Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with newest version of ZeroAccess rootkit and cannot update windows


  • This topic is locked This topic is locked
41 replies to this topic

#1 falcon163

falcon163

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 20 May 2013 - 08:19 PM

Hi,

 

I'm having troubles with my laptop lately, as both my security softwares were taken down, and now I'm running on Avast! and spybots. I used super-anti spyware and it removed a trojan however the removal seemed to be unclean as there's still a startup registry for the malware which kept on regenerating. In addition I discovered lately that my windows update with an error code of 0x80073712 have failed multiple times, and none of the solutions provided by Microsoft resolved the problem. 

 

I have unsuccesfully uninstalled MSE via Fix it from Microsoft, and now have inaccessible directories to the folders of MSE.

 

Please help me and thanks in advance for the support! In addition can you please tell me what may have causes the infection?

 

Here's the log of my DDS scan: 

 

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 9.0.8112.16476  BrowserJavaVersion: 10.21.2
Run by Wei Hsiang Huang at 11:12:30 on 2013-05-21
Microsoft Windows 7 Home Premium   6.1.7601.1.950.886.1033.18.8146.4324 [GMT 10:00]
.
AV: avast! Internet Security *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Trend Micro Titanium Internet Security 2012 *Disabled/Updated* {B7599298-8445-728A-A5C7-A26A082C8BDA}
SP: avast! Internet Security *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Trend Micro Titanium Internet Security 2012 *Disabled/Updated* {0C38737C-A27F-7D04-9F77-991873ABC167}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: avast! Internet Security *Enabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
C:\Windows\system32\WLANExt.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
C:\Program Files\ASUS\P4G\BatteryLife.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\ASUS Gaming Mouse GX850\hid.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files\Elantech\ETDGesture.exe
C:\Program Files (x86)\ASUS Gaming Mouse GX850\Tray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
C:\Program Files (x86)\ASUS Gaming Mouse GX850\OSD.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
C:\Windows\splwow64.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\vssvc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://asus.msn.com
uDefault_Page_URL = hxxp://asus.msn.com
mStart Page = hxxp://asus.msn.com
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe,
BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll
BHO: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - <orphaned>
BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\7.1.1104\7.1.1104\TmBpIe32.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - 
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
uRun: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
uRun: [Otyfe] "C:\Users\Wei Hsiang Huang\AppData\Roaming\Moabwo\uvus.exe"
mRun: [USB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
mRun: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [ROGGX850] "C:\Program Files (x86)\ASUS Gaming Mouse GX850\hid.exe"
mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
mRun: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
mRun: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSPanel.exe /S
mRun: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
mRun: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
dRun: [PPS Accelerator] D:\PPS.tv\PPStream\PPSKernel.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ASUSVI~1.LNK - C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - C:\Users\Wei Hsiang Huang\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 130.102.158.148 130.102.158.150 130.102.2.15
TCP: Interfaces\{7E4B22B8-7811-41AD-8EAF-CD53DC1286E6} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{8BBC98D5-31E8-41C4-8DB1-26463AD033F4} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{8BBC98D5-31E8-41C4-8DB1-26463AD033F4}\368647D277966696 : DHCPNameServer = 192.168.0.1
TCP: Interfaces\{8BBC98D5-31E8-41C4-8DB1-26463AD033F4}\4574444402D202C45602441696028416E686 : DHCPNameServer = 192.168.3.5 192.168.1.5
TCP: Interfaces\{8BBC98D5-31E8-41C4-8DB1-26463AD033F4}\B496E646E65637370286F64756C6023364D213 : DHCPNameServer = 168.95.192.1 168.95.1.1
TCP: Interfaces\{D3F1F4C0-4298-4C96-935F-378CA61C2795} : DHCPNameServer = 130.102.158.148 130.102.158.150 130.102.2.15
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\7.1.1104\7.1.1104\TmBpIe32.dll
Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1361\6.8.1078\TmIEPlg32.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = hxxp://asus.msn.com
x64-BHO: TmIEPlugInBHO Class: {1CA1377B-DC1D-4A52-9585-6E06050FAC53} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1361\6.8.1078\TmIEPlg.dll
x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: TmBpIeBHO Class: {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} - C:\Program Files\Trend Micro\AMSP\module\20002\7.1.1104\7.1.1104\TmBpIe64.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [Trend Micro Client Framework] "C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe"
x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [AmIcoSinglun64] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\7.1.1104\7.1.1104\TmBpIe64.dll
x64-Handler: tmpx - {0E526CB5-7446-41D1-A403-19BFE95E8C23} - C:\Program Files\Trend Micro\AMSP\module\20004\2.0.1361\6.8.1078\TmIEPlg.dll
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Wei Hsiang Huang\AppData\Roaming\Mozilla\Firefox\Profiles\ft8mdspn.default-1367207047138\
FF - prefs.js: browser.startup.homepage - www.google.com.au
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\1.138.0\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\2.1.3\npesnlaunch.dll
FF - plugin: C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll
FF - plugin: C:\Program Files (x86)\Common Files\Wolfram Research\Browser\8.0.4.2609412\npmathplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll
FF - plugin: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypchub.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Users\Wei Hsiang Huang\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
FF - plugin: C:\Users\Wei Hsiang Huang\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll
FF - ExtSQL: 2013-05-07 20:46; wrc@avast.com; C:\Program Files\AVAST Software\Avast\WebRep\FF
.
---- FIREFOX POLICIES ----
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
============= SERVICES / DRIVERS ===============
.
R0 aswKbd;aswKbd;C:\Windows\System32\drivers\aswKbd.sys [2013-5-7 22600]
R0 aswNdis;avast! Firewall NDIS Filter Service;C:\Windows\System32\drivers\aswNdis.sys [2013-5-8 12368]
R0 aswNdis2;avast! Firewall Core Firewall Service;C:\Windows\System32\drivers\aswNdis2.sys [2013-5-8 270824]
R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-5-7 65336]
R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-5-7 189936]
R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver;C:\Windows\System32\drivers\iusb3hcs.sys [2012-5-7 16152]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2012-9-6 55856]
R1 aswFW;avast! TDI Firewall driver;C:\Windows\System32\drivers\aswFW.sys [2013-5-8 131232]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-5-7 1025808]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-5-7 378432]
R1 ATKWMIACPIIO;ATKWMIACPI Driver;C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-9-7 17536]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-9-23 283200]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-23 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-13 12368]
R1 tmevtmgr;tmevtmgr;C:\Windows\System32\drivers\tmevtmgr.sys [2012-3-10 77184]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-12 140672]
R2 ASMMAP64;ASMMAP64;C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-7-2 15416]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-5-7 33400]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-5-7 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-5-13 46808]
R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-5-13 137960]
R2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2013-5-7 1153368]
R3 AiCharger;ASUS Charger Driver;C:\Windows\System32\drivers\AiCharger.sys [2012-9-6 17152]
R3 AMPPAL;IntelR CentrinoR Wireless BluetoothR + High Speed Virtual Adapter;C:\Windows\System32\drivers\AmpPal.sys [2012-1-9 195584]
R3 BBUpdate;BBUpdate;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.EXE [2012-6-11 240208]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\drivers\btmaux.sys [2011-12-14 94720]
R3 btmhsf;btmhsf;C:\Windows\System32\drivers\btmhsf.sys [2011-12-14 747008]
R3 ETD;ELAN PS/2 Port Input Device;C:\Windows\System32\drivers\ETD.sys [2012-5-7 200488]
R3 ibtfltcoex;ibtfltcoex;C:\Windows\System32\drivers\iBtFltCoex.sys [2011-12-15 60416]
R3 iusb3hub;Intel® USB 3.0 Hub Driver;C:\Windows\System32\drivers\iusb3hub.sys [2012-5-7 356120]
R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver;C:\Windows\System32\drivers\iusb3xhc.sys [2012-5-7 787736]
R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;C:\Windows\System32\drivers\L1C62x64.sys [2012-5-7 108656]
R3 PXGX112;Laser Gaming Mouse GX850;C:\Windows\System32\drivers\PXGX112.sys [2013-1-11 23552]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\System32\drivers\viahduaa.sys [2012-5-7 2193008]
S2 BBSvc;BingBar Service;C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE [2012-6-11 193616]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S3 AMPPALP;IntelR CentrinoR Wireless BluetoothR + High Speed Protocol;C:\Windows\System32\drivers\AmpPal.sys [2012-1-9 195584]
S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2012-3-10 48488]
S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-14 1492840]
S3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2012-12-16 25928]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-12-19 19456]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;C:\Windows\System32\drivers\SiSG664.sys [2009-6-11 56832]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-12-19 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-12-19 30208]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-9-8 1255736]
S4 AMPPALR3;IntelR CentrinoR Wireless BluetoothR + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-1-9 659968]
S4 Amsp;Trend Micro Solution Platform;C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe [2012-3-10 275912]
S4 ASUS InstantOn;ASUS InstantOn Service;C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-4-14 277120]
S4 AsusUacSvc;Asus process privilege adjust service;C:\Program Files\ASUS\Rotation Desktop for G Series\AsusUacSvc.exe [2012-9-6 113840]
S4 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-12-20 1014096]
S4 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-12-20 1304912]
S4 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-12-20 1104208]
S4 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-1-12 135952]
S4 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-3 628448]
S4 Intel® ME Service;Intel® ME Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [2012-9-6 128280]
S4 jhi_service;Intel® Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe [2012-9-6 161560]
S4 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-16 418376]
S4 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-16 701512]
S4 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-12-9 273168]
S4 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-28 161384]
S4 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-1-1 155320]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-2-26 382272]
S4 UNS;Intel® Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2012-9-6 363800]
S4 VIAKaraokeService;VIA Karaoke digital mixer Service;C:\Windows\System32\ViakaraokeSrv.exe [2012-5-7 27760]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
S4 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2011-12-9 594704]
.
=============== Created Last 30 ================
.
2013-05-20 22:14:42 262552 ----a-w- C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
2013-05-20 15:17:07 -------- d-----w- C:\Windows\CheckSur
2013-05-12 01:59:26 -------- d-----w- C:\Users\Wei Hsiang Huang\AppData\Local\Game Dev Tycoon
2013-05-12 01:59:11 -------- d-----w- C:\Program Files (x86)\Game Dev Tycoon v1.3.2
2013-05-07 15:56:04 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-05-07 15:29:48 270824 ----a-w- C:\Windows\System32\drivers\aswNdis2.sys
2013-05-07 15:29:48 131232 ----a-w- C:\Windows\System32\drivers\aswFW.sys
2013-05-07 15:29:48 12368 ----a-w- C:\Windows\System32\drivers\aswNdis.sys
2013-05-07 12:54:27 22600 ----a-w- C:\Windows\System32\drivers\aswKbd.sys
2013-05-07 11:27:33 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2013-05-07 11:27:33 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2013-05-07 10:46:46 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-05-07 10:46:46 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2013-05-07 10:46:46 189936 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2013-05-07 10:46:46 1025808 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-05-07 10:46:45 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2013-05-07 10:46:32 41664 ----a-w- C:\Windows\avastSS.scr
2013-05-07 10:46:22 -------- d-----w- C:\Program Files\AVAST Software
2013-05-07 10:45:26 -------- d-----w- C:\ProgramData\AVAST Software
2013-05-07 07:06:09 -------- d-----w- C:\Users\Wei Hsiang Huang\AppData\Roaming\SUPERAntiSpyware.com
2013-05-07 07:06:05 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
2013-05-07 07:06:05 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2013-05-07 04:45:37 -------- d-----w- C:\ProgramData\PrevxCSI
2013-05-07 04:44:36 -------- d-----w- C:\ProgramData\Kaspersky Lab
2013-05-07 02:25:42 -------- d-----w- C:\Program Files (x86)\ESET
2013-05-07 02:22:17 3020 ----a-w- C:\FixitRegBackup.reg
2013-05-03 07:57:13 -------- d-----w- C:\Program Files (x86)\THQ
2013-04-30 04:41:01 737072 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2013-04-30 04:40:42 2876528 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2013-04-30 04:40:27 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2013-04-30 04:40:18 539984 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2013-04-27 06:48:17 298032 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe
2013-04-27 06:48:16 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe
2013-04-27 06:48:15 2580552 ----a-w- C:\Windows\SysWow64\pbsvc.exe
2013-04-27 06:25:27 -------- d-----w- C:\Users\Wei Hsiang Huang\AppData\Local\ESN
2013-04-25 13:04:41 -------- d-----w- C:\Users\Wei Hsiang Huang\AppData\Local\Warframe
2013-04-24 01:23:52 1656680 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2013-04-21 13:11:26 -------- d-----w- C:\Users\Wei Hsiang Huang\AppData\Roaming\EndNote
2013-04-21 13:10:52 -------- d-----w- C:\Program Files (x86)\Common Files\Risxtd
2013-04-21 13:09:50 -------- d-----w- C:\Program Files (x86)\EndNote X4
2013-04-21 13:08:42 -------- d-----w- C:\ProgramData\Thomson.ResearchSoft.Installers
.
==================== Find3M  ====================
.
2013-05-20 21:22:23 380 ----a-w- C:\Users\Wei Hsiang Huang\AppData\Roaming\sp_data.sys
2013-05-20 01:55:02 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-20 01:55:02 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-05-02 15:29:56 278800 ------w- C:\Windows\System32\MpSigStub.exe
2013-05-02 06:55:40 298032 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr
2013-04-29 02:07:16 291088 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0
2013-04-04 04:50:32 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-03-19 06:04:06 5550424 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-03-19 05:46:56 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2013-03-19 05:04:13 3968856 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04:10 3913560 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47:50 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2013-03-19 03:06:33 112640 ----a-w- C:\Windows\System32\smss.exe
2013-03-07 00:15:44 861088 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-03-07 00:15:44 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-03-01 03:36:04 3153408 ----a-w- C:\Windows\System32\win32k.sys
2013-02-22 06:27:49 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-02-22 06:20:51 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-02-22 06:19:37 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-02-22 06:15:48 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-02-22 06:15:23 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-02-22 06:12:41 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-02-22 03:46:00 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-02-22 03:38:00 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-02-22 03:37:50 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-02-22 03:34:17 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-02-22 03:34:03 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-02-22 03:31:46 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-07-12 08:19:00 2174976 ----a-w- C:\Program Files (x86)\Common Files\atimpenc.dll
.
============= FINISH: 11:13:08.19 ===============


BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:07:27 PM

Posted 20 May 2013 - 09:55 PM

Hello falcon163,

  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
      
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
      
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

      
  • Finally, please reply using the Post  button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.

 

 

1.

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    image000q.png
  • Put a checkmark beside loaded modules.
    2012081514h0118.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    2012081517h0349.png
  • Click the Start Scan button.
    19695967.jpg
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    67776163.jpg
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

 

2.

Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop

Link 1
Link 2

  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.  It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • RcAuto1.gif
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    whatnext.png
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.
 

 

Things to include in your next reply::

TdssKiller log

Combofix.txt

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 21 May 2013 - 01:36 AM

Log seemed to be too long, so I decided to divide in half, sorry for my delay.
 
