Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

ZeroAccess Rootkit - Elevated help please


  • This topic is locked This topic is locked
44 replies to this topic

#1 2013again!

2013again!

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 05:56 PM

Referred here from the "Am I Infected?" forum,

thanks to BC Advisor .

 

In this link you will see several initial logs from Security Check, Farbar, etc.

http://www.bleepingcomputer.com/forums/t/494838/mse-closed-fake-security-infection/

 

 

 

I had Microsoft Security Essentials on my IE7.

I had an "update Java" type prompt that I tried to close.

(Would never open that!)

 

Suddenly MSE closed, I don't seem to have it available anymore.

A fake Security program tried to run, but I closed it.

 

I haven't observed any problems, other than the fact that MSE is disabled.

 

------

 

This may/may not be relevant: I had a some major problems several months

ago with viruses - I tried to repair them on my own - I accidently

deleted part of the MasterBootRecord, so I had to re-format my drive

and start over.

 

Gringo helped me through that.

 

DDS logs:

 

 



BC AdBot (Login to Remove)

 


#2 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 05:58 PM

DDS + Attachment

-------------------

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 8.0.7601.17514
Run by HAL at 17:46:04 on 2013-05-16
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.2942.1646 [GMT -5:00]
.
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://google.com/
uURLSearchHooks: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.0\ytdToolbarIE.dll
mWinlogon: Userinit = userinit.exe,
BHO: PC Gizmos BHO: {A817C286-3D6B-4ECD-A99C-E44E50DBC523} - C:\Users\HAL\AppData\Roaming\PC-Gizmos\PCGizmosBHO.dll
BHO: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.0\ytdToolbarIE.dll
TB: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.0\ytdToolbarIE.dll
uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
uRun: [PC_GIZMOS] "C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe" --update
mRun: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
mRunOnce: [Z1] cmd /c "C:\Users\HAL\Desktop\Downloads\mbar\mbar.exe" /cleanup /s
StartupFolder: C:\Users\HAL\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\OPENOF~1.LNK - C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
TCP: NameServer = 66.90.139.210 66.90.130.10
TCP: Interfaces\{F4ACD421-1D49-49B2-B84C-49D7EBE4D845} : DHCPNameServer = 66.90.139.210 66.90.130.10
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\mssecex.exe" -hide -runkey
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\HAL\AppData\Roaming\Mozilla\Firefox\Profiles\y4frfkdf.default\
FF - prefs.js: browser.startup.homepage - hxxp://google.com/
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
.
============= SERVICES / DRIVERS ===============
.
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672]
R2 Application Updater;Application Updater;C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2013-2-23 805752]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 128456]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2012-9-12 368896]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-2-8 1255736]
.
=============== Created Last 30 ================
.
2013-05-16 18:06:19 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client
2013-05-16 18:04:02 -------- d-----w- C:\Windows\TempE226ED41-49E7-44E7-AA85-87E142487A19-Signatures
2013-05-15 04:46:04 983400 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2013-05-15 04:46:04 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2013-05-15 04:46:04 144384 ----a-w- C:\Windows\System32\cdd.dll
2013-05-15 04:46:00 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-04-24 16:32:20 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys
.
==================== Find3M  ====================
.
2013-05-02 15:29:56 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-04-10 05:51:43 1188864 ----a-w- C:\Windows\System32\wininet.dll
2013-04-10 05:08:12 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-04-10 03:30:50 3153920 ----a-w- C:\Windows\System32\win32k.sys
2013-04-09 16:31:33 145 ----a-w- C:\Users\HAL\AppData\Roaming\uninstall.bat
2013-04-04 19:50:32 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-03-19 06:04:06 5550424 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-03-19 05:46:56 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2013-03-19 05:04:13 3968856 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47:50 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2013-03-19 03:06:33 112640 ----a-w- C:\Windows\System32\smss.exe
2013-03-02 02:50:18 71024 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-02 02:50:18 691568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-02-28 12:03:52 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2013-02-28 11:38:43 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-02-27 06:02:44 111448 ----a-w- C:\Windows\System32\consent.exe
2013-02-27 05:47:10 70144 ----a-w- C:\Windows\System32\appinfo.dll
2013-02-27 04:49:24 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
.
============= FINISH: 17:46:18.53 ===============
 

 

Attached Files



#3 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:12 PM

Posted 16 May 2013 - 08:18 PM


Hello 2013again!

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.


Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.


These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
When they are complete let me have the two reports and let me know how things are running.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#4 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 08:55 PM

Thanks! Here are the 2 logs.

 

Been browsing familiar sites - no issues so far.

 

 

-------------------------

 

 

Ad

 

 

# AdwCleaner v2.301 - Logfile created 05/16/2013 at 20:45:57
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : HAL - HAL-PC
# Boot Mode : Normal
# Running from : C:\Users\HAL\Desktop\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : Application Updater
 
***** [Files / Folders] *****
 
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Users\HAL\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\HAL\AppData\Roaming\Mozilla\Firefox\Profiles\y4frfkdf.default\extensions\staged
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v8.0.7601.17514
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v19.0 (en-US)
 
File : C:\Users\HAL\AppData\Roaming\Mozilla\Firefox\Profiles\y4frfkdf.default\prefs.js
 
[OK] File is clean.
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\HAL\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [2200 octets] - [16/05/2013 20:45:57]
 
########## EOF - C:\AdwCleaner[S1].txt - [2260 octets] ##########
 

----------------

 

JRT:

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by HAL on Thu 05/16/2013 at 20:49:43.31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Program Files (x86)\ytd toolbar"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
 
