliz.dll - ok
17:02:52.0078 4612  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
17:02:52.0078 4612  C:\Windows\System32\ole32.dll - ok
17:02:52.0078 4612  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
17:02:52.0078 4612  C:\Windows\System32\lpk.dll - ok
17:02:52.0088 4612  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
17:02:52.0088 4612  C:\Windows\System32\setupapi.dll - ok
17:02:52.0088 4612  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
17:02:52.0088 4612  C:\Windows\System32\oleaut32.dll - ok
17:02:52.0088 4612  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
17:02:52.0088 4612  C:\Windows\System32\shell32.dll - ok
17:02:52.0098 4612  [ ACF6058602D202F36C0A2C0C97DB5E3B ] C:\Windows\System32\drivers\atikmdag.sys
17:02:52.0098 4612  C:\Windows\System32\drivers\atikmdag.sys - ok
17:02:52.0098 4612  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
17:02:52.0098 4612  C:\Windows\System32\usp10.dll - ok
17:02:52.0108 4612  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
17:02:52.0108 4612  C:\Windows\System32\imm32.dll - ok
17:02:52.0108 4612  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
17:02:52.0108 4612  C:\Windows\System32\clbcatq.dll - ok
17:02:52.0108 4612  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
17:02:52.0108 4612  C:\Windows\System32\comdlg32.dll - ok
17:02:52.0118 4612  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
17:02:52.0118 4612  C:\Windows\System32\difxapi.dll - ok
17:02:52.0118 4612  [ FF1AAEDD4A1A0FC3C5ED66B4EE0B254A ] C:\Windows\System32\urlmon.dll
17:02:52.0118 4612  C:\Windows\System32\urlmon.dll - ok
17:02:52.0118 4612  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
17:02:52.0118 4612  C:\Windows\System32\gdi32.dll - ok
17:02:52.0128 4612  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
17:02:52.0128 4612  C:\Windows\System32\kernel32.dll - ok
17:02:52.0128 4612  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
17:02:52.0128 4612  C:\Windows\System32\rpcrt4.dll - ok
17:02:52.0128 4612  [ A54A16DAE7497CDCB8C5A021C0F6FEB8 ] C:\Windows\System32\iertutil.dll
17:02:52.0128 4612  C:\Windows\System32\iertutil.dll - ok
17:02:52.0138 4612  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
17:02:52.0138 4612  C:\Windows\System32\imagehlp.dll - ok
17:02:52.0138 4612  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
17:02:52.0138 4612  C:\Windows\System32\ws2_32.dll - ok
17:02:52.0148 4612  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
17:02:52.0148 4612  C:\Windows\System32\advapi32.dll - ok
17:02:52.0148 4612  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
17:02:52.0148 4612  C:\Windows\System32\msvcrt.dll - ok
17:02:52.0148 4612  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
17:02:52.0148 4612  C:\Windows\System32\psapi.dll - ok
17:02:52.0158 4612  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
17:02:52.0158 4612  C:\Windows\System32\drivers\dxgkrnl.sys - ok
17:02:52.0158 4612  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
17:02:52.0158 4612  C:\Windows\System32\drivers\dxgmms1.sys - ok
17:02:52.0158 4612  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
17:02:52.0158 4612  C:\Windows\System32\shlwapi.dll - ok
17:02:52.0168 4612  [ FA274190682AA41A46B285208ED46A74 ] C:\Windows\System32\wininet.dll
17:02:52.0168 4612  C:\Windows\System32\wininet.dll - ok
17:02:52.0168 4612  [ BD56BAE4403497E31727096CEBC42956 ] C:\Windows\System32\drivers\L1C62x64.sys
17:02:52.0168 4612  C:\Windows\System32\drivers\L1C62x64.sys - ok
17:02:52.0178 4612  [ 3DC51308F5E7A4BB8020D16E64E9D882 ] C:\Windows\System32\drivers\amdxhc.sys
17:02:52.0178 4612  C:\Windows\System32\drivers\amdxhc.sys - ok
17:02:52.0178 4612  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
17:02:52.0178 4612  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
17:02:52.0178 4612  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
17:02:52.0178 4612  C:\Windows\System32\drivers\usbd.sys - ok
17:02:52.0188 4612  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
17:02:52.0188 4612  C:\Windows\System32\user32.dll - ok
17:02:52.0188 4612  [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
17:02:52.0188 4612  C:\Windows\System32\drivers\usbohci.sys - ok
17:02:52.0188 4612  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
17:02:52.0188 4612  C:\Windows\System32\drivers\usbport.sys - ok
17:02:52.0198 4612  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
17:02:52.0198 4612  C:\Windows\System32\msctf.dll - ok
17:02:52.0198 4612  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
17:02:52.0198 4612  C:\Windows\System32\cfgmgr32.dll - ok
17:02:52.0198 4612  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
17:02:52.0208 4612  C:\Windows\System32\devobj.dll - ok
17:02:52.0208 4612  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
17:02:52.0208 4612  C:\Windows\System32\drivers\hdaudbus.sys - ok
17:02:52.0208 4612  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
17:02:52.0208 4612  C:\Windows\System32\drivers\usbehci.sys - ok
17:02:52.0218 4612  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
17:02:52.0218 4612  C:\Windows\System32\nsi.dll - ok
17:02:52.0218 4612  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
17:02:52.0218 4612  C:\Windows\System32\sechost.dll - ok
17:02:52.0218 4612  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
17:02:52.0218 4612  C:\Windows\System32\comctl32.dll - ok
17:02:52.0228 4612  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
17:02:52.0228 4612  C:\Windows\System32\crypt32.dll - ok
17:02:52.0228 4612  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
17:02:52.0228 4612  C:\Windows\System32\drivers\amdppm.sys - ok
17:02:52.0228 4612  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
17:02:52.0228 4612  C:\Windows\System32\wintrust.dll - ok
17:02:52.0238 4612  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
17:02:52.0238 4612  C:\Windows\System32\drivers\agilevpn.sys - ok
17:02:52.0238 4612  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
17:02:52.0238 4612  C:\Windows\System32\drivers\CompositeBus.sys - ok
17:02:52.0238 4612  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
17:02:52.0238 4612  C:\Windows\System32\KernelBase.dll - ok
17:02:52.0248 4612  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
17:02:52.0248 4612  C:\Windows\System32\drivers\ndistapi.sys - ok
17:02:52.0248 4612  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
17:02:52.0248 4612  C:\Windows\System32\drivers\ndiswan.sys - ok
17:02:52.0258 4612  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
17:02:52.0258 4612  C:\Windows\System32\drivers\rasl2tp.sys - ok
17:02:52.0258 4612  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
17:02:52.0258 4612  C:\Windows\System32\msasn1.dll - ok
17:02:52.0258 4612  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
17:02:52.0258 4612  C:\Windows\System32\drivers\raspppoe.sys - ok
17:02:52.0268 4612  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
17:02:52.0268 4612  C:\Windows\SysWOW64\normaliz.dll - ok
17:02:52.0268 4612  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
17:02:52.0268 4612  C:\Windows\System32\drivers\raspptp.sys - ok
17:02:52.0268 4612  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
17:02:52.0268 4612  C:\Windows\System32\drivers\rassstp.sys - ok
17:02:52.0278 4612  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys
17:02:52.0278 4612  C:\Windows\System32\drivers\rdpbus.sys - ok
17:02:52.0278 4612  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
17:02:52.0278 4612  C:\Windows\System32\drivers\kbdclass.sys - ok
17:02:52.0288 4612  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
17:02:52.0288 4612  C:\Windows\System32\drivers\ks.sys - ok
17:02:52.0288 4612  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
17:02:52.0288 4612  C:\Windows\System32\drivers\mouclass.sys - ok
17:02:52.0288 4612  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
17:02:52.0288 4612  C:\Windows\System32\drivers\swenum.sys - ok
17:02:52.0298 4612  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
17:02:52.0298 4612  C:\Windows\System32\drivers\umbus.sys - ok
17:02:52.0298 4612  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
17:02:52.0298 4612  C:\Windows\System32\drivers\usbhub.sys - ok
17:02:52.0298 4612  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
17:02:52.0298 4612  C:\Windows\System32\drivers\ndproxy.sys - ok
17:02:52.0308 4612  [ C17BAFA60F941A1AF5C2B10D8632C409 ] C:\Windows\System32\drivers\amdhub30.sys
17:02:52.0308 4612  C:\Windows\System32\drivers\amdhub30.sys - ok
17:02:52.0308 4612  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
17:02:52.0308 4612  C:\Windows\System32\drivers\drmk.sys - ok
17:02:52.0308 4612  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
17:02:52.0308 4612  C:\Windows\System32\drivers\portcls.sys - ok
17:02:52.0318 4612  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
17:02:52.0318 4612  C:\Windows\System32\drivers\ksthunk.sys - ok
17:02:52.0318 4612  [ 542BDF7E9256189ABBC68935FA8116A4 ] C:\Windows\System32\drivers\stwrt64.sys
17:02:52.0318 4612  C:\Windows\System32\drivers\stwrt64.sys - ok
17:02:52.0328 4612  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
17:02:52.0328 4612  C:\Windows\System32\drivers\dxapi.sys - ok
17:02:52.0328 4612  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
17:02:52.0328 4612  C:\Windows\System32\win32k.sys - ok
17:02:52.0328 4612  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
17:02:52.0328 4612  C:\Windows\System32\basesrv.dll - ok
17:02:52.0338 4612  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
17:02:52.0338 4612  C:\Windows\System32\csrsrv.dll - ok
17:02:52.0338 4612  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
17:02:52.0338 4612  C:\Windows\System32\csrss.exe - ok
17:02:52.0338 4612  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
17:02:52.0338 4612  C:\Windows\System32\winsrv.dll - ok
17:02:52.0348 4612  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
17:02:52.0348 4612  C:\Windows\System32\drivers\usbccgp.sys - ok
17:02:52.0348 4612  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
17:02:52.0348 4612  C:\Windows\System32\drivers\hidclass.sys - ok
17:02:52.0358 4612  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
17:02:52.0358 4612  C:\Windows\System32\drivers\hidparse.sys - ok
17:02:52.0358 4612  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
17:02:52.0358 4612  C:\Windows\System32\drivers\hidusb.sys - ok
17:02:52.0358 4612  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
17:02:52.0358 4612  C:\Windows\System32\drivers\kbdhid.sys - ok
17:02:52.0368 4612  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
17:02:52.0368 4612  C:\Windows\System32\drivers\mouhid.sys - ok
17:02:52.0368 4612  [ 1AF6462718E5AB0ED55014A6EF3790EF ] C:\Windows\System32\drivers\VMkbd.sys
17:02:52.0368 4612  C:\Windows\System32\drivers\VMkbd.sys - ok
17:02:52.0368 4612  [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
17:02:52.0368 4612  C:\Windows\System32\drivers\USBSTOR.SYS - ok
17:02:52.0378 4612  [ FF4232A1A64012BAA1FD97C7B67DF593 ] C:\Windows\System32\drivers\udfs.sys
17:02:52.0378 4612  C:\Windows\System32\drivers\udfs.sys - ok
17:02:52.0378 4612  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
17:02:52.0378 4612  C:\Windows\System32\drivers\monitor.sys - ok
17:02:52.0388 4612  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
17:02:52.0388 4612  C:\Windows\System32\tsddd.dll - ok
17:02:52.0388 4612  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
17:02:52.0388 4612  C:\Windows\System32\sxssrv.dll - ok
17:02:52.0388 4612  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] C:\Windows\System32\drivers\bthport.sys
17:02:52.0388 4612  C:\Windows\System32\drivers\bthport.sys - ok
17:02:52.0398 4612  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
17:02:52.0398 4612  C:\Windows\System32\profapi.dll - ok
17:02:52.0398 4612  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
17:02:52.0398 4612  C:\Windows\System32\wininit.exe - ok
17:02:52.0398 4612  [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS
17:02:52.0398 4612  C:\Windows\System32\drivers\BTHUSB.SYS - ok
17:02:52.0408 4612  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
17:02:52.0408 4612  C:\Windows\System32\KBDUS.DLL - ok
17:02:52.0408 4612  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
17:02:52.0408 4612  C:\Windows\System32\RpcRtRemote.dll - ok
17:02:52.0418 4612  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
17:02:52.0418 4612  C:\Windows\System32\cdd.dll - ok
17:02:52.0418 4612  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
17:02:52.0418 4612  C:\Windows\System32\WlS0WndH.dll - ok
17:02:52.0418 4612  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
17:02:52.0418 4612  C:\Windows\System32\sxs.dll - ok
17:02:52.0428 4612  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
17:02:52.0428 4612  C:\Windows\System32\cryptbase.dll - ok
17:02:52.0428 4612  [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
17:02:52.0428 4612  C:\Windows\System32\drivers\bthenum.sys - ok
17:02:52.0428 4612  [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
17:02:52.0438 4612  C:\Windows\System32\drivers\rfcomm.sys - ok
17:02:52.0438 4612  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
17:02:52.0438 4612  C:\Windows\System32\winlogon.exe - ok
17:02:52.0438 4612  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
17:02:52.0438 4612  C:\Windows\System32\apphelp.dll - ok
17:02:52.0448 4612  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
17:02:52.0448 4612  C:\Windows\System32\services.exe - ok
17:02:52.0448 4612  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
17:02:52.0448 4612  C:\Windows\System32\lsasrv.dll - ok
17:02:52.0448 4612  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
17:02:52.0448 4612  C:\Windows\System32\lsass.exe - ok
17:02:52.0458 4612  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
17:02:52.0458 4612  C:\Windows\System32\lsm.exe - ok
17:02:52.0458 4612  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
17:02:52.0458 4612  C:\Windows\System32\scext.dll - ok
17:02:52.0458 4612  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
17:02:52.0458 4612  C:\Windows\System32\sspicli.dll - ok
17:02:52.0468 4612  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
17:02:52.0468 4612  C:\Windows\System32\sspisrv.dll - ok
17:02:52.0468 4612  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
17:02:52.0468 4612  C:\Windows\System32\winsta.dll - ok
17:02:52.0478 4612  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
17:02:52.0478 4612  C:\Windows\System32\scesrv.dll - ok
17:02:52.0478 4612  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
17:02:52.0478 4612  C:\Windows\System32\secur32.dll - ok
17:02:52.0478 4612  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
17:02:52.0478 4612  C:\Windows\System32\sysntfy.dll - ok
17:02:52.0488 4612  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
17:02:52.0488 4612  C:\Windows\System32\wmsgapi.dll - ok
17:02:52.0488 4612  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
17:02:52.0488 4612  C:\Windows\System32\srvcli.dll - ok
17:02:52.0488 4612  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
17:02:52.0488 4612  C:\Windows\System32\samsrv.dll - ok
17:02:52.0498 4612  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
17:02:52.0498 4612  C:\Windows\System32\cryptdll.dll - ok
17:02:52.0498 4612  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
17:02:52.0498 4612  C:\Windows\System32\wevtapi.dll - ok
17:02:52.0498 4612  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
17:02:52.0498 4612  C:\Windows\System32\authz.dll - ok
17:02:52.0508 4612  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
17:02:52.0508 4612  C:\Windows\System32\bcrypt.dll - ok
17:02:52.0508 4612  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
17:02:52.0508 4612  C:\Windows\System32\cngaudit.dll - ok
17:02:52.0508 4612  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
17:02:52.0508 4612  C:\Windows\System32\ncrypt.dll - ok
17:02:52.0518 4612  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
17:02:52.0518 4612  C:\Windows\System32\msprivs.dll - ok
17:02:52.0518 4612  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
17:02:52.0518 4612  C:\Windows\System32\netjoin.dll - ok
17:02:52.0528 4612  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
17:02:52.0528 4612  C:\Windows\System32\negoexts.dll - ok
17:02:52.0528 4612  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
17:02:52.0528 4612  C:\Windows\System32\cryptsp.dll - ok
17:02:52.0528 4612  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
17:02:52.0528 4612  C:\Windows\System32\kerberos.dll - ok
17:02:52.0538 4612  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
17:02:52.0538 4612  C:\Windows\System32\msv1_0.dll - ok
17:02:52.0538 4612  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
17:02:52.0538 4612  C:\Windows\System32\mswsock.dll - ok
17:02:52.0538 4612  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
17:02:52.0538 4612  C:\Windows\System32\wship6.dll - ok
17:02:52.0548 4612  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
17:02:52.0548 4612  C:\Windows\System32\dnsapi.dll - ok
17:02:52.0548 4612  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
17:02:52.0548 4612  C:\Windows\System32\netlogon.dll - ok
17:02:52.0548 4612  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
17:02:52.0548 4612  C:\Windows\System32\logoncli.dll - ok
17:02:52.0558 4612  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
17:02:52.0558 4612  C:\Windows\System32\schannel.dll - ok
17:02:52.0558 4612  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
17:02:52.0558 4612  C:\Windows\System32\wdigest.dll - ok
17:02:52.0568 4612  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