15:25:50.0104 4628  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:25:50.0104 4628  UEFI system
15:25:52.0116 4628  ============================================================
15:25:52.0116 4628  Current date / time: 2013/05/21 15:25:52.0116
15:25:52.0116 4628  SystemInfo:
15:25:52.0116 4628  
15:25:52.0116 4628  OS Version: 6.1.7601 ServicePack: 1.0
15:25:52.0116 4628  Product type: Workstation
15:25:52.0116 4628  ComputerName: FALCON
15:25:52.0116 4628  UserName: Wei Hsiang Huang
15:25:52.0116 4628  Windows directory: C:\Windows
15:25:52.0116 4628  System windows directory: C:\Windows
15:25:52.0116 4628  Running under WOW64
15:25:52.0116 4628  Processor architecture: Intel x64
15:25:52.0116 4628  Number of processors: 8
15:25:52.0116 4628  Page size: 0x1000
15:25:52.0116 4628  Boot type: Normal boot
15:25:52.0116 4628  ============================================================
15:25:53.0504 4628  BG loaded
15:25:53.0910 4628  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:25:53.0926 4628  ============================================================
15:25:53.0926 4628  \Device\Harddisk0\DR0:
15:25:53.0941 4628  GPT partitions:
15:25:53.0957 4628  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {DFFFF8D2-95BF-4DF6-A3E7-B39195BABD34}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x64000
15:25:53.0957 4628  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {72AAF334-6263-466A-9D6D-105CB50B2363}, Name: Microsoft reserved partition, StartLBA 0x64800, BlocksNum 0x40000
15:25:53.0957 4628  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {CA8DCA8D-08DB-467B-90DC-C288605E205B}, Name: Basic data partition, StartLBA 0xA4800, BlocksNum 0x2E891800
15:25:53.0957 4628  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {E1514FBE-79FA-4F6D-B9CC-9CA0F6F9D767}, Name: Basic data partition, StartLBA 0x2E936000, BlocksNum 0x42BD0800
15:25:53.0957 4628  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {9F957CE9-B416-4055-866C-DC5D1DF83A85}, Name: Basic data partition, StartLBA 0x71506800, BlocksNum 0x3200000
15:25:53.0957 4628  MBR partitions:
15:25:53.0957 4628  ============================================================
15:25:54.0082 4628  C: <-> \Device\Harddisk0\DR0\Partition3
15:25:54.0331 4628  D: <-> \Device\Harddisk0\DR0\Partition4
15:25:54.0331 4628  ============================================================
15:25:54.0331 4628  Initialize success
15:25:54.0331 4628  ============================================================
15:26:22.0388 3964  ============================================================
15:26:22.0388 3964  Scan started
15:26:22.0388 3964  Mode: Manual; SigCheck; TDLFS; 
15:26:22.0388 3964  ============================================================
15:26:51.0951 3964  ================ Scan system memory ========================
15:26:51.0951 3964  System memory - ok
15:26:51.0951 3964  ================ Scan services =============================
15:26:53.0667 3964  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
15:28:02.0431 3964  !SASCORE ( UnsignedFile.Multi.Generic ) - warning
15:28:02.0431 3964  !SASCORE - detected UnsignedFile.Multi.Generic (1)
15:28:15.0040 3964  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:28:15.0103 3964  1394ohci - ok
15:28:16.0917 3964  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:28:17.0093 3964  ACPI - ok
15:28:17.0517 3964  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:28:19.0481 3964  AcpiPmi - ok
15:28:24.0036 3964  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:28:25.0003 3964  AdobeARMservice - ok
15:28:29.0970 3964  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:28:30.0001 3964  AdobeFlashPlayerUpdateSvc - ok
15:28:30.0713 3964  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:28:30.0965 3964  adp94xx - ok
15:28:31.0312 3964  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:28:31.0564 3964  adpahci - ok
15:28:31.0687 3964  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:28:31.0721 3964  adpu320 - ok
15:28:31.0933 3964  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:28:31.0981 3964  AeLookupSvc - ok
15:28:32.0776 3964  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
15:28:32.0977 3964  AFD - ok
15:28:33.0412 3964  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
15:28:33.0611 3964  AgereSoftModem - ok
15:28:34.0053 3964  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
15:28:34.0081 3964  agp440 - ok
15:28:34.0936 3964  [ 16F6F6B7903B913AB41AB848C8BB5658 ] AiCharger       C:\Windows\system32\DRIVERS\AiCharger.sys
15:28:35.0002 3964  AiCharger - ok
15:28:35.0056 3964  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
15:28:35.0385 3964  ALG - ok
15:28:35.0678 3964  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:28:35.0919 3964  aliide - ok
15:28:36.0098 3964  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
15:28:36.0116 3964  amdide - ok
15:28:36.0298 3964  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:28:36.0382 3964  AmdK8 - ok
15:28:36.0413 3964  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:28:36.0816 3964  AmdPPM - ok
15:28:37.0348 3964  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:28:37.0623 3964  amdsata - ok
15:28:37.0741 3964  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:28:37.0772 3964  amdsbs - ok
15:28:38.0024 3964  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:28:38.0038 3964  amdxata - ok
15:28:38.0620 3964  [ 1C591C1A0CB8ABE215FF66F9A1D8E955 ] AMPPAL          C:\Windows\system32\DRIVERS\AMPPAL.sys
15:28:38.0763 3964  AMPPAL - ok
15:28:38.0920 3964  [ 1C591C1A0CB8ABE215FF66F9A1D8E955 ] AMPPALP         C:\Windows\system32\DRIVERS\amppal.sys
15:28:38.0929 3964  AMPPALP - ok
15:28:40.0342 3964  [ E1841818278F2A9D66F834451D608AEA ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
15:28:40.0741 3964  AMPPALR3 - ok
15:28:41.0632 3964  [ 1B7D1F0A0DFADBC797C16364792A7AA5 ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
15:28:41.0676 3964  Amsp - ok
15:28:41.0819 3964  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
15:28:41.0926 3964  AppID - ok
15:28:47.0196 3964  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:28:47.0280 3964  AppIDSvc - ok
15:28:47.0627 3964  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
15:28:47.0779 3964  Appinfo - ok
15:28:47.0944 3964  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
15:28:47.0997 3964  arc - ok
15:28:48.0641 3964  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:28:48.0661 3964  arcsas - ok
15:28:50.0754 3964  [ D01D1B40EEF27F64B45165CE0ACDE6CD ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
15:28:50.0763 3964  ASLDRService - ok
15:28:51.0215 3964  [ 4C016FD76ED5C05E84CA8CAB77993961 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
15:28:51.0222 3964  ASMMAP64 - ok
15:28:53.0476 3964  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:28:54.0268 3964  aspnet_state - ok
15:28:54.0454 3964  [ 6A122B4F0E5293CACFA8A5F2CBA9B356 ] ASUS InstantOn  C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
15:28:54.0560 3964  ASUS InstantOn - ok
15:28:55.0657 3964  [ B6EF28ECEE73B624D56DF30AD562AE8D ] AsusUacSvc      C:\Program Files\Asus\Rotation Desktop for G Series\AsusUacSvc.exe
15:28:55.0802 3964  AsusUacSvc ( UnsignedFile.Multi.Generic ) - warning
15:28:55.0802 3964  AsusUacSvc - detected UnsignedFile.Multi.Generic (1)
15:28:56.0359 3964  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
15:28:56.0367 3964  aswFsBlk - ok
15:28:56.0721 3964  [ 7A62C389380F6FF3FA952D511D8790B8 ] aswFW           C:\Windows\system32\drivers\aswFW.sys
15:28:56.0730 3964  aswFW - ok
15:28:57.0045 3964  [ 890918D53B80B474CFAFB48995B85AF3 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
15:28:57.0062 3964  aswKbd - ok
15:28:57.0424 3964  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
15:28:57.0432 3964  aswMonFlt - ok
15:28:58.0251 3964  [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis         C:\Windows\system32\DRIVERS\aswNdis.sys
15:28:58.0303 3964  aswNdis - ok
15:28:58.0464 3964  [ 94CCA87794454E1824D59B092B9F70C4 ] aswNdis2        C:\Windows\system32\drivers\aswNdis2.sys
15:28:58.0515 3964  aswNdis2 - ok
15:28:58.0838 3964  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
15:28:58.0846 3964  aswRdr - ok
15:28:59.0261 3964  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
15:28:59.0292 3964  aswRvrt - ok
15:29:01.0000 3964  [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
15:29:01.0018 3964  aswSnx - ok
15:29:01.0706 3964  [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP           C:\Windows\system32\drivers\aswSP.sys
15:29:01.0717 3964  aswSP - ok
15:29:01.0760 3964  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
15:29:01.0768 3964  aswTdi - ok
15:29:01.0814 3964  [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
15:29:01.0829 3964  aswVmm - ok
15:29:02.0019 3964  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:29:02.0757 3964  AsyncMac - ok
15:29:02.0854 3964  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
15:29:02.0878 3964  atapi - ok
15:29:03.0317 3964  [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
15:29:03.0718 3964  athr - ok
15:29:03.0816 3964  [ DBC598E47E7A382E60E2A4745D41FEF9 ] ATKGFNEXSrv     C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
15:29:03.0824 3964  ATKGFNEXSrv - ok
15:29:04.0502 3964  [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
15:29:04.0510 3964  ATKWMIACPIIO - ok
15:29:05.0310 3964  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:29:06.0023 3964  AudioEndpointBuilder - ok
15:29:06.0350 3964  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:29:06.0377 3964  AudioSrv - ok
15:29:07.0856 3964  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:29:07.0864 3964  avast! Antivirus - ok
15:29:08.0173 3964  [ C2009C6A452BD07B30D773349589B762 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
15:29:08.0182 3964  avast! Firewall - ok
15:29:08.0866 3964  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:29:09.0364 3964  AxInstSV - ok
15:29:09.0667 3964  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:29:10.0329 3964  b06bdrv - ok
15:29:12.0595 3964  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:29:12.0862 3964  b57nd60a - ok
15:29:13.0939 3964  [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
15:29:13.0949 3964  BBSvc - ok
15:29:16.0683 3964  [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
15:29:16.0771 3964  BBUpdate - ok
15:29:16.0863 3964  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:29:17.0552 3964  BDESVC - ok
15:29:17.0621 3964  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:29:17.0756 3964  Beep - ok
15:29:19.0271 3964  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
15:29:19.0457 3964  BFE - ok
15:29:21.0774 3964  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
15:29:21.0854 3964  BITS - ok
15:29:22.0056 3964  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:29:22.0091 3964  blbdrive - ok
15:29:23.0469 3964  [ 05981C3E51D827ED6B8101A54B05E392 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
15:29:23.0510 3964  Bluetooth Device Monitor - ok
15:29:24.0306 3964  [ BBFAF63BF768047FE2441B4139E803E3 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
15:29:24.0953 3964  Bluetooth Media Service - ok
15:29:25.0936 3964  [ 41D8F56E6BBE0111244D87BE2FA90374 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
15:29:26.0056 3964  Bluetooth OBEX Service - ok
15:29:26.0111 3964  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:29:26.0241 3964  bowser - ok
15:29:26.0496 3964  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:29:26.0714 3964  BrFiltLo - ok
15:29:26.0729 3964  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:29:27.0436 3964  BrFiltUp - ok
15:29:27.0568 3964  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
15:29:27.0629 3964  Browser - ok
15:29:27.0852 3964  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:29:28.0734 3964  Brserid - ok
15:29:28.0880 3964  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:29:28.0942 3964  BrSerWdm - ok
15:29:29.0094 3964  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:29:29.0158 3964  BrUsbMdm - ok
15:29:29.0515 3964  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:29:29.0584 3964  BrUsbSer - ok
15:29:30.0676 3964  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
15:29:31.0006 3964  BthEnum - ok
15:29:31.0297 3964  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:29:31.0457 3964  BTHMODEM - ok
15:29:31.0590 3964  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:29:31.0721 3964  BthPan - ok
15:29:32.0166 3964  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
15:29:32.0302 3964  BTHPORT - ok
15:29:32.0494 3964  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
15:29:32.0544 3964  bthserv - ok
15:29:32.0598 3964  [ 618AFD0072F4A672977484BFF6FE4FE2 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
15:29:32.0623 3964  BTHSSecurityMgr - ok
15:29:32.0867 3964  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
15:29:33.0050 3964  BTHUSB - ok
15:29:33.0203 3964  [ 988CC6CC49303665D3B2435C51505C3F ] btmaux          C:\Windows\system32\DRIVERS\btmaux.sys
15:29:33.0591 3964  btmaux - ok
15:29:34.0167 3964  [ 2B4B508AFAC2A563931AF1FE875A5B16 ] btmhsf          C:\Windows\system32\DRIVERS\btmhsf.sys
15:29:34.0432 3964  btmhsf - ok
15:29:34.0716 3964  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:29:34.0779 3964  cdfs - ok
15:29:35.0164 3964  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:29:35.0190 3964  cdrom - ok
15:29:35.0297 3964  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
15:29:35.0369 3964  CertPropSvc - ok
15:29:35.0447 3964  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
15:29:35.0500 3964  circlass - ok
15:29:35.0669 3964  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
15:29:35.0706 3964  CLFS - ok
15:29:36.0545 3964  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:29:36.0588 3964  clr_optimization_v2.0.50727_32 - ok
15:29:37.0647 3964  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:29:37.0765 3964  clr_optimization_v2.0.50727_64 - ok
15:29:39.0304 3964  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:29:39.0312 3964  clr_optimization_v4.0.30319_32 - ok
15:29:39.0501 3964  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:29:40.0319 3964  clr_optimization_v4.0.30319_64 - ok
15:29:40.0389 3964  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:29:40.0434 3964  CmBatt - ok
15:29:40.0464 3964  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:29:40.0481 3964  cmdide - ok
15:29:40.0689 3964  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
15:29:40.0714 3964  CNG - ok
15:29:40.0812 3964  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:29:40.0832 3964  Compbatt - ok
15:29:40.0940 3964  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:29:41.0004 3964  CompositeBus - ok
15:29:41.0016 3964  COMSysApp - ok
15:29:41.0139 3964  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:29:41.0158 3964  crcdisk - ok
15:29:41.0319 3964  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:29:41.0406 3964  CryptSvc - ok
15:29:41.0633 3964  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:29:41.0899 3964  DcomLaunch - ok
15:29:42.0133 3964  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
15:29:42.0223 3964  defragsvc - ok
15:29:42.0305 3964  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:29:42.0367 3964  DfsC - ok
15:29:42.0772 3964  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:29:42.0803 3964  Dhcp - ok
15:29:42.0892 3964  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
15:29:42.0974 3964  discache - ok
15:29:43.0082 3964  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
15:29:43.0123 3964  Disk - ok
15:29:43.0423 3964  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:29:43.0456 3964  Dnscache - ok
15:29:43.0591 3964  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:29:43.0674 3964  dot3svc - ok
15:29:43.0776 3964  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
15:29:43.0859 3964  DPS - ok
15:29:43.0937 3964  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:29:44.0016 3964  drmkaud - ok
15:29:44.0860 3964  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:29:45.0003 3964  dtsoftbus01 - ok
15:29:45.0377 3964  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:29:45.0397 3964  DXGKrnl - ok
15:29:45.0547 3964  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
15:29:45.0916 3964  EapHost - ok
15:29:46.0859 3964  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:29:47.0360 3964  ebdrv - ok
15:29:47.0427 3964  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
15:29:47.0472 3964  EFS - ok
15:29:47.0873 3964  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:29:47.0966 3964  ehRecvr - ok
15:29:47.0989 3964  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
15:29:48.0067 3964  ehSched - ok
15:29:48.0924 3964  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:29:48.0954 3964  elxstor - ok
15:29:49.0000 3964  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:29:49.0501 3964  ErrDev - ok
15:29:49.0765 3964  [ 42B4D3D746B3625EF42233C3897E1F68 ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
15:29:49.0774 3964  ETD - ok
15:29:50.0303 3964  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
15:29:50.0393 3964  EventSystem - ok
15:29:51.0336 3964  [ 64D25284A4E9D11CA0722AF3F30FD970 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
15:29:51.0369 3964  EvtEng - ok
15:29:51.0431 3964  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
15:29:51.0486 3964  exfat - ok
15:29:51.0791 3964  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:29:51.0931 3964  fastfat - ok
15:29:52.0227 3964  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
15:29:52.0329 3964  Fax - ok
15:29:52.0383 3964  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
15:29:52.0570 3964  fdc - ok
15:29:53.0278 3964  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
15:29:53.0341 3964  fdPHost - ok
15:29:53.0482 3964  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:29:53.0600 3964  FDResPub - ok
15:29:54.0303 3964  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:29:54.0322 3964  FileInfo - ok
15:29:54.0342 3964  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:29:54.0437 3964  Filetrace - ok
15:29:54.0495 3964  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:29:54.0522 3964  flpydisk - ok
15:29:54.0578 3964  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:29:54.0588 3964  FltMgr - ok
15:29:55.0145 3964  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
15:29:55.0332 3964  FontCache - ok
15:29:55.0728 3964  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:29:55.0736 3964  FontCache3.0.0.0 - ok
15:29:55.0782 3964  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:29:55.0793 3964  FsDepends - ok
15:29:55.0893 3964  [ DC0DCE4EC2C5D2CF6472F9FD6AA9A7DC ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
15:29:55.0940 3964  fssfltr - ok
15:29:56.0798 3964  [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:29:56.0881 3964  fsssvc - ok
15:29:57.0108 3964  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:29:57.0119 3964  Fs_Rec - ok
15:29:57.0249 3964  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:29:57.0286 3964  fvevol - ok
15:29:57.0377 3964  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:29:57.0438 3964  gagp30kx - ok
15:29:57.0622 3964  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
15:29:57.0716 3964  gpsvc - ok
15:29:58.0038 3964  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:29:58.0046 3964  gupdate - ok
15:29:58.0070 3964  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:29:58.0078 3964  gupdatem - ok
15:29:58.0139 3964  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:29:58.0192 3964  hcw85cir - ok
15:29:58.0615 3964  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:29:58.0676 3964  HdAudAddService - ok
15:29:58.0748 3964  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:29:58.0759 3964  HDAudBus - ok
15:29:58.0776 3964  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:29:58.0818 3964  HidBatt - ok
15:29:58.0968 3964  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:29:59.0357 3964  HidBth - ok
15:29:59.0440 3964  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:29:59.0473 3964  HidIr - ok
15:29:59.0707 3964  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
15:29:59.0769 3964  hidserv - ok
15:30:00.0061 3964  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:30:00.0070 3964  HidUsb - ok
15:30:00.0217 3964  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:30:00.0309 3964  hkmsvc - ok
15:30:00.0398 3964  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:30:00.0676 3964  HomeGroupListener - ok
15:30:00.0778 3964  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:30:00.0873 3964  HomeGroupProvider - ok
15:30:00.0947 3964  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:30:00.0974 3964  HpSAMD - ok
15:30:01.0197 3964  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:30:01.0548 3964  HTTP - ok
15:30:01.0627 3964  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:30:01.0668 3964  hwpolicy - ok
15:30:01.0956 3964  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
15:30:01.0966 3964  i8042prt - ok
15:30:02.0115 3964  [ C224331A54571C8C9162F7714400BBBD ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
15:30:02.0127 3964  iaStor - ok
15:30:02.0247 3964  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:30:02.0267 3964  iaStorV - ok
15:30:02.0582 3964  [ 9E3D44CE737388F6BBBB6DD4A1C1847C ] ibtfltcoex      C:\Windows\system32\DRIVERS\iBtFltCoex.sys
15:30:02.0625 3964  ibtfltcoex - ok
15:30:02.0893 3964  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:30:02.0945 3964  idsvc - ok
15:30:03.0117 3964  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:30:03.0159 3964  iirsp - ok
15:30:03.0493 3964  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
15:30:03.0623 3964  IKEEXT - ok
15:30:03.0918 3964  [ 832CE330DD987227B7DEA8C03F22AEFA ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:30:04.0005 3964  Intel® Capability Licensing Service Interface - ok
15:30:04.0490 3964  [ 896AA2F1D79662B17D5DBBE588E24E30 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
15:30:04.0516 3964  Intel® ME Service - ok
15:30:04.0612 3964  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
15:30:04.0632 3964  intelide - ok
15:30:05.0699 3964  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:30:07.0051 3964  intelppm - ok
15:30:07.0479 3964  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:30:07.0561 3964  IPBusEnum - ok
15:30:07.0599 3964  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:30:07.0653 3964  IpFilterDriver - ok
15:30:07.0823 3964  [ 08C2957BB30058E663720C5606885653 ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
15:30:07.0895 3964  IpHlpSvc - ok
15:30:07.0972 3964  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:30:08.0078 3964  IPMIDRV - ok
15:30:08.0438 3964  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:30:08.0621 3964  IPNAT - ok
15:30:08.0905 3964  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:30:08.0923 3964  IRENUM - ok
15:30:09.0301 3964  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:30:09.0317 3964  isapnp - ok
15:30:09.0530 3964  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:30:09.0555 3964  iScsiPrt - ok
15:30:09.0630 3964  [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
15:30:09.0657 3964  iusb3hcs - ok
15:30:10.0640 3964  [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
15:30:10.0651 3964  iusb3hub - ok
15:30:12.0009 3964  [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
15:30:12.0023 3964  iusb3xhc - ok
15:30:12.0112 3964  [ 3C6630473DD42FFC57D9F5564F533127 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
15:30:12.0134 3964  jhi_service - ok
15:30:12.0451 3964  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:30:12.0459 3964  kbdclass - ok
15:30:12.0543 3964  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
15:30:12.0618 3964  kbdhid - ok
15:30:12.0677 3964  [ E63EF8C3271D014F14E2469CE75FECB4 ] kbfiltr         C:\Windows\system32\DRIVERS\kbfiltr.sys
15:30:12.0684 3964  kbfiltr - ok
15:30:12.0765 3964  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
15:30:12.0775 3964  KeyIso - ok
15:30:12.0831 3964  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:30:12.0856 3964  KSecDD - ok
15:30:13.0354 3964  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:30:13.0375 3964  KSecPkg - ok
15:30:13.0486 3964  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:30:13.0510 3964  ksthunk - ok
15:30:13.0653 3964  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:30:13.0990 3964  KtmRm - ok
15:30:14.0598 3964  [ FC010C7814DDAC17389A7D87EA2EBB39 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
15:30:14.0606 3964  L1C - ok
15:30:14.0889 3964  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:30:14.0925 3964  LanmanServer - ok
15:30:14.0994 3964  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:30:15.0178 3964  LanmanWorkstation - ok
15:30:16.0085 3964  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:30:17.0230 3964  lltdio - ok
15:30:17.0520 3964  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:30:17.0596 3964  lltdsvc - ok
15:30:18.0380 3964  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:30:18.0456 3964  lmhosts - ok
15:30:18.0944 3964  [ 2B23FAA39D8F949ED5EEE03ECA50BCD5 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:30:19.0003 3964  LMS - ok
15:30:21.0738 3964  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:30:21.0806 3964  LSI_FC - ok
15:30:23.0236 3964  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:30:23.0281 3964  LSI_SAS - ok
15:30:26.0256 3964  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:30:26.0293 3964  LSI_SAS2 - ok
15:30:26.0439 3964  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:30:26.0498 3964  LSI_SCSI - ok
15:30:27.0287 3964  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
15:30:27.0343 3964  luafv - ok
15:30:27.0623 3964  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
15:30:27.0659 3964  MBAMProtector - ok
15:30:27.0986 3964  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:30:28.0126 3964  MBAMScheduler - ok
15:30:28.0486 3964  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
15:30:28.0674 3964  MBAMService - ok
15:30:28.0844 3964  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:30:28.0907 3964  Mcx2Svc - ok
15:30:28.0976 3964  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:30:29.0017 3964  megasas - ok
15:30:29.0216 3964  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:30:29.0278 3964  MegaSR - ok
15:30:29.0340 3964  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
15:30:29.0348 3964  MEIx64 - ok
15:30:30.0149 3964  Microsoft SharePoint Workspace Audit Service - ok
15:30:30.0671 3964  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
15:30:30.0760 3964  MMCSS - ok
15:30:30.0787 3964  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
15:30:30.0988 3964  Modem - ok
15:30:31.0370 3964  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:30:31.0416 3964  monitor - ok
15:30:32.0102 3964  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:30:32.0110 3964  mouclass - ok
15:30:32.0216 3964  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:30:32.0260 3964  mouhid - ok
15:30:32.0276 3964  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:30:32.0291 3964  mountmgr - ok
15:30:32.0710 3964  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:30:33.0173 3964  MozillaMaintenance - ok
15:30:33.0599 3964  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:30:33.0618 3964  mpio - ok
15:30:33.0650 3964  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:30:33.0714 3964  mpsdrv - ok
15:30:33.0960 3964  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:30:34.0050 3964  MpsSvc - ok
15:30:34.0139 3964  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:30:34.0223 3964  MRxDAV - ok
15:30:34.0341 3964  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:30:34.0446 3964  mrxsmb - ok
15:30:34.0548 3964  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:30:34.0597 3964  mrxsmb10 - ok
15:30:34.0698 3964  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:30:34.0737 3964  mrxsmb20 - ok
15:30:34.0806 3964  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:30:34.0824 3964  msahci - ok
15:30:34.0941 3964  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:30:34.0984 3964  msdsm - ok
15:30:35.0060 3964  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
15:30:35.0114 3964  MSDTC - ok
15:30:35.0175 3964  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:30:35.0277 3964  Msfs - ok
15:30:35.0505 3964  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:30:35.0568 3964  mshidkmdf - ok
15:30:35.0662 3964  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:30:35.0687 3964  msisadrv - ok
15:30:36.0142 3964  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:30:36.0280 3964  MSiSCSI - ok
15:30:36.0296 3964  msiserver - ok
15:30:36.0447 3964  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:30:36.0524 3964  MSKSSRV - ok
15:30:36.0830 3964  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:30:36.0905 3964  MSPCLOCK - ok
15:30:37.0001 3964  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:30:37.0068 3964  MSPQM - ok
15:30:37.0300 3964  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:30:37.0326 3964  MsRPC - ok
15:30:37.0446 3964  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:30:37.0454 3964  mssmbios - ok
15:30:37.0652 3964  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:30:37.0885 3964  MSTEE - ok
15:30:37.0992 3964  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:30:38.0055 3964  MTConfig - ok
15:30:38.0090 3964  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
15:30:38.0120 3964  Mup - ok
15:30:38.0510 3964  [ E3B58E3011B207C5289D11173B30E298 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
15:30:38.0597 3964  MyWiFiDHCPDNS - ok
15:30:38.0744 3964  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
15:30:38.0771 3964  napagent - ok
15:30:38.0992 3964  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:30:39.0068 3964  NativeWifiP - ok
15:30:39.0492 3964  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:30:39.0546 3964  NDIS - ok
15:30:39.0644 3964  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:30:39.0715 3964  NdisCap - ok
15:30:39.0768 3964  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:30:39.0820 3964  NdisTapi - ok
15:30:39.0845 3964  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:30:39.0924 3964  Ndisuio - ok
15:30:40.0028 3964  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:30:40.0087 3964  NdisWan - ok
15:30:40.0155 3964  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:30:40.0244 3964  NDProxy - ok
15:30:40.0378 3964  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:30:40.0735 3964  NetBIOS - ok
15:30:40.0850 3964  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:30:40.0899 3964  NetBT - ok
15:30:41.0020 3964  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
15:30:41.0031 3964  Netlogon - ok
15:30:41.0258 3964  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
15:30:41.0525 3964  Netman - ok
15:30:41.0650 3964  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:30:41.0793 3964  NetMsmqActivator - ok
15:30:41.0828 3964  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:30:41.0836 3964  NetPipeActivator - ok
15:30:42.0106 3964  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
15:30:42.0171 3964  netprofm - ok