 
 
~~~ FireFox
 
Failed to delete: [Folder] C:\Users\HAL\AppData\Roaming\mozilla\firefox\profiles\y4frfkdf.default\extensions\ytd@mybrowserbar.com
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 05/16/2013 at 20:52:50.94
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#5 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:12 PM

Posted 16 May 2013 - 09:13 PM


Hello 2013again!

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#6 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 09:40 PM

Thanks Gringo!

 

But I'm afraid of Combofix doing damage.... 

 

I damaged my computer with Hitmanpro, so I have a fear of powerful tools.

 

I am reading Combofix reviews - feel hesitant.



#7 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:12 PM

Posted 16 May 2013 - 10:09 PM

That is why I am here - if something goes wrong I am here to help


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#8 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 10:28 PM

Ok, combofix log:
 
 
ComboFix 13-05-16.02 - HAL 05/16/2013  22:21:19.1.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.2942.1945 [GMT -5:00]
Running from: c:\users\HAL\Desktop\Downloads\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\HAL\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk
c:\users\HAL\AppData\Roaming\Microsoft\Network\Connections\Pbk\_hiddenPbk\rasphone.pbk
F:\Autorun.inf
.
.
(((((((((((((((((((((((((   Files Created from 2013-04-17 to 2013-05-17  )))))))))))))))))))))))))))))))
.
.
2013-05-17 03:24 . 2013-05-17 03:24 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-17 01:49 . 2013-05-17 01:49 -------- d-----w- c:\windows\ERUNT
2013-05-17 01:49 . 2013-05-17 01:49 -------- d-----w- C:\JRT
2013-05-16 18:06 . 2013-05-16 18:06 -------- d-----w- c:\program files (x86)\Microsoft Security Client
2013-05-16 18:04 . 2013-05-16 18:04 -------- d-----w- c:\windows\TempE226ED41-49E7-44E7-AA85-87E142487A19-Signatures
2013-05-15 04:46 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-05-15 04:46 . 2013-04-10 06:01 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2013-05-15 04:46 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll
2013-05-15 04:46 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll
2013-05-15 04:46 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll
2013-05-15 04:46 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll
2013-04-24 16:32 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 08:08 . 2013-02-08 20:09 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-02 15:29 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-09 16:31 . 2013-03-29 22:56 145 ----a-w- c:\users\HAL\AppData\Roaming\uninstall.bat
2013-04-04 19:50 . 2013-02-07 06:08 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-03-19 06:04 . 2013-04-10 13:23 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 13:23 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 13:23 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 13:23 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 13:23 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 13:23 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-02 02:50 . 2013-02-07 18:03 71024 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-02 02:50 . 2013-02-07 18:03 691568 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-28 12:03 . 2013-03-13 15:51 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2013-02-28 11:38 . 2013-03-13 15:51 1638912 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-02-20 03:32 . 2013-02-20 03:32 15413704 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2013-02-20 03:32 . 2013-02-20 03:32 25256736 ----a-w- c:\windows\system32\nvcompiler.dll
2013-02-20 03:32 . 2013-02-20 03:32 2222880 ----a-w- c:\windows\system32\nvcuvenc.dll
2013-02-20 03:32 . 2013-02-20 03:32 18376008 ----a-w- c:\windows\system32\nvd3dumx.dll
2013-02-20 03:32 . 2013-02-20 03:32 2749216 ----a-w- c:\windows\system32\nvcuvid.dll
2013-02-20 03:32 . 2013-02-20 03:32 1802528 ----a-w- c:\windows\system32\nvdispco64.dll
2013-02-20 03:32 . 2013-02-20 03:32 7457968 ----a-w- c:\windows\system32\nvopencl.dll
2013-02-20 03:32 . 2013-02-20 03:32 26341664 ----a-w- c:\windows\system32\nvoglv64.dll
2013-02-20 03:32 . 2013-02-20 03:32 2752880 ----a-w- c:\windows\system32\nvapi64.dll
2013-02-20 03:32 . 2013-02-20 03:32 2446416 ----a-w- c:\windows\SysWow64\nvapi.dll
2013-02-20 03:32 . 2013-04-12 08:02 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-02-20 03:32 . 2013-02-20 03:32 6162704 ----a-w- c:\windows\SysWow64\nvopencl.dll
2013-02-20 03:32 . 2013-02-20 03:32 13531936 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2013-02-20 03:32 . 2013-02-20 03:32 7754560 ----a-w- c:\windows\SysWow64\nvcuda.dll
2013-02-20 03:32 . 2013-02-20 03:32 17560352 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2013-02-20 03:32 . 2013-02-20 03:32 2577184 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2013-02-20 03:32 . 2013-02-20 03:32 1869088 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2013-02-20 03:32 . 2013-02-20 03:32 19915552 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2013-02-20 03:32 . 2013-02-20 03:32 9184760 ----a-w- c:\windows\system32\nvcuda.dll
2013-02-20 03:32 . 2013-04-12 08:02 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-02-20 03:32 . 2013-02-20 03:32 1510176 ----a-w- c:\windows\system32\nvdispgenco64.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-01 5629312]
"PC_GIZMOS"="c:\users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe" [2013-04-09 2159680]
.
c:\users\HAL\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.4.1.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2012-8-13 1199104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 bitzmpmt;bitzmpmt;c:\windows\system32\drivers\bitzmpmt.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-13 368896]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2013-02-08 1255736]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-31 128456]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-13 05:17 1642448 ----a-w- c:\program files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-05-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-13 05:16]
.
2013-05-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-13 05:16]
.
.
--------- X64 Entries -----------
.
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 66.90.139.210 66.90.130.10
FF - ProfilePath - c:\users\HAL\AppData\Roaming\Mozilla\Firefox\Profiles\y4frfkdf.default\
FF - prefs.js: browser.startup.homepage - hxxp://google.com/
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-MSC - c:\program files\Microsoft Security Client\mssecex.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-05-16  22:26:51
ComboFix-quarantined-files.txt  2013-05-17 03:26
.
Pre-Run: 85,786,591,232 bytes free
Post-Run: 85,777,391,616 bytes free
.
- - End Of File - - 6C52D79A500D1EABC246D1CE0BCCA278


#9 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:12 PM

Posted 16 May 2013 - 10:37 PM


Hello 2013again!

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================
and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit
  • Quit all programs that you may have started.
  • Please disconnect any external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
  • Exit/Close RogueKiller+
send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#10 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 10:59 PM

TDS Log (split into 2 replies)
 
 
22:49:19.0430 1932  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
22:49:20.0085 1932  ============================================================
22:49:20.0085 1932  Current date / time: 2013/05/16 22:49:20.0085
22:49:20.0085 1932  SystemInfo:
22:49:20.0085 1932  
22:49:20.0085 1932  OS Version: 6.1.7601 ServicePack: 1.0
22:49:20.0085 1932  Product type: Workstation
22:49:20.0085 1932  ComputerName: HAL-PC
22:49:20.0085 1932  UserName: HAL
22:49:20.0085 1932  Windows directory: C:\Windows
22:49:20.0085 1932  System windows directory: C:\Windows
22:49:20.0085 1932  Running under WOW64
22:49:20.0085 1932  Processor architecture: Intel x64
22:49:20.0085 1932  Number of processors: 2
22:49:20.0085 1932  Page size: 0x1000
22:49:20.0085 1932  Boot type: Normal boot
22:49:20.0085 1932  ============================================================
22:49:28.0525 1932  BG loaded
22:49:28.0915 1932  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
22:49:28.0915 1932  Drive \Device\Harddisk1\DR1 - Size: 0x2BAA1475000 (2794.52 Gb), SectorSize: 0x1000, Cylinders: 0xB220, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:49:28.0930 1932  ============================================================
22:49:28.0930 1932  \Device\Harddisk0\DR0:
22:49:28.0930 1932  MBR partitions:
22:49:28.0930 1932  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:49:28.0930 1932  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x38D84000
22:49:28.0930 1932  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38DB6800, BlocksNum 0x15C8030
22:49:28.0930 1932  \Device\Harddisk1\DR1:
22:49:28.0930 1932  MBR partitions:
22:49:28.0930 1932  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2BAA0800
22:49:28.0930 1932  ============================================================
22:49:28.0946 1932  C: <-> \Device\Harddisk0\DR0\Partition2
22:49:28.0977 1932  D: <-> \Device\Harddisk0\DR0\Partition3
22:49:29.0040 1932  F: <-> \Device\Harddisk1\DR1\Partition1
22:49:29.0040 1932  ============================================================
22:49:29.0040 1932  Initialize success
22:49:29.0040 1932  ============================================================
22:50:38.0143 1356  ============================================================
22:50:38.0143 1356  Scan started
22:50:38.0143 1356  Mode: Manual; SigCheck; TDLFS; 
22:50:38.0143 1356  ============================================================
22:50:39.0444 1356  ================ Scan system memory ========================
22:50:39.0444 1356  System memory - ok
22:50:39.0445 1356  ================ Scan services =============================
22:50:39.0503 1356  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:50:39.0596 1356  !SASCORE ( UnsignedFile.Multi.Generic ) - warning
22:50:39.0596 1356  !SASCORE - detected UnsignedFile.Multi.Generic (1)
22:50:39.0730 1356  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:50:39.0800 1356  1394ohci - ok
22:50:39.0826 1356  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:50:39.0858 1356  ACPI - ok
22:50:39.0876 1356  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:50:39.0963 1356  AcpiPmi - ok
22:50:40.0004 1356  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:50:40.0045 1356  adp94xx - ok
22:50:40.0072 1356  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:50:40.0086 1356  adpahci - ok
22:50:40.0093 1356  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:50:40.0105 1356  adpu320 - ok
22:50:40.0123 1356  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:50:40.0207 1356  AeLookupSvc - ok
22:50:40.0240 1356  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:50:40.0279 1356  AFD - ok
22:50:40.0349 1356  [ 98022774D9930ECBB292E70DB7601DF6 ] AGERESoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
22:50:40.0404 1356  AGERESoftModem - ok
22:50:40.0430 1356  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:50:40.0443 1356  agp440 - ok
22:50:40.0468 1356  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:50:40.0507 1356  ALG - ok
22:50:40.0528 1356  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:50:40.0540 1356  aliide - ok
22:50:40.0549 1356  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:50:40.0561 1356  amdide - ok
22:50:40.0582 1356  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:50:40.0610 1356  AmdK8 - ok
22:50:40.0625 1356  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:50:40.0647 1356  AmdPPM - ok
22:50:40.0661 1356  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:50:40.0675 1356  amdsata - ok
22:50:40.0693 1356  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:50:40.0708 1356  amdsbs - ok
22:50:40.0720 1356  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:50:40.0732 1356  amdxata - ok
22:50:40.0762 1356  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:50:40.0889 1356  AppID - ok
22:50:40.0912 1356  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:50:40.0984 1356  AppIDSvc - ok
22:50:41.0011 1356  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
22:50:41.0066 1356  Appinfo - ok
22:50:41.0108 1356  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
22:50:41.0139 1356  arc - ok
22:50:41.0198 1356  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:50:41.0225 1356  arcsas - ok
22:50:41.0245 1356  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:50:41.0314 1356  AsyncMac - ok
22:50:41.0328 1356  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:50:41.0338 1356  atapi - ok
22:50:41.0378 1356  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:50:41.0422 1356  AudioEndpointBuilder - ok
22:50:41.0432 1356  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:50:41.0467 1356  AudioSrv - ok
22:50:41.0489 1356  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:50:41.0565 1356  AxInstSV - ok
22:50:41.0598 1356  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:50:41.0638 1356  b06bdrv - ok
22:50:41.0665 1356  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:50:41.0693 1356  b57nd60a - ok
22:50:41.0715 1356  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:50:41.0742 1356  BDESVC - ok
22:50:41.0762 1356  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:50:41.0810 1356  Beep - ok
22:50:41.0874 1356  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:50:41.0939 1356  BFE - ok
22:50:41.0972 1356  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
22:50:42.0021 1356  BITS - ok
22:50:42.0025 1356  bitzmpmt - ok
22:50:42.0047 1356  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:50:42.0057 1356  blbdrive - ok
22:50:42.0088 1356  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:50:42.0132 1356  bowser - ok
22:50:42.0157 1356  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:50:42.0205 1356  BrFiltLo - ok
22:50:42.0224 1356  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:50:42.0239 1356  BrFiltUp - ok
22:50:42.0253 1356  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
22:50:42.0304 1356  BridgeMP - ok
22:50:42.0341 1356  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:50:42.0375 1356  Browser - ok
22:50:42.0393 1356  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:50:42.0416 1356  Brserid - ok
22:50:42.0428 1356  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:50:42.0452 1356  BrSerWdm - ok
22:50:42.0465 1356  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:50:42.0488 1356  BrUsbMdm - ok
22:50:42.0492 1356  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:50:42.0520 1356  BrUsbSer - ok
22:50:42.0542 1356  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:50:42.0567 1356  BTHMODEM - ok
22:50:42.0597 1356  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:50:42.0659 1356  bthserv - ok
22:50:42.0677 1356  catchme - ok
22:50:42.0696 1356  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:50:42.0735 1356  cdfs - ok
22:50:42.0759 1356  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:50:42.0779 1356  cdrom - ok
22:50:42.0801 1356  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:50:42.0842 1356  CertPropSvc - ok
22:50:42.0852 1356  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
22:50:42.0873 1356  circlass - ok
22:50:42.0894 1356  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:50:42.0909 1356  CLFS - ok
22:50:42.0955 1356  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:50:42.0985 1356  clr_optimization_v2.0.50727_32 - ok
22:50:43.0022 1356  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:50:43.0050 1356  clr_optimization_v2.0.50727_64 - ok
22:50:43.0113 1356  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:50:43.0141 1356  clr_optimization_v4.0.30319_32 - ok
22:50:43.0160 1356  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:50:43.0177 1356  clr_optimization_v4.0.30319_64 - ok
22:50:43.0205 1356  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:50:43.0235 1356  CmBatt - ok
22:50:43.0253 1356  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:50:43.0278 1356  cmdide - ok
22:50:43.0312 1356  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:50:43.0354 1356  CNG - ok
22:50:43.0372 1356  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:50:43.0382 1356  Compbatt - ok
22:50:43.0404 1356  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:50:43.0429 1356  CompositeBus - ok
22:50:43.0444 1356  COMSysApp - ok
22:50:43.0454 1356  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:50:43.0464 1356  crcdisk - ok
22:50:43.0493 1356  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:50:43.0541 1356  CryptSvc - ok
22:50:43.0570 1356  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:50:43.0623 1356  DcomLaunch - ok
22:50:43.0652 1356  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:50:43.0697 1356  defragsvc - ok
22:50:43.0719 1356  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:50:43.0757 1356  DfsC - ok
22:50:43.0779 1356  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:50:43.0831 1356  Dhcp - ok
22:50:43.0853 1356  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:50:43.0884 1356  discache - ok
22:50:43.0897 1356  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
22:50:43.0908 1356  Disk - ok
22:50:43.0940 1356  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:50:43.0973 1356  Dnscache - ok
22:50:43.0985 1356  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:50:44.0025 1356  dot3svc - ok
22:50:44.0040 1356  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:50:44.0083 1356  DPS - ok
22:50:44.0124 1356  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:50:44.0148 1356  drmkaud - ok
22:50:44.0180 1356  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:50:44.0202 1356  DXGKrnl - ok
22:50:44.0215 1356  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:50:44.0260 1356  EapHost - ok
22:50:44.0325 1356  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:50:44.0421 1356  ebdrv - ok
22:50:44.0465 1356  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:50:44.0517 1356  EFS - ok
22:50:44.0572 1356  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:50:44.0624 1356  ehRecvr - ok
22:50:44.0650 1356  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:50:44.0665 1356  ehSched - ok
22:50:44.0697 1356  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:50:44.0719 1356  elxstor - ok
22:50:44.0732 1356  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:50:44.0750 1356  ErrDev - ok
22:50:44.0793 1356  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:50:44.0849 1356  EventSystem - ok
22:50:44.0869 1356  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:50:44.0903 1356  exfat - ok
22:50:44.0915 1356  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:50:44.0955 1356  fastfat - ok
22:50:44.0987 1356  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:50:45.0026 1356  Fax - ok
22:50:45.0037 1356  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
22:50:45.0056 1356  fdc - ok
22:50:45.0071 1356  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:50:45.0102 1356  fdPHost - ok
22:50:45.0110 1356  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:50:45.0141 1356  FDResPub - ok
22:50:45.0166 1356  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:50:45.0176 1356  FileInfo - ok
22:50:45.0182 1356  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:50:45.0223 1356  Filetrace - ok
22:50:45.0235 1356  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:50:45.0245 1356  flpydisk - ok
22:50:45.0267 1356  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:50:45.0279 1356  FltMgr - ok
22:50:45.0306 1356  [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache       C:\Windows\system32\FntCache.dll
22:50:45.0354 1356  FontCache - ok
22:50:45.0386 1356  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:50:45.0395 1356  FontCache3.0.0.0 - ok
22:50:45.0408 1356  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:50:45.0418 1356  FsDepends - ok
22:50:45.0451 1356  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:50:45.0461 1356  Fs_Rec - ok
22:50:45.0477 1356  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:50:45.0493 1356  fvevol - ok
22:50:45.0502 1356  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:50:45.0513 1356  gagp30kx - ok
22:50:45.0543 1356  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:50:45.0580 1356  gpsvc - ok
22:50:45.0644 1356  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:50:45.0669 1356  gupdate - ok
22:50:45.0676 1356  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:50:45.0686 1356  gupdatem - ok
22:50:45.0695 1356  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:50:45.0727 1356  hcw85cir - ok
22:50:45.0770 1356  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:50:45.0815 1356  HdAudAddService - ok
22:50:45.0835 1356  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:50:45.0872 1356  HDAudBus - ok
22:50:45.0886 1356  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:50:45.0911 1356  HidBatt - ok
22:50:45.0926 1356  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:50:45.0951 1356  HidBth - ok
22:50:45.0968 1356  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:50:45.0984 1356  HidIr - ok
22:50:46.0007 1356  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
22:50:46.0057 1356  hidserv - ok
22:50:46.0083 1356  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:50:46.0096 1356  HidUsb - ok
22:50:46.0116 1356  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:50:46.0160 1356  hkmsvc - ok
22:50:46.0174 1356  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:50:46.0207 1356  HomeGroupListener - ok
22:50:46.0233 1356  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:50:46.0254 1356  HomeGroupProvider - ok
22:50:46.0271 1356  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:50:46.0282 1356  HpSAMD - ok
22:50:46.0328 1356  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:50:46.0377 1356  HTTP - ok
22:50:46.0396 1356  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:50:46.0406 1356  hwpolicy - ok
22:50:46.0422 1356  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:50:46.0434 1356  i8042prt - ok
22:50:46.0463 1356  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:50:46.0480 1356  iaStorV - ok
22:50:46.0528 1356  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:50:46.0562 1356  idsvc - ok
22:50:46.0577 1356  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:50:46.0587 1356  iirsp - ok
22:50:46.0614 1356  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:50:46.0667 1356  IKEEXT - ok
22:50:46.0685 1356  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:50:46.0701 1356  intelide - ok
22:50:46.0742 1356  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
22:50:46.0768 1356  intelppm - ok
22:50:46.0789 1356  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:50:46.0847 1356  IPBusEnum - ok
22:50:46.0853 1356  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:50:46.0886 1356  IpFilterDriver - ok
22:50:46.0906 1356  [ A34A587FFFD45FA649FBA6D03784D257 ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
22:50:46.0953 1356  IpHlpSvc - ok
22:50:46.0971 1356  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:50:46.0993 1356  IPMIDRV - ok
22:50:47.0012 1356  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:50:47.0045 1356  IPNAT - ok
22:50:47.0070 1356  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:50:47.0085 1356  IRENUM - ok
22:50:47.0100 1356  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:50:47.0110 1356  isapnp - ok
22:50:47.0120 1356  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:50:47.0134 1356  iScsiPrt - ok
22:50:47.0151 1356  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:50:47.0160 1356  kbdclass - ok
22:50:47.0172 1356  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:50:47.0191 1356  kbdhid - ok
22:50:47.0203 1356  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:50:47.0213 1356  KeyIso - ok
22:50:47.0239 1356  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:50:47.0250 1356  KSecDD - ok
22:50:47.0264 1356  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:50:47.0276 1356  KSecPkg - ok
22:50:47.0283 1356  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:50:47.0321 1356  ksthunk - ok
22:50:47.0348 1356  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:50:47.0395 1356  KtmRm - ok
22:50:47.0417 1356  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
22:50:47.0459 1356  LanmanServer - ok
22:50:47.0483 1356  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:50:47.0520 1356  LanmanWorkstation - ok
22:50:47.0551 1356  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:50:47.0615 1356  lltdio - ok
22:50:47.0634 1356  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:50:47.0678 1356  lltdsvc - ok
22:50:47.0702 1356  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:50:47.0734 1356  lmhosts - ok
22:50:47.0754 1356  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:50:47.0766 1356  LSI_FC - ok
22:50:47.0771 1356  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:50:47.0782 1356  LSI_SAS - ok
22:50:47.0794 1356  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:50:47.0805 1356  LSI_SAS2 - ok
22:50:47.0816 1356  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:50:47.0827 1356  LSI_SCSI - ok
22:50:47.0845 1356  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:50:47.0882 1356  luafv - ok
22:50:47.0908 1356  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:50:47.0921 1356  Mcx2Svc - ok
22:50:47.0931 1356  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:50:47.0941 1356  megasas - ok
22:50:47.0968 1356  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:50:47.0982 1356  MegaSR - ok
22:50:48.0006 1356  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:50:48.0047 1356  MMCSS - ok
22:50:48.0061 1356  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:50:48.0109 1356  Modem - ok
22:50:48.0135 1356  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:50:48.0153 1356  monitor - ok
22:50:48.0164 1356  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:50:48.0174 1356  mouclass - ok
22:50:48.0189 1356  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:50:48.0210 1356  mouhid - ok
22:50:48.0247 1356  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:50:48.0262 1356  mountmgr - ok
22:50:48.0320 1356  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:50:48.0346 1356  MozillaMaintenance - ok
22:50:48.0359 1356  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:50:48.0373 1356  mpio - ok
22:50:48.0383 1356  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:50:48.0414 1356  mpsdrv - ok
22:50:48.0445 1356  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:50:48.0493 1356  MpsSvc - ok
22:50:48.0508 1356  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:50:48.0534 1356  MRxDAV - ok
22:50:48.0563 1356  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:50:48.0606 1356  mrxsmb - ok
22:50:48.0625 1356  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:50:48.0645 1356  mrxsmb10 - ok
22:50:48.0656 1356  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:50:48.0667 1356  mrxsmb20 - ok
22:50:48.0691 1356  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:50:48.0707 1356  msahci - ok
22:50:48.0753 1356  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:50:48.0765 1356  msdsm - ok
22:50:48.0779 1356  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:50:48.0805 1356  MSDTC - ok
22:50:48.0833 1356  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:50:48.0863 1356  Msfs - ok
22:50:48.0870 1356  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:50:48.0901 1356  mshidkmdf - ok
22:50:48.0914 1356  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:50:48.0924 1356  msisadrv - ok
22:50:48.0952 1356  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:50:48.0997 1356  MSiSCSI - ok
22:50:49.0001 1356  msiserver - ok
22:50:49.0025 1356  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:50:49.0086 1356  MSKSSRV - ok
22:50:49.0106 1356  MsMpSvc - ok
22:50:49.0117 1356  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:50:49.0148 1356  MSPCLOCK - ok
22:50:49.0152 1356  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:50:49.0194 1356  MSPQM - ok
22:50:49.0214 1356  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:50:49.0230 1356  MsRPC - ok
22:50:49.0244 1356  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:50:49.0253 1356  mssmbios - ok
22:50:49.0266 1356  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:50:49.0306 1356  MSTEE - ok
22:50:49.0319 1356  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:50:49.0330 1356  MTConfig - ok
22:50:49.0340 1356  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:50:49.0350 1356  Mup - ok
22:50:49.0373 1356  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:50:49.0416 1356  napagent - ok
22:50:49.0445 1356  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:50:49.0476 1356  NativeWifiP - ok
22:50:49.0500 1356  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:50:49.0526 1356  NDIS - ok
22:50:49.0538 1356  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:50:49.0569 1356  NdisCap - ok
22:50:49.0589 1356  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:50:49.0619 1356  NdisTapi - ok
22:50:49.0630 1356  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:50:49.0666 1356  Ndisuio - ok
22:50:49.0682 1356  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:50:49.0723 1356  NdisWan - ok
22:50:49.0736 1356  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:50:49.0765 1356  NDProxy - ok
22:50:49.0775 1356  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:50:49.0817 1356  NetBIOS - ok
22:50:49.0834 1356  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:50:49.0865 1356  NetBT - ok
22:50:49.0876 1356  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:50:49.0886 1356  Netlogon - ok
22:50:49.0910 1356  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:50:49.0956 1356  Netman - ok
22:50:49.0965 1356  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:50:50.0011 1356  netprofm - ok
22:50:50.0037 1356  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:50:50.0047 1356  NetTcpPortSharing - ok
22:50:50.0059 1356  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:50:50.0069 1356  nfrd960 - ok
22:50:50.0099 1356  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:50:50.0112 1356  NisDrv - ok
22:50:50.0123 1356  NisSrv - ok
22:50:50.0148 1356  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:50:50.0194 1356  NlaSvc - ok
22:50:50.0209 1356  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:50:50.0239 1356  Npfs - ok
22:50:50.0247 1356  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:50:50.0288 1356  nsi - ok
22:50:50.0306 1356  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:50:50.0336 1356  nsiproxy - ok
22:50:50.0376 1356  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:50:50.0425 1356  Ntfs - ok
22:50:50.0438 1356  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:50:50.0468 1356  Null - ok
22:50:50.0510 1356  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
22:50:50.0545 1356  NVENETFD - ok
22:50:50.0765 1356  [ 8E6247F418B4C8AE9EEB0B532CABCC21 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:50:50.0954 1356  nvlddmkm - ok
22:50:50.0977 1356  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:50:50.0988 1356  nvraid - ok
22:50:51.0008 1356  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:50:51.0019 1356  nvstor - ok
22:50:51.0067 1356  [ 41B97DCE2B2D113B831EB197F02A7398 ] nvsvc           C:\Windows\system32\nvvsvc.exe
22:50:51.0089 1356  nvsvc - ok
22:50:51.0108 1356  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:50:51.0119 1356  nv_agp - ok
22:50:51.0130 1356  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:50:51.0141 1356  ohci1394 - ok
22:50:51.0157 1356  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:50:51.0203 1356  p2pimsvc - ok
22:50:51.0221 1356  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:50:51.0248 1356  p2psvc - ok
22:50:51.0263 1356  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
22:50:51.0275 1356  Parport - ok
22:50:51.0306 1356  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:50:51.0317 1356  partmgr - ok
22:50:51.0345 1356  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:50:51.0372 1356  PcaSvc - ok
22:50:51.0384 1356  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:50:51.0396 1356  pci - ok
22:50:51.0410 1356  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:50:51.0419 1356  pciide - ok
22:50:51.0433 1356  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:50:51.0447 1356  pcmcia - ok
22:50:51.0460 1356  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:50:51.0471 1356  pcw - ok
22:50:51.0492 1356  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:50:51.0535 1356  PEAUTH - ok
22:50:51.0582 1356  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:50:51.0623 1356  PerfHost - ok
22:50:51.0695 1356  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:50:51.0769 1356  pla - ok
22:50:51.0805 1356  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:50:51.0841 1356  PlugPlay - ok
22:50:51.0855 1356  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:50:51.0878 1356  PNRPAutoReg - ok
22:50:51.0898 1356  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:50:51.0911 1356  PNRPsvc - ok
22:50:51.0939 1356  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:50:51.0981 1356  PolicyAgent - ok
22:50:52.0013 1356  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:50:52.0057 1356  Power - ok
22:50:52.0082 1356  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:50:52.0125 1356  PptpMiniport - ok
22:50:52.0147 1356  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
22:50:52.0160 1356  Processor - ok
22:50:52.0192 1356  [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc         C:\Windows\system32\profsvc.dll
22:50:52.0234 1356  ProfSvc - ok
22:50:52.0248 1356  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:50:52.0258 1356  ProtectedStorage - ok
22:50:52.0285 1356  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:50:52.0315 1356  Psched - ok
22:50:52.0344 1356  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:50:52.0391 1356  ql2300 - ok
22:50:52.0413 1356  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:50:52.0424 1356  ql40xx - ok
22:50:52.0441 1356  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:50:52.0459 1356  QWAVE - ok
22:50:52.0468 1356  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:50:52.0496 1356  QWAVEdrv - ok
22:50:52.0514 1356  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:50:52.0544 1356  RasAcd - ok
22:50:52.0566 1356  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:50:52.0596 1356  RasAgileVpn - ok
22:50:52.0606 1356  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:50:52.0644 1356  RasAuto - ok
22:50:52.0664 1356  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:50:52.0705 1356  Rasl2tp - ok
22:50:52.0725 1356  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:50:52.0758 1356  RasMan - ok
22:50:52.0767 1356  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:50:52.0810 1356  RasPppoe - ok
22:50:52.0822 1356  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:50:52.0862 1356  RasSstp - ok
22:50:52.0886 1356  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:50:52.0918 1356  rdbss - ok
22:50:52.0929 1356  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:50:52.0943 1356  rdpbus - ok
22:50:52.0964 1356  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:50:52.0994 1356  RDPCDD - ok
22:50:53.0001 1356  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:50:53.0049 1356  RDPENCDD - ok
22:50:53.0055 1356  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:50:53.0085 1356  RDPREFMP - ok
22:50:53.0117 1356  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:50:53.0149 1356  RDPWD - ok
22:50:53.0170 1356  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:50:53.0183 1356  rdyboost - ok
22:50:53.0197 1356  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:50:53.0239 1356  RemoteAccess - ok
22:50:53.0269 1356  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:50:53.0303 1356  RemoteRegistry - ok
22:50:53.0317 1356  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:50:53.0356 1356  RpcEptMapper - ok
22:50:53.0373 1356  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:50:53.0385 1356  RpcLocator - ok
22:50:53.0401 1356  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:50:53.0435 1356  RpcSs - ok
22:50:53.0457 1356  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:50:53.0488 1356  rspndr - ok
22:50:53.0497 1356  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:50:53.0507 1356  SamSs - ok
22:50:53.0547 1356  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:50:53.0570 1356  SASDIFSV - ok
22:50:53.0592 1356  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:50:53.0607 1356  SASKUTIL - ok
22:50:53.0621 1356  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:50:53.0634 1356  sbp2port - ok
22:50:53.0658 1356  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:50:53.0695 1356  SCardSvr - ok
22:50:53.0704 1356  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:50:53.0742 1356  scfilter - ok
22:50:53.0766 1356  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:50:53.0819 1356  Schedule - ok
22:50:53.0840 1356  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:50:53.0869 1356  SCPolicySvc - ok
22:50:53.0883 1356  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:50:53.0898 1356  SDRSVC - ok
22:50:53.0914 1356  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:50:53.0943 1356  secdrv - ok
22:50:53.0950 1356  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:50:53.0979 1356  seclogon - ok
22:50:54.0004 1356  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
22:50:54.0049 1356  SENS - ok
22:50:54.0063 1356  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:50:54.0092 1356  SensrSvc - ok
22:50:54.0111 1356  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:50:54.0133 1356  Serenum - ok
22:50:54.0146 1356  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
22:50:54.0171 1356  Serial - ok
22:50:54.0187 1356  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:50:54.0205 1356  sermouse - ok
22:50:54.0228 1356  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:50:54.0272 1356  SessionEnv - ok
22:50:54.0276 1356  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:50:54.0289 1356  sffdisk - ok
22:50:54.0293 1356  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:50:54.0307 1356  sffp_mmc - ok
22:50:54.0311 1356  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:50:54.0325 1356  sffp_sd - ok
22:50:54.0330 1356  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:50:54.0340 1356  sfloppy - ok
22:50:54.0369 1356  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:50:54.0402 1356  SharedAccess - ok
22:50:54.0414 1356  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:50:54.0447 1356  ShellHWDetection - ok
22:50:54.0464 1356  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:50:54.0474 1356  SiSRaid2 - ok
22:50:54.0488 1356  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:50:54.0499 1356  SiSRaid4 - ok
22:50:54.0521 1356  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:50:54.0565 1356  Smb - ok
22:50:54.0590 1356  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:50:54.0614 1356  SNMPTRAP - ok
22:50:54.0627 1356  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:50:54.0637 1356  spldr - ok
22:50:54.0652 1356  [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler         C:\Windows\System32\spoolsv.exe
22:50:54.0687 1356  Spooler - ok
22:50:54.0742 1356  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:50:54.0816 1356  sppsvc - ok
22:50:54.0832 1356  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:50:54.0864 1356  sppuinotify - ok
22:50:54.0895 1356  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:50:54.0925 1356  srv - ok
22:50:54.0934 1356  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:50:54.0957 1356  srv2 - ok
22:50:54.0971 1356  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:50:54.0982 1356  srvnet - ok
22:50:55.0012 1356  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:50:55.0059 1356  SSDPSRV - ok
22:50:55.0076 1356  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:50:55.0108 1356  SstpSvc - ok
22:50:55.0122 1356  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:50:55.0132 1356  stexstor - ok
22:50:55.0168 1356  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:50:55.0189 1356  stisvc - ok
22:50:55.0203 1356  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:50:55.0212 1356  swenum - ok
22:50:55.0231 1356  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:50:55.0277 1356  swprv - ok
22:50:55.0316 1356  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:50:55.0362 1356  SysMain - ok
22:50:55.0379 1356  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:50:55.0396 1356  TabletInputService - ok
22:50:55.0407 1356  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:50:55.0451 1356  TapiSrv - ok
22:50:55.0463 1356  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:50:55.0495 1356  TBS - ok
22:50:55.0559 1356  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:50:55.0628 1356  Tcpip - ok
22:50:55.0688 1356  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:50:55.0730 1356  TCPIP6 - ok
22:50:55.0749 1356  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:50:55.0787 1356  tcpipreg - ok
22:50:55.0806 1356  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:50:55.0826 1356  TDPIPE - ok
22:50:55.0847 1356  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:50:55.0869 1356  TDTCP - ok
22:50:55.0890 1356  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:50:55.0919 1356  tdx - ok
22:50:55.0928 1356  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:50:55.0938 1356  TermDD - ok
22:50:55.0962 1356  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:50:56.0010 1356  TermService - ok
22:50:56.0024 1356  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:50:56.0040 1356  Themes - ok
22:50:56.0047 1356  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:50:56.0078 1356  THREADORDER - ok
22:50:56.0091 1356  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:50:56.0135 1356  TrkWks - ok
22:50:56.0167 1356  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:50:56.0215 1356  TrustedInstaller - ok
22:50:56.0235 1356  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:50:56.0274 1356  tssecsrv - ok
22:50:56.0287 1356  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:50:56.0311 1356  TsUsbFlt - ok
22:50:56.0329 1356  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:50:56.0339 1356  TsUsbGD - ok
22:50:56.0367 1356  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:50:56.0405 1356  tunnel - ok
22:50:56.0429 1356  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:50:56.0440 1356  uagp35 - ok
22:50:56.0468 1356  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:50:56.0513 1356  udfs - ok
22:50:56.0536 1356  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:50:56.0549 1356  UI0Detect - ok
22:50:56.0570 1356  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:50:56.0580 1356  uliagpkx - ok
22:50:56.0607 1356  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:50:56.0644 1356  umbus - ok
22:50:56.0673 1356  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:50:56.0708 1356  UmPass - ok
22:50:56.0730 1356  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:50:56.0787 1356  upnphost - ok
22:50:56.0798 1356  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:50:56.0809 1356  usbccgp - ok
22:50:56.0827 1356  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:50:56.0842 1356  usbcir - ok
22:50:56.0856 1356  [ 74EE782B1D9C241EFE425565854C661C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:50:56.0880 1356  usbehci - ok
22:50:56.0904 1356  [ DC96BD9CCB8403251BCF25047573558E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:50:56.0918 1356  usbhub - ok
22:50:56.0928 1356  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
22:50:56.0938 1356  usbohci - ok
22:50:56.0954 1356  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:50:56.0974 1356  usbprint - ok
22:50:56.0998 1356  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:50:57.0011 1356  usbscan - ok
22:50:57.0029 1356  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:50:57.0059 1356  USBSTOR - ok
22:50:57.0076 1356  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:50:57.0108 1356  usbuhci - ok
22:50:57.0128 1356  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:50:57.0180 1356  UxSms - ok
22:50:57.0201 1356  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:50:57.0211 1356  VaultSvc - ok
22:50:57.0231 1356  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:50:57.0242 1356  vdrvroot - ok