17:02:52.0568 4612  C:\Windows\System32\pku2u.dll - ok
17:02:52.0568 4612  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
17:02:52.0568 4612  C:\Windows\System32\rsaenh.dll - ok
17:02:52.0568 4612  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
17:02:52.0568 4612  C:\Windows\System32\TSpkg.dll - ok
17:02:52.0578 4612  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
17:02:52.0578 4612  C:\Windows\System32\bcryptprimitives.dll - ok
17:02:52.0578 4612  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
17:02:52.0578 4612  C:\Windows\System32\credssp.dll - ok
17:02:52.0578 4612  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
17:02:52.0578 4612  C:\Windows\System32\efslsaext.dll - ok
17:02:52.0588 4612  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
17:02:52.0588 4612  C:\Windows\System32\scecli.dll - ok
17:02:52.0588 4612  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
17:02:52.0588 4612  C:\Windows\System32\ubpm.dll - ok
17:02:52.0588 4612  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
17:02:52.0588 4612  C:\Windows\System32\svchost.exe - ok
17:02:52.0598 4612  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
17:02:52.0598 4612  C:\Windows\System32\umpnpmgr.dll - ok
17:02:52.0598 4612  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
17:02:52.0598 4612  C:\Windows\System32\devrtl.dll - ok
17:02:52.0608 4612  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
17:02:52.0608 4612  C:\Windows\System32\gpapi.dll - ok
17:02:52.0608 4612  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
17:02:52.0608 4612  C:\Windows\System32\SPInf.dll - ok
17:02:52.0608 4612  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
17:02:52.0608 4612  C:\Windows\System32\userenv.dll - ok
17:02:52.0618 4612  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
17:02:52.0618 4612  C:\Windows\System32\pcwum.dll - ok
17:02:52.0618 4612  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
17:02:52.0618 4612  C:\Windows\System32\umpo.dll - ok
17:02:52.0618 4612  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
17:02:52.0618 4612  C:\Windows\System32\powrprof.dll - ok
17:02:52.0628 4612  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
17:02:52.0628 4612  C:\Windows\System32\drivers\luafv.sys - ok
17:02:52.0628 4612  [ 587F0F4145A1536A6E37EFD769B7665F ] C:\Windows\System32\drivers\epfw.sys
17:02:52.0628 4612  C:\Windows\System32\drivers\epfw.sys - ok
17:02:52.0638 4612  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
17:02:52.0638 4612  C:\Windows\System32\rpcss.dll - ok
17:02:52.0639 4612  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
17:02:52.0639 4612  C:\Windows\System32\RpcEpMap.dll - ok
17:02:52.0639 4612  [ 8893C00A6D0A5820D4608202F99E8AD6 ] C:\Windows\System32\atiesrxx.exe
17:02:52.0639 4612  C:\Windows\System32\atiesrxx.exe - ok
17:02:52.0649 4612  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
17:02:52.0649 4612  C:\Windows\System32\wshqos.dll - ok
17:02:52.0649 4612  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
17:02:52.0649 4612  C:\Windows\System32\WSHTCPIP.DLL - ok
17:02:52.0649 4612  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
17:02:52.0649 4612  C:\Windows\System32\FirewallAPI.dll - ok
17:02:52.0659 4612  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
17:02:52.0659 4612  C:\Windows\System32\wtsapi32.dll - ok
17:02:52.0659 4612  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
17:02:52.0659 4612  C:\Windows\System32\LogonUI.exe - ok
17:02:52.0659 4612  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
17:02:52.0659 4612  C:\Windows\System32\version.dll - ok
17:02:52.0669 4612  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
17:02:52.0669 4612  C:\Windows\System32\authui.dll - ok
17:02:52.0669 4612  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
17:02:52.0669 4612  C:\Windows\System32\cryptui.dll - ok
17:02:52.0669 4612  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
17:02:52.0669 4612  C:\Windows\System32\wevtsvc.dll - ok
17:02:52.0679 4612  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
17:02:52.0679 4612  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
17:02:52.0679 4612  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
17:02:52.0679 4612  C:\Windows\System32\ntmarta.dll - ok
17:02:52.0689 4612  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
17:02:52.0689 4612  C:\Windows\System32\shacct.dll - ok
17:02:52.0689 4612  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
17:02:52.0689 4612  C:\Windows\System32\audiosrv.dll - ok
17:02:52.0689 4612  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
17:02:52.0689 4612  C:\Windows\System32\netprofm.dll - ok
17:02:52.0699 4612  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
17:02:52.0699 4612  C:\Windows\System32\propsys.dll - ok
17:02:52.0699 4612  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
17:02:52.0699 4612  C:\Windows\System32\samlib.dll - ok
17:02:52.0699 4612  [ 4B1D0B5B6D043AAF45AE89EABAB7B865 ] C:\Program Files\IDT\WDM\stacsv64.exe
17:02:52.0699 4612  C:\Program Files\IDT\WDM\stacsv64.exe - ok
17:02:52.0709 4612  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
17:02:52.0709 4612  C:\Windows\System32\avrt.dll - ok
17:02:52.0709 4612  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
17:02:52.0709 4612  C:\Windows\System32\mmcss.dll - ok
17:02:52.0709 4612  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
17:02:52.0709 4612  C:\Windows\System32\MMDevAPI.dll - ok
17:02:52.0719 4612  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
17:02:52.0719 4612  C:\Windows\System32\wlansvc.dll - ok
17:02:52.0719 4612  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
17:02:52.0719 4612  C:\Windows\System32\adtschema.dll - ok
17:02:52.0729 4612  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
17:02:52.0729 4612  C:\Windows\System32\atl.dll - ok
17:02:52.0729 4612  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
17:02:52.0729 4612  C:\Windows\System32\dsound.dll - ok
17:02:52.0729 4612  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
17:02:52.0729 4612  C:\Windows\System32\uxtheme.dll - ok
17:02:52.0739 4612  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
17:02:52.0739 4612  C:\Windows\System32\MPSSVC.dll - ok
17:02:52.0739 4612  [ 91A384ABDD6D66E84646DBF27FB28E26 ] C:\Windows\System32\stapi64.dll
17:02:52.0739 4612  C:\Windows\System32\stapi64.dll - ok
17:02:52.0739 4612  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
17:02:52.0739 4612  C:\Windows\System32\winmm.dll - ok
17:02:52.0749 4612  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
17:02:52.0749 4612  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
17:02:52.0749 4612  [ 8BC6933830256BB85E371D023A29EC74 ] C:\Program Files\IDT\WDM\SFCOM64.dll
17:02:52.0749 4612  C:\Program Files\IDT\WDM\SFCOM64.dll - ok
17:02:52.0749 4612  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
17:02:52.0749 4612  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
17:02:52.0759 4612  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
17:02:52.0759 4612  C:\Windows\System32\dui70.dll - ok
17:02:52.0759 4612  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
17:02:52.0759 4612  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
17:02:52.0769 4612  [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
17:02:52.0769 4612  C:\Windows\System32\WUDFPlatform.dll - ok
17:02:52.0769 4612  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
17:02:52.0769 4612  C:\Windows\System32\drivers\fltMgr.sys - ok
17:02:52.0769 4612  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
17:02:52.0769 4612  C:\Windows\System32\duser.dll - ok
17:02:52.0779 4612  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
17:02:52.0779 4612  C:\Windows\System32\hid.dll - ok
17:02:52.0779 4612  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
17:02:52.0779 4612  C:\Windows\System32\PSHED.DLL - ok
17:02:52.0779 4612  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
17:02:52.0779 4612  C:\Windows\System32\SndVolSSO.dll - ok
17:02:52.0789 4612  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
17:02:52.0789 4612  C:\Windows\System32\audiodg.exe - ok
17:02:52.0789 4612  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
17:02:52.0789 4612  C:\Windows\System32\dwmapi.dll - ok
17:02:52.0789 4612  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
17:02:52.0789 4612  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
17:02:52.0799 4612  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
17:02:52.0799 4612  C:\Windows\System32\xmllite.dll - ok
17:02:52.0799 4612  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
17:02:52.0799 4612  C:\Windows\System32\WindowsCodecs.dll - ok
17:02:52.0799 4612  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
17:02:52.0799 4612  C:\Windows\System32\AudioSes.dll - ok
17:02:52.0809 4612  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
17:02:52.0809 4612  C:\Windows\System32\AudioEng.dll - ok
17:02:52.0809 4612  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
17:02:52.0809 4612  C:\Windows\System32\AUDIOKSE.dll - ok
17:02:52.0819 4612  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
17:02:52.0819 4612  C:\Windows\System32\ksuser.dll - ok
17:02:52.0819 4612  [ E8A89E16C882BD5FAEFDBB7DAFC1EE34 ] C:\Windows\System32\stapo64.dll
17:02:52.0819 4612  C:\Windows\System32\stapo64.dll - ok
17:02:52.0819 4612  [ 541538942EE5A877C8FBFE1AA1429B40 ] C:\Windows\System32\SFAPO64.DLL
17:02:52.0819 4612  C:\Windows\System32\SFAPO64.DLL - ok
17:02:52.0829 4612  [ 8BC6933830256BB85E371D023A29EC74 ] C:\Windows\System32\SFCOM64.DLL
17:02:52.0829 4612  C:\Windows\System32\SFCOM64.DLL - ok
17:02:52.0829 4612  [ 83F40EED70F47BCA990061E8C763857C ] C:\Windows\System32\SFNHK64.DLL
17:02:52.0829 4612  C:\Windows\System32\SFNHK64.DLL - ok
17:02:52.0829 4612  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
17:02:52.0829 4612  C:\Windows\System32\winbrand.dll - ok
17:02:52.0839 4612  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
17:02:52.0839 4612  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
17:02:52.0839 4612  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
17:02:52.0839 4612  C:\Windows\System32\VaultCredProvider.dll - ok
17:02:52.0849 4612  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
17:02:52.0849 4612  C:\Windows\System32\BioCredProv.dll - ok
17:02:52.0849 4612  [ 3AB183AB4D2C79DCF459CD2C1266B043 ] C:\Windows\System32\cscsvc.dll
17:02:52.0849 4612  C:\Windows\System32\cscsvc.dll - ok
17:02:52.0849 4612  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
17:02:52.0849 4612  C:\Windows\System32\gpsvc.dll - ok
17:02:52.0859 4612  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
17:02:52.0859 4612  C:\Windows\System32\credui.dll - ok
17:02:52.0859 4612  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
17:02:52.0859 4612  C:\Windows\System32\vaultcli.dll - ok
17:02:52.0859 4612  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
17:02:52.0859 4612  C:\Windows\System32\winbio.dll - ok
17:02:52.0869 4612  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
17:02:52.0869 4612  C:\Windows\System32\netapi32.dll - ok
17:02:52.0869 4612  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
17:02:52.0869 4612  C:\Windows\System32\netutils.dll - ok
17:02:52.0879 4612  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
17:02:52.0879 4612  C:\Windows\System32\nlaapi.dll - ok
17:02:52.0879 4612  [ 29910D50542B1AA0F162EF3339C61B6D ] C:\Windows\System32\PeerDist.dll
17:02:52.0879 4612  C:\Windows\System32\PeerDist.dll - ok
17:02:52.0879 4612  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
17:02:52.0879 4612  C:\Windows\System32\profsvc.dll - ok
17:02:52.0889 4612  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
17:02:52.0889 4612  C:\Windows\System32\samcli.dll - ok
17:02:52.0889 4612  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
17:02:52.0889 4612  C:\Windows\System32\themeservice.dll - ok
17:02:52.0889 4612  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
17:02:52.0889 4612  C:\Windows\System32\wkscli.dll - ok
17:02:52.0899 4612  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
17:02:52.0899 4612  C:\Windows\System32\certCredProvider.dll - ok
17:02:52.0899 4612  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
17:02:52.0899 4612  C:\Windows\System32\dsrole.dll - ok
17:02:52.0899 4612  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
17:02:52.0899 4612  C:\Windows\System32\rasplap.dll - ok
17:02:52.0909 4612  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
17:02:52.0909 4612  C:\Windows\System32\slc.dll - ok
17:02:52.0909 4612  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
17:02:52.0909 4612  C:\Windows\System32\taskschd.dll - ok
17:02:52.0909 4612  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
17:02:52.0909 4612  C:\Windows\System32\rasapi32.dll - ok
17:02:52.0919 4612  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
17:02:52.0919 4612  C:\Windows\System32\es.dll - ok
17:02:52.0919 4612  [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
17:02:52.0919 4612  C:\Windows\System32\mstask.dll - ok
17:02:52.0929 4612  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
17:02:52.0929 4612  C:\Windows\System32\rasman.dll - ok
17:02:52.0929 4612  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
17:02:52.0929 4612  C:\Windows\System32\rtutils.dll - ok
17:02:52.0929 4612  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
17:02:52.0929 4612  C:\Windows\System32\comres.dll - ok
17:02:52.0939 4612  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
17:02:52.0939 4612  C:\Windows\System32\Sens.dll - ok
17:02:52.0939 4612  [ 6962B81D4EE7C68C2732CA847446C81F ] C:\Windows\System32\atieclxx.exe
17:02:52.0939 4612  C:\Windows\System32\atieclxx.exe - ok
17:02:52.0939 4612  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
17:02:52.0939 4612  C:\Windows\System32\UXInit.dll - ok
17:02:52.0949 4612  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
17:02:52.0949 4612  C:\Windows\System32\uxsms.dll - ok
17:02:52.0949 4612  [ 8AB4374464C6548FA30E498811D2B324 ] C:\Windows\System32\drivers\vmnet.sys
17:02:52.0949 4612  C:\Windows\System32\drivers\vmnet.sys - ok
17:02:52.0949 4612  [ FB54EF3AA613D2832FD3812E7CB2FC75 ] C:\Windows\System32\drivers\vmnetbridge.sys
17:02:52.0949 4612  C:\Windows\System32\drivers\vmnetbridge.sys - ok
17:02:52.0959 4612  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
17:02:52.0959 4612  C:\Windows\System32\drivers\lltdio.sys - ok
17:02:52.0959 4612  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
17:02:52.0959 4612  C:\Windows\System32\drivers\nwifi.sys - ok
17:02:52.0969 4612  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
17:02:52.0969 4612  C:\Windows\System32\drivers\ndisuio.sys - ok
17:02:52.0969 4612  [ 6D84E3998702E32D09654E524B65EC70 ] C:\Windows\System32\atiadlxx.dll
17:02:52.0969 4612  C:\Windows\System32\atiadlxx.dll - ok
17:02:52.0969 4612  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
17:02:52.0969 4612  C:\Windows\System32\drivers\rspndr.sys - ok
17:02:52.0979 4612  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
17:02:52.0979 4612  C:\Windows\System32\IPHLPAPI.DLL - ok
17:02:52.0979 4612  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
17:02:52.0979 4612  C:\Windows\System32\lmhsvc.dll - ok
17:02:52.0979 4612  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
17:02:52.0979 4612  C:\Windows\System32\nsisvc.dll - ok
17:02:52.0989 4612  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
17:02:52.0989 4612  C:\Windows\System32\oleacc.dll - ok
17:02:52.0989 4612  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
17:02:52.0989 4612  C:\Windows\System32\UIAutomationCore.dll - ok
17:02:52.0989 4612  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
17:02:52.0989 4612  C:\Windows\System32\dhcpcore.dll - ok
17:02:52.0999 4612  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
17:02:52.0999 4612  C:\Windows\System32\nrpsrv.dll - ok
17:02:52.0999 4612  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
17:02:52.0999 4612  C:\Windows\System32\winnsi.dll - ok
17:02:52.0999 4612  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
17:02:52.0999 4612  C:\Windows\System32\dhcpcore6.dll - ok
17:02:53.0009 4612  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
17:02:53.0009 4612  C:\Windows\System32\dnsrslvr.dll - ok
17:02:53.0009 4612  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
17:02:53.0009 4612  C:\Windows\System32\eapphost.dll - ok
17:02:53.0019 4612  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
17:02:53.0019 4612  C:\Windows\System32\eapsvc.dll - ok
17:02:53.0019 4612  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
17:02:53.0019 4612  C:\Windows\System32\FWPUCLNT.DLL - ok
17:02:53.0019 4612  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
17:02:53.0019 4612  C:\Windows\System32\keyiso.dll - ok
17:02:53.0029 4612  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
17:02:53.0029 4612  C:\Windows\System32\dnsext.dll - ok
17:02:53.0029 4612  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
17:02:53.0029 4612  C:\Windows\System32\dhcpcsvc.dll - ok
17:02:53.0029 4612  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
17:02:53.0029 4612  C:\Windows\System32\dhcpcsvc6.dll - ok
17:02:53.0039 4612  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
17:02:53.0039 4612  C:\Windows\System32\umb.dll - ok
17:02:53.0039 4612  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
17:02:53.0039 4612  C:\Windows\System32\wlanmsm.dll - ok
17:02:53.0049 4612  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
17:02:53.0049 4612  C:\Windows\System32\onex.dll - ok
17:02:53.0049 4612  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
17:02:53.0049 4612  C:\Windows\System32\wlansec.dll - ok
17:02:53.0049 4612  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