15:30:42.0260 3964  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:30:42.0268 3964  NetTcpActivator - ok
15:30:42.0288 3964  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:30:42.0296 3964  NetTcpPortSharing - ok
15:30:44.0123 3964  [ 47DC062656EA661FE9175DBACAD00E9D ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
15:30:44.0227 3964  NETwNs64 - ok
15:30:44.0287 3964  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:30:44.0335 3964  nfrd960 - ok
15:30:44.0527 3964  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:30:44.0555 3964  NlaSvc - ok
15:30:44.0625 3964  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:30:44.0650 3964  Npfs - ok
15:30:44.0733 3964  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
15:30:44.0792 3964  nsi - ok
15:30:44.0821 3964  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:30:44.0879 3964  nsiproxy - ok
15:30:45.0467 3964  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:30:45.0559 3964  Ntfs - ok
15:30:45.0590 3964  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
15:30:45.0690 3964  Null - ok
15:30:45.0896 3964  [ 8D4AAC74B571FC356560E5B308955E93 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:30:45.0905 3964  NVHDA - ok
15:30:47.0588 3964  [ 62CFE4DB3B014D248B70D1076636B001 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:30:47.0724 3964  nvlddmkm - ok
15:30:47.0961 3964  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:30:48.0002 3964  nvraid - ok
15:30:48.0119 3964  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:30:48.0148 3964  nvstor - ok
15:30:48.0497 3964  [ 09EA4E7A5BB2F65DB0818CC5385E0A19 ] nvsvc           C:\Windows\system32\nvvsvc.exe
15:30:48.0550 3964  nvsvc - ok
15:30:49.0362 3964  [ 961A4BD1A239F032056CE5F9B61CAE6D ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:30:49.0524 3964  nvUpdatusService - ok
15:30:49.0638 3964  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:30:49.0669 3964  nv_agp - ok
15:30:49.0697 3964  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:30:49.0746 3964  ohci1394 - ok
15:30:50.0106 3964  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:30:50.0136 3964  ose - ok
15:30:50.0728 3964  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:30:50.0926 3964  osppsvc - ok
15:30:51.0118 3964  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:30:51.0131 3964  p2pimsvc - ok
15:30:51.0298 3964  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
15:30:51.0342 3964  p2psvc - ok
15:30:51.0554 3964  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
15:30:51.0631 3964  Parport - ok
15:30:51.0713 3964  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:30:51.0744 3964  partmgr - ok
15:30:51.0837 3964  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:30:51.0896 3964  PcaSvc - ok
15:30:52.0023 3964  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
15:30:52.0048 3964  pci - ok
15:30:52.0103 3964  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
15:30:52.0135 3964  pciide - ok
15:30:52.0271 3964  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:30:52.0306 3964  pcmcia - ok
15:30:52.0347 3964  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:30:52.0385 3964  pcw - ok
15:30:52.0512 3964  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:30:52.0575 3964  PEAUTH - ok
15:30:53.0028 3964  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:30:53.0066 3964  PerfHost - ok
15:30:53.0351 3964  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
15:30:53.0424 3964  pla - ok
15:30:53.0478 3964  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:30:53.0520 3964  PlugPlay - ok
15:30:53.0558 3964  PnkBstrA - ok
15:30:53.0578 3964  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:30:53.0604 3964  PNRPAutoReg - ok
15:30:53.0625 3964  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:30:53.0637 3964  PNRPsvc - ok
15:30:53.0763 3964  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:30:53.0805 3964  PolicyAgent - ok
15:30:53.0839 3964  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
15:30:53.0865 3964  Power - ok
15:30:53.0938 3964  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:30:53.0977 3964  PptpMiniport - ok
15:30:53.0995 3964  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
15:30:54.0020 3964  Processor - ok
15:30:54.0048 3964  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:30:54.0083 3964  ProfSvc - ok
15:30:54.0111 3964  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:30:54.0121 3964  ProtectedStorage - ok
15:30:54.0150 3964  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:30:54.0191 3964  Psched - ok
15:30:54.0260 3964  [ 5F31D6394CC16489F79D1ED02B147F90 ] PXGX112         C:\Windows\system32\drivers\PXGX112.sys
15:30:54.0278 3964  PXGX112 - ok
15:30:54.0333 3964  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:30:54.0341 3964  PxHlpa64 - ok
15:30:54.0390 3964  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:30:54.0418 3964  ql2300 - ok
15:30:54.0442 3964  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:30:54.0460 3964  ql40xx - ok
15:30:54.0508 3964  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
15:30:54.0591 3964  QWAVE - ok
15:30:54.0607 3964  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:30:54.0648 3964  QWAVEdrv - ok
15:30:54.0676 3964  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:30:54.0719 3964  RasAcd - ok
15:30:54.0800 3964  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:30:54.0851 3964  RasAgileVpn - ok
15:30:54.0877 3964  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
15:30:54.0967 3964  RasAuto - ok
15:30:55.0004 3964  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:30:55.0038 3964  Rasl2tp - ok
15:30:55.0195 3964  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
15:30:55.0249 3964  RasMan - ok
15:30:55.0337 3964  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:30:55.0378 3964  RasPppoe - ok
15:30:55.0420 3964  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:30:55.0503 3964  RasSstp - ok
15:30:55.0633 3964  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:30:55.0681 3964  rdbss - ok
15:30:55.0704 3964  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
15:30:55.0735 3964  rdpbus - ok
15:30:55.0752 3964  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:30:55.0786 3964  RDPCDD - ok
15:30:55.0796 3964  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:30:55.0826 3964  RDPENCDD - ok
15:30:55.0830 3964  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:30:55.0866 3964  RDPREFMP - ok
15:30:55.0939 3964  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:30:55.0959 3964  RdpVideoMiniport - ok
15:30:56.0016 3964  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:30:56.0056 3964  RDPWD - ok
15:30:56.0091 3964  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:30:56.0102 3964  rdyboost - ok
15:30:56.0174 3964  [ F3AF2B43F35DBB3A0EB9FEEEC7D62217 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
15:30:56.0190 3964  RegSrvc - ok
15:30:56.0210 3964  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:30:56.0249 3964  RemoteAccess - ok
15:30:56.0289 3964  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:30:56.0326 3964  RemoteRegistry - ok
15:30:56.0356 3964  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:30:56.0379 3964  RFCOMM - ok
15:30:56.0395 3964  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:30:56.0420 3964  RpcEptMapper - ok
15:30:56.0469 3964  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
15:30:56.0503 3964  RpcLocator - ok
15:30:56.0558 3964  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
15:30:56.0586 3964  RpcSs - ok
15:30:56.0632 3964  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:30:56.0656 3964  rspndr - ok
15:30:56.0729 3964  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
15:30:56.0739 3964  SamSs - ok
15:30:56.0824 3964  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
15:30:56.0831 3964  SASDIFSV - ok
15:30:56.0862 3964  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
15:30:56.0868 3964  SASKUTIL - ok
15:30:56.0898 3964  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:30:56.0914 3964  sbp2port - ok
15:30:57.0055 3964  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
15:30:57.0072 3964  SBSDWSCService - ok
15:30:57.0148 3964  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:30:57.0194 3964  SCardSvr - ok
15:30:57.0220 3964  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:30:57.0268 3964  scfilter - ok
15:30:57.0433 3964  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
15:30:57.0492 3964  Schedule - ok
15:30:57.0522 3964  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:30:57.0546 3964  SCPolicySvc - ok
15:30:57.0617 3964  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:30:57.0666 3964  SDRSVC - ok
15:30:57.0707 3964  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:30:57.0744 3964  secdrv - ok
15:30:57.0790 3964  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
15:30:57.0852 3964  seclogon - ok
15:30:57.0888 3964  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
15:30:57.0932 3964  SENS - ok
15:30:58.0004 3964  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:30:58.0061 3964  SensrSvc - ok
15:30:58.0072 3964  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
15:30:58.0095 3964  Serenum - ok
15:30:58.0128 3964  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
15:30:58.0154 3964  Serial - ok
15:30:58.0187 3964  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:30:58.0206 3964  sermouse - ok
15:30:58.0236 3964  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
15:30:58.0270 3964  SessionEnv - ok
15:30:58.0285 3964  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:30:58.0309 3964  sffdisk - ok
15:30:58.0328 3964  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:30:58.0351 3964  sffp_mmc - ok
15:30:58.0365 3964  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:30:58.0392 3964  sffp_sd - ok
15:30:58.0411 3964  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:30:58.0433 3964  sfloppy - ok
15:30:58.0459 3964  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:30:58.0488 3964  SharedAccess - ok
15:30:58.0588 3964  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:30:58.0639 3964  ShellHWDetection - ok
15:30:58.0681 3964  [ 1BC348CF6BAA90EC8E533EF6E6A69933 ] SiSGbeLH        C:\Windows\system32\DRIVERS\SiSG664.sys
15:30:58.0706 3964  SiSGbeLH - ok
15:30:58.0735 3964  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:30:58.0743 3964  SiSRaid2 - ok
15:30:58.0756 3964  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:30:58.0765 3964  SiSRaid4 - ok
15:30:58.0861 3964  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:30:59.0080 3964  SkypeUpdate - ok
15:30:59.0144 3964  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:30:59.0203 3964  Smb - ok
15:30:59.0243 3964  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:30:59.0274 3964  SNMPTRAP - ok
15:30:59.0358 3964  [ 5177D14A78E60FD61DCFC6B388E7E971 ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
15:30:59.0392 3964  Sony PC Companion ( UnsignedFile.Multi.Generic ) - warning
15:30:59.0393 3964  Sony PC Companion - detected UnsignedFile.Multi.Generic (1)
15:30:59.0465 3964  [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan        C:\Windows\syswow64\speedfan.sys
15:30:59.0483 3964  speedfan - ok
15:30:59.0504 3964  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:30:59.0512 3964  spldr - ok
15:30:59.0658 3964  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
15:30:59.0706 3964  Spooler - ok
15:31:00.0075 3964  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
15:31:00.0148 3964  sppsvc - ok
15:31:00.0220 3964  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:31:00.0283 3964  sppuinotify - ok
15:31:00.0364 3964  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:31:00.0434 3964  srv - ok
15:31:00.0582 3964  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:31:00.0594 3964  srv2 - ok
15:31:00.0670 3964  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:31:00.0700 3964  srvnet - ok
15:31:00.0752 3964  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:31:00.0808 3964  SSDPSRV - ok
15:31:00.0823 3964  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:31:00.0849 3964  SstpSvc - ok
15:31:00.0878 3964  Steam Client Service - ok
15:31:01.0061 3964  [ 4742AB11FCD9E1A2A3790AC50320CCEC ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:31:01.0105 3964  Stereo Service - ok
15:31:01.0145 3964  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:31:01.0164 3964  stexstor - ok
15:31:01.0204 3964  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
15:31:01.0247 3964  stisvc - ok
15:31:01.0265 3964  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:31:01.0273 3964  swenum - ok
15:31:01.0438 3964  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
15:31:01.0489 3964  swprv - ok
15:31:01.0529 3964  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
15:31:01.0576 3964  SysMain - ok
15:31:01.0605 3964  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:31:01.0649 3964  TabletInputService - ok
15:31:01.0723 3964  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:31:01.0756 3964  TapiSrv - ok
15:31:01.0791 3964  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
15:31:01.0840 3964  TBS - ok
15:31:02.0219 3964  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:31:02.0267 3964  Tcpip - ok
15:31:02.0298 3964  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:31:02.0322 3964  TCPIP6 - ok
15:31:02.0389 3964  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:31:02.0435 3964  tcpipreg - ok
15:31:02.0472 3964  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:31:02.0491 3964  TDPIPE - ok
15:31:02.0514 3964  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:31:02.0524 3964  TDTCP - ok
15:31:02.0542 3964  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:31:02.0566 3964  tdx - ok
15:31:02.0596 3964  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:31:02.0604 3964  TermDD - ok
15:31:02.0639 3964  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
15:31:02.0672 3964  TermService - ok
15:31:02.0698 3964  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
15:31:02.0740 3964  Themes - ok
15:31:02.0787 3964  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
15:31:02.0812 3964  THREADORDER - ok
15:31:02.0888 3964  [ 4C4554287AB3E0F84AE5101117B0C18E ] tmactmon        C:\Windows\system32\DRIVERS\tmactmon.sys
15:31:02.0896 3964  tmactmon - ok
15:31:02.0957 3964  [ E3485981980692756B6D4A561D718368 ] tmcomm          C:\Windows\system32\DRIVERS\tmcomm.sys
15:31:02.0966 3964  tmcomm - ok
15:31:03.0001 3964  [ 384C4A844E3DE65E26ED0639375C0D3B ] tmevtmgr        C:\Windows\system32\DRIVERS\tmevtmgr.sys
15:31:03.0009 3964  tmevtmgr - ok
15:31:03.0056 3964  [ 48951FBFFFCAE52FADFCDFB76ED19749 ] tmtdi           C:\Windows\system32\DRIVERS\tmtdi.sys
15:31:03.0063 3964  tmtdi - ok
15:31:03.0084 3964  [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM             C:\Windows\system32\drivers\tpm.sys
15:31:03.0095 3964  TPM - ok
15:31:03.0116 3964  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
15:31:03.0165 3964  TrkWks - ok
15:31:03.0254 3964  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:31:03.0327 3964  TrustedInstaller - ok
15:31:03.0351 3964  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:31:03.0399 3964  tssecsrv - ok
15:31:03.0444 3964  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:31:03.0464 3964  TsUsbFlt - ok
15:31:03.0486 3964  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:31:03.0506 3964  TsUsbGD - ok
15:31:03.0526 3964  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:31:03.0550 3964  tunnel - ok
15:31:03.0570 3964  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:31:03.0588 3964  uagp35 - ok
15:31:03.0602 3964  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:31:03.0649 3964  udfs - ok
15:31:03.0670 3964  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:31:03.0724 3964  UI0Detect - ok
15:31:03.0754 3964  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:31:03.0764 3964  uliagpkx - ok
15:31:03.0783 3964  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:31:03.0805 3964  umbus - ok
15:31:03.0828 3964  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:31:03.0849 3964  UmPass - ok
15:31:04.0383 3964  [ 3C5405EF78576E8E4D791EB18F6856A8 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:31:04.0453 3964  UNS - ok
15:31:04.0518 3964  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
15:31:04.0577 3964  upnphost - ok
15:31:04.0602 3964  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:31:04.0632 3964  usbccgp - ok
15:31:04.0655 3964  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:31:04.0681 3964  usbcir - ok
15:31:04.0697 3964  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:31:04.0715 3964  usbehci - ok
15:31:04.0727 3964  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:31:04.0744 3964  usbhub - ok
15:31:04.0753 3964  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:31:04.0779 3964  usbohci - ok
15:31:04.0788 3964  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
15:31:04.0804 3964  usbprint - ok
15:31:04.0815 3964  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:31:04.0838 3964  USBSTOR - ok
15:31:04.0851 3964  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:31:04.0876 3964  usbuhci - ok
15:31:04.0906 3964  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
15:31:04.0929 3964  usbvideo - ok
15:31:04.0967 3964  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
15:31:04.0986 3964  usb_rndisx - ok
15:31:05.0015 3964  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
15:31:05.0071 3964  UxSms - ok
15:31:05.0093 3964  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
15:31:05.0103 3964  VaultSvc - ok
15:31:05.0143 3964  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:31:05.0161 3964  vdrvroot - ok
15:31:05.0284 3964  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
15:31:05.0322 3964  vds - ok
15:31:05.0387 3964  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:31:05.0405 3964  vga - ok
15:31:05.0427 3964  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:31:05.0480 3964  VgaSave - ok
15:31:05.0560 3964  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:31:05.0583 3964  vhdmp - ok
15:31:05.0911 3964  [ 3826718E3B26643470094C414AA762CA ] VIAHdAudAddService C:\Windows\system32\drivers\viahduaa.sys
15:31:05.0938 3964  VIAHdAudAddService - ok
15:31:05.0982 3964  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:31:05.0998 3964  viaide - ok
15:31:06.0049 3964  [ A83A9731D98F7ACEC581AF9DDD57FE10 ] VIAKaraokeService C:\Windows\system32\viakaraokesrv.exe
15:31:06.0059 3964  VIAKaraokeService - ok
15:31:06.0073 3964  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:31:06.0082 3964  volmgr - ok
15:31:06.0104 3964  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:31:06.0117 3964  volmgrx - ok
15:31:06.0154 3964  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:31:06.0168 3964  volsnap - ok
15:31:06.0195 3964  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:31:06.0205 3964  vsmraid - ok
15:31:06.0245 3964  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
15:31:06.0313 3964  VSS - ok
15:31:06.0342 3964  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:31:06.0371 3964  vwifibus - ok
15:31:06.0393 3964  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:31:06.0428 3964  vwififlt - ok
15:31:06.0447 3964  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:31:06.0469 3964  vwifimp - ok
15:31:06.0489 3964  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
15:31:06.0531 3964  W32Time - ok
15:31:06.0582 3964  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:31:06.0604 3964  WacomPen - ok
15:31:06.0631 3964  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:31:06.0667 3964  WANARP - ok
15:31:06.0684 3964  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:31:06.0707 3964  Wanarpv6 - ok
15:31:07.0072 3964  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:31:07.0117 3964  WatAdminSvc - ok
15:31:07.0403 3964  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
15:31:07.0465 3964  wbengine - ok
15:31:07.0551 3964  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:31:07.0597 3964  WbioSrvc - ok
15:31:07.0654 3964  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:31:07.0697 3964  wcncsvc - ok
15:31:07.0712 3964  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:31:07.0749 3964  WcsPlugInService - ok
15:31:07.0762 3964  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
15:31:07.0770 3964  Wd - ok
15:31:07.0973 3964  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:31:08.0011 3964  Wdf01000 - ok
15:31:08.0026 3964  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:31:08.0063 3964  WdiServiceHost - ok
15:31:08.0066 3964  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:31:08.0080 3964  WdiSystemHost - ok
15:31:08.0135 3964  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
15:31:08.0202 3964  WebClient - ok
15:31:08.0231 3964  [ D5BA7D43FA2EF656BF7E98A188391E40 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:31:08.0257 3964  Wecsvc - ok
15:31:08.0267 3964  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:31:08.0306 3964  wercplsupport - ok
15:31:08.0320 3964  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:31:08.0346 3964  WerSvc - ok
15:31:08.0404 3964  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:31:08.0428 3964  WfpLwf - ok
15:31:08.0505 3964  [ 52DED146E4797E6CCF94799E8E22BB2A ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
15:31:08.0516 3964  WimFltr - ok
15:31:08.0542 3964  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:31:08.0551 3964  WIMMount - ok
15:31:08.0576 3964  WinDefend - ok
15:31:08.0580 3964  WinHttpAutoProxySvc - ok
15:31:08.0858 3964  [ 136760C1E9697BAF4ECDEAE5590A0806 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:31:08.0907 3964  Winmgmt - ok
15:31:08.0988 3964  [ 3BB6B401A780BF434C8F58137DE10BF7 ] WinRM           C:\Windows\system32\WsmSvc.dll
15:31:09.0051 3964  WinRM - ok
15:31:09.0103 3964  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.sys
15:31:09.0121 3964  WinUsb - ok
15:31:09.0243 3964  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:31:09.0319 3964  Wlansvc - ok
15:31:09.0523 3964  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:31:09.0582 3964  wlcrasvc - ok
15:31:10.0091 3964  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:31:10.0119 3964  wlidsvc - ok
15:31:10.0140 3964  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
15:31:10.0176 3964  WmiAcpi - ok
15:31:10.0206 3964  [ 4DF841632B62A7CF19A79A05046A8AB1 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:31:10.0218 3964  wmiApSrv - ok
15:31:10.0265 3964  WMPNetworkSvc - ok
15:31:10.0326 3964  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:31:10.0343 3964  WPCSvc - ok
15:31:10.0359 3964  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:31:10.0372 3964  WPDBusEnum - ok
15:31:10.0408 3964  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:31:10.0432 3964  ws2ifsl - ok
15:31:10.0449 3964  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
15:31:10.0480 3964  wscsvc - ok
15:31:10.0482 3964  WSearch - ok
15:31:11.0025 3964  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:31:11.0056 3964  wuauserv - ok
15:31:11.0137 3964  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:31:11.0171 3964  WudfPf - ok
15:31:11.0216 3964  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:31:11.0239 3964  WUDFRd - ok
15:31:11.0265 3964  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:31:11.0285 3964  wudfsvc - ok
15:31:11.0313 3964  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:31:11.0335 3964  WwanSvc - ok
15:31:11.0339 3964  ykbzezkg - ok
15:31:11.0864 3964  [ 74713CB32792F9C7632DAA7DA22CA974 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
15:31:11.0912 3964  ZeroConfigService - ok
15:31:11.0953 3964  ================ Scan global ===============================
15:31:11.0974 3964  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:31:12.0000 3964  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:31:12.0020 3964  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
15:31:12.0039 3964  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:31:12.0184 3964  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:31:12.0187 3964  [Global] - ok
15:31:12.0189 3964  ================ Scan MBR ==================================
15:31:12.0243 3964  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
15:31:12.0423 3964  \Device\Harddisk0\DR0 - ok
15:31:12.0424 3964  ================ Scan VBR ==================================
15:31:12.0638 3964  [ 91D7D5316B7998C0F7506128EEC68F74 ] \Device\Harddisk0\DR0\Partition1
15:31:12.0657 3964  \Device\Harddisk0\DR0\Partition1 - ok
15:31:12.0751 3964  [ 95022AE2F36D107453C4D37B3CC2E902 ] \Device\Harddisk0\DR0\Partition2
15:31:12.0756 3964  \Device\Harddisk0\DR0\Partition2 - ok
15:31:12.0846 3964  [ 81DB7C231F0817321194858392854060 ] \Device\Harddisk0\DR0\Partition3
15:31:12.0889 3964  \Device\Harddisk0\DR0\Partition3 - ok
15:31:12.0950 3964  [ 61E9B94CEB210BB60EEEC2D95246827C ] \Device\Harddisk0\DR0\Partition4
15:31:13.0006 3964  \Device\Harddisk0\DR0\Partition4 - ok
15:31:13.0907 3964  [ B10F932686667BE2976A5F3ABFBC7CA1 ] \Device\Harddisk0\DR0\Partition5
15:31:13.0986 3964  \Device\Harddisk0\DR0\Partition5 - ok
15:31:13.0986 3964  ================ Scan active images ========================
15:31:13.0987 3964  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
15:31:13.0987 3964  C:\Windows\System32\drivers\crashdmp.sys - ok
15:31:13.0990 3964  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
15:31:13.0990 3964  C:\Windows\System32\drivers\dumpfve.sys - ok
15:31:13.0992 3964  [ C224331A54571C8C9162F7714400BBBD ] C:\Windows\System32\drivers\iaStor.sys
15:31:13.0992 3964  C:\Windows\System32\drivers\iaStor.sys - ok
15:31:13.0994 3964  [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
15:31:13.0994 3964  C:\Windows\System32\drivers\dtsoftbus01.sys - ok
15:31:13.0997 3964  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
15:31:13.0997 3964  C:\Windows\System32\drivers\cdrom.sys - ok
15:31:13.0999 3964  [ 10ED1CAB84AA65983C41A11F60294C9B ] C:\Windows\System32\drivers\aswSnx.sys
15:31:13.0999 3964  C:\Windows\System32\drivers\aswSnx.sys - ok
15:31:14.0001 3964  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
15:31:14.0001 3964  C:\Windows\System32\drivers\beep.sys - ok
15:31:14.0004 3964  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
15:31:14.0004 3964  C:\Windows\System32\drivers\null.sys - ok
15:31:14.0006 3964  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
15:31:14.0006 3964  C:\Windows\System32\drivers\watchdog.sys - ok
15:31:14.0009 3964  [ 7A62C389380F6FF3FA952D511D8790B8 ] C:\Windows\System32\drivers\aswFW.sys
15:31:14.0009 3964  C:\Windows\System32\drivers\aswFW.sys - ok
15:31:14.0011 3964  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
15:31:14.0011 3964  C:\Windows\System32\drivers\msfs.sys - ok
15:31:14.0012 3964  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
15:31:14.0012 3964  C:\Windows\System32\drivers\npfs.sys - ok
15:31:14.0015 3964  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
15:31:14.0015 3964  C:\Windows\System32\drivers\RDPCDD.sys - ok
15:31:14.0017 3964  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
15:31:14.0017 3964  C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:31:14.0020 3964  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
15:31:14.0020 3964  C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:31:14.0022 3964  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
15:31:14.0022 3964  C:\Windows\System32\drivers\tdi.sys - ok
15:31:14.0024 3964  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
15:31:14.0024 3964  C:\Windows\System32\drivers\tdx.sys - ok
15:31:14.0027 3964  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
15:31:14.0027 3964  C:\Windows\System32\drivers\vga.sys - ok
15:31:14.0029 3964  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
15:31:14.0029 3964  C:\Windows\System32\drivers\videoprt.sys - ok
15:31:14.0031 3964  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
15:31:14.0031 3964  C:\Windows\System32\drivers\afd.sys - ok
15:31:14.0034 3964  [ 64E2BAB4096C13D2342BC4661C967E07 ] C:\Windows\System32\drivers\aswRdr2.sys
15:31:14.0034 3964  C:\Windows\System32\drivers\aswRdr2.sys - ok
15:31:14.0036 3964  [ 29DD8E458A84171202AA4979364C30C0 ] C:\Windows\System32\drivers\aswTdi.sys
15:31:14.0036 3964  C:\Windows\System32\drivers\aswTdi.sys - ok
15:31:14.0038 3964  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
15:31:14.0038 3964  C:\Windows\System32\drivers\netbt.sys - ok
15:31:14.0041 3964  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
15:31:14.0041 3964  C:\Windows\System32\drivers\netbios.sys - ok
15:31:14.0043 3964  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
15:31:14.0043 3964  C:\Windows\System32\drivers\pacer.sys - ok
15:31:14.0045 3964  [ 4C4554287AB3E0F84AE5101117B0C18E ] C:\Windows\System32\drivers\tmactmon.sys
15:31:14.0045 3964  C:\Windows\System32\drivers\tmactmon.sys - ok
15:31:14.0048 3964  [ E3485981980692756B6D4A561D718368 ] C:\Windows\System32\drivers\tmcomm.sys
15:31:14.0048 3964  C:\Windows\System32\drivers\tmcomm.sys - ok
15:31:14.0050 3964  [ 384C4A844E3DE65E26ED0639375C0D3B ] C:\Windows\System32\drivers\tmevtmgr.sys
15:31:14.0050 3964  C:\Windows\System32\drivers\tmevtmgr.sys - ok
15:31:14.0052 3964  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
15:31:14.0052 3964  C:\Windows\System32\drivers\vwififlt.sys - ok
15:31:14.0055 3964  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
15:31:14.0055 3964  C:\Windows\System32\drivers\wfplwf.sys - ok
15:31:14.0057 3964  [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
15:31:14.0057 3964  C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
15:31:14.0060 3964  [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
15:31:14.0060 3964  C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
15:31:14.0062 3964  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
15:31:14.0062 3964  C:\Windows\System32\drivers\rdbss.sys - ok
15:31:14.0064 3964  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
15:31:14.0064 3964  C:\Windows\System32\drivers\termdd.sys - ok
15:31:14.0067 3964  [ 48951FBFFFCAE52FADFCDFB76ED19749 ] C:\Windows\System32\drivers\tmtdi.sys
15:31:14.0067 3964  C:\Windows\System32\drivers\tmtdi.sys - ok
15:31:14.0069 3964  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
15:31:14.0069 3964  C:\Windows\System32\drivers\wanarp.sys - ok
15:31:14.0072 3964  [ 41CEAFFCF3550785E59E3EC9BEE8D97A ] C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
15:31:14.0072 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys - ok
15:31:14.0074 3964  [ 00E5253353717D3CA12A0F5A6F9991EC ] C:\Windows\System32\drivers\aswSP.sys
15:31:14.0074 3964  C:\Windows\System32\drivers\aswSP.sys - ok
15:31:14.0076 3964  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
15:31:14.0076 3964  C:\Windows\System32\drivers\blbdrive.sys - ok
15:31:14.0079 3964  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
15:31:14.0079 3964  C:\Windows\System32\drivers\dfsc.sys - ok
15:31:14.0081 3964  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
15:31:14.0081 3964  C:\Windows\System32\drivers\discache.sys - ok
15:31:14.0084 3964  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
15:31:14.0084 3964  C:\Windows\System32\drivers\mssmbios.sys - ok
15:31:14.0086 3964  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