22:50:57.0261 1356  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:50:57.0307 1356  vds - ok
22:50:57.0332 1356  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:50:57.0346 1356  vga - ok
22:50:57.0361 1356  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:50:57.0405 1356  VgaSave - ok
22:50:57.0424 1356  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:50:57.0437 1356  vhdmp - ok
22:50:57.0446 1356  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:50:57.0456 1356  viaide - ok
22:50:57.0468 1356  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:50:57.0478 1356  volmgr - ok
22:50:57.0490 1356  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:50:57.0505 1356  volmgrx - ok
22:50:57.0521 1356  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:50:57.0536 1356  volsnap - ok
22:50:57.0545 1356  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:50:57.0557 1356  vsmraid - ok
22:50:57.0599 1356  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:50:57.0675 1356  VSS - ok
22:50:57.0687 1356  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
22:50:57.0720 1356  vwifibus - ok
22:50:57.0738 1356  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:50:57.0775 1356  W32Time - ok
22:50:57.0802 1356  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:50:57.0821 1356  WacomPen - ok
22:50:57.0851 1356  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:50:57.0927 1356  WANARP - ok
22:50:57.0931 1356  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:50:57.0962 1356  Wanarpv6 - ok
22:50:58.0030 1356  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:50:58.0094 1356  WatAdminSvc - ok
22:50:58.0135 1356  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:50:58.0197 1356  wbengine - ok
22:50:58.0209 1356  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:50:58.0227 1356  WbioSrvc - ok
22:50:58.0241 1356  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:50:58.0272 1356  wcncsvc - ok
22:50:58.0285 1356  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:50:58.0300 1356  WcsPlugInService - ok
22:50:58.0325 1356  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
22:50:58.0335 1356  Wd - ok
22:50:58.0350 1356  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:50:58.0370 1356  Wdf01000 - ok
22:50:58.0384 1356  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:50:58.0480 1356  WdiServiceHost - ok
22:50:58.0485 1356  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:50:58.0504 1356  WdiSystemHost - ok
22:50:58.0519 1356  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:50:58.0545 1356  WebClient - ok
22:50:58.0562 1356  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:50:58.0610 1356  Wecsvc - ok
22:50:58.0629 1356  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:50:58.0662 1356  wercplsupport - ok
22:50:58.0681 1356  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:50:58.0726 1356  WerSvc - ok
22:50:58.0749 1356  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:50:58.0779 1356  WfpLwf - ok
22:50:58.0787 1356  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:50:58.0797 1356  WIMMount - ok
22:50:58.0805 1356  WinDefend - ok
22:50:58.0810 1356  WinHttpAutoProxySvc - ok
22:50:58.0860 1356  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:50:58.0923 1356  Winmgmt - ok
22:50:58.0963 1356  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:50:59.0035 1356  WinRM - ok
22:50:59.0077 1356  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:50:59.0108 1356  WinUsb - ok
22:50:59.0131 1356  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:50:59.0170 1356  Wlansvc - ok
22:50:59.0200 1356  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:50:59.0239 1356  WmiAcpi - ok
22:50:59.0279 1356  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:50:59.0320 1356  wmiApSrv - ok
22:50:59.0349 1356  WMPNetworkSvc - ok
22:50:59.0356 1356  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:50:59.0371 1356  WPCSvc - ok
22:50:59.0379 1356  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:50:59.0408 1356  WPDBusEnum - ok
22:50:59.0419 1356  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:50:59.0449 1356  ws2ifsl - ok
22:50:59.0465 1356  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
22:50:59.0491 1356  wscsvc - ok
22:50:59.0495 1356  WSearch - ok
22:50:59.0565 1356  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:50:59.0611 1356  wuauserv - ok
22:50:59.0622 1356  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:50:59.0661 1356  WudfPf - ok
22:50:59.0680 1356  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:50:59.0721 1356  WUDFRd - ok
22:50:59.0750 1356  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:50:59.0780 1356  wudfsvc - ok
22:50:59.0790 1356  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:50:59.0814 1356  WwanSvc - ok
22:50:59.0827 1356  ================ Scan global ===============================
22:50:59.0838 1356  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:50:59.0866 1356  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:50:59.0881 1356  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:50:59.0906 1356  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:50:59.0923 1356  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:50:59.0926 1356  [Global] - ok
22:50:59.0927 1356  ================ Scan MBR ==================================
22:50:59.0939 1356  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:51:00.0143 1356  \Device\Harddisk0\DR0 - ok
22:51:00.0203 1356  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:51:00.0370 1356  \Device\Harddisk1\DR1 - ok
22:51:00.0371 1356  ================ Scan VBR ==================================
22:51:00.0396 1356  [ 741E850B7E8958D437E8354BAD08ABBB ] \Device\Harddisk0\DR0\Partition1
22:51:00.0398 1356  \Device\Harddisk0\DR0\Partition1 - ok
22:51:00.0408 1356  [ 7373E60404214A2F794E2A2E00ED40F3 ] \Device\Harddisk0\DR0\Partition2
22:51:00.0411 1356  \Device\Harddisk0\DR0\Partition2 - ok
22:51:00.0437 1356  [ 8CDDFAC9C6CB3847C420E36A2D75B43D ] \Device\Harddisk0\DR0\Partition3
22:51:00.0440 1356  \Device\Harddisk0\DR0\Partition3 - ok
22:51:00.0445 1356  [ DEBA7FB58CBAD9EC4C40AE3D0D9AA041 ] \Device\Harddisk1\DR1\Partition1
22:51:00.0448 1356  \Device\Harddisk1\DR1\Partition1 - ok
22:51:00.0449 1356  ================ Scan active images ========================
22:51:00.0452 1356  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
22:51:00.0452 1356  C:\Windows\System32\drivers\crashdmp.sys - ok
22:51:00.0459 1356  [ B27A7B563F66EAD82B488EBAD5E4DD55 ] C:\Windows\System32\drivers\Diskdump.sys
22:51:00.0459 1356  C:\Windows\System32\drivers\Diskdump.sys - ok
22:51:00.0463 1356  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
22:51:00.0463 1356  C:\Windows\System32\drivers\dumpfve.sys - ok
22:51:00.0467 1356  [ F7CD50FE7139F07E77DA8AC8033D1832 ] C:\Windows\System32\drivers\nvstor.sys
22:51:00.0467 1356  C:\Windows\System32\drivers\nvstor.sys - ok
22:51:00.0472 1356  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
22:51:00.0472 1356  C:\Windows\System32\drivers\beep.sys - ok
22:51:00.0476 1356  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
22:51:00.0476 1356  C:\Windows\System32\drivers\cdrom.sys - ok
22:51:00.0480 1356  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
22:51:00.0480 1356  C:\Windows\System32\drivers\null.sys - ok
22:51:00.0485 1356  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
22:51:00.0485 1356  C:\Windows\System32\drivers\msfs.sys - ok
22:51:00.0489 1356  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
22:51:00.0489 1356  C:\Windows\System32\drivers\npfs.sys - ok
22:51:00.0494 1356  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
22:51:00.0494 1356  C:\Windows\System32\drivers\RDPCDD.sys - ok
22:51:00.0498 1356  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
22:51:00.0498 1356  C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:51:00.0502 1356  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
22:51:00.0502 1356  C:\Windows\System32\drivers\RDPREFMP.sys - ok
22:51:00.0507 1356  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
22:51:00.0507 1356  C:\Windows\System32\drivers\vga.sys - ok
22:51:00.0511 1356  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
22:51:00.0511 1356  C:\Windows\System32\drivers\videoprt.sys - ok
22:51:00.0515 1356  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
22:51:00.0515 1356  C:\Windows\System32\drivers\watchdog.sys - ok
22:51:00.0520 1356  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
22:51:00.0520 1356  C:\Windows\System32\drivers\afd.sys - ok
22:51:00.0524 1356  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
22:51:00.0524 1356  C:\Windows\System32\drivers\tdi.sys - ok
22:51:00.0528 1356  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
22:51:00.0528 1356  C:\Windows\System32\drivers\tdx.sys - ok
22:51:00.0533 1356  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
22:51:00.0533 1356  C:\Windows\System32\drivers\netbt.sys - ok
22:51:00.0537 1356  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
22:51:00.0537 1356  C:\Windows\System32\drivers\wfplwf.sys - ok
22:51:00.0542 1356  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
22:51:00.0542 1356  C:\Windows\System32\drivers\ws2ifsl.sys - ok
22:51:00.0546 1356  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
22:51:00.0546 1356  C:\Windows\System32\drivers\netbios.sys - ok
22:51:00.0550 1356  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
22:51:00.0551 1356  C:\Windows\System32\drivers\pacer.sys - ok
22:51:00.0556 1356  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
22:51:00.0556 1356  C:\Windows\System32\drivers\termdd.sys - ok
22:51:00.0561 1356  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
22:51:00.0561 1356  C:\Windows\System32\drivers\wanarp.sys - ok
22:51:00.0566 1356  [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
22:51:00.0566 1356  C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
22:51:00.0572 1356  [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
22:51:00.0572 1356  C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
22:51:00.0576 1356  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
22:51:00.0576 1356  C:\Windows\System32\drivers\rdbss.sys - ok
22:51:00.0581 1356  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
22:51:00.0581 1356  C:\Windows\System32\drivers\discache.sys - ok
22:51:00.0586 1356  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
22:51:00.0586 1356  C:\Windows\System32\drivers\mssmbios.sys - ok
22:51:00.0592 1356  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
22:51:00.0592 1356  C:\Windows\System32\drivers\nsiproxy.sys - ok
22:51:00.0598 1356  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
22:51:00.0598 1356  C:\Windows\System32\drivers\blbdrive.sys - ok
22:51:00.0604 1356  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
22:51:00.0604 1356  C:\Windows\System32\drivers\dfsc.sys - ok
22:51:00.0610 1356  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
22:51:00.0610 1356  C:\Windows\System32\drivers\tunnel.sys - ok
22:51:00.0617 1356  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
22:51:00.0617 1356  C:\Windows\System32\drivers\amdppm.sys - ok
22:51:00.0624 1356  [ B6D64EE607637301FF8C33139B4950DE ] C:\Windows\System32\drivers\usbport.sys
22:51:00.0624 1356  C:\Windows\System32\drivers\usbport.sys - ok
22:51:00.0629 1356  [ 58E546BBAF87664FC57E0F6081E4F609 ] C:\Windows\System32\drivers\usbohci.sys
22:51:00.0629 1356  C:\Windows\System32\drivers\usbohci.sys - ok
22:51:00.0635 1356  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
22:51:00.0635 1356  C:\Windows\System32\drivers\hdaudbus.sys - ok
22:51:00.0641 1356  [ 74EE782B1D9C241EFE425565854C661C ] C:\Windows\System32\drivers\usbehci.sys
22:51:00.0641 1356  C:\Windows\System32\drivers\usbehci.sys - ok
22:51:00.0646 1356  [ A85B4F2EF3A7304A5399EF0526423040 ] C:\Windows\System32\drivers\nvm62x64.sys
22:51:00.0646 1356  C:\Windows\System32\drivers\nvm62x64.sys - ok
22:51:00.0654 1356  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
22:51:00.0654 1356  C:\Windows\System32\ntdll.dll - ok
22:51:00.0659 1356  [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
22:51:00.0659 1356  C:\Windows\System32\smss.exe - ok
22:51:00.0663 1356  [ 63C8D74BED9F80F4DD0AA7A3101EB639 ] C:\Windows\System32\drivers\usbd.sys
22:51:00.0663 1356  C:\Windows\System32\drivers\usbd.sys - ok
22:51:00.0669 1356  [ 98022774D9930ECBB292E70DB7601DF6 ] C:\Windows\System32\drivers\agrsm64.sys
22:51:00.0669 1356  C:\Windows\System32\drivers\agrsm64.sys - ok
22:51:00.0674 1356  [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
22:51:00.0674 1356  C:\Windows\System32\drivers\modem.sys - ok
22:51:00.0680 1356  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
22:51:00.0680 1356  C:\Windows\System32\autochk.exe - ok
22:51:00.0689 1356  [ 8E6247F418B4C8AE9EEB0B532CABCC21 ] C:\Windows\System32\drivers\nvlddmkm.sys
22:51:00.0689 1356  C:\Windows\System32\drivers\nvlddmkm.sys - ok
22:51:00.0696 1356  [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
22:51:00.0696 1356  C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:51:00.0701 1356  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
22:51:00.0701 1356  C:\Windows\System32\drivers\agilevpn.sys - ok
22:51:00.0707 1356  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
22:51:00.0707 1356  C:\Windows\System32\drivers\CompositeBus.sys - ok
22:51:00.0713 1356  [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
22:51:00.0713 1356  C:\Windows\System32\drivers\dxgmms1.sys - ok
22:51:00.0715 1356  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
22:51:00.0716 1356  C:\Windows\System32\drivers\ndistapi.sys - ok
22:51:00.0720 1356  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
22:51:00.0720 1356  C:\Windows\System32\drivers\ndiswan.sys - ok
22:51:00.0726 1356  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
22:51:00.0727 1356  C:\Windows\System32\drivers\rasl2tp.sys - ok
22:51:00.0733 1356  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
22:51:00.0734 1356  C:\Windows\System32\drivers\raspppoe.sys - ok
22:51:00.0737 1356  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
22:51:00.0738 1356  C:\Windows\System32\drivers\kbdclass.sys - ok
22:51:00.0744 1356  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
22:51:00.0744 1356  C:\Windows\System32\drivers\mouclass.sys - ok
22:51:00.0748 1356  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
22:51:00.0748 1356  C:\Windows\System32\drivers\raspptp.sys - ok
22:51:00.0753 1356  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
22:51:00.0753 1356  C:\Windows\System32\drivers\rassstp.sys - ok
22:51:00.0757 1356  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
22:51:00.0757 1356  C:\Windows\System32\drivers\ks.sys - ok
22:51:00.0763 1356  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
22:51:00.0763 1356  C:\Windows\System32\drivers\swenum.sys - ok
22:51:00.0768 1356  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
22:51:00.0768 1356  C:\Windows\System32\drivers\umbus.sys - ok
22:51:00.0773 1356  [ DC96BD9CCB8403251BCF25047573558E ] C:\Windows\System32\drivers\usbhub.sys
22:51:00.0774 1356  C:\Windows\System32\drivers\usbhub.sys - ok
22:51:00.0778 1356  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
22:51:00.0778 1356  C:\Windows\System32\oleaut32.dll - ok
22:51:00.0784 1356  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
22:51:00.0784 1356  C:\Windows\System32\drivers\ndproxy.sys - ok
22:51:00.0791 1356  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
22:51:00.0791 1356  C:\Windows\System32\drivers\drmk.sys - ok
22:51:00.0796 1356  [ 975761C778E33CD22498059B91E7373A ] C:\Windows\System32\drivers\HdAudio.sys
22:51:00.0796 1356  C:\Windows\System32\drivers\HdAudio.sys - ok
22:51:00.0802 1356  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
22:51:00.0802 1356  C:\Windows\System32\drivers\ksthunk.sys - ok
22:51:00.0807 1356  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
22:51:00.0808 1356  C:\Windows\System32\drivers\portcls.sys - ok
22:51:00.0813 1356  [ 7935DF9821C148B5105500BEE5472E1B ] C:\Windows\System32\urlmon.dll
22:51:00.0814 1356  C:\Windows\System32\urlmon.dll - ok
22:51:00.0817 1356  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
22:51:00.0817 1356  C:\Windows\System32\imagehlp.dll - ok
22:51:00.0822 1356  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
22:51:00.0822 1356  C:\Windows\System32\shlwapi.dll - ok
22:51:00.0826 1356  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
22:51:00.0826 1356  C:\Windows\System32\clbcatq.dll - ok
22:51:00.0830 1356  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
22:51:00.0830 1356  C:\Windows\System32\advapi32.dll - ok
22:51:00.0835 1356  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
22:51:00.0835 1356  C:\Windows\System32\sechost.dll - ok
22:51:00.0839 1356  [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
22:51:00.0839 1356  C:\Windows\System32\shell32.dll - ok
22:51:00.0843 1356  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
22:51:00.0843 1356  C:\Windows\System32\msctf.dll - ok
22:51:00.0847 1356  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
22:51:00.0847 1356  C:\Windows\System32\ole32.dll - ok
22:51:00.0851 1356  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
22:51:00.0852 1356  C:\Windows\System32\gdi32.dll - ok
22:51:00.0856 1356  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
22:51:00.0856 1356  C:\Windows\System32\user32.dll - ok
22:51:00.0860 1356  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
22:51:00.0860 1356  C:\Windows\System32\imm32.dll - ok
22:51:00.0864 1356  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
22:51:00.0864 1356  C:\Windows\System32\msvcrt.dll - ok
22:51:00.0868 1356  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
22:51:00.0868 1356  C:\Windows\System32\normaliz.dll - ok
22:51:00.0873 1356  [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
22:51:00.0873 1356  C:\Windows\System32\kernel32.dll - ok
22:51:00.0877 1356  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
22:51:00.0877 1356  C:\Windows\System32\psapi.dll - ok
22:51:00.0882 1356  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
22:51:00.0882 1356  C:\Windows\System32\drivers\hidparse.sys - ok
22:51:00.0887 1356  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
22:51:00.0888 1356  C:\Windows\System32\drivers\hidclass.sys - ok
22:51:00.0893 1356  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
22:51:00.0894 1356  C:\Windows\System32\drivers\hidusb.sys - ok
22:51:00.0897 1356  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
22:51:00.0897 1356  C:\Windows\System32\drivers\mouhid.sys - ok
22:51:00.0901 1356  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] C:\Windows\System32\drivers\usbccgp.sys
22:51:00.0901 1356  C:\Windows\System32\drivers\usbccgp.sys - ok
22:51:00.0906 1356  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
22:51:00.0906 1356  C:\Windows\System32\drivers\kbdhid.sys - ok
22:51:00.0910 1356  [ D76510CFA0FC09023077F22C2F979D86 ] C:\Windows\System32\drivers\USBSTOR.SYS
22:51:00.0910 1356  C:\Windows\System32\drivers\USBSTOR.SYS - ok
22:51:00.0914 1356  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
22:51:00.0914 1356  C:\Windows\System32\comdlg32.dll - ok
22:51:00.0919 1356  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
22:51:00.0919 1356  C:\Windows\System32\difxapi.dll - ok
22:51:00.0923 1356  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
22:51:00.0923 1356  C:\Windows\System32\setupapi.dll - ok
22:51:00.0928 1356  [ 2452EDA795646D7E1E6CAE4EAF38F9C7 ] C:\Windows\System32\iertutil.dll
22:51:00.0928 1356  C:\Windows\System32\iertutil.dll - ok
22:51:00.0932 1356  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
22:51:00.0932 1356  C:\Windows\System32\lpk.dll - ok
22:51:00.0936 1356  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
22:51:00.0936 1356  C:\Windows\System32\nsi.dll - ok
22:51:00.0940 1356  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
22:51:00.0940 1356  C:\Windows\System32\rpcrt4.dll - ok
22:51:00.0944 1356  [ 628A8940176C87C3D51E808365A3BA2D ] C:\Windows\System32\wininet.dll
22:51:00.0945 1356  C:\Windows\System32\wininet.dll - ok
22:51:00.0949 1356  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
22:51:00.0949 1356  C:\Windows\System32\ws2_32.dll - ok
22:51:00.0953 1356  [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
22:51:00.0953 1356  C:\Windows\System32\usp10.dll - ok
22:51:00.0957 1356  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
22:51:00.0957 1356  C:\Windows\System32\Wldap32.dll - ok
22:51:00.0961 1356  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
22:51:00.0962 1356  C:\Windows\System32\crypt32.dll - ok
22:51:00.0964 1356  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
22:51:00.0964 1356  C:\Windows\System32\devobj.dll - ok
22:51:00.0968 1356  [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
22:51:00.0968 1356  C:\Windows\System32\KernelBase.dll - ok
22:51:00.0973 1356  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
22:51:00.0973 1356  C:\Windows\System32\cfgmgr32.dll - ok
22:51:00.0979 1356  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
22:51:00.0979 1356  C:\Windows\System32\wintrust.dll - ok
22:51:00.0987 1356  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
22:51:00.0987 1356  C:\Windows\System32\comctl32.dll - ok
22:51:00.0992 1356  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
22:51:00.0992 1356  C:\Windows\System32\msasn1.dll - ok
22:51:01.0000 1356  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
22:51:01.0000 1356  C:\Windows\SysWOW64\normaliz.dll - ok
22:51:01.0004 1356  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
22:51:01.0004 1356  C:\Windows\System32\drivers\dxapi.sys - ok
22:51:01.0008 1356  [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys
22:51:01.0009 1356  C:\Windows\System32\win32k.sys - ok
22:51:01.0013 1356  [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
22:51:01.0013 1356  C:\Windows\System32\csrsrv.dll - ok
22:51:01.0017 1356  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
22:51:01.0017 1356  C:\Windows\System32\csrss.exe - ok
22:51:01.0021 1356  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
22:51:01.0021 1356  C:\Windows\System32\basesrv.dll - ok
22:51:01.0025 1356  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
22:51:01.0025 1356  C:\Windows\System32\winsrv.dll - ok
22:51:01.0030 1356  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
22:51:01.0030 1356  C:\Windows\System32\drivers\monitor.sys - ok
22:51:01.0034 1356  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
22:51:01.0034 1356  C:\Windows\System32\sxssrv.dll - ok
22:51:01.0038 1356  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
22:51:01.0038 1356  C:\Windows\System32\tsddd.dll - ok
22:51:01.0042 1356  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
22:51:01.0043 1356  C:\Windows\System32\wininit.exe - ok
22:51:01.0047 1356  [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
22:51:01.0047 1356  C:\Windows\System32\cdd.dll - ok
22:51:01.0051 1356  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
22:51:01.0051 1356  C:\Windows\System32\profapi.dll - ok
22:51:01.0055 1356  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
22:51:01.0055 1356  C:\Windows\System32\KBDUS.DLL - ok
22:51:01.0059 1356  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
22:51:01.0059 1356  C:\Windows\System32\RpcRtRemote.dll - ok
22:51:01.0064 1356  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
22:51:01.0064 1356  C:\Windows\System32\WlS0WndH.dll - ok
22:51:01.0068 1356  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
22:51:01.0068 1356  C:\Windows\System32\sxs.dll - ok
22:51:01.0072 1356  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
22:51:01.0072 1356  C:\Windows\System32\cryptbase.dll - ok
22:51:01.0076 1356  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
22:51:01.0076 1356  C:\Windows\System32\winlogon.exe - ok
22:51:01.0081 1356  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
22:51:01.0081 1356  C:\Windows\System32\winsta.dll - ok
22:51:01.0085 1356  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
22:51:01.0085 1356  C:\Windows\System32\apphelp.dll - ok
22:51:01.0090 1356  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
22:51:01.0090 1356  C:\Windows\System32\lsass.exe - ok
22:51:01.0096 1356  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
22:51:01.0096 1356  C:\Windows\System32\lsm.exe - ok
22:51:01.0102 1356  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
22:51:01.0102 1356  C:\Windows\System32\services.exe - ok
22:51:01.0107 1356  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
22:51:01.0107 1356  C:\Windows\System32\sspisrv.dll - ok
22:51:01.0113 1356  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
22:51:01.0113 1356  C:\Windows\System32\lsasrv.dll - ok
22:51:01.0119 1356  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
22:51:01.0119 1356  C:\Windows\System32\sspicli.dll - ok
22:51:01.0124 1356  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
22:51:01.0124 1356  C:\Windows\System32\scext.dll - ok
22:51:01.0130 1356  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
22:51:01.0130 1356  C:\Windows\System32\samsrv.dll - ok
22:51:01.0135 1356  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
22:51:01.0135 1356  C:\Windows\System32\scesrv.dll - ok
22:51:01.0141 1356  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
22:51:01.0141 1356  C:\Windows\System32\secur32.dll - ok
22:51:01.0148 1356  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
22:51:01.0148 1356  C:\Windows\System32\sysntfy.dll - ok
22:51:01.0152 1356  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
22:51:01.0152 1356  C:\Windows\System32\wmsgapi.dll - ok
22:51:01.0158 1356  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
22:51:01.0158 1356  C:\Windows\System32\cryptdll.dll - ok
22:51:01.0164 1356  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
22:51:01.0164 1356  C:\Windows\System32\srvcli.dll - ok
22:51:01.0170 1356  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
22:51:01.0170 1356  C:\Windows\System32\wevtapi.dll - ok
22:51:01.0175 1356  [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
22:51:01.0175 1356  C:\Windows\System32\bridgeres.dll - ok
22:51:01.0181 1356  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
22:51:01.0181 1356  C:\Windows\System32\authz.dll - ok
22:51:01.0187 1356  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
22:51:01.0187 1356  C:\Windows\System32\cngaudit.dll - ok
22:51:01.0192 1356  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
22:51:01.0192 1356  C:\Windows\System32\bcrypt.dll - ok
22:51:01.0198 1356  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
22:51:01.0198 1356  C:\Windows\System32\ncrypt.dll - ok
22:51:01.0204 1356  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
22:51:01.0204 1356  C:\Windows\System32\msprivs.dll - ok
22:51:01.0209 1356  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
22:51:01.0209 1356  C:\Windows\System32\netjoin.dll - ok
22:51:01.0216 1356  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
22:51:01.0216 1356  C:\Windows\System32\negoexts.dll - ok
22:51:01.0219 1356  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
22:51:01.0219 1356  C:\Windows\System32\kerberos.dll - ok
22:51:01.0225 1356  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
22:51:01.0225 1356  C:\Windows\System32\cryptsp.dll - ok
22:51:01.0231 1356  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
22:51:01.0231 1356  C:\Windows\System32\msv1_0.dll - ok
22:51:01.0237 1356  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
22:51:01.0237 1356  C:\Windows\System32\mswsock.dll - ok
22:51:01.0243 1356  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
22:51:01.0243 1356  C:\Windows\System32\wship6.dll - ok
22:51:01.0248 1356  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
22:51:01.0248 1356  C:\Windows\System32\netlogon.dll - ok
22:51:01.0254 1356  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
22:51:01.0254 1356  C:\Windows\System32\dnsapi.dll - ok
22:51:01.0260 1356  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
22:51:01.0260 1356  C:\Windows\System32\logoncli.dll - ok
22:51:01.0265 1356  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
22:51:01.0265 1356  C:\Windows\System32\schannel.dll - ok
22:51:01.0271 1356  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
22:51:01.0271 1356  C:\Windows\System32\wdigest.dll - ok
22:51:01.0277 1356  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
22:51:01.0277 1356  C:\Windows\System32\rsaenh.dll - ok
22:51:01.0283 1356  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
22:51:01.0283 1356  C:\Windows\System32\TSpkg.dll - ok
22:51:01.0289 1356  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
22:51:01.0289 1356  C:\Windows\System32\bcryptprimitives.dll - ok
22:51:01.0295 1356  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
22:51:01.0295 1356  C:\Windows\System32\pku2u.dll - ok
22:51:01.0301 1356  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
22:51:01.0301 1356  C:\Windows\System32\credssp.dll - ok
22:51:01.0307 1356  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
22:51:01.0307 1356  C:\Windows\System32\efslsaext.dll - ok
22:51:01.0312 1356  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
22:51:01.0312 1356  C:\Windows\System32\scecli.dll - ok
22:51:01.0318 1356  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
22:51:01.0318 1356  C:\Windows\System32\ubpm.dll - ok
22:51:01.0324 1356  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
22:51:01.0324 1356  C:\Windows\System32\svchost.exe - ok
22:51:01.0330 1356  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
22:51:01.0330 1356  C:\Windows\System32\umpnpmgr.dll - ok
22:51:01.0335 1356  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
22:51:01.0335 1356  C:\Windows\System32\devrtl.dll - ok
22:51:01.0341 1356  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
22:51:01.0341 1356  C:\Windows\System32\SPInf.dll - ok
22:51:01.0347 1356  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
22:51:01.0347 1356  C:\Windows\System32\gpapi.dll - ok
22:51:01.0352 1356  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
22:51:01.0352 1356  C:\Windows\System32\userenv.dll - ok
22:51:01.0358 1356  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
22:51:01.0358 1356  C:\Windows\System32\umpo.dll - ok
22:51:01.0363 1356  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
22:51:01.0363 1356  C:\Windows\System32\pcwum.dll - ok
22:51:01.0369 1356  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
22:51:01.0369 1356  C:\Windows\System32\powrprof.dll - ok
22:51:01.0375 1356  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
22:51:01.0375 1356  C:\Windows\System32\drivers\luafv.sys - ok
22:51:01.0380 1356  [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
22:51:01.0380 1356  C:\Windows\System32\drivers\WUDFPf.sys - ok
22:51:01.0386 1356  [ 41B97DCE2B2D113B831EB197F02A7398 ] C:\Windows\System32\nvvsvc.exe
22:51:01.0386 1356  C:\Windows\System32\nvvsvc.exe - ok
22:51:01.0392 1356  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
22:51:01.0392 1356  C:\Windows\System32\wtsapi32.dll - ok
22:51:01.0397 1356  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
22:51:01.0397 1356  C:\Windows\System32\rpcss.dll - ok
22:51:01.0403 1356  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
22:51:01.0403 1356  C:\Windows\System32\RpcEpMap.dll - ok
22:51:01.0409 1356  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
22:51:01.0409 1356  C:\Windows\System32\wshqos.dll - ok
22:51:01.0416 1356  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
22:51:01.0416 1356  C:\Windows\System32\WSHTCPIP.DLL - ok
22:51:01.0422 1356  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
22:51:01.0422 1356  C:\Windows\System32\FirewallAPI.dll - ok
22:51:01.0428 1356  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
22:51:01.0428 1356  C:\Windows\System32\LogonUI.exe - ok
22:51:01.0434 1356  [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
22:51:01.0434 1356  C:\Windows\System32\authui.dll - ok
22:51:01.0439 1356  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
22:51:01.0439 1356  C:\Windows\System32\cryptui.dll - ok
22:51:01.0445 1356  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
22:51:01.0445 1356  C:\Windows\System32\version.dll - ok
22:51:01.0451 1356  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
22:51:01.0451 1356  C:\Windows\System32\wevtsvc.dll - ok
22:51:01.0457 1356  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
22:51:01.0457 1356  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
22:51:01.0463 1356  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
22:51:01.0464 1356  C:\Windows\System32\netprofm.dll - ok
22:51:01.0467 1356  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
22:51:01.0467 1356  C:\Windows\System32\samlib.dll - ok
22:51:01.0472 1356  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
22:51:01.0472 1356  C:\Windows\System32\shacct.dll - ok


#11 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 11:01 PM

22:51:01.0478 1356  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
22:51:01.0478 1356  C:\Windows\System32\audiosrv.dll - ok
22:51:01.0484 1356  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
22:51:01.0484 1356  C:\Windows\System32\avrt.dll - ok
22:51:01.0489 1356  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
22:51:01.0489 1356  C:\Windows\System32\mmcss.dll - ok
22:51:01.0495 1356  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
22:51:01.0496 1356  C:\Windows\System32\propsys.dll - ok
22:51:01.0501 1356  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
22:51:01.0501 1356  C:\Windows\System32\adtschema.dll - ok
22:51:01.0508 1356  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
22:51:01.0508 1356  C:\Windows\System32\MMDevAPI.dll - ok
22:51:01.0513 1356  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
22:51:01.0513 1356  C:\Windows\System32\uxtheme.dll - ok
22:51:01.0519 1356  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
22:51:01.0519 1356  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
22:51:01.0526 1356  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
22:51:01.0526 1356  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
22:51:01.0531 1356  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
22:51:01.0531 1356  C:\Windows\System32\drivers\fltMgr.sys - ok
22:51:01.0538 1356  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
22:51:01.0538 1356  C:\Windows\System32\audiodg.exe - ok
22:51:01.0544 1356  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
22:51:01.0544 1356  C:\Windows\System32\dui70.dll - ok
22:51:01.0549 1356  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
22:51:01.0549 1356  C:\Windows\System32\PSHED.DLL - ok
22:51:01.0556 1356  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
22:51:01.0556 1356  C:\Windows\System32\ntmarta.dll - ok
22:51:01.0561 1356  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
22:51:01.0561 1356  C:\Windows\System32\gpsvc.dll - ok
22:51:01.0567 1356  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
22:51:01.0567 1356  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
22:51:01.0573 1356  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
22:51:01.0573 1356  C:\Windows\System32\duser.dll - ok
22:51:01.0580 1356  [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
22:51:01.0580 1356  C:\Windows\System32\nlaapi.dll - ok
22:51:01.0587 1356  [ 5C78838B4D166D1A27DB3A8A820C799A ] C:\Windows\System32\profsvc.dll
22:51:01.0587 1356  C:\Windows\System32\profsvc.dll - ok
22:51:01.0594 1356  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
22:51:01.0594 1356  C:\Windows\System32\SndVolSSO.dll - ok
22:51:01.0601 1356  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
22:51:01.0601 1356  C:\Windows\System32\themeservice.dll - ok
22:51:01.0608 1356  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
22:51:01.0608 1356  C:\Windows\System32\hid.dll - ok
22:51:01.0614 1356  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
22:51:01.0614 1356  C:\Windows\System32\atl.dll - ok
22:51:01.0622 1356  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
22:51:01.0622 1356  C:\Windows\System32\dsrole.dll - ok
22:51:01.0630 1356  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
22:51:01.0630 1356  C:\Windows\System32\dwmapi.dll - ok
22:51:01.0639 1356  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
22:51:01.0639 1356  C:\Windows\System32\slc.dll - ok
22:51:01.0646 1356  [ D6F630C1FD7F436316093AE500363B19 ] C:\Windows\System32\xmllite.dll
22:51:01.0647 1356  C:\Windows\System32\xmllite.dll - ok
22:51:01.0655 1356  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
22:51:01.0655 1356  C:\Windows\System32\es.dll - ok
22:51:01.0662 1356  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
22:51:01.0662 1356  C:\Windows\System32\WindowsCodecs.dll - ok
22:51:01.0671 1356  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
22:51:01.0671 1356  C:\Windows\System32\comres.dll - ok
22:51:01.0685 1356  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
22:51:01.0685 1356  C:\Windows\System32\Sens.dll - ok
22:51:01.0694 1356  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
22:51:01.0695 1356  C:\Windows\System32\uxsms.dll - ok
22:51:01.0699 1356  [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
22:51:01.0699 1356  C:\Windows\System32\WUDFSvc.dll - ok
22:51:01.0707 1356  [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
22:51:01.0707 1356  C:\Windows\System32\WUDFPlatform.dll - ok
22:51:01.0714 1356  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
22:51:01.0714 1356  C:\Windows\System32\drivers\lltdio.sys - ok
22:51:01.0723 1356  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
22:51:01.0723 1356  C:\Windows\System32\drivers\rspndr.sys - ok
22:51:01.0727 1356  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
22:51:01.0727 1356  C:\Windows\System32\IPHLPAPI.DLL - ok
22:51:01.0738 1356  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
22:51:01.0738 1356  C:\Windows\System32\lmhsvc.dll - ok
22:51:01.0745 1356  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
22:51:01.0745 1356  C:\Windows\System32\nsisvc.dll - ok
22:51:01.0753 1356  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
22:51:01.0753 1356  C:\Windows\System32\VaultCredProvider.dll - ok
22:51:01.0761 1356  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
22:51:01.0761 1356  C:\Windows\System32\winbrand.dll - ok
22:51:01.0766 1356  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
22:51:01.0767 1356  C:\Windows\System32\dhcpcore.dll - ok
22:51:01.0773 1356  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
22:51:01.0773 1356  C:\Windows\System32\nrpsrv.dll - ok
22:51:01.0781 1356  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:51:01.0781 1356  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:51:01.0788 1356  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
22:51:01.0788 1356  C:\Windows\System32\winnsi.dll - ok
22:51:01.0795 1356  [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
22:51:01.0795 1356  C:\Windows\System32\dhcpcore6.dll - ok
22:51:01.0804 1356  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
22:51:01.0804 1356  C:\Windows\System32\dnsrslvr.dll - ok
22:51:01.0811 1356  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
22:51:01.0811 1356  C:\Windows\System32\BioCredProv.dll - ok
22:51:01.0820 1356  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
22:51:01.0820 1356  C:\Windows\System32\FWPUCLNT.DLL - ok
22:51:01.0826 1356  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
22:51:01.0826 1356  C:\Windows\System32\winbio.dll - ok
22:51:01.0833 1356  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
22:51:01.0833 1356  C:\Windows\System32\credui.dll - ok
22:51:01.0838 1356  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
22:51:01.0839 1356  C:\Windows\System32\dnsext.dll - ok
22:51:01.0844 1356  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
22:51:01.0844 1356  C:\Windows\System32\netapi32.dll - ok
22:51:01.0850 1356  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
22:51:01.0850 1356  C:\Windows\System32\vaultcli.dll - ok
22:51:01.0856 1356  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
22:51:01.0856 1356  C:\Windows\System32\dhcpcsvc.dll - ok
22:51:01.0862 1356  [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
22:51:01.0862 1356  C:\Windows\System32\dhcpcsvc6.dll - ok
22:51:01.0868 1356  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
22:51:01.0868 1356  C:\Windows\System32\netutils.dll - ok
22:51:01.0873 1356  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
22:51:01.0873 1356  C:\Windows\System32\samcli.dll - ok
22:51:01.0879 1356  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
22:51:01.0879 1356  C:\Windows\System32\shsvcs.dll - ok
22:51:01.0885 1356  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
22:51:01.0885 1356  C:\Windows\System32\wkscli.dll - ok
22:51:01.0891 1356  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
22:51:01.0891 1356  C:\Windows\System32\certCredProvider.dll - ok
22:51:01.0897 1356  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
22:51:01.0897 1356  C:\Windows\System32\rasplap.dll - ok
22:51:01.0903 1356  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
22:51:01.0903 1356  C:\Windows\System32\rasapi32.dll - ok
22:51:01.0910 1356  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
22:51:01.0910 1356  C:\Windows\System32\schedsvc.dll - ok
22:51:01.0916 1356  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
22:51:01.0916 1356  C:\Windows\System32\rasman.dll - ok
22:51:01.0924 1356  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
22:51:01.0924 1356  C:\Windows\System32\rtutils.dll - ok
22:51:01.0929 1356  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
22:51:01.0929 1356  C:\Windows\System32\ktmw32.dll - ok
22:51:01.0935 1356  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
22:51:01.0935 1356  C:\Windows\System32\UXInit.dll - ok
22:51:01.0941 1356  [ CE3BFCD5415DCEC2C8D5B2023F809431 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
22:51:01.0942 1356  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
22:51:01.0947 1356  [ F798BAF277AD51BB8A2A1B20624874FF ] C:\Windows\System32\nvsvc64.dll
22:51:01.0947 1356  C:\Windows\System32\nvsvc64.dll - ok
22:51:01.0953 1356  [ 86847EF9FAE8D8BD810EF2A815D29EA9 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
22:51:01.0953 1356  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
22:51:01.0959 1356  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
22:51:01.0959 1356  C:\Windows\System32\taskcomp.dll - ok
22:51:01.0964 1356  [ 28BA06C0FB3E463782B647770AD1E4AF ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
22:51:01.0965 1356  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
22:51:01.0970 1356  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
22:51:01.0970 1356  C:\Windows\System32\mscms.dll - ok
22:51:01.0976 1356  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
22:51:01.0976 1356  C:\Windows\System32\drivers\http.sys - ok
22:51:01.0979 1356  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
22:51:01.0980 1356  C:\Windows\System32\imageres.dll - ok
22:51:01.0986 1356  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
22:51:01.0986 1356  C:\Windows\System32\winmm.dll - ok
22:51:01.0991 1356  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
22:51:01.0992 1356  C:\Windows\System32\msimg32.dll - ok
22:51:01.0997 1356  [ 312A1D65C1DD37FBF695DF0EC21BEB72 ] C:\Windows\System32\nvapi64.dll
22:51:01.0997 1356  C:\Windows\System32\nvapi64.dll - ok
22:51:02.0006 1356  [ B96C17B5DC1424D56EEA3A99E97428CD ] C:\Windows\System32\spoolsv.exe
22:51:02.0006 1356  C:\Windows\System32\spoolsv.exe - ok
22:51:02.0011 1356  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
22:51:02.0011 1356  C:\Windows\System32\BFE.DLL - ok
22:51:02.0018 1356  [ B4DCD843B97BAB317717A057C72796E0 ] C:\Windows\System32\nvsvcr.dll
22:51:02.0018 1356  C:\Windows\System32\nvsvcr.dll - ok
22:51:02.0023 1356  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
22:51:02.0023 1356  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
22:51:02.0029 1356  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
22:51:02.0030 1356  C:\Windows\System32\winspool.drv - ok
22:51:02.0035 1356  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
22:51:02.0035 1356  C:\Windows\System32\oleacc.dll - ok
22:51:02.0041 1356  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
22:51:02.0041 1356  C:\Windows\System32\drivers\bowser.sys - ok
22:51:02.0047 1356  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
22:51:02.0047 1356  C:\Windows\System32\drivers\mpsdrv.sys - ok
22:51:02.0052 1356  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
22:51:02.0052 1356  C:\Windows\System32\drivers\mrxsmb.sys - ok
22:51:02.0058 1356  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
22:51:02.0058 1356  C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:51:02.0064 1356  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