17:02:53.0049 4612  C:\Windows\System32\eappcfg.dll - ok
17:02:53.0059 4612  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
17:02:53.0059 4612  C:\Windows\System32\eappprxy.dll - ok
17:02:53.0059 4612  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
17:02:53.0059 4612  C:\Windows\System32\wlgpclnt.dll - ok
17:02:53.0059 4612  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
17:02:53.0059 4612  C:\Windows\System32\l2gpstore.dll - ok
17:02:53.0069 4612  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
17:02:53.0069 4612  C:\Windows\System32\WinSCard.dll - ok
17:02:53.0069 4612  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
17:02:53.0069 4612  C:\Windows\System32\wlanutil.dll - ok
17:02:53.0079 4612  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
17:02:53.0079 4612  C:\Windows\System32\msxml6.dll - ok
17:02:53.0079 4612  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
17:02:53.0079 4612  C:\Windows\System32\shsvcs.dll - ok
17:02:53.0079 4612  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
17:02:53.0079 4612  C:\Windows\System32\schedsvc.dll - ok
17:02:53.0089 4612  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
17:02:53.0089 4612  C:\Windows\System32\ktmw32.dll - ok
17:02:53.0089 4612  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
17:02:53.0089 4612  C:\Windows\System32\imageres.dll - ok
17:02:53.0089 4612  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
17:02:53.0089 4612  C:\Windows\System32\taskcomp.dll - ok
17:02:53.0099 4612  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
17:02:53.0099 4612  C:\Windows\System32\fveapi.dll - ok
17:02:53.0099 4612  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
17:02:53.0099 4612  C:\Windows\System32\tbs.dll - ok
17:02:53.0099 4612  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
17:02:53.0099 4612  C:\Windows\System32\fvecerts.dll - ok
17:02:53.0109 4612  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
17:02:53.0109 4612  C:\Windows\System32\drivers\http.sys - ok
17:02:53.0109 4612  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
17:02:53.0109 4612  C:\Windows\System32\spoolsv.exe - ok
17:02:53.0109 4612  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
17:02:53.0109 4612  C:\Windows\System32\wiarpc.dll - ok
17:02:53.0119 4612  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
17:02:53.0119 4612  C:\Windows\System32\BFE.DLL - ok
17:02:53.0119 4612  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
17:02:53.0119 4612  C:\Windows\System32\drivers\bowser.sys - ok
17:02:53.0129 4612  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
17:02:53.0129 4612  C:\Windows\System32\drivers\mpsdrv.sys - ok
17:02:53.0129 4612  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
17:02:53.0129 4612  C:\Windows\System32\drivers\mrxsmb.sys - ok
17:02:53.0129 4612  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
17:02:53.0129 4612  C:\Windows\System32\drivers\mrxsmb10.sys - ok
17:02:53.0139 4612  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
17:02:53.0139 4612  C:\Windows\System32\drivers\mrxsmb20.sys - ok
17:02:53.0139 4612  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
17:02:53.0139 4612  C:\Windows\System32\wkssvc.dll - ok
17:02:53.0139 4612  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
17:02:53.0139 4612  C:\Windows\System32\wfapigp.dll - ok
17:02:53.0149 4612  [ BA207B48AA3D9D73FD4856400F852458 ] C:\Windows\System32\drivers\hcmon.sys
17:02:53.0149 4612  C:\Windows\System32\drivers\hcmon.sys - ok
17:02:53.0149 4612  [ B49CB94DB99519F9DC7F77D2D1F215B5 ] C:\Windows\System32\drivers\vmci.sys
17:02:53.0149 4612  C:\Windows\System32\drivers\vmci.sys - ok
17:02:53.0159 4612  [ F2A8EE62D7161E1598CDD269BF22A03D ] C:\Windows\System32\drivers\vmx86.sys
17:02:53.0159 4612  C:\Windows\System32\drivers\vmx86.sys - ok
17:02:53.0159 4612  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
17:02:53.0159 4612  C:\Windows\System32\mscms.dll - ok
17:02:53.0159 4612  [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:02:53.0159 4612  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
17:02:53.0169 4612  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
17:02:53.0169 4612  C:\Windows\System32\pcasvc.dll - ok
17:02:53.0169 4612  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
17:02:53.0169 4612  C:\Windows\System32\snmptrap.exe - ok
17:02:53.0169 4612  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
17:02:53.0169 4612  C:\Windows\SysWOW64\ntdll.dll - ok
17:02:53.0179 4612  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
17:02:53.0179 4612  C:\Windows\System32\wow64.dll - ok
17:02:53.0179 4612  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
17:02:53.0179 4612  C:\Windows\System32\wow64cpu.dll - ok
17:02:53.0179 4612  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
17:02:53.0179 4612  C:\Windows\System32\wow64win.dll - ok
17:02:53.0189 4612  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
17:02:53.0189 4612  C:\Windows\SysWOW64\kernel32.dll - ok
17:02:53.0189 4612  [ 91A8E32B00BF7899EDAB6783287DDDA6 ] C:\Windows\System32\PeerDistSh.dll
17:02:53.0189 4612  C:\Windows\System32\PeerDistSh.dll - ok
17:02:53.0199 4612  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
17:02:53.0199 4612  C:\Windows\System32\provsvc.dll - ok
17:02:53.0199 4612  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
17:02:53.0199 4612  C:\Windows\SysWOW64\KernelBase.dll - ok
17:02:53.0199 4612  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
17:02:53.0199 4612  C:\Windows\SysWOW64\user32.dll - ok
17:02:53.0209 4612  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
17:02:53.0209 4612  C:\Windows\System32\sstpsvc.dll - ok
17:02:53.0209 4612  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
17:02:53.0209 4612  C:\Windows\SysWOW64\gdi32.dll - ok
17:02:53.0209 4612  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
17:02:53.0209 4612  C:\Windows\SysWOW64\lpk.dll - ok
17:02:53.0219 4612  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
17:02:53.0219 4612  C:\Windows\SysWOW64\usp10.dll - ok
17:02:53.0219 4612  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
17:02:53.0219 4612  C:\Windows\SysWOW64\msvcrt.dll - ok
17:02:53.0219 4612  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
17:02:53.0219 4612  C:\Windows\SysWOW64\advapi32.dll - ok
17:02:53.0229 4612  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
17:02:53.0229 4612  C:\Windows\SysWOW64\sechost.dll - ok
17:02:53.0229 4612  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
17:02:53.0229 4612  C:\Windows\SysWOW64\cryptbase.dll - ok
17:02:53.0239 4612  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
17:02:53.0239 4612  C:\Windows\SysWOW64\rpcrt4.dll - ok
17:02:53.0239 4612  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
17:02:53.0239 4612  C:\Windows\SysWOW64\shell32.dll - ok
17:02:53.0239 4612  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
17:02:53.0239 4612  C:\Windows\SysWOW64\sspicli.dll - ok
17:02:53.0249 4612  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
17:02:53.0249 4612  C:\Windows\SysWOW64\ole32.dll - ok
17:02:53.0249 4612  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
17:02:53.0249 4612  C:\Windows\SysWOW64\shlwapi.dll - ok
17:02:53.0249 4612  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
17:02:53.0249 4612  C:\Windows\SysWOW64\crypt32.dll - ok
17:02:53.0259 4612  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
17:02:53.0259 4612  C:\Windows\SysWOW64\oleaut32.dll - ok
17:02:53.0259 4612  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
17:02:53.0259 4612  C:\Windows\SysWOW64\msasn1.dll - ok
17:02:53.0259 4612  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
17:02:53.0259 4612  C:\Windows\SysWOW64\wintrust.dll - ok
17:02:53.0269 4612  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
17:02:53.0269 4612  C:\Windows\SysWOW64\imm32.dll - ok
17:02:53.0269 4612  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
17:02:53.0269 4612  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
17:02:53.0279 4612  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
17:02:53.0279 4612  C:\Windows\SysWOW64\msctf.dll - ok
17:02:53.0279 4612  [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:02:53.0279 4612  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
17:02:53.0279 4612  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
17:02:53.0279 4612  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
17:02:53.0289 4612  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
17:02:53.0289 4612  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
17:02:53.0289 4612  [ D7016846DBD0D73E6FBF5E68E0EA370E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
17:02:53.0289 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
17:02:53.0289 4612  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
17:02:53.0289 4612  C:\Windows\SysWOW64\version.dll - ok
17:02:53.0299 4612  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
17:02:53.0299 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
17:02:53.0299 4612  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
17:02:53.0299 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
17:02:53.0309 4612  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
17:02:53.0309 4612  C:\Windows\SysWOW64\nsi.dll - ok
17:02:53.0309 4612  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
17:02:53.0309 4612  C:\Windows\SysWOW64\ws2_32.dll - ok
17:02:53.0309 4612  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
17:02:53.0309 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
17:02:53.0319 4612  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
17:02:53.0319 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
17:02:53.0319 4612  [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
17:02:53.0319 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
17:02:53.0329 4612  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
17:02:53.0329 4612  C:\Windows\SysWOW64\wsock32.dll - ok
17:02:53.0329 4612  [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
17:02:53.0329 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
17:02:53.0329 4612  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
17:02:53.0329 4612  C:\Windows\SysWOW64\winmm.dll - ok
17:02:53.0339 4612  [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
17:02:53.0339 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
17:02:53.0339 4612  [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
17:02:53.0339 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
17:02:53.0349 4612  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
17:02:53.0349 4612  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
17:02:53.0349 4612  [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
17:02:53.0349 4612  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
17:02:53.0349 4612  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
17:02:53.0349 4612  C:\Windows\SysWOW64\profapi.dll - ok
17:02:53.0359 4612  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
17:02:53.0359 4612  C:\Windows\SysWOW64\setupapi.dll - ok
17:02:53.0359 4612  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
17:02:53.0359 4612  C:\Windows\SysWOW64\cfgmgr32.dll - ok
17:02:53.0359 4612  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
17:02:53.0359 4612  C:\Windows\SysWOW64\devobj.dll - ok
17:02:53.0369 4612  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
17:02:53.0369 4612  C:\Windows\SysWOW64\userenv.dll - ok
17:02:53.0369 4612  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
17:02:53.0369 4612  C:\Windows\SysWOW64\dnssd.dll - ok
17:02:53.0379 4612  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
17:02:53.0379 4612  C:\Windows\SysWOW64\ntmarta.dll - ok
17:02:53.0379 4612  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
17:02:53.0379 4612  C:\Windows\SysWOW64\Wldap32.dll - ok
17:02:53.0379 4612  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
17:02:53.0379 4612  C:\Windows\SysWOW64\wtsapi32.dll - ok
17:02:53.0389 4612  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
17:02:53.0389 4612  C:\Program Files\Bonjour\mDNSResponder.exe - ok
17:02:53.0389 4612  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
17:02:53.0389 4612  C:\Windows\SysWOW64\mswsock.dll - ok
17:02:53.0389 4612  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
17:02:53.0389 4612  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
17:02:53.0399 4612  [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
17:02:53.0399 4612  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
17:02:53.0399 4612  [ 03728C624D05C2F157BBD46F6B7F6EA0 ] C:\Windows\SysWOW64\wininet.dll
17:02:53.0399 4612  C:\Windows\SysWOW64\wininet.dll - ok
17:02:53.0399 4612  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
17:02:53.0399 4612  C:\Windows\System32\cryptsvc.dll - ok
17:02:53.0409 4612  [ 73BDB1C0801D44BEA5F6749FD340CC0F ] C:\Windows\SysWOW64\iertutil.dll
17:02:53.0409 4612  C:\Windows\SysWOW64\iertutil.dll - ok
17:02:53.0409 4612  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
17:02:53.0409 4612  C:\Windows\System32\cryptnet.dll - ok
17:02:53.0419 4612  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
17:02:53.0419 4612  C:\Windows\System32\dps.dll - ok
17:02:53.0419 4612  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
17:02:53.0419 4612  C:\Windows\System32\vssapi.dll - ok
17:02:53.0419 4612  [ 180D098704551DE37C6299AA888D6821 ] C:\Windows\SysWOW64\urlmon.dll
17:02:53.0419 4612  C:\Windows\SysWOW64\urlmon.dll - ok

 



17:02:53.0429 4612 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] E:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
17:02:53.0429 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe - ok
17:02:53.0429 4612 [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
17:02:53.0429 4612 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
17:02:53.0429 4612 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
17:02:53.0439 4612 C:\Windows\System32\vsstrace.dll - ok
17:02:53.0439 4612 [ AF54247F97CCF3539DE7505C09972FF9 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
17:02:53.0439 4612 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
17:02:53.0439 4612 [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
17:02:53.0439 4612 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
17:02:53.0449 4612 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
17:02:53.0449 4612 C:\Windows\SysWOW64\cryptsp.dll - ok
17:02:53.0449 4612 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
17:02:53.0449 4612 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
17:02:53.0449 4612 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
17:02:53.0449 4612 C:\Windows\SysWOW64\secur32.dll - ok
17:02:53.0459 4612 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
17:02:53.0459 4612 C:\Windows\SysWOW64\winnsi.dll - ok
17:02:53.0459 4612 [ 25F0095BA5A30A31CA538698D6FE234C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
17:02:53.0459 4612 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
17:02:53.0469 4612 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
17:02:53.0469 4612 C:\Windows\SysWOW64\credssp.dll - ok
17:02:53.0469 4612 [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
17:02:53.0469 4612 C:\Windows\SysWOW64\schannel.dll - ok
17:02:53.0469 4612 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
17:02:53.0469 4612 C:\Windows\System32\dssenh.dll - ok
17:02:53.0479 4612 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
17:02:53.0479 4612 C:\Windows\System32\IKEEXT.DLL - ok
17:02:53.0479 4612 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
17:02:53.0479 4612 C:\Windows\System32\netman.dll - ok
17:02:53.0479 4612 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
17:02:53.0479 4612 C:\Windows\System32\nlasvc.dll - ok
17:02:53.0489 4612 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
17:02:53.0489 4612 C:\Windows\System32\aepic.dll - ok
17:02:53.0489 4612 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
17:02:53.0489 4612 C:\Windows\System32\ncsi.dll - ok
17:02:53.0489 4612 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
17:02:53.0489 4612 C:\Windows\System32\sfc.dll - ok
17:02:53.0499 4612 [ D3EAB9BCB2B92EFCA615781C215644C0 ] C:\Windows\SysWOW64\ieframe.dll
17:02:53.0499 4612 C:\Windows\SysWOW64\ieframe.dll - ok
17:02:53.0499 4612 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
17:02:53.0499 4612 C:\Windows\System32\drivers\PEAuth.sys - ok
17:02:53.0499 4612 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
17:02:53.0499 4612 C:\Windows\System32\sfc_os.dll - ok
17:02:53.0509 4612 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
17:02:53.0509 4612 C:\Windows\System32\webio.dll - ok
17:02:53.0509 4612 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
17:02:53.0509 4612 C:\Windows\System32\winhttp.dll - ok
17:02:53.0519 4612 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
17:02:53.0519 4612 C:\Windows\System32\drivers\secdrv.sys - ok
17:02:53.0519 4612 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
17:02:53.0519 4612 C:\Windows\System32\drivers\srvnet.sys - ok
17:02:53.0519 4612 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
17:02:53.0519 4612 C:\Windows\System32\seclogon.dll - ok
17:02:53.0529 4612 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
17:02:53.0529 4612 C:\Windows\System32\ssdpapi.dll - ok
17:02:53.0529 4612 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
17:02:53.0529 4612 C:\Windows\System32\vpnikeapi.dll - ok
17:02:53.0529 4612 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
17:02:53.0529 4612 C:\Windows\System32\httpapi.dll - ok
17:02:53.0539 4612 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
17:02:53.0539 4612 C:\Windows\System32\drivers\tcpipreg.sys - ok
17:02:53.0539 4612 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
17:02:53.0539 4612 C:\Windows\System32\tapisrv.dll - ok