15:31:14.0086 3964  C:\Windows\System32\drivers\nsiproxy.sys - ok
15:31:14.0088 3964  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
15:31:14.0088 3964  C:\Windows\System32\drivers\tunnel.sys - ok
15:31:14.0090 3964  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
15:31:14.0091 3964  C:\Windows\System32\ntdll.dll - ok
15:31:14.0093 3964  [ F0371DE302FFFF8F086661611BE60848 ] C:\Windows\System32\smss.exe
15:31:14.0093 3964  C:\Windows\System32\smss.exe - ok
15:31:14.0095 3964  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
15:31:14.0095 3964  C:\Windows\System32\autochk.exe - ok
15:31:14.0097 3964  [ 62CFE4DB3B014D248B70D1076636B001 ] C:\Windows\System32\drivers\nvlddmkm.sys
15:31:14.0097 3964  C:\Windows\System32\drivers\nvlddmkm.sys - ok
15:31:14.0100 3964  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
15:31:14.0100 3964  C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:31:14.0102 3964  [ 16F6F6B7903B913AB41AB848C8BB5658 ] C:\Windows\System32\drivers\AiCharger.sys
15:31:14.0102 3964  C:\Windows\System32\drivers\AiCharger.sys - ok
15:31:14.0105 3964  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
15:31:14.0105 3964  C:\Windows\System32\drivers\dxgmms1.sys - ok
15:31:14.0107 3964  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
15:31:14.0107 3964  C:\Windows\System32\drivers\hdaudbus.sys - ok
15:31:14.0110 3964  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] C:\Windows\System32\drivers\HECIx64.sys
15:31:14.0110 3964  C:\Windows\System32\drivers\HECIx64.sys - ok
15:31:14.0112 3964  [ 0F1756D9396740F053221FA6260FCE66 ] C:\Windows\System32\drivers\iusb3xhc.sys
15:31:14.0112 3964  C:\Windows\System32\drivers\iusb3xhc.sys - ok
15:31:14.0114 3964  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
15:31:14.0114 3964  C:\Windows\System32\drivers\usbd.sys - ok
15:31:14.0117 3964  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
15:31:14.0117 3964  C:\Windows\System32\drivers\usbehci.sys - ok
15:31:14.0119 3964  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
15:31:14.0119 3964  C:\Windows\System32\drivers\usbport.sys - ok
15:31:14.0121 3964  [ 47DC062656EA661FE9175DBACAD00E9D ] C:\Windows\System32\drivers\NETwNs64.sys
15:31:14.0121 3964  C:\Windows\System32\drivers\NETwNs64.sys - ok
15:31:14.0124 3964  [ 42B4D3D746B3625EF42233C3897E1F68 ] C:\Windows\System32\drivers\ETD.sys
15:31:14.0124 3964  C:\Windows\System32\drivers\ETD.sys - ok
15:31:14.0126 3964  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
15:31:14.0126 3964  C:\Windows\System32\drivers\i8042prt.sys - ok
15:31:14.0129 3964  [ E63EF8C3271D014F14E2469CE75FECB4 ] C:\Windows\System32\drivers\kbfiltr.sys
15:31:14.0129 3964  C:\Windows\System32\drivers\kbfiltr.sys - ok
15:31:14.0131 3964  [ FC010C7814DDAC17389A7D87EA2EBB39 ] C:\Windows\System32\drivers\L1C62x64.sys
15:31:14.0131 3964  C:\Windows\System32\drivers\L1C62x64.sys - ok
15:31:14.0133 3964  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
15:31:14.0133 3964  C:\Windows\System32\drivers\mouclass.sys - ok
15:31:14.0136 3964  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
15:31:14.0136 3964  C:\Windows\System32\drivers\vwifibus.sys - ok
15:31:14.0138 3964  [ 1C591C1A0CB8ABE215FF66F9A1D8E955 ] C:\Windows\System32\drivers\AmpPal.sys
15:31:14.0138 3964  C:\Windows\System32\drivers\AmpPal.sys - ok
15:31:14.0140 3964  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
15:31:14.0140 3964  C:\Windows\System32\drivers\CmBatt.sys - ok
15:31:14.0143 3964  [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
15:31:14.0143 3964  C:\Windows\System32\drivers\intelppm.sys - ok
15:31:14.0145 3964  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
15:31:14.0145 3964  C:\Windows\System32\drivers\kbdclass.sys - ok
15:31:14.0148 3964  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
15:31:14.0148 3964  C:\Windows\System32\drivers\wmiacpi.sys - ok
15:31:14.0151 3964  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
15:31:14.0151 3964  C:\Windows\System32\drivers\agilevpn.sys - ok
15:31:14.0153 3964  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
15:31:14.0153 3964  C:\Windows\System32\drivers\CompositeBus.sys - ok
15:31:14.0156 3964  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
15:31:14.0156 3964  C:\Windows\System32\drivers\ndistapi.sys - ok
15:31:14.0158 3964  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
15:31:14.0158 3964  C:\Windows\System32\drivers\ndiswan.sys - ok
15:31:14.0160 3964  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
15:31:14.0160 3964  C:\Windows\System32\drivers\rasl2tp.sys - ok
15:31:14.0163 3964  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
15:31:14.0163 3964  C:\Windows\System32\drivers\raspppoe.sys - ok
15:31:14.0165 3964  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
15:31:14.0165 3964  C:\Windows\System32\drivers\raspptp.sys - ok
15:31:14.0167 3964  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
15:31:14.0167 3964  C:\Windows\System32\drivers\rassstp.sys - ok
15:31:14.0170 3964  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
15:31:14.0170 3964  C:\Windows\System32\drivers\ks.sys - ok
15:31:14.0172 3964  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
15:31:14.0172 3964  C:\Windows\System32\drivers\swenum.sys - ok
15:31:14.0174 3964  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
15:31:14.0174 3964  C:\Windows\System32\drivers\umbus.sys - ok
15:31:14.0177 3964  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
15:31:14.0177 3964  C:\Windows\System32\drivers\usbhub.sys - ok
15:31:14.0179 3964  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
15:31:14.0179 3964  C:\Windows\System32\drivers\fastfat.sys - ok
15:31:14.0182 3964  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
15:31:14.0182 3964  C:\Windows\System32\drivers\drmk.sys - ok
15:31:14.0184 3964  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
15:31:14.0184 3964  C:\Windows\System32\drivers\ndproxy.sys - ok
15:31:14.0186 3964  [ F080EADA8715F811B58BD35BB774F2F9 ] C:\Windows\System32\drivers\iusb3hub.sys
15:31:14.0186 3964  C:\Windows\System32\drivers\iusb3hub.sys - ok
15:31:14.0189 3964  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
15:31:14.0189 3964  C:\Windows\System32\drivers\ksthunk.sys - ok
15:31:14.0191 3964  [ 8D4AAC74B571FC356560E5B308955E93 ] C:\Windows\System32\drivers\nvhda64v.sys
15:31:14.0191 3964  C:\Windows\System32\drivers\nvhda64v.sys - ok
15:31:14.0194 3964  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
15:31:14.0194 3964  C:\Windows\System32\drivers\portcls.sys - ok
15:31:14.0196 3964  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
15:31:14.0196 3964  C:\Windows\System32\kernel32.dll - ok
15:31:14.0198 3964  [ 3826718E3B26643470094C414AA762CA ] C:\Windows\System32\drivers\viahduaa.sys
15:31:14.0198 3964  C:\Windows\System32\drivers\viahduaa.sys - ok
15:31:14.0201 3964  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
15:31:14.0201 3964  C:\Windows\System32\difxapi.dll - ok
15:31:14.0203 3964  [ D3A6792AED4841B4D055C7C80C815BB7 ] C:\Windows\System32\urlmon.dll
15:31:14.0203 3964  C:\Windows\System32\urlmon.dll - ok
15:31:14.0205 3964  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
15:31:14.0205 3964  C:\Windows\System32\shell32.dll - ok
15:31:14.0208 3964  [ 5F31D6394CC16489F79D1ED02B147F90 ] C:\Windows\System32\drivers\PXGX112.sys
15:31:14.0208 3964  C:\Windows\System32\drivers\PXGX112.sys - ok
15:31:14.0210 3964  [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
15:31:14.0210 3964  C:\Windows\System32\drivers\hidclass.sys - ok
15:31:14.0212 3964  [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
15:31:14.0212 3964  C:\Windows\System32\drivers\hidparse.sys - ok
15:31:14.0215 3964  [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
15:31:14.0215 3964  C:\Windows\System32\drivers\hidusb.sys - ok
15:31:14.0217 3964  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
15:31:14.0217 3964  C:\Windows\System32\drivers\mouhid.sys - ok
15:31:14.0220 3964  [ 2B4B508AFAC2A563931AF1FE875A5B16 ] C:\Windows\System32\drivers\btmhsf.sys
15:31:14.0220 3964  C:\Windows\System32\drivers\btmhsf.sys - ok
15:31:14.0222 3964  [ 9E3D44CE737388F6BBBB6DD4A1C1847C ] C:\Windows\System32\drivers\iBtFltCoex.sys
15:31:14.0222 3964  C:\Windows\System32\drivers\iBtFltCoex.sys - ok
15:31:14.0224 3964  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] C:\Windows\System32\drivers\bthport.sys
15:31:14.0224 3964  C:\Windows\System32\drivers\bthport.sys - ok
15:31:14.0227 3964  [ F188B7394D81010767B6DF3178519A37 ] C:\Windows\System32\drivers\BTHUSB.SYS
15:31:14.0227 3964  C:\Windows\System32\drivers\BTHUSB.SYS - ok
15:31:14.0229 3964  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
15:31:14.0229 3964  C:\Windows\System32\drivers\usbccgp.sys - ok
15:31:14.0232 3964  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
15:31:14.0232 3964  C:\Windows\System32\drivers\usbvideo.sys - ok
15:31:14.0234 3964  [ CF98190A94F62E405C8CB255018B2315 ] C:\Windows\System32\drivers\bthenum.sys
15:31:14.0234 3964  C:\Windows\System32\drivers\bthenum.sys - ok
15:31:14.0236 3964  [ 3DD798846E2C28102B922C56E71B7932 ] C:\Windows\System32\drivers\rfcomm.sys
15:31:14.0236 3964  C:\Windows\System32\drivers\rfcomm.sys - ok
15:31:14.0239 3964  [ 02DD601B708DD0667E1331FA8518E9FF ] C:\Windows\System32\drivers\bthpan.sys
15:31:14.0239 3964  C:\Windows\System32\drivers\bthpan.sys - ok
15:31:14.0241 3964  [ 988CC6CC49303665D3B2435C51505C3F ] C:\Windows\System32\drivers\btmaux.sys
15:31:14.0241 3964  C:\Windows\System32\drivers\btmaux.sys - ok
15:31:14.0244 3964  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
15:31:14.0244 3964  C:\Windows\System32\comdlg32.dll - ok
15:31:14.0246 3964  [ 8D4DEA45FCDF9FCFD9E31232A07E6EF9 ] C:\Windows\System32\iertutil.dll
15:31:14.0246 3964  C:\Windows\System32\iertutil.dll - ok
15:31:14.0249 3964  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
15:31:14.0249 3964  C:\Windows\System32\msctf.dll - ok
15:31:14.0251 3964  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
15:31:14.0251 3964  C:\Windows\System32\ws2_32.dll - ok
15:31:14.0253 3964  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
15:31:14.0253 3964  C:\Windows\System32\msvcrt.dll - ok
15:31:14.0256 3964  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
15:31:14.0256 3964  C:\Windows\System32\shlwapi.dll - ok
15:31:14.0258 3964  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
15:31:14.0258 3964  C:\Windows\System32\Wldap32.dll - ok
15:31:14.0260 3964  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
15:31:14.0260 3964  C:\Windows\System32\usp10.dll - ok
15:31:14.0262 3964  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
15:31:14.0262 3964  C:\Windows\System32\user32.dll - ok
15:31:14.0264 3964  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
15:31:14.0264 3964  C:\Windows\System32\advapi32.dll - ok
15:31:14.0266 3964  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
15:31:14.0266 3964  C:\Windows\System32\nsi.dll - ok
15:31:14.0269 3964  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
15:31:14.0269 3964  C:\Windows\System32\ole32.dll - ok
15:31:14.0271 3964  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
15:31:14.0271 3964  C:\Windows\System32\lpk.dll - ok
15:31:14.0273 3964  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
15:31:14.0273 3964  C:\Windows\System32\normaliz.dll - ok
15:31:14.0275 3964  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
15:31:14.0275 3964  C:\Windows\System32\oleaut32.dll - ok
15:31:14.0278 3964  [ A4F6142CABA82FB7293ECE5FF864B440 ] C:\Windows\System32\wininet.dll
15:31:14.0278 3964  C:\Windows\System32\wininet.dll - ok
15:31:14.0280 3964  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
15:31:14.0280 3964  C:\Windows\System32\setupapi.dll - ok
15:31:14.0282 3964  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
15:31:14.0282 3964  C:\Windows\System32\clbcatq.dll - ok
15:31:14.0285 3964  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
15:31:14.0285 3964  C:\Windows\System32\imagehlp.dll - ok
15:31:14.0287 3964  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
15:31:14.0287 3964  C:\Windows\System32\imm32.dll - ok
15:31:14.0289 3964  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
15:31:14.0289 3964  C:\Windows\System32\psapi.dll - ok
15:31:14.0291 3964  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
15:31:14.0291 3964  C:\Windows\System32\rpcrt4.dll - ok
15:31:14.0294 3964  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
15:31:14.0294 3964  C:\Windows\System32\sechost.dll - ok
15:31:14.0296 3964  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
15:31:14.0296 3964  C:\Windows\System32\gdi32.dll - ok
15:31:14.0298 3964  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
15:31:14.0298 3964  C:\Windows\System32\cfgmgr32.dll - ok
15:31:14.0300 3964  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
15:31:14.0300 3964  C:\Windows\System32\KernelBase.dll - ok
15:31:14.0303 3964  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
15:31:14.0303 3964  C:\Windows\System32\crypt32.dll - ok
15:31:14.0305 3964  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
15:31:14.0305 3964  C:\Windows\System32\devobj.dll - ok
15:31:14.0307 3964  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
15:31:14.0307 3964  C:\Windows\System32\comctl32.dll - ok
15:31:14.0309 3964  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
15:31:14.0309 3964  C:\Windows\System32\wintrust.dll - ok
15:31:14.0312 3964  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
15:31:14.0312 3964  C:\Windows\System32\msasn1.dll - ok
15:31:14.0314 3964  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
15:31:14.0314 3964  C:\Windows\SysWOW64\normaliz.dll - ok
15:31:14.0316 3964  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
15:31:14.0316 3964  C:\Windows\System32\drivers\dxapi.sys - ok
15:31:14.0319 3964  [ 86F96630D28523F1C402C783F046DEF1 ] C:\Windows\System32\win32k.sys
15:31:14.0319 3964  C:\Windows\System32\win32k.sys - ok
15:31:14.0321 3964  [ CEC1EDF4022DC4DCA40384DCEC672B0E ] C:\Windows\System32\csrsrv.dll
15:31:14.0321 3964  C:\Windows\System32\csrsrv.dll - ok
15:31:14.0323 3964  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
15:31:14.0323 3964  C:\Windows\System32\csrss.exe - ok
15:31:14.0326 3964  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
15:31:14.0326 3964  C:\Windows\System32\basesrv.dll - ok
15:31:14.0328 3964  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
15:31:14.0328 3964  C:\Windows\System32\winsrv.dll - ok
15:31:14.0330 3964  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
15:31:14.0330 3964  C:\Windows\System32\drivers\monitor.sys - ok
15:31:14.0332 3964  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
15:31:14.0332 3964  C:\Windows\System32\profapi.dll - ok
15:31:14.0335 3964  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
15:31:14.0335 3964  C:\Windows\System32\sxssrv.dll - ok
15:31:14.0337 3964  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
15:31:14.0337 3964  C:\Windows\System32\tsddd.dll - ok
15:31:14.0339 3964  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
15:31:14.0339 3964  C:\Windows\System32\wininit.exe - ok
15:31:14.0342 3964  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
15:31:14.0342 3964  C:\Windows\System32\cdd.dll - ok
15:31:14.0344 3964  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
15:31:14.0344 3964  C:\Windows\System32\KBDUS.DLL - ok
15:31:14.0346 3964  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
15:31:14.0346 3964  C:\Windows\System32\RpcRtRemote.dll - ok
15:31:14.0348 3964  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
15:31:14.0348 3964  C:\Windows\System32\sxs.dll - ok
15:31:14.0351 3964  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
15:31:14.0351 3964  C:\Windows\System32\WlS0WndH.dll - ok
15:31:14.0353 3964  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
15:31:14.0353 3964  C:\Windows\System32\cryptbase.dll - ok
15:31:14.0370 3964  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
15:31:14.0370 3964  C:\Windows\System32\apphelp.dll - ok
15:31:14.0373 3964  [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
15:31:14.0373 3964  C:\Windows\System32\lsasrv.dll - ok
15:31:14.0375 3964  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
15:31:14.0375 3964  C:\Windows\System32\lsass.exe - ok
15:31:14.0377 3964  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
15:31:14.0377 3964  C:\Windows\System32\lsm.exe - ok
15:31:14.0379 3964  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
15:31:14.0379 3964  C:\Windows\System32\samsrv.dll - ok
15:31:14.0382 3964  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
15:31:14.0382 3964  C:\Windows\System32\scesrv.dll - ok
15:31:14.0384 3964  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
15:31:14.0384 3964  C:\Windows\System32\scext.dll - ok
15:31:14.0386 3964  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
15:31:14.0386 3964  C:\Windows\System32\secur32.dll - ok
15:31:14.0406 3964  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
15:31:14.0406 3964  C:\Windows\System32\services.exe - ok
15:31:14.0408 3964  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
15:31:14.0408 3964  C:\Windows\System32\sspicli.dll - ok
15:31:14.0411 3964  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
15:31:14.0411 3964  C:\Windows\System32\sspisrv.dll - ok
15:31:14.0413 3964  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
15:31:14.0413 3964  C:\Windows\System32\sysntfy.dll - ok
15:31:14.0415 3964  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
15:31:14.0415 3964  C:\Windows\System32\wmsgapi.dll - ok
15:31:14.0418 3964  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
15:31:14.0418 3964  C:\Windows\System32\cryptdll.dll - ok
15:31:14.0420 3964  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
15:31:14.0420 3964  C:\Windows\System32\wevtapi.dll - ok
15:31:14.0423 3964  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
15:31:14.0423 3964  C:\Windows\System32\srvcli.dll - ok
15:31:14.0425 3964  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
15:31:14.0425 3964  C:\Windows\System32\authz.dll - ok
15:31:14.0427 3964  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
15:31:14.0427 3964  C:\Windows\System32\cngaudit.dll - ok
15:31:14.0429 3964  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
15:31:14.0430 3964  C:\Windows\System32\ncrypt.dll - ok
15:31:14.0432 3964  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
15:31:14.0432 3964  C:\Windows\System32\bcrypt.dll - ok
15:31:14.0434 3964  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
15:31:14.0434 3964  C:\Windows\System32\msprivs.dll - ok
15:31:14.0436 3964  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
15:31:14.0436 3964  C:\Windows\System32\netjoin.dll - ok
15:31:14.0439 3964  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
15:31:14.0439 3964  C:\Windows\System32\negoexts.dll - ok
15:31:14.0441 3964  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
15:31:14.0441 3964  C:\Windows\System32\kerberos.dll - ok
15:31:14.0443 3964  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
15:31:14.0443 3964  C:\Windows\System32\cryptsp.dll - ok
15:31:14.0445 3964  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
15:31:14.0445 3964  C:\Windows\System32\msv1_0.dll - ok
15:31:14.0448 3964  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
15:31:14.0448 3964  C:\Windows\System32\mswsock.dll - ok
15:31:14.0474 3964  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
15:31:14.0474 3964  C:\Windows\System32\wship6.dll - ok
15:31:14.0477 3964  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
15:31:14.0477 3964  C:\Windows\System32\dnsapi.dll - ok
15:31:14.0480 3964  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
15:31:14.0480 3964  C:\Windows\System32\netlogon.dll - ok
15:31:14.0482 3964  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
15:31:14.0482 3964  C:\Windows\System32\logoncli.dll - ok
15:31:14.0484 3964  [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
15:31:14.0484 3964  C:\Windows\System32\schannel.dll - ok
15:31:14.0487 3964  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
15:31:14.0487 3964  C:\Windows\System32\wdigest.dll - ok
15:31:14.0489 3964  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
15:31:14.0489 3964  C:\Windows\System32\rsaenh.dll - ok
15:31:14.0491 3964  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
15:31:14.0491 3964  C:\Windows\System32\TSpkg.dll - ok
15:31:14.0494 3964  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
15:31:14.0494 3964  C:\Windows\System32\pku2u.dll - ok
15:31:14.0496 3964  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
15:31:14.0496 3964  C:\Windows\System32\bcryptprimitives.dll - ok
15:31:14.0498 3964  [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
15:31:14.0498 3964  C:\Windows\System32\LIVESSP.DLL - ok
15:31:14.0500 3964  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
15:31:14.0500 3964  C:\Windows\System32\credssp.dll - ok
15:31:14.0503 3964  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
15:31:14.0503 3964  C:\Windows\System32\efslsaext.dll - ok
15:31:14.0505 3964  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
15:31:14.0505 3964  C:\Windows\System32\scecli.dll - ok
15:31:14.0507 3964  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
15:31:14.0507 3964  C:\Windows\System32\ubpm.dll - ok
15:31:14.0509 3964  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
15:31:14.0509 3964  C:\Windows\System32\winsta.dll - ok
15:31:14.0512 3964  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
15:31:14.0512 3964  C:\Windows\System32\svchost.exe - ok
15:31:14.0513 3964  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
15:31:14.0513 3964  C:\Windows\System32\umpnpmgr.dll - ok
15:31:14.0516 3964  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
15:31:14.0516 3964  C:\Windows\System32\devrtl.dll - ok
15:31:14.0518 3964  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
15:31:14.0518 3964  C:\Windows\System32\SPInf.dll - ok
15:31:14.0520 3964  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
15:31:14.0520 3964  C:\Windows\System32\gpapi.dll - ok
15:31:14.0522 3964  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
15:31:14.0522 3964  C:\Windows\System32\userenv.dll - ok
15:31:14.0525 3964  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
15:31:14.0525 3964  C:\Windows\System32\pcwum.dll - ok
15:31:14.0527 3964  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
15:31:14.0527 3964  C:\Windows\System32\umpo.dll - ok
15:31:14.0529 3964  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
15:31:14.0529 3964  C:\Windows\System32\powrprof.dll - ok
15:31:14.0532 3964  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
15:31:14.0532 3964  C:\Windows\System32\drivers\luafv.sys - ok
15:31:14.0534 3964  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] C:\Windows\System32\drivers\aswFsBlk.sys
15:31:14.0534 3964  C:\Windows\System32\drivers\aswFsBlk.sys - ok
15:31:14.0537 3964  [ FA562F34ED6633C66170B09182B4C049 ] C:\Windows\System32\drivers\aswMonFlt.sys
15:31:14.0537 3964  C:\Windows\System32\drivers\aswMonFlt.sys - ok
15:31:14.0539 3964  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
15:31:14.0539 3964  C:\Windows\System32\rpcss.dll - ok
15:31:14.0541 3964  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
15:31:14.0541 3964  C:\Windows\System32\RpcEpMap.dll - ok
15:31:14.0543 3964  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
15:31:14.0543 3964  C:\Windows\System32\wshqos.dll - ok
15:31:14.0546 3964  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
15:31:14.0546 3964  C:\Windows\System32\WSHTCPIP.DLL - ok
15:31:14.0548 3964  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
15:31:14.0548 3964  C:\Windows\System32\FirewallAPI.dll - ok
15:31:14.0550 3964  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
15:31:14.0550 3964  C:\Windows\System32\version.dll - ok
15:31:14.0553 3964  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
15:31:14.0553 3964  C:\Windows\System32\wevtsvc.dll - ok
15:31:14.0555 3964  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
15:31:14.0555 3964  C:\Windows\System32\audiosrv.dll - ok
15:31:14.0557 3964  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
15:31:14.0557 3964  C:\Windows\System32\ntmarta.dll - ok
15:31:14.0560 3964  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
15:31:14.0560 3964  C:\Windows\System32\FntCache.dll - ok
15:31:14.0562 3964  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
15:31:14.0562 3964  C:\Windows\System32\avrt.dll - ok
15:31:14.0564 3964  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
15:31:14.0564 3964  C:\Windows\System32\mmcss.dll - ok
15:31:14.0566 3964  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
15:31:14.0566 3964  C:\Windows\System32\netprofm.dll - ok
15:31:14.0569 3964  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
15:31:14.0569 3964  C:\Windows\System32\winlogon.exe - ok
15:31:14.0571 3964  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
15:31:14.0571 3964  C:\Windows\System32\MMDevAPI.dll - ok
15:31:14.0573 3964  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
15:31:14.0573 3964  C:\Windows\System32\LogonUI.exe - ok
15:31:14.0576 3964  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
15:31:14.0576 3964  C:\Windows\System32\authui.dll - ok
15:31:14.0578 3964  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
15:31:14.0578 3964  C:\Windows\System32\propsys.dll - ok
15:31:14.0580 3964  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
15:31:14.0580 3964  C:\Windows\System32\wlansvc.dll - ok
15:31:14.0583 3964  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
15:31:14.0583 3964  C:\Windows\System32\MPSSVC.dll - ok
15:31:14.0585 3964  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:31:14.0585 3964  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:31:14.0588 3964  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
15:31:14.0588 3964  C:\Windows\System32\drivers\fltMgr.sys - ok
15:31:14.0590 3964  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
15:31:14.0590 3964  C:\Windows\System32\PSHED.DLL - ok
15:31:14.0592 3964  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:31:14.0592 3964  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:31:14.0595 3964  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
15:31:14.0595 3964  C:\Windows\System32\audiodg.exe - ok
15:31:14.0597 3964  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
15:31:14.0597 3964  C:\Windows\System32\cryptui.dll - ok
15:31:14.0599 3964  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
15:31:14.0599 3964  C:\Windows\System32\gpsvc.dll - ok
15:31:14.0602 3964  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
15:31:14.0602 3964  C:\Windows\System32\profsvc.dll - ok
15:31:14.0604 3964  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
15:31:14.0604 3964  C:\Windows\System32\atl.dll - ok
15:31:14.0606 3964  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
15:31:14.0606 3964  C:\Windows\System32\es.dll - ok
15:31:14.0608 3964  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
15:31:14.0608 3964  C:\Windows\System32\themeservice.dll - ok
15:31:14.0611 3964  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
15:31:14.0611 3964  C:\Windows\System32\comres.dll - ok
15:31:14.0613 3964  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
15:31:14.0613 3964  C:\Windows\System32\Sens.dll - ok
15:31:14.0615 3964  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
15:31:14.0615 3964  C:\Windows\System32\drivers\lltdio.sys - ok
15:31:14.0618 3964  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
15:31:14.0618 3964  C:\Windows\System32\dsrole.dll - ok
15:31:14.0620 3964  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
15:31:14.0620 3964  C:\Windows\System32\nlaapi.dll - ok
15:31:14.0622 3964  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
15:31:14.0622 3964  C:\Windows\System32\slc.dll - ok
15:31:14.0625 3964  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
15:31:14.0625 3964  C:\Windows\System32\uxsms.dll - ok
15:31:14.0627 3964  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
15:31:14.0627 3964  C:\Windows\System32\wtsapi32.dll - ok
15:31:14.0629 3964  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
15:31:14.0629 3964  C:\Windows\System32\drivers\ndisuio.sys - ok
15:31:14.0632 3964  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
15:31:14.0632 3964  C:\Windows\System32\drivers\nwifi.sys - ok
15:31:14.0634 3964  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
15:31:14.0634 3964  C:\Windows\System32\drivers\rspndr.sys - ok
15:31:14.0637 3964  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
15:31:14.0637 3964  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
15:31:14.0639 3964  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
15:31:14.0639 3964  C:\Windows\System32\IPHLPAPI.DLL - ok
15:31:14.0641 3964  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
15:31:14.0641 3964  C:\Windows\System32\lmhsvc.dll - ok
15:31:14.0644 3964  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
15:31:14.0644 3964  C:\Windows\System32\nsisvc.dll - ok
15:31:14.0646 3964  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
15:31:14.0646 3964  C:\Windows\System32\dhcpcore.dll - ok
15:31:14.0648 3964  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
15:31:14.0648 3964  C:\Windows\System32\nrpsrv.dll - ok
15:31:14.0650 3964  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
15:31:14.0650 3964  C:\Windows\System32\winnsi.dll - ok
15:31:14.0653 3964  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
15:31:14.0653 3964  C:\Windows\System32\dnsrslvr.dll - ok
15:31:14.0655 3964  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
15:31:14.0655 3964  C:\Windows\System32\eapphost.dll - ok
15:31:14.0657 3964  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
15:31:14.0657 3964  C:\Windows\System32\eapsvc.dll - ok
15:31:14.0660 3964  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
15:31:14.0660 3964  C:\Windows\System32\keyiso.dll - ok
15:31:14.0662 3964  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
15:31:14.0662 3964  C:\Windows\System32\dhcpcore6.dll - ok
15:31:14.0664 3964  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
15:31:14.0664 3964  C:\Windows\System32\FWPUCLNT.DLL - ok
15:31:14.0667 3964  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
15:31:14.0667 3964  C:\Windows\System32\umb.dll - ok
15:31:14.0669 3964  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
15:31:14.0669 3964  C:\Windows\System32\wlanmsm.dll - ok
15:31:14.0671 3964  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
15:31:14.0671 3964  C:\Windows\System32\wlansec.dll - ok
15:31:14.0674 3964  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
15:31:14.0674 3964  C:\Windows\System32\adtschema.dll - ok
15:31:14.0676 3964  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
15:31:14.0676 3964  C:\Windows\System32\dhcpcsvc.dll - ok
15:31:14.0678 3964  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
15:31:14.0678 3964  C:\Windows\System32\dnsext.dll - ok
15:31:14.0680 3964  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
15:31:14.0681 3964  C:\Windows\System32\eappprxy.dll - ok
15:31:14.0683 3964  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
15:31:14.0683 3964  C:\Windows\System32\onex.dll - ok
15:31:14.0685 3964  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
15:31:14.0685 3964  C:\Windows\System32\dhcpcsvc6.dll - ok
15:31:14.0687 3964  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll


#4 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 21 May 2013 - 01:38 AM

15:31:14.0687 3964  C:\Windows\System32\eappcfg.dll - ok
15:31:14.0690 3964  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
15:31:14.0690 3964  C:\Windows\System32\l2gpstore.dll - ok
15:31:14.0692 3964  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
15:31:14.0692 3964  C:\Windows\System32\msxml6.dll - ok
15:31:14.0694 3964  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
15:31:14.0694 3964  C:\Windows\System32\samlib.dll - ok
15:31:14.0697 3964  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
15:31:14.0697 3964  C:\Windows\System32\shacct.dll - ok
15:31:14.0699 3964  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
15:31:14.0699 3964  C:\Windows\System32\WinSCard.dll - ok
15:31:14.0701 3964  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
15:31:14.0701 3964  C:\Windows\System32\wlanutil.dll - ok
15:31:14.0704 3964  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
15:31:14.0704 3964  C:\Windows\System32\wlgpclnt.dll - ok
15:31:14.0706 3964  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
15:31:14.0706 3964  C:\Windows\System32\uxtheme.dll - ok
15:31:14.0708 3964  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
15:31:14.0708 3964  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
15:31:14.0711 3964  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
15:31:14.0711 3964  C:\Windows\System32\dui70.dll - ok
15:31:14.0713 3964  [ D01D1B40EEF27F64B45165CE0ACDE6CD ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
15:31:14.0713 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe - ok
15:31:14.0716 3964  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
15:31:14.0716 3964  C:\Windows\SysWOW64\ntdll.dll - ok
15:31:14.0718 3964  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
15:31:14.0718 3964  C:\Windows\System32\conhost.exe - ok
15:31:14.0720 3964  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
15:31:14.0720 3964  C:\Windows\System32\duser.dll - ok
15:31:14.0723 3964  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
15:31:14.0723 3964  C:\Windows\System32\wlanext.exe - ok
15:31:14.0725 3964  [ 388027CF7F4876107708499575FA04DB ] C:\Windows\System32\iwmssvc.dll
15:31:14.0725 3964  C:\Windows\System32\iwmssvc.dll - ok
15:31:14.0727 3964  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
15:31:14.0727 3964  C:\Windows\System32\winmm.dll - ok
15:31:14.0729 3964  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
15:31:14.0729 3964  C:\Windows\System32\SndVolSSO.dll - ok
15:31:14.0732 3964  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
15:31:14.0732 3964  C:\Windows\System32\hid.dll - ok
15:31:14.0734 3964  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
15:31:14.0734 3964  C:\Windows\System32\wdmaud.drv - ok
15:31:14.0736 3964  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
15:31:14.0737 3964  C:\Windows\System32\ksuser.dll - ok
15:31:14.0739 3964  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
15:31:14.0739 3964  C:\Windows\System32\dwmapi.dll - ok
15:31:14.0741 3964  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
15:31:14.0741 3964  C:\Windows\System32\wow64.dll - ok
15:31:14.0743 3964  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
15:31:14.0743 3964  C:\Windows\System32\wow64win.dll - ok
15:31:14.0746 3964  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
15:31:14.0746 3964  C:\Windows\System32\xmllite.dll - ok
15:31:14.0748 3964  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
15:31:14.0748 3964  C:\Windows\System32\wow64cpu.dll - ok
15:31:14.0750 3964  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
15:31:14.0750 3964  C:\Windows\SysWOW64\kernel32.dll - ok
15:31:14.0752 3964  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
15:31:14.0752 3964  C:\Windows\System32\AudioSes.dll - ok
15:31:14.0755 3964  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
15:31:14.0755 3964  C:\Windows\System32\msacm32.dll - ok
15:31:14.0757 3964  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
15:31:14.0757 3964  C:\Windows\System32\msacm32.drv - ok
15:31:14.0759 3964  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
15:31:14.0759 3964  C:\Windows\SysWOW64\advapi32.dll - ok
15:31:14.0762 3964  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
15:31:14.0762 3964  C:\Windows\SysWOW64\KernelBase.dll - ok
15:31:14.0763 3964  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
15:31:14.0763 3964  C:\Windows\System32\midimap.dll - ok
15:31:14.0766 3964  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
15:31:14.0766 3964  C:\Windows\System32\WindowsCodecs.dll - ok
15:31:14.0768 3964  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
15:31:14.0768 3964  C:\Windows\System32\AudioEng.dll - ok
15:31:14.0771 3964  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
15:31:14.0771 3964  C:\Windows\SysWOW64\msvcrt.dll - ok
15:31:14.0773 3964  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
15:31:14.0773 3964  C:\Windows\System32\winbrand.dll - ok
15:31:14.0775 3964  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
15:31:14.0775 3964  C:\Windows\System32\VaultCredProvider.dll - ok
15:31:14.0777 3964  [ 7595386AFBA54A95AFF3BDD3FA5FFC48 ] C:\Windows\System32\mfc100.dll
15:31:14.0777 3964  C:\Windows\System32\mfc100.dll - ok
15:31:14.0780 3964  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:31:14.0780 3964  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:31:14.0782 3964  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
15:31:14.0782 3964  C:\Windows\System32\BioCredProv.dll - ok
15:31:14.0784 3964  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
15:31:14.0784 3964  C:\Windows\System32\winbio.dll - ok
15:31:14.0787 3964  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
15:31:14.0787 3964  C:\Windows\System32\AUDIOKSE.dll - ok
15:31:14.0789 3964  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
15:31:14.0789 3964  C:\Windows\System32\credui.dll - ok
15:31:14.0792 3964  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
15:31:14.0792 3964  C:\Windows\SysWOW64\sechost.dll - ok
15:31:14.0794 3964  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
15:31:14.0794 3964  C:\Windows\SysWOW64\rpcrt4.dll - ok
15:31:14.0796 3964  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
15:31:14.0796 3964  C:\Windows\System32\netapi32.dll - ok
15:31:14.0799 3964  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
15:31:14.0799 3964  C:\Windows\System32\vaultcli.dll - ok
15:31:14.0801 3964  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
15:31:14.0801 3964  C:\Windows\SysWOW64\cryptbase.dll - ok
15:31:14.0803 3964  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
15:31:14.0803 3964  C:\Windows\SysWOW64\setupapi.dll - ok
15:31:14.0806 3964  [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
15:31:14.0806 3964  C:\Windows\SysWOW64\sspicli.dll - ok
15:31:14.0808 3964  [ 40864E0894C72EE336D3AC0C7BF1C01A ] C:\Windows\System32\VIASysFx.dll
15:31:14.0808 3964  C:\Windows\System32\VIASysFx.dll - ok
15:31:14.0810 3964  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
15:31:14.0810 3964  C:\Windows\System32\netutils.dll - ok
15:31:14.0813 3964  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
15:31:14.0813 3964  C:\Windows\System32\wkscli.dll - ok
15:31:14.0815 3964  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
15:31:14.0815 3964  C:\Windows\System32\samcli.dll - ok
15:31:14.0817 3964  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
15:31:14.0817 3964  C:\Windows\System32\certCredProvider.dll - ok
15:31:14.0819 3964  [ FAE5A319E490C576C3636332E6DB53F1 ] C:\Windows\System32\ViaMicArrayAPO.dll
15:31:14.0819 3964  C:\Windows\System32\ViaMicArrayAPO.dll - ok
15:31:14.0822 3964  [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
15:31:14.0822 3964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
15:31:14.0825 3964  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
15:31:14.0825 3964  C:\Windows\System32\rasplap.dll - ok
15:31:14.0827 3964  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
15:31:14.0827 3964  C:\Windows\System32\rasapi32.dll - ok
15:31:14.0829 3964  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
15:31:14.0829 3964  C:\Windows\System32\rasman.dll - ok
15:31:14.0832 3964  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
15:31:14.0832 3964  C:\Windows\System32\rtutils.dll - ok
15:31:14.0835 3964  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
15:31:14.0835 3964  C:\Windows\System32\UXInit.dll - ok
15:31:14.0837 3964  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
15:31:14.0837 3964  C:\Windows\System32\oleacc.dll - ok
15:31:14.0839 3964  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
15:31:14.0839 3964  C:\Windows\System32\UIAutomationCore.dll - ok
15:31:14.0842 3964  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:31:14.0842 3964  C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:31:14.0844 3964  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
15:31:14.0844 3964  C:\Windows\SysWOW64\gdi32.dll - ok
15:31:14.0846 3964  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
15:31:14.0846 3964  C:\Windows\SysWOW64\user32.dll - ok
15:31:14.0848 3964  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
15:31:14.0848 3964  C:\Windows\SysWOW64\lpk.dll - ok
15:31:14.0851 3964  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
15:31:14.0851 3964  C:\Windows\SysWOW64\usp10.dll - ok
15:31:14.0853 3964  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
15:31:14.0853 3964  C:\Windows\System32\imageres.dll - ok
15:31:14.0855 3964  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
15:31:14.0855 3964  C:\Windows\SysWOW64\oleaut32.dll - ok
15:31:14.0858 3964  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
15:31:14.0858 3964  C:\Windows\SysWOW64\ole32.dll - ok
15:31:14.0860 3964  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
15:31:14.0860 3964  C:\Windows\SysWOW64\devobj.dll - ok
15:31:14.0862 3964  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
15:31:14.0862 3964  C:\Windows\SysWOW64\imm32.dll - ok
15:31:14.0864 3964  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
15:31:14.0864 3964  C:\Windows\SysWOW64\profapi.dll - ok
15:31:14.0867 3964  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
15:31:14.0867 3964  C:\Windows\SysWOW64\userenv.dll - ok
15:31:14.0869 3964  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
15:31:14.0869 3964  C:\Windows\SysWOW64\wtsapi32.dll - ok
15:31:14.0871 3964  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
15:31:14.0871 3964  C:\Windows\SysWOW64\msctf.dll - ok
15:31:14.0874 3964  [ 4C016FD76ED5C05E84CA8CAB77993961 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
15:31:14.0874 3964  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys - ok
15:31:14.0876 3964  [ DBC598E47E7A382E60E2A4745D41FEF9 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
15:31:14.0876 3964  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe - ok
15:31:14.0879 3964  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
15:31:14.0879 3964  C:\Windows\SysWOW64\winsta.dll - ok
15:31:14.0881 3964  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:31:14.0881 3964  C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
15:31:14.0884 3964  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
15:31:14.0884 3964  C:\Windows\SysWOW64\wintrust.dll - ok
15:31:14.0886 3964  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
15:31:14.0886 3964  C:\Windows\SysWOW64\crypt32.dll - ok
15:31:14.0888 3964  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
15:31:14.0888 3964  C:\Windows\SysWOW64\ws2_32.dll - ok
15:31:14.0891 3964  [ 54AE15322C30814FC23FC26907A563B3 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
15:31:14.0891 3964  C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
15:31:14.0893 3964  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
15:31:14.0893 3964  C:\Windows\SysWOW64\nsi.dll - ok
15:31:14.0895 3964  [ 1F9319EA6D87522C70271A55AC3BE365 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
15:31:14.0895 3964  C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
15:31:14.0898 3964  [ 40F2889475EDC401F98FD7938F0BBF66 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
15:31:14.0898 3964  C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
15:31:14.0900 3964  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
15:31:14.0900 3964  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
15:31:14.0903 3964  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
15:31:14.0903 3964  C:\Windows\SysWOW64\msasn1.dll - ok
15:31:14.0905 3964  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
15:31:14.0905 3964  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
15:31:14.0908 3964  [ 0C70F8F5CC8359AC633724BECF6ABAF3 ] C:\Program Files\AVAST Software\Avast\ashBase.dll
15:31:14.0908 3964  C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
15:31:14.0910 3964  [ F79B2469046122E24450FB66AE580C83 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
15:31:14.0910 3964  C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
15:31:14.0913 3964  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
15:31:14.0913 3964  C:\Windows\SysWOW64\psapi.dll - ok
15:31:14.0915 3964  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
15:31:14.0915 3964  C:\Windows\SysWOW64\version.dll - ok
15:31:14.0917 3964  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
15:31:14.0917 3964  C:\Windows\SysWOW64\wsock32.dll - ok
15:31:14.0920 3964  [ C5B6468422DB1C8AA36C32CBB0197E5E ] C:\Windows\SysWOW64\wininet.dll
15:31:14.0920 3964  C:\Windows\SysWOW64\wininet.dll - ok
15:31:14.0922 3964  [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Windows\System32\msvcr100.dll
15:31:14.0922 3964  C:\Windows\System32\msvcr100.dll - ok
15:31:14.0924 3964  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
15:31:14.0924 3964  C:\Windows\SysWOW64\shlwapi.dll - ok
15:31:14.0927 3964  [ 9BDDA34DC4890169DE5BA21134B33EFB ] C:\Windows\SysWOW64\iertutil.dll
15:31:14.0927 3964  C:\Windows\SysWOW64\iertutil.dll - ok
15:31:14.0929 3964  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
15:31:14.0929 3964  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
15:31:14.0931 3964  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
15:31:14.0931 3964  C:\Windows\System32\msimg32.dll - ok
15:31:14.0934 3964  [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Windows\System32\msvcp100.dll
15:31:14.0934 3964  C:\Windows\System32\msvcp100.dll - ok
15:31:14.0936 3964  [ 5E2F28A979A0CE9B43F1815A593617C5 ] C:\Windows\System32\mfc100enu.dll
15:31:14.0936 3964  C:\Windows\System32\mfc100enu.dll - ok
15:31:14.0939 3964  [ 5203BA7F91EE2E113BB5C6AE1816E704 ] C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll
15:31:14.0939 3964  C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll - ok
15:31:14.0941 3964  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
15:31:14.0941 3964  C:\Windows\System32\wlanapi.dll - ok
15:31:14.0944 3964  [ C3473CA7B6114D6FAA9054C9C12B4DAD ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
15:31:14.0944 3964  C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
15:31:14.0947 3964  [ 95D3964DA430CF95CEC424C98A90B013 ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll
15:31:14.0947 3964  C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll - ok
15:31:14.0950 3964  [ 323764C9E02492A382EE9480314850E3 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
15:31:14.0950 3964  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
15:31:14.0953 3964  [ 3FA1CAE9D094AA7718ECBEC2CB9F2EE6 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
15:31:14.0953 3964  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
15:31:14.0955 3964  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
15:31:14.0955 3964  C:\Windows\System32\winspool.drv - ok
15:31:14.0958 3964  [ 930FE4496413D491FF78E61FA3DEAC1E ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll
15:31:14.0958 3964  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok
15:31:14.0960 3964  [ BF1152024FDD908A1535E69FDB21439E ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
15:31:14.0961 3964  C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
15:31:14.0963 3964  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
15:31:14.0963 3964  C:\Windows\System32\netcfgx.dll - ok
15:31:14.0966 3964  [ 7D3E562070B0A0D89D3DA07118F32B3C ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
15:31:14.0966 3964  C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
15:31:14.0968 3964  [ D3A8AF8BC003E16DAB96AB1ED20A52B8 ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
15:31:14.0968 3964  C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
15:31:14.0971 3964  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
15:31:14.0971 3964  C:\Windows\System32\drivers\vwifimp.sys - ok
15:31:14.0973 3964  [ 4E7F83E1F6AEFA38E270EA7353D6911E ] C:\Windows\SysWOW64\urlmon.dll
15:31:14.0973 3964  C:\Windows\SysWOW64\urlmon.dll - ok
15:31:14.0975 3964  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
15:31:14.0975 3964  C:\Windows\SysWOW64\apphelp.dll - ok
15:31:14.0978 3964  [ C86121BF74BB07FC99DB9DB0ED1B49FF ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
15:31:14.0978 3964  C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
15:31:14.0980 3964  [ 5C5E3AFD499E5146FEF1DA5EF8A23205 ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
15:31:14.0980 3964  C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
15:31:14.0983 3964  [ 920B4D089E02FB4A3F8ADA8B4BEF9B26 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
15:31:14.0983 3964  C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
15:31:14.0986 3964  [ 7D289D7E6253BC998F51CAADB54C5192 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
15:31:14.0986 3964  C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
15:31:14.0988 3964  [ C8BBB6F9C466E0C9E910396522B2E278 ] C:\Program Files\AVAST Software\Avast\afwCore.dll
15:31:14.0988 3964  C:\Program Files\AVAST Software\Avast\afwCore.dll - ok
15:31:14.0991 3964  [ C2009C6A452BD07B30D773349589B762 ] C:\Program Files\AVAST Software\Avast\afwServ.exe
15:31:14.0991 3964  C:\Program Files\AVAST Software\Avast\afwServ.exe - ok
15:31:14.0993 3964  [ DA8B8A95780F406EBB213C1C5D4C0D90 ] C:\Program Files\AVAST Software\Avast\ashServ.dll
15:31:14.0993 3964  C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
15:31:14.0995 3964  [ 69B9DD83535C421F229227B0B303082A ] C:\Program Files\AVAST Software\Avast\ashTask.dll
15:31:14.0995 3964  C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
15:31:14.0998 3964  [ D873AF6112E377CDBCBF3055B86C30A9 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
15:31:14.0998 3964  C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
15:31:15.0000 3964  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
15:31:15.0000 3964  C:\Windows\SysWOW64\winhttp.dll - ok
15:31:15.0003 3964  [ 64BF5CD9B9D7BD391CBC9EDE847A2902 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
15:31:15.0003 3964  C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
15:31:15.0006 3964  [ 91F1D56F6DC6B2AEC45369765787B64D ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
15:31:15.0006 3964  C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
15:31:15.0008 3964  [ 1919B2A6BB69BD206A4F0C20FBA5E4B6 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
15:31:15.0008 3964  C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
15:31:15.0010 3964  [ D068312FEC645A9D7C1398808734B142 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
15:31:15.0010 3964  C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
15:31:15.0013 3964  [ B3B4DDCD7263993FA3C42573066A16BE ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
15:31:15.0013 3964  C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
15:31:15.0015 3964  [ E43B269964099D96DDDAAED0E57F109E ] C:\Program Files\AVAST Software\Avast\avastIP.dll
15:31:15.0015 3964  C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
15:31:15.0017 3964  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:31:15.0017 3964  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:31:15.0019 3964  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
15:31:15.0019 3964  C:\Windows\SysWOW64\webio.dll - ok
15:31:15.0022 3964  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
15:31:15.0022 3964  C:\Windows\SysWOW64\winnsi.dll - ok
15:31:15.0024 3964  [ E9BF376A7B7BADC2A5D879A1270F4337 ] C:\Program Files\AVAST Software\Avast\afwCoreServ.dll
15:31:15.0024 3964  C:\Program Files\AVAST Software\Avast\afwCoreServ.dll - ok
15:31:15.0027 3964  [ BB2BE07A396B5B22AC56787FACF8D86F ] C:\Program Files\AVAST Software\Avast\aswDld.dll
15:31:15.0027 3964  C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
15:31:15.0029 3964  [ 79B5BAEC23456D3F7EC10FC8374DA2CC ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
15:31:15.0029 3964  C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
15:31:15.0031 3964  [ C17F127ED9724E6D8A8C3B4F9476D497 ] C:\Program Files\AVAST Software\Avast\afwCoreClient.dll
15:31:15.0031 3964  C:\Program Files\AVAST Software\Avast\afwCoreClient.dll - ok
15:31:15.0034 3964  [ 9356678F205148983AE2678849EF2341 ] C:\Program Files\AVAST Software\Avast\afwRpc.dll
15:31:15.0034 3964  C:\Program Files\AVAST Software\Avast\afwRpc.dll - ok
15:31:15.0036 3964  [ 52D0FE133CBE687ED4E83FBDA70EBC9C ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
15:31:15.0036 3964  C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
15:31:15.0039 3964  [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
15:31:15.0039 3964  C:\Windows\SysWOW64\rasapi32.dll - ok
15:31:15.0041 3964  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
15:31:15.0041 3964  C:\Windows\SysWOW64\credssp.dll - ok
15:31:15.0043 3964  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
15:31:15.0043 3964  C:\Windows\SysWOW64\cryptsp.dll - ok
15:31:15.0046 3964  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
15:31:15.0046 3964  C:\Windows\SysWOW64\mswsock.dll - ok
15:31:15.0048 3964  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:31:15.0048 3964  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:31:15.0050 3964  [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
15:31:15.0050 3964  C:\Windows\SysWOW64\wscapi.dll - ok
15:31:15.0053 3964  [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
15:31:15.0053 3964  C:\Windows\SysWOW64\wscisvif.dll - ok
15:31:15.0055 3964  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
15:31:15.0055 3964  C:\Windows\SysWOW64\wship6.dll - ok
15:31:15.0057 3964  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:31:15.0057 3964  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:31:15.0060 3964  [ 0C84794FAFB54FFCCC197392B62F8D84 ] C:\Program Files\AVAST Software\Avast\afwGeoIP.dll
15:31:15.0060 3964  C:\Program Files\AVAST Software\Avast\afwGeoIP.dll - ok
15:31:15.0062 3964  [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
15:31:15.0062 3964  C:\Windows\SysWOW64\rasman.dll - ok
15:31:15.0064 3964  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
15:31:15.0064 3964  C:\Windows\System32\shsvcs.dll - ok
15:31:15.0067 3964  [ 73A720073843EDB55D7E67C42E846BE8 ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswEngin.dll
15:31:15.0067 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswEngin.dll - ok
15:31:15.0069 3964  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
15:31:15.0069 3964  C:\Windows\System32\schedsvc.dll - ok
15:31:15.0072 3964  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
15:31:15.0072 3964  C:\Windows\System32\netshell.dll - ok
15:31:15.0074 3964  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
15:31:15.0074 3964  C:\Windows\System32\ktmw32.dll - ok
15:31:15.0076 3964  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
15:31:15.0076 3964  C:\Windows\System32\fveapi.dll - ok
15:31:15.0078 3964  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
15:31:15.0078 3964  C:\Windows\System32\fvecerts.dll - ok
15:31:15.0081 3964  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
15:31:15.0081 3964  C:\Windows\System32\taskcomp.dll - ok
15:31:15.0083 3964  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
15:31:15.0083 3964  C:\Windows\System32\tbs.dll - ok
15:31:15.0085 3964  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
15:31:15.0085 3964  C:\Windows\System32\wiarpc.dll - ok
15:31:15.0088 3964  [ 64790077F7574E0EB97F3CD2C7B46796 ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswCmnIS.dll
15:31:15.0088 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswCmnIS.dll - ok
15:31:15.0090 3964  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
15:31:15.0090 3964  C:\Windows\System32\drivers\http.sys - ok
15:31:15.0093 3964  [ 09C5CB1DEEFFB23C29FDF135C70E506E ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswCmnOS.dll
15:31:15.0093 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswCmnOS.dll - ok
15:31:15.0095 3964  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
15:31:15.0095 3964  C:\Windows\System32\spoolsv.exe - ok
15:31:15.0098 3964  [ 3E573496112D62DFCCE4E0D745E6D1DD ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswCmnBS.dll
15:31:15.0098 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswCmnBS.dll - ok
15:31:15.0100 3964  [ 9B7395789E3791A3B6D000FE6F8B131E ] C:\Windows\System32\SCardSvr.dll
15:31:15.0100 3964  C:\Windows\System32\SCardSvr.dll - ok
15:31:15.0103 3964  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
15:31:15.0103 3964  C:\Windows\System32\BFE.DLL - ok
15:31:15.0105 3964  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
15:31:15.0105 3964  C:\Windows\System32\drivers\srvnet.sys - ok
15:31:15.0108 3964  [ F4B53E84EBD4EDC4938E9B40B583D6FE ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswScan.dll
15:31:15.0108 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswScan.dll - ok
15:31:15.0110 3964  [ 32ED62D8C410117E09B0B7CA44FC4456 ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswRep.dll
15:31:15.0110 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswRep.dll - ok
15:31:15.0113 3964  [ 711726A65821211AC12F21EA8B7CBE83 ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
15:31:15.0113 3964  C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok
15:31:15.0115 3964  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
15:31:15.0115 3964  C:\Windows\System32\drivers\bowser.sys - ok
15:31:15.0118 3964  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
15:31:15.0118 3964  C:\Windows\System32\drivers\mpsdrv.sys - ok
15:31:15.0120 3964  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
15:31:15.0120 3964  C:\Windows\System32\drivers\mrxsmb.sys - ok
15:31:15.0122 3964  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:31:15.0122 3964  C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:31:15.0125 3964  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
15:31:15.0125 3964  C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:31:15.0127 3964  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
15:31:15.0127 3964  C:\Windows\System32\drivers\srv.sys - ok
15:31:15.0130 3964  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
15:31:15.0130 3964  C:\Windows\System32\drivers\srv2.sys - ok
15:31:15.0132 3964  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
15:31:15.0132 3964  C:\Windows\System32\wkssvc.dll - ok
15:31:15.0134 3964  [ 2399F8068E969D9C25A05B6F779A790A ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswFiDb.dll
15:31:15.0134 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswFiDb.dll - ok
15:31:15.0137 3964  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
15:31:15.0137 3964  C:\Windows\System32\browser.dll - ok
15:31:15.0139 3964  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
15:31:15.0139 3964  C:\Windows\System32\netmsg.dll - ok
15:31:15.0141 3964  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
15:31:15.0141 3964  C:\Windows\System32\srvsvc.dll - ok
15:31:15.0144 3964  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
15:31:15.0144 3964  C:\Windows\System32\sscore.dll - ok
15:31:15.0146 3964  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
15:31:15.0146 3964  C:\Windows\System32\wfapigp.dll - ok
15:31:15.0148 3964  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
15:31:15.0148 3964  C:\Windows\System32\clusapi.dll - ok
15:31:15.0150 3964  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
15:31:15.0150 3964  C:\Windows\System32\mscms.dll - ok
15:31:15.0153 3964  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
15:31:15.0153 3964  C:\Windows\System32\resutils.dll - ok
15:31:15.0156 3964  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
15:31:15.0156 3964  C:\Windows\System32\pcasvc.dll - ok
15:31:15.0158 3964  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
15:31:15.0158 3964  C:\Windows\System32\snmptrap.exe - ok
15:31:15.0161 3964  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
15:31:15.0161 3964  C:\Windows\System32\sstpsvc.dll - ok
15:31:15.0164 3964  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
15:31:15.0164 3964  C:\Windows\System32\provsvc.dll - ok
15:31:15.0166 3964  [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
15:31:15.0166 3964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
15:31:15.0169 3964  [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCore64.exe
15:31:15.0169 3964  C:\Program Files\SUPERAntiSpyware\SASCore64.exe - ok
15:31:15.0171 3964  [ E71A4D23EBE50CEC0C6FDEF7E7BFFCD0 ] C:\Program Files\AVAST Software\Avast\defs\13052001\algo.dll
15:31:15.0171 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\algo.dll - ok
15:31:15.0174 3964  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:31:15.0174 3964  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
15:31:15.0176 3964  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
15:31:15.0176 3964  C:\Windows\System32\rasadhlp.dll - ok
15:31:15.0179 3964  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
15:31:15.0179 3964  C:\Windows\SysWOW64\shell32.dll - ok
15:31:15.0181 3964  [ 5FD563E60BD9B100A248EC58F184A987 ] C:\Program Files\AVAST Software\Avast\defs\13052001\fwAux.dll
15:31:15.0181 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\fwAux.dll - ok
15:31:15.0184 3964  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:31:15.0184 3964  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:31:15.0186 3964  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:31:15.0186 3964  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:31:15.0188 3964  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
15:31:15.0188 3964  C:\Windows\System32\dllhost.exe - ok
15:31:15.0191 3964  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
15:31:15.0191 3964  C:\Windows\System32\IDStore.dll - ok
15:31:15.0193 3964  [ F48FEB7DA35821DA15E0B006DCB9A169 ] C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
15:31:15.0193 3964  C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE - ok
15:31:15.0196 3964  [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
15:31:15.0196 3964  C:\Windows\SysWOW64\secur32.dll - ok
15:31:15.0198 3964  [ 001D7099C3DB8E53A955FF4D66E25AA2 ] C:\Windows\System32\kbd101.dll
15:31:15.0198 3964  C:\Windows\System32\kbd101.dll - ok
15:31:15.0200 3964  [ A1D990022654CFE37E2561E540F0253B ] C:\Windows\System32\kbd106.dll
15:31:15.0200 3964  C:\Windows\System32\kbd106.dll - ok
15:31:15.0202 3964  [ 6D707786D7163383C64F07263BB9478E ] C:\Windows\System32\KBDJPN.DLL
15:31:15.0202 3964  C:\Windows\System32\KBDJPN.DLL - ok
15:31:15.0205 3964  [ 117865AD39587EB4DA218AAF2E559B8C ] C:\Windows\System32\kbdnec.dll
15:31:15.0205 3964  C:\Windows\System32\kbdnec.dll - ok
15:31:15.0207 3964  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
15:31:15.0207 3964  C:\Windows\System32\taskhost.exe - ok
15:31:15.0209 3964  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
15:31:15.0209 3964  C:\Windows\SysWOW64\msi.dll - ok
15:31:15.0212 3964  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
15:31:15.0212 3964  C:\Windows\SysWOW64\fltLib.dll - ok
15:31:15.0214 3964  [ F17D1D393BBC69C5322FBFAFACA28C7F ] C:\Windows\System32\certprop.dll
15:31:15.0214 3964  C:\Windows\System32\certprop.dll - ok
15:31:15.0216 3964  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
15:31:15.0216 3964  C:\Windows\System32\cryptnet.dll - ok
15:31:15.0218 3964  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
15:31:15.0218 3964  C:\Windows\System32\cryptsvc.dll - ok
15:31:15.0221 3964  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
15:31:15.0221 3964  C:\Windows\System32\dps.dll - ok
15:31:15.0223 3964  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
15:31:15.0223 3964  C:\Windows\System32\FDResPub.dll - ok
15:31:15.0225 3964  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
15:31:15.0225 3964  C:\Windows\System32\vssapi.dll - ok
15:31:15.0227 3964  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
15:31:15.0227 3964  C:\Windows\System32\WSDApi.dll - ok
15:31:15.0230 3964  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
15:31:15.0230 3964  C:\Windows\SysWOW64\clbcatq.dll - ok
15:31:15.0232 3964  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
15:31:15.0232 3964  C:\Windows\SysWOW64\SensApi.dll - ok
15:31:15.0235 3964  [ C1DD6288ABA16EECBA39C3299C4040FE ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
15:31:15.0235 3964  C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
15:31:15.0237 3964  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
15:31:15.0237 3964  C:\Windows\System32\IKEEXT.DLL - ok
15:31:15.0239 3964  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
15:31:15.0239 3964  C:\Windows\System32\taskschd.dll - ok
15:31:15.0242 3964  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
15:31:15.0242 3964  C:\Windows\System32\webservices.dll - ok
15:31:15.0244 3964  [ E385B9E07B08C3F686B45D52C9F5A9B9 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
15:31:15.0244 3964  C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
15:31:15.0246 3964  [ E28034BDEDD48E44C889FF40C462005D ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
15:31:15.0246 3964  C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
15:31:15.0249 3964  [ B20C06BDE50900C33CEE861E5B288ABF ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
15:31:15.0249 3964  C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
15:31:15.0251 3964  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
15:31:15.0251 3964  C:\Windows\SysWOW64\netapi32.dll - ok
15:31:15.0254 3964  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
15:31:15.0254 3964  C:\Windows\SysWOW64\netutils.dll - ok
15:31:15.0256 3964  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
15:31:15.0256 3964  C:\Windows\SysWOW64\srvcli.dll - ok
15:31:15.0258 3964  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
15:31:15.0258 3964  C:\Windows\SysWOW64\wkscli.dll - ok
15:31:15.0261 3964  [ DAC5B3F300E08EFA9782F6DD0E4A9FDA ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
15:31:15.0261 3964  C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
15:31:15.0263 3964  [ 5B07E1B2414CE6A7F8942493F194B697 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
15:31:15.0263 3964  C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
15:31:15.0265 3964  [ F9AA8285BE0CCB3BDD77549DFC817423 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
15:31:15.0265 3964  C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