22:51:02.0064 1356  C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:51:02.0069 1356  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
22:51:02.0069 1356  C:\Windows\System32\MPSSVC.dll - ok
22:51:02.0075 1356  [ 0AB6CC7CB55AD512DB0B722A926BD9F8 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
22:51:02.0075 1356  C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
22:51:02.0081 1356  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
22:51:02.0081 1356  C:\Windows\System32\wkssvc.dll - ok
22:51:02.0087 1356  [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCore64.exe
22:51:02.0087 1356  C:\Program Files\SUPERAntiSpyware\SASCore64.exe - ok
22:51:02.0092 1356  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
22:51:02.0092 1356  C:\Windows\System32\wfapigp.dll - ok
22:51:02.0098 1356  [ 5AA5DB4512FB9F3DCEA0F53491CA35E9 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
22:51:02.0098 1356  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
22:51:02.0104 1356  [ 027680A156C337A39CC543A436A745E3 ] C:\Windows\System32\nvcpl.dll
22:51:02.0104 1356  C:\Windows\System32\nvcpl.dll - ok
22:51:02.0110 1356  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
22:51:02.0110 1356  C:\Windows\System32\cryptsvc.dll - ok
22:51:02.0115 1356  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
22:51:02.0115 1356  C:\Windows\System32\dps.dll - ok
22:51:02.0121 1356  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] C:\Windows\System32\drivers\NisDrvWFP.sys
22:51:02.0121 1356  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
22:51:02.0126 1356  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
22:51:02.0126 1356  C:\Windows\System32\netman.dll - ok
22:51:02.0132 1356  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
22:51:02.0132 1356  C:\Windows\System32\cryptnet.dll - ok
22:51:02.0138 1356  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
22:51:02.0138 1356  C:\Windows\System32\taskschd.dll - ok
22:51:02.0144 1356  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
22:51:02.0144 1356  C:\Windows\System32\drivers\PEAuth.sys - ok
22:51:02.0150 1356  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
22:51:02.0150 1356  C:\Windows\System32\pcasvc.dll - ok
22:51:02.0155 1356  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
22:51:02.0155 1356  C:\Windows\System32\vssapi.dll - ok
22:51:02.0161 1356  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
22:51:02.0161 1356  C:\Windows\System32\drivers\secdrv.sys - ok
22:51:02.0166 1356  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
22:51:02.0167 1356  C:\Windows\System32\drivers\srvnet.sys - ok
22:51:02.0172 1356  [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
22:51:02.0172 1356  C:\Windows\System32\seclogon.dll - ok
22:51:02.0178 1356  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
22:51:02.0178 1356  C:\Windows\System32\sstpsvc.dll - ok
22:51:02.0183 1356  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
22:51:02.0183 1356  C:\Windows\System32\wiaservc.dll - ok
22:51:02.0189 1356  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
22:51:02.0189 1356  C:\Windows\System32\aepic.dll - ok
22:51:02.0195 1356  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
22:51:02.0195 1356  C:\Windows\System32\sfc.dll - ok
22:51:02.0200 1356  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
22:51:02.0200 1356  C:\Windows\System32\sfc_os.dll - ok
22:51:02.0206 1356  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
22:51:02.0206 1356  C:\Windows\System32\sysmain.dll - ok
22:51:02.0211 1356  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
22:51:02.0211 1356  C:\Windows\System32\httpapi.dll - ok
22:51:02.0217 1356  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
22:51:02.0217 1356  C:\Windows\System32\webio.dll - ok
22:51:02.0223 1356  [ CB598B5B2A74AC0DE63783A08BCB6F34 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
22:51:02.0223 1356  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
22:51:02.0226 1356  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
22:51:02.0226 1356  C:\Windows\System32\wiatrace.dll - ok
22:51:02.0232 1356  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
22:51:02.0232 1356  C:\Windows\System32\vsstrace.dll - ok
22:51:02.0238 1356  [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
22:51:02.0238 1356  C:\Windows\System32\drivers\tcpipreg.sys - ok
22:51:02.0244 1356  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
22:51:02.0244 1356  C:\Windows\System32\trkwks.dll - ok
22:51:02.0249 1356  [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
22:51:02.0249 1356  C:\Windows\System32\nlasvc.dll - ok
22:51:02.0255 1356  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
22:51:02.0255 1356  C:\Windows\System32\drivers\srv2.sys - ok
22:51:02.0261 1356  [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
22:51:02.0261 1356  C:\Windows\System32\ncsi.dll - ok
22:51:02.0266 1356  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
22:51:02.0266 1356  C:\Windows\System32\wbem\WMIsvc.dll - ok
22:51:02.0272 1356  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
22:51:02.0272 1356  C:\Windows\System32\drivers\srv.sys - ok
22:51:02.0278 1356  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
22:51:02.0278 1356  C:\Windows\System32\winhttp.dll - ok
22:51:02.0285 1356  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
22:51:02.0285 1356  C:\Windows\System32\wbemcomn.dll - ok
22:51:02.0291 1356  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
22:51:02.0291 1356  C:\Windows\System32\tapisrv.dll - ok
22:51:02.0296 1356  [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
22:51:02.0296 1356  C:\Windows\System32\iphlpsvc.dll - ok
22:51:02.0302 1356  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
22:51:02.0302 1356  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
22:51:02.0308 1356  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
22:51:02.0308 1356  C:\Windows\System32\sqmapi.dll - ok
22:51:02.0314 1356  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
22:51:02.0314 1356  C:\Windows\System32\wbem\fastprox.dll - ok
22:51:02.0320 1356  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
22:51:02.0320 1356  C:\Windows\System32\ssdpapi.dll - ok
22:51:02.0325 1356  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
22:51:02.0325 1356  C:\Windows\System32\wdscore.dll - ok
22:51:02.0331 1356  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
22:51:02.0331 1356  C:\Windows\System32\ntdsapi.dll - ok
22:51:02.0337 1356  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
22:51:02.0337 1356  C:\Windows\System32\srvsvc.dll - ok
22:51:02.0342 1356  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
22:51:02.0342 1356  C:\Windows\System32\browser.dll - ok
22:51:02.0348 1356  [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
22:51:02.0348 1356  C:\Windows\System32\rasmans.dll - ok
22:51:02.0354 1356  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
22:51:02.0354 1356  C:\Windows\System32\wbem\wbemprox.dll - ok
22:51:02.0360 1356  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
22:51:02.0360 1356  C:\Windows\System32\eappprxy.dll - ok
22:51:02.0366 1356  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
22:51:02.0366 1356  C:\Windows\System32\netmsg.dll - ok
22:51:02.0371 1356  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
22:51:02.0371 1356  C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:51:02.0377 1356  [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
22:51:02.0377 1356  C:\Windows\System32\rastapi.dll - ok
22:51:02.0383 1356  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
22:51:02.0383 1356  C:\Windows\System32\tapi32.dll - ok
22:51:02.0389 1356  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
22:51:02.0389 1356  C:\Windows\System32\clusapi.dll - ok
22:51:02.0394 1356  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
22:51:02.0394 1356  C:\Windows\System32\sscore.dll - ok
22:51:02.0400 1356  [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
22:51:02.0400 1356  C:\Windows\System32\unimdm.tsp - ok
22:51:02.0406 1356  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
22:51:02.0406 1356  C:\Windows\System32\netcfgx.dll - ok
22:51:02.0411 1356  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
22:51:02.0412 1356  C:\Windows\System32\resutils.dll - ok
22:51:02.0417 1356  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
22:51:02.0418 1356  C:\Windows\System32\hnetcfg.dll - ok
22:51:02.0423 1356  [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
22:51:02.0423 1356  C:\Windows\System32\uniplat.dll - ok
22:51:02.0428 1356  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
22:51:02.0428 1356  C:\Windows\System32\nci.dll - ok
22:51:02.0434 1356  [ 2472BDF30C62F3E81AE27A968C25608C ] C:\Windows\System32\unimdmat.dll
22:51:02.0434 1356  C:\Windows\System32\unimdmat.dll - ok
22:51:02.0440 1356  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
22:51:02.0440 1356  C:\Windows\System32\wbem\wbemcore.dll - ok
22:51:02.0446 1356  [ C1446A66BB89FC3AA2485C67562247DA ] C:\Windows\System32\modemui.dll
22:51:02.0446 1356  C:\Windows\System32\modemui.dll - ok
22:51:02.0452 1356  [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
22:51:02.0452 1356  C:\Windows\System32\kmddsp.tsp - ok
22:51:02.0457 1356  [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
22:51:02.0457 1356  C:\Windows\System32\ndptsp.tsp - ok
22:51:02.0463 1356  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
22:51:02.0463 1356  C:\Windows\System32\wbem\esscli.dll - ok
22:51:02.0469 1356  [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
22:51:02.0469 1356  C:\Windows\System32\hidphone.tsp - ok
22:51:02.0474 1356  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
22:51:02.0474 1356  C:\Windows\System32\fveapi.dll - ok
22:51:02.0477 1356  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
22:51:02.0477 1356  C:\Windows\System32\fvecerts.dll - ok
22:51:02.0483 1356  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
22:51:02.0483 1356  C:\Windows\System32\tbs.dll - ok
22:51:02.0489 1356  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
22:51:02.0489 1356  C:\Windows\System32\wbem\wbemsvc.dll - ok
22:51:02.0495 1356  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
22:51:02.0495 1356  C:\Windows\System32\wbem\wmiutils.dll - ok
22:51:02.0500 1356  [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
22:51:02.0500 1356  C:\Windows\System32\rasppp.dll - ok
22:51:02.0506 1356  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
22:51:02.0506 1356  C:\Windows\System32\aeevts.dll - ok
22:51:02.0511 1356  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
22:51:02.0511 1356  C:\Windows\System32\eappcfg.dll - ok
22:51:02.0517 1356  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
22:51:02.0517 1356  C:\Windows\System32\wiarpc.dll - ok
22:51:02.0523 1356  [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
22:51:02.0523 1356  C:\Windows\System32\vpnike.dll - ok
22:51:02.0528 1356  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
22:51:02.0528 1356  C:\Windows\System32\wbem\repdrvfs.dll - ok
22:51:02.0534 1356  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
22:51:02.0534 1356  C:\Windows\System32\rasadhlp.dll - ok
22:51:02.0540 1356  [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
22:51:02.0540 1356  C:\Windows\System32\raschap.dll - ok
22:51:02.0546 1356  [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
22:51:02.0546 1356  C:\Windows\System32\ipnathlp.dll - ok
22:51:02.0551 1356  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
22:51:02.0551 1356  C:\Windows\System32\mprapi.dll - ok
22:51:02.0557 1356  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
22:51:02.0557 1356  C:\Windows\System32\netshell.dll - ok
22:51:02.0563 1356  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:51:02.0563 1356  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:51:02.0568 1356  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
22:51:02.0568 1356  C:\Windows\System32\ncobjapi.dll - ok
22:51:02.0574 1356  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
22:51:02.0574 1356  C:\Windows\System32\wbem\wbemess.dll - ok
22:51:02.0580 1356  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
22:51:02.0580 1356  C:\Windows\System32\dllhost.exe - ok
22:51:02.0585 1356  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
22:51:02.0585 1356  C:\Windows\System32\wdi.dll - ok
22:51:02.0591 1356  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
22:51:02.0591 1356  C:\Windows\System32\wpdbusenum.dll - ok
22:51:02.0597 1356  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
22:51:02.0597 1356  C:\Windows\System32\diagperf.dll - ok
22:51:02.0602 1356  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
22:51:02.0603 1356  C:\Windows\System32\npmproxy.dll - ok
22:51:02.0608 1356  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
22:51:02.0608 1356  C:\Windows\System32\hidserv.dll - ok
22:51:02.0614 1356  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
22:51:02.0614 1356  C:\Windows\System32\Apphlpdm.dll - ok
22:51:02.0620 1356  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
22:51:02.0620 1356  C:\Windows\System32\wer.dll - ok
22:51:02.0625 1356  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
22:51:02.0625 1356  C:\Windows\System32\IDStore.dll - ok
22:51:02.0631 1356  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
22:51:02.0631 1356  C:\Windows\System32\perftrack.dll - ok
22:51:02.0637 1356  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
22:51:02.0637 1356  C:\Windows\System32\pnpts.dll - ok
22:51:02.0642 1356  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
22:51:02.0642 1356  C:\Windows\System32\wdiasqmmodule.dll - ok
22:51:02.0648 1356  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
22:51:02.0648 1356  C:\Windows\System32\taskhost.exe - ok
22:51:02.0654 1356  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
22:51:02.0654 1356  C:\Windows\System32\PortableDeviceApi.dll - ok
22:51:02.0660 1356  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:51:02.0660 1356  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:51:02.0665 1356  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
22:51:02.0665 1356  C:\Windows\System32\HotStartUserAgent.dll - ok
22:51:02.0671 1356  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
22:51:02.0671 1356  C:\Windows\System32\mpr.dll - ok
22:51:02.0677 1356  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
22:51:02.0677 1356  C:\Windows\System32\taskeng.exe - ok
22:51:02.0682 1356  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
22:51:02.0682 1356  C:\Windows\System32\localspl.dll - ok
22:51:02.0688 1356  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
22:51:02.0688 1356  C:\Windows\System32\umb.dll - ok
22:51:02.0694 1356  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
22:51:02.0694 1356  C:\Windows\System32\userinit.exe - ok
22:51:02.0699 1356  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
22:51:02.0699 1356  C:\Windows\System32\dwm.exe - ok
22:51:02.0705 1356  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
22:51:02.0705 1356  C:\Windows\System32\dwmredir.dll - ok
22:51:02.0711 1356  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
22:51:02.0711 1356  C:\Windows\System32\dwmcore.dll - ok
22:51:02.0717 1356  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
22:51:02.0717 1356  C:\Windows\System32\dimsjob.dll - ok
22:51:02.0722 1356  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
22:51:02.0722 1356  C:\Windows\System32\spoolss.dll - ok
22:51:02.0728 1356  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
22:51:02.0728 1356  C:\Windows\System32\PrintIsolationProxy.dll - ok
22:51:02.0731 1356  [ AC4C51EB24AA95B77F705AB159189E24 ] C:\Windows\explorer.exe
22:51:02.0731 1356  C:\Windows\explorer.exe - ok
22:51:02.0737 1356  [ D63BEE2A8B22482F7080A8D3F2E1A733 ] C:\Windows\System32\d3d10_1.dll
22:51:02.0737 1356  C:\Windows\System32\d3d10_1.dll - ok
22:51:02.0742 1356  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
22:51:02.0742 1356  C:\Windows\System32\NapiNSP.dll - ok
22:51:02.0748 1356  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
22:51:02.0748 1356  C:\Windows\System32\pautoenr.dll - ok
22:51:02.0754 1356  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
22:51:02.0754 1356  C:\Windows\System32\radardt.dll - ok
22:51:02.0761 1356  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
22:51:02.0761 1356  C:\Windows\System32\TSChannel.dll - ok
22:51:02.0767 1356  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
22:51:02.0767 1356  C:\Windows\System32\certcli.dll - ok
22:51:02.0772 1356  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
22:51:02.0772 1356  C:\Windows\System32\ExplorerFrame.dll - ok
22:51:02.0778 1356  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
22:51:02.0778 1356  C:\Windows\System32\pnrpnsp.dll - ok
22:51:02.0784 1356  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:51:02.0784 1356  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:51:02.0790 1356  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
22:51:02.0790 1356  C:\Windows\System32\winrnr.dll - ok
22:51:02.0796 1356  [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
22:51:02.0796 1356  C:\Windows\System32\d3d10_1core.dll - ok
22:51:02.0801 1356  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
22:51:02.0801 1356  C:\Windows\SysWOW64\ntdll.dll - ok
22:51:02.0807 1356  [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
22:51:02.0807 1356  C:\Windows\System32\dxgi.dll - ok
22:51:02.0812 1356  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
22:51:02.0813 1356  C:\Windows\System32\CertEnroll.dll - ok
22:51:02.0818 1356  [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
22:51:02.0819 1356  C:\Windows\System32\wow64.dll - ok
22:51:02.0824 1356  [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
22:51:02.0824 1356  C:\Windows\System32\wow64win.dll - ok
22:51:02.0830 1356  [ 47AD5ED974A4FDB582824C5DCB6E7482 ] C:\Windows\System32\d3d10level9.dll
22:51:02.0830 1356  C:\Windows\System32\d3d10level9.dll - ok
22:51:02.0836 1356  [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
22:51:02.0836 1356  C:\Windows\System32\wow64cpu.dll - ok
22:51:02.0841 1356  [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
22:51:02.0841 1356  C:\Windows\SysWOW64\kernel32.dll - ok
22:51:02.0847 1356  [ AE84B591B83012E2F6902D7E961CA4F5 ] C:\Windows\System32\nvd3dumx.dll
22:51:02.0847 1356  C:\Windows\System32\nvd3dumx.dll - ok
22:51:02.0853 1356  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
22:51:02.0853 1356  C:\Windows\SysWOW64\advapi32.dll - ok
22:51:02.0858 1356  [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
22:51:02.0858 1356  C:\Windows\SysWOW64\KernelBase.dll - ok
22:51:02.0864 1356  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
22:51:02.0864 1356  C:\Windows\System32\EhStorShell.dll - ok
22:51:02.0870 1356  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
22:51:02.0870 1356  C:\Windows\System32\MsCtfMonitor.dll - ok
22:51:02.0876 1356  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
22:51:02.0876 1356  C:\Windows\System32\msutb.dll - ok
22:51:02.0881 1356  [ 7BBF670114373CE6A203FA155A9E0D0A ] C:\Windows\System32\ntshrui.dll
22:51:02.0881 1356  C:\Windows\System32\ntshrui.dll - ok
22:51:02.0887 1356  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
22:51:02.0887 1356  C:\Windows\System32\PlaySndSrv.dll - ok
22:51:02.0893 1356  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
22:51:02.0893 1356  C:\Windows\SysWOW64\msvcrt.dll - ok
22:51:02.0898 1356  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
22:51:02.0898 1356  C:\Windows\System32\cscapi.dll - ok
22:51:02.0904 1356  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
22:51:02.0904 1356  C:\Windows\System32\IconCodecService.dll - ok
22:51:02.0910 1356  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
22:51:02.0910 1356  C:\Windows\SysWOW64\rpcrt4.dll - ok
22:51:02.0915 1356  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
22:51:02.0915 1356  C:\Windows\SysWOW64\sechost.dll - ok
22:51:02.0921 1356  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
22:51:02.0921 1356  C:\Windows\System32\runonce.exe - ok
22:51:02.0927 1356  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
22:51:02.0927 1356  C:\Windows\SysWOW64\cryptbase.dll - ok
22:51:02.0933 1356  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
22:51:02.0933 1356  C:\Windows\SysWOW64\shlwapi.dll - ok
22:51:02.0938 1356  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
22:51:02.0938 1356  C:\Windows\SysWOW64\sspicli.dll - ok
22:51:02.0944 1356  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
22:51:02.0944 1356  C:\Windows\SysWOW64\gdi32.dll - ok
22:51:02.0950 1356  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
22:51:02.0950 1356  C:\Windows\SysWOW64\user32.dll - ok
22:51:02.0955 1356  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
22:51:02.0955 1356  C:\Windows\SysWOW64\lpk.dll - ok
22:51:02.0962 1356  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
22:51:02.0962 1356  C:\Windows\SysWOW64\runonce.exe - ok
22:51:02.0967 1356  [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
22:51:02.0967 1356  C:\Windows\SysWOW64\usp10.dll - ok
22:51:02.0972 1356  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
22:51:02.0972 1356  C:\Windows\SysWOW64\imm32.dll - ok
22:51:02.0979 1356  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
22:51:02.0979 1356  C:\Windows\SysWOW64\ole32.dll - ok
22:51:02.0982 1356  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
22:51:02.0982 1356  C:\Windows\SysWOW64\msctf.dll - ok
22:51:02.0988 1356  [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
22:51:02.0988 1356  C:\Windows\SysWOW64\shell32.dll - ok
22:51:02.0994 1356  [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
22:51:02.0994 1356  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
22:51:02.0999 1356  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:51:03.0000 1356  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:51:03.0005 1356  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
22:51:03.0005 1356  C:\Windows\SysWOW64\netapi32.dll - ok
22:51:03.0011 1356  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
22:51:03.0011 1356  C:\Windows\SysWOW64\netutils.dll - ok
22:51:03.0016 1356  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
22:51:03.0016 1356  C:\Windows\SysWOW64\nsi.dll - ok
22:51:03.0023 1356  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
22:51:03.0023 1356  C:\Windows\SysWOW64\winnsi.dll - ok
22:51:03.0028 1356  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
22:51:03.0028 1356  C:\Windows\SysWOW64\srvcli.dll - ok
22:51:03.0033 1356  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
22:51:03.0033 1356  C:\Windows\SysWOW64\wkscli.dll - ok
22:51:03.0040 1356  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
22:51:03.0040 1356  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
22:51:03.0045 1356  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
22:51:03.0045 1356  C:\Windows\SysWOW64\crypt32.dll - ok
22:51:03.0051 1356  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
22:51:03.0051 1356  C:\Windows\SysWOW64\imagehlp.dll - ok
22:51:03.0057 1356  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
22:51:03.0057 1356  C:\Windows\SysWOW64\msasn1.dll - ok
22:51:03.0062 1356  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
22:51:03.0062 1356  C:\Windows\SysWOW64\oleaut32.dll - ok
22:51:03.0068 1356  [ 0CE4D3BD306DA6D1F6F233C403F5B667 ] C:\Windows\SysWOW64\msi.dll
22:51:03.0068 1356  C:\Windows\SysWOW64\msi.dll - ok
22:51:03.0074 1356  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
22:51:03.0074 1356  C:\Windows\SysWOW64\setupapi.dll - ok
22:51:03.0079 1356  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
22:51:03.0079 1356  C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:51:03.0085 1356  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
22:51:03.0085 1356  C:\Windows\SysWOW64\clbcatq.dll - ok
22:51:03.0090 1356  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
22:51:03.0090 1356  C:\Windows\SysWOW64\devobj.dll - ok
22:51:03.0096 1356  [ A0E8F3E4AA79509A6B043B10EB6DB2AD ] C:\Windows\SysWOW64\wininet.dll
22:51:03.0096 1356  C:\Windows\SysWOW64\wininet.dll - ok
22:51:03.0102 1356  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
22:51:03.0102 1356  C:\Windows\SysWOW64\propsys.dll - ok
22:51:03.0108 1356  [ EB38A254E097C6BBB9C4C3B81AD322AB ] C:\Windows\SysWOW64\urlmon.dll
22:51:03.0108 1356  C:\Windows\SysWOW64\urlmon.dll - ok
22:51:03.0113 1356  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
22:51:03.0114 1356  C:\Windows\SysWOW64\ntmarta.dll - ok
22:51:03.0119 1356  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
22:51:03.0119 1356  C:\Windows\SysWOW64\Wldap32.dll - ok
22:51:03.0125 1356  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
22:51:03.0125 1356  C:\Windows\SysWOW64\profapi.dll - ok
22:51:03.0130 1356  [ 64931E3C051A37A642FA72934359642B ] C:\Windows\SysWOW64\iertutil.dll
22:51:03.0131 1356  C:\Windows\SysWOW64\iertutil.dll - ok
22:51:03.0136 1356  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
22:51:03.0136 1356  C:\Windows\SysWOW64\wintrust.dll - ok
22:51:03.0142 1356  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
22:51:03.0142 1356  C:\Windows\SysWOW64\cscapi.dll - ok
22:51:03.0147 1356  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
22:51:03.0147 1356  C:\Windows\SysWOW64\dbghelp.dll - ok
22:51:03.0153 1356  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
22:51:03.0153 1356  C:\Windows\SysWOW64\version.dll - ok
22:51:03.0159 1356  [ FA132E1DAB518B28F4B20DB154A647FC ] C:\Windows\System32\CNMLMB8.DLL
22:51:03.0159 1356  C:\Windows\System32\CNMLMB8.DLL - ok
22:51:03.0165 1356  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
22:51:03.0165 1356  C:\Windows\SysWOW64\apphelp.dll - ok
22:51:03.0170 1356  [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
22:51:03.0170 1356  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
22:51:03.0176 1356  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
22:51:03.0176 1356  C:\Windows\SysWOW64\cmd.exe - ok
22:51:03.0182 1356  [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
22:51:03.0182 1356  C:\Windows\System32\conhost.exe - ok
22:51:03.0188 1356  [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
22:51:03.0188 1356  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
22:51:03.0194 1356  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
22:51:03.0194 1356  C:\Windows\SysWOW64\mstask.dll - ok
22:51:03.0199 1356  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
22:51:03.0199 1356  C:\Windows\SysWOW64\userenv.dll - ok
22:51:03.0205 1356  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
22:51:03.0205 1356  C:\Windows\System32\dbghelp.dll - ok
22:51:03.0211 1356  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
22:51:03.0211 1356  C:\Windows\SysWOW64\winbrand.dll - ok
22:51:03.0216 1356  [ 1F458D8B38D23FDC5FA26EF030AB296F ] C:\Windows\SysWOW64\ieframe.dll
22:51:03.0217 1356  C:\Windows\SysWOW64\ieframe.dll - ok
22:51:03.0222 1356  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
22:51:03.0222 1356  C:\Windows\System32\aelupsvc.dll - ok
22:51:03.0228 1356  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
22:51:03.0228 1356  C:\Windows\SysWOW64\oleacc.dll - ok
22:51:03.0231 1356  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
22:51:03.0231 1356  C:\Windows\SysWOW64\psapi.dll - ok
22:51:03.0237 1356  [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
22:51:03.0238 1356  C:\Windows\SysWOW64\shdocvw.dll - ok
22:51:03.0244 1356  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\HAL\AppData\Local\Temp\B6D8875D-57EC-442F-820C-64077947430A.exe
22:51:03.0244 1356  C:\Users\HAL\AppData\Local\Temp\B6D8875D-57EC-442F-820C-64077947430A.exe - ok
22:51:03.0249 1356  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
22:51:03.0249 1356  C:\Windows\SysWOW64\cryptsp.dll - ok
22:51:03.0255 1356  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
22:51:03.0255 1356  C:\Windows\SysWOW64\rsaenh.dll - ok
22:51:03.0261 1356  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
22:51:03.0261 1356  C:\Windows\SysWOW64\ncrypt.dll - ok
22:51:03.0267 1356  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
22:51:03.0267 1356  C:\Windows\SysWOW64\bcrypt.dll - ok
22:51:03.0272 1356  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
22:51:03.0272 1356  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
22:51:03.0278 1356  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
22:51:03.0278 1356  C:\Windows\SysWOW64\gpapi.dll - ok
22:51:03.0284 1356  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
22:51:03.0284 1356  C:\Windows\SysWOW64\cryptnet.dll - ok
22:51:03.0289 1356  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
22:51:03.0289 1356  C:\Windows\SysWOW64\SensApi.dll - ok
22:51:03.0295 1356  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
22:51:03.0295 1356  C:\Windows\SysWOW64\uxtheme.dll - ok
22:51:03.0301 1356  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:51:03.0301 1356  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:51:03.0306 1356  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
22:51:03.0306 1356  C:\Windows\SysWOW64\EhStorShell.dll - ok
22:51:03.0312 1356  [ 6FE535FAAB7D0EC3B815818D29F07814 ] C:\Windows\System32\CNMN6PPM.DLL
22:51:03.0312 1356  C:\Windows\System32\CNMN6PPM.DLL - ok
22:51:03.0318 1356  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
22:51:03.0318 1356  C:\Windows\System32\FXSMON.dll - ok
22:51:03.0324 1356  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
22:51:03.0324 1356  C:\Windows\System32\snmpapi.dll - ok
22:51:03.0329 1356  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
22:51:03.0329 1356  C:\Windows\System32\tcpmon.dll - ok
22:51:03.0335 1356  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
22:51:03.0335 1356  C:\Windows\System32\wsnmp32.dll - ok
22:51:03.0341 1356  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
22:51:03.0341 1356  C:\Windows\System32\msxml6.dll - ok
22:51:03.0346 1356  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
22:51:03.0346 1356  C:\Windows\System32\usbmon.dll - ok
22:51:03.0352 1356  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
22:51:03.0352 1356  C:\Windows\System32\WSDMon.dll - ok
22:51:03.0357 1356  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
22:51:03.0357 1356  C:\Windows\System32\webservices.dll - ok
22:51:03.0363 1356  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
22:51:03.0363 1356  C:\Windows\System32\WSDApi.dll - ok
22:51:03.0369 1356  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
22:51:03.0369 1356  C:\Windows\System32\fundisc.dll - ok
22:51:03.0374 1356  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
22:51:03.0374 1356  C:\Windows\System32\fdPnp.dll - ok
22:51:03.0380 1356  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
22:51:03.0381 1356  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
22:51:03.0386 1356  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
22:51:03.0386 1356  C:\Windows\System32\win32spl.dll - ok
22:51:03.0391 1356  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
22:51:03.0393 1356  C:\Windows\System32\inetpp.dll - ok
22:51:03.0397 1356  [ EB77DB354791A5932CA559B6F6374E95 ] C:\Windows\SysWOW64\ntshrui.dll
22:51:03.0397 1356  C:\Windows\SysWOW64\ntshrui.dll - ok
22:51:03.0403 1356  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
22:51:03.0403 1356  C:\Windows\SysWOW64\slc.dll - ok
22:51:03.0409 1356  [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
22:51:03.0409 1356  C:\Windows\System32\ntprint.dll - ok
22:51:03.0414 1356  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
22:51:03.0415 1356  C:\Windows\SysWOW64\imageres.dll - ok
22:51:03.0420 1356  [ 7313A885F675B72A0A0DC0C812D0B936 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll
22:51:03.0420 1356  C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok
22:51:03.0426 1356  [ 5575DB32AA0CC5A97CA4DC87511CBF0C ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
22:51:03.0426 1356  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
22:51:03.0432 1356  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
22:51:03.0432 1356  C:\Windows\System32\wbem\NCProv.dll - ok
22:51:03.0438 1356  [ D63F0353F632FB1EDE724173BE6DB5B5 ] C:\Windows\System32\esent.dll
22:51:03.0438 1356  C:\Windows\System32\esent.dll - ok
22:51:03.0443 1356  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:51:03.0443 1356  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
22:51:03.0449 1356  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
22:51:03.0449 1356  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
22:51:03.0456 1356  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
22:51:03.0456 1356  C:\Windows\SysWOW64\mscoree.dll - ok
22:51:03.0461 1356  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:51:03.0461 1356  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
22:51:03.0467 1356  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
22:51:03.0467 1356  C:\Windows\System32\mscoree.dll - ok
22:51:03.0473 1356  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
22:51:03.0473 1356  C:\Windows\System32\msvcr100_clr0400.dll - ok
22:51:03.0479 1356  [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] C:\Windows\System32\FntCache.dll
22:51:03.0479 1356  C:\Windows\System32\FntCache.dll - ok
22:51:03.0482 1356  [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll
22:51:03.0482 1356  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll - ok
22:51:03.0488 1356  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
22:51:03.0488 1356  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
22:51:03.0495 1356  [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
22:51:03.0495 1356  C:\Windows\System32\sppsvc.exe - ok
22:51:03.0500 1356  [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
22:51:03.0500 1356  C:\Windows\System32\drivers\spsys.sys - ok
22:51:03.0505 1356  [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
22:51:03.0505 1356  C:\Windows\System32\wscsvc.dll - ok
22:51:03.0511 1356  [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
22:51:03.0511 1356  C:\Windows\System32\sppwinob.dll - ok
22:51:03.0517 1356  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
22:51:03.0517 1356  C:\Windows\System32\wuapi.dll - ok
22:51:03.0522 1356  [ AD31942BDF3D594C404874613BC2FE4D ] C:\Windows\System32\SearchIndexer.exe
22:51:03.0522 1356  C:\Windows\System32\SearchIndexer.exe - ok
22:51:03.0528 1356  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
22:51:03.0528 1356  C:\Windows\System32\cabinet.dll - ok
22:51:03.0534 1356  [ 6C597496AB646EB9F31C68241050F771 ] C:\Windows\System32\tquery.dll
22:51:03.0534 1356  C:\Windows\System32\tquery.dll - ok
22:51:03.0540 1356  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
22:51:03.0540 1356  C:\Windows\System32\wups.dll - ok
22:51:03.0545 1356  [ 017F5CE9BC2333FE0FB738B0A9C13C2F ] C:\Windows\System32\mssrch.dll
22:51:03.0545 1356  C:\Windows\System32\mssrch.dll - ok
22:51:03.0551 1356  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
22:51:03.0551 1356  C:\Windows\System32\msidle.dll - ok
22:51:03.0558 1356  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
22:51:03.0558 1356  C:\Windows\System32\en-US\tquery.dll.mui - ok
22:51:03.0564 1356  [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
22:51:03.0564 1356  C:\Windows\System32\sppobjs.dll - ok
22:51:03.0570 1356  [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
22:51:03.0570 1356  C:\Windows\System32\drivers\asyncmac.sys - ok
22:51:03.0576 1356  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
22:51:03.0576 1356  C:\Windows\System32\wuaueng.dll - ok
22:51:03.0582 1356  [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
22:51:03.0582 1356  C:\Windows\System32\mspatcha.dll - ok
22:51:03.0588 1356  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
22:51:03.0588 1356  C:\Windows\System32\wups2.dll - ok
22:51:03.0593 1356  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
22:51:03.0594 1356  C:\Windows\System32\msxml3.dll - ok
22:51:03.0600 1356  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:51:03.0600 1356  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:51:03.0605 1356  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
22:51:03.0605 1356  C:\Windows\System32\wbem\cimwin32.dll - ok
22:51:03.0612 1356  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
22:51:03.0612 1356  C:\Windows\System32\framedynos.dll - ok
22:51:03.0618 1356  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
22:51:03.0618 1356  C:\Windows\System32\security.dll - ok
22:51:03.0623 1356  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
22:51:03.0623 1356  C:\Windows\System32\dssenh.dll - ok
22:51:03.0629 1356  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
22:51:03.0629 1356  C:\Windows\System32\browcli.dll - ok
22:51:03.0635 1356  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
22:51:03.0635 1356  C:\Windows\System32\schedcli.dll - ok
22:51:03.0641 1356  [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
22:51:03.0641 1356  C:\Windows\System32\wbem\wmipcima.dll - ok
22:51:03.0647 1356  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
22:51:03.0647 1356  C:\Windows\System32\wmi.dll - ok
22:51:03.0652 1356  [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
22:51:03.0653 1356  C:\Windows\System32\slwga.dll - ok
22:51:03.0658 1356  [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
22:51:03.0659 1356  C:\Windows\System32\sppc.dll - ok
22:51:03.0664 1356  [ 6A16BCE3C09496650BE881C467611653 ] C:\Windows\System32\msi.dll
22:51:03.0664 1356  C:\Windows\System32\msi.dll - ok
22:51:03.0671 1356  [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
22:51:03.0671 1356  C:\Windows\servicing\TrustedInstaller.exe - ok
22:51:03.0676 1356  [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
22:51:03.0676 1356  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
22:51:03.0682 1356  [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
22:51:03.0682 1356  C:\Windows\System32\dpx.dll - ok
22:51:03.0689 1356  [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
22:51:03.0689 1356  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
22:51:03.0695 1356  [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
22:51:03.0695 1356  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
22:51:03.0701 1356  [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
22:51:03.0701 1356  C:\Windows\System32\srclient.dll - ok
22:51:03.0707 1356  [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
22:51:03.0707 1356  C:\Windows\System32\spp.dll - ok
22:51:03.0713 1356  [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
22:51:03.0713 1356  C:\Windows\System32\sxsstore.dll - ok
22:51:03.0719 1356  [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
22:51:03.0719 1356  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
22:51:03.0725 1356  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
22:51:03.0725 1356  C:\Windows\System32\SensApi.dll - ok
22:51:03.0732 1356  [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
22:51:03.0732 1356  C:\Windows\servicing\CbsApi.dll - ok
22:51:03.0737 1356  [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
22:51:03.0737 1356  C:\Windows\System32\advpack.dll - ok
22:51:03.0743 1356  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
22:51:03.0743 1356  C:\Windows\SysWOW64\sfc.dll - ok
22:51:03.0749 1356  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
22:51:03.0749 1356  C:\Windows\SysWOW64\sfc_os.dll - ok
22:51:03.0754 1356  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
22:51:03.0754 1356  C:\Windows\SysWOW64\devrtl.dll - ok
22:51:03.0760 1356  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
22:51:03.0760 1356  C:\Windows\SysWOW64\mpr.dll - ok
22:51:03.0766 1356  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
22:51:03.0766 1356  C:\Windows\SysWOW64\winhttp.dll - ok
22:51:03.0771 1356  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
22:51:03.0772 1356  C:\Windows\SysWOW64\webio.dll - ok
22:51:03.0778 1356  [ 6D220604AA4240303DD8DEAEAB428377 ] C:\Windows\System32\ie4uinit.exe
22:51:03.0778 1356  C:\Windows\System32\ie4uinit.exe - ok
22:51:03.0783 1356  [ D56C13F26ADCB3BC0455DB42883F6E7D ] C:\Windows\System32\iedkcs32.dll
22:51:03.0783 1356  C:\Windows\System32\iedkcs32.dll - ok
22:51:03.0789 1356  [ 1FCB1A72BF5C784F7358E6BEF38E4571 ] C:\Windows\System32\timedate.cpl
22:51:03.0789 1356  C:\Windows\System32\timedate.cpl - ok
22:51:03.0795 1356  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
22:51:03.0795 1356  C:\Windows\System32\actxprxy.dll - ok
22:51:03.0801 1356  [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
22:51:03.0801 1356  C:\Windows\System32\shdocvw.dll - ok
22:51:03.0808 1356  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
22:51:03.0808 1356  C:\Windows\System32\linkinfo.dll - ok
22:51:03.0813 1356  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
22:51:03.0813 1356  C:\Windows\SysWOW64\ws2_32.dll - ok
22:51:03.0819 1356  [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
22:51:03.0819 1356  C:\Windows\System32\gameux.dll - ok
22:51:03.0825 1356  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
22:51:03.0826 1356  C:\Windows\SysWOW64\credssp.dll - ok
22:51:03.0831 1356  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
22:51:03.0831 1356  C:\Windows\SysWOW64\mswsock.dll - ok
22:51:03.0837 1356  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:51:03.0837 1356  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:51:03.0843 1356  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
22:51:03.0843 1356  C:\Windows\SysWOW64\wship6.dll - ok
22:51:03.0848 1356  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
22:51:03.0848 1356  C:\Windows\SysWOW64\dnsapi.dll - ok
22:51:03.0855 1356  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
22:51:03.0855 1356  C:\Windows\SysWOW64\rasadhlp.dll - ok
22:51:03.0860 1356  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
22:51:03.0860 1356  C:\Windows\System32\msftedit.dll - ok
22:51:03.0866 1356  [ 7CB3ACB163DE051169095DC6507B8977 ] C:\Windows\System32\msls31.dll
22:51:03.0866 1356  C:\Windows\System32\msls31.dll - ok
22:51:03.0872 1356  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
22:51:03.0872 1356  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
22:51:03.0879 1356  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:51:03.0879 1356  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:51:03.0885 1356  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
22:51:03.0885 1356  C:\Windows\System32\DeviceCenter.dll - ok
22:51:03.0891 1356  [ 6C12BD722FFC94584348DD34F4059FC5 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
22:51:03.0891 1356  C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe - ok
22:51:03.0897 1356  [ D81BD435CE162736EF797B2D7B8F23AD ] C:\Windows\System32\ieframe.dll
22:51:03.0897 1356  C:\Windows\System32\ieframe.dll - ok
22:51:03.0903 1356  [ 25D21CC76C914EEDF56A34F1C9A3645E ] C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe
22:51:03.0903 1356  C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe - ok
22:51:03.0908 1356  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
22:51:03.0908 1356  C:\Windows\SysWOW64\comdlg32.dll - ok
22:51:03.0914 1356  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
22:51:03.0914 1356  C:\Windows\SysWOW64\msimg32.dll - ok
22:51:03.0920 1356  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
22:51:03.0920 1356  C:\Windows\SysWOW64\secur32.dll - ok
22:51:03.0926 1356  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
22:51:03.0926 1356  C:\Windows\SysWOW64\winspool.drv - ok
22:51:03.0932 1356  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
22:51:03.0932 1356  C:\Windows\System32\wsock32.dll - ok
22:51:03.0938 1356  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
22:51:03.0938 1356  C:\Windows\SysWOW64\oledlg.dll - ok
22:51:03.0944 1356  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
22:51:03.0944 1356  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
22:51:03.0950 1356  [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
22:51:03.0950 1356  C:\Windows\System32\mstask.dll - ok
22:51:03.0956 1356  [ ABB1B50F36CCBEF119FBEF8FDF14AD61 ] C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL
22:51:03.0956 1356  C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL - ok
22:51:03.0962 1356  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
22:51:03.0962 1356  C:\Windows\SysWOW64\winmm.dll - ok
22:51:03.0968 1356  [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx
22:51:03.0968 1356  C:\Windows\System32\hhctrl.ocx - ok
22:51:03.0974 1356  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
22:51:03.0974 1356  C:\Windows\SysWOW64\dwmapi.dll - ok
22:51:03.0979 1356  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
22:51:03.0979 1356  C:\Windows\SysWOW64\rasapi32.dll - ok
22:51:03.0985 1356  [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
22:51:03.0985 1356  C:\Windows\System32\wbem\WMIADAP.exe - ok
22:51:03.0991 1356  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
22:51:03.0991 1356  C:\Windows\SysWOW64\rasman.dll - ok