17:02:53.0549 4612 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
17:02:53.0549 4612 C:\Windows\System32\wiaservc.dll - ok
17:02:53.0549 4612 [ 163B05050FCD9635242EC5206C19A182 ] C:\Windows\System32\drivers\vmnetuserif.sys
17:02:53.0549 4612 C:\Windows\System32\drivers\vmnetuserif.sys - ok
17:02:53.0549 4612 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
17:02:53.0549 4612 C:\Windows\System32\trkwks.dll - ok
17:02:53.0559 4612 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
17:02:53.0559 4612 C:\Windows\System32\wiatrace.dll - ok
17:02:53.0559 4612 [ F22098DBDD13C1221C274496B3E18DA7 ] C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
17:02:53.0559 4612 C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe - ok
17:02:53.0559 4612 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
17:02:53.0559 4612 C:\Windows\SysWOW64\oleacc.dll - ok
17:02:53.0569 4612 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
17:02:53.0569 4612 C:\Windows\SysWOW64\psapi.dll - ok
17:02:53.0569 4612 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
17:02:53.0569 4612 C:\Windows\SysWOW64\shfolder.dll - ok
17:02:53.0579 4612 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
17:02:53.0579 4612 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
17:02:53.0579 4612 [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
17:02:53.0579 4612 C:\Windows\SysWOW64\cryptui.dll - ok
17:02:53.0579 4612 [ 94108996405446AE95F56606FD702A43 ] C:\Windows\SysWOW64\vmnat.exe
17:02:53.0579 4612 C:\Windows\SysWOW64\vmnat.exe - ok
17:02:53.0589 4612 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
17:02:53.0589 4612 C:\Windows\SysWOW64\netapi32.dll - ok
17:02:53.0589 4612 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
17:02:53.0589 4612 C:\Windows\SysWOW64\wer.dll - ok
17:02:53.0589 4612 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
17:02:53.0589 4612 C:\Windows\SysWOW64\dnsapi.dll - ok
17:02:53.0599 4612 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
17:02:53.0599 4612 C:\Windows\SysWOW64\netutils.dll - ok
17:02:53.0599 4612 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
17:02:53.0599 4612 C:\Windows\SysWOW64\rasapi32.dll - ok
17:02:53.0599 4612 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
17:02:53.0599 4612 C:\Windows\SysWOW64\srvcli.dll - ok
17:02:53.0609 4612 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
17:02:53.0609 4612 C:\Windows\SysWOW64\wkscli.dll - ok
17:02:53.0609 4612 [ E61C910E2DDF4797C1B1F9239636E894 ] C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys
17:02:53.0609 4612 C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys - ok
17:02:53.0619 4612 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
17:02:53.0619 4612 C:\Windows\SysWOW64\mpr.dll - ok
17:02:53.0619 4612 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
17:02:53.0619 4612 C:\Windows\SysWOW64\msi.dll - ok
17:02:53.0619 4612 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
17:02:53.0619 4612 C:\Windows\SysWOW64\rasman.dll - ok
17:02:53.0629 4612 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
17:02:53.0629 4612 C:\Program Files\Windows Defender\MpSvc.dll - ok
17:02:53.0629 4612 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
17:02:53.0629 4612 C:\Windows\System32\wbemcomn.dll - ok
17:02:53.0629 4612 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
17:02:53.0629 4612 C:\Windows\System32\wbem\WMIsvc.dll - ok
17:02:53.0639 4612 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
17:02:53.0639 4612 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
17:02:53.0639 4612 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
17:02:53.0639 4612 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
17:02:53.0649 4612 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
17:02:53.0649 4612 C:\Windows\System32\drivers\srv2.sys - ok
17:02:53.0649 4612 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
17:02:53.0649 4612 C:\Windows\System32\rasmans.dll - ok
17:02:53.0649 4612 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
17:02:53.0649 4612 C:\Program Files\Windows Defender\MpClient.dll - ok
17:02:53.0659 4612 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
17:02:53.0659 4612 C:\Windows\System32\rastapi.dll - ok
17:02:53.0659 4612 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
17:02:53.0659 4612 C:\Windows\System32\tapi32.dll - ok
17:02:53.0659 4612 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
17:02:53.0659 4612 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
17:02:53.0669 4612 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
17:02:53.0669 4612 C:\Windows\SysWOW64\Faultrep.dll - ok
17:02:53.0669 4612 [ 8BB18290BAA79BFB99475223E0585CA5 ] C:\Windows\SysWOW64\vmnetdhcp.exe
17:02:53.0669 4612 C:\Windows\SysWOW64\vmnetdhcp.exe - ok
17:02:53.0669 4612 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
17:02:53.0669 4612 C:\Windows\System32\wbem\fastprox.dll - ok
17:02:53.0679 4612 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
17:02:53.0679 4612 C:\Windows\System32\wbem\WinMgmtR.dll - ok
17:02:53.0679 4612 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
17:02:53.0679 4612 C:\Windows\System32\iphlpsvc.dll - ok
17:02:53.0689 4612 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
17:02:53.0689 4612 C:\Windows\System32\ntdsapi.dll - ok
17:02:53.0689 4612 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
17:02:53.0689 4612 C:\Windows\System32\unimdm.tsp - ok
17:02:53.0689 4612 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
17:02:53.0689 4612 C:\Windows\System32\uniplat.dll - ok
17:02:53.0699 4612 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
17:02:53.0699 4612 C:\Windows\System32\wbem\wbemprox.dll - ok
17:02:53.0699 4612 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
17:02:53.0699 4612 C:\Windows\System32\drivers\srv.sys - ok
17:02:53.0699 4612 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
17:02:53.0699 4612 C:\Windows\System32\hidphone.tsp - ok
17:02:53.0709 4612 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
17:02:53.0709 4612 C:\Windows\System32\kmddsp.tsp - ok
17:02:53.0709 4612 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
17:02:53.0709 4612 C:\Windows\System32\ndptsp.tsp - ok
17:02:53.0719 4612 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
17:02:53.0719 4612 C:\Windows\System32\sqmapi.dll - ok
17:02:53.0719 4612 [ 7ABCE518D36D6D1749FADB5A3825C976 ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnHips.dll
17:02:53.0719 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnHips.dll - ok
17:02:53.0719 4612 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
17:02:53.0719 4612 C:\Windows\System32\wdscore.dll - ok
17:02:53.0729 4612 [ 6FC9B272B838EE8F5FA0E4A7E971154A ] C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
17:02:53.0729 4612 C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe - ok
17:02:53.0729 4612 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
17:02:53.0729 4612 C:\Windows\System32\rasppp.dll - ok
17:02:53.0729 4612 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
17:02:53.0729 4612 C:\Windows\System32\vpnike.dll - ok
17:02:53.0739 4612 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
17:02:53.0739 4612 C:\Windows\System32\hnetcfg.dll - ok
17:02:53.0739 4612 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
17:02:53.0739 4612 C:\Windows\System32\netcfgx.dll - ok
17:02:53.0739 4612 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
17:02:53.0739 4612 C:\Windows\SysWOW64\samcli.dll - ok
17:02:53.0749 4612 [ C060CD4F3ABA9AA36CBF286E7E8E6D97 ] C:\Program Files (x86)\VMware\VMware Workstation\vmwarebase.dll
17:02:53.0749 4612 C:\Program Files (x86)\VMware\VMware Workstation\vmwarebase.dll - ok
17:02:53.0749 4612 [ FFDB4D14C94459EA2F8864276942B5A2 ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnScan.dll
17:02:53.0749 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnScan.dll - ok
17:02:53.0749 4612 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
17:02:53.0749 4612 C:\Windows\System32\raschap.dll - ok
17:02:53.0759 4612 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
17:02:53.0759 4612 C:\Windows\System32\nci.dll - ok
17:02:53.0759 4612 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
17:02:53.0759 4612 C:\Program Files\Bonjour\mdnsNSP.dll - ok
17:02:53.0769 4612 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
17:02:53.0769 4612 C:\Windows\System32\wbem\wbemcore.dll - ok
17:02:53.0769 4612 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
17:02:53.0769 4612 C:\Windows\SysWOW64\winspool.drv - ok
17:02:53.0769 4612 [ E7E294C689C28FE463AB4F94AADEE3A6 ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnAmon.dll
17:02:53.0769 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnAmon.dll - ok
17:02:53.0779 4612 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
17:02:53.0779 4612 C:\Windows\SysWOW64\webio.dll - ok
17:02:53.0779 4612 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
17:02:53.0779 4612 C:\Windows\SysWOW64\winhttp.dll - ok
17:02:53.0779 4612 [ 24064F59947F03ADACD3F656DB4ED634 ] C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll
17:02:53.0779 4612 C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll - ok
17:02:53.0789 4612 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
17:02:53.0789 4612 C:\Windows\System32\wbem\esscli.dll - ok
17:02:53.0789 4612 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
17:02:53.0789 4612 C:\Windows\System32\wbem\wbemsvc.dll - ok
17:02:53.0799 4612 [ 30BC44112F6A9D83D691E39E9D0943C6 ] C:\Program Files (x86)\VMware\VMware Workstation\iconv.dll
17:02:53.0799 4612 C:\Program Files (x86)\VMware\VMware Workstation\iconv.dll - ok
17:02:53.0799 4612 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
17:02:53.0799 4612 C:\Windows\System32\wbem\repdrvfs.dll - ok
17:02:53.0799 4612 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
17:02:53.0799 4612 C:\Windows\System32\wbem\wmiutils.dll - ok
17:02:53.0809 4612 [ 3224B80217D8B32657E10F730687CEBE ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnEmon.dll
17:02:53.0809 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnEmon.dll - ok
17:02:53.0809 4612 [ AE11B1CA7DE39935681F224DDFC65A34 ] C:\Program Files (x86)\VMware\VMware Workstation\zlib1.dll
17:02:53.0809 4612 C:\Program Files (x86)\VMware\VMware Workstation\zlib1.dll - ok
17:02:53.0819 4612 [ CEE260867EF4D729F9CE164FE51D3B51 ] C:\Program Files (x86)\VMware\VMware Workstation\libeay32.dll
17:02:53.0819 4612 C:\Program Files (x86)\VMware\VMware Workstation\libeay32.dll - ok
17:02:53.0819 4612 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
17:02:53.0819 4612 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
17:02:53.0819 4612 [ FD0022023FB4553CB8AACAB928D9CF20 ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnDmon.dll
17:02:53.0819 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnDmon.dll - ok
17:02:53.0829 4612 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
17:02:53.0829 4612 C:\Windows\System32\ncobjapi.dll - ok
17:02:53.0829 4612 [ 675AAFE80FDCB8723CF1B49F03BCCD0F ] C:\Program Files (x86)\VMware\VMware Workstation\ssleay32.dll
17:02:53.0829 4612 C:\Program Files (x86)\VMware\VMware Workstation\ssleay32.dll - ok
17:02:53.0829 4612 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
17:02:53.0829 4612 C:\Windows\System32\wbem\wbemess.dll - ok
17:02:53.0839 4612 [ DA6710B568C793AAA50B3DF05A91554A ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnEpfw.dll
17:02:53.0839 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnEpfw.dll - ok
17:02:53.0839 4612 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
17:02:53.0839 4612 C:\Windows\SysWOW64\rsaenh.dll - ok
17:02:53.0849 4612 [ A59403B417D247CB578C4C94987F0EAB ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnSmon.dll
17:02:53.0849 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnSmon.dll - ok
17:02:53.0849 4612 [ 95C3026E5FBD9E8700F07EBEDAD9E6BA ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnUpdate.dll
17:02:53.0849 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnUpdate.dll - ok
17:02:53.0849 4612 [ DE0D00C9CB3368C49BBB8B9BCA7B3D34 ] E:\Program Files\ESET\ESET Smart Security\x86\updater.dll
17:02:53.0849 4612 E:\Program Files\ESET\ESET Smart Security\x86\updater.dll - ok
17:02:53.0859 4612 [ 53867EB71ECDDCC5A11844ECAC6E7C7C ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnMailPlugins.dll
17:02:53.0859 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnMailPlugins.dll - ok
17:02:53.0859 4612 [ 9C16C9ECC7D98123808F1D760655DCA7 ] E:\Program Files\ESET\ESET Smart Security\x86\ekrnParental.dll
17:02:53.0859 4612 E:\Program Files\ESET\ESET Smart Security\x86\ekrnParental.dll - ok
17:02:53.0859 4612 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
17:02:53.0859 4612 C:\Windows\System32\srvsvc.dll - ok
17:02:53.0869 4612 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
17:02:53.0869 4612 C:\Windows\System32\browser.dll - ok
17:02:53.0869 4612 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
17:02:53.0869 4612 C:\Windows\System32\ipnathlp.dll - ok
17:02:53.0879 4612 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
17:02:53.0879 4612 C:\Windows\System32\mprapi.dll - ok
17:02:53.0879 4612 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
17:02:53.0879 4612 C:\Windows\System32\netshell.dll - ok
17:02:53.0879 4612 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
17:02:53.0879 4612 C:\Windows\System32\netmsg.dll - ok
17:02:53.0889 4612 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
17:02:53.0889 4612 C:\Windows\System32\clusapi.dll - ok
17:02:53.0889 4612 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
17:02:53.0889 4612 C:\Windows\System32\resutils.dll - ok
17:02:53.0889 4612 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
17:02:53.0889 4612 C:\Windows\System32\sscore.dll - ok
17:02:53.0899 4612 [ A42E7748BE906434C5FD17161D168C20 ] C:\Windows\SysWOW64\schedcli.dll
17:02:53.0899 4612 C:\Windows\SysWOW64\schedcli.dll - ok
17:02:53.0899 4612 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
17:02:53.0899 4612 C:\Windows\SysWOW64\sfc.dll - ok
17:02:53.0899 4612 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
17:02:53.0899 4612 C:\Windows\SysWOW64\sfc_os.dll - ok
17:02:53.0909 4612 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
17:02:53.0909 4612 C:\Windows\System32\rasadhlp.dll - ok
17:02:53.0909 4612 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
17:02:53.0909 4612 C:\Windows\System32\esent.dll - ok
17:02:53.0919 4612 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
17:02:53.0919 4612 C:\Windows\System32\aeevts.dll - ok
17:02:53.0919 4612 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
17:02:53.0919 4612 C:\Program Files\Windows Defender\MpRTP.dll - ok
17:02:53.0919 4612 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
17:02:53.0919 4612 C:\Windows\System32\tdh.dll - ok
17:02:53.0929 4612 [ DA30D3C73032EA0B2100016F626512A9 ] E:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpasdlta.vdm
17:02:53.0929 4612 E:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpasdlta.vdm - ok
17:02:53.0929 4612 [ 747E9FD93A32202BE6DC5D1321BE977C ] E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17308481-0E61-4A52-AE0B-DF8EB8C6124D}\mpengine.dll
17:02:53.0929 4612 E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17308481-0E61-4A52-AE0B-DF8EB8C6124D}\mpengine.dll - ok
17:02:53.0939 4612 [ A58F4E888905822C479B4CDC642AE278 ] E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17308481-0E61-4A52-AE0B-DF8EB8C6124D}\mpasbase.vdm
17:02:53.0939 4612 E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17308481-0E61-4A52-AE0B-DF8EB8C6124D}\mpasbase.vdm - ok
17:02:53.0939 4612 [ 18497156575422C8838F3CEC3C05DDEB ] E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17308481-0E61-4A52-AE0B-DF8EB8C6124D}\mpasdlta.vdm
17:02:53.0939 4612 E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{17308481-0E61-4A52-AE0B-DF8EB8C6124D}\mpasdlta.vdm - ok
17:02:53.0939 4612 [ DA30D3C73032EA0B2100016F626512A9 ] E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8E3E4006-8A31-43DD-B8A9-2B14E6AB52BF}\mpasdlta.vdm
17:02:53.0939 4612 E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8E3E4006-8A31-43DD-B8A9-2B14E6AB52BF}\mpasdlta.vdm - ok
17:02:53.0949 4612 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
17:02:53.0949 4612 C:\Windows\SysWOW64\perfos.dll - ok
17:02:53.0949 4612 [ 752F8E96BAB993517838315508FB82CB ] C:\Windows\SysWOW64\perfproc.dll
17:02:53.0949 4612 C:\Windows\SysWOW64\perfproc.dll - ok
17:02:53.0949 4612 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
17:02:53.0949 4612 C:\Windows\SysWOW64\ncrypt.dll - ok
17:02:53.0959 4612 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
17:02:53.0959 4612 C:\Windows\SysWOW64\bcrypt.dll - ok
17:02:53.0959 4612 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
17:02:53.0959 4612 C:\Windows\SysWOW64\wlanapi.dll - ok
17:02:53.0969 4612 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
17:02:53.0969 4612 C:\Program Files\Windows Defender\MsMpLics.dll - ok
17:02:53.0969 4612 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
17:02:53.0969 4612 C:\Windows\SysWOW64\wlanutil.dll - ok
17:02:53.0969 4612 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
17:02:53.0969 4612 C:\Windows\SysWOW64\clbcatq.dll - ok
17:02:53.0979 4612 [ 6383C60EC0133B14F5705F96369421B2 ] C:\Windows\SysWOW64\hnetcfg.dll
17:02:53.0979 4612 C:\Windows\SysWOW64\hnetcfg.dll - ok
17:02:53.0979 4612 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
17:02:53.0979 4612 C:\Windows\SysWOW64\atl.dll - ok
17:02:53.0979 4612 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
17:02:53.0979 4612 C:\Windows\SysWOW64\gpapi.dll - ok
17:02:53.0989 4612 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
17:02:53.0989 4612 C:\Windows\SysWOW64\slc.dll - ok
17:02:53.0989 4612 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