15:31:15.0267 3964  [ 8479249A6E3ED306524D60AD1222F1CB ] C:\Program Files\AVAST Software\Avast\AhResSPM.dll
15:31:15.0267 3964  C:\Program Files\AVAST Software\Avast\AhResSPM.dll - ok
15:31:15.0270 3964  [ 90622E62EABD12FFEACEF083E765707C ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
15:31:15.0270 3964  C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
15:31:15.0272 3964  [ B7F721185071CF20CAB25CC2869BE0C2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
15:31:15.0272 3964  C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
15:31:15.0275 3964  [ EAB975DB4C2805927FE5BD047D05C9AA ] C:\Windows\SysWOW64\netshell.dll
15:31:15.0275 3964  C:\Windows\SysWOW64\netshell.dll - ok
15:31:15.0277 3964  [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
15:31:15.0277 3964  C:\Windows\SysWOW64\wlanapi.dll - ok
15:31:15.0279 3964  [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
15:31:15.0279 3964  C:\Windows\SysWOW64\wlanutil.dll - ok
15:31:15.0282 3964  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
15:31:15.0282 3964  C:\Windows\System32\vpnikeapi.dll - ok
15:31:15.0284 3964  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
15:31:15.0284 3964  C:\Windows\SysWOW64\rsaenh.dll - ok
15:31:15.0286 3964  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
15:31:15.0286 3964  C:\Windows\System32\fundisc.dll - ok
15:31:15.0289 3964  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
15:31:15.0289 3964  C:\Windows\System32\aepic.dll - ok
15:31:15.0291 3964  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
15:31:15.0291 3964  C:\Windows\System32\drivers\PEAuth.sys - ok
15:31:15.0293 3964  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
15:31:15.0293 3964  C:\Windows\System32\vsstrace.dll - ok
15:31:15.0296 3964  [ 205E1B699FD3F2F9B036EEA2EC30C620 ] C:\Windows\SysWOW64\PnkBstrA.exe
15:31:15.0296 3964  C:\Windows\SysWOW64\PnkBstrA.exe - ok
15:31:15.0298 3964  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
15:31:15.0298 3964  C:\Windows\System32\ncsi.dll - ok
15:31:15.0300 3964  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
15:31:15.0300 3964  C:\Windows\System32\nlasvc.dll - ok
15:31:15.0302 3964  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
15:31:15.0302 3964  C:\Windows\System32\sfc.dll - ok
15:31:15.0305 3964  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
15:31:15.0305 3964  C:\Windows\System32\sfc_os.dll - ok
15:31:15.0307 3964  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
15:31:15.0307 3964  C:\Windows\System32\drivers\secdrv.sys - ok
15:31:15.0309 3964  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
15:31:15.0309 3964  C:\Windows\System32\drivers\tcpipreg.sys - ok
15:31:15.0312 3964  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
15:31:15.0312 3964  C:\Windows\System32\IPSECSVC.DLL - ok
15:31:15.0314 3964  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
15:31:15.0314 3964  C:\Windows\System32\sysmain.dll - ok
15:31:15.0317 3964  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
15:31:15.0317 3964  C:\Windows\System32\wiaservc.dll - ok
15:31:15.0319 3964  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
15:31:15.0319 3964  C:\Windows\System32\winhttp.dll - ok
15:31:15.0321 3964  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
15:31:15.0321 3964  C:\Windows\System32\webio.dll - ok
15:31:15.0324 3964  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
15:31:15.0324 3964  C:\Windows\System32\httpapi.dll - ok
15:31:15.0326 3964  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
15:31:15.0326 3964  C:\Windows\System32\ssdpapi.dll - ok
15:31:15.0328 3964  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
15:31:15.0328 3964  C:\Windows\System32\FwRemoteSvr.dll - ok
15:31:15.0330 3964  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
15:31:15.0330 3964  C:\Windows\SysWOW64\nlaapi.dll - ok
15:31:15.0333 3964  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
15:31:15.0333 3964  C:\Windows\System32\wiatrace.dll - ok
15:31:15.0335 3964  [ AAC3C0194EEBA939E18590411130CF43 ] C:\Program Files\AVAST Software\Avast\defs\13052001\ArPot.dll
15:31:15.0335 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\ArPot.dll - ok
15:31:15.0338 3964  [ A2EAE71B251BD27B0F4185CF9699A1C2 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
15:31:15.0338 3964  C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
15:31:15.0340 3964  [ 8ED6DA45BAB5CFC809229F26D4D4A2CE ] C:\Program Files\AVAST Software\Avast\libeay32.dll
15:31:15.0340 3964  C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
15:31:15.0343 3964  [ 44BD658E0E4D21C42023AD9EBEFFDB90 ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
15:31:15.0343 3964  C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
15:31:15.0345 3964  [ 136760C1E9697BAF4ECDEAE5590A0806 ] C:\Windows\System32\wbem\WMIsvc.dll
15:31:15.0345 3964  C:\Windows\System32\wbem\WMIsvc.dll - ok
15:31:15.0348 3964  [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:31:15.0348 3964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
15:31:15.0350 3964  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
15:31:15.0350 3964  C:\Windows\System32\trkwks.dll - ok
15:31:15.0353 3964  [ A5ACADEE1EC8F9105CBD683A4D722CFE ] C:\Windows\System32\wbemcomn2.dll
15:31:15.0353 3964  C:\Windows\System32\wbemcomn2.dll - ok
15:31:15.0355 3964  [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13052001\exts.dll
15:31:15.0355 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\exts.dll - ok
15:31:15.0357 3964  [ BF0873241C01C97E9E027C68863914C6 ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
15:31:15.0357 3964  C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
15:31:15.0360 3964  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
15:31:15.0360 3964  C:\Windows\SysWOW64\dnsapi.dll - ok
15:31:15.0362 3964  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
15:31:15.0362 3964  C:\Windows\SysWOW64\NapiNSP.dll - ok
15:31:15.0364 3964  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
15:31:15.0364 3964  C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:31:15.0367 3964  [ FCEABD99844A035DB8D96E6E8BCCBA5E ] C:\Windows\System32\wbem\fastprox.dll
15:31:15.0367 3964  C:\Windows\System32\wbem\fastprox.dll - ok
15:31:15.0369 3964  [ 636681CA4ECC169E763A611991E7A0C7 ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:31:15.0369 3964  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:31:15.0372 3964  [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
15:31:15.0372 3964  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
15:31:15.0374 3964  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
15:31:15.0374 3964  C:\Windows\SysWOW64\winrnr.dll - ok
15:31:15.0376 3964  [ AC122407B29378FF9646F03404AC7C54 ] C:\Windows\SysWOW64\wshbth.dll
15:31:15.0376 3964  C:\Windows\SysWOW64\wshbth.dll - ok
15:31:15.0379 3964  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:31:15.0379 3964  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:31:15.0381 3964  [ F6F7943CAC73C59FA9996206A899146D ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
15:31:15.0381 3964  C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
15:31:15.0384 3964  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
15:31:15.0384 3964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
15:31:15.0386 3964  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
15:31:15.0386 3964  C:\Windows\System32\SensApi.dll - ok
15:31:15.0388 3964  [ 0F2B9A24F8463EEC4E363AA36F763917 ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
15:31:15.0388 3964  C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
15:31:15.0391 3964  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
15:31:15.0391 3964  C:\Windows\System32\wer.dll - ok
15:31:15.0393 3964  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
15:31:15.0393 3964  C:\Windows\SysWOW64\rasadhlp.dll - ok
15:31:15.0395 3964  [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
15:31:15.0395 3964  C:\Windows\SysWOW64\security.dll - ok
15:31:15.0398 3964  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
15:31:15.0398 3964  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
15:31:15.0400 3964  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
15:31:15.0400 3964  C:\Windows\System32\ntdsapi.dll - ok
15:31:15.0402 3964  [ 4D485945E7589FC64E4D6E59ECD483B7 ] C:\Windows\System32\wbem\wbemprox.dll
15:31:15.0402 3964  C:\Windows\System32\wbem\wbemprox.dll - ok
15:31:15.0405 3964  [ 0C212FA537F003B8F8C90A85D0F8DF27 ] C:\Windows\System32\wbem\wbemcore.dll
15:31:15.0405 3964  C:\Windows\System32\wbem\wbemcore.dll - ok
15:31:15.0407 3964  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
15:31:15.0407 3964  C:\Windows\System32\dbghelp.dll - ok
15:31:15.0410 3964  [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
15:31:15.0410 3964  C:\Windows\System32\wscsvc.dll - ok
15:31:15.0412 3964  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
15:31:15.0412 3964  C:\Windows\System32\aeevts.dll - ok
15:31:15.0414 3964  [ 2FFBCD4394E60013EAF45427EC4E6A1E ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswAR.dll
15:31:15.0414 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswAR.dll - ok
15:31:15.0417 3964  [ DC1BBA01FFB5745B8862931E7DE7304A ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
15:31:15.0417 3964  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
15:31:15.0419 3964  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
15:31:15.0419 3964  C:\Windows\System32\msxml3.dll - ok
15:31:15.0422 3964  [ 9EC1D983086E5FA14FFB3518B7E3B596 ] C:\Program Files\AVAST Software\Avast\defs\13052001\aswRawFS.dll
15:31:15.0422 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\aswRawFS.dll - ok
15:31:15.0424 3964  [ A67E03E39172459935C591F6E0534569 ] C:\Windows\System32\wbem\esscli.dll
15:31:15.0424 3964  C:\Windows\System32\wbem\esscli.dll - ok
15:31:15.0427 3964  [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
15:31:15.0427 3964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
15:31:15.0429 3964  [ 10AA3E99691C9782308A4768F0485D8D ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
15:31:15.0429 3964  C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
15:31:15.0432 3964  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
15:31:15.0432 3964  C:\Windows\System32\iphlpsvc.dll - ok
15:31:15.0434 3964  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
15:31:15.0434 3964  C:\Windows\SysWOW64\samcli.dll - ok
15:31:15.0436 3964  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
15:31:15.0436 3964  C:\Windows\System32\sqmapi.dll - ok
15:31:15.0439 3964  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
15:31:15.0439 3964  C:\Windows\System32\mpr.dll - ok
15:31:15.0441 3964  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
15:31:15.0441 3964  C:\Windows\System32\PlaySndSrv.dll - ok
15:31:15.0443 3964  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
15:31:15.0443 3964  C:\Windows\System32\wdscore.dll - ok
15:31:15.0445 3964  [ BA5CA827B50D8FE46478BA867B08D020 ] C:\Windows\System32\wbem\wbemsvc.dll
15:31:15.0445 3964  C:\Windows\System32\wbem\wbemsvc.dll - ok
15:31:15.0448 3964  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
15:31:15.0448 3964  C:\Windows\System32\hnetcfg.dll - ok
15:31:15.0450 3964  [ F37BCA66EA95079C806D80B23E041876 ] C:\Windows\System32\wbem\wmiutils.dll
15:31:15.0450 3964  C:\Windows\System32\wbem\wmiutils.dll - ok
15:31:15.0453 3964  [ 56C9C92B854E6AB6ECDA5C531B6ACF5A ] C:\Windows\System32\wbem\repdrvfs.dll
15:31:15.0453 3964  C:\Windows\System32\wbem\repdrvfs.dll - ok
15:31:15.0455 3964  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
15:31:15.0455 3964  C:\Windows\System32\nci.dll - ok
15:31:15.0457 3964  [ 6C399566C1E3E7D475C3698297221A20 ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:31:15.0457 3964  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:31:15.0459 3964  [ 0281DDC918760773F676CE924B153AAF ] C:\Windows\System32\ncobjapi.dll
15:31:15.0459 3964  C:\Windows\System32\ncobjapi.dll - ok
15:31:15.0462 3964  [ 5935C3E7DCDA36AA0E4D9284C8AC319B ] C:\Windows\System32\wbem\wbemess.dll
15:31:15.0462 3964  C:\Windows\System32\wbem\wbemess.dll - ok
15:31:15.0464 3964  [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
15:31:15.0464 3964  C:\Windows\System32\p2pcollab.dll - ok
15:31:15.0467 3964  [ 612D62566C617682782FCFDD27D70EAB ] C:\Windows\System32\wbem\NCProv.dll
15:31:15.0467 3964  C:\Windows\System32\wbem\NCProv.dll - ok
15:31:15.0469 3964  [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
15:31:15.0469 3964  C:\Windows\System32\QAGENTRT.DLL - ok
15:31:15.0471 3964  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
15:31:15.0471 3964  C:\Windows\System32\fveui.dll - ok
15:31:15.0474 3964  [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
15:31:15.0474 3964  C:\Windows\System32\wuapi.dll - ok
15:31:15.0476 3964  [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
15:31:15.0476 3964  C:\Windows\System32\cabinet.dll - ok
15:31:15.0478 3964  [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
15:31:15.0478 3964  C:\Windows\System32\wups.dll - ok
15:31:15.0480 3964  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
15:31:15.0480 3964  C:\Windows\SysWOW64\ntmarta.dll - ok
15:31:15.0483 3964  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
15:31:15.0483 3964  C:\Windows\SysWOW64\Wldap32.dll - ok
15:31:15.0485 3964  [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
15:31:15.0485 3964  C:\Windows\SysWOW64\wscproxystub.dll - ok
15:31:15.0488 3964  [ 112EEF699F3E5EFBE13EDDB50AEDE249 ] C:\Program Files\AVAST Software\Avast\defs\13052001\swhealthex.dll
15:31:15.0488 3964  C:\Program Files\AVAST Software\Avast\defs\13052001\swhealthex.dll - ok
15:31:15.0491 3964  [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
15:31:15.0491 3964  C:\Windows\SysWOW64\samlib.dll - ok
15:31:15.0493 3964  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
15:31:15.0493 3964  C:\Windows\SysWOW64\imagehlp.dll - ok
15:31:15.0496 3964  [ 8598C2AE3A7C7281B1290297C7CCFD57 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
15:31:15.0496 3964  C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
15:31:15.0498 3964  [ 997714A70C11ED43A771AE5A95F0D026 ] C:\Windows\System32\wbem\WinMgmtR.dll
15:31:15.0498 3964  C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:31:15.0501 3964  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
15:31:15.0501 3964  C:\Windows\System32\userinit.exe - ok
15:31:15.0503 3964  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
15:31:15.0503 3964  C:\Windows\System32\dwm.exe - ok
15:31:15.0505 3964  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
15:31:15.0505 3964  C:\Windows\System32\dssenh.dll - ok
15:31:15.0507 3964  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
15:31:15.0507 3964  C:\Windows\SysWOW64\ncrypt.dll - ok
15:31:15.0510 3964  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
15:31:15.0510 3964  C:\Windows\SysWOW64\bcrypt.dll - ok
15:31:15.0512 3964  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:31:15.0512 3964  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:31:15.0513 3964  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
15:31:15.0513 3964  C:\Windows\SysWOW64\gpapi.dll - ok
15:31:15.0516 3964  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
15:31:15.0516 3964  C:\Windows\SysWOW64\cryptnet.dll - ok
15:31:15.0518 3964  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
15:31:15.0518 3964  C:\Windows\SysWOW64\mpr.dll - ok
15:31:15.0521 3964  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
15:31:15.0521 3964  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
15:31:15.0523 3964  [ 1087020FF6481D74A3B7EE04DA927DCA ] C:\Program Files (x86)\Java\jre7\bin\keytool.exe
15:31:15.0523 3964  C:\Program Files (x86)\Java\jre7\bin\keytool.exe - ok
15:31:15.0526 3964  [ F3CD3269896D64ECAEA4CA34BCEAC381 ] C:\Program Files\AVAST Software\Avast\snxhk.dll
15:31:15.0526 3964  C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
15:31:15.0528 3964  [ AC68B12E9B314F708730FE0399791D9C ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
15:31:15.0528 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe - ok
15:31:15.0531 3964  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
15:31:15.0531 3964  C:\Windows\System32\dwmredir.dll - ok
15:31:15.0533 3964  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
15:31:15.0533 3964  C:\Windows\System32\dwmcore.dll - ok
15:31:15.0535 3964  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
15:31:15.0535 3964  C:\Windows\System32\d3d10_1.dll - ok
15:31:15.0538 3964  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
15:31:15.0538 3964  C:\Windows\System32\d3d10_1core.dll - ok
15:31:15.0540 3964  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
15:31:15.0540 3964  C:\Windows\System32\dxgi.dll - ok
15:31:15.0542 3964  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
15:31:15.0542 3964  C:\Windows\System32\d3d11.dll - ok
15:31:15.0545 3964  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
15:31:15.0545 3964  C:\Windows\SysWOW64\oleacc.dll - ok
15:31:15.0547 3964  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
15:31:15.0547 3964  C:\Windows\SysWOW64\powrprof.dll - ok
15:31:15.0549 3964  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
15:31:15.0549 3964  C:\Windows\SysWOW64\winspool.drv - ok
15:31:15.0552 3964  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
15:31:15.0552 3964  C:\Windows\SysWOW64\comdlg32.dll - ok
15:31:15.0554 3964  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
15:31:15.0554 3964  C:\Windows\SysWOW64\msimg32.dll - ok
15:31:15.0556 3964  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
15:31:15.0556 3964  C:\Windows\SysWOW64\oledlg.dll - ok
15:31:15.0559 3964  [ 794D4B48DFB6E999537C7C3947863463 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
15:31:15.0559 3964  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe - ok
15:31:15.0561 3964  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
15:31:15.0561 3964  C:\Windows\SysWOW64\wer.dll - ok
15:31:15.0563 3964  [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
15:31:15.0563 3964  C:\Windows\SysWOW64\Faultrep.dll - ok
15:31:15.0566 3964  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
15:31:15.0566 3964  C:\Windows\SysWOW64\propsys.dll - ok
15:31:15.0568 3964  [ 6B44700917F45B19B96B46B345B6F0E7 ] C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe
15:31:15.0568 3964  C:\Program Files (x86)\Spybot - Search & Destroy\SDMain.exe - ok
15:31:15.0570 3964  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
15:31:15.0570 3964  C:\Windows\SysWOW64\sxs.dll - ok
15:31:15.0573 3964  [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
15:31:15.0573 3964  C:\Windows\SysWOW64\wbemcomn.dll - ok
15:31:15.0575 3964  [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
15:31:15.0575 3964  C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
15:31:15.0578 3964  [ 164EA9CDBA6B4CDD7731A23E7FD933FA ] C:\Windows\SysWOW64\wbemcomn2.dll
15:31:15.0578 3964  C:\Windows\SysWOW64\wbemcomn2.dll - ok
15:31:15.0580 3964  [ D639B766AEBC5CCDA75447D4BCFB952E ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:31:15.0580 3964  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:31:15.0582 3964  [ 3E2EA277D6F5A437AE2D042EC76AB267 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
15:31:15.0582 3964  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
15:31:15.0585 3964  [ 5A74597CC9007A25458F5F388A539B9D ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:31:15.0585 3964  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:31:15.0587 3964  [ 18F421D42906BDFFB4AA430834D368BE ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:31:15.0587 3964  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:31:15.0589 3964  [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
15:31:15.0589 3964  C:\Windows\SysWOW64\ntdsapi.dll - ok
15:31:15.0592 3964  [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
15:31:15.0592 3964  C:\Windows\System32\qmgr.dll - ok
15:31:15.0594 3964  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
15:31:15.0594 3964  C:\Windows\System32\wdi.dll - ok
15:31:15.0596 3964  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
15:31:15.0596 3964  C:\Windows\System32\netman.dll - ok
15:31:15.0598 3964  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
15:31:15.0598 3964  C:\Windows\System32\perftrack.dll - ok
15:31:15.0601 3964  [ 95F9C2976059462CBBF227F7AAB10DE9 ] C:\Windows\System32\bthserv.dll
15:31:15.0601 3964  C:\Windows\System32\bthserv.dll - ok
15:31:15.0604 3964  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
15:31:15.0604 3964  C:\Windows\System32\diagperf.dll - ok
15:31:15.0606 3964  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
15:31:15.0606 3964  C:\Windows\System32\wpdbusenum.dll - ok
15:31:15.0608 3964  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
15:31:15.0608 3964  C:\Windows\System32\PortableDeviceApi.dll - ok
15:31:15.0611 3964  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
15:31:15.0611 3964  C:\Windows\System32\shfolder.dll - ok
15:31:15.0613 3964  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
15:31:15.0613 3964  C:\Windows\System32\bitsigd.dll - ok
15:31:15.0615 3964  [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
15:31:15.0615 3964  C:\Windows\System32\bitsperf.dll - ok
15:31:15.0618 3964  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
15:31:15.0618 3964  C:\Windows\System32\upnp.dll - ok
15:31:15.0620 3964  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
15:31:15.0620 3964  C:\Windows\System32\ssdpsrv.dll - ok
15:31:15.0622 3964  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
15:31:15.0622 3964  C:\Windows\System32\HotStartUserAgent.dll - ok
15:31:15.0625 3964  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
15:31:15.0625 3964  C:\Windows\System32\npmproxy.dll - ok
15:31:15.0627 3964  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
15:31:15.0627 3964  C:\Windows\System32\Apphlpdm.dll - ok
15:31:15.0629 3964  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:31:15.0629 3964  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:31:15.0632 3964  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
15:31:15.0632 3964  C:\Windows\System32\dot3api.dll - ok
15:31:15.0634 3964  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
15:31:15.0634 3964  C:\Windows\System32\pnpts.dll - ok
15:31:15.0636 3964  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
15:31:15.0636 3964  C:\Windows\System32\radardt.dll - ok
15:31:15.0639 3964  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
15:31:15.0639 3964  C:\Windows\System32\wdiasqmmodule.dll - ok
15:31:15.0641 3964  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
15:31:15.0641 3964  C:\Windows\System32\wlanhlp.dll - ok
15:31:15.0643 3964  [ 95110A1C5A1D228AC1DDF6AB67D00BEB ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
15:31:15.0643 3964  C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
15:31:15.0646 3964  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
15:31:15.0646 3964  C:\Windows\System32\qmgrprxy.dll - ok
15:31:15.0648 3964  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
15:31:15.0648 3964  C:\Windows\SysWOW64\qmgrprxy.dll - ok
15:31:15.0651 3964  [ 4E9592BB2C100E571F82640E59E9ECD5 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
15:31:15.0651 3964  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
15:31:15.0653 3964  [ 32732CEDE2A1106B736EF3D84054EE04 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
15:31:15.0653 3964  C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
15:31:15.0655 3964  [ 1C6F2BF5E6CD537CD5C25A30D6C49AC1 ] C:\Program Files\7-Zip\7zFM.exe
15:31:15.0655 3964  C:\Program Files\7-Zip\7zFM.exe - ok
15:31:15.0658 3964  [ 36FDB8C775B1F7D2069B8C8D0CD09084 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
15:31:15.0658 3964  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
15:31:15.0660 3964  [ 091C84FE9C2A2C4AE1F30AC7C6A4BDD1 ] C:\Program Files (x86)\Java\jre7\bin\java.exe
15:31:15.0660 3964  C:\Program Files (x86)\Java\jre7\bin\java.exe - ok
15:31:15.0663 3964  [ 88155D3D23CA8A1DFB1F45EE3E4C8DF8 ] C:\Program Files (x86)\uTorrent\uTorrent.exe
15:31:15.0663 3964  C:\Program Files (x86)\uTorrent\uTorrent.exe - ok
15:31:15.0665 3964  [ 60EDF8622CAD337A3629E9E6561EAC73 ] C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
15:31:15.0665 3964  C:\Program Files (x86)\VideoLAN\VLC\vlc.exe - ok
15:31:15.0668 3964  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
15:31:15.0668 3964  C:\Windows\System32\localspl.dll - ok
15:31:15.0670 3964  [ 15FD59F795ABAE49990B79C8B0AB6F5B ] C:\Program Files (x86)\Java\jre7\bin\jli.dll
15:31:15.0670 3964  C:\Program Files (x86)\Java\jre7\bin\jli.dll - ok
15:31:15.0672 3964  [ B5B2896034D8ADEBD79E0C281B52508F ] C:\Windows\AppPatch\AcGenral.dll
15:31:15.0672 3964  C:\Windows\AppPatch\AcGenral.dll - ok
15:31:15.0675 3964  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
15:31:15.0675 3964  C:\Windows\SysWOW64\winmm.dll - ok
15:31:15.0677 3964  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
15:31:15.0677 3964  C:\Windows\SysWOW64\uxtheme.dll - ok
15:31:15.0679 3964  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
15:31:15.0679 3964  C:\Windows\SysWOW64\dwmapi.dll - ok
15:31:15.0681 3964  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
15:31:15.0681 3964  C:\Windows\SysWOW64\msacm32.dll - ok
15:31:15.0684 3964  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
15:31:15.0684 3964  C:\Windows\SysWOW64\sfc.dll - ok
15:31:15.0686 3964  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
15:31:15.0686 3964  C:\Windows\explorer.exe - ok
15:31:15.0688 3964  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
15:31:15.0688 3964  C:\Windows\System32\ExplorerFrame.dll - ok
15:31:15.0691 3964  [ BBC016A0189C605FBBFCAEED315D0F64 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
15:31:15.0691 3964  C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
15:31:15.0693 3964  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
15:31:15.0693 3964  C:\Windows\System32\msi.dll - ok
15:31:15.0695 3964  [ CC6C87D669307A3386BEFE4D72CE4E3F ] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll
15:31:15.0695 3964  C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\AsusWSShellExt64.dll - ok
15:31:15.0698 3964  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
15:31:15.0698 3964  C:\Windows\System32\EhStorShell.dll - ok
15:31:15.0700 3964  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
15:31:15.0700 3964  C:\Windows\System32\dimsjob.dll - ok
15:31:15.0702 3964  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
15:31:15.0702 3964  C:\Windows\System32\MsCtfMonitor.dll - ok
15:31:15.0705 3964  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
15:31:15.0705 3964  C:\Windows\System32\msutb.dll - ok
15:31:15.0707 3964  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
15:31:15.0707 3964  C:\Windows\SysWOW64\sfc_os.dll - ok
15:31:15.0709 3964  [ B2742EA6ED844D747E2348A504E491CB ] C:\Windows\System32\dxva2.dll
15:31:15.0709 3964  C:\Windows\System32\dxva2.dll - ok
15:31:15.0711 3964  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
15:31:15.0711 3964  C:\Windows\System32\pautoenr.dll - ok
15:31:15.0714 3964  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
15:31:15.0714 3964  C:\Windows\System32\NapiNSP.dll - ok
15:31:15.0716 3964  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
15:31:15.0716 3964  C:\Windows\System32\pnrpnsp.dll - ok
15:31:15.0718 3964  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
15:31:15.0718 3964  C:\Windows\System32\winrnr.dll - ok
15:31:15.0721 3964  [ 748849C42DEA24C723048E24BCA1BD55 ] C:\Windows\System32\wshbth.dll
15:31:15.0721 3964  C:\Windows\System32\wshbth.dll - ok
15:31:15.0723 3964  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
15:31:15.0723 3964  C:\Windows\System32\spoolss.dll - ok
15:31:15.0725 3964  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
15:31:15.0725 3964  C:\Windows\System32\FXSMON.dll - ok
15:31:15.0728 3964  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
15:31:15.0728 3964  C:\Windows\System32\PrintIsolationProxy.dll - ok
15:31:15.0730 3964  [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
15:31:15.0730 3964  C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:31:15.0732 3964  [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
15:31:15.0732 3964  C:\Windows\SysWOW64\AudioSes.dll - ok
15:31:15.0735 3964  [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
15:31:15.0735 3964  C:\Windows\SysWOW64\schannel.dll - ok
15:31:15.0737 3964  [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
15:31:15.0737 3964  C:\Windows\System32\taskeng.exe - ok
15:31:15.0739 3964  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
15:31:15.0739 3964  C:\Windows\System32\certcli.dll - ok
15:31:15.0741 3964  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
15:31:15.0741 3964  C:\Windows\System32\CertEnroll.dll - ok
15:31:15.0744 3964  [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
15:31:15.0744 3964  C:\Windows\System32\TSChannel.dll - ok
15:31:15.0746 3964  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
15:31:15.0746 3964  C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
15:31:15.0748 3964  [ EE13C47EFFDF212F0C31C3B3548F2187 ] C:\Windows\System32\nvwgf2umx.dll
15:31:15.0748 3964  C:\Windows\System32\nvwgf2umx.dll - ok
15:31:15.0751 3964  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
15:31:15.0751 3964  C:\Windows\System32\uDWM.dll - ok
15:31:15.0753 3964  [ 149126216A694E6BA84E92ECA77AAE3B ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
15:31:15.0753 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe - ok
15:31:15.0756 3964  [ DBA8142819F06A4A401259011EF59530 ] C:\Program Files (x86)\Google\Drive\googledrivesync64.dll
15:31:15.0756 3964  C:\Program Files (x86)\Google\Drive\googledrivesync64.dll - ok
15:31:15.0758 3964  [ 36E652727134278104147DB2014BF878 ] C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll
15:31:15.0758 3964  C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll - ok
15:31:15.0761 3964  [ 60A52B2FA76513F590C52DFA59E16C84 ] C:\Program Files (x86)\Java\jre7\bin\verify.dll
15:31:15.0761 3964  C:\Program Files (x86)\Java\jre7\bin\verify.dll - ok
15:31:15.0763 3964  [ 2A4318112B14E4D015C0B6975153859B ] C:\Program Files (x86)\Java\jre7\bin\java.dll
15:31:15.0763 3964  C:\Program Files (x86)\Java\jre7\bin\java.dll - ok
15:31:15.0765 3964  [ C6F079BFD89C22903B22D94D93D45061 ] C:\Program Files (x86)\Java\jre7\bin\zip.dll
15:31:15.0765 3964  C:\Program Files (x86)\Java\jre7\bin\zip.dll - ok
15:31:15.0768 3964  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
15:31:15.0768 3964  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
15:31:15.0770 3964  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
15:31:15.0770 3964  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
15:31:15.0773 3964  [ 97BB37731F04CEBC15C4FD09C8CE5176 ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
15:31:15.0773 3964  C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
15:31:15.0775 3964  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
15:31:15.0775 3964  C:\Windows\System32\tcpmon.dll - ok
15:31:15.0777 3964  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
15:31:15.0777 3964  C:\Windows\System32\aelupsvc.dll - ok
15:31:15.0780 3964  [ 77AA57E57D8E7F4D1EDBCE36131B64C4 ] C:\Program Files (x86)\Java\jre7\bin\sunec.dll
15:31:15.0780 3964  C:\Program Files (x86)\Java\jre7\bin\sunec.dll - ok
15:31:15.0782 3964  [ F5A7218667841CA4549CC4C7DBA7A577 ] C:\Program Files (x86)\Java\jre7\bin\sunmscapi.dll
15:31:15.0782 3964  C:\Program Files (x86)\Java\jre7\bin\sunmscapi.dll - ok
15:31:15.0785 3964  [ 852CA69D94ED7C0E46FFEA46D200BD84 ] C:\Program Files\AVAST Software\Avast\aswSpam.dll
15:31:15.0785 3964  C:\Program Files\AVAST Software\Avast\aswSpam.dll - ok
15:31:15.0787 3964  [ FAAEDAC6862B410CCE0EAEA745098179 ] C:\Program Files\AVAST Software\Avast\winspamcatcher.dll
15:31:15.0787 3964  C:\Program Files\AVAST Software\Avast\winspamcatcher.dll - ok
15:31:15.0790 3964  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:31:15.0790 3964  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:31:15.0792 3964  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
15:31:15.0792 3964  C:\Windows\System32\snmpapi.dll - ok
15:31:15.0794 3964  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
15:31:15.0794 3964  C:\Windows\System32\wsnmp32.dll - ok
15:31:15.0797 3964  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
15:31:15.0797 3964  C:\Windows\System32\usbmon.dll - ok
15:31:15.0799 3964  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
15:31:15.0799 3964  C:\Windows\System32\WSDMon.dll - ok
15:31:15.0801 3964  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
15:31:15.0801 3964  C:\Windows\System32\fdPnp.dll - ok
15:31:15.0804 3964  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:31:15.0804 3964  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:31:15.0806 3964  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
15:31:15.0806 3964  C:\Windows\System32\inetpp.dll - ok
15:31:15.0808 3964  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
15:31:15.0808 3964  C:\Windows\System32\win32spl.dll - ok
15:31:15.0810 3964  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
15:31:15.0810 3964  C:\Windows\System32\cscapi.dll - ok
15:31:15.0813 3964  [ EE8CE025CD4355D5BC433C6C563D5331 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ElanTPCfg64.exe
15:31:15.0813 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ElanTPCfg64.exe - ok
15:31:15.0815 3964  [ DB963B3E31E3496A209F516802B3846B ] C:\Program Files\Elantech\ETDApi.dll
15:31:15.0815 3964  C:\Program Files\Elantech\ETDApi.dll - ok
15:31:15.0818 3964  [ 3B9ED0E96B9E83B2CF2A57AF0FD3BB09 ] C:\Program Files\ASUS\P4G\BatteryLife.exe
15:31:15.0818 3964  C:\Program Files\ASUS\P4G\BatteryLife.exe - ok
15:31:15.0820 3964  [ 7E5F5E64C91FEDFE72E4C1728094BA69 ] C:\Program Files\ASUS\P4G\DevMng.dll
15:31:15.0820 3964  C:\Program Files\ASUS\P4G\DevMng.dll - ok
15:31:15.0823 3964  [ C7AAC31A910E4BBFDF94D3786ED13E71 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
15:31:15.0823 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe - ok
15:31:15.0825 3964  [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll
15:31:15.0825 3964  C:\Program Files (x86)\Google\Update\1.3.21.145\goopdate.dll - ok
15:31:15.0828 3964  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
15:31:15.0828 3964  C:\Windows\SysWOW64\cscapi.dll - ok
15:31:15.0830 3964  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
15:31:15.0830 3964  C:\Windows\SysWOW64\dbghelp.dll - ok
15:31:15.0833 3964  [ ED759B7FD51466447CC31CBE79B99050 ] C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
15:31:15.0833 3964  C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe - ok
15:31:15.0835 3964  [ 2D32F0EF950AED6AD007D042676FD39E ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
15:31:15.0835 3964  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe - ok
15:31:15.0838 3964  [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe
15:31:15.0838 3964  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
15:31:15.0840 3964  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
15:31:15.0840 3964  C:\Windows\System32\appinfo.dll - ok