22:51:03.0994 1356  [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
22:51:03.0994 1356  C:\Windows\System32\loadperf.dll - ok
22:51:04.0000 1356  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
22:51:04.0000 1356  C:\Windows\SysWOW64\rtutils.dll - ok
22:51:04.0005 1356  [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
22:51:04.0005 1356  C:\Windows\SysWOW64\nlaapi.dll - ok
22:51:04.0011 1356  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
22:51:04.0011 1356  C:\Windows\SysWOW64\NapiNSP.dll - ok
22:51:04.0017 1356  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
22:51:04.0017 1356  C:\Windows\System32\thumbcache.dll - ok
22:51:04.0023 1356  [ 2FAD69503166BF30ED15B64DAA1B116D ] C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
22:51:04.0023 1356  C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe - ok
22:51:04.0029 1356  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
22:51:04.0029 1356  C:\Windows\SysWOW64\pnrpnsp.dll - ok
22:51:04.0035 1356  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
22:51:04.0035 1356  C:\Windows\SysWOW64\winrnr.dll - ok
22:51:04.0040 1356  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
22:51:04.0040 1356  C:\Windows\SysWOW64\netprofm.dll - ok
22:51:04.0047 1356  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
22:51:04.0047 1356  C:\Windows\SysWOW64\npmproxy.dll - ok
22:51:04.0052 1356  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
22:51:04.0052 1356  C:\Windows\System32\wbem\wmiprov.dll - ok
22:51:04.0058 1356  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
22:51:04.0059 1356  C:\Windows\System32\networkexplorer.dll - ok
22:51:04.0065 1356  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
22:51:04.0065 1356  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
22:51:04.0071 1356  [ 749949494676218FFA99501F4AA22ECC ] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
22:51:04.0071 1356  C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe - ok
22:51:04.0077 1356  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
22:51:04.0077 1356  C:\Windows\System32\mlang.dll - ok
22:51:04.0083 1356  [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
22:51:04.0083 1356  C:\Windows\System32\PhotoMetadataHandler.dll - ok
22:51:04.0089 1356  [ 8EAE03A0F0BF13AF27702E29460D7B47 ] C:\Users\HAL\AppData\Roaming\PC-Gizmos\ssleay32.dll
22:51:04.0089 1356  C:\Users\HAL\AppData\Roaming\PC-Gizmos\ssleay32.dll - ok
22:51:04.0095 1356  [ D5405DD640E870B1DD4F5B4BD08865BB ] C:\Users\HAL\AppData\Roaming\PC-Gizmos\libeay32.dll
22:51:04.0095 1356  C:\Users\HAL\AppData\Roaming\PC-Gizmos\libeay32.dll - ok
22:51:04.0102 1356  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
22:51:04.0102 1356  C:\Windows\SysWOW64\wsock32.dll - ok
22:51:04.0107 1356  [ 4EE367B8B1964160A1F1B80095183D3A ] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
22:51:04.0107 1356  C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin - ok
22:51:04.0113 1356  [ B89137476D554DF13421DF8F5F5789EC ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll
22:51:04.0113 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll - ok
22:51:04.0119 1356  [ CCFA2FC955EE4CB4157AFDD5F11E52E7 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll
22:51:04.0119 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll - ok
22:51:04.0125 1356  [ 4513B7400878973F9B1BA71153B4F4CF ] C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll
22:51:04.0125 1356  C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll - ok
22:51:04.0131 1356  [ FCD4E3223AB57109D09F03EF74D9B181 ] C:\Program Files (x86)\OpenOffice.org 3\program\comphelpMSC.dll
22:51:04.0131 1356  C:\Program Files (x86)\OpenOffice.org 3\program\comphelpMSC.dll - ok
22:51:04.0137 1356  [ 9262BF9AF67CA4499F7DAE1FB2AA58E0 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
22:51:04.0137 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll - ok
22:51:04.0143 1356  [ A0849FBA350AA979617856770F8AA1D2 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
22:51:04.0143 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll - ok
22:51:04.0150 1356  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
22:51:04.0150 1356  C:\Windows\System32\stobject.dll - ok
22:51:04.0156 1356  [ 7AD794FA7B80EC3F97097DA7E7011347 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll
22:51:04.0156 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll - ok
22:51:04.0162 1356  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
22:51:04.0162 1356  C:\Windows\System32\batmeter.dll - ok
22:51:04.0168 1356  [ B6F943D2D99307BFD7D2ADFA3B866813 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
22:51:04.0168 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll - ok
22:51:04.0174 1356  [ E6AEF6498578702ED3E8024D9792F30B ] C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll
22:51:04.0174 1356  C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll - ok
22:51:04.0181 1356  [ C820C516CB162FD1845E2612A65536CB ] C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll
22:51:04.0181 1356  C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll - ok
22:51:04.0187 1356  [ 7FB936AA67FA487F59529C9A4907685E ] C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmisc.dll
22:51:04.0187 1356  C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmisc.dll - ok
22:51:04.0193 1356  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
22:51:04.0193 1356  C:\Windows\System32\prnfldr.dll - ok
22:51:04.0199 1356  [ 2FC3769842EB87578032E8B6C1DE9A08 ] C:\Program Files (x86)\OpenOffice.org 3\program\tl.dll
22:51:04.0199 1356  C:\Program Files (x86)\OpenOffice.org 3\program\tl.dll - ok
22:51:04.0205 1356  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
22:51:04.0205 1356  C:\Windows\System32\rundll32.exe - ok
22:51:04.0211 1356  [ 4167AE99A4CC521848E5471FA83A9EED ] C:\Program Files (x86)\OpenOffice.org 3\program\basegfx.dll
22:51:04.0211 1356  C:\Program Files (x86)\OpenOffice.org 3\program\basegfx.dll - ok
22:51:04.0217 1356  [ D2A90407F02E2B2B7D636EF402BEBA59 ] C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll
22:51:04.0217 1356  C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll - ok
22:51:04.0223 1356  [ E389EA130C4A9A4DBA0F138222261056 ] C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe
22:51:04.0223 1356  C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe - ok
22:51:04.0229 1356  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
22:51:04.0229 1356  C:\Windows\System32\DXP.dll - ok
22:51:04.0234 1356  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
22:51:04.0234 1356  C:\Windows\SysWOW64\msxml3.dll - ok
22:51:04.0241 1356  [ 750726E5868345AB2D46850EB1E60DF9 ] C:\Program Files (x86)\OpenOffice.org 3\program\utl.dll
22:51:04.0241 1356  C:\Program Files (x86)\OpenOffice.org 3\program\utl.dll - ok
22:51:04.0244 1356  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
22:51:04.0244 1356  C:\Windows\System32\Syncreg.dll - ok
22:51:04.0250 1356  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
22:51:04.0250 1356  C:\Windows\ehome\ehSSO.dll - ok
22:51:04.0256 1356  [ 218B2BA51244F5285904AE03F5898112 ] C:\Program Files (x86)\OpenOffice.org 3\program\xcr.dll
22:51:04.0256 1356  C:\Program Files (x86)\OpenOffice.org 3\program\xcr.dll - ok
22:51:04.0261 1356  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
22:51:04.0261 1356  C:\Windows\System32\AudioSes.dll - ok
22:51:04.0267 1356  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
22:51:04.0267 1356  C:\Windows\System32\AltTab.dll - ok
22:51:04.0273 1356  [ 365EB15783B9BE4DB9C2A6064532B2BC ] C:\Program Files (x86)\OpenOffice.org 3\program\sfx.dll
22:51:04.0273 1356  C:\Program Files (x86)\OpenOffice.org 3\program\sfx.dll - ok
22:51:04.0279 1356  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
22:51:04.0279 1356  C:\Windows\System32\WPDShServiceObj.dll - ok
22:51:04.0285 1356  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
22:51:04.0285 1356  C:\Windows\System32\PortableDeviceTypes.dll - ok
22:51:04.0291 1356  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
22:51:04.0291 1356  C:\Windows\System32\mssprxy.dll - ok
22:51:04.0298 1356  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
22:51:04.0298 1356  C:\Windows\System32\pnidui.dll - ok
22:51:04.0303 1356  [ CDD76188ECF2EA78EB816151D0130327 ] C:\Program Files (x86)\OpenOffice.org 3\program\fwe.dll
22:51:04.0303 1356  C:\Program Files (x86)\OpenOffice.org 3\program\fwe.dll - ok
22:51:04.0308 1356  [ CC22C9FB26428FEAB01526F2A23B30FC ] C:\Program Files (x86)\OpenOffice.org 3\program\fwi.dll
22:51:04.0309 1356  C:\Program Files (x86)\OpenOffice.org 3\program\fwi.dll - ok
22:51:04.0315 1356  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
22:51:04.0315 1356  C:\Windows\System32\QUTIL.DLL - ok
22:51:04.0320 1356  [ ACF3A47CE86B6E89616C4D3A692A4422 ] C:\Program Files (x86)\OpenOffice.org 3\program\svl.dll
22:51:04.0320 1356  C:\Program Files (x86)\OpenOffice.org 3\program\svl.dll - ok
22:51:04.0326 1356  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
22:51:04.0326 1356  C:\Windows\System32\srchadmin.dll - ok
22:51:04.0332 1356  [ 336B257EC1D65F97B149BA032F41B428 ] C:\Program Files (x86)\OpenOffice.org 3\program\sot.dll
22:51:04.0332 1356  C:\Program Files (x86)\OpenOffice.org 3\program\sot.dll - ok
22:51:04.0338 1356  [ 47B8DEBEC68FACCD026F99CAE8698C93 ] C:\Windows\System32\webcheck.dll
22:51:04.0338 1356  C:\Windows\System32\webcheck.dll - ok
22:51:04.0344 1356  [ 561714DFA385FA4E35D81DCF8014377F ] C:\Program Files (x86)\OpenOffice.org 3\program\svt.dll
22:51:04.0344 1356  C:\Program Files (x86)\OpenOffice.org 3\program\svt.dll - ok
22:51:04.0350 1356  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
22:51:04.0350 1356  C:\Windows\System32\rasdlg.dll - ok
22:51:04.0355 1356  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
22:51:04.0355 1356  C:\Windows\System32\dot3api.dll - ok
22:51:04.0362 1356  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
22:51:04.0362 1356  C:\Windows\System32\wlanhlp.dll - ok
22:51:04.0367 1356  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
22:51:04.0367 1356  C:\Windows\System32\wlanapi.dll - ok
22:51:04.0373 1356  [ 5F49FBF4E018ABB9C4ADC4A8D57F9C76 ] C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll
22:51:04.0373 1356  C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll - ok
22:51:04.0379 1356  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
22:51:04.0379 1356  C:\Windows\System32\onex.dll - ok
22:51:04.0385 1356  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
22:51:04.0385 1356  C:\Windows\System32\wlanutil.dll - ok
22:51:04.0391 1356  [ F6CB86F2E560E2536BBA522F97BC6039 ] C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll
22:51:04.0391 1356  C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll - ok
22:51:04.0397 1356  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
22:51:04.0397 1356  C:\Windows\System32\SyncCenter.dll - ok
22:51:04.0403 1356  [ EC00034A5D1E094FCFFA6AF27EBF9604 ] C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll
22:51:04.0403 1356  C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll - ok
22:51:04.0409 1356  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
22:51:04.0409 1356  C:\Windows\System32\ActionCenter.dll - ok
22:51:04.0415 1356  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
22:51:04.0415 1356  C:\Windows\System32\imapi2.dll - ok
22:51:04.0422 1356  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
22:51:04.0422 1356  C:\Windows\System32\WWanAPI.dll - ok
22:51:04.0427 1356  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\66273993.sys
22:51:04.0427 1356  C:\Windows\System32\drivers\66273993.sys - ok
22:51:04.0433 1356  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
22:51:04.0433 1356  C:\Windows\System32\wwapi.dll - ok
22:51:04.0439 1356  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
22:51:04.0439 1356  C:\Windows\System32\QAGENT.DLL - ok
22:51:04.0444 1356  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
22:51:04.0444 1356  C:\Windows\System32\hgcpl.dll - ok
22:51:04.0450 1356  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
22:51:04.0450 1356  C:\Windows\System32\provsvc.dll - ok
22:51:04.0456 1356  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
22:51:04.0456 1356  C:\Windows\System32\bthprops.cpl - ok
22:51:04.0462 1356  [ 31DCF8ED7C7D8C87EB5379AD122A328E ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll
22:51:04.0462 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll - ok
22:51:04.0468 1356  [ 1330EA93145B834D1A6ED1F1AC3163FC ] C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
22:51:04.0468 1356  C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll - ok
22:51:04.0474 1356  [ EC120FACE13767CCFB18FB2EA170AC83 ] C:\Program Files (x86)\OpenOffice.org 3\program\tk.dll
22:51:04.0474 1356  C:\Program Files (x86)\OpenOffice.org 3\program\tk.dll - ok
22:51:04.0480 1356  [ E8832BCF29CC03F9A490C9AAC3056706 ] C:\Program Files (x86)\OpenOffice.org 3\program\vcl.dll
22:51:04.0480 1356  C:\Program Files (x86)\OpenOffice.org 3\program\vcl.dll - ok
22:51:04.0486 1356  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
22:51:04.0486 1356  C:\Windows\SysWOW64\riched20.dll - ok
22:51:04.0491 1356  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
22:51:04.0491 1356  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
22:51:04.0495 1356  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
22:51:04.0495 1356  C:\Windows\SysWOW64\duser.dll - ok
22:51:04.0501 1356  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
22:51:04.0501 1356  C:\Windows\SysWOW64\dui70.dll - ok
22:51:04.0506 1356  [ 5C801C9BC7A0317A14B7628FCCD2D17E ] C:\Program Files (x86)\OpenOffice.org 3\program\i18npaper.dll
22:51:04.0506 1356  C:\Program Files (x86)\OpenOffice.org 3\program\i18npaper.dll - ok
22:51:04.0513 1356  [ 557D165ABAC057F379D47E92F395405F ] C:\Program Files (x86)\OpenOffice.org 3\program\sax.dll
22:51:04.0513 1356  C:\Program Files (x86)\OpenOffice.org 3\program\sax.dll - ok
22:51:04.0519 1356  [ FBC74172F7246C9531CC46D159276971 ] C:\Program Files (x86)\OpenOffice.org 3\program\sb.dll
22:51:04.0519 1356  C:\Program Files (x86)\OpenOffice.org 3\program\sb.dll - ok
22:51:04.0525 1356  [ 6C0A96C3485D25236F3DB7D8A120F21A ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll
22:51:04.0525 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll - ok
22:51:04.0531 1356  [ 8506A78404B3B469A2382C509B7DB967 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
22:51:04.0531 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll - ok
22:51:04.0538 1356  [ 352A00C74C96FA5A41EA32BF4BFACA10 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll
22:51:04.0538 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll - ok
22:51:04.0544 1356  [ 66177DC56AC40A87F17C8B4333049D10 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll
22:51:04.0544 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll - ok
22:51:04.0550 1356  [ 6238D624E7CF2C59E773C6D2A326C85B ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\xmlreader.dll
22:51:04.0550 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\xmlreader.dll - ok
22:51:04.0556 1356  [ 9E7C434E383D451D299EB7861ED1CECC ] C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll
22:51:04.0556 1356  C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll - ok
22:51:04.0562 1356  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
22:51:04.0562 1356  C:\Windows\System32\FXSST.dll - ok
22:51:04.0567 1356  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
22:51:04.0567 1356  C:\Windows\System32\FXSAPI.dll - ok
22:51:04.0573 1356  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
22:51:04.0574 1356  C:\Windows\System32\FXSRESM.dll - ok
22:51:04.0579 1356  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
22:51:04.0579 1356  C:\Windows\System32\FXSSVC.exe - ok
22:51:04.0585 1356  [ EA85B693F3B321A9DF90CFBD1673DAF2 ] C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll
22:51:04.0585 1356  C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll - ok
22:51:04.0591 1356  [ 10D5662D127EF17019513C7251E10117 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll
22:51:04.0591 1356  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll - ok
22:51:04.0598 1356  [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
22:51:04.0598 1356  C:\Windows\SysWOW64\Faultrep.dll - ok
22:51:04.0603 1356  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
22:51:04.0603 1356  C:\Windows\SysWOW64\wer.dll - ok
22:51:04.0608 1356  [ C68069DBAB5EF8861F6D54CC989D60D0 ] C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll
22:51:04.0608 1356  C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll - ok
22:51:04.0615 1356  [ 032A6D7058EC06CA6CF73A6D0493ADA0 ] C:\Program Files (x86)\OpenOffice.org 3\program\fwk.dll
22:51:04.0615 1356  C:\Program Files (x86)\OpenOffice.org 3\program\fwk.dll - ok
22:51:04.0620 1356  [ F31AD307E2F5797B837C3932A7794D26 ] C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll
22:51:04.0620 1356  C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll - ok
22:51:04.0627 1356  [ 41DFF500F0C1C438D0500F08DF8B827B ] C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll
22:51:04.0627 1356  C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll - ok
22:51:04.0633 1356  [ A8C4CDA29ED3598E38F25F12183849AF ] C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll
22:51:04.0633 1356  C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll - ok
22:51:04.0639 1356  [ C64B09515203DC640FEFF8C1DE5721E0 ] C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll
22:51:04.0639 1356  C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll - ok
22:51:04.0645 1356  [ E91F3A5185FA77C0C540465C906F2BDE ] C:\Program Files (x86)\OpenOffice.org 3\program\emser.dll
22:51:04.0645 1356  C:\Program Files (x86)\OpenOffice.org 3\program\emser.dll - ok
22:51:04.0651 1356  [ A9AE9E65D5041249611D33A0FFDCEA8F ] C:\Program Files\Internet Explorer\ieproxy.dll
22:51:04.0651 1356  C:\Program Files\Internet Explorer\ieproxy.dll - ok
22:51:04.0656 1356  [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
22:51:04.0656 1356  C:\Windows\System32\StructuredQuery.dll - ok
22:51:04.0663 1356  [ 4E9592BB2C100E571F82640E59E9ECD5 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
22:51:04.0663 1356  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
22:51:04.0668 1356  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
22:51:04.0668 1356  C:\Windows\SysWOW64\wtsapi32.dll - ok
22:51:04.0675 1356  [ FB063A7D64A5F67DE13EFAEA55E60FEB ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\chrome.dll
22:51:04.0675 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\chrome.dll - ok
22:51:04.0681 1356  [ 311DC5224497C93AE966BAC37ACE0690 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\icudt.dll
22:51:04.0681 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\icudt.dll - ok
22:51:04.0687 1356  [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
22:51:04.0687 1356  C:\Windows\SysWOW64\KBDUS.DLL - ok
22:51:04.0693 1356  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
22:51:04.0693 1356  C:\Windows\SysWOW64\AudioSes.dll - ok
22:51:04.0699 1356  [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:51:04.0699 1356  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:51:04.0705 1356  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:51:04.0705 1356  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:51:04.0711 1356  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
22:51:04.0711 1356  C:\Windows\SysWOW64\MMDevAPI.dll - ok
22:51:04.0716 1356  [ 236360CE5E4C3F063AC110533747C0A8 ] C:\Windows\SysWOW64\Wpc.dll
22:51:04.0716 1356  C:\Windows\SysWOW64\Wpc.dll - ok
22:51:04.0722 1356  [ 5BF8E37FA1E25227480F9CD2ACA21FB6 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\d3dcompiler_46.dll
22:51:04.0723 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\d3dcompiler_46.dll - ok
22:51:04.0728 1356  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
22:51:04.0728 1356  C:\Windows\SysWOW64\wevtapi.dll - ok
22:51:04.0734 1356  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
22:51:04.0734 1356  C:\Windows\SysWOW64\samcli.dll - ok
22:51:04.0740 1356  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
22:51:04.0740 1356  C:\Windows\SysWOW64\samlib.dll - ok
22:51:04.0743 1356  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
22:51:04.0743 1356  C:\Windows\SysWOW64\mssprxy.dll - ok
22:51:04.0749 1356  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
22:51:04.0749 1356  C:\Windows\SysWOW64\winsta.dll - ok
22:51:04.0755 1356  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\SysWOW64\msftedit.dll
22:51:04.0755 1356  C:\Windows\SysWOW64\msftedit.dll - ok
22:51:04.0761 1356  [ FD56467B28653F26B4D061E06C2582D3 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll
22:51:04.0761 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll - ok
22:51:04.0767 1356  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
22:51:04.0767 1356  C:\Windows\SysWOW64\d3d9.dll - ok
22:51:04.0772 1356  [ 6FDF222B791EA2E12F54C320EADF28C4 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
22:51:04.0773 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll - ok
22:51:04.0778 1356  [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
22:51:04.0778 1356  C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
22:51:04.0784 1356  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
22:51:04.0784 1356  C:\Windows\SysWOW64\d3d8thk.dll - ok
22:51:04.0791 1356  [ 462805D756FE1C3E64713D4435F1F6F3 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll
22:51:04.0791 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll - ok
22:51:04.0797 1356  [ EDD4E278C5A6E9E7D5493ACD00A528E0 ] C:\Windows\SysWOW64\nvd3dum.dll
22:51:04.0797 1356  C:\Windows\SysWOW64\nvd3dum.dll - ok
22:51:04.0803 1356  [ 934EF71F24C5C1641DB6E13E3EFF0A78 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppgooglenaclpluginchrome.dll
22:51:04.0803 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppgooglenaclpluginchrome.dll - ok
22:51:04.0809 1356  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
22:51:04.0809 1356  C:\Windows\SysWOW64\mscms.dll - ok
22:51:04.0816 1356  [ 88A5FC956921F2E39EC8CA6363B11749 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll
22:51:04.0816 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll - ok
22:51:04.0822 1356  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
22:51:04.0822 1356  C:\Windows\SysWOW64\powrprof.dll - ok
22:51:04.0829 1356  [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
22:51:04.0829 1356  C:\Windows\SysWOW64\dxva2.dll - ok
22:51:04.0834 1356  [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\SysWOW64\mf.dll
22:51:04.0834 1356  C:\Windows\SysWOW64\mf.dll - ok
22:51:04.0839 1356  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
22:51:04.0839 1356  C:\Windows\SysWOW64\atl.dll - ok
22:51:04.0846 1356  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
22:51:04.0846 1356  C:\Windows\SysWOW64\mfplat.dll - ok
22:51:04.0851 1356  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
22:51:04.0851 1356  C:\Windows\SysWOW64\avrt.dll - ok
22:51:04.0857 1356  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
22:51:04.0857 1356  C:\Windows\SysWOW64\ksuser.dll - ok
22:51:04.0863 1356  [ 3DE43BFDAF3F8979699650202AA18B12 ] C:\Windows\SysWOW64\msmpeg2vdec.dll
22:51:04.0863 1356  C:\Windows\SysWOW64\msmpeg2vdec.dll - ok
22:51:04.0869 1356  [ 53AF1750FD45DDD705C9B68C7DC58827 ] C:\Windows\SysWOW64\evr.dll
22:51:04.0869 1356  C:\Windows\SysWOW64\evr.dll - ok
22:51:04.0874 1356  [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\SysWOW64\sqmapi.dll
22:51:04.0875 1356  C:\Windows\SysWOW64\sqmapi.dll - ok
22:51:04.0880 1356  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
22:51:04.0880 1356  C:\Windows\SysWOW64\actxprxy.dll - ok
22:51:04.0886 1356  [ E0A95E4B2F08FD767E9B537D975A9337 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
22:51:04.0886 1356  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll - ok
22:51:04.0893 1356  [ 5689804A4016EAF199C7FA2E3C88778F ] C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
22:51:04.0893 1356  C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll - ok
22:51:04.0899 1356  [ 3D928B3FE97C403A33F803B3D1A260C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
22:51:04.0899 1356  C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll - ok
22:51:04.0906 1356  [ A843FC35574ECFD9E7A41C5505A9921B ] C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
22:51:04.0906 1356  C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll - ok
22:51:04.0911 1356  [ E64819B6014A93E2503BB52419A0F6F3 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
22:51:04.0911 1356  C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll - ok
22:51:04.0917 1356  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
22:51:04.0917 1356  C:\Windows\SysWOW64\linkinfo.dll - ok
22:51:04.0921 1356  ============================================================
22:51:04.0921 1356  Scan finished
22:51:04.0921 1356  ============================================================
22:51:04.0934 2444  Detected object count: 1
22:51:04.0935 2444  Actual detected object count: 1
22:51:37.0028 2444  !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
22:51:37.0029 2444  !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:51:42.0555 2516  ============================================================
22:51:42.0555 2516  Scan started
22:51:42.0555 2516  Mode: Manual; SigCheck; TDLFS; 
22:51:42.0555 2516  ============================================================
22:51:43.0223 2516  ================ Scan system memory ========================
22:51:43.0223 2516  System memory - ok
22:51:43.0224 2516  ================ Scan services =============================
22:51:43.0286 2516  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:51:43.0317 2516  !SASCORE ( UnsignedFile.Multi.Generic ) - warning
22:51:43.0317 2516  !SASCORE - detected UnsignedFile.Multi.Generic (1)
22:51:43.0988 2516  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:51:44.0024 2516  1394ohci - ok
22:51:44.0051 2516  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:51:44.0067 2516  ACPI - ok
22:51:44.0084 2516  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:51:44.0097 2516  AcpiPmi - ok
22:51:44.0120 2516  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:51:44.0136 2516  adp94xx - ok
22:51:44.0157 2516  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:51:44.0171 2516  adpahci - ok
22:51:44.0181 2516  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:51:44.0192 2516  adpu320 - ok
22:51:44.0214 2516  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:51:44.0245 2516  AeLookupSvc - ok
22:51:44.0315 2516  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
22:51:44.0330 2516  AFD - ok
22:51:44.0425 2516  [ 98022774D9930ECBB292E70DB7601DF6 ] AGERESoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
22:51:44.0460 2516  AGERESoftModem - ok
22:51:44.0489 2516  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:51:44.0498 2516  agp440 - ok
22:51:44.0526 2516  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
22:51:44.0537 2516  ALG - ok
22:51:44.0562 2516  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:51:44.0570 2516  aliide - ok
22:51:44.0591 2516  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
22:51:44.0600 2516  amdide - ok
22:51:44.0624 2516  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:51:44.0634 2516  AmdK8 - ok
22:51:44.0667 2516  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:51:44.0677 2516  AmdPPM - ok
22:51:44.0694 2516  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:51:44.0705 2516  amdsata - ok
22:51:44.0752 2516  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:51:44.0778 2516  amdsbs - ok
22:51:44.0796 2516  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:51:44.0807 2516  amdxata - ok
22:51:44.0921 2516  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
22:51:44.0974 2516  AppID - ok
22:51:45.0054 2516  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:51:45.0119 2516  AppIDSvc - ok
22:51:45.0245 2516  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
22:51:45.0273 2516  Appinfo - ok
22:51:45.0315 2516  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
22:51:45.0329 2516  arc - ok
22:51:45.0398 2516  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:51:45.0408 2516  arcsas - ok
22:51:45.0428 2516  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:51:45.0458 2516  AsyncMac - ok
22:51:45.0470 2516  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
22:51:45.0479 2516  atapi - ok
22:51:45.0538 2516  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:51:45.0588 2516  AudioEndpointBuilder - ok
22:51:45.0632 2516  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:51:45.0667 2516  AudioSrv - ok
22:51:45.0697 2516  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:51:45.0712 2516  AxInstSV - ok
22:51:45.0757 2516  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:51:45.0771 2516  b06bdrv - ok
22:51:45.0838 2516  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:51:45.0872 2516  b57nd60a - ok
22:51:46.0024 2516  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:51:46.0052 2516  BDESVC - ok
22:51:46.0104 2516  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:51:46.0169 2516  Beep - ok
22:51:46.0256 2516  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
22:51:46.0308 2516  BFE - ok
22:51:46.0396 2516  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
22:51:46.0456 2516  BITS - ok
22:51:46.0462 2516  bitzmpmt - ok
22:51:46.0496 2516  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:51:46.0507 2516  blbdrive - ok
22:51:46.0554 2516  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:51:46.0577 2516  bowser - ok
22:51:46.0615 2516  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:51:46.0630 2516  BrFiltLo - ok
22:51:46.0649 2516  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:51:46.0663 2516  BrFiltUp - ok
22:51:46.0678 2516  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
22:51:46.0711 2516  BridgeMP - ok
22:51:46.0749 2516  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
22:51:46.0775 2516  Browser - ok
22:51:46.0818 2516  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:51:46.0833 2516  Brserid - ok


#12 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 11:04 PM

TDS Log 3rd part

 

 

22:51:46.0869 2516  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:51:46.0900 2516  BrSerWdm - ok
22:51:46.0923 2516  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:51:46.0937 2516  BrUsbMdm - ok
22:51:46.0955 2516  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:51:46.0967 2516  BrUsbSer - ok
22:51:47.0000 2516  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:51:47.0015 2516  BTHMODEM - ok
22:51:47.0105 2516  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
22:51:47.0164 2516  bthserv - ok
22:51:47.0193 2516  catchme - ok
22:51:47.0246 2516  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:51:47.0310 2516  cdfs - ok
22:51:47.0342 2516  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:51:47.0354 2516  cdrom - ok
22:51:47.0375 2516  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
22:51:47.0405 2516  CertPropSvc - ok
22:51:47.0418 2516  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
22:51:47.0431 2516  circlass - ok
22:51:47.0454 2516  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
22:51:47.0468 2516  CLFS - ok
22:51:47.0555 2516  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:51:47.0582 2516  clr_optimization_v2.0.50727_32 - ok
22:51:47.0630 2516  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:51:47.0654 2516  clr_optimization_v2.0.50727_64 - ok
22:51:47.0737 2516  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:51:47.0766 2516  clr_optimization_v4.0.30319_32 - ok
22:51:47.0838 2516  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:51:47.0864 2516  clr_optimization_v4.0.30319_64 - ok
22:51:47.0896 2516  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:51:47.0909 2516  CmBatt - ok
22:51:47.0927 2516  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:51:47.0938 2516  cmdide - ok
22:51:48.0015 2516  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
22:51:48.0056 2516  CNG - ok
22:51:48.0072 2516  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:51:48.0083 2516  Compbatt - ok
22:51:48.0095 2516  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:51:48.0109 2516  CompositeBus - ok
22:51:48.0114 2516  COMSysApp - ok
22:51:48.0128 2516  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:51:48.0137 2516  crcdisk - ok
22:51:48.0176 2516  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:51:48.0187 2516  CryptSvc - ok
22:51:48.0237 2516  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:51:48.0287 2516  DcomLaunch - ok
22:51:48.0318 2516  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
22:51:48.0351 2516  defragsvc - ok
22:51:48.0393 2516  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:51:48.0423 2516  DfsC - ok
22:51:48.0446 2516  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:51:48.0478 2516  Dhcp - ok
22:51:48.0503 2516  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
22:51:48.0533 2516  discache - ok
22:51:48.0547 2516  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
22:51:48.0557 2516  Disk - ok
22:51:48.0590 2516  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:51:48.0602 2516  Dnscache - ok
22:51:48.0626 2516  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:51:48.0658 2516  dot3svc - ok
22:51:48.0690 2516  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
22:51:48.0721 2516  DPS - ok
22:51:48.0756 2516  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:51:48.0784 2516  drmkaud - ok
22:51:48.0838 2516  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:51:48.0875 2516  DXGKrnl - ok
22:51:48.0897 2516  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
22:51:48.0929 2516  EapHost - ok
22:51:49.0094 2516  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:51:49.0143 2516  ebdrv - ok
22:51:49.0172 2516  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
22:51:49.0183 2516  EFS - ok
22:51:49.0264 2516  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:51:49.0307 2516  ehRecvr - ok
22:51:49.0325 2516  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
22:51:49.0339 2516  ehSched - ok
22:51:49.0367 2516  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:51:49.0387 2516  elxstor - ok
22:51:49.0414 2516  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:51:49.0424 2516  ErrDev - ok
22:51:49.0460 2516  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
22:51:49.0494 2516  EventSystem - ok
22:51:49.0533 2516  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
22:51:49.0566 2516  exfat - ok
22:51:49.0589 2516  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:51:49.0622 2516  fastfat - ok
22:51:49.0700 2516  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
22:51:49.0733 2516  Fax - ok
22:51:49.0762 2516  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
22:51:49.0774 2516  fdc - ok
22:51:49.0795 2516  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
22:51:49.0833 2516  fdPHost - ok
22:51:49.0851 2516  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:51:49.0882 2516  FDResPub - ok
22:51:49.0898 2516  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:51:49.0908 2516  FileInfo - ok
22:51:49.0923 2516  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:51:49.0954 2516  Filetrace - ok
22:51:49.0984 2516  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:51:49.0994 2516  flpydisk - ok
22:51:50.0008 2516  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:51:50.0021 2516  FltMgr - ok
22:51:50.0080 2516  [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache       C:\Windows\system32\FntCache.dll
22:51:50.0148 2516  FontCache - ok
22:51:50.0211 2516  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:51:50.0233 2516  FontCache3.0.0.0 - ok
22:51:50.0241 2516  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:51:50.0253 2516  FsDepends - ok
22:51:50.0284 2516  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:51:50.0293 2516  Fs_Rec - ok
22:51:50.0327 2516  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:51:50.0342 2516  fvevol - ok
22:51:50.0360 2516  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:51:50.0370 2516  gagp30kx - ok
22:51:50.0410 2516  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
22:51:50.0448 2516  gpsvc - ok
22:51:50.0535 2516  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:51:50.0561 2516  gupdate - ok
22:51:50.0568 2516  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:51:50.0578 2516  gupdatem - ok
22:51:50.0610 2516  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:51:50.0620 2516  hcw85cir - ok
22:51:50.0650 2516  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:51:50.0666 2516  HdAudAddService - ok
22:51:50.0683 2516  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:51:50.0697 2516  HDAudBus - ok
22:51:50.0718 2516  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:51:50.0729 2516  HidBatt - ok
22:51:50.0759 2516  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:51:50.0772 2516  HidBth - ok
22:51:50.0800 2516  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:51:50.0813 2516  HidIr - ok
22:51:50.0848 2516  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
22:51:50.0879 2516  hidserv - ok
22:51:50.0908 2516  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:51:50.0918 2516  HidUsb - ok
22:51:50.0949 2516  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:51:51.0002 2516  hkmsvc - ok
22:51:51.0058 2516  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:51:51.0091 2516  HomeGroupListener - ok
22:51:51.0125 2516  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:51:51.0139 2516  HomeGroupProvider - ok
22:51:51.0154 2516  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:51:51.0165 2516  HpSAMD - ok
22:51:51.0272 2516  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:51:51.0328 2516  HTTP - ok
22:51:51.0362 2516  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:51:51.0371 2516  hwpolicy - ok
22:51:51.0388 2516  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:51:51.0399 2516  i8042prt - ok
22:51:51.0450 2516  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:51:51.0492 2516  iaStorV - ok
22:51:51.0629 2516  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:51:51.0660 2516  idsvc - ok
22:51:51.0676 2516  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:51:51.0685 2516  iirsp - ok
22:51:51.0903 2516  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
22:51:51.0952 2516  IKEEXT - ok
22:51:51.0975 2516  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
22:51:51.0984 2516  intelide - ok
22:51:52.0008 2516  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
22:51:52.0018 2516  intelppm - ok
22:51:52.0038 2516  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:51:52.0069 2516  IPBusEnum - ok
22:51:52.0076 2516  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:51:52.0106 2516  IpFilterDriver - ok
22:51:52.0192 2516  [ A34A587FFFD45FA649FBA6D03784D257 ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
22:51:52.0246 2516  IpHlpSvc - ok
22:51:52.0262 2516  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:51:52.0272 2516  IPMIDRV - ok
22:51:52.0294 2516  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:51:52.0326 2516  IPNAT - ok
22:51:52.0344 2516  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:51:52.0358 2516  IRENUM - ok
22:51:52.0382 2516  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:51:52.0391 2516  isapnp - ok
22:51:52.0420 2516  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:51:52.0433 2516  iScsiPrt - ok
22:51:52.0466 2516  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:51:52.0476 2516  kbdclass - ok
22:51:52.0504 2516  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:51:52.0514 2516  kbdhid - ok
22:51:52.0535 2516  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
22:51:52.0545 2516  KeyIso - ok
22:51:52.0571 2516  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:51:52.0581 2516  KSecDD - ok
22:51:52.0613 2516  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:51:52.0624 2516  KSecPkg - ok
22:51:52.0640 2516  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:51:52.0670 2516  ksthunk - ok
22:51:52.0749 2516  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:51:52.0828 2516  KtmRm - ok
22:51:52.0849 2516  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
22:51:52.0881 2516  LanmanServer - ok
22:51:52.0898 2516  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:51:52.0929 2516  LanmanWorkstation - ok
22:51:52.0949 2516  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:51:52.0980 2516  lltdio - ok
22:51:53.0036 2516  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:51:53.0094 2516  lltdsvc - ok
22:51:53.0142 2516  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:51:53.0196 2516  lmhosts - ok
22:51:53.0219 2516  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:51:53.0230 2516  LSI_FC - ok
22:51:53.0252 2516  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:51:53.0262 2516  LSI_SAS - ok
22:51:53.0284 2516  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:51:53.0294 2516  LSI_SAS2 - ok
22:51:53.0315 2516  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:51:53.0325 2516  LSI_SCSI - ok
22:51:53.0335 2516  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:51:53.0366 2516  luafv - ok
22:51:53.0398 2516  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:51:53.0410 2516  Mcx2Svc - ok
22:51:53.0421 2516  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:51:53.0430 2516  megasas - ok
22:51:53.0480 2516  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:51:53.0508 2516  MegaSR - ok
22:51:53.0529 2516  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
22:51:53.0566 2516  MMCSS - ok
22:51:53.0593 2516  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
22:51:53.0623 2516  Modem - ok
22:51:53.0633 2516  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:51:53.0647 2516  monitor - ok
22:51:53.0679 2516  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:51:53.0702 2516  mouclass - ok
22:51:53.0721 2516  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:51:53.0734 2516  mouhid - ok
22:51:53.0762 2516  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:51:53.0774 2516  mountmgr - ok
22:51:53.0844 2516  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:51:53.0869 2516  MozillaMaintenance - ok
22:51:53.0923 2516  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:51:53.0954 2516  mpio - ok
22:51:53.0990 2516  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:51:54.0025 2516  mpsdrv - ok
22:51:54.0117 2516  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:51:54.0171 2516  MpsSvc - ok
22:51:54.0232 2516  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:51:54.0262 2516  MRxDAV - ok
22:51:54.0305 2516  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:51:54.0318 2516  mrxsmb - ok
22:51:54.0340 2516  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:51:54.0354 2516  mrxsmb10 - ok
22:51:54.0363 2516  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:51:54.0375 2516  mrxsmb20 - ok
22:51:54.0397 2516  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:51:54.0407 2516  msahci - ok
22:51:54.0436 2516  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:51:54.0447 2516  msdsm - ok
22:51:54.0461 2516  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
22:51:54.0473 2516  MSDTC - ok
22:51:54.0498 2516  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:51:54.0529 2516  Msfs - ok
22:51:54.0543 2516  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:51:54.0573 2516  mshidkmdf - ok
22:51:54.0587 2516  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:51:54.0596 2516  msisadrv - ok
22:51:54.0641 2516  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:51:54.0697 2516  MSiSCSI - ok
22:51:54.0702 2516  msiserver - ok
22:51:54.0723 2516  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:51:54.0753 2516  MSKSSRV - ok
22:51:54.0775 2516  MsMpSvc - ok
22:51:54.0780 2516  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:51:54.0810 2516  MSPCLOCK - ok
22:51:54.0819 2516  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:51:54.0849 2516  MSPQM - ok
22:51:54.0872 2516  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:51:54.0886 2516  MsRPC - ok
22:51:54.0909 2516  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:51:54.0919 2516  mssmbios - ok
22:51:54.0956 2516  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:51:54.0986 2516  MSTEE - ok
22:51:55.0001 2516  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:51:55.0011 2516  MTConfig - ok
22:51:55.0022 2516  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:51:55.0031 2516  Mup - ok
22:51:55.0088 2516  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
22:51:55.0122 2516  napagent - ok
22:51:55.0144 2516  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:51:55.0161 2516  NativeWifiP - ok
22:51:55.0199 2516  [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:51:55.0220 2516  NDIS - ok