17:02:53.0989 4612 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
17:02:53.0989 4612 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
17:02:53.0989 4612 C:\Windows\SysWOW64\samlib.dll - ok
17:02:53.0999 4612 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
17:02:53.0999 4612 C:\Windows\SysWOW64\wbemcomn.dll - ok
17:02:53.0999 4612 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
17:02:53.0999 4612 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
17:02:53.0999 4612 [ 53658F8E11D9E72F50FD9E1CF34AB0CC ] E:\Program Files\ESET\ESET Smart Security\x86\eplgOE.dll
17:02:53.0999 4612 E:\Program Files\ESET\ESET Smart Security\x86\eplgOE.dll - ok
17:02:54.0009 4612 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
17:02:54.0009 4612 C:\Windows\System32\wer.dll - ok
17:02:54.0009 4612 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
17:02:54.0009 4612 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
17:02:54.0019 4612 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
17:02:54.0019 4612 C:\Windows\SysWOW64\apphelp.dll - ok
17:02:54.0019 4612 [ 51138BEEA3E2C21EC44D0932C71762A8 ] C:\Windows\SysWOW64\rundll32.exe
17:02:54.0019 4612 C:\Windows\SysWOW64\rundll32.exe - ok
17:02:54.0019 4612 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
17:02:54.0019 4612 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
17:02:54.0029 4612 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
17:02:54.0029 4612 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
17:02:54.0029 4612 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
17:02:54.0029 4612 C:\Windows\SysWOW64\ntdsapi.dll - ok
17:02:54.0029 4612 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
17:02:54.0029 4612 C:\Windows\System32\wbem\NCProv.dll - ok
17:02:54.0039 4612 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
17:02:54.0039 4612 C:\Windows\SysWOW64\wship6.dll - ok
17:02:54.0039 4612 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
17:02:54.0039 4612 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
17:02:54.0049 4612 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
17:02:54.0049 4612 C:\Windows\SysWOW64\rasadhlp.dll - ok
17:02:54.0049 4612 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
17:02:54.0049 4612 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
17:02:54.0049 4612 [ 41DF7355A5A907E2C1D7804EC028965D ] C:\Windows\System32\wermgr.exe
17:02:54.0049 4612 C:\Windows\System32\wermgr.exe - ok
17:02:54.0059 4612 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
17:02:54.0059 4612 C:\Windows\System32\wscapi.dll - ok
17:02:54.0059 4612 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
17:02:54.0059 4612 C:\Windows\SysWOW64\wscisvif.dll - ok
17:02:54.0059 4612 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
17:02:54.0059 4612 C:\Windows\System32\wdi.dll - ok
17:02:54.0069 4612 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
17:02:54.0069 4612 C:\Windows\SysWOW64\wscapi.dll - ok
17:02:54.0069 4612 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
17:02:54.0069 4612 C:\Windows\System32\localspl.dll - ok
17:02:54.0079 4612 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
17:02:54.0079 4612 C:\Windows\SysWOW64\rtutils.dll - ok
17:02:54.0079 4612 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
17:02:54.0079 4612 C:\Windows\System32\spoolss.dll - ok
17:02:54.0079 4612 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
17:02:54.0079 4612 C:\Windows\System32\diagperf.dll - ok
17:02:54.0089 4612 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
17:02:54.0089 4612 C:\Windows\System32\hidserv.dll - ok
17:02:54.0089 4612 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
17:02:54.0089 4612 C:\Windows\System32\IPSECSVC.DLL - ok
17:02:54.0089 4612 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
17:02:54.0089 4612 C:\Windows\System32\perftrack.dll - ok
17:02:54.0099 4612 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
17:02:54.0099 4612 C:\Windows\System32\aelupsvc.dll - ok
17:02:54.0099 4612 [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
17:02:54.0099 4612 C:\Windows\System32\bthserv.dll - ok
17:02:54.0099 4612 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
17:02:54.0099 4612 C:\Windows\System32\winspool.drv - ok
17:02:54.0109 4612 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
17:02:54.0109 4612 C:\Windows\System32\PrintIsolationProxy.dll - ok
17:02:54.0109 4612 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
17:02:54.0109 4612 C:\Windows\System32\radardt.dll - ok
17:02:54.0119 4612 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
17:02:54.0119 4612 C:\Windows\System32\shfolder.dll - ok
17:02:54.0119 4612 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
17:02:54.0119 4612 C:\Windows\System32\wpdbusenum.dll - ok
17:02:54.0119 4612 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
17:02:54.0119 4612 C:\Windows\System32\FXSMON.dll - ok
17:02:54.0129 4612 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
17:02:54.0129 4612 C:\Windows\System32\FwRemoteSvr.dll - ok
17:02:54.0129 4612 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
17:02:54.0129 4612 C:\Windows\System32\PortableDeviceApi.dll - ok
17:02:54.0129 4612 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
17:02:54.0129 4612 C:\Windows\System32\pnpts.dll - ok
17:02:54.0139 4612 [ 62A0ED06E9FF55EEF51B27EC4839EE0B ] C:\Windows\System32\hpz3lw71.dll
17:02:54.0139 4612 C:\Windows\System32\hpz3lw71.dll - ok
17:02:54.0139 4612 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
17:02:54.0139 4612 C:\Windows\System32\wscisvif.dll - ok
17:02:54.0139 4612 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
17:02:54.0139 4612 C:\Windows\System32\Apphlpdm.dll - ok
17:02:54.0149 4612 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
17:02:54.0149 4612 C:\Windows\System32\wdiasqmmodule.dll - ok
17:02:54.0149 4612 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
17:02:54.0149 4612 C:\Windows\System32\tcpmon.dll - ok
17:02:54.0159 4612 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
17:02:54.0159 4612 C:\Windows\System32\wscproxystub.dll - ok
17:02:54.0159 4612 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
17:02:54.0159 4612 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
17:02:54.0159 4612 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
17:02:54.0159 4612 C:\Windows\System32\npmproxy.dll - ok
17:02:54.0169 4612 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
17:02:54.0169 4612 C:\Windows\System32\snmpapi.dll - ok
17:02:54.0169 4612 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
17:02:54.0169 4612 C:\Windows\System32\drivers\WUDFRd.sys - ok
17:02:54.0169 4612 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
17:02:54.0169 4612 C:\Windows\System32\SensApi.dll - ok
17:02:54.0179 4612 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
17:02:54.0179 4612 C:\Windows\System32\wsnmp32.dll - ok
17:02:54.0179 4612 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
17:02:54.0179 4612 C:\Windows\System32\drivers\WUDFPf.sys - ok
17:02:54.0189 4612 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
17:02:54.0189 4612 C:\Windows\System32\taskhost.exe - ok
17:02:54.0189 4612 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
17:02:54.0189 4612 C:\Windows\System32\WUDFSvc.dll - ok
17:02:54.0189 4612 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
17:02:54.0189 4612 C:\Windows\System32\usbmon.dll - ok
17:02:54.0199 4612 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
17:02:54.0199 4612 C:\Windows\System32\WUDFHost.exe - ok
17:02:54.0199 4612 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
17:02:54.0199 4612 C:\Windows\System32\dimsjob.dll - ok
17:02:54.0199 4612 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
17:02:54.0199 4612 C:\Windows\System32\NapiNSP.dll - ok
17:02:54.0209 4612 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
17:02:54.0209 4612 C:\Windows\System32\WSDMon.dll - ok
17:02:54.0209 4612 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
17:02:54.0209 4612 C:\Windows\System32\pnrpnsp.dll - ok
17:02:54.0219 4612 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
17:02:54.0219 4612 C:\Windows\System32\WSDApi.dll - ok
17:02:54.0219 4612 [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
17:02:54.0219 4612 C:\Windows\System32\wshbth.dll - ok
17:02:54.0219 4612 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
17:02:54.0219 4612 C:\Windows\System32\WUDFx.dll - ok
17:02:54.0229 4612 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
17:02:54.0229 4612 C:\Windows\System32\webservices.dll - ok
17:02:54.0229 4612 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
17:02:54.0229 4612 C:\Windows\System32\pautoenr.dll - ok
17:02:54.0229 4612 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
17:02:54.0229 4612 C:\Windows\System32\dbghelp.dll - ok
17:02:54.0239 4612 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
17:02:54.0239 4612 C:\Windows\System32\winrnr.dll - ok
17:02:54.0239 4612 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
17:02:54.0239 4612 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
17:02:54.0239 4612 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
17:02:54.0239 4612 C:\Windows\System32\certcli.dll - ok
17:02:54.0249 4612 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
17:02:54.0249 4612 C:\Windows\System32\fundisc.dll - ok
17:02:54.0249 4612 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
17:02:54.0249 4612 C:\Windows\System32\WMVCORE.DLL - ok
17:02:54.0249 4612 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
17:02:54.0249 4612 C:\Windows\System32\CertEnroll.dll - ok
17:02:54.0259 4612 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
17:02:54.0259 4612 C:\Windows\System32\fdPnp.dll - ok
17:02:54.0259 4612 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
17:02:54.0259 4612 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
17:02:54.0269 4612 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
17:02:54.0269 4612 C:\Windows\System32\WMASF.DLL - ok
17:02:54.0269 4612 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
17:02:54.0269 4612 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
17:02:54.0269 4612 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69 ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
17:02:54.0269 4612 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
17:02:54.0279 4612 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
17:02:54.0279 4612 C:\Windows\System32\PortableDeviceTypes.dll - ok
17:02:54.0279 4612 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
17:02:54.0279 4612 C:\Windows\System32\dllhost.exe - ok
17:02:54.0279 4612 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
17:02:54.0279 4612 C:\Windows\System32\win32spl.dll - ok
17:02:54.0289 4612 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
17:02:54.0289 4612 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
17:02:54.0289 4612 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
17:02:54.0289 4612 C:\Windows\System32\inetpp.dll - ok
17:02:54.0299 4612 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
17:02:54.0299 4612 C:\Windows\System32\IDStore.dll - ok
17:02:54.0299 4612 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
17:02:54.0299 4612 C:\Windows\SysWOW64\winsta.dll - ok
17:02:54.0299 4612 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
17:02:54.0299 4612 C:\Windows\System32\HotStartUserAgent.dll - ok
17:02:54.0309 4612 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
17:02:54.0309 4612 C:\Windows\System32\taskeng.exe - ok
17:02:54.0309 4612 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
17:02:54.0309 4612 C:\Windows\System32\MsCtfMonitor.dll - ok
17:02:54.0309 4612 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
17:02:54.0309 4612 C:\Windows\System32\cscapi.dll - ok
17:02:54.0319 4612 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
17:02:54.0319 4612 C:\Windows\System32\msutb.dll - ok
17:02:54.0319 4612 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
17:02:54.0319 4612 C:\Windows\System32\PlaySndSrv.dll - ok
17:02:54.0329 4612 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
17:02:54.0329 4612 C:\Windows\System32\TSChannel.dll - ok
17:02:54.0329 4612 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:02:54.0329 4612 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
17:02:54.0329 4612 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
17:02:54.0329 4612 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
17:02:54.0339 4612 [ E829C45F0D77852C43BE99C4B1BD215D ] C:\Windows\System32\ieframe.dll
17:02:54.0339 4612 C:\Windows\System32\ieframe.dll - ok
17:02:54.0339 4612 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
17:02:54.0339 4612 C:\Windows\System32\mpr.dll - ok
17:02:54.0339 4612 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
17:02:54.0339 4612 C:\Windows\SysWOW64\imagehlp.dll - ok
17:02:54.0349 4612 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
17:02:54.0349 4612 C:\Windows\System32\userinit.exe - ok
17:02:54.0349 4612 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
17:02:54.0349 4612 C:\Windows\SysWOW64\cscapi.dll - ok
17:02:54.0349 4612 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
17:02:54.0349 4612 C:\Windows\System32\dwm.exe - ok
17:02:54.0359 4612 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
17:02:54.0359 4612 C:\Windows\SysWOW64\dbghelp.dll - ok
17:02:54.0359 4612 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
17:02:54.0359 4612 C:\Windows\System32\dwmcore.dll - ok
17:02:54.0369 4612 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
17:02:54.0369 4612 C:\Windows\System32\dwmredir.dll - ok
17:02:54.0369 4612 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
17:02:54.0369 4612 C:\Windows\System32\d3d10_1.dll - ok
17:02:54.0369 4612 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
17:02:54.0369 4612 C:\Windows\System32\d3d10_1core.dll - ok
17:02:54.0379 4612 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
17:02:54.0379 4612 C:\Windows\System32\dxgi.dll - ok
17:02:54.0379 4612 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
17:02:54.0379 4612 C:\Windows\explorer.exe - ok
17:02:54.0379 4612 [ 0EC01B6286D4699565664A616950F202 ] C:\Windows\System32\aticfx64.dll
17:02:54.0379 4612 C:\Windows\System32\aticfx64.dll - ok
17:02:54.0389 4612 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
17:02:54.0389 4612 C:\Windows\System32\wsock32.dll - ok
17:02:54.0389 4612 [ F2F84A067079F8F466357D28E6DDD5F1 ] C:\Windows\System32\atidxx64.dll
17:02:54.0389 4612 C:\Windows\System32\atidxx64.dll - ok
17:02:54.0389 4612 [ 67B65B6ABE5D5911C180D43DEBF1AEFD ] C:\Windows\System32\atiuxp64.dll
17:02:54.0389 4612 C:\Windows\System32\atiuxp64.dll - ok
17:02:54.0399 4612 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
17:02:54.0399 4612 C:\Windows\System32\msi.dll - ok
17:02:54.0399 4612 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
17:02:54.0399 4612 C:\Windows\System32\ExplorerFrame.dll - ok
17:02:54.0409 4612 [ F152755F131ADFE452D534F4E9383590 ] C:\Windows\System32\Faultrep.dll
17:02:54.0409 4612 C:\Windows\System32\Faultrep.dll - ok
17:02:54.0409 4612 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
17:02:54.0409 4612 C:\Windows\System32\schedcli.dll - ok
17:02:54.0409 4612 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
17:02:54.0409 4612 C:\Windows\System32\wlanapi.dll - ok
17:02:54.0419 4612 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
17:02:54.0419 4612 C:\Windows\System32\EhStorShell.dll - ok
17:02:54.0419 4612 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
17:02:54.0419 4612 C:\Windows\System32\uDWM.dll - ok
17:02:54.0419 4612 [ F1D2ABA7038E01F7465E36F2057E7C13 ] C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
17:02:54.0419 4612 C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL - ok
17:02:54.0429 4612 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
17:02:54.0429 4612 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
17:02:54.0429 4612 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
17:02:54.0429 4612 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
17:02:54.0439 4612 [ 57AC86AC664CC774C861DAB2B1D1E978 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll
17:02:54.0439 4612 C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_0a1fd3a3a768b895\ATL90.dll - ok
17:02:54.0439 4612 [ 5ABAEB53E6ECF7878A5C4C4ABED92050 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
17:02:54.0439 4612 C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
17:02:54.0439 4612 [ 66E3C667D853DF349E310568F60B9B6A ] C:\PROGRA~1\MICROS~1\Office14\1033\GrooveIntlResource.dll
17:02:54.0439 4612 C:\PROGRA~1\MICROS~1\Office14\1033\GrooveIntlResource.dll - ok
17:02:54.0449 4612 [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll
17:02:54.0449 4612 C:\Windows\System32\cscui.dll - ok
17:02:54.0449 4612 [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll
17:02:54.0449 4612 C:\Windows\System32\cscdll.dll - ok
17:02:54.0449 4612 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
17:02:54.0449 4612 C:\Windows\System32\ntshrui.dll - ok
17:02:54.0459 4612 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
17:02:54.0459 4612 C:\Windows\System32\IconCodecService.dll - ok
17:02:54.0459 4612 [ 26D652191B51854E66084DDAEE69EC65 ] C:\Windows\System32\verifier.dll
17:02:54.0459 4612 C:\Windows\System32\verifier.dll - ok
17:02:54.0469 4612 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
17:02:54.0469 4612 C:\Windows\System32\appinfo.dll - ok
17:02:54.0469 4612 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
17:02:54.0469 4612 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
17:02:54.0469 4612 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
17:02:54.0469 4612 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
17:02:54.0479 4612 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
17:02:54.0479 4612 C:\Windows\SysWOW64\mstask.dll - ok