15:31:15.0843 3964  [ 4E252E85E5DC31BD645E809222AFAF27 ] C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe
15:31:15.0843 3964  C:\Program Files (x86)\Google\Update\1.3.21.145\GoogleCrashHandler64.exe - ok
15:31:15.0845 3964  [ 0B5511674394666E9D221F8681B2C2E6 ] C:\Windows\System32\consent.exe
15:31:15.0845 3964  C:\Windows\System32\consent.exe - ok
15:31:15.0848 3964  [ C759FF2C5880DE29284A53A5FF976B0C ] C:\Windows\System32\pcadm.dll
15:31:15.0848 3964  C:\Windows\System32\pcadm.dll - ok
15:31:15.0851 3964  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
15:31:15.0851 3964  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
15:31:15.0853 3964  [ 4F870EF9292559AB9DE6F31527A1DCBF ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
15:31:15.0853 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe - ok
15:31:15.0856 3964  [ 6DE02F0DFD8B5DB3E66A1DCD18F72AAE ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.5592_none_88e45feb2faab9ce\msvcr80.dll
15:31:15.0856 3964  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.5592_none_88e45feb2faab9ce\msvcr80.dll - ok
15:31:15.0859 3964  [ 18E756E0FE2FFCD5DE35F6B9F91244A6 ] C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll
15:31:15.0859 3964  C:\Windows\winsxs\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll - ok
15:31:15.0861 3964  [ 2189278AB7A6FA4428188606D93D202B ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
15:31:15.0861 3964  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
15:31:15.0864 3964  [ 4A7C441D99D86704D194E7678873B95D ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
15:31:15.0864 3964  C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe - ok
15:31:15.0867 3964  [ 63DF770DF74ACB370EF5A16727069AAF ] C:\Windows\SysWOW64\hid.dll
15:31:15.0867 3964  C:\Windows\SysWOW64\hid.dll - ok
15:31:15.0869 3964  [ 50E6288786474CC1275108D33FCC9488 ] C:\Program Files\ASUS\P4G\OvrClk.dll
15:31:15.0869 3964  C:\Program Files\ASUS\P4G\OvrClk.dll - ok
15:31:15.0871 3964  [ 241CBD0F099F3D68892D19879E53722D ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:31:15.0871 3964  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:31:15.0874 3964  [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
15:31:15.0874 3964  C:\Windows\System32\wbem\cimwin32.dll - ok
15:31:15.0876 3964  [ 53FE14BD8160EBE29EF29B0A5366F34A ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
15:31:15.0876 3964  C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
15:31:15.0878 3964  [ 90FDC54CE951C93D541925D7486F1314 ] C:\Windows\System32\framedynos.dll
15:31:15.0878 3964  C:\Windows\System32\framedynos.dll - ok
15:31:15.0881 3964  [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
15:31:15.0881 3964  C:\Windows\System32\wmi.dll - ok
15:31:15.0883 3964  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
15:31:15.0883 3964  C:\Windows\System32\IconCodecService.dll - ok
15:31:15.0885 3964  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
15:31:15.0885 3964  C:\Windows\System32\runonce.exe - ok
15:31:15.0888 3964  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
15:31:15.0888 3964  C:\Windows\SysWOW64\runonce.exe - ok
15:31:15.0890 3964  [ 4F72C8B661DEC62F4DF0F15D33106372 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll
15:31:15.0890 3964  C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll - ok
15:31:15.0893 3964  [ 07E881428D538D59BF599DF5D91983E2 ] C:\Windows\System32\nvapi64.dll
15:31:15.0893 3964  C:\Windows\System32\nvapi64.dll - ok
15:31:15.0895 3964  [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
15:31:15.0895 3964  C:\Windows\SysWOW64\mstask.dll - ok
15:31:15.0898 3964  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll
15:31:15.0898 3964  C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll - ok
15:31:15.0900 3964  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
15:31:15.0900 3964  C:\Windows\System32\mprapi.dll - ok
15:31:15.0902 3964  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
15:31:15.0902 3964  C:\Windows\System32\ndiscapCfg.dll - ok
15:31:15.0905 3964  [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
15:31:15.0905 3964  C:\Windows\System32\rascfg.dll - ok
15:31:15.0907 3964  [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
15:31:15.0907 3964  C:\Windows\System32\mprmsg.dll - ok
15:31:15.0909 3964  [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
15:31:15.0909 3964  C:\Windows\System32\tcpipcfg.dll - ok
15:31:15.0912 3964  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll
15:31:15.0912 3964  C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll - ok
15:31:15.0914 3964  [ 86D177F43030F61A8610259A2E8F07FE ] C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
15:31:15.0914 3964  C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL - ok
15:31:15.0917 3964  [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
15:31:15.0917 3964  C:\Windows\System32\wlaninst.dll - ok
15:31:15.0919 3964  [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
15:31:15.0919 3964  C:\Windows\System32\wwaninst.dll - ok
15:31:15.0922 3964  [ 8FE3C29793755400E7876D17FA5811CF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll
15:31:15.0922 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll - ok
15:31:15.0925 3964  [ 32EE27E6AC39863A2C99D29E73ED63A9 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
15:31:15.0925 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll - ok
15:31:15.0927 3964  [ 2A5D98F0F5232E466F2A2EF5E549DF08 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll
15:31:15.0927 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll - ok
15:31:15.0930 3964  [ 6C518D405318E21AB6F1987EA056638F ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll
15:31:15.0930 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll - ok
15:31:15.0933 3964  [ F6252071299496777D1E3EC407A90929 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
15:31:15.0933 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll - ok
15:31:15.0936 3964  [ 6A35DA5E8324247CA2915D0F40F69A99 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll
15:31:15.0936 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll - ok
15:31:15.0938 3964  [ 20D7EDD027DE6DB15517EAE69FB5F9DC ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll
15:31:15.0938 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll - ok
15:31:15.0941 3964  [ ED6EA226D8C2C1176D8D9A98A135D5E4 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
15:31:15.0941 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll - ok
15:31:15.0944 3964  [ 275B00B7DC661CCF9146B63659041908 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll
15:31:15.0944 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll - ok
15:31:15.0946 3964  [ C4BAEC2E8B56B6337E722F8161BAAAAF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll
15:31:15.0946 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll - ok
15:31:15.0949 3964  [ 4F096E6DF6D6AA79E0F1F5A8C09345F8 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
15:31:15.0949 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll - ok
15:31:15.0952 3964  [ F9A5AEDEB954D37BE3C13F2CAC02727B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll
15:31:15.0952 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll - ok
15:31:15.0954 3964  [ B3FB360040585245DF0A4E63A8987BDF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll
15:31:15.0954 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll - ok
15:31:15.0957 3964  [ 83564FD69621419EABBE1AE03428976D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
15:31:15.0957 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll - ok
15:31:15.0960 3964  [ DDB8769E14BDF097879B6345394C5889 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll
15:31:15.0960 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll - ok
15:31:15.0962 3964  [ A9539131F6C8EF5068FA16D581285EBB ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll
15:31:15.0962 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll - ok
15:31:15.0965 3964  [ AD18A46DE75479C9B9AEC783FB7F9883 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
15:31:15.0965 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll - ok
15:31:15.0968 3964  [ 58A14C45A5CD2528F10A889E7B0C3FC2 ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
15:31:15.0968 3964  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
15:31:15.0971 3964  [ FFC54FA19FD67DDE232CFC0A87B0B1A7 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
15:31:15.0971 3964  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF - ok
15:31:15.0973 3964  [ DFE118C95C6571B87D1923DAB3FA0A77 ] C:\Windows\SysWOW64\ieframe.dll
15:31:15.0973 3964  C:\Windows\SysWOW64\ieframe.dll - ok
15:31:15.0976 3964  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
15:31:15.0976 3964  C:\Windows\SysWOW64\cmd.exe - ok
15:31:15.0978 3964  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
15:31:15.0978 3964  C:\Windows\SysWOW64\winbrand.dll - ok
15:31:15.0980 3964  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
15:31:15.0980 3964  C:\Windows\SysWOW64\shdocvw.dll - ok
15:31:15.0983 3964  [ FE3D017F93CEF81636076E076676B869 ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\PureThemeRes.dll
15:31:15.0983 3964  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\PureThemeRes.dll - ok
15:31:15.0986 3964  [ 17743E29177A9E5913E726E06D634C1B ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\rcdio.dll
15:31:15.0986 3964  C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\rcdio.dll - ok
15:31:15.0988 3964  [ CD37E8F77BFF71F104BDC941A393F0B5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
15:31:15.0988 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe - ok
15:31:15.0991 3964  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Wei Hsiang Huang\AppData\Local\Temp\4FBFEFA2-A917-4D66-AB88-B4543CC322B0.exe
15:31:15.0991 3964  C:\Users\Wei Hsiang Huang\AppData\Local\Temp\4FBFEFA2-A917-4D66-AB88-B4543CC322B0.exe - ok
15:31:15.0993 3964  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
15:31:15.0994 3964  C:\Windows\System32\rasdlg.dll - ok
15:31:15.0996 3964  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:31:15.0996 3964  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:31:15.0998 3964  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
15:31:15.0998 3964  C:\Windows\SysWOW64\EhStorShell.dll - ok
15:31:16.0001 3964  [ F14823F07336AA84D2F5C26834D851E9 ] C:\PROGRA~2\MICROS~1\Office14\1033\GrooveIntlResource.dll
15:31:16.0001 3964  C:\PROGRA~2\MICROS~1\Office14\1033\GrooveIntlResource.dll - ok
15:31:16.0003 3964  [ 858176715EA25C14303FFEC047B98169 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll
15:31:16.0003 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll - ok
15:31:16.0006 3964  [ 9743899CE8E4C9686DC8D87E3AD2B0D3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
15:31:16.0006 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll - ok
15:31:16.0008 3964  [ 06A347F37D33D16520768EB3D5EAE9A0 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll
15:31:16.0008 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll - ok
15:31:16.0011 3964  [ 5B9E01A5C9370CA6A686C090C41A075E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll
15:31:16.0011 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll - ok
15:31:16.0014 3964  [ 577F78F9116565D5D634A85BA65D8815 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll
15:31:16.0014 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll - ok
15:31:16.0015 3964  [ E6A55378B998F55CD67BD44245FF4F1F ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
15:31:16.0015 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll - ok
15:31:16.0018 3964  [ 181F69BC9C406B7FB5C0ADE8031630AC ] C:\Windows\SysWOW64\wpdshext.dll
15:31:16.0018 3964  C:\Windows\SysWOW64\wpdshext.dll - ok
15:31:16.0020 3964  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
15:31:16.0020 3964  C:\Windows\SysWOW64\ntshrui.dll - ok
15:31:16.0022 3964  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
15:31:16.0022 3964  C:\Windows\SysWOW64\slc.dll - ok
15:31:16.0024 3964  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
15:31:16.0024 3964  C:\Windows\SysWOW64\imageres.dll - ok
15:31:16.0027 3964  [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
15:31:16.0027 3964  C:\Windows\System32\spfileq.dll - ok
15:31:16.0030 3964  [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
15:31:16.0030 3964  C:\Windows\SysWOW64\IconCodecService.dll - ok
15:31:16.0032 3964  [ 6B9FF8CBE106F76B8CF4DC8146FBFDC6 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe
15:31:16.0032 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe - ok
15:31:16.0035 3964  [ 61930F3CFF07F50B503AFA6397BFB40A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll
15:31:16.0035 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll - ok
15:31:16.0038 3964  [ 064CB6CD2B1B525BF52425A818C1A15E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll
15:31:16.0038 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll - ok
15:31:16.0040 3964  [ AC627A247B23297B50B03856626C19B7 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll
15:31:16.0040 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll - ok
15:31:16.0043 3964  [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
15:31:16.0043 3964  C:\Windows\SysWOW64\logoncli.dll - ok
15:31:16.0045 3964  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE ] C:\Windows\SysWOW64\dsrole.dll
15:31:16.0045 3964  C:\Windows\SysWOW64\dsrole.dll - ok
15:31:16.0048 3964  [ AB113FF5C7FC4571135A1B7E8BA8BB1D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll
15:31:16.0048 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll - ok
15:31:16.0050 3964  [ 52FDF003556C7DC2733F1B0687487B1C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll
15:31:16.0050 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll - ok
15:31:16.0053 3964  [ 8A28776BC6DA3AA5BE8EA80567ECB2B7 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
15:31:16.0053 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll - ok
15:31:16.0056 3964  [ E1DDFAE44AC4746207B8704F8D647020 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll
15:31:16.0056 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll - ok
15:31:16.0058 3964  [ 0D4E31F533C7773DF732F1189A55A72C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll
15:31:16.0058 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll - ok
15:31:16.0061 3964  [ 9BA4D8AA5EE052D34EFAF4D6358A90A5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll
15:31:16.0061 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll - ok
15:31:16.0064 3964  [ 7C883AACA6C9A774CA9D7AEE67113D47 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
15:31:16.0064 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll - ok
15:31:16.0066 3964  [ C29BD7974796BF039B15D2BB74E21A8B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll
15:31:16.0066 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll - ok
15:31:16.0069 3964  [ 6575B3174C3C86515916CDC2FDC5EF32 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll
15:31:16.0069 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll - ok
15:31:16.0072 3964  [ 8A327BB9D9C77B48474FAB738AC2F2F3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
15:31:16.0072 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll - ok
15:31:16.0075 3964  [ 037D78392A17C46EF00129A827A7684E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll
15:31:16.0075 3964  C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll - ok
15:31:16.0077 3964  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
15:31:16.0077 3964  C:\Windows\SysWOW64\rtutils.dll - ok
15:31:16.0079 3964  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
15:31:16.0079 3964  C:\Windows\SysWOW64\mlang.dll - ok
15:31:16.0082 3964  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
15:31:16.0082 3964  C:\Windows\SysWOW64\devrtl.dll - ok
15:31:16.0084 3964  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
15:31:16.0084 3964  C:\Windows\System32\ie4uinit.exe - ok
15:31:16.0087 3964  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
15:31:16.0087 3964  C:\Windows\System32\iedkcs32.dll - ok
15:31:16.0089 3964  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
15:31:16.0089 3964  C:\Windows\System32\timedate.cpl - ok
15:31:16.0091 3964  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
15:31:16.0091 3964  C:\Windows\System32\actxprxy.dll - ok
15:31:16.0094 3964  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
15:31:16.0094 3964  C:\Windows\System32\shdocvw.dll - ok
15:31:16.0096 3964  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
15:31:16.0096 3964  C:\Windows\System32\linkinfo.dll - ok
15:31:16.0098 3964  [ 661CEEDE98A2E0E5CDD7DE239EB38353 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
15:31:16.0098 3964  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
15:31:16.0101 3964  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
15:31:16.0101 3964  C:\Windows\System32\msftedit.dll - ok
15:31:16.0103 3964  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
15:31:16.0103 3964  C:\Windows\System32\gameux.dll - ok
15:31:16.0106 3964  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
15:31:16.0106 3964  C:\Windows\System32\msls31.dll - ok
15:31:16.0108 3964  [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
15:31:16.0108 3964  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
15:31:16.0110 3964  [ 027675ED9B34EE1B91505C3B8752649F ] C:\Windows\System32\Wpc.dll
15:31:16.0110 3964  C:\Windows\System32\Wpc.dll - ok
15:31:16.0113 3964  [ 652B60C9C4D5391FF0970B9086702E8F ] C:\Windows\System32\ieframe.dll
15:31:16.0113 3964  C:\Windows\System32\ieframe.dll - ok
15:31:16.0115 3964  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
15:31:16.0115 3964  C:\Windows\System32\msiltcfg.dll - ok
15:31:16.0117 3964  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
15:31:16.0117 3964  C:\Windows\System32\DeviceCenter.dll - ok
15:31:16.0120 3964  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
15:31:16.0120 3964  C:\Windows\System32\thumbcache.dll - ok
15:31:16.0122 3964  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
15:31:16.0122 3964  C:\Windows\System32\networkexplorer.dll - ok
15:31:16.0125 3964  [ 9ACA95084CAEC18F1EFA3E729BE31909 ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
15:31:16.0125 3964  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe - ok
15:31:16.0128 3964  [ 367C6AF01B0CDC25BCB6CDDBECD565E6 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.5592_none_88e45feb2faab9ce\msvcp80.dll
15:31:16.0128 3964  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.5592_none_88e45feb2faab9ce\msvcp80.dll - ok
15:31:16.0131 3964  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\74354865.sys
15:31:16.0131 3964  C:\Windows\System32\drivers\74354865.sys - ok
15:31:16.0133 3964  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
15:31:16.0133 3964  C:\Windows\SysWOW64\riched20.dll - ok
15:31:16.0135 3964  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:31:16.0135 3964  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:31:16.0138 3964  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
15:31:16.0138 3964  C:\Windows\System32\batmeter.dll - ok
15:31:16.0140 3964  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
15:31:16.0140 3964  C:\Windows\System32\stobject.dll - ok
15:31:16.0142 3964  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
15:31:16.0142 3964  C:\Windows\System32\prnfldr.dll - ok
15:31:16.0145 3964  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
15:31:16.0145 3964  C:\Windows\SysWOW64\duser.dll - ok
15:31:16.0147 3964  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
15:31:16.0147 3964  C:\Windows\System32\DXP.dll - ok
15:31:16.0149 3964  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
15:31:16.0149 3964  C:\Windows\SysWOW64\dui70.dll - ok
15:31:16.0151 3964  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
15:31:16.0151 3964  C:\Windows\System32\Syncreg.dll - ok
15:31:16.0153 3964  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
15:31:16.0153 3964  C:\Windows\ehome\ehSSO.dll - ok
15:31:16.0156 3964  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
15:31:16.0156 3964  C:\Windows\System32\WPDShServiceObj.dll - ok
15:31:16.0158 3964  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
15:31:16.0158 3964  C:\Windows\System32\PortableDeviceTypes.dll - ok
15:31:16.0161 3964  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
15:31:16.0161 3964  C:\Windows\System32\ntshrui.dll - ok
15:31:16.0163 3964  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
15:31:16.0163 3964  C:\Windows\System32\srchadmin.dll - ok
15:31:16.0165 3964  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
15:31:16.0165 3964  C:\Windows\System32\ActionCenter.dll - ok
15:31:16.0168 3964  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
15:31:16.0168 3964  C:\Windows\System32\SearchIndexer.exe - ok
15:31:16.0170 3964  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
15:31:16.0170 3964  C:\Windows\System32\UIAnimation.dll - ok
15:31:16.0173 3964  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
15:31:16.0173 3964  C:\Windows\System32\AltTab.dll - ok
15:31:16.0175 3964  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
15:31:16.0175 3964  C:\Windows\System32\pnidui.dll - ok
15:31:16.0177 3964  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
15:31:16.0177 3964  C:\Windows\System32\QUTIL.DLL - ok
15:31:16.0180 3964  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
15:31:16.0180 3964  C:\Windows\System32\FXSST.dll - ok
15:31:16.0182 3964  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
15:31:16.0182 3964  C:\Windows\System32\FXSAPI.dll - ok
15:31:16.0184 3964  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
15:31:16.0184 3964  C:\Windows\System32\bthprops.cpl - ok
15:31:16.0187 3964  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
15:31:16.0187 3964  C:\Windows\System32\FXSRESM.dll - ok
15:31:16.0189 3964  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
15:31:16.0189 3964  C:\Windows\System32\tquery.dll - ok
15:31:16.0191 3964  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
15:31:16.0191 3964  C:\Windows\System32\FXSSVC.exe - ok
15:31:16.0193 3964  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
15:31:16.0193 3964  C:\Windows\System32\WWanAPI.dll - ok
15:31:16.0196 3964  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
15:31:16.0196 3964  C:\Windows\System32\wwapi.dll - ok
15:31:16.0199 3964  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
15:31:16.0199 3964  C:\Windows\System32\QAGENT.DLL - ok
15:31:16.0201 3964  [ 55EBF29F3E2C88DDABB1DA39A356270E ] C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
15:31:16.0201 3964  C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe - ok
15:31:16.0203 3964  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
15:31:16.0203 3964  C:\Windows\System32\mlang.dll - ok
15:31:16.0206 3964  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
15:31:16.0206 3964  C:\Windows\SysWOW64\mscoree.dll - ok
15:31:16.0208 3964  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:31:16.0208 3964  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:31:16.0211 3964  [ 316B6357B004891DC810AF5C3398E714 ] C:\Program Files\Elantech\ETDCtrl.exe
15:31:16.0211 3964  C:\Program Files\Elantech\ETDCtrl.exe - ok
15:31:16.0213 3964  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
15:31:16.0213 3964  C:\Windows\System32\rundll32.exe - ok
15:31:16.0215 3964  [ 1B20F5874DD7C7393ECDE4CBD6C68906 ] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
15:31:16.0215 3964  C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll - ok
15:31:16.0218 3964  [ 4490896F4491FD5F1BE601BA9C8245BD ] C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
15:31:16.0218 3964  C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe - ok
15:31:16.0220 3964  [ B22CB67919EBAD88B0E8BB9CDA446010 ] C:\Windows\System32\StikyNot.exe
15:31:16.0220 3964  C:\Windows\System32\StikyNot.exe - ok
15:31:16.0223 3964  [ 7E4AD8220AF0B281274F9785DD53E25C ] C:\Program Files (x86)\Skype\Phone\Skype.exe
15:31:16.0223 3964  C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
15:31:16.0225 3964  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
15:31:16.0225 3964  C:\Windows\System32\mssrch.dll - ok
15:31:16.0227 3964  [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
15:31:16.0227 3964  C:\Windows\System32\riched20.dll - ok
15:31:16.0230 3964  [ AFAFD74780A0BB4EBE76CDE10C9CCE43 ] C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
15:31:16.0230 3964  C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll - ok
15:31:16.0232 3964  [ E09EFDAE4A93765ECEA0D5A31FC242E3 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
15:31:16.0232 3964  C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe - ok
15:31:16.0235 3964  [ D7CBBAD86A90956ACF0C858675B649B4 ] C:\Program Files\Elantech\ETDFavorite.dll
15:31:16.0235 3964  C:\Program Files\Elantech\ETDFavorite.dll - ok
15:31:16.0237 3964  [ 46AA9A14A1B995CCC8262B475B1F88F2 ] C:\Program Files\Elantech\ETDApix.dll
15:31:16.0237 3964  C:\Program Files\Elantech\ETDApix.dll - ok
15:31:16.0239 3964  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
15:31:16.0239 3964  C:\Windows\System32\esent.dll - ok
15:31:16.0242 3964  [ 70F7CA90D794A3C7EA15D05E2E4F6599 ] C:\Program Files\Elantech\ETDCmds.dll
15:31:16.0242 3964  C:\Program Files\Elantech\ETDCmds.dll - ok
15:31:16.0244 3964  [ 896A1DB9A972AD2339C2E8569EC926D1 ] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
15:31:16.0244 3964  C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe - ok
15:31:16.0247 3964  [ 1511A4E8FFACFF9CEBBB02E20E5054F1 ] C:\Program Files (x86)\DAEMON Tools Lite\DTCommonRes.dll
15:31:16.0247 3964  C:\Program Files (x86)\DAEMON Tools Lite\DTCommonRes.dll - ok
15:31:16.0249 3964  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
15:31:16.0249 3964  C:\Windows\System32\msidle.dll - ok
15:31:16.0251 3964  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
15:31:16.0251 3964  C:\Windows\System32\mssprxy.dll - ok
15:31:16.0254 3964  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
15:31:16.0254 3964  C:\Windows\System32\wersvc.dll - ok
15:31:16.0256 3964  [ C79F5AFFE50C33A98200E6D357285D36 ] C:\Program Files\Elantech\ETDCtrlHelper.exe
15:31:16.0256 3964  C:\Program Files\Elantech\ETDCtrlHelper.exe - ok
15:31:16.0259 3964  [ 4F73C6528397A014D5620AED041533CF ] C:\Program Files (x86)\DAEMON Tools Lite\Engine.dll
15:31:16.0259 3964  C:\Program Files (x86)\DAEMON Tools Lite\Engine.dll - ok
15:31:16.0261 3964  [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:31:16.0261 3964  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:31:16.0264 3964  [ BB50B21FEE2A6F3E5FC92B330ECCF050 ] C:\Windows\SysWOW64\hhctrl.ocx
15:31:16.0264 3964  C:\Windows\SysWOW64\hhctrl.ocx - ok
15:31:16.0266 3964  [ 7529BF17445E16315A95B450CE985C11 ] C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
15:31:16.0266 3964  C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe - ok
15:31:16.0268 3964  [ 4BE468D2EE9CC59CB8F666949CD37CD5 ] C:\Windows\SysWOW64\jsproxy.dll
15:31:16.0268 3964  C:\Windows\SysWOW64\jsproxy.dll - ok
15:31:16.0270 3964  [ 72CDCEDEB93FAD7E3B5C00A2FD7EC9A6 ] C:\Program Files\Elantech\ETDGesture.exe
15:31:16.0270 3964  C:\Program Files\Elantech\ETDGesture.exe - ok
15:31:16.0273 3964  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
15:31:16.0273 3964  C:\Windows\System32\en-US\tquery.dll.mui - ok
15:31:16.0275 3964  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
15:31:16.0275 3964  C:\Windows\SysWOW64\d3d9.dll - ok
15:31:16.0277 3964  [ 96C70BD48D49B87475F4572DEDC62EB9 ] C:\Windows\AppPatch\AcLayers.dll
15:31:16.0277 3964  C:\Windows\AppPatch\AcLayers.dll - ok
15:31:16.0280 3964  [ 0394E9A656C2EFA77A19E04F20E3F75C ] C:\Program Files\Elantech\asGesture.dll
15:31:16.0280 3964  C:\Program Files\Elantech\asGesture.dll - ok
15:31:16.0282 3964  [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
15:31:16.0282 3964  C:\Windows\System32\oledlg.dll - ok
15:31:16.0284 3964  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
15:31:16.0284 3964  C:\Windows\SysWOW64\d3d8thk.dll - ok
15:31:16.0287 3964  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
15:31:16.0287 3964  C:\Windows\SysWOW64\shfolder.dll - ok
15:31:16.0289 3964  [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
15:31:16.0289 3964  C:\Windows\SysWOW64\pdh.dll - ok
15:31:16.0291 3964  [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
15:31:16.0291 3964  C:\Windows\SysWOW64\olepro32.dll - ok
15:31:16.0294 3964  [ 1642B9931638232F439B80EE441B037D ] C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe
15:31:16.0294 3964  C:\Program Files (x86)\ASUS\AsusVibe\AsusVibe2.0.exe - ok
15:31:16.0296 3964  [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
15:31:16.0296 3964  C:\Windows\SysWOW64\avrt.dll - ok
15:31:16.0298 3964  [ 82A98D0EB83505529AD81E4C1FADC37D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
15:31:16.0299 3964  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
15:31:16.0301 3964  [ 28CA821606669BB9215CE010767720FA ] C:\Windows\SysWOW64\cryptui.dll
15:31:16.0301 3964  C:\Windows\SysWOW64\cryptui.dll - ok
15:31:16.0304 3964  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:31:16.0304 3964  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
15:31:16.0306 3964  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
15:31:16.0306 3964  C:\Windows\SysWOW64\mapi32.dll - ok
15:31:16.0308 3964  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
15:31:16.0308 3964  C:\Windows\SysWOW64\msxml3.dll - ok
15:31:16.0311 3964  [ 4DE1EBB2314E2F10AC9EC83138193F8B ] C:\Program Files (x86)\DAEMON Tools Lite\imgengine.dll
15:31:16.0311 3964  C:\Program Files (x86)\DAEMON Tools Lite\imgengine.dll - ok
15:31:16.0313 3964  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
15:31:16.0313 3964  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
15:31:16.0316 3964  [ 820AB10BB0186A7845A1B6460E50088B ] C:\Program Files (x86)\Spybot - Search & Destroy\advcheck.dll
15:31:16.0316 3964  C:\Program Files (x86)\Spybot - Search & Destroy\advcheck.dll - ok
15:31:16.0318 3964  [ 92796CE8F9C5F5867E16EAF1849BB929 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\75dbd3e66b6c699711e2c193fd9aef07\mscorlib.ni.dll
15:31:16.0318 3964  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\75dbd3e66b6c699711e2c193fd9aef07\mscorlib.ni.dll - ok
15:31:16.0321 3964  [ E5BC8D93CDCB957146D971647849A154 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
15:31:16.0321 3964  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
15:31:16.0324 3964  [ 4CE7E077902E69A708CB4F758EEC9C87 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\11d5903f09e6c549f04cf23570e2cc5a\System.ni.dll
15:31:16.0324 3964  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\11d5903f09e6c549f04cf23570e2cc5a\System.ni.dll - ok
15:31:16.0326 3964  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
15:31:16.0326 3964  C:\Windows\System32\webcheck.dll - ok
15:31:16.0328 3964  [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
15:31:16.0328 3964  C:\Windows\System32\SearchProtocolHost.exe - ok
15:31:16.0331 3964  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
15:31:16.0331 3964  C:\Windows\System32\SyncCenter.dll - ok
15:31:16.0333 3964  [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
15:31:16.0333 3964  C:\Windows\System32\msshooks.dll - ok
15:31:16.0336 3964  [ 4D241A6A8F6BA9FA32FF836551FFDCEA ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
15:31:16.0336 3964  C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe - ok
15:31:16.0338 3964  [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
15:31:16.0338 3964  C:\Windows\System32\SearchFilterHost.exe - ok
15:31:16.0340 3964  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
15:31:16.0340 3964  C:\Windows\System32\mscoree.dll - ok
15:31:16.0343 3964  [ 56A9452A863E3C07061281E3031CA310 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
15:31:16.0343 3964  C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll - ok
15:31:16.0346 3964  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
15:31:16.0346 3964  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
15:31:16.0348 3964  [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
15:31:16.0348 3964  C:\Windows\System32\mssph.dll - ok
15:31:16.0350 3964  [ 37DEB76A2CF005841C4E45DE2B94D84F ] C:\Windows\AsScrPro.exe
15:31:16.0350 3964  C:\Windows\AsScrPro.exe - ok
15:31:16.0353 3964  [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
15:31:16.0353 3964  C:\Windows\SysWOW64\mfc42.dll - ok
15:31:16.0355 3964  [ A33452A42BDF214E7FC40CB470515605 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
15:31:16.0355 3964  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
15:31:16.0357 3964  [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
15:31:16.0357 3964  C:\Windows\System32\mapi32.dll - ok
15:31:16.0360 3964  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
15:31:16.0360 3964  C:\Windows\System32\imapi2.dll - ok
15:31:16.0362 3964  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:31:16.0362 3964  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:31:16.0365 3964  [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
15:31:16.0365 3964  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
15:31:16.0367 3964  [ 74613FBA45C2C70FFBB9F32A7677FDEF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\b4d9653c8d5dbc1b450a5d7cb453afd1\WindowsBase.ni.dll
15:31:16.0368 3964  C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\b4d9653c8d5dbc1b450a5d7cb453afd1\WindowsBase.ni.dll - ok
15:31:16.0370 3964  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
15:31:16.0370 3964  C:\Windows\System32\hgcpl.dll - ok
15:31:16.0372 3964  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
15:31:16.0372 3964  C:\Windows\SysWOW64\odbc32.dll - ok
15:31:16.0375 3964  [ 4E34C5328F44DD6DE4F035E84F5F3C16 ] C:\Program Files (x86)\ASUS Gaming Mouse GX850\hid.exe
15:31:16.0375 3964  C:\Program Files (x86)\ASUS Gaming Mouse GX850\hid.exe - ok
15:31:16.0377 3964  [ 67BD916F01424DEB8AB8CD9E0096F277 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
15:31:16.0377 3964  C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe - ok
15:31:16.0380 3964  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
15:31:16.0380 3964  C:\Windows\SysWOW64\odbcint.dll - ok
15:31:16.0382 3964  [ 3F11B20D12D89365D7721BDC860CE5F0 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
15:31:16.0382 3964  C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
15:31:16.0383 3964  ============================================================
15:31:16.0383 3964  Scan finished
15:31:16.0383 3964  ============================================================
15:31:16.0389 3888  Detected object count: 3
15:31:16.0389 3888  Actual detected object count: 3
15:31:29.0940 3888  !SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
15:31:29.0940 3888  !SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:31:29.0941 3888  AsusUacSvc ( UnsignedFile.Multi.Generic ) - skipped by user
15:31:29.0941 3888  AsusUacSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:31:29.0942 3888  Sony PC Companion ( UnsignedFile.Multi.Generic ) - skipped by user
15:31:29.0942 3888  Sony PC Companion ( UnsignedFile.Multi.Generic ) - User select action: Skip 
15:33:48.0195 4548  Deinitialize success