22:51:55.0236 2516  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:51:55.0267 2516  NdisCap - ok
22:51:55.0279 2516  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:51:55.0309 2516  NdisTapi - ok
22:51:55.0319 2516  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:51:55.0349 2516  Ndisuio - ok
22:51:55.0384 2516  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:51:55.0415 2516  NdisWan - ok
22:51:55.0434 2516  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:51:55.0464 2516  NDProxy - ok
22:51:55.0482 2516  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:51:55.0512 2516  NetBIOS - ok
22:51:55.0543 2516  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:51:55.0574 2516  NetBT - ok
22:51:55.0590 2516  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
22:51:55.0601 2516  Netlogon - ok
22:51:55.0651 2516  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
22:51:55.0686 2516  Netman - ok
22:51:55.0744 2516  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
22:51:55.0809 2516  netprofm - ok
22:51:55.0844 2516  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:51:55.0869 2516  NetTcpPortSharing - ok
22:51:55.0899 2516  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:51:55.0911 2516  nfrd960 - ok
22:51:55.0940 2516  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:51:55.0955 2516  NisDrv - ok
22:51:55.0971 2516  NisSrv - ok
22:51:56.0014 2516  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:51:56.0054 2516  NlaSvc - ok
22:51:56.0065 2516  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:51:56.0096 2516  Npfs - ok
22:51:56.0120 2516  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
22:51:56.0151 2516  nsi - ok
22:51:56.0179 2516  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:51:56.0209 2516  nsiproxy - ok
22:51:56.0398 2516  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:51:56.0445 2516  Ntfs - ok
22:51:56.0478 2516  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
22:51:56.0507 2516  Null - ok
22:51:56.0586 2516  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
22:51:56.0623 2516  NVENETFD - ok
22:51:57.0343 2516  [ 8E6247F418B4C8AE9EEB0B532CABCC21 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:51:57.0533 2516  nvlddmkm - ok
22:51:57.0559 2516  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:51:57.0570 2516  nvraid - ok
22:51:57.0589 2516  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:51:57.0600 2516  nvstor - ok
22:51:57.0664 2516  [ 41B97DCE2B2D113B831EB197F02A7398 ] nvsvc           C:\Windows\system32\nvvsvc.exe
22:51:57.0696 2516  nvsvc - ok
22:51:57.0740 2516  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:51:57.0766 2516  nv_agp - ok
22:51:57.0797 2516  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:51:57.0810 2516  ohci1394 - ok
22:51:57.0859 2516  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:51:57.0888 2516  p2pimsvc - ok
22:51:57.0909 2516  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:51:57.0926 2516  p2psvc - ok
22:51:57.0986 2516  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
22:51:58.0016 2516  Parport - ok
22:51:58.0054 2516  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:51:58.0072 2516  partmgr - ok
22:51:58.0085 2516  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:51:58.0105 2516  PcaSvc - ok
22:51:58.0114 2516  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
22:51:58.0126 2516  pci - ok
22:51:58.0140 2516  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
22:51:58.0149 2516  pciide - ok
22:51:58.0164 2516  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:51:58.0175 2516  pcmcia - ok
22:51:58.0191 2516  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:51:58.0200 2516  pcw - ok
22:51:58.0231 2516  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:51:58.0267 2516  PEAUTH - ok
22:51:58.0330 2516  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:51:58.0360 2516  PerfHost - ok
22:51:58.0416 2516  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
22:51:58.0465 2516  pla - ok
22:51:58.0494 2516  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:51:58.0508 2516  PlugPlay - ok
22:51:58.0519 2516  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:51:58.0529 2516  PNRPAutoReg - ok
22:51:58.0545 2516  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:51:58.0558 2516  PNRPsvc - ok
22:51:58.0586 2516  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:51:58.0620 2516  PolicyAgent - ok
22:51:58.0636 2516  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
22:51:58.0668 2516  Power - ok
22:51:58.0696 2516  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:51:58.0725 2516  PptpMiniport - ok
22:51:58.0744 2516  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
22:51:58.0755 2516  Processor - ok
22:51:58.0773 2516  [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc         C:\Windows\system32\profsvc.dll
22:51:58.0804 2516  ProfSvc - ok
22:51:58.0812 2516  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:51:58.0822 2516  ProtectedStorage - ok
22:51:58.0832 2516  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:51:58.0862 2516  Psched - ok
22:51:58.0891 2516  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:51:58.0920 2516  ql2300 - ok
22:51:58.0935 2516  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:51:58.0946 2516  ql40xx - ok
22:51:58.0955 2516  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
22:51:58.0972 2516  QWAVE - ok
22:51:58.0983 2516  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:51:58.0997 2516  QWAVEdrv - ok
22:51:59.0011 2516  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:51:59.0041 2516  RasAcd - ok
22:51:59.0063 2516  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:51:59.0093 2516  RasAgileVpn - ok
22:51:59.0103 2516  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
22:51:59.0135 2516  RasAuto - ok
22:51:59.0145 2516  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:51:59.0175 2516  Rasl2tp - ok
22:51:59.0189 2516  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
22:51:59.0222 2516  RasMan - ok
22:51:59.0231 2516  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:51:59.0262 2516  RasPppoe - ok
22:51:59.0277 2516  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:51:59.0309 2516  RasSstp - ok
22:51:59.0325 2516  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:51:59.0356 2516  rdbss - ok
22:51:59.0369 2516  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:51:59.0381 2516  rdpbus - ok
22:51:59.0395 2516  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:51:59.0424 2516  RDPCDD - ok
22:51:59.0432 2516  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:51:59.0463 2516  RDPENCDD - ok
22:51:59.0470 2516  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:51:59.0501 2516  RDPREFMP - ok
22:51:59.0540 2516  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:51:59.0567 2516  RDPWD - ok
22:51:59.0584 2516  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:51:59.0601 2516  rdyboost - ok
22:51:59.0620 2516  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:51:59.0657 2516  RemoteAccess - ok
22:51:59.0684 2516  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:51:59.0716 2516  RemoteRegistry - ok
22:51:59.0732 2516  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:51:59.0763 2516  RpcEptMapper - ok
22:51:59.0771 2516  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
22:51:59.0782 2516  RpcLocator - ok
22:51:59.0798 2516  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
22:51:59.0833 2516  RpcSs - ok
22:51:59.0855 2516  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:51:59.0886 2516  rspndr - ok
22:51:59.0894 2516  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
22:51:59.0904 2516  SamSs - ok
22:51:59.0945 2516  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:51:59.0953 2516  SASDIFSV - ok
22:51:59.0965 2516  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:51:59.0972 2516  SASKUTIL - ok
22:51:59.0984 2516  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:51:59.0994 2516  sbp2port - ok
22:52:00.0014 2516  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:52:00.0046 2516  SCardSvr - ok
22:52:00.0060 2516  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:52:00.0089 2516  scfilter - ok
22:52:00.0114 2516  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
22:52:00.0154 2516  Schedule - ok
22:52:00.0179 2516  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:52:00.0208 2516  SCPolicySvc - ok
22:52:00.0222 2516  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:52:00.0233 2516  SDRSVC - ok
22:52:00.0245 2516  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:52:00.0275 2516  secdrv - ok
22:52:00.0289 2516  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
22:52:00.0318 2516  seclogon - ok
22:52:00.0335 2516  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
22:52:00.0366 2516  SENS - ok
22:52:00.0378 2516  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:52:00.0388 2516  SensrSvc - ok
22:52:00.0400 2516  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:52:00.0410 2516  Serenum - ok
22:52:00.0419 2516  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
22:52:00.0430 2516  Serial - ok
22:52:00.0435 2516  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:52:00.0445 2516  sermouse - ok
22:52:00.0467 2516  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:52:00.0498 2516  SessionEnv - ok
22:52:00.0503 2516  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:52:00.0515 2516  sffdisk - ok
22:52:00.0520 2516  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:52:00.0533 2516  sffp_mmc - ok
22:52:00.0538 2516  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:52:00.0551 2516  sffp_sd - ok
22:52:00.0556 2516  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:52:00.0566 2516  sfloppy - ok
22:52:00.0583 2516  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:52:00.0617 2516  SharedAccess - ok
22:52:00.0628 2516  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:52:00.0661 2516  ShellHWDetection - ok
22:52:00.0678 2516  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:52:00.0688 2516  SiSRaid2 - ok
22:52:00.0693 2516  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:52:00.0704 2516  SiSRaid4 - ok
22:52:00.0719 2516  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:52:00.0750 2516  Smb - ok
22:52:00.0771 2516  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:52:00.0783 2516  SNMPTRAP - ok
22:52:00.0792 2516  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:52:00.0802 2516  spldr - ok
22:52:00.0816 2516  [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler         C:\Windows\System32\spoolsv.exe
22:52:00.0851 2516  Spooler - ok
22:52:00.0907 2516  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
22:52:00.0971 2516  sppsvc - ok
22:52:00.0980 2516  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:52:01.0012 2516  sppuinotify - ok
22:52:01.0043 2516  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:52:01.0056 2516  srv - ok
22:52:01.0065 2516  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:52:01.0079 2516  srv2 - ok
22:52:01.0094 2516  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:52:01.0105 2516  srvnet - ok
22:52:01.0118 2516  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:52:01.0151 2516  SSDPSRV - ok
22:52:01.0166 2516  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:52:01.0198 2516  SstpSvc - ok
22:52:01.0212 2516  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:52:01.0220 2516  stexstor - ok
22:52:01.0241 2516  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
22:52:01.0262 2516  stisvc - ok
22:52:01.0276 2516  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:52:01.0285 2516  swenum - ok
22:52:01.0328 2516  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
22:52:01.0364 2516  swprv - ok
22:52:01.0397 2516  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
22:52:01.0430 2516  SysMain - ok
22:52:01.0444 2516  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:52:01.0460 2516  TabletInputService - ok
22:52:01.0472 2516  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:52:01.0504 2516  TapiSrv - ok
22:52:01.0519 2516  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
22:52:01.0551 2516  TBS - ok
22:52:01.0604 2516  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:52:01.0638 2516  Tcpip - ok
22:52:01.0679 2516  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:52:01.0713 2516  TCPIP6 - ok
22:52:01.0730 2516  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:52:01.0759 2516  tcpipreg - ok
22:52:01.0771 2516  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:52:01.0780 2516  TDPIPE - ok
22:52:01.0804 2516  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:52:01.0813 2516  TDTCP - ok
22:52:01.0830 2516  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:52:01.0859 2516  tdx - ok
22:52:01.0868 2516  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:52:01.0878 2516  TermDD - ok
22:52:01.0910 2516  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
22:52:01.0946 2516  TermService - ok
22:52:01.0964 2516  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
22:52:01.0979 2516  Themes - ok
22:52:01.0987 2516  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
22:52:02.0018 2516  THREADORDER - ok
22:52:02.0031 2516  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
22:52:02.0062 2516  TrkWks - ok
22:52:02.0090 2516  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:52:02.0120 2516  TrustedInstaller - ok
22:52:02.0133 2516  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:52:02.0162 2516  tssecsrv - ok
22:52:02.0177 2516  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:52:02.0187 2516  TsUsbFlt - ok
22:52:02.0202 2516  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:52:02.0211 2516  TsUsbGD - ok
22:52:02.0224 2516  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:52:02.0254 2516  tunnel - ok
22:52:02.0278 2516  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:52:02.0288 2516  uagp35 - ok
22:52:02.0316 2516  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:52:02.0348 2516  udfs - ok
22:52:02.0376 2516  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:52:02.0388 2516  UI0Detect - ok
22:52:02.0401 2516  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:52:02.0411 2516  uliagpkx - ok
22:52:02.0422 2516  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:52:02.0433 2516  umbus - ok
22:52:02.0446 2516  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:52:02.0456 2516  UmPass - ok
22:52:02.0478 2516  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
22:52:02.0513 2516  upnphost - ok
22:52:02.0538 2516  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:52:02.0549 2516  usbccgp - ok
22:52:02.0567 2516  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:52:02.0580 2516  usbcir - ok
22:52:02.0596 2516  [ 74EE782B1D9C241EFE425565854C661C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:52:02.0607 2516  usbehci - ok
22:52:02.0618 2516  [ DC96BD9CCB8403251BCF25047573558E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:52:02.0632 2516  usbhub - ok
22:52:02.0643 2516  [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
22:52:02.0653 2516  usbohci - ok
22:52:02.0669 2516  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:52:02.0681 2516  usbprint - ok
22:52:02.0704 2516  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:52:02.0717 2516  usbscan - ok
22:52:02.0736 2516  [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:52:02.0747 2516  USBSTOR - ok
22:52:02.0766 2516  [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:52:02.0776 2516  usbuhci - ok
22:52:02.0793 2516  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
22:52:02.0824 2516  UxSms - ok
22:52:02.0833 2516  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
22:52:02.0843 2516  VaultSvc - ok
22:52:02.0855 2516  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:52:02.0864 2516  vdrvroot - ok
22:52:02.0885 2516  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
22:52:02.0920 2516  vds - ok
22:52:02.0931 2516  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:52:02.0943 2516  vga - ok
22:52:02.0960 2516  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:52:02.0990 2516  VgaSave - ok
22:52:03.0006 2516  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:52:03.0017 2516  vhdmp - ok
22:52:03.0028 2516  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:52:03.0037 2516  viaide - ok
22:52:03.0049 2516  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:52:03.0059 2516  volmgr - ok
22:52:03.0071 2516  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:52:03.0085 2516  volmgrx - ok
22:52:03.0103 2516  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:52:03.0116 2516  volsnap - ok
22:52:03.0127 2516  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:52:03.0138 2516  vsmraid - ok
22:52:03.0181 2516  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
22:52:03.0226 2516  VSS - ok
22:52:03.0244 2516  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
22:52:03.0256 2516  vwifibus - ok
22:52:03.0270 2516  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
22:52:03.0305 2516  W32Time - ok
22:52:03.0326 2516  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:52:03.0336 2516  WacomPen - ok
22:52:03.0350 2516  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:52:03.0379 2516  WANARP - ok
22:52:03.0384 2516  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:52:03.0414 2516  Wanarpv6 - ok
22:52:03.0460 2516  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:52:03.0486 2516  WatAdminSvc - ok
22:52:03.0517 2516  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
22:52:03.0542 2516  wbengine - ok
22:52:03.0558 2516  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:52:03.0574 2516  WbioSrvc - ok
22:52:03.0589 2516  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:52:03.0608 2516  wcncsvc - ok
22:52:03.0617 2516  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:52:03.0627 2516  WcsPlugInService - ok
22:52:03.0649 2516  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
22:52:03.0658 2516  Wd - ok
22:52:03.0674 2516  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:52:03.0692 2516  Wdf01000 - ok
22:52:03.0708 2516  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:52:03.0723 2516  WdiServiceHost - ok
22:52:03.0728 2516  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:52:03.0744 2516  WdiSystemHost - ok
22:52:03.0760 2516  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
22:52:03.0777 2516  WebClient - ok
22:52:03.0794 2516  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:52:03.0827 2516  Wecsvc - ok
22:52:03.0836 2516  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:52:03.0868 2516  wercplsupport - ok
22:52:03.0880 2516  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:52:03.0912 2516  WerSvc - ok
22:52:03.0922 2516  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:52:03.0953 2516  WfpLwf - ok
22:52:03.0969 2516  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:52:03.0978 2516  WIMMount - ok
22:52:03.0987 2516  WinDefend - ok
22:52:03.0993 2516  WinHttpAutoProxySvc - ok
22:52:04.0042 2516  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:52:04.0110 2516  Winmgmt - ok
22:52:04.0154 2516  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
22:52:04.0203 2516  WinRM - ok
22:52:04.0268 2516  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:52:04.0303 2516  WinUsb - ok
22:52:04.0330 2516  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:52:04.0359 2516  Wlansvc - ok
22:52:04.0374 2516  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:52:04.0386 2516  WmiAcpi - ok
22:52:04.0409 2516  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:52:04.0424 2516  wmiApSrv - ok
22:52:04.0447 2516  WMPNetworkSvc - ok
22:52:04.0455 2516  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:52:04.0467 2516  WPCSvc - ok
22:52:04.0478 2516  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:52:04.0492 2516  WPDBusEnum - ok
22:52:04.0501 2516  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:52:04.0532 2516  ws2ifsl - ok
22:52:04.0547 2516  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
22:52:04.0563 2516  wscsvc - ok
22:52:04.0567 2516  WSearch - ok
22:52:04.0624 2516  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:52:04.0666 2516  wuauserv - ok
22:52:04.0679 2516  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:52:04.0710 2516  WudfPf - ok
22:52:04.0721 2516  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:52:04.0752 2516  WUDFRd - ok
22:52:04.0766 2516  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:52:04.0796 2516  wudfsvc - ok
22:52:04.0806 2516  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:52:04.0824 2516  WwanSvc - ok
22:52:04.0829 2516  ================ Scan global ===============================
22:52:04.0845 2516  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:52:04.0872 2516  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:52:04.0879 2516  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
22:52:04.0896 2516  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:52:04.0913 2516  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:52:04.0916 2516  [Global] - ok
22:52:04.0916 2516  ================ Scan MBR ==================================
22:52:04.0930 2516  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:52:05.0117 2516  \Device\Harddisk0\DR0 - ok
22:52:05.0134 2516  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
22:52:05.0288 2516  \Device\Harddisk1\DR1 - ok
22:52:05.0289 2516  ================ Scan VBR ==================================
22:52:05.0320 2516  [ 741E850B7E8958D437E8354BAD08ABBB ] \Device\Harddisk0\DR0\Partition1
22:52:05.0322 2516  \Device\Harddisk0\DR0\Partition1 - ok
22:52:05.0332 2516  [ 7373E60404214A2F794E2A2E00ED40F3 ] \Device\Harddisk0\DR0\Partition2
22:52:05.0336 2516  \Device\Harddisk0\DR0\Partition2 - ok
22:52:05.0370 2516  [ 8CDDFAC9C6CB3847C420E36A2D75B43D ] \Device\Harddisk0\DR0\Partition3
22:52:05.0371 2516  \Device\Harddisk0\DR0\Partition3 - ok
22:52:05.0376 2516  [ DEBA7FB58CBAD9EC4C40AE3D0D9AA041 ] \Device\Harddisk1\DR1\Partition1
22:52:05.0378 2516  \Device\Harddisk1\DR1\Partition1 - ok
22:52:05.0379 2516  ================ Scan active images ========================
22:52:05.0382 2516  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
22:52:05.0382 2516  C:\Windows\System32\drivers\crashdmp.sys - ok
22:52:05.0389 2516  [ B27A7B563F66EAD82B488EBAD5E4DD55 ] C:\Windows\System32\drivers\Diskdump.sys
22:52:05.0389 2516  C:\Windows\System32\drivers\Diskdump.sys - ok
22:52:05.0395 2516  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
22:52:05.0395 2516  C:\Windows\System32\drivers\dumpfve.sys - ok
22:52:05.0401 2516  [ F7CD50FE7139F07E77DA8AC8033D1832 ] C:\Windows\System32\drivers\nvstor.sys
22:52:05.0401 2516  C:\Windows\System32\drivers\nvstor.sys - ok
22:52:05.0408 2516  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
22:52:05.0408 2516  C:\Windows\System32\drivers\beep.sys - ok
22:52:05.0414 2516  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
22:52:05.0414 2516  C:\Windows\System32\drivers\cdrom.sys - ok
22:52:05.0420 2516  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
22:52:05.0420 2516  C:\Windows\System32\drivers\null.sys - ok
22:52:05.0426 2516  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
22:52:05.0426 2516  C:\Windows\System32\drivers\msfs.sys - ok
22:52:05.0432 2516  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
22:52:05.0432 2516  C:\Windows\System32\drivers\npfs.sys - ok
22:52:05.0437 2516  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
22:52:05.0437 2516  C:\Windows\System32\drivers\RDPCDD.sys - ok
22:52:05.0443 2516  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
22:52:05.0443 2516  C:\Windows\System32\drivers\RDPENCDD.sys - ok
22:52:05.0449 2516  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
22:52:05.0449 2516  C:\Windows\System32\drivers\RDPREFMP.sys - ok
22:52:05.0455 2516  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
22:52:05.0455 2516  C:\Windows\System32\drivers\vga.sys - ok
22:52:05.0458 2516  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
22:52:05.0458 2516  C:\Windows\System32\drivers\videoprt.sys - ok
22:52:05.0464 2516  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
22:52:05.0464 2516  C:\Windows\System32\drivers\watchdog.sys - ok
22:52:05.0470 2516  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
22:52:05.0470 2516  C:\Windows\System32\drivers\afd.sys - ok
22:52:05.0475 2516  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
22:52:05.0475 2516  C:\Windows\System32\drivers\tdi.sys - ok
22:52:05.0481 2516  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
22:52:05.0481 2516  C:\Windows\System32\drivers\tdx.sys - ok
22:52:05.0487 2516  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
22:52:05.0487 2516  C:\Windows\System32\drivers\netbt.sys - ok
22:52:05.0493 2516  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
22:52:05.0493 2516  C:\Windows\System32\drivers\wfplwf.sys - ok
22:52:05.0499 2516  [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
22:52:05.0499 2516  C:\Windows\System32\drivers\ws2ifsl.sys - ok
22:52:05.0504 2516  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
22:52:05.0504 2516  C:\Windows\System32\drivers\netbios.sys - ok
22:52:05.0510 2516  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
22:52:05.0510 2516  C:\Windows\System32\drivers\pacer.sys - ok
22:52:05.0516 2516  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
22:52:05.0516 2516  C:\Windows\System32\drivers\termdd.sys - ok
22:52:05.0521 2516  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
22:52:05.0521 2516  C:\Windows\System32\drivers\wanarp.sys - ok
22:52:05.0527 2516  [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
22:52:05.0527 2516  C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
22:52:05.0533 2516  [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
22:52:05.0533 2516  C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
22:52:05.0540 2516  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
22:52:05.0540 2516  C:\Windows\System32\drivers\rdbss.sys - ok
22:52:05.0545 2516  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
22:52:05.0545 2516  C:\Windows\System32\drivers\discache.sys - ok
22:52:05.0550 2516  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
22:52:05.0550 2516  C:\Windows\System32\drivers\mssmbios.sys - ok
22:52:05.0556 2516  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
22:52:05.0556 2516  C:\Windows\System32\drivers\nsiproxy.sys - ok
22:52:05.0562 2516  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
22:52:05.0562 2516  C:\Windows\System32\drivers\blbdrive.sys - ok
22:52:05.0567 2516  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
22:52:05.0567 2516  C:\Windows\System32\drivers\dfsc.sys - ok
22:52:05.0573 2516  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
22:52:05.0573 2516  C:\Windows\System32\drivers\tunnel.sys - ok
22:52:05.0579 2516  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
22:52:05.0579 2516  C:\Windows\System32\drivers\amdppm.sys - ok
22:52:05.0585 2516  [ B6D64EE607637301FF8C33139B4950DE ] C:\Windows\System32\drivers\usbport.sys
22:52:05.0585 2516  C:\Windows\System32\drivers\usbport.sys - ok
22:52:05.0591 2516  [ 58E546BBAF87664FC57E0F6081E4F609 ] C:\Windows\System32\drivers\usbohci.sys
22:52:05.0591 2516  C:\Windows\System32\drivers\usbohci.sys - ok
22:52:05.0596 2516  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
22:52:05.0596 2516  C:\Windows\System32\drivers\hdaudbus.sys - ok
22:52:05.0602 2516  [ 74EE782B1D9C241EFE425565854C661C ] C:\Windows\System32\drivers\usbehci.sys
22:52:05.0602 2516  C:\Windows\System32\drivers\usbehci.sys - ok
22:52:05.0608 2516  [ A85B4F2EF3A7304A5399EF0526423040 ] C:\Windows\System32\drivers\nvm62x64.sys
22:52:05.0608 2516  C:\Windows\System32\drivers\nvm62x64.sys - ok
22:52:05.0614 2516  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
22:52:05.0614 2516  C:\Windows\System32\ntdll.dll - ok
22:52:05.0619 2516  [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
22:52:05.0619 2516  C:\Windows\System32\smss.exe - ok
22:52:05.0624 2516  [ 63C8D74BED9F80F4DD0AA7A3101EB639 ] C:\Windows\System32\drivers\usbd.sys
22:52:05.0625 2516  C:\Windows\System32\drivers\usbd.sys - ok
22:52:05.0631 2516  [ 98022774D9930ECBB292E70DB7601DF6 ] C:\Windows\System32\drivers\agrsm64.sys
22:52:05.0631 2516  C:\Windows\System32\drivers\agrsm64.sys - ok
22:52:05.0636 2516  [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
22:52:05.0636 2516  C:\Windows\System32\drivers\modem.sys - ok
22:52:05.0642 2516  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
22:52:05.0642 2516  C:\Windows\System32\autochk.exe - ok
22:52:05.0648 2516  [ 8E6247F418B4C8AE9EEB0B532CABCC21 ] C:\Windows\System32\drivers\nvlddmkm.sys
22:52:05.0648 2516  C:\Windows\System32\drivers\nvlddmkm.sys - ok
22:52:05.0654 2516  [ AF2E16242AA723F68F461B6EAE2EAD3D ] C:\Windows\System32\drivers\dxgkrnl.sys
22:52:05.0654 2516  C:\Windows\System32\drivers\dxgkrnl.sys - ok
22:52:05.0660 2516  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
22:52:05.0660 2516  C:\Windows\System32\drivers\agilevpn.sys - ok
22:52:05.0665 2516  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
22:52:05.0665 2516  C:\Windows\System32\drivers\CompositeBus.sys - ok
22:52:05.0672 2516  [ 1F04CFB79DD5FB7694468CE3FB3DCC31 ] C:\Windows\System32\drivers\dxgmms1.sys
22:52:05.0672 2516  C:\Windows\System32\drivers\dxgmms1.sys - ok
22:52:05.0677 2516  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
22:52:05.0677 2516  C:\Windows\System32\drivers\ndistapi.sys - ok
22:52:05.0683 2516  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
22:52:05.0683 2516  C:\Windows\System32\drivers\ndiswan.sys - ok
22:52:05.0689 2516  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
22:52:05.0689 2516  C:\Windows\System32\drivers\rasl2tp.sys - ok
22:52:05.0695 2516  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
22:52:05.0695 2516  C:\Windows\System32\drivers\raspppoe.sys - ok
22:52:05.0701 2516  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
22:52:05.0701 2516  C:\Windows\System32\drivers\kbdclass.sys - ok
22:52:05.0707 2516  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
22:52:05.0707 2516  C:\Windows\System32\drivers\mouclass.sys - ok
22:52:05.0710 2516  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
22:52:05.0710 2516  C:\Windows\System32\drivers\raspptp.sys - ok
22:52:05.0716 2516  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
22:52:05.0716 2516  C:\Windows\System32\drivers\rassstp.sys - ok
22:52:05.0722 2516  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
22:52:05.0722 2516  C:\Windows\System32\drivers\ks.sys - ok
22:52:05.0727 2516  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
22:52:05.0727 2516  C:\Windows\System32\drivers\swenum.sys - ok
22:52:05.0733 2516  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
22:52:05.0733 2516  C:\Windows\System32\drivers\umbus.sys - ok
22:52:05.0739 2516  [ DC96BD9CCB8403251BCF25047573558E ] C:\Windows\System32\drivers\usbhub.sys
22:52:05.0739 2516  C:\Windows\System32\drivers\usbhub.sys - ok
22:52:05.0744 2516  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
22:52:05.0744 2516  C:\Windows\System32\oleaut32.dll - ok
22:52:05.0750 2516  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
22:52:05.0750 2516  C:\Windows\System32\drivers\ndproxy.sys - ok
22:52:05.0756 2516  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
22:52:05.0756 2516  C:\Windows\System32\drivers\drmk.sys - ok
22:52:05.0762 2516  [ 975761C778E33CD22498059B91E7373A ] C:\Windows\System32\drivers\HdAudio.sys
22:52:05.0762 2516  C:\Windows\System32\drivers\HdAudio.sys - ok
22:52:05.0768 2516  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
22:52:05.0768 2516  C:\Windows\System32\drivers\ksthunk.sys - ok
22:52:05.0773 2516  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
22:52:05.0773 2516  C:\Windows\System32\drivers\portcls.sys - ok
22:52:05.0779 2516  [ 7935DF9821C148B5105500BEE5472E1B ] C:\Windows\System32\urlmon.dll
22:52:05.0779 2516  C:\Windows\System32\urlmon.dll - ok
22:52:05.0785 2516  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
22:52:05.0785 2516  C:\Windows\System32\imagehlp.dll - ok
22:52:05.0791 2516  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
22:52:05.0791 2516  C:\Windows\System32\shlwapi.dll - ok
22:52:05.0796 2516  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
22:52:05.0796 2516  C:\Windows\System32\clbcatq.dll - ok
22:52:05.0802 2516  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
22:52:05.0802 2516  C:\Windows\System32\advapi32.dll - ok
22:52:05.0808 2516  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
22:52:05.0808 2516  C:\Windows\System32\sechost.dll - ok
22:52:05.0813 2516  [ 1BFC94665BCA35F9001ADC7BFB167C63 ] C:\Windows\System32\shell32.dll
22:52:05.0813 2516  C:\Windows\System32\shell32.dll - ok
22:52:05.0819 2516  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
22:52:05.0819 2516  C:\Windows\System32\msctf.dll - ok
22:52:05.0825 2516  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
22:52:05.0825 2516  C:\Windows\System32\ole32.dll - ok
22:52:05.0830 2516  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
22:52:05.0830 2516  C:\Windows\System32\gdi32.dll - ok
22:52:05.0836 2516  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
22:52:05.0836 2516  C:\Windows\System32\user32.dll - ok
22:52:05.0841 2516  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
22:52:05.0841 2516  C:\Windows\System32\imm32.dll - ok
22:52:05.0847 2516  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
22:52:05.0847 2516  C:\Windows\System32\msvcrt.dll - ok
22:52:05.0853 2516  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
22:52:05.0853 2516  C:\Windows\System32\normaliz.dll - ok
22:52:05.0858 2516  [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
22:52:05.0858 2516  C:\Windows\System32\kernel32.dll - ok
22:52:05.0864 2516  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
22:52:05.0864 2516  C:\Windows\System32\psapi.dll - ok
22:52:05.0870 2516  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
22:52:05.0870 2516  C:\Windows\System32\drivers\hidparse.sys - ok
22:52:05.0876 2516  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
22:52:05.0876 2516  C:\Windows\System32\drivers\hidclass.sys - ok
22:52:05.0881 2516  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
22:52:05.0881 2516  C:\Windows\System32\drivers\hidusb.sys - ok
22:52:05.0887 2516  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
22:52:05.0887 2516  C:\Windows\System32\drivers\mouhid.sys - ok
22:52:05.0893 2516  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] C:\Windows\System32\drivers\usbccgp.sys
22:52:05.0893 2516  C:\Windows\System32\drivers\usbccgp.sys - ok
22:52:05.0898 2516  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
22:52:05.0898 2516  C:\Windows\System32\drivers\kbdhid.sys - ok
22:52:05.0904 2516  [ D76510CFA0FC09023077F22C2F979D86 ] C:\Windows\System32\drivers\USBSTOR.SYS
22:52:05.0904 2516  C:\Windows\System32\drivers\USBSTOR.SYS - ok
22:52:05.0910 2516  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
22:52:05.0910 2516  C:\Windows\System32\comdlg32.dll - ok
22:52:05.0915 2516  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
22:52:05.0915 2516  C:\Windows\System32\difxapi.dll - ok
22:52:05.0922 2516  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
22:52:05.0922 2516  C:\Windows\System32\setupapi.dll - ok
22:52:05.0927 2516  [ 2452EDA795646D7E1E6CAE4EAF38F9C7 ] C:\Windows\System32\iertutil.dll
22:52:05.0927 2516  C:\Windows\System32\iertutil.dll - ok
22:52:05.0933 2516  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
22:52:05.0933 2516  C:\Windows\System32\lpk.dll - ok
22:52:05.0939 2516  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
22:52:05.0939 2516  C:\Windows\System32\nsi.dll - ok
22:52:05.0944 2516  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
22:52:05.0944 2516  C:\Windows\System32\rpcrt4.dll - ok
22:52:05.0951 2516  [ 628A8940176C87C3D51E808365A3BA2D ] C:\Windows\System32\wininet.dll
22:52:05.0951 2516  C:\Windows\System32\wininet.dll - ok
22:52:05.0956 2516  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
22:52:05.0956 2516  C:\Windows\System32\ws2_32.dll - ok
22:52:05.0962 2516  [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
22:52:05.0962 2516  C:\Windows\System32\usp10.dll - ok
22:52:05.0965 2516  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
22:52:05.0966 2516  C:\Windows\System32\Wldap32.dll - ok
22:52:05.0971 2516  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
22:52:05.0971 2516  C:\Windows\System32\crypt32.dll - ok
22:52:05.0977 2516  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
22:52:05.0977 2516  C:\Windows\System32\devobj.dll - ok
22:52:05.0983 2516  [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
22:52:05.0983 2516  C:\Windows\System32\KernelBase.dll - ok
22:52:05.0988 2516  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
22:52:05.0988 2516  C:\Windows\System32\cfgmgr32.dll - ok
22:52:05.0994 2516  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
22:52:05.0994 2516  C:\Windows\System32\wintrust.dll - ok
22:52:06.0000 2516  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
22:52:06.0000 2516  C:\Windows\System32\comctl32.dll - ok
22:52:06.0005 2516  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
22:52:06.0005 2516  C:\Windows\System32\msasn1.dll - ok
22:52:06.0011 2516  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
22:52:06.0011 2516  C:\Windows\SysWOW64\normaliz.dll - ok
22:52:06.0017 2516  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
22:52:06.0017 2516  C:\Windows\System32\drivers\dxapi.sys - ok
22:52:06.0022 2516  [ A11523523B31086DD760C0189C763359 ] C:\Windows\System32\win32k.sys
22:52:06.0023 2516  C:\Windows\System32\win32k.sys - ok
22:52:06.0028 2516  [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
22:52:06.0028 2516  C:\Windows\System32\csrsrv.dll - ok
22:52:06.0033 2516  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
22:52:06.0033 2516  C:\Windows\System32\csrss.exe - ok
22:52:06.0039 2516  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
22:52:06.0039 2516  C:\Windows\System32\basesrv.dll - ok
22:52:06.0045 2516  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
22:52:06.0045 2516  C:\Windows\System32\winsrv.dll - ok
22:52:06.0051 2516  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
22:52:06.0051 2516  C:\Windows\System32\drivers\monitor.sys - ok
22:52:06.0056 2516  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
22:52:06.0056 2516  C:\Windows\System32\sxssrv.dll - ok
22:52:06.0062 2516  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
22:52:06.0062 2516  C:\Windows\System32\tsddd.dll - ok
22:52:06.0068 2516  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
22:52:06.0068 2516  C:\Windows\System32\wininit.exe - ok
22:52:06.0073 2516  [ 943F527DF79E6B400104341AA7023C75 ] C:\Windows\System32\cdd.dll
22:52:06.0073 2516  C:\Windows\System32\cdd.dll - ok
22:52:06.0079 2516  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
22:52:06.0079 2516  C:\Windows\System32\profapi.dll - ok
22:52:06.0085 2516  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
22:52:06.0085 2516  C:\Windows\System32\KBDUS.DLL - ok
22:52:06.0090 2516  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
22:52:06.0090 2516  C:\Windows\System32\RpcRtRemote.dll - ok
22:52:06.0096 2516  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
22:52:06.0096 2516  C:\Windows\System32\WlS0WndH.dll - ok
22:52:06.0102 2516  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
22:52:06.0102 2516  C:\Windows\System32\sxs.dll - ok
22:52:06.0108 2516  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
22:52:06.0108 2516  C:\Windows\System32\cryptbase.dll - ok
22:52:06.0113 2516  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
22:52:06.0113 2516  C:\Windows\System32\winlogon.exe - ok
22:52:06.0119 2516  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
22:52:06.0119 2516  C:\Windows\System32\winsta.dll - ok
22:52:06.0125 2516  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
22:52:06.0125 2516  C:\Windows\System32\apphelp.dll - ok
22:52:06.0130 2516  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
22:52:06.0130 2516  C:\Windows\System32\lsass.exe - ok
22:52:06.0136 2516  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
22:52:06.0136 2516  C:\Windows\System32\lsm.exe - ok
22:52:06.0141 2516  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
22:52:06.0141 2516  C:\Windows\System32\services.exe - ok
22:52:06.0147 2516  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
22:52:06.0147 2516  C:\Windows\System32\sspisrv.dll - ok
22:52:06.0153 2516  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
22:52:06.0153 2516  C:\Windows\System32\lsasrv.dll - ok
22:52:06.0158 2516  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
22:52:06.0158 2516  C:\Windows\System32\sspicli.dll - ok
22:52:06.0164 2516  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
22:52:06.0164 2516  C:\Windows\System32\scext.dll - ok
22:52:06.0170 2516  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
22:52:06.0170 2516  C:\Windows\System32\samsrv.dll - ok
22:52:06.0175 2516  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
22:52:06.0175 2516  C:\Windows\System32\scesrv.dll - ok
22:52:06.0181 2516  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
22:52:06.0181 2516  C:\Windows\System32\secur32.dll - ok
22:52:06.0186 2516  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
22:52:06.0187 2516  C:\Windows\System32\sysntfy.dll - ok
22:52:06.0192 2516  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
22:52:06.0192 2516  C:\Windows\System32\wmsgapi.dll - ok
22:52:06.0198 2516  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
22:52:06.0198 2516  C:\Windows\System32\cryptdll.dll - ok
22:52:06.0203 2516  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
22:52:06.0203 2516  C:\Windows\System32\srvcli.dll - ok
22:52:06.0209 2516  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
22:52:06.0209 2516  C:\Windows\System32\wevtapi.dll - ok
22:52:06.0212 2516  [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
22:52:06.0212 2516  C:\Windows\System32\bridgeres.dll - ok
22:52:06.0219 2516  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
22:52:06.0219 2516  C:\Windows\System32\authz.dll - ok
22:52:06.0225 2516  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
22:52:06.0225 2516  C:\Windows\System32\cngaudit.dll - ok
22:52:06.0230 2516  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
22:52:06.0230 2516  C:\Windows\System32\bcrypt.dll - ok
22:52:06.0236 2516  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
22:52:06.0236 2516  C:\Windows\System32\ncrypt.dll - ok
22:52:06.0242 2516  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
22:52:06.0242 2516  C:\Windows\System32\msprivs.dll - ok
22:52:06.0248 2516  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
22:52:06.0248 2516  C:\Windows\System32\netjoin.dll - ok
22:52:06.0253 2516  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
22:52:06.0254 2516  C:\Windows\System32\negoexts.dll - ok
22:52:06.0259 2516  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
22:52:06.0259 2516  C:\Windows\System32\kerberos.dll - ok
22:52:06.0265 2516  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
22:52:06.0265 2516  C:\Windows\System32\cryptsp.dll - ok
22:52:06.0271 2516  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
22:52:06.0271 2516  C:\Windows\System32\msv1_0.dll - ok
22:52:06.0276 2516  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
22:52:06.0276 2516  C:\Windows\System32\mswsock.dll - ok
22:52:06.0282 2516  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
22:52:06.0282 2516  C:\Windows\System32\wship6.dll - ok
22:52:06.0288 2516  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
22:52:06.0288 2516  C:\Windows\System32\netlogon.dll - ok
22:52:06.0293 2516  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
22:52:06.0293 2516  C:\Windows\System32\dnsapi.dll - ok
22:52:06.0299 2516  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
22:52:06.0299 2516  C:\Windows\System32\logoncli.dll - ok
22:52:06.0305 2516  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
22:52:06.0305 2516  C:\Windows\System32\schannel.dll - ok
22:52:06.0311 2516  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
22:52:06.0311 2516  C:\Windows\System32\wdigest.dll - ok
22:52:06.0316 2516  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
22:52:06.0316 2516  C:\Windows\System32\rsaenh.dll - ok
22:52:06.0322 2516  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
22:52:06.0322 2516  C:\Windows\System32\TSpkg.dll - ok
22:52:06.0328 2516  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
22:52:06.0328 2516  C:\Windows\System32\bcryptprimitives.dll - ok
22:52:06.0333 2516  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
22:52:06.0333 2516  C:\Windows\System32\pku2u.dll - ok
22:52:06.0339 2516  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
22:52:06.0339 2516  C:\Windows\System32\credssp.dll - ok