17:02:54.0479 4612 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
17:02:54.0479 4612 C:\Windows\System32\runonce.exe - ok
17:02:54.0489 4612 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
17:02:54.0489 4612 C:\Windows\SysWOW64\runonce.exe - ok
17:02:54.0489 4612 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
17:02:54.0489 4612 C:\Windows\SysWOW64\uxtheme.dll - ok
17:02:54.0489 4612 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
17:02:54.0489 4612 C:\Windows\SysWOW64\propsys.dll - ok
17:02:54.0499 4612 [ 660C8E78B94F483E44B0243A774A4746 ] C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
17:02:54.0499 4612 C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL - ok
17:02:54.0499 4612 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
17:02:54.0499 4612 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
17:02:54.0499 4612 [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
17:02:54.0499 4612 C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
17:02:54.0509 4612 [ E9901A7E569C4156FDA69F5C9356B8ED ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
17:02:54.0509 4612 C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
17:02:54.0509 4612 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
17:02:54.0509 4612 C:\Windows\SysWOW64\cmd.exe - ok
17:02:54.0509 4612 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
17:02:54.0509 4612 C:\Windows\System32\conhost.exe - ok
17:02:54.0519 4612 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
17:02:54.0519 4612 C:\Windows\SysWOW64\winbrand.dll - ok
17:02:54.0519 4612 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
17:02:54.0519 4612 C:\Windows\SysWOW64\shdocvw.dll - ok
17:02:54.0529 4612 [ 178A34E5554DCE485E1262DDF027960C ] E:\Users\Sol Chitlins\AppData\Local\Temp\01AA60C8-A0A8-432E-B1B9-9D9AD21C7AC3.exe
17:02:54.0529 4612 E:\Users\Sol Chitlins\AppData\Local\Temp\01AA60C8-A0A8-432E-B1B9-9D9AD21C7AC3.exe - ok
17:02:54.0529 4612 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
17:02:54.0529 4612 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
17:02:54.0529 4612 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
17:02:54.0529 4612 C:\Windows\SysWOW64\cryptnet.dll - ok
17:02:54.0539 4612 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
17:02:54.0539 4612 C:\Windows\SysWOW64\SensApi.dll - ok
17:02:54.0539 4612 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
17:02:54.0539 4612 C:\Windows\SysWOW64\dwmapi.dll - ok
17:02:54.0539 4612 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
17:02:54.0539 4612 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
17:02:54.0549 4612 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
17:02:54.0549 4612 C:\Windows\SysWOW64\EhStorShell.dll - ok
17:02:54.0549 4612 [ 676CCC08D9E9A3F4CA39CB04E97048DF ] C:\PROGRA~2\MICROS~1\Office14\1033\GrooveIntlResource.dll
17:02:54.0549 4612 C:\PROGRA~2\MICROS~1\Office14\1033\GrooveIntlResource.dll - ok
17:02:54.0559 4612 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
17:02:54.0559 4612 C:\Windows\SysWOW64\ntshrui.dll - ok
17:02:54.0559 4612 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
17:02:54.0559 4612 C:\Windows\SysWOW64\imageres.dll - ok
17:02:54.0559 4612 [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
17:02:54.0559 4612 C:\Windows\System32\wbem\WMIADAP.exe - ok
17:02:54.0569 4612 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
17:02:54.0569 4612 C:\Windows\System32\loadperf.dll - ok
17:02:54.0569 4612 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
17:02:54.0569 4612 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
17:02:54.0569 4612 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
17:02:54.0569 4612 C:\Windows\System32\wbem\wmiprov.dll - ok
17:02:54.0579 4612 [ EA856F4A46320389D1899B2CAA7BF40F ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:02:54.0579 4612 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
17:02:54.0579 4612 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
17:02:54.0579 4612 C:\Windows\System32\qmgr.dll - ok
17:02:54.0579 4612 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
17:02:54.0579 4612 C:\Windows\System32\bitsigd.dll - ok
17:02:54.0589 4612 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
17:02:54.0589 4612 C:\Windows\System32\bitsperf.dll - ok
17:02:54.0589 4612 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
17:02:54.0589 4612 C:\Windows\System32\upnp.dll - ok
17:02:54.0599 4612 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
17:02:54.0599 4612 C:\Windows\System32\ssdpsrv.dll - ok
17:02:54.0599 4612 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:02:54.0599 4612 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
17:02:54.0599 4612 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
17:02:54.0599 4612 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
17:02:54.0609 4612 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
17:02:54.0609 4612 C:\Windows\SysWOW64\mscoree.dll - ok
17:02:54.0609 4612 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:02:54.0609 4612 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
17:02:54.0609 4612 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
17:02:54.0609 4612 C:\Windows\System32\msvcr100_clr0400.dll - ok
17:02:54.0619 4612 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
17:02:54.0619 4612 C:\Windows\System32\mscoree.dll - ok
17:02:54.0619 4612 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
17:02:54.0619 4612 C:\Windows\System32\FntCache.dll - ok
17:02:54.0629 4612 [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll
17:02:54.0629 4612 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdateres_en.dll - ok
17:02:54.0629 4612 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
17:02:54.0629 4612 C:\Windows\System32\sppsvc.exe - ok
17:02:54.0629 4612 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
17:02:54.0629 4612 C:\Windows\System32\drivers\spsys.sys - ok
17:02:54.0639 4612 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
17:02:54.0639 4612 C:\Windows\System32\sppwinob.dll - ok
17:02:54.0639 4612 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
17:02:54.0639 4612 C:\Windows\System32\wscsvc.dll - ok
17:02:54.0639 4612 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
17:02:54.0639 4612 C:\Windows\System32\p2pcollab.dll - ok
17:02:54.0649 4612 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
17:02:54.0649 4612 C:\Windows\System32\QAGENTRT.DLL - ok
17:02:54.0649 4612 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
17:02:54.0649 4612 C:\Windows\System32\fveui.dll - ok
17:02:54.0649 4612 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
17:02:54.0649 4612 C:\Windows\System32\wuapi.dll - ok
17:02:54.0659 4612 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
17:02:54.0659 4612 C:\Windows\System32\cabinet.dll - ok
17:02:54.0659 4612 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
17:02:54.0659 4612 C:\Windows\System32\wups.dll - ok
17:02:54.0669 4612 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
17:02:54.0669 4612 C:\Windows\System32\SearchIndexer.exe - ok
17:02:54.0669 4612 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
17:02:54.0669 4612 C:\Windows\System32\tquery.dll - ok
17:02:54.0669 4612 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
17:02:54.0669 4612 C:\Windows\System32\mssrch.dll - ok
17:02:54.0679 4612 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
17:02:54.0679 4612 C:\Windows\System32\msidle.dll - ok
17:02:54.0679 4612 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
17:02:54.0679 4612 C:\Windows\System32\sppobjs.dll - ok
17:02:54.0679 4612 [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
17:02:54.0679 4612 C:\Windows\System32\drivers\asyncmac.sys - ok
17:02:54.0689 4612 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
17:02:54.0689 4612 C:\Windows\System32\en-US\tquery.dll.mui - ok
17:02:54.0689 4612 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
17:02:54.0689 4612 C:\Windows\System32\wuaueng.dll - ok
17:02:54.0699 4612 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
17:02:54.0699 4612 C:\Windows\System32\mspatcha.dll - ok
17:02:54.0699 4612 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
17:02:54.0699 4612 C:\Windows\System32\wups2.dll - ok
17:02:54.0699 4612 [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
17:02:54.0699 4612 C:\Windows\System32\RacEngn.dll - ok
17:02:54.0709 4612 [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
17:02:54.0709 4612 C:\Windows\System32\sqlceoledb30.dll - ok
17:02:54.0709 4612 [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
17:02:54.0709 4612 C:\Windows\System32\sqlceqp30.dll - ok
17:02:54.0709 4612 [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
17:02:54.0709 4612 C:\Windows\System32\sqlcese30.dll - ok
17:02:54.0719 4612 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
17:02:54.0719 4612 C:\Windows\System32\WinSATAPI.dll - ok
17:02:54.0719 4612 [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
17:02:54.0719 4612 C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
17:02:54.0729 4612 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
17:02:54.0729 4612 C:\Windows\SysWOW64\devrtl.dll - ok
17:02:54.0729 4612 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
17:02:54.0729 4612 C:\Windows\System32\ie4uinit.exe - ok
17:02:54.0729 4612 [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
17:02:54.0729 4612 C:\Windows\System32\iedkcs32.dll - ok
17:02:54.0739 4612 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
17:02:54.0739 4612 C:\Windows\System32\timedate.cpl - ok
17:02:54.0739 4612 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
17:02:54.0739 4612 C:\Windows\System32\actxprxy.dll - ok
17:02:54.0739 4612 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
17:02:54.0739 4612 C:\Windows\System32\shdocvw.dll - ok
17:02:54.0749 4612 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
17:02:54.0749 4612 C:\Windows\System32\linkinfo.dll - ok
17:02:54.0749 4612 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
17:02:54.0749 4612 C:\Windows\System32\msiltcfg.dll - ok
17:02:54.0749 4612 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
17:02:54.0749 4612 C:\Windows\System32\msftedit.dll - ok
17:02:54.0759 4612 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
17:02:54.0759 4612 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
17:02:54.0759 4612 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
17:02:54.0759 4612 C:\Windows\System32\msls31.dll - ok
17:02:54.0759 4612 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
17:02:54.0759 4612 C:\Windows\System32\DeviceCenter.dll - ok
17:02:54.0769 4612 [ 47F36E94A5A6A1592E27CB44901B4DA4 ] C:\Program Files\IDT\WDM\sttray64.exe
17:02:54.0769 4612 C:\Program Files\IDT\WDM\sttray64.exe - ok
17:02:54.0769 4612 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\59217039.sys
17:02:54.0769 4612 C:\Windows\System32\drivers\59217039.sys - ok
17:02:54.0779 4612 [ 0D997D69A624B2A04EED0B64F2092642 ] C:\Program Files\IDT\WDM\Beats64.exe
17:02:54.0779 4612 C:\Program Files\IDT\WDM\Beats64.exe - ok
17:02:54.0779 4612 [ 1F04E809409A9B5FFD510B5FD89A1155 ] C:\Windows\System32\d2d1.dll
17:02:54.0779 4612 C:\Windows\System32\d2d1.dll - ok
17:02:54.0779 4612 [ 19F9B524A525D202194247E96656CB88 ] C:\Windows\System32\mfc42u.dll
17:02:54.0779 4612 C:\Windows\System32\mfc42u.dll - ok
17:02:54.0789 4612 [ 7FF8E121AFA05BDAB23B9FEDCDAB7A33 ] C:\Windows\System32\odbc32.dll
17:02:54.0789 4612 C:\Windows\System32\odbc32.dll - ok
17:02:54.0789 4612 [ A3A9BBDFFD735D5C82DAC4A1B0D8B715 ] C:\Program Files\IDT\WDM\stlang64.dll
17:02:54.0789 4612 C:\Program Files\IDT\WDM\stlang64.dll - ok
17:02:54.0789 4612 [ 3E466073C3B1033FF92ADE9031E3D4A2 ] C:\Windows\System32\odbcint.dll
17:02:54.0789 4612 C:\Windows\System32\odbcint.dll - ok
17:02:54.0799 4612 [ 93FD4CF3A08F7C4EACB4E11C8AB617BD ] E:\Program Files\ESET\ESET Smart Security\egui.exe
17:02:54.0799 4612 E:\Program Files\ESET\ESET Smart Security\egui.exe - ok
17:02:54.0799 4612 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
17:02:54.0799 4612 C:\Windows\System32\rundll32.exe - ok
17:02:54.0799 4612 [ AC012AD7539A8F9FFD31CF80BAA06CC7 ] C:\Windows\System32\LogiLDA.DLL
17:02:54.0799 4612 C:\Windows\System32\LogiLDA.DLL - ok
17:02:54.0809 4612 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
17:02:54.0809 4612 C:\Windows\System32\msimg32.dll - ok
17:02:54.0809 4612 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
17:02:54.0809 4612 C:\Windows\System32\oledlg.dll - ok
17:02:54.0819 4612 [ EA42F79A76F4795E0930FB1E9FFFA5CF ] E:\Program Files\ESET\ESET Smart Security\mfc80u.dll
17:02:54.0819 4612 E:\Program Files\ESET\ESET Smart Security\mfc80u.dll - ok
17:02:54.0819 4612 [ 2FAD69503166BF30ED15B64DAA1B116D ] C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
17:02:54.0819 4612 C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe - ok
17:02:54.0819 4612 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
17:02:54.0819 4612 C:\Windows\System32\thumbcache.dll - ok
17:02:54.0829 4612 [ 021D7697FE1D3BC21B48F82364BCB3CF ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
17:02:54.0829 4612 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
17:02:54.0829 4612 [ 749949494676218FFA99501F4AA22ECC ] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
17:02:54.0829 4612 C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe - ok
17:02:54.0839 4612 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:02:54.0839 4612 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
17:02:54.0839 4612 [ B64B5DC0205AD21FDCCF5B43112AC91C ] C:\Windows\SysWOW64\atiadlxy.dll
17:02:54.0839 4612 C:\Windows\SysWOW64\atiadlxy.dll - ok
17:02:54.0839 4612 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
17:02:54.0839 4612 C:\Windows\SysWOW64\comdlg32.dll - ok
17:02:54.0849 4612 [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:02:54.0849 4612 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
17:02:54.0849 4612 [ 4EE367B8B1964160A1F1B80095183D3A ] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
17:02:54.0849 4612 C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin - ok
17:02:54.0849 4612 [ 3037BCB6797FFE5BAA196026079B33DE ] C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
17:02:54.0849 4612 C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe - ok
17:02:54.0859 4612 [ C861851A0BBD9903E324487011AA3705 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
17:02:54.0859 4612 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
17:02:54.0859 4612 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
17:02:54.0859 4612 C:\Windows\System32\gameux.dll - ok
17:02:54.0869 4612 [ 5AA4DF6CD3C96086955064BEC1CD0C9B ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
17:02:54.0869 4612 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
17:02:54.0869 4612 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
17:02:54.0869 4612 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
17:02:54.0869 4612 [ 901AA7A38CE13F14B6BBEC38C0595698 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
17:02:54.0869 4612 C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe - ok
17:02:54.0879 4612 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
17:02:54.0879 4612 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
17:02:54.0879 4612 [ B89137476D554DF13421DF8F5F5789EC ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll
17:02:54.0879 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll - ok
17:02:54.0879 4612 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
17:02:54.0879 4612 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
17:02:54.0889 4612 [ CCFA2FC955EE4CB4157AFDD5F11E52E7 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll
17:02:54.0889 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll - ok
17:02:54.0889 4612 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
17:02:54.0889 4612 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
17:02:54.0899 4612 [ 7AE92C896AF9ABFBDB18C1D055B6EBA7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll
17:02:54.0899 4612 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcp80.dll - ok
17:02:54.0899 4612 [ 4513B7400878973F9B1BA71153B4F4CF ] C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll
17:02:54.0899 4612 C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll - ok
17:02:54.0899 4612 [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
17:02:54.0899 4612 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
17:02:54.0909 4612 [ 8E2A7F1F62467A7DCB8AB2C0642F47CA ] E:\Program Files (x86)\iTunes\iTunesHelper.exe
17:02:54.0909 4612 E:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
17:02:54.0909 4612 [ FCD4E3223AB57109D09F03EF74D9B181 ] C:\Program Files (x86)\OpenOffice.org 3\program\comphelpMSC.dll
17:02:54.0909 4612 C:\Program Files (x86)\OpenOffice.org 3\program\comphelpMSC.dll - ok
17:02:54.0919 4612 [ 5082BC510FAD849630D09DA626BB7CDA ] E:\Program Files (x86)\iTunes\iTunesHelper.dll
17:02:54.0919 4612 E:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
17:02:54.0919 4612 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
17:02:54.0919 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
17:02:54.0929 4612 [ 9262BF9AF67CA4499F7DAE1FB2AA58E0 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
17:02:54.0929 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll - ok
17:02:54.0929 4612 [ 7AD794FA7B80EC3F97097DA7E7011347 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll
17:02:54.0929 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll - ok
17:02:54.0929 4612 [ A0849FBA350AA979617856770F8AA1D2 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
17:02:54.0929 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll - ok
17:02:54.0939 4612 [ 9935F595C9B80BC40723042B43086549 ] C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll
17:02:54.0939 4612 C:\Windows\winsxs\amd64_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_fc42961a63b5a82b\mfc80ENU.dll - ok
17:02:54.0939 4612 [ B6F943D2D99307BFD7D2ADFA3B866813 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
17:02:54.0939 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll - ok
17:02:54.0939 4612 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
17:02:54.0939 4612 C:\Windows\System32\networkexplorer.dll - ok
17:02:54.0949 4612 [ E6AEF6498578702ED3E8024D9792F30B ] C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll
17:02:54.0949 4612 C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll - ok
17:02:54.0949 4612 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
17:02:54.0949 4612 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
17:02:54.0959 4612 [ AFEEAFD7CF8ED6958A81ACC304C17B7D ] E:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
17:02:54.0959 4612 E:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
17:02:54.0959 4612 [ BE643CD44DD06DA283634A3E51DC22BC ] E:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
17:02:54.0959 4612 E:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
17:02:54.0959 4612 [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
17:02:54.0959 4612 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
17:02:54.0969 4612 [ C820C516CB162FD1845E2612A65536CB ] C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll
17:02:54.0969 4612 C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll - ok
17:02:54.0969 4612 [ 7FB936AA67FA487F59529C9A4907685E ] C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmisc.dll
17:02:54.0969 4612 C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmisc.dll - ok
17:02:54.0979 4612 [ 18CFCEF4FED80273563715BB6CF4C474 ] E:\Program Files\ESET\ESET Smart Security\eguiHips.dll
17:02:54.0979 4612 E:\Program Files\ESET\ESET Smart Security\eguiHips.dll - ok
17:02:54.0979 4612 [ 2FC3769842EB87578032E8B6C1DE9A08 ] C:\Program Files (x86)\OpenOffice.org 3\program\tl.dll
17:02:54.0979 4612 C:\Program Files (x86)\OpenOffice.org 3\program\tl.dll - ok
17:02:54.0979 4612 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
17:02:54.0979 4612 C:\Windows\System32\wdmaud.drv - ok
17:02:54.0989 4612 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
17:02:54.0989 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
17:02:54.0989 4612 [ 4167AE99A4CC521848E5471FA83A9EED ] C:\Program Files (x86)\OpenOffice.org 3\program\basegfx.dll
17:02:54.0989 4612 C:\Program Files (x86)\OpenOffice.org 3\program\basegfx.dll - ok
17:02:54.0989 4612 [ 8CC49A86913E96A1F208E7BC4F4AD409 ] E:\Program Files\ESET\ESET Smart Security\eguiScan.dll
17:02:54.0989 4612 E:\Program Files\ESET\ESET Smart Security\eguiScan.dll - ok
17:02:54.0999 4612 [ D2A90407F02E2B2B7D636EF402BEBA59 ] C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll
17:02:54.0999 4612 C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll - ok
17:02:54.0999 4612 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
17:02:54.0999 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
17:02:55.0009 4612 [ 750726E5868345AB2D46850EB1E60DF9 ] C:\Program Files (x86)\OpenOffice.org 3\program\utl.dll
17:02:55.0009 4612 C:\Program Files (x86)\OpenOffice.org 3\program\utl.dll - ok
17:02:55.0009 4612 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
17:02:55.0009 4612 C:\Windows\System32\msacm32.drv - ok
17:02:55.0009 4612 [ 0E008BF5B54126FEDCE904AAA460A00C ] E:\Program Files\ESET\ESET Smart Security\eguiAmon.dll
17:02:55.0009 4612 E:\Program Files\ESET\ESET Smart Security\eguiAmon.dll - ok
17:02:55.0019 4612 [ B78E390C802B8F0D2BAF4F8B181318A0 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll
17:02:55.0019 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\e644aa1f8f3898d38876168757db0d9b\System.Windows.Forms.ni.dll - ok
17:02:55.0019 4612 [ 218B2BA51244F5285904AE03F5898112 ] C:\Program Files (x86)\OpenOffice.org 3\program\xcr.dll
17:02:55.0019 4612 C:\Program Files (x86)\OpenOffice.org 3\program\xcr.dll - ok
17:02:55.0029 4612 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
17:02:55.0029 4612 C:\Windows\System32\msacm32.dll - ok
17:02:55.0029 4612 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
17:02:55.0029 4612 C:\Windows\System32\midimap.dll - ok
17:02:55.0029 4612 [ 365EB15783B9BE4DB9C2A6064532B2BC ] C:\Program Files (x86)\OpenOffice.org 3\program\sfx.dll
17:02:55.0029 4612 C:\Program Files (x86)\OpenOffice.org 3\program\sfx.dll - ok
17:02:55.0039 4612 [ 9993AA0AC4548253ACA114AC495B971B ] E:\Program Files\ESET\ESET Smart Security\eguiEmon.dll
17:02:55.0039 4612 E:\Program Files\ESET\ESET Smart Security\eguiEmon.dll - ok
17:02:55.0039 4612 [ CDD76188ECF2EA78EB816151D0130327 ] C:\Program Files (x86)\OpenOffice.org 3\program\fwe.dll
17:02:55.0039 4612 C:\Program Files (x86)\OpenOffice.org 3\program\fwe.dll - ok
17:02:55.0039 4612 [ CC22C9FB26428FEAB01526F2A23B30FC ] C:\Program Files (x86)\OpenOffice.org 3\program\fwi.dll
17:02:55.0039 4612 C:\Program Files (x86)\OpenOffice.org 3\program\fwi.dll - ok
17:02:55.0049 4612 [ ACF3A47CE86B6E89616C4D3A692A4422 ] C:\Program Files (x86)\OpenOffice.org 3\program\svl.dll
17:02:55.0049 4612 C:\Program Files (x86)\OpenOffice.org 3\program\svl.dll - ok
17:02:55.0049 4612 [ 336B257EC1D65F97B149BA032F41B428 ] C:\Program Files (x86)\OpenOffice.org 3\program\sot.dll
17:02:55.0049 4612 C:\Program Files (x86)\OpenOffice.org 3\program\sot.dll - ok
17:02:55.0059 4612 [ D7D32CB045ADAC24500DF058BD9CC2D9 ] E:\Program Files\ESET\ESET Smart Security\eguiDmon.dll
17:02:55.0059 4612 E:\Program Files\ESET\ESET Smart Security\eguiDmon.dll - ok
17:02:55.0059 4612 [ 561714DFA385FA4E35D81DCF8014377F ] C:\Program Files (x86)\OpenOffice.org 3\program\svt.dll
17:02:55.0059 4612 C:\Program Files (x86)\OpenOffice.org 3\program\svt.dll - ok
17:02:55.0059 4612 [ 5F49FBF4E018ABB9C4ADC4A8D57F9C76 ] C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll
17:02:55.0059 4612 C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll - ok
17:02:55.0069 4612 [ F6CB86F2E560E2536BBA522F97BC6039 ] C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll
17:02:55.0069 4612 C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll - ok
17:02:55.0069 4612 [ EC00034A5D1E094FCFFA6AF27EBF9604 ] C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll
17:02:55.0069 4612 C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll - ok
17:02:55.0069 4612 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
17:02:55.0069 4612 C:\Windows\System32\qmgrprxy.dll - ok
17:02:55.0079 4612 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
17:02:55.0079 4612 C:\Windows\SysWOW64\qmgrprxy.dll - ok
17:02:55.0079 4612 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
17:02:55.0079 4612 C:\Windows\SysWOW64\riched20.dll - ok
17:02:55.0089 4612 [ 1330EA93145B834D1A6ED1F1AC3163FC ] C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
17:02:55.0089 4612 C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll - ok
17:02:55.0089 4612 [ 31DCF8ED7C7D8C87EB5379AD122A328E ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll
17:02:55.0089 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll - ok
17:02:55.0089 4612 [ EC120FACE13767CCFB18FB2EA170AC83 ] C:\Program Files (x86)\OpenOffice.org 3\program\tk.dll
17:02:55.0089 4612 C:\Program Files (x86)\OpenOffice.org 3\program\tk.dll - ok
17:02:55.0099 4612 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
17:02:55.0099 4612 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
17:02:55.0099 4612 [ 09EDFCBED80D1608954B8833CC4B89A9 ] E:\Program Files\ESET\ESET Smart Security\eguiEpfw.dll
17:02:55.0099 4612 E:\Program Files\ESET\ESET Smart Security\eguiEpfw.dll - ok
17:02:55.0099 4612 [ E8832BCF29CC03F9A490C9AAC3056706 ] C:\Program Files (x86)\OpenOffice.org 3\program\vcl.dll
17:02:55.0099 4612 C:\Program Files (x86)\OpenOffice.org 3\program\vcl.dll - ok
17:02:55.0109 4612 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
17:02:55.0109 4612 C:\Windows\SysWOW64\duser.dll - ok
17:02:55.0109 4612 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
17:02:55.0109 4612 C:\Windows\SysWOW64\dui70.dll - ok
17:02:55.0119 4612 [ 760C56CB28A43BFFB0F00E0DE545E74B ] E:\Program Files\ESET\ESET Smart Security\eguiSmon.dll
17:02:55.0119 4612 E:\Program Files\ESET\ESET Smart Security\eguiSmon.dll - ok
17:02:55.0119 4612 [ 5C801C9BC7A0317A14B7628FCCD2D17E ] C:\Program Files (x86)\OpenOffice.org 3\program\i18npaper.dll
17:02:55.0119 4612 C:\Program Files (x86)\OpenOffice.org 3\program\i18npaper.dll - ok
17:02:55.0119 4612 [ 8965A4CAA8E006F5F32D084CABD3679E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll
17:02:55.0119 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\ad25afb3a0820b92f311d6897df82e5f\System.Runtime.Remoting.ni.dll - ok
17:02:55.0129 4612 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
17:02:55.0129 4612 C:\Windows\System32\UIAnimation.dll - ok
17:02:55.0129 4612 [ 653F176AE75AC4722CDD264D31D27F1A ] E:\Program Files\ESET\ESET Smart Security\eguiUpdate.dll
17:02:55.0129 4612 E:\Program Files\ESET\ESET Smart Security\eguiUpdate.dll - ok
17:02:55.0139 4612 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
17:02:55.0139 4612 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
17:02:55.0139 4612 [ C20A1C67340ACC6FE1ED82448F22D0B2 ] E:\Program Files\ESET\ESET Smart Security\eguiMailPlugins.dll
17:02:55.0139 4612 E:\Program Files\ESET\ESET Smart Security\eguiMailPlugins.dll - ok
17:02:55.0139 4612 [ 557D165ABAC057F379D47E92F395405F ] C:\Program Files (x86)\OpenOffice.org 3\program\sax.dll
17:02:55.0139 4612 C:\Program Files (x86)\OpenOffice.org 3\program\sax.dll - ok
17:02:55.0149 4612 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
17:02:55.0149 4612 C:\Windows\SysWOW64\msimg32.dll - ok
17:02:55.0149 4612 [ FBC74172F7246C9531CC46D159276971 ] C:\Program Files (x86)\OpenOffice.org 3\program\sb.dll
17:02:55.0149 4612 C:\Program Files (x86)\OpenOffice.org 3\program\sb.dll - ok
17:02:55.0149 4612 [ 41FDC9196BE0A33DD36D51AE60A5994E ] E:\Program Files\ESET\ESET Smart Security\eguiParental.dll
17:02:55.0159 4612 E:\Program Files\ESET\ESET Smart Security\eguiParental.dll - ok
17:02:55.0159 4612 [ 6C0A96C3485D25236F3DB7D8A120F21A ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll
17:02:55.0159 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll - ok
17:02:55.0159 4612 [ D28C5A1411BB0B47E05E0D6AAF896690 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
17:02:55.0159 4612 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
17:02:55.0169 4612 [ 8506A78404B3B469A2382C509B7DB967 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
17:02:55.0169 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll - ok
17:02:55.0169 4612 [ 352A00C74C96FA5A41EA32BF4BFACA10 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll
17:02:55.0169 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll - ok
17:02:55.0169 4612 [ 66177DC56AC40A87F17C8B4333049D10 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll
17:02:55.0169 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll - ok
17:02:55.0179 4612 [ 6238D624E7CF2C59E773C6D2A326C85B ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\xmlreader.dll
17:02:55.0179 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\xmlreader.dll - ok
17:02:55.0179 4612 [ 1F8169E6B6D33F5F3E1D34306248B73E ] E:\Program Files\ESET\ESET Smart Security\eplgHooks.dll
17:02:55.0179 4612 E:\Program Files\ESET\ESET Smart Security\eplgHooks.dll - ok
17:02:55.0189 4612 [ 050E000D89D4FB750B124380020674E9 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll
17:02:55.0189 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\09a751d0d4d6e7af82c1d2844eefd34a\System.Web.ni.dll - ok
17:02:55.0189 4612 [ 9E7C434E383D451D299EB7861ED1CECC ] C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll
17:02:55.0189 4612 C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll - ok
17:02:55.0189 4612 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
17:02:55.0189 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
17:02:55.0199 4612 [ EA85B693F3B321A9DF90CFBD1673DAF2 ] C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll
17:02:55.0199 4612 C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll - ok
17:02:55.0199 4612 [ 10D5662D127EF17019513C7251E10117 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll
17:02:55.0199 4612 C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll - ok
17:02:55.0209 4612 [ C68069DBAB5EF8861F6D54CC989D60D0 ] C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll
17:02:55.0209 4612 C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll - ok
17:02:55.0209 4612 [ 032A6D7058EC06CA6CF73A6D0493ADA0 ] C:\Program Files (x86)\OpenOffice.org 3\program\fwk.dll
17:02:55.0209 4612 C:\Program Files (x86)\OpenOffice.org 3\program\fwk.dll - ok
17:02:55.0209 4612 [ F31AD307E2F5797B837C3932A7794D26 ] C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll
17:02:55.0209 4612 C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll - ok
17:02:55.0219 4612 [ 41DFF500F0C1C438D0500F08DF8B827B ] C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll
17:02:55.0219 4612 C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll - ok
17:02:55.0219 4612 [ A8C4CDA29ED3598E38F25F12183849AF ] C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll
17:02:55.0219 4612 C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll - ok
17:02:55.0229 4612 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
17:02:55.0229 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
17:02:55.0229 4612 [ C64B09515203DC640FEFF8C1DE5721E0 ] C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll
17:02:55.0229 4612 C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll - ok
17:02:55.0229 4612 [ E91F3A5185FA77C0C540465C906F2BDE ] C:\Program Files (x86)\OpenOffice.org 3\program\emser.dll
17:02:55.0229 4612 C:\Program Files (x86)\OpenOffice.org 3\program\emser.dll - ok
17:02:55.0239 4612 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
17:02:55.0239 4612 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
17:02:55.0239 4612 [ 4EFFC8FF6D349E971E94B1C670C0C66A ] C:\Program Files\iPod\bin\iPodService.exe
17:02:55.0239 4612 C:\Program Files\iPod\bin\iPodService.exe - ok
17:02:55.0239 4612 [ 1105A14047A0D99C2770601EB61FBF5C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
17:02:55.0239 4612 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
17:02:55.0249 4612 [ B4E69051E313551F894C74B12042485D ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
17:02:55.0249 4612 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
17:02:55.0249 4612 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
17:02:55.0249 4612 C:\Windows\SysWOW64\sxs.dll - ok
17:02:55.0259 4612 [ 1D2EB0A8057D5FD2044A361DBBB33102 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
17:02:55.0259 4612 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe - ok
17:02:55.0259 4612 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr100.dll
17:02:55.0259 4612 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr100.dll - ok
17:02:55.0259 4612 [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE ] C:\Windows\SysWOW64\quartz.dll
17:02:55.0259 4612 C:\Windows\SysWOW64\quartz.dll - ok
17:02:55.0269 4612 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
17:02:55.0269 4612 C:\Windows\SysWOW64\d3d9.dll - ok
17:02:55.0269 4612 [ 0742EA94E77C95144ED3BACFC85134B9 ] C:\Windows\SysWOW64\aticfx32.dll
17:02:55.0269 4612 C:\Windows\SysWOW64\aticfx32.dll - ok
17:02:55.0269 4612 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
17:02:55.0269 4612 C:\Windows\SysWOW64\d3d8thk.dll - ok
17:02:55.0279 4612 [ 5B4689F74540D2330CBF4A26280729FB ] C:\Windows\SysWOW64\atiu9pag.dll
17:02:55.0279 4612 C:\Windows\SysWOW64\atiu9pag.dll - ok
17:02:55.0279 4612 [ FD8E3E88A7B4636D6750415740EF4C6E ] C:\Windows\SysWOW64\atiumdag.dll
17:02:55.0279 4612 C:\Windows\SysWOW64\atiumdag.dll - ok
17:02:55.0289 4612 [ 745803BD98CE8EF073E2E5CB85735F31 ] C:\Windows\SysWOW64\atiumdva.dll
17:02:55.0289 4612 C:\Windows\SysWOW64\atiumdva.dll - ok
17:02:55.0289 4612 [ 89344657836F91640F3DDB235D0E7F73 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll
17:02:55.0289 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\5f684be17ae6b826f6f9eaa170b41b05\WindowsBase.ni.dll - ok
17:02:55.0289 4612 [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
17:02:55.0289 4612 C:\Windows\SysWOW64\dxva2.dll - ok
17:02:55.0299 4612 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
17:02:55.0299 4612 C:\Windows\System32\batmeter.dll - ok
17:02:55.0299 4612 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
17:02:55.0299 4612 C:\Windows\System32\stobject.dll - ok
17:02:55.0299 4612 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
17:02:55.0299 4612 C:\Windows\System32\prnfldr.dll - ok
17:02:55.0309 4612 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
17:02:55.0309 4612 C:\Windows\System32\DXP.dll - ok
17:02:55.0309 4612 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
17:02:55.0309 4612 C:\Windows\System32\Syncreg.dll - ok
17:02:55.0309 4612 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
17:02:55.0309 4612 C:\Windows\ehome\ehSSO.dll - ok
17:02:55.0319 4612 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
17:02:55.0319 4612 C:\Windows\System32\AltTab.dll - ok
17:02:55.0319 4612 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
17:02:55.0319 4612 C:\Windows\System32\WPDShServiceObj.dll - ok
17:02:55.0329 4612 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
17:02:55.0329 4612 C:\Windows\System32\mssprxy.dll - ok
17:02:55.0329 4612 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
17:02:55.0329 4612 C:\Windows\System32\pnidui.dll - ok
17:02:55.0329 4612 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
17:02:55.0329 4612 C:\Windows\System32\QUTIL.DLL - ok
17:02:55.0339 4612 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
17:02:55.0339 4612 C:\Windows\System32\rasdlg.dll - ok