#5 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 21 May 2013 - 01:46 AM

The attached file is my combofix log, sorry it took so long for me to figure how to attach the file...

Attached Files



#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:07:27 PM

Posted 21 May 2013 - 04:28 PM

1.

I do not recommend that you have more than one anti virus product installed and running on your computer at a time.  The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms".  It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause:
1) False Alarms: When the anti virus software tells you that your PC has a virus when it actually doesn't.
2) System Performance Problems: Your system may lock up due to both products attempting to access the same file at the same time.
Therefore please go to add/remove in the control panel and remove either Avast or xxxxTrendmicro.

 

2.

Download AdwCleaner

  • Double click on AdwCleaner.exe to run the tool.
    ***Note: Windows Vista and Windows 7 users:
    Right click in the adwCleaner.exe and select
    Run%20as%20admin.png
  • Click the Delete button.
  • A logfile will automatically open after the scan has finished.
  • Please post the content of that logfile in your next reply.
  • Or you can find the logfile at C:\AdwCleaner[R1].txt.

 

 

Things to include in your next reply::

AdwCleaner log

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 21 May 2013 - 06:29 PM

Hi,
 
Here's the log from Adwcleaner, I forgot to mention that trend micro has been damaged by the virus as well. When I try to open it, the load up interface would pop up, however there console itself would never load. Does this suggests trend micro got damaged as well? In addition combofix deleted naver line from my laptop, does that mean I the software itself is malicious? 
 
 
# AdwCleaner v2.301 - Logfile created 05/22/2013 at 09:22:11
# Updated 16/05/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Wei Hsiang Huang - FALCON
# Boot Mode : Normal
# Running from : D:\Wei Hsiang\Download\adwcleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Folder Deleted : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Folder Deleted : C:\Users\Wei Hsiang Huang\AppData\Roaming\dvdvideosoftiehelpers
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16476
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v21.0 (en-US)
 
File : C:\Users\Wei Hsiang Huang\AppData\Roaming\Mozilla\Firefox\Profiles\ft8mdspn.default-1367207047138\prefs.js
 
C:\Users\Wei Hsiang Huang\AppData\Roaming\Mozilla\Firefox\Profiles\ft8mdspn.default-1367207047138\user.js ... Deleted !
 
[OK] File is clean.
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\Wei Hsiang Huang\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [1643 octets] - [22/05/2013 09:22:11]
 
########## EOF - C:\AdwCleaner[S1].txt - [1703 octets] ##########


#8 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:07:27 PM

Posted 22 May 2013 - 04:17 PM

In addition combofix deleted naver line from my laptop, does that mean I the software itself is malicious?

 

It probably had become infected.

 

 

Uninstall Trend Micro



You should be able to remove Trend Micros products via Start > Control Panel > Add or Remove Programs.
If you need instructions on how to do so, please consult: How To Remove An Installed Program From Your Computer

The following removal utility can be used to uninstall the program if the uninstall via Add/remove does not work:

  • Close the PC-cillin Internet Security main console if it is open.
  • Go to the C:\Program Files\Trend Micro\Internet Security 2007 folder.
  • Double-click the PCCTool.exe file. This opens the support tool window.
  • Click the [E] Uninstall tab.
  • Under Install and Uninstall, click 4. Uninstall..
  • A new window will open, click Uninstall.
  • Click Yes.
  • Your computer will now restart.

Trend Micro should now be removed from your PC.


For illustrated instructions please refer to here:
http://esupport.trendmicro.c...aspx#P86_2140

 

 

How is your machine running now?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#9 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 22 May 2013 - 08:08 PM

I have successfully uninstalled trendmicro via add or remove program, thanks for your help thus far!

 

One last question, I am still unable to obtain update from windows as it comes up with the following error code: 80073712

 

Any idea on why this is?



#10 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:07:27 PM

Posted 23 May 2013 - 03:51 PM

We can try a few things. Let's start with this one.

 

 

Download Windows Repair (all in one) from this site

Install the program then run it.

Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22001645.gif



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22001646.gif


Go to Step 4 and under "System Restore" click on Create button:

p22001644.gif


Go to Start Repairs tab and click Start button.

p22001166.gif


Please ensure that ONLY items seen in the image below are ticked as indicated (they're all checked by default):

p22001647.gif

Click on box next to the Restart System when Finished. Then click on Start.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#11 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 23 May 2013 - 08:02 PM

Nope, no luck with the windows repair tools. Windows update still failed, looks like the malware did some serious damage to the system. And is the malware cleaned from my system?


Edited by falcon163, 23 May 2013 - 08:04 PM.