22:52:06.0345 2516  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
22:52:06.0345 2516  C:\Windows\System32\efslsaext.dll - ok
22:52:06.0350 2516  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
22:52:06.0350 2516  C:\Windows\System32\scecli.dll - ok
22:52:06.0356 2516  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
22:52:06.0356 2516  C:\Windows\System32\ubpm.dll - ok
22:52:06.0361 2516  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
22:52:06.0362 2516  C:\Windows\System32\svchost.exe - ok
22:52:06.0367 2516  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
22:52:06.0367 2516  C:\Windows\System32\umpnpmgr.dll - ok
22:52:06.0373 2516  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
22:52:06.0373 2516  C:\Windows\System32\devrtl.dll - ok
22:52:06.0378 2516  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
22:52:06.0379 2516  C:\Windows\System32\SPInf.dll - ok
22:52:06.0384 2516  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
22:52:06.0384 2516  C:\Windows\System32\gpapi.dll - ok
22:52:06.0390 2516  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
22:52:06.0390 2516  C:\Windows\System32\userenv.dll - ok
22:52:06.0396 2516  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
22:52:06.0396 2516  C:\Windows\System32\umpo.dll - ok
22:52:06.0401 2516  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
22:52:06.0401 2516  C:\Windows\System32\pcwum.dll - ok
22:52:06.0407 2516  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
22:52:06.0407 2516  C:\Windows\System32\powrprof.dll - ok
22:52:06.0413 2516  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
22:52:06.0413 2516  C:\Windows\System32\drivers\luafv.sys - ok
22:52:06.0418 2516  [ D3381DC54C34D79B22CEE0D65BA91B7C ] C:\Windows\System32\drivers\WUDFPf.sys
22:52:06.0418 2516  C:\Windows\System32\drivers\WUDFPf.sys - ok
22:52:06.0424 2516  [ 41B97DCE2B2D113B831EB197F02A7398 ] C:\Windows\System32\nvvsvc.exe
22:52:06.0424 2516  C:\Windows\System32\nvvsvc.exe - ok
22:52:06.0430 2516  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
22:52:06.0430 2516  C:\Windows\System32\wtsapi32.dll - ok
22:52:06.0435 2516  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
22:52:06.0435 2516  C:\Windows\System32\rpcss.dll - ok
22:52:06.0441 2516  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
22:52:06.0441 2516  C:\Windows\System32\RpcEpMap.dll - ok
22:52:06.0447 2516  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
22:52:06.0447 2516  C:\Windows\System32\wshqos.dll - ok
22:52:06.0452 2516  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
22:52:06.0452 2516  C:\Windows\System32\WSHTCPIP.DLL - ok
22:52:06.0458 2516  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
22:52:06.0458 2516  C:\Windows\System32\FirewallAPI.dll - ok
22:52:06.0464 2516  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
22:52:06.0464 2516  C:\Windows\System32\LogonUI.exe - ok
22:52:06.0467 2516  [ 3EF480BFED1B5947A32585E30A58D4ED ] C:\Windows\System32\authui.dll
22:52:06.0467 2516  C:\Windows\System32\authui.dll - ok
22:52:06.0473 2516  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
22:52:06.0473 2516  C:\Windows\System32\cryptui.dll - ok
22:52:06.0479 2516  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
22:52:06.0479 2516  C:\Windows\System32\version.dll - ok
22:52:06.0485 2516  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
22:52:06.0485 2516  C:\Windows\System32\wevtsvc.dll - ok
22:52:06.0491 2516  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
22:52:06.0491 2516  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
22:52:06.0497 2516  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
22:52:06.0497 2516  C:\Windows\System32\netprofm.dll - ok
22:52:06.0502 2516  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
22:52:06.0502 2516  C:\Windows\System32\samlib.dll - ok
22:52:06.0508 2516  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
22:52:06.0508 2516  C:\Windows\System32\shacct.dll - ok
22:52:06.0514 2516  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
22:52:06.0514 2516  C:\Windows\System32\audiosrv.dll - ok
22:52:06.0519 2516  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
22:52:06.0519 2516  C:\Windows\System32\avrt.dll - ok
22:52:06.0525 2516  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
22:52:06.0525 2516  C:\Windows\System32\mmcss.dll - ok
22:52:06.0531 2516  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
22:52:06.0531 2516  C:\Windows\System32\propsys.dll - ok
22:52:06.0536 2516  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
22:52:06.0536 2516  C:\Windows\System32\adtschema.dll - ok
22:52:06.0542 2516  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
22:52:06.0542 2516  C:\Windows\System32\MMDevAPI.dll - ok
22:52:06.0548 2516  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
22:52:06.0548 2516  C:\Windows\System32\uxtheme.dll - ok
22:52:06.0554 2516  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
22:52:06.0554 2516  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
22:52:06.0559 2516  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
22:52:06.0559 2516  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
22:52:06.0566 2516  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
22:52:06.0566 2516  C:\Windows\System32\drivers\fltMgr.sys - ok
22:52:06.0572 2516  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
22:52:06.0572 2516  C:\Windows\System32\audiodg.exe - ok
22:52:06.0577 2516  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
22:52:06.0577 2516  C:\Windows\System32\dui70.dll - ok
22:52:06.0583 2516  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
22:52:06.0583 2516  C:\Windows\System32\PSHED.DLL - ok
22:52:06.0589 2516  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
22:52:06.0589 2516  C:\Windows\System32\ntmarta.dll - ok
22:52:06.0595 2516  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
22:52:06.0595 2516  C:\Windows\System32\gpsvc.dll - ok
22:52:06.0601 2516  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
22:52:06.0601 2516  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
22:52:06.0606 2516  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
22:52:06.0606 2516  C:\Windows\System32\duser.dll - ok
22:52:06.0612 2516  [ 2DF36F15B2BC1571A6A542A3C2107920 ] C:\Windows\System32\nlaapi.dll
22:52:06.0612 2516  C:\Windows\System32\nlaapi.dll - ok
22:52:06.0618 2516  [ 5C78838B4D166D1A27DB3A8A820C799A ] C:\Windows\System32\profsvc.dll
22:52:06.0618 2516  C:\Windows\System32\profsvc.dll - ok
22:52:06.0623 2516  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
22:52:06.0623 2516  C:\Windows\System32\SndVolSSO.dll - ok
22:52:06.0629 2516  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
22:52:06.0629 2516  C:\Windows\System32\themeservice.dll - ok
22:52:06.0635 2516  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
22:52:06.0635 2516  C:\Windows\System32\hid.dll - ok
22:52:06.0640 2516  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
22:52:06.0640 2516  C:\Windows\System32\atl.dll - ok
22:52:06.0646 2516  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
22:52:06.0646 2516  C:\Windows\System32\dsrole.dll - ok
22:52:06.0651 2516  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
22:52:06.0651 2516  C:\Windows\System32\dwmapi.dll - ok
22:52:06.0657 2516  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
22:52:06.0657 2516  C:\Windows\System32\slc.dll - ok
22:52:06.0663 2516  [ D6F630C1FD7F436316093AE500363B19 ] C:\Windows\System32\xmllite.dll
22:52:06.0663 2516  C:\Windows\System32\xmllite.dll - ok
22:52:06.0668 2516  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
22:52:06.0668 2516  C:\Windows\System32\es.dll - ok
22:52:06.0674 2516  [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
22:52:06.0674 2516  C:\Windows\System32\WindowsCodecs.dll - ok
22:52:06.0680 2516  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
22:52:06.0680 2516  C:\Windows\System32\comres.dll - ok
22:52:06.0686 2516  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
22:52:06.0686 2516  C:\Windows\System32\Sens.dll - ok
22:52:06.0691 2516  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
22:52:06.0691 2516  C:\Windows\System32\uxsms.dll - ok
22:52:06.0698 2516  [ 7A95C95B6C4CF292D689106BCAE49543 ] C:\Windows\System32\WUDFSvc.dll
22:52:06.0698 2516  C:\Windows\System32\WUDFSvc.dll - ok
22:52:06.0703 2516  [ 80E69670BDA10F32A941BA7358E33012 ] C:\Windows\System32\WUDFPlatform.dll
22:52:06.0703 2516  C:\Windows\System32\WUDFPlatform.dll - ok
22:52:06.0708 2516  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
22:52:06.0708 2516  C:\Windows\System32\drivers\lltdio.sys - ok
22:52:06.0714 2516  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
22:52:06.0714 2516  C:\Windows\System32\drivers\rspndr.sys - ok
22:52:06.0717 2516  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
22:52:06.0718 2516  C:\Windows\System32\IPHLPAPI.DLL - ok
22:52:06.0723 2516  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
22:52:06.0723 2516  C:\Windows\System32\lmhsvc.dll - ok
22:52:06.0729 2516  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
22:52:06.0729 2516  C:\Windows\System32\nsisvc.dll - ok
22:52:06.0734 2516  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
22:52:06.0734 2516  C:\Windows\System32\VaultCredProvider.dll - ok
22:52:06.0740 2516  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
22:52:06.0740 2516  C:\Windows\System32\winbrand.dll - ok
22:52:06.0746 2516  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
22:52:06.0746 2516  C:\Windows\System32\dhcpcore.dll - ok
22:52:06.0751 2516  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
22:52:06.0752 2516  C:\Windows\System32\nrpsrv.dll - ok
22:52:06.0758 2516  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
22:52:06.0758 2516  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
22:52:06.0763 2516  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
22:52:06.0763 2516  C:\Windows\System32\winnsi.dll - ok
22:52:06.0770 2516  [ 71C7B65B6557B75B99907E76956AE4B8 ] C:\Windows\System32\dhcpcore6.dll
22:52:06.0770 2516  C:\Windows\System32\dhcpcore6.dll - ok
22:52:06.0774 2516  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
22:52:06.0774 2516  C:\Windows\System32\dnsrslvr.dll - ok
22:52:06.0780 2516  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
22:52:06.0780 2516  C:\Windows\System32\BioCredProv.dll - ok
22:52:06.0786 2516  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
22:52:06.0786 2516  C:\Windows\System32\FWPUCLNT.DLL - ok
22:52:06.0792 2516  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
22:52:06.0792 2516  C:\Windows\System32\winbio.dll - ok
22:52:06.0797 2516  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
22:52:06.0797 2516  C:\Windows\System32\credui.dll - ok
22:52:06.0803 2516  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
22:52:06.0803 2516  C:\Windows\System32\dnsext.dll - ok
22:52:06.0808 2516  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
22:52:06.0808 2516  C:\Windows\System32\netapi32.dll - ok
22:52:06.0814 2516  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
22:52:06.0814 2516  C:\Windows\System32\vaultcli.dll - ok
22:52:06.0820 2516  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
22:52:06.0820 2516  C:\Windows\System32\dhcpcsvc.dll - ok
22:52:06.0825 2516  [ 4CBCC37856EA2039C27A2FB661DDA0E5 ] C:\Windows\System32\dhcpcsvc6.dll
22:52:06.0825 2516  C:\Windows\System32\dhcpcsvc6.dll - ok
22:52:06.0831 2516  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
22:52:06.0831 2516  C:\Windows\System32\netutils.dll - ok
22:52:06.0837 2516  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
22:52:06.0837 2516  C:\Windows\System32\samcli.dll - ok
22:52:06.0843 2516  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
22:52:06.0843 2516  C:\Windows\System32\shsvcs.dll - ok
22:52:06.0848 2516  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
22:52:06.0848 2516  C:\Windows\System32\wkscli.dll - ok
22:52:06.0853 2516  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
22:52:06.0854 2516  C:\Windows\System32\certCredProvider.dll - ok
22:52:06.0860 2516  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
22:52:06.0860 2516  C:\Windows\System32\rasplap.dll - ok
22:52:06.0865 2516  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
22:52:06.0865 2516  C:\Windows\System32\rasapi32.dll - ok
22:52:06.0871 2516  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
22:52:06.0871 2516  C:\Windows\System32\schedsvc.dll - ok
22:52:06.0877 2516  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
22:52:06.0877 2516  C:\Windows\System32\rasman.dll - ok
22:52:06.0882 2516  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
22:52:06.0882 2516  C:\Windows\System32\rtutils.dll - ok
22:52:06.0888 2516  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
22:52:06.0888 2516  C:\Windows\System32\ktmw32.dll - ok
22:52:06.0893 2516  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
22:52:06.0894 2516  C:\Windows\System32\UXInit.dll - ok
22:52:06.0900 2516  [ CE3BFCD5415DCEC2C8D5B2023F809431 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
22:52:06.0900 2516  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
22:52:06.0905 2516  [ F798BAF277AD51BB8A2A1B20624874FF ] C:\Windows\System32\nvsvc64.dll
22:52:06.0905 2516  C:\Windows\System32\nvsvc64.dll - ok
22:52:06.0912 2516  [ 86847EF9FAE8D8BD810EF2A815D29EA9 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
22:52:06.0912 2516  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
22:52:06.0917 2516  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
22:52:06.0917 2516  C:\Windows\System32\taskcomp.dll - ok
22:52:06.0922 2516  [ 28BA06C0FB3E463782B647770AD1E4AF ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
22:52:06.0922 2516  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
22:52:06.0928 2516  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
22:52:06.0928 2516  C:\Windows\System32\mscms.dll - ok
22:52:06.0934 2516  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
22:52:06.0934 2516  C:\Windows\System32\drivers\http.sys - ok
22:52:06.0939 2516  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
22:52:06.0939 2516  C:\Windows\System32\imageres.dll - ok
22:52:06.0945 2516  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
22:52:06.0945 2516  C:\Windows\System32\winmm.dll - ok
22:52:06.0951 2516  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
22:52:06.0951 2516  C:\Windows\System32\msimg32.dll - ok
22:52:06.0957 2516  [ 312A1D65C1DD37FBF695DF0EC21BEB72 ] C:\Windows\System32\nvapi64.dll
22:52:06.0957 2516  C:\Windows\System32\nvapi64.dll - ok
22:52:06.0962 2516  [ B96C17B5DC1424D56EEA3A99E97428CD ] C:\Windows\System32\spoolsv.exe
22:52:06.0962 2516  C:\Windows\System32\spoolsv.exe - ok
22:52:06.0965 2516  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
22:52:06.0965 2516  C:\Windows\System32\BFE.DLL - ok
22:52:06.0971 2516  [ B4DCD843B97BAB317717A057C72796E0 ] C:\Windows\System32\nvsvcr.dll
22:52:06.0971 2516  C:\Windows\System32\nvsvcr.dll - ok
22:52:06.0977 2516  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
22:52:06.0977 2516  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
22:52:06.0984 2516  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
22:52:06.0984 2516  C:\Windows\System32\winspool.drv - ok
22:52:06.0989 2516  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
22:52:06.0989 2516  C:\Windows\System32\oleacc.dll - ok
22:52:06.0994 2516  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
22:52:06.0994 2516  C:\Windows\System32\drivers\bowser.sys - ok
22:52:07.0000 2516  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
22:52:07.0000 2516  C:\Windows\System32\drivers\mpsdrv.sys - ok
22:52:07.0006 2516  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
22:52:07.0006 2516  C:\Windows\System32\drivers\mrxsmb.sys - ok
22:52:07.0011 2516  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
22:52:07.0011 2516  C:\Windows\System32\drivers\mrxsmb10.sys - ok
22:52:07.0017 2516  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
22:52:07.0017 2516  C:\Windows\System32\drivers\mrxsmb20.sys - ok
22:52:07.0023 2516  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
22:52:07.0023 2516  C:\Windows\System32\MPSSVC.dll - ok
22:52:07.0029 2516  [ 0AB6CC7CB55AD512DB0B722A926BD9F8 ] C:\Program Files\NVIDIA Corporation\Display\nvuir.dll
22:52:07.0029 2516  C:\Program Files\NVIDIA Corporation\Display\nvuir.dll - ok
22:52:07.0034 2516  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
22:52:07.0034 2516  C:\Windows\System32\wkssvc.dll - ok
22:52:07.0040 2516  [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCore64.exe
22:52:07.0040 2516  C:\Program Files\SUPERAntiSpyware\SASCore64.exe - ok
22:52:07.0046 2516  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
22:52:07.0046 2516  C:\Windows\System32\wfapigp.dll - ok
22:52:07.0052 2516  [ 5AA5DB4512FB9F3DCEA0F53491CA35E9 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
22:52:07.0052 2516  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
22:52:07.0057 2516  [ 027680A156C337A39CC543A436A745E3 ] C:\Windows\System32\nvcpl.dll
22:52:07.0058 2516  C:\Windows\System32\nvcpl.dll - ok
22:52:07.0063 2516  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
22:52:07.0063 2516  C:\Windows\System32\cryptsvc.dll - ok
22:52:07.0068 2516  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
22:52:07.0069 2516  C:\Windows\System32\dps.dll - ok
22:52:07.0075 2516  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] C:\Windows\System32\drivers\NisDrvWFP.sys
22:52:07.0075 2516  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
22:52:07.0080 2516  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
22:52:07.0080 2516  C:\Windows\System32\netman.dll - ok
22:52:07.0086 2516  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
22:52:07.0086 2516  C:\Windows\System32\cryptnet.dll - ok
22:52:07.0092 2516  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
22:52:07.0092 2516  C:\Windows\System32\taskschd.dll - ok
22:52:07.0097 2516  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
22:52:07.0097 2516  C:\Windows\System32\drivers\PEAuth.sys - ok
22:52:07.0103 2516  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
22:52:07.0103 2516  C:\Windows\System32\pcasvc.dll - ok
22:52:07.0109 2516  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
22:52:07.0109 2516  C:\Windows\System32\vssapi.dll - ok
22:52:07.0114 2516  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
22:52:07.0114 2516  C:\Windows\System32\drivers\secdrv.sys - ok
22:52:07.0120 2516  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
22:52:07.0120 2516  C:\Windows\System32\drivers\srvnet.sys - ok
22:52:07.0126 2516  [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
22:52:07.0126 2516  C:\Windows\System32\seclogon.dll - ok
22:52:07.0131 2516  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
22:52:07.0132 2516  C:\Windows\System32\sstpsvc.dll - ok
22:52:07.0137 2516  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
22:52:07.0137 2516  C:\Windows\System32\wiaservc.dll - ok
22:52:07.0143 2516  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
22:52:07.0143 2516  C:\Windows\System32\aepic.dll - ok
22:52:07.0148 2516  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
22:52:07.0148 2516  C:\Windows\System32\sfc.dll - ok
22:52:07.0154 2516  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
22:52:07.0154 2516  C:\Windows\System32\sfc_os.dll - ok
22:52:07.0160 2516  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
22:52:07.0160 2516  C:\Windows\System32\sysmain.dll - ok
22:52:07.0165 2516  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
22:52:07.0165 2516  C:\Windows\System32\httpapi.dll - ok
22:52:07.0171 2516  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
22:52:07.0171 2516  C:\Windows\System32\webio.dll - ok
22:52:07.0177 2516  [ CB598B5B2A74AC0DE63783A08BCB6F34 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
22:52:07.0177 2516  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
22:52:07.0182 2516  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
22:52:07.0182 2516  C:\Windows\System32\wiatrace.dll - ok
22:52:07.0189 2516  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
22:52:07.0189 2516  C:\Windows\System32\vsstrace.dll - ok
22:52:07.0194 2516  [ DF687E3D8836BFB04FCC0615BF15A519 ] C:\Windows\System32\drivers\tcpipreg.sys
22:52:07.0194 2516  C:\Windows\System32\drivers\tcpipreg.sys - ok
22:52:07.0200 2516  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
22:52:07.0200 2516  C:\Windows\System32\trkwks.dll - ok
22:52:07.0205 2516  [ 1EE99A89CC788ADA662441D1E9830529 ] C:\Windows\System32\nlasvc.dll
22:52:07.0206 2516  C:\Windows\System32\nlasvc.dll - ok
22:52:07.0211 2516  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
22:52:07.0211 2516  C:\Windows\System32\drivers\srv2.sys - ok
22:52:07.0217 2516  [ 4A435F95B940E93A88FEC144BD409789 ] C:\Windows\System32\ncsi.dll
22:52:07.0217 2516  C:\Windows\System32\ncsi.dll - ok
22:52:07.0220 2516  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
22:52:07.0220 2516  C:\Windows\System32\wbem\WMIsvc.dll - ok
22:52:07.0227 2516  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
22:52:07.0227 2516  C:\Windows\System32\drivers\srv.sys - ok
22:52:07.0232 2516  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
22:52:07.0232 2516  C:\Windows\System32\winhttp.dll - ok
22:52:07.0237 2516  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
22:52:07.0237 2516  C:\Windows\System32\wbemcomn.dll - ok
22:52:07.0243 2516  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
22:52:07.0243 2516  C:\Windows\System32\tapisrv.dll - ok
22:52:07.0249 2516  [ A34A587FFFD45FA649FBA6D03784D257 ] C:\Windows\System32\iphlpsvc.dll
22:52:07.0249 2516  C:\Windows\System32\iphlpsvc.dll - ok
22:52:07.0254 2516  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
22:52:07.0254 2516  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
22:52:07.0260 2516  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
22:52:07.0260 2516  C:\Windows\System32\sqmapi.dll - ok
22:52:07.0265 2516  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
22:52:07.0266 2516  C:\Windows\System32\wbem\fastprox.dll - ok
22:52:07.0271 2516  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
22:52:07.0271 2516  C:\Windows\System32\ssdpapi.dll - ok
22:52:07.0277 2516  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
22:52:07.0277 2516  C:\Windows\System32\wdscore.dll - ok
22:52:07.0282 2516  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
22:52:07.0283 2516  C:\Windows\System32\ntdsapi.dll - ok
22:52:07.0289 2516  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
22:52:07.0289 2516  C:\Windows\System32\srvsvc.dll - ok
22:52:07.0294 2516  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
22:52:07.0295 2516  C:\Windows\System32\browser.dll - ok
22:52:07.0301 2516  [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
22:52:07.0301 2516  C:\Windows\System32\rasmans.dll - ok
22:52:07.0307 2516  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
22:52:07.0307 2516  C:\Windows\System32\wbem\wbemprox.dll - ok
22:52:07.0312 2516  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
22:52:07.0312 2516  C:\Windows\System32\eappprxy.dll - ok
22:52:07.0318 2516  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
22:52:07.0318 2516  C:\Windows\System32\netmsg.dll - ok
22:52:07.0324 2516  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
22:52:07.0324 2516  C:\Windows\System32\wbem\WinMgmtR.dll - ok
22:52:07.0330 2516  [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
22:52:07.0330 2516  C:\Windows\System32\rastapi.dll - ok
22:52:07.0336 2516  [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
22:52:07.0336 2516  C:\Windows\System32\tapi32.dll - ok
22:52:07.0341 2516  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
22:52:07.0341 2516  C:\Windows\System32\clusapi.dll - ok
22:52:07.0347 2516  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
22:52:07.0347 2516  C:\Windows\System32\sscore.dll - ok
22:52:07.0353 2516  [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
22:52:07.0353 2516  C:\Windows\System32\unimdm.tsp - ok
22:52:07.0359 2516  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
22:52:07.0359 2516  C:\Windows\System32\netcfgx.dll - ok
22:52:07.0365 2516  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
22:52:07.0365 2516  C:\Windows\System32\resutils.dll - ok
22:52:07.0370 2516  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
22:52:07.0370 2516  C:\Windows\System32\hnetcfg.dll - ok
22:52:07.0376 2516  [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
22:52:07.0376 2516  C:\Windows\System32\uniplat.dll - ok
22:52:07.0382 2516  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
22:52:07.0382 2516  C:\Windows\System32\nci.dll - ok
22:52:07.0387 2516  [ 2472BDF30C62F3E81AE27A968C25608C ] C:\Windows\System32\unimdmat.dll
22:52:07.0387 2516  C:\Windows\System32\unimdmat.dll - ok
22:52:07.0393 2516  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
22:52:07.0393 2516  C:\Windows\System32\wbem\wbemcore.dll - ok
22:52:07.0399 2516  [ C1446A66BB89FC3AA2485C67562247DA ] C:\Windows\System32\modemui.dll
22:52:07.0399 2516  C:\Windows\System32\modemui.dll - ok
22:52:07.0404 2516  [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
22:52:07.0404 2516  C:\Windows\System32\kmddsp.tsp - ok
22:52:07.0410 2516  [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
22:52:07.0410 2516  C:\Windows\System32\ndptsp.tsp - ok
22:52:07.0416 2516  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
22:52:07.0416 2516  C:\Windows\System32\wbem\esscli.dll - ok
22:52:07.0421 2516  [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
22:52:07.0421 2516  C:\Windows\System32\hidphone.tsp - ok
22:52:07.0427 2516  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
22:52:07.0427 2516  C:\Windows\System32\fveapi.dll - ok
22:52:07.0432 2516  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
22:52:07.0432 2516  C:\Windows\System32\fvecerts.dll - ok
22:52:07.0438 2516  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
22:52:07.0438 2516  C:\Windows\System32\tbs.dll - ok
22:52:07.0444 2516  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
22:52:07.0444 2516  C:\Windows\System32\wbem\wbemsvc.dll - ok
22:52:07.0451 2516  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
22:52:07.0451 2516  C:\Windows\System32\wbem\wmiutils.dll - ok
22:52:07.0456 2516  [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
22:52:07.0456 2516  C:\Windows\System32\rasppp.dll - ok
22:52:07.0461 2516  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
22:52:07.0461 2516  C:\Windows\System32\aeevts.dll - ok
22:52:07.0467 2516  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
22:52:07.0467 2516  C:\Windows\System32\eappcfg.dll - ok
22:52:07.0470 2516  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
22:52:07.0470 2516  C:\Windows\System32\wiarpc.dll - ok
22:52:07.0475 2516  [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
22:52:07.0475 2516  C:\Windows\System32\vpnike.dll - ok
22:52:07.0481 2516  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
22:52:07.0482 2516  C:\Windows\System32\wbem\repdrvfs.dll - ok
22:52:07.0487 2516  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
22:52:07.0487 2516  C:\Windows\System32\rasadhlp.dll - ok
22:52:07.0493 2516  [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
22:52:07.0493 2516  C:\Windows\System32\raschap.dll - ok
22:52:07.0498 2516  [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
22:52:07.0498 2516  C:\Windows\System32\ipnathlp.dll - ok
22:52:07.0504 2516  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
22:52:07.0504 2516  C:\Windows\System32\mprapi.dll - ok
22:52:07.0510 2516  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
22:52:07.0510 2516  C:\Windows\System32\netshell.dll - ok
22:52:07.0515 2516  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
22:52:07.0515 2516  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
22:52:07.0521 2516  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
22:52:07.0521 2516  C:\Windows\System32\ncobjapi.dll - ok
22:52:07.0527 2516  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
22:52:07.0527 2516  C:\Windows\System32\wbem\wbemess.dll - ok
22:52:07.0532 2516  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
22:52:07.0532 2516  C:\Windows\System32\dllhost.exe - ok
22:52:07.0538 2516  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
22:52:07.0538 2516  C:\Windows\System32\wdi.dll - ok
22:52:07.0544 2516  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
22:52:07.0544 2516  C:\Windows\System32\wpdbusenum.dll - ok
22:52:07.0550 2516  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
22:52:07.0550 2516  C:\Windows\System32\diagperf.dll - ok
22:52:07.0555 2516  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
22:52:07.0555 2516  C:\Windows\System32\npmproxy.dll - ok
22:52:07.0561 2516  [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
22:52:07.0561 2516  C:\Windows\System32\hidserv.dll - ok
22:52:07.0567 2516  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
22:52:07.0567 2516  C:\Windows\System32\Apphlpdm.dll - ok
22:52:07.0572 2516  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
22:52:07.0572 2516  C:\Windows\System32\wer.dll - ok
22:52:07.0578 2516  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
22:52:07.0578 2516  C:\Windows\System32\IDStore.dll - ok
22:52:07.0583 2516  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
22:52:07.0584 2516  C:\Windows\System32\perftrack.dll - ok
22:52:07.0589 2516  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
22:52:07.0589 2516  C:\Windows\System32\pnpts.dll - ok
22:52:07.0595 2516  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
22:52:07.0595 2516  C:\Windows\System32\wdiasqmmodule.dll - ok
22:52:07.0601 2516  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
22:52:07.0601 2516  C:\Windows\System32\taskhost.exe - ok
22:52:07.0607 2516  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
22:52:07.0607 2516  C:\Windows\System32\PortableDeviceApi.dll - ok
22:52:07.0612 2516  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
22:52:07.0612 2516  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
22:52:07.0618 2516  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
22:52:07.0618 2516  C:\Windows\System32\HotStartUserAgent.dll - ok
22:52:07.0624 2516  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
22:52:07.0624 2516  C:\Windows\System32\mpr.dll - ok
22:52:07.0629 2516  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
22:52:07.0629 2516  C:\Windows\System32\taskeng.exe - ok
22:52:07.0635 2516  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
22:52:07.0635 2516  C:\Windows\System32\localspl.dll - ok
22:52:07.0641 2516  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
22:52:07.0641 2516  C:\Windows\System32\umb.dll - ok
22:52:07.0646 2516  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
22:52:07.0646 2516  C:\Windows\System32\userinit.exe - ok
22:52:07.0652 2516  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
22:52:07.0652 2516  C:\Windows\System32\dwm.exe - ok
22:52:07.0658 2516  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
22:52:07.0658 2516  C:\Windows\System32\dwmredir.dll - ok
22:52:07.0664 2516  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
22:52:07.0664 2516  C:\Windows\System32\dwmcore.dll - ok
22:52:07.0669 2516  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
22:52:07.0669 2516  C:\Windows\System32\dimsjob.dll - ok
22:52:07.0675 2516  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
22:52:07.0675 2516  C:\Windows\System32\spoolss.dll - ok
22:52:07.0681 2516  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
22:52:07.0681 2516  C:\Windows\System32\PrintIsolationProxy.dll - ok
22:52:07.0686 2516  [ AC4C51EB24AA95B77F705AB159189E24 ] C:\Windows\explorer.exe
22:52:07.0686 2516  C:\Windows\explorer.exe - ok
22:52:07.0692 2516  [ D63BEE2A8B22482F7080A8D3F2E1A733 ] C:\Windows\System32\d3d10_1.dll
22:52:07.0692 2516  C:\Windows\System32\d3d10_1.dll - ok
22:52:07.0698 2516  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
22:52:07.0698 2516  C:\Windows\System32\NapiNSP.dll - ok
22:52:07.0703 2516  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
22:52:07.0703 2516  C:\Windows\System32\pautoenr.dll - ok
22:52:07.0709 2516  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
22:52:07.0709 2516  C:\Windows\System32\radardt.dll - ok
22:52:07.0715 2516  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
22:52:07.0715 2516  C:\Windows\System32\TSChannel.dll - ok
22:52:07.0719 2516  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
22:52:07.0719 2516  C:\Windows\System32\certcli.dll - ok
22:52:07.0724 2516  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
22:52:07.0724 2516  C:\Windows\System32\ExplorerFrame.dll - ok
22:52:07.0729 2516  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
22:52:07.0729 2516  C:\Windows\System32\pnrpnsp.dll - ok
22:52:07.0736 2516  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:52:07.0736 2516  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
22:52:07.0741 2516  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
22:52:07.0741 2516  C:\Windows\System32\winrnr.dll - ok
22:52:07.0747 2516  [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
22:52:07.0747 2516  C:\Windows\System32\d3d10_1core.dll - ok
22:52:07.0753 2516  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
22:52:07.0753 2516  C:\Windows\SysWOW64\ntdll.dll - ok
22:52:07.0758 2516  [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
22:52:07.0758 2516  C:\Windows\System32\dxgi.dll - ok
22:52:07.0764 2516  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
22:52:07.0764 2516  C:\Windows\System32\CertEnroll.dll - ok
22:52:07.0769 2516  [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
22:52:07.0769 2516  C:\Windows\System32\wow64.dll - ok
22:52:07.0775 2516  [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
22:52:07.0775 2516  C:\Windows\System32\wow64win.dll - ok
22:52:07.0781 2516  [ 47AD5ED974A4FDB582824C5DCB6E7482 ] C:\Windows\System32\d3d10level9.dll
22:52:07.0781 2516  C:\Windows\System32\d3d10level9.dll - ok
22:52:07.0786 2516  [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
22:52:07.0786 2516  C:\Windows\System32\wow64cpu.dll - ok
22:52:07.0792 2516  [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
22:52:07.0792 2516  C:\Windows\SysWOW64\kernel32.dll - ok
22:52:07.0798 2516  [ AE84B591B83012E2F6902D7E961CA4F5 ] C:\Windows\System32\nvd3dumx.dll
22:52:07.0798 2516  C:\Windows\System32\nvd3dumx.dll - ok
22:52:07.0803 2516  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
22:52:07.0803 2516  C:\Windows\SysWOW64\advapi32.dll - ok
22:52:07.0809 2516  [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
22:52:07.0809 2516  C:\Windows\SysWOW64\KernelBase.dll - ok
22:52:07.0815 2516  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
22:52:07.0815 2516  C:\Windows\System32\EhStorShell.dll - ok
22:52:07.0821 2516  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
22:52:07.0821 2516  C:\Windows\System32\MsCtfMonitor.dll - ok
22:52:07.0826 2516  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
22:52:07.0827 2516  C:\Windows\System32\msutb.dll - ok
22:52:07.0832 2516  [ 7BBF670114373CE6A203FA155A9E0D0A ] C:\Windows\System32\ntshrui.dll
22:52:07.0832 2516  C:\Windows\System32\ntshrui.dll - ok
22:52:07.0838 2516  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
22:52:07.0838 2516  C:\Windows\System32\PlaySndSrv.dll - ok
22:52:07.0844 2516  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
22:52:07.0844 2516  C:\Windows\SysWOW64\msvcrt.dll - ok
22:52:07.0849 2516  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
22:52:07.0849 2516  C:\Windows\System32\cscapi.dll - ok
22:52:07.0855 2516  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
22:52:07.0855 2516  C:\Windows\System32\IconCodecService.dll - ok
22:52:07.0860 2516  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
22:52:07.0862 2516  C:\Windows\SysWOW64\rpcrt4.dll - ok
22:52:07.0866 2516  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
22:52:07.0866 2516  C:\Windows\SysWOW64\sechost.dll - ok
22:52:07.0872 2516  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
22:52:07.0872 2516  C:\Windows\System32\runonce.exe - ok
22:52:07.0878 2516  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
22:52:07.0878 2516  C:\Windows\SysWOW64\cryptbase.dll - ok
22:52:07.0883 2516  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
22:52:07.0884 2516  C:\Windows\SysWOW64\shlwapi.dll - ok
22:52:07.0889 2516  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
22:52:07.0889 2516  C:\Windows\SysWOW64\sspicli.dll - ok
22:52:07.0895 2516  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
22:52:07.0895 2516  C:\Windows\SysWOW64\gdi32.dll - ok
22:52:07.0900 2516  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
22:52:07.0900 2516  C:\Windows\SysWOW64\user32.dll - ok
22:52:07.0906 2516  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
22:52:07.0906 2516  C:\Windows\SysWOW64\lpk.dll - ok
22:52:07.0912 2516  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
22:52:07.0912 2516  C:\Windows\SysWOW64\runonce.exe - ok
22:52:07.0917 2516  [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
22:52:07.0917 2516  C:\Windows\SysWOW64\usp10.dll - ok
22:52:07.0923 2516  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
22:52:07.0923 2516  C:\Windows\SysWOW64\imm32.dll - ok
22:52:07.0928 2516  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
22:52:07.0928 2516  C:\Windows\SysWOW64\ole32.dll - ok
22:52:07.0934 2516  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
22:52:07.0934 2516  C:\Windows\SysWOW64\msctf.dll - ok
22:52:07.0940 2516  [ 565D78187494FB5F08B5A52DEB2AEA7A ] C:\Windows\SysWOW64\shell32.dll
22:52:07.0940 2516  C:\Windows\SysWOW64\shell32.dll - ok
22:52:07.0945 2516  [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
22:52:07.0946 2516  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
22:52:07.0952 2516  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
22:52:07.0952 2516  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
22:52:07.0957 2516  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
22:52:07.0957 2516  C:\Windows\SysWOW64\netapi32.dll - ok
22:52:07.0963 2516  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
22:52:07.0963 2516  C:\Windows\SysWOW64\netutils.dll - ok
22:52:07.0968 2516  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
22:52:07.0969 2516  C:\Windows\SysWOW64\nsi.dll - ok
22:52:07.0972 2516  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
22:52:07.0972 2516  C:\Windows\SysWOW64\winnsi.dll - ok
22:52:07.0977 2516  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
22:52:07.0978 2516  C:\Windows\SysWOW64\srvcli.dll - ok
22:52:07.0983 2516  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
22:52:07.0983 2516  C:\Windows\SysWOW64\wkscli.dll - ok
22:52:07.0989 2516  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
22:52:07.0989 2516  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
22:52:07.0995 2516  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
22:52:07.0995 2516  C:\Windows\SysWOW64\crypt32.dll - ok
22:52:08.0000 2516  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
22:52:08.0000 2516  C:\Windows\SysWOW64\imagehlp.dll - ok
22:52:08.0006 2516  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
22:52:08.0006 2516  C:\Windows\SysWOW64\msasn1.dll - ok
22:52:08.0012 2516  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
22:52:08.0012 2516  C:\Windows\SysWOW64\oleaut32.dll - ok
22:52:08.0017 2516  [ 0CE4D3BD306DA6D1F6F233C403F5B667 ] C:\Windows\SysWOW64\msi.dll
22:52:08.0017 2516  C:\Windows\SysWOW64\msi.dll - ok
22:52:08.0023 2516  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
22:52:08.0023 2516  C:\Windows\SysWOW64\setupapi.dll - ok
22:52:08.0029 2516  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
22:52:08.0029 2516  C:\Windows\SysWOW64\cfgmgr32.dll - ok
22:52:08.0035 2516  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
22:52:08.0035 2516  C:\Windows\SysWOW64\clbcatq.dll - ok
22:52:08.0040 2516  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
22:52:08.0040 2516  C:\Windows\SysWOW64\devobj.dll - ok
22:52:08.0046 2516  [ A0E8F3E4AA79509A6B043B10EB6DB2AD ] C:\Windows\SysWOW64\wininet.dll
22:52:08.0046 2516  C:\Windows\SysWOW64\wininet.dll - ok
22:52:08.0052 2516  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
22:52:08.0052 2516  C:\Windows\SysWOW64\propsys.dll - ok
22:52:08.0057 2516  [ EB38A254E097C6BBB9C4C3B81AD322AB ] C:\Windows\SysWOW64\urlmon.dll
22:52:08.0057 2516  C:\Windows\SysWOW64\urlmon.dll - ok
22:52:08.0063 2516  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
22:52:08.0063 2516  C:\Windows\SysWOW64\ntmarta.dll - ok
22:52:08.0069 2516  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
22:52:08.0069 2516  C:\Windows\SysWOW64\Wldap32.dll - ok
22:52:08.0074 2516  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
22:52:08.0074 2516  C:\Windows\SysWOW64\profapi.dll - ok
22:52:08.0080 2516  [ 64931E3C051A37A642FA72934359642B ] C:\Windows\SysWOW64\iertutil.dll
22:52:08.0081 2516  C:\Windows\SysWOW64\iertutil.dll - ok
22:52:08.0087 2516  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
22:52:08.0087 2516  C:\Windows\SysWOW64\wintrust.dll - ok
22:52:08.0092 2516  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
22:52:08.0092 2516  C:\Windows\SysWOW64\cscapi.dll - ok
22:52:08.0097 2516  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
22:52:08.0098 2516  C:\Windows\SysWOW64\dbghelp.dll - ok
22:52:08.0103 2516  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
22:52:08.0103 2516  C:\Windows\SysWOW64\version.dll - ok
22:52:08.0109 2516  [ FA132E1DAB518B28F4B20DB154A647FC ] C:\Windows\System32\CNMLMB8.DLL
22:52:08.0109 2516  C:\Windows\System32\CNMLMB8.DLL - ok
22:52:08.0115 2516  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
22:52:08.0115 2516  C:\Windows\SysWOW64\apphelp.dll - ok
22:52:08.0121 2516  [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
22:52:08.0121 2516  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
22:52:08.0126 2516  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
22:52:08.0126 2516  C:\Windows\SysWOW64\cmd.exe - ok
22:52:08.0133 2516  [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
22:52:08.0133 2516  C:\Windows\System32\conhost.exe - ok
22:52:08.0138 2516  [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
22:52:08.0138 2516  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
22:52:08.0143 2516  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
22:52:08.0144 2516  C:\Windows\SysWOW64\mstask.dll - ok
22:52:08.0149 2516  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
22:52:08.0149 2516  C:\Windows\SysWOW64\userenv.dll - ok
22:52:08.0155 2516  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
22:52:08.0155 2516  C:\Windows\System32\dbghelp.dll - ok
22:52:08.0160 2516  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
22:52:08.0160 2516  C:\Windows\SysWOW64\winbrand.dll - ok
22:52:08.0166 2516  [ 1F458D8B38D23FDC5FA26EF030AB296F ] C:\Windows\SysWOW64\ieframe.dll
22:52:08.0166 2516  C:\Windows\SysWOW64\ieframe.dll - ok
22:52:08.0172 2516  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
22:52:08.0172 2516  C:\Windows\System32\aelupsvc.dll - ok
22:52:08.0178 2516  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
22:52:08.0178 2516  C:\Windows\SysWOW64\oleacc.dll - ok
22:52:08.0183 2516  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
22:52:08.0183 2516  C:\Windows\SysWOW64\psapi.dll - ok
22:52:08.0189 2516  [ 1F05F5A16881CD928C82D53CEFCF4477 ] C:\Windows\SysWOW64\shdocvw.dll
22:52:08.0189 2516  C:\Windows\SysWOW64\shdocvw.dll - ok
22:52:08.0195 2516  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\HAL\AppData\Local\Temp\B6D8875D-57EC-442F-820C-64077947430A.exe
22:52:08.0195 2516  C:\Users\HAL\AppData\Local\Temp\B6D8875D-57EC-442F-820C-64077947430A.exe - ok
22:52:08.0200 2516  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
22:52:08.0200 2516  C:\Windows\SysWOW64\cryptsp.dll - ok
22:52:08.0206 2516  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
22:52:08.0206 2516  C:\Windows\SysWOW64\rsaenh.dll - ok
22:52:08.0212 2516  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
22:52:08.0212 2516  C:\Windows\SysWOW64\ncrypt.dll - ok
22:52:08.0217 2516  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
22:52:08.0217 2516  C:\Windows\SysWOW64\bcrypt.dll - ok
22:52:08.0220 2516  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
22:52:08.0221 2516  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
22:52:08.0226 2516  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
22:52:08.0226 2516  C:\Windows\SysWOW64\gpapi.dll - ok
22:52:08.0233 2516  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
22:52:08.0233 2516  C:\Windows\SysWOW64\cryptnet.dll - ok
22:52:08.0238 2516  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
22:52:08.0238 2516  C:\Windows\SysWOW64\SensApi.dll - ok
22:52:08.0243 2516  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
22:52:08.0243 2516  C:\Windows\SysWOW64\uxtheme.dll - ok