17:02:55.0339 4612 [ 234AFA322624B3203A2E720F08292B03 ] C:\Windows\System32\cscobj.dll
17:02:55.0339 4612 C:\Windows\System32\cscobj.dll - ok
17:02:55.0339 4612 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
17:02:55.0339 4612 C:\Windows\System32\wlanhlp.dll - ok
17:02:55.0349 4612 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
17:02:55.0349 4612 C:\Windows\System32\dot3api.dll - ok
17:02:55.0349 4612 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
17:02:55.0349 4612 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
17:02:55.0349 4612 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
17:02:55.0349 4612 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
17:02:55.0359 4612 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
17:02:55.0359 4612 C:\Windows\System32\WWanAPI.dll - ok
17:02:55.0359 4612 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
17:02:55.0359 4612 C:\Windows\System32\wwapi.dll - ok
17:02:55.0369 4612 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
17:02:55.0369 4612 C:\Windows\System32\QAGENT.DLL - ok
17:02:55.0369 4612 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
17:02:55.0369 4612 C:\Windows\System32\srchadmin.dll - ok
17:02:55.0369 4612 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
17:02:55.0369 4612 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
17:02:55.0379 4612 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
17:02:55.0379 4612 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
17:02:55.0379 4612 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
17:02:55.0379 4612 C:\Windows\System32\wmdrmdev.dll - ok
17:02:55.0379 4612 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
17:02:55.0379 4612 C:\Windows\System32\drmv2clt.dll - ok
17:02:55.0389 4612 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
17:02:55.0389 4612 C:\Windows\System32\mfplat.dll - ok
17:02:55.0389 4612 [ 7BB710183AAD6C420A8FAF7C4ABC6384 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll
17:02:55.0389 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\68f908f70841f6159b1124f89029ef77\PresentationCore.ni.dll - ok
17:02:55.0399 4612 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
17:02:55.0399 4612 C:\Windows\System32\webcheck.dll - ok
17:02:55.0399 4612 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
17:02:55.0399 4612 C:\Windows\System32\mlang.dll - ok
17:02:55.0399 4612 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
17:02:55.0399 4612 C:\Windows\System32\SearchProtocolHost.exe - ok
17:02:55.0409 4612 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
17:02:55.0409 4612 C:\Windows\System32\wmp.dll - ok
17:02:55.0409 4612 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
17:02:55.0409 4612 C:\Windows\System32\msshooks.dll - ok
17:02:55.0409 4612 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
17:02:55.0409 4612 C:\Windows\System32\SearchFilterHost.exe - ok
17:02:55.0419 4612 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
17:02:55.0419 4612 C:\Windows\System32\blackbox.dll - ok
17:02:55.0419 4612 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
17:02:55.0419 4612 C:\Windows\System32\bthprops.cpl - ok
17:02:55.0429 4612 [ E503E15C88B4BBDA3F6345E34FED3E92 ] C:\Windows\System32\mssvp.dll
17:02:55.0429 4612 C:\Windows\System32\mssvp.dll - ok
17:02:55.0429 4612 [ 1D5A06280E3E6C07950FAAA4D153269B ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll
17:02:55.0429 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\f30de4ac82d4a89c959a7f525ba05aed\PresentationFramework.ni.dll - ok
17:02:55.0429 4612 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
17:02:55.0429 4612 C:\Windows\System32\mapi32.dll - ok
17:02:55.0439 4612 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
17:02:55.0439 4612 C:\Windows\System32\SyncCenter.dll - ok
17:02:55.0439 4612 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
17:02:55.0439 4612 C:\Windows\System32\NaturalLanguage6.dll - ok
17:02:55.0439 4612 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
17:02:55.0439 4612 C:\Windows\System32\wmploc.DLL - ok
17:02:55.0449 4612 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
17:02:55.0449 4612 C:\Windows\System32\NlsData0009.dll - ok
17:02:55.0449 4612 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
17:02:55.0449 4612 C:\Windows\System32\ActionCenter.dll - ok
17:02:55.0459 4612 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
17:02:55.0459 4612 C:\Windows\System32\NlsLexicons0009.dll - ok
17:02:55.0459 4612 [ F7220A36464885AC591C21544B47D443 ] C:\Program Files\Internet Explorer\ieproxy.dll
17:02:55.0459 4612 C:\Program Files\Internet Explorer\ieproxy.dll - ok
17:02:55.0459 4612 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
17:02:55.0459 4612 C:\Windows\System32\imapi2.dll - ok
17:02:55.0469 4612 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
17:02:55.0469 4612 C:\Windows\System32\wmpps.dll - ok
17:02:55.0469 4612 [ C264145F107437CBD3B30303733AEE4F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
17:02:55.0469 4612 C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
17:02:55.0469 4612 [ C8541AECCCA9260DE93C85F214110FA8 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
17:02:55.0469 4612 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
17:02:55.0479 4612 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
17:02:55.0479 4612 C:\Windows\System32\hgcpl.dll - ok
17:02:55.0479 4612 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
17:02:55.0479 4612 C:\Windows\System32\fdPHost.dll - ok
17:02:55.0479 4612 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
17:02:55.0479 4612 C:\Windows\System32\FDResPub.dll - ok
17:02:55.0489 4612 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
17:02:55.0489 4612 C:\Windows\System32\fdWSD.dll - ok
17:02:55.0489 4612 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
17:02:55.0489 4612 C:\Windows\System32\fdSSDP.dll - ok
17:02:55.0489 4612 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
17:02:55.0489 4612 C:\Windows\System32\fdProxy.dll - ok
17:02:55.0499 4612 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
17:02:55.0499 4612 C:\Windows\System32\FXSST.dll - ok
17:02:55.0499 4612 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
17:02:55.0499 4612 C:\Windows\System32\FXSAPI.dll - ok
17:02:55.0499 4612 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
17:02:55.0499 4612 C:\Windows\System32\FXSRESM.dll - ok
17:02:55.0509 4612 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
17:02:55.0509 4612 C:\Windows\System32\FXSSVC.exe - ok
17:02:55.0509 4612 [ C5413BC4F10CEB4C3070BBF04D324117 ] C:\Windows\SysWOW64\msisip.dll
17:02:55.0509 4612 C:\Windows\SysWOW64\msisip.dll - ok
17:02:55.0519 4612 [ EBCC2CEFDA0CE9F8DBFD7F4E380AF081 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe
17:02:55.0519 4612 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe - ok
17:02:55.0519 4612 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
17:02:55.0519 4612 C:\Windows\System32\msxml3.dll - ok
17:02:55.0519 4612 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
17:02:55.0519 4612 C:\Windows\System32\wbem\cimwin32.dll - ok
17:02:55.0529 4612 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
17:02:55.0529 4612 C:\Windows\System32\framedynos.dll - ok
17:02:55.0529 4612 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
17:02:55.0529 4612 C:\Windows\System32\security.dll - ok
17:02:55.0529 4612 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
17:02:55.0539 4612 C:\Windows\System32\browcli.dll - ok
17:02:55.0539 4612 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
17:02:55.0539 4612 C:\Windows\System32\wbem\wmipcima.dll - ok
17:02:55.0539 4612 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
17:02:55.0539 4612 C:\Windows\System32\wmi.dll - ok
17:02:55.0549 4612 [ DDE5A0DFAF7C6370FB36402D7A746ED3 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
17:02:55.0549 4612 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
17:02:55.0549 4612 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
17:02:55.0549 4612 C:\Windows\SysWOW64\netprofm.dll - ok
17:02:55.0549 4612 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
17:02:55.0549 4612 C:\Windows\SysWOW64\nlaapi.dll - ok
17:02:55.0559 4612 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
17:02:55.0559 4612 C:\Windows\SysWOW64\npmproxy.dll - ok
17:02:55.0559 4612 [ 2C105439AA27DC150511D90F3B6B1EC5 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
17:02:55.0559 4612 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
17:02:55.0559 4612 [ 15CF0E37F2B406BDE06CBA4F507B25DE ] C:\Windows\SysWOW64\ieui.dll
17:02:55.0559 4612 C:\Windows\SysWOW64\ieui.dll - ok
17:02:55.0569 4612 [ C827070FA5F88704C15B08D406EE6FFF ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
17:02:55.0569 4612 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
17:02:55.0569 4612 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
17:02:55.0569 4612 C:\Windows\SysWOW64\xmllite.dll - ok
17:02:55.0579 4612 [ 263963D93A3CA8F685EFA5966F1E6581 ] C:\Windows\SysWOW64\mshtml.dll
17:02:55.0579 4612 C:\Windows\SysWOW64\mshtml.dll - ok
17:02:55.0579 4612 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
17:02:55.0579 4612 C:\Windows\SysWOW64\d2d1.dll - ok
17:02:55.0579 4612 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
17:02:55.0579 4612 C:\Windows\SysWOW64\DWrite.dll - ok
17:02:55.0589 4612 [ A4E9EC8826373DF8D551BE6F39BB6E55 ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
17:02:55.0589 4612 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
17:02:55.0589 4612 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
17:02:55.0589 4612 C:\Windows\SysWOW64\dxgi.dll - ok
17:02:55.0589 4612 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
17:02:55.0589 4612 C:\Windows\SysWOW64\mlang.dll - ok
17:02:55.0599 4612 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
17:02:55.0599 4612 C:\Windows\SysWOW64\d3d10_1.dll - ok
17:02:55.0599 4612 [ DFEFB7F8606A1190C24F67DD618D194F ] C:\Windows\SysWOW64\atiuxpag.dll
17:02:55.0599 4612 C:\Windows\SysWOW64\atiuxpag.dll - ok
17:02:55.0599 4612 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
17:02:55.0599 4612 C:\Windows\SysWOW64\d3d10_1core.dll - ok
17:02:55.0609 4612 [ F4D811E1E1F217BDD0057B1D8F4DA84B ] C:\Windows\SysWOW64\atidxx32.dll
17:02:55.0609 4612 C:\Windows\SysWOW64\atidxx32.dll - ok
17:02:55.0609 4612 [ 40986A81053401E5379154818FA8733C ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
17:02:55.0609 4612 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
17:02:55.0619 4612 [ 569A07C4395AB391D0D0E437654D871A ] C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
17:02:55.0619 4612 C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
17:02:55.0619 4612 [ A5D08B86E8A437AA6DEAF7A187BF6CA5 ] C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
17:02:55.0619 4612 C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL - ok
17:02:55.0619 4612 [ 47FC5A4A45E883A36AFF884B3E6073B1 ] C:\PROGRA~2\MICROS~1\Office14\MSOHEV.DLL
17:02:55.0619 4612 C:\PROGRA~2\MICROS~1\Office14\MSOHEV.DLL - ok
17:02:55.0629 4612 [ 1B0EC94520CAB89A9CE1B2DA405166AF ] C:\Windows\SysWOW64\p2pcollab.dll
17:02:55.0629 4612 C:\Windows\SysWOW64\p2pcollab.dll - ok
17:02:55.0629 4612 [ 69F42E40A0C4344939437D86A8893DA6 ] C:\Windows\SysWOW64\jscript9.dll
17:02:55.0629 4612 C:\Windows\SysWOW64\jscript9.dll - ok
17:02:55.0629 4612 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
17:02:55.0629 4612 C:\Windows\SysWOW64\msimtf.dll - ok
17:02:55.0639 4612 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
17:02:55.0639 4612 C:\Windows\SysWOW64\powrprof.dll - ok
17:02:55.0639 4612 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
17:02:55.0639 4612 C:\Windows\SysWOW64\dxtrans.dll - ok
17:02:55.0649 4612 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
17:02:55.0649 4612 C:\Windows\SysWOW64\ddraw.dll - ok
17:02:55.0649 4612 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
17:02:55.0649 4612 C:\Windows\SysWOW64\ddrawex.dll - ok
17:02:55.0649 4612 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
17:02:55.0649 4612 C:\Windows\SysWOW64\dciman32.dll - ok
17:02:55.0659 4612 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
17:02:55.0659 4612 C:\Windows\SysWOW64\dxtmsft.dll - ok
17:02:55.0659 4612 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
17:02:55.0659 4612 C:\Windows\SysWOW64\d3d10.dll - ok
17:02:55.0659 4612 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
17:02:55.0659 4612 C:\Windows\SysWOW64\d3d10core.dll - ok
17:02:55.0669 4612 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
17:02:55.0669 4612 C:\Windows\SysWOW64\msls31.dll - ok
17:02:55.0669 4612 [ D0F2CB059B2A89AD5B24FD9EB8D784BE ] C:\Windows\SysWOW64\url.dll
17:02:55.0669 4612 C:\Windows\SysWOW64\url.dll - ok
17:02:55.0679 4612 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
17:02:55.0679 4612 C:\Windows\SysWOW64\IconCodecService.dll - ok
17:02:55.0679 4612 [ 38A0BE38EB53510AB425E33EA0847AD6 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx
17:02:55.0679 4612 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_6_602_180.ocx - ok
17:02:55.0679 4612 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
17:02:55.0679 4612 C:\Windows\SysWOW64\dsound.dll - ok
17:02:55.0689 4612 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
17:02:55.0689 4612 C:\Windows\SysWOW64\mscms.dll - ok
17:02:55.0689 4612 [ A854BC2D2AD9856F6B84C7870FF246D9 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe
17:02:55.0689 4612 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe - ok
17:02:55.0689 4612 [ 90FB1802D488FFA9029854A77D4F3F27 ] C:\Windows\SysWOW64\oleaccrc.dll
17:02:55.0689 4612 C:\Windows\SysWOW64\oleaccrc.dll - ok
17:02:55.0699 4612 [ 9394191C81A041311D8047D053390566 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.dll
17:02:55.0699 4612 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.dll - ok
17:02:55.0699 4612 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
17:02:55.0699 4612 C:\Windows\SysWOW64\msxml6.dll - ok
17:02:55.0709 4612 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
17:02:55.0709 4612 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
17:02:55.0709 4612 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
17:02:55.0709 4612 C:\Windows\System32\wuauclt.exe - ok
17:02:55.0709 4612 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
17:02:55.0709 4612 C:\Windows\System32\wucltux.dll - ok
17:02:55.0719 4612 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
17:02:55.0719 4612 C:\Windows\SysWOW64\icm32.dll - ok
17:02:55.0719 4612 [ 4C3DAEE652B005B483F16B8E9131C99D ] C:\Windows\System32\d3d9.dll
17:02:55.0719 4612 C:\Windows\System32\d3d9.dll - ok
17:02:55.0719 4612 [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65 ] C:\Windows\System32\d3d8thk.dll
17:02:55.0719 4612 C:\Windows\System32\d3d8thk.dll - ok
17:02:55.0729 4612 [ B976F5CD65D92FCDCDDD5A14BAEC89AB ] C:\Windows\System32\atiu9p64.dll
17:02:55.0729 4612 C:\Windows\System32\atiu9p64.dll - ok
17:02:55.0729 4612 [ E7934C5B243D871CAA15D273FD2E51A4 ] C:\Windows\System32\atiumd64.dll
17:02:55.0729 4612 C:\Windows\System32\atiumd64.dll - ok
17:02:55.0729 4612 [ 5EC8B7174E12AC81FA15328AF93D3BD4 ] C:\Windows\System32\atiumd6a.dll
17:02:55.0729 4612 C:\Windows\System32\atiumd6a.dll - ok
17:02:55.0739 4612 [ E5840A20CAB43276A2F58CA6F541D5DF ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll
17:02:55.0739 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\a50f3d1b7985318568ecec58ba24e409\PresentationFramework.Aero.ni.dll - ok
17:02:55.0739 4612 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
17:02:55.0739 4612 C:\Windows\System32\icm32.dll - ok
17:02:55.0739 4612 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
17:02:55.0739 4612 C:\Windows\System32\WindowsCodecsExt.dll - ok
17:02:55.0749 4612 [ C68A9ED2B7269F91A75BCE10894186EB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll
17:02:55.0749 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\7e75cd0b412dd2ac432f0ffbfaa7e55e\System.Core.ni.dll - ok
17:02:55.0749 4612 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
17:02:55.0749 4612 C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe - ok
17:02:55.0759 4612 [ D36AE1B392FAA88FBEF39DE1142DF051 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll
17:02:55.0759 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\f5ec8051a7f0dc49a56aa2563039702e\System.ServiceProcess.ni.dll - ok
17:02:55.0759 4612 [ CCD0214A064CA26B6663E8AAA14EBF93 ] C:\Windows\System32\PresentationNative_v0300.dll
17:02:55.0759 4612 C:\Windows\System32\PresentationNative_v0300.dll - ok
17:02:55.0759 4612 [ 2EFE164449F1C62CEA167B10850CD9F1 ] C:\Windows\System32\msctfui.dll
17:02:55.0759 4612 C:\Windows\System32\msctfui.dll - ok
17:02:55.0769 4612 [ 68E1D09FC5F2214F712FBB0340998A34 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll
17:02:55.0769 4612 C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\d965d516c924bc92b801f2b316444ffd\WindowsFormsIntegration.ni.dll - ok
17:02:55.0769 4612 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
17:02:55.0769 4612 C:\Windows\SysWOW64\linkinfo.dll - ok
17:02:55.0769 4612 ============================================================
17:02:55.0769 4612 Scan finished
17:02:55.0769 4612 ============================================================
17:02:55.0779 4604 Detected object count: 1
17:02:55.0779 4604 Actual detected object count: 1
17:03:13.0590 4604 STacSV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:13.0590 4604 STacSV ( UnsignedFile.Multi.Generic ) - User select action: Skip



#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:53 PM

Posted 29 March 2013 - 04:20 PM

did you run the other program?


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 newguy40

newguy40
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:10:53 PM

Posted 29 March 2013 - 04:54 PM

Doing it now.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users