22:52:08.0249 2516  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
22:52:08.0249 2516  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
22:52:08.0255 2516  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
22:52:08.0255 2516  C:\Windows\SysWOW64\EhStorShell.dll - ok
22:52:08.0260 2516  [ 6FE535FAAB7D0EC3B815818D29F07814 ] C:\Windows\System32\CNMN6PPM.DLL
22:52:08.0260 2516  C:\Windows\System32\CNMN6PPM.DLL - ok
22:52:08.0266 2516  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
22:52:08.0266 2516  C:\Windows\System32\FXSMON.dll - ok
22:52:08.0272 2516  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
22:52:08.0272 2516  C:\Windows\System32\snmpapi.dll - ok
22:52:08.0278 2516  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
22:52:08.0278 2516  C:\Windows\System32\tcpmon.dll - ok
22:52:08.0284 2516  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
22:52:08.0284 2516  C:\Windows\System32\wsnmp32.dll - ok
22:52:08.0289 2516  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
22:52:08.0289 2516  C:\Windows\System32\msxml6.dll - ok
22:52:08.0295 2516  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
22:52:08.0295 2516  C:\Windows\System32\usbmon.dll - ok
22:52:08.0300 2516  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
22:52:08.0301 2516  C:\Windows\System32\WSDMon.dll - ok
22:52:08.0306 2516  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
22:52:08.0306 2516  C:\Windows\System32\webservices.dll - ok
22:52:08.0312 2516  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
22:52:08.0312 2516  C:\Windows\System32\WSDApi.dll - ok
22:52:08.0317 2516  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
22:52:08.0317 2516  C:\Windows\System32\fundisc.dll - ok
22:52:08.0323 2516  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
22:52:08.0323 2516  C:\Windows\System32\fdPnp.dll - ok
22:52:08.0329 2516  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
22:52:08.0329 2516  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
22:52:08.0335 2516  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
22:52:08.0335 2516  C:\Windows\System32\win32spl.dll - ok
22:52:08.0340 2516  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
22:52:08.0340 2516  C:\Windows\System32\inetpp.dll - ok
22:52:08.0346 2516  [ EB77DB354791A5932CA559B6F6374E95 ] C:\Windows\SysWOW64\ntshrui.dll
22:52:08.0346 2516  C:\Windows\SysWOW64\ntshrui.dll - ok
22:52:08.0352 2516  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
22:52:08.0352 2516  C:\Windows\SysWOW64\slc.dll - ok
22:52:08.0357 2516  [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
22:52:08.0357 2516  C:\Windows\System32\ntprint.dll - ok
22:52:08.0363 2516  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
22:52:08.0363 2516  C:\Windows\SysWOW64\imageres.dll - ok
22:52:08.0369 2516  [ 7313A885F675B72A0A0DC0C812D0B936 ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll
22:52:08.0369 2516  C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok
22:52:08.0375 2516  [ 5575DB32AA0CC5A97CA4DC87511CBF0C ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
22:52:08.0375 2516  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
22:52:08.0381 2516  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
22:52:08.0381 2516  C:\Windows\System32\wbem\NCProv.dll - ok
22:52:08.0386 2516  [ D63F0353F632FB1EDE724173BE6DB5B5 ] C:\Windows\System32\esent.dll
22:52:08.0386 2516  C:\Windows\System32\esent.dll - ok
22:52:08.0392 2516  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:52:08.0392 2516  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
22:52:08.0398 2516  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
22:52:08.0398 2516  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
22:52:08.0403 2516  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
22:52:08.0403 2516  C:\Windows\SysWOW64\mscoree.dll - ok
22:52:08.0409 2516  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:52:08.0409 2516  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
22:52:08.0415 2516  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
22:52:08.0415 2516  C:\Windows\System32\mscoree.dll - ok
22:52:08.0421 2516  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
22:52:08.0421 2516  C:\Windows\System32\msvcr100_clr0400.dll - ok
22:52:08.0427 2516  [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] C:\Windows\System32\FntCache.dll
22:52:08.0427 2516  C:\Windows\System32\FntCache.dll - ok
22:52:08.0434 2516  [ 11AFB3767663997E0CE911CD015599C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll
22:52:08.0434 2516  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdateres_en.dll - ok
22:52:08.0439 2516  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
22:52:08.0439 2516  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
22:52:08.0444 2516  [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
22:52:08.0444 2516  C:\Windows\System32\sppsvc.exe - ok
22:52:08.0450 2516  [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
22:52:08.0450 2516  C:\Windows\System32\drivers\spsys.sys - ok
22:52:08.0456 2516  [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
22:52:08.0456 2516  C:\Windows\System32\wscsvc.dll - ok
22:52:08.0461 2516  [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
22:52:08.0461 2516  C:\Windows\System32\sppwinob.dll - ok
22:52:08.0467 2516  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
22:52:08.0467 2516  C:\Windows\System32\wuapi.dll - ok
22:52:08.0470 2516  [ AD31942BDF3D594C404874613BC2FE4D ] C:\Windows\System32\SearchIndexer.exe
22:52:08.0470 2516  C:\Windows\System32\SearchIndexer.exe - ok
22:52:08.0477 2516  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
22:52:08.0477 2516  C:\Windows\System32\cabinet.dll - ok
22:52:08.0482 2516  [ 6C597496AB646EB9F31C68241050F771 ] C:\Windows\System32\tquery.dll
22:52:08.0482 2516  C:\Windows\System32\tquery.dll - ok
22:52:08.0487 2516  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
22:52:08.0487 2516  C:\Windows\System32\wups.dll - ok
22:52:08.0493 2516  [ 017F5CE9BC2333FE0FB738B0A9C13C2F ] C:\Windows\System32\mssrch.dll
22:52:08.0493 2516  C:\Windows\System32\mssrch.dll - ok
22:52:08.0498 2516  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
22:52:08.0499 2516  C:\Windows\System32\msidle.dll - ok
22:52:08.0504 2516  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
22:52:08.0504 2516  C:\Windows\System32\en-US\tquery.dll.mui - ok
22:52:08.0510 2516  [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
22:52:08.0510 2516  C:\Windows\System32\sppobjs.dll - ok
22:52:08.0516 2516  [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
22:52:08.0516 2516  C:\Windows\System32\drivers\asyncmac.sys - ok
22:52:08.0521 2516  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
22:52:08.0522 2516  C:\Windows\System32\wuaueng.dll - ok
22:52:08.0527 2516  [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
22:52:08.0527 2516  C:\Windows\System32\mspatcha.dll - ok
22:52:08.0532 2516  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
22:52:08.0533 2516  C:\Windows\System32\wups2.dll - ok
22:52:08.0539 2516  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
22:52:08.0539 2516  C:\Windows\System32\msxml3.dll - ok
22:52:08.0544 2516  [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
22:52:08.0544 2516  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
22:52:08.0550 2516  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
22:52:08.0550 2516  C:\Windows\System32\wbem\cimwin32.dll - ok
22:52:08.0556 2516  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
22:52:08.0556 2516  C:\Windows\System32\framedynos.dll - ok
22:52:08.0561 2516  [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
22:52:08.0561 2516  C:\Windows\System32\security.dll - ok
22:52:08.0567 2516  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
22:52:08.0567 2516  C:\Windows\System32\dssenh.dll - ok
22:52:08.0573 2516  [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
22:52:08.0573 2516  C:\Windows\System32\browcli.dll - ok
22:52:08.0579 2516  [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
22:52:08.0579 2516  C:\Windows\System32\schedcli.dll - ok
22:52:08.0584 2516  [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
22:52:08.0584 2516  C:\Windows\System32\wbem\wmipcima.dll - ok
22:52:08.0590 2516  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
22:52:08.0590 2516  C:\Windows\System32\wmi.dll - ok
22:52:08.0596 2516  [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
22:52:08.0596 2516  C:\Windows\System32\slwga.dll - ok
22:52:08.0601 2516  [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
22:52:08.0601 2516  C:\Windows\System32\sppc.dll - ok
22:52:08.0607 2516  [ 6A16BCE3C09496650BE881C467611653 ] C:\Windows\System32\msi.dll
22:52:08.0607 2516  C:\Windows\System32\msi.dll - ok
22:52:08.0613 2516  [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
22:52:08.0613 2516  C:\Windows\servicing\TrustedInstaller.exe - ok
22:52:08.0618 2516  [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
22:52:08.0618 2516  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
22:52:08.0624 2516  [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
22:52:08.0624 2516  C:\Windows\System32\dpx.dll - ok
22:52:08.0630 2516  [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
22:52:08.0630 2516  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
22:52:08.0636 2516  [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
22:52:08.0636 2516  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
22:52:08.0642 2516  [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
22:52:08.0642 2516  C:\Windows\System32\srclient.dll - ok
22:52:08.0647 2516  [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
22:52:08.0648 2516  C:\Windows\System32\spp.dll - ok
22:52:08.0653 2516  [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
22:52:08.0653 2516  C:\Windows\System32\sxsstore.dll - ok
22:52:08.0659 2516  [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
22:52:08.0659 2516  C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
22:52:08.0666 2516  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
22:52:08.0666 2516  C:\Windows\System32\SensApi.dll - ok
22:52:08.0671 2516  [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
22:52:08.0672 2516  C:\Windows\servicing\CbsApi.dll - ok
22:52:08.0677 2516  [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
22:52:08.0677 2516  C:\Windows\System32\advpack.dll - ok
22:52:08.0683 2516  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
22:52:08.0684 2516  C:\Windows\SysWOW64\sfc.dll - ok
22:52:08.0689 2516  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
22:52:08.0689 2516  C:\Windows\SysWOW64\sfc_os.dll - ok
22:52:08.0694 2516  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
22:52:08.0694 2516  C:\Windows\SysWOW64\devrtl.dll - ok
22:52:08.0700 2516  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
22:52:08.0701 2516  C:\Windows\SysWOW64\mpr.dll - ok
22:52:08.0706 2516  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
22:52:08.0706 2516  C:\Windows\SysWOW64\winhttp.dll - ok
22:52:08.0712 2516  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
22:52:08.0712 2516  C:\Windows\SysWOW64\webio.dll - ok
22:52:08.0718 2516  [ 6D220604AA4240303DD8DEAEAB428377 ] C:\Windows\System32\ie4uinit.exe
22:52:08.0718 2516  C:\Windows\System32\ie4uinit.exe - ok
22:52:08.0721 2516  [ D56C13F26ADCB3BC0455DB42883F6E7D ] C:\Windows\System32\iedkcs32.dll
22:52:08.0721 2516  C:\Windows\System32\iedkcs32.dll - ok
22:52:08.0727 2516  [ 1FCB1A72BF5C784F7358E6BEF38E4571 ] C:\Windows\System32\timedate.cpl
22:52:08.0727 2516  C:\Windows\System32\timedate.cpl - ok
22:52:08.0732 2516  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
22:52:08.0733 2516  C:\Windows\System32\actxprxy.dll - ok
22:52:08.0738 2516  [ 22A0AE97360C1B146FDD9AA55AC0E989 ] C:\Windows\System32\shdocvw.dll
22:52:08.0738 2516  C:\Windows\System32\shdocvw.dll - ok
22:52:08.0744 2516  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
22:52:08.0744 2516  C:\Windows\System32\linkinfo.dll - ok
22:52:08.0749 2516  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
22:52:08.0750 2516  C:\Windows\SysWOW64\ws2_32.dll - ok
22:52:08.0755 2516  [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
22:52:08.0755 2516  C:\Windows\System32\gameux.dll - ok
22:52:08.0761 2516  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
22:52:08.0761 2516  C:\Windows\SysWOW64\credssp.dll - ok
22:52:08.0766 2516  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
22:52:08.0766 2516  C:\Windows\SysWOW64\mswsock.dll - ok
22:52:08.0772 2516  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
22:52:08.0772 2516  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
22:52:08.0778 2516  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
22:52:08.0778 2516  C:\Windows\SysWOW64\wship6.dll - ok
22:52:08.0784 2516  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
22:52:08.0784 2516  C:\Windows\SysWOW64\dnsapi.dll - ok
22:52:08.0789 2516  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
22:52:08.0789 2516  C:\Windows\SysWOW64\rasadhlp.dll - ok
22:52:08.0795 2516  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
22:52:08.0795 2516  C:\Windows\System32\msftedit.dll - ok
22:52:08.0801 2516  [ 7CB3ACB163DE051169095DC6507B8977 ] C:\Windows\System32\msls31.dll
22:52:08.0801 2516  C:\Windows\System32\msls31.dll - ok
22:52:08.0806 2516  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
22:52:08.0806 2516  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
22:52:08.0812 2516  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
22:52:08.0812 2516  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
22:52:08.0818 2516  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
22:52:08.0818 2516  C:\Windows\System32\DeviceCenter.dll - ok
22:52:08.0824 2516  [ 6C12BD722FFC94584348DD34F4059FC5 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
22:52:08.0824 2516  C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe - ok
22:52:08.0830 2516  [ D81BD435CE162736EF797B2D7B8F23AD ] C:\Windows\System32\ieframe.dll
22:52:08.0830 2516  C:\Windows\System32\ieframe.dll - ok
22:52:08.0835 2516  [ 25D21CC76C914EEDF56A34F1C9A3645E ] C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe
22:52:08.0835 2516  C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe - ok
22:52:08.0842 2516  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
22:52:08.0842 2516  C:\Windows\SysWOW64\comdlg32.dll - ok
22:52:08.0848 2516  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
22:52:08.0848 2516  C:\Windows\SysWOW64\msimg32.dll - ok
22:52:08.0853 2516  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
22:52:08.0853 2516  C:\Windows\SysWOW64\secur32.dll - ok
22:52:08.0859 2516  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
22:52:08.0859 2516  C:\Windows\SysWOW64\winspool.drv - ok
22:52:08.0865 2516  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
22:52:08.0865 2516  C:\Windows\System32\wsock32.dll - ok
22:52:08.0871 2516  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
22:52:08.0871 2516  C:\Windows\SysWOW64\oledlg.dll - ok
22:52:08.0877 2516  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
22:52:08.0877 2516  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
22:52:08.0882 2516  [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
22:52:08.0882 2516  C:\Windows\System32\mstask.dll - ok
22:52:08.0888 2516  [ ABB1B50F36CCBEF119FBEF8FDF14AD61 ] C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL
22:52:08.0888 2516  C:\Program Files\SUPERAntiSpyware\SASCTXMN64.DLL - ok
22:52:08.0894 2516  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
22:52:08.0894 2516  C:\Windows\SysWOW64\winmm.dll - ok
22:52:08.0900 2516  [ FB355B817AE641BBAE08607E58CB5CE2 ] C:\Windows\System32\hhctrl.ocx
22:52:08.0900 2516  C:\Windows\System32\hhctrl.ocx - ok
22:52:08.0905 2516  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
22:52:08.0905 2516  C:\Windows\SysWOW64\dwmapi.dll - ok
22:52:08.0911 2516  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
22:52:08.0911 2516  C:\Windows\SysWOW64\rasapi32.dll - ok
22:52:08.0917 2516  [ 005247E3057BC5D5C3F8C6F886FFC10C ] C:\Windows\System32\wbem\WMIADAP.exe
22:52:08.0917 2516  C:\Windows\System32\wbem\WMIADAP.exe - ok
22:52:08.0922 2516  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
22:52:08.0922 2516  C:\Windows\SysWOW64\rasman.dll - ok
22:52:08.0928 2516  [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
22:52:08.0928 2516  C:\Windows\System32\loadperf.dll - ok
22:52:08.0934 2516  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
22:52:08.0934 2516  C:\Windows\SysWOW64\rtutils.dll - ok
22:52:08.0939 2516  [ 104A1070E90F1C530328E69B49718841 ] C:\Windows\SysWOW64\nlaapi.dll
22:52:08.0939 2516  C:\Windows\SysWOW64\nlaapi.dll - ok
22:52:08.0945 2516  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
22:52:08.0945 2516  C:\Windows\SysWOW64\NapiNSP.dll - ok
22:52:08.0951 2516  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
22:52:08.0951 2516  C:\Windows\System32\thumbcache.dll - ok
22:52:08.0957 2516  [ 2FAD69503166BF30ED15B64DAA1B116D ] C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
22:52:08.0957 2516  C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe - ok
22:52:08.0962 2516  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
22:52:08.0963 2516  C:\Windows\SysWOW64\pnrpnsp.dll - ok
22:52:08.0968 2516  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
22:52:08.0968 2516  C:\Windows\SysWOW64\winrnr.dll - ok
22:52:08.0971 2516  [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
22:52:08.0972 2516  C:\Windows\SysWOW64\netprofm.dll - ok
22:52:08.0977 2516  [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
22:52:08.0977 2516  C:\Windows\SysWOW64\npmproxy.dll - ok
22:52:08.0984 2516  [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
22:52:08.0984 2516  C:\Windows\System32\wbem\wmiprov.dll - ok
22:52:08.0990 2516  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
22:52:08.0990 2516  C:\Windows\System32\networkexplorer.dll - ok
22:52:08.0995 2516  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
22:52:08.0995 2516  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
22:52:09.0002 2516  [ 749949494676218FFA99501F4AA22ECC ] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
22:52:09.0002 2516  C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe - ok
22:52:09.0007 2516  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
22:52:09.0007 2516  C:\Windows\System32\mlang.dll - ok
22:52:09.0013 2516  [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
22:52:09.0013 2516  C:\Windows\System32\PhotoMetadataHandler.dll - ok
22:52:09.0019 2516  [ 8EAE03A0F0BF13AF27702E29460D7B47 ] C:\Users\HAL\AppData\Roaming\PC-Gizmos\ssleay32.dll
22:52:09.0019 2516  C:\Users\HAL\AppData\Roaming\PC-Gizmos\ssleay32.dll - ok
22:52:09.0025 2516  [ D5405DD640E870B1DD4F5B4BD08865BB ] C:\Users\HAL\AppData\Roaming\PC-Gizmos\libeay32.dll
22:52:09.0025 2516  C:\Users\HAL\AppData\Roaming\PC-Gizmos\libeay32.dll - ok
22:52:09.0031 2516  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
22:52:09.0031 2516  C:\Windows\SysWOW64\wsock32.dll - ok
22:52:09.0036 2516  [ 4EE367B8B1964160A1F1B80095183D3A ] C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
22:52:09.0037 2516  C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin - ok
22:52:09.0043 2516  [ B89137476D554DF13421DF8F5F5789EC ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll
22:52:09.0043 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\sal3.dll - ok
22:52:09.0049 2516  [ CCFA2FC955EE4CB4157AFDD5F11E52E7 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll
22:52:09.0049 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\uwinapi.dll - ok
22:52:09.0055 2516  [ 4513B7400878973F9B1BA71153B4F4CF ] C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll
22:52:09.0055 2516  C:\Program Files (x86)\OpenOffice.org 3\program\sofficeapp.dll - ok
22:52:09.0061 2516  [ FCD4E3223AB57109D09F03EF74D9B181 ] C:\Program Files (x86)\OpenOffice.org 3\program\comphelpMSC.dll
22:52:09.0061 2516  C:\Program Files (x86)\OpenOffice.org 3\program\comphelpMSC.dll - ok
22:52:09.0067 2516  [ 9262BF9AF67CA4499F7DAE1FB2AA58E0 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll
22:52:09.0067 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppuhelper3MSC.dll - ok
22:52:09.0074 2516  [ A0849FBA350AA979617856770F8AA1D2 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll
22:52:09.0074 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\salhelper3MSC.dll - ok
22:52:09.0079 2516  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
22:52:09.0079 2516  C:\Windows\System32\stobject.dll - ok
22:52:09.0085 2516  [ 7AD794FA7B80EC3F97097DA7E7011347 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll
22:52:09.0085 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\cppu3.dll - ok
22:52:09.0091 2516  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
22:52:09.0091 2516  C:\Windows\System32\batmeter.dll - ok
22:52:09.0096 2516  [ B6F943D2D99307BFD7D2ADFA3B866813 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll
22:52:09.0096 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stlport_vc7145.dll - ok
22:52:09.0102 2516  [ E6AEF6498578702ED3E8024D9792F30B ] C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll
22:52:09.0102 2516  C:\Program Files (x86)\OpenOffice.org 3\program\ucbhelper4MSC.dll - ok
22:52:09.0109 2516  [ C820C516CB162FD1845E2612A65536CB ] C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll
22:52:09.0109 2516  C:\Program Files (x86)\OpenOffice.org 3\program\vos3MSC.dll - ok
22:52:09.0114 2516  [ 7FB936AA67FA487F59529C9A4907685E ] C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmisc.dll
22:52:09.0114 2516  C:\Program Files (x86)\OpenOffice.org 3\program\deploymentmisc.dll - ok
22:52:09.0121 2516  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
22:52:09.0121 2516  C:\Windows\System32\prnfldr.dll - ok
22:52:09.0126 2516  [ 2FC3769842EB87578032E8B6C1DE9A08 ] C:\Program Files (x86)\OpenOffice.org 3\program\tl.dll
22:52:09.0126 2516  C:\Program Files (x86)\OpenOffice.org 3\program\tl.dll - ok
22:52:09.0132 2516  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
22:52:09.0132 2516  C:\Windows\System32\rundll32.exe - ok
22:52:09.0138 2516  [ 4167AE99A4CC521848E5471FA83A9EED ] C:\Program Files (x86)\OpenOffice.org 3\program\basegfx.dll
22:52:09.0138 2516  C:\Program Files (x86)\OpenOffice.org 3\program\basegfx.dll - ok
22:52:09.0144 2516  [ D2A90407F02E2B2B7D636EF402BEBA59 ] C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll


TDS 4th part (final)

 

 

22:52:09.0144 2516  C:\Program Files (x86)\OpenOffice.org 3\program\i18nisolang1MSC.dll - ok
22:52:09.0150 2516  [ E389EA130C4A9A4DBA0F138222261056 ] C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe
22:52:09.0150 2516  C:\Program Files\SUPERAntiSpyware\SSUpdate64.exe - ok
22:52:09.0155 2516  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
22:52:09.0156 2516  C:\Windows\System32\DXP.dll - ok
22:52:09.0161 2516  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
22:52:09.0161 2516  C:\Windows\SysWOW64\msxml3.dll - ok
22:52:09.0167 2516  [ 750726E5868345AB2D46850EB1E60DF9 ] C:\Program Files (x86)\OpenOffice.org 3\program\utl.dll
22:52:09.0167 2516  C:\Program Files (x86)\OpenOffice.org 3\program\utl.dll - ok
22:52:09.0173 2516  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
22:52:09.0173 2516  C:\Windows\System32\Syncreg.dll - ok
22:52:09.0178 2516  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
22:52:09.0178 2516  C:\Windows\ehome\ehSSO.dll - ok
22:52:09.0184 2516  [ 218B2BA51244F5285904AE03F5898112 ] C:\Program Files (x86)\OpenOffice.org 3\program\xcr.dll
22:52:09.0184 2516  C:\Program Files (x86)\OpenOffice.org 3\program\xcr.dll - ok
22:52:09.0190 2516  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
22:52:09.0190 2516  C:\Windows\System32\AudioSes.dll - ok
22:52:09.0196 2516  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
22:52:09.0196 2516  C:\Windows\System32\AltTab.dll - ok
22:52:09.0201 2516  [ 365EB15783B9BE4DB9C2A6064532B2BC ] C:\Program Files (x86)\OpenOffice.org 3\program\sfx.dll
22:52:09.0201 2516  C:\Program Files (x86)\OpenOffice.org 3\program\sfx.dll - ok
22:52:09.0207 2516  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
22:52:09.0207 2516  C:\Windows\System32\WPDShServiceObj.dll - ok
22:52:09.0213 2516  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
22:52:09.0213 2516  C:\Windows\System32\PortableDeviceTypes.dll - ok
22:52:09.0218 2516  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
22:52:09.0219 2516  C:\Windows\System32\mssprxy.dll - ok
22:52:09.0222 2516  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
22:52:09.0222 2516  C:\Windows\System32\pnidui.dll - ok
22:52:09.0228 2516  [ CDD76188ECF2EA78EB816151D0130327 ] C:\Program Files (x86)\OpenOffice.org 3\program\fwe.dll
22:52:09.0228 2516  C:\Program Files (x86)\OpenOffice.org 3\program\fwe.dll - ok
22:52:09.0234 2516  [ CC22C9FB26428FEAB01526F2A23B30FC ] C:\Program Files (x86)\OpenOffice.org 3\program\fwi.dll
22:52:09.0234 2516  C:\Program Files (x86)\OpenOffice.org 3\program\fwi.dll - ok
22:52:09.0240 2516  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
22:52:09.0240 2516  C:\Windows\System32\QUTIL.DLL - ok
22:52:09.0246 2516  [ ACF3A47CE86B6E89616C4D3A692A4422 ] C:\Program Files (x86)\OpenOffice.org 3\program\svl.dll
22:52:09.0246 2516  C:\Program Files (x86)\OpenOffice.org 3\program\svl.dll - ok
22:52:09.0252 2516  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
22:52:09.0252 2516  C:\Windows\System32\srchadmin.dll - ok
22:52:09.0258 2516  [ 336B257EC1D65F97B149BA032F41B428 ] C:\Program Files (x86)\OpenOffice.org 3\program\sot.dll
22:52:09.0258 2516  C:\Program Files (x86)\OpenOffice.org 3\program\sot.dll - ok
22:52:09.0263 2516  [ 47B8DEBEC68FACCD026F99CAE8698C93 ] C:\Windows\System32\webcheck.dll
22:52:09.0265 2516  C:\Windows\System32\webcheck.dll - ok
22:52:09.0269 2516  [ 561714DFA385FA4E35D81DCF8014377F ] C:\Program Files (x86)\OpenOffice.org 3\program\svt.dll
22:52:09.0270 2516  C:\Program Files (x86)\OpenOffice.org 3\program\svt.dll - ok
22:52:09.0275 2516  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
22:52:09.0275 2516  C:\Windows\System32\rasdlg.dll - ok
22:52:09.0281 2516  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
22:52:09.0281 2516  C:\Windows\System32\dot3api.dll - ok
22:52:09.0287 2516  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
22:52:09.0287 2516  C:\Windows\System32\wlanhlp.dll - ok
22:52:09.0292 2516  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
22:52:09.0292 2516  C:\Windows\System32\wlanapi.dll - ok
22:52:09.0299 2516  [ 5F49FBF4E018ABB9C4ADC4A8D57F9C76 ] C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll
22:52:09.0299 2516  C:\Program Files (x86)\OpenOffice.org 3\program\i18nutilMSC.dll - ok
22:52:09.0304 2516  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
22:52:09.0304 2516  C:\Windows\System32\onex.dll - ok
22:52:09.0310 2516  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
22:52:09.0310 2516  C:\Windows\System32\wlanutil.dll - ok
22:52:09.0316 2516  [ F6CB86F2E560E2536BBA522F97BC6039 ] C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll
22:52:09.0316 2516  C:\Program Files (x86)\OpenOffice.org 3\program\icuuc40.dll - ok
22:52:09.0323 2516  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
22:52:09.0323 2516  C:\Windows\System32\SyncCenter.dll - ok
22:52:09.0328 2516  [ EC00034A5D1E094FCFFA6AF27EBF9604 ] C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll
22:52:09.0328 2516  C:\Program Files (x86)\OpenOffice.org 3\program\icudt40.dll - ok
22:52:09.0333 2516  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
22:52:09.0333 2516  C:\Windows\System32\ActionCenter.dll - ok
22:52:09.0339 2516  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
22:52:09.0339 2516  C:\Windows\System32\imapi2.dll - ok
22:52:09.0345 2516  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
22:52:09.0345 2516  C:\Windows\System32\WWanAPI.dll - ok
22:52:09.0350 2516  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\66273993.sys
22:52:09.0350 2516  C:\Windows\System32\drivers\66273993.sys - ok
22:52:09.0356 2516  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
22:52:09.0356 2516  C:\Windows\System32\wwapi.dll - ok
22:52:09.0362 2516  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
22:52:09.0362 2516  C:\Windows\System32\QAGENT.DLL - ok
22:52:09.0368 2516  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
22:52:09.0368 2516  C:\Windows\System32\hgcpl.dll - ok
22:52:09.0373 2516  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
22:52:09.0373 2516  C:\Windows\System32\provsvc.dll - ok
22:52:09.0379 2516  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
22:52:09.0379 2516  C:\Windows\System32\bthprops.cpl - ok
22:52:09.0385 2516  [ 31DCF8ED7C7D8C87EB5379AD122A328E ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll
22:52:09.0385 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\jvmfwk3.dll - ok
22:52:09.0391 2516  [ 1330EA93145B834D1A6ED1F1AC3163FC ] C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
22:52:09.0391 2516  C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll - ok
22:52:09.0397 2516  [ EC120FACE13767CCFB18FB2EA170AC83 ] C:\Program Files (x86)\OpenOffice.org 3\program\tk.dll
22:52:09.0397 2516  C:\Program Files (x86)\OpenOffice.org 3\program\tk.dll - ok
22:52:09.0403 2516  [ E8832BCF29CC03F9A490C9AAC3056706 ] C:\Program Files (x86)\OpenOffice.org 3\program\vcl.dll
22:52:09.0403 2516  C:\Program Files (x86)\OpenOffice.org 3\program\vcl.dll - ok
22:52:09.0408 2516  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
22:52:09.0408 2516  C:\Windows\SysWOW64\riched20.dll - ok
22:52:09.0414 2516  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
22:52:09.0414 2516  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
22:52:09.0420 2516  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
22:52:09.0420 2516  C:\Windows\SysWOW64\duser.dll - ok
22:52:09.0425 2516  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
22:52:09.0425 2516  C:\Windows\SysWOW64\dui70.dll - ok
22:52:09.0431 2516  [ 5C801C9BC7A0317A14B7628FCCD2D17E ] C:\Program Files (x86)\OpenOffice.org 3\program\i18npaper.dll
22:52:09.0431 2516  C:\Program Files (x86)\OpenOffice.org 3\program\i18npaper.dll - ok
22:52:09.0438 2516  [ 557D165ABAC057F379D47E92F395405F ] C:\Program Files (x86)\OpenOffice.org 3\program\sax.dll
22:52:09.0438 2516  C:\Program Files (x86)\OpenOffice.org 3\program\sax.dll - ok
22:52:09.0443 2516  [ FBC74172F7246C9531CC46D159276971 ] C:\Program Files (x86)\OpenOffice.org 3\program\sb.dll
22:52:09.0443 2516  C:\Program Files (x86)\OpenOffice.org 3\program\sb.dll - ok
22:52:09.0449 2516  [ 6C0A96C3485D25236F3DB7D8A120F21A ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll
22:52:09.0449 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\msci_uno.dll - ok
22:52:09.0455 2516  [ 8506A78404B3B469A2382C509B7DB967 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll
22:52:09.0455 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\bootstrap.uno.dll - ok
22:52:09.0461 2516  [ 352A00C74C96FA5A41EA32BF4BFACA10 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll
22:52:09.0461 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\reg3.dll - ok
22:52:09.0467 2516  [ 66177DC56AC40A87F17C8B4333049D10 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll
22:52:09.0467 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\store3.dll - ok
22:52:09.0473 2516  [ 6238D624E7CF2C59E773C6D2A326C85B ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\xmlreader.dll
22:52:09.0473 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\xmlreader.dll - ok
22:52:09.0477 2516  [ 9E7C434E383D451D299EB7861ED1CECC ] C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll
22:52:09.0477 2516  C:\Program Files (x86)\OpenOffice.org 3\program\configmgr.uno.dll - ok
22:52:09.0484 2516  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
22:52:09.0484 2516  C:\Windows\System32\FXSST.dll - ok
22:52:09.0488 2516  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
22:52:09.0488 2516  C:\Windows\System32\FXSAPI.dll - ok
22:52:09.0494 2516  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
22:52:09.0494 2516  C:\Windows\System32\FXSRESM.dll - ok
22:52:09.0500 2516  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
22:52:09.0500 2516  C:\Windows\System32\FXSSVC.exe - ok
22:52:09.0505 2516  [ EA85B693F3B321A9DF90CFBD1673DAF2 ] C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll
22:52:09.0506 2516  C:\Program Files (x86)\OpenOffice.org 3\program\localebe1.uno.dll - ok
22:52:09.0511 2516  [ 10D5662D127EF17019513C7251E10117 ] C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll
22:52:09.0511 2516  C:\Program Files (x86)\OpenOffice.org 3\URE\bin\stocservices.uno.dll - ok
22:52:09.0517 2516  [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
22:52:09.0518 2516  C:\Windows\SysWOW64\Faultrep.dll - ok
22:52:09.0523 2516  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
22:52:09.0523 2516  C:\Windows\SysWOW64\wer.dll - ok
22:52:09.0529 2516  [ C68069DBAB5EF8861F6D54CC989D60D0 ] C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll
22:52:09.0529 2516  C:\Program Files (x86)\OpenOffice.org 3\program\ucb1.dll - ok
22:52:09.0535 2516  [ 032A6D7058EC06CA6CF73A6D0493ADA0 ] C:\Program Files (x86)\OpenOffice.org 3\program\fwk.dll
22:52:09.0535 2516  C:\Program Files (x86)\OpenOffice.org 3\program\fwk.dll - ok
22:52:09.0540 2516  [ F31AD307E2F5797B837C3932A7794D26 ] C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll
22:52:09.0541 2516  C:\Program Files (x86)\OpenOffice.org 3\program\ucpfile1.dll - ok
22:52:09.0547 2516  [ 41DFF500F0C1C438D0500F08DF8B827B ] C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll
22:52:09.0547 2516  C:\Program Files (x86)\OpenOffice.org 3\program\i18npool.uno.dll - ok
22:52:09.0554 2516  [ A8C4CDA29ED3598E38F25F12183849AF ] C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll
22:52:09.0554 2516  C:\Program Files (x86)\OpenOffice.org 3\program\icuin40.dll - ok
22:52:09.0560 2516  [ C64B09515203DC640FEFF8C1DE5721E0 ] C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll
22:52:09.0560 2516  C:\Program Files (x86)\OpenOffice.org 3\program\oleautobridge.uno.dll - ok
22:52:09.0565 2516  [ E91F3A5185FA77C0C540465C906F2BDE ] C:\Program Files (x86)\OpenOffice.org 3\program\emser.dll
22:52:09.0566 2516  C:\Program Files (x86)\OpenOffice.org 3\program\emser.dll - ok
22:52:09.0571 2516  [ A9AE9E65D5041249611D33A0FFDCEA8F ] C:\Program Files\Internet Explorer\ieproxy.dll
22:52:09.0571 2516  C:\Program Files\Internet Explorer\ieproxy.dll - ok
22:52:09.0577 2516  [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
22:52:09.0577 2516  C:\Windows\System32\StructuredQuery.dll - ok
22:52:09.0583 2516  [ 4E9592BB2C100E571F82640E59E9ECD5 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
22:52:09.0583 2516  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
22:52:09.0589 2516  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
22:52:09.0589 2516  C:\Windows\SysWOW64\wtsapi32.dll - ok
22:52:09.0595 2516  [ FB063A7D64A5F67DE13EFAEA55E60FEB ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\chrome.dll
22:52:09.0595 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\chrome.dll - ok
22:52:09.0601 2516  [ 311DC5224497C93AE966BAC37ACE0690 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\icudt.dll
22:52:09.0601 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\icudt.dll - ok
22:52:09.0607 2516  [ 71C4F42DC8DB668E826DA79462EA741E ] C:\Windows\SysWOW64\KBDUS.DLL
22:52:09.0607 2516  C:\Windows\SysWOW64\KBDUS.DLL - ok
22:52:09.0613 2516  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
22:52:09.0613 2516  C:\Windows\SysWOW64\AudioSes.dll - ok
22:52:09.0619 2516  [ 29CA5974FAB0E8AE4AA7814FE05CF832 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
22:52:09.0619 2516  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
22:52:09.0624 2516  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
22:52:09.0624 2516  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
22:52:09.0630 2516  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
22:52:09.0630 2516  C:\Windows\SysWOW64\MMDevAPI.dll - ok
22:52:09.0636 2516  [ 236360CE5E4C3F063AC110533747C0A8 ] C:\Windows\SysWOW64\Wpc.dll
22:52:09.0636 2516  C:\Windows\SysWOW64\Wpc.dll - ok
22:52:09.0641 2516  [ 5BF8E37FA1E25227480F9CD2ACA21FB6 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\d3dcompiler_46.dll
22:52:09.0641 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\d3dcompiler_46.dll - ok
22:52:09.0647 2516  [ 82C089EA2A3EEFADF3588EA71E8BDADA ] C:\Windows\SysWOW64\wevtapi.dll
22:52:09.0647 2516  C:\Windows\SysWOW64\wevtapi.dll - ok
22:52:09.0653 2516  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
22:52:09.0653 2516  C:\Windows\SysWOW64\samcli.dll - ok
22:52:09.0658 2516  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
22:52:09.0658 2516  C:\Windows\SysWOW64\samlib.dll - ok
22:52:09.0664 2516  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
22:52:09.0664 2516  C:\Windows\SysWOW64\mssprxy.dll - ok
22:52:09.0670 2516  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
22:52:09.0670 2516  C:\Windows\SysWOW64\winsta.dll - ok
22:52:09.0676 2516  [ 3A16EA01FCFAAB40882DB5BFEE632322 ] C:\Windows\SysWOW64\msftedit.dll
22:52:09.0676 2516  C:\Windows\SysWOW64\msftedit.dll - ok
22:52:09.0681 2516  [ FD56467B28653F26B4D061E06C2582D3 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll
22:52:09.0682 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libglesv2.dll - ok
22:52:09.0687 2516  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
22:52:09.0687 2516  C:\Windows\SysWOW64\d3d9.dll - ok
22:52:09.0693 2516  [ 6FDF222B791EA2E12F54C320EADF28C4 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll
22:52:09.0693 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\pdf.dll - ok
22:52:09.0699 2516  [ E98278865E8DABA21CFE5FE4BE34210A ] C:\Windows\SysWOW64\PortableDeviceApi.dll
22:52:09.0699 2516  C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
22:52:09.0706 2516  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
22:52:09.0706 2516  C:\Windows\SysWOW64\d3d8thk.dll - ok
22:52:09.0712 2516  [ 462805D756FE1C3E64713D4435F1F6F3 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll
22:52:09.0712 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\libegl.dll - ok
22:52:09.0717 2516  [ EDD4E278C5A6E9E7D5493ACD00A528E0 ] C:\Windows\SysWOW64\nvd3dum.dll
22:52:09.0717 2516  C:\Windows\SysWOW64\nvd3dum.dll - ok
22:52:09.0723 2516  [ 934EF71F24C5C1641DB6E13E3EFF0A78 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppgooglenaclpluginchrome.dll
22:52:09.0724 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ppgooglenaclpluginchrome.dll - ok
22:52:09.0727 2516  [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
22:52:09.0727 2516  C:\Windows\SysWOW64\mscms.dll - ok
22:52:09.0734 2516  [ 88A5FC956921F2E39EC8CA6363B11749 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll
22:52:09.0734 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\ffmpegsumo.dll - ok
22:52:09.0739 2516  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
22:52:09.0739 2516  C:\Windows\SysWOW64\powrprof.dll - ok
22:52:09.0744 2516  [ 1F27643C4C626457FCE8F047AE1CD7E1 ] C:\Windows\SysWOW64\dxva2.dll
22:52:09.0744 2516  C:\Windows\SysWOW64\dxva2.dll - ok
22:52:09.0750 2516  [ FDBA1DEC4F9BE4274A00B9B850C63484 ] C:\Windows\SysWOW64\mf.dll
22:52:09.0750 2516  C:\Windows\SysWOW64\mf.dll - ok
22:52:09.0756 2516  [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
22:52:09.0756 2516  C:\Windows\SysWOW64\atl.dll - ok
22:52:09.0761 2516  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
22:52:09.0761 2516  C:\Windows\SysWOW64\mfplat.dll - ok
22:52:09.0767 2516  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
22:52:09.0767 2516  C:\Windows\SysWOW64\avrt.dll - ok
22:52:09.0772 2516  [ 9C67F6BBDA3881CFD02095160CF91576 ] C:\Windows\SysWOW64\ksuser.dll
22:52:09.0772 2516  C:\Windows\SysWOW64\ksuser.dll - ok
22:52:09.0778 2516  [ 3DE43BFDAF3F8979699650202AA18B12 ] C:\Windows\SysWOW64\msmpeg2vdec.dll
22:52:09.0778 2516  C:\Windows\SysWOW64\msmpeg2vdec.dll - ok
22:52:09.0784 2516  [ 53AF1750FD45DDD705C9B68C7DC58827 ] C:\Windows\SysWOW64\evr.dll
22:52:09.0784 2516  C:\Windows\SysWOW64\evr.dll - ok
22:52:09.0789 2516  [ CE292C4C10B8DB6070F262EA2733F0DC ] C:\Windows\SysWOW64\sqmapi.dll
22:52:09.0789 2516  C:\Windows\SysWOW64\sqmapi.dll - ok
22:52:09.0795 2516  [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
22:52:09.0795 2516  C:\Windows\SysWOW64\actxprxy.dll - ok
22:52:09.0801 2516  [ E0A95E4B2F08FD767E9B537D975A9337 ] C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
22:52:09.0801 2516  C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll - ok
22:52:09.0807 2516  [ 5689804A4016EAF199C7FA2E3C88778F ] C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
22:52:09.0807 2516  C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll - ok
22:52:09.0813 2516  [ 3D928B3FE97C403A33F803B3D1A260C9 ] C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
22:52:09.0813 2516  C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll - ok
22:52:09.0820 2516  [ A843FC35574ECFD9E7A41C5505A9921B ] C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
22:52:09.0820 2516  C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll - ok
22:52:09.0825 2516  [ E64819B6014A93E2503BB52419A0F6F3 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
22:52:09.0825 2516  C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll - ok
22:52:09.0830 2516  [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
22:52:09.0830 2516  C:\Windows\SysWOW64\linkinfo.dll - ok
22:52:09.0837 2516  [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
22:52:09.0837 2516  C:\Windows\System32\wscinterop.dll - ok
22:52:09.0843 2516  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
22:52:09.0843 2516  C:\Windows\System32\wscapi.dll - ok
22:52:09.0848 2516  [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
22:52:09.0848 2516  C:\Windows\System32\wscui.cpl - ok
22:52:09.0854 2516  [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
22:52:09.0854 2516  C:\Windows\System32\werconcpl.dll - ok
22:52:09.0860 2516  [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
22:52:09.0860 2516  C:\Windows\System32\wercplsupport.dll - ok
22:52:09.0865 2516  [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
22:52:09.0866 2516  C:\Windows\System32\hcproviders.dll - ok
22:52:09.0869 2516  ============================================================
22:52:09.0869 2516  Scan finished
22:52:09.0869 2516  ============================================================
22:52:09.0879 1180  Detected object count: 1
22:52:09.0879 1180  Actual detected object count: 1
22:52:25.0030 1180  !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
22:52:25.0030 1180  !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip 


#13 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 16 May 2013 - 11:06 PM

Rogue Killer:

 

 

RogueKiller V8.5.4 _x64_ [Mar 18 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
 
Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : HAL [Admin rights]
Mode : Remove -- Date : 05/16/2013 23:06:10
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 2 ¤¤¤
[SUSP PATH] B6D8875D-57EC-442F-820C-64077947430A.exe -- C:\Users\HAL\AppData\Local\Temp\B6D8875D-57EC-442F-820C-64077947430A.exe [7] -> KILLED [TermProc]
[SUSP PATH] PC_136519.en_76.exe -- C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe [7] -> KILLED [TermProc]
 
¤¤¤ Registry Entries : 6 ¤¤¤
[RUN][SUSP PATH] HKCU\[...]\Run : PC_GIZMOS ("C:\Users\HAL\AppData\Roaming\PC-Gizmos\PC_136519.en_76.exe" --update) [7] -> DELETED
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ] HKLM\[...]\System : ConsentPromptBehaviorAdmin (0) -> REPLACED (2)
[HJ] HKLM\[...]\System : EnableLUA (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [NOT LOADED] ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts
 
127.0.0.1       localhost
127.0.0.1 pc-gizmos-ssl.com www.pc-gizmos-ssl.com # added by PC-Gizmos.com
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: ST350041 8AS SCSI Disk Device +++++
--- User ---
[MBR] 775c55447cef98a01ce0c16ffb63359a
[BSP] ceb84c3e7b096f62a58a22cb4210973b : Windows 7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 465672 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 953903104 | Size: 11152 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
 
Finished : << RKreport[2]_D_05162013_02d2306.txt >>
RKreport[1]_S_05162013_02d2305.txt ; RKreport[2]_D_05162013_02d2306.txt


#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:12 PM

Posted 17 May 2013 - 12:12 AM


Hello 2013again!

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"
  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?
Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 2013again!

2013again!
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:12 PM

Posted 17 May 2013 - 12:15 AM

Just to be clear - Run Combofix again?

 

I ran it /posted the log above.

 

http://www.bleepingcomputer.com/forums/t/494859/zeroaccess-rootkit-elevated-help-please/?p=3052703


Edited by 2013again!, 17 May 2013 - 12:17 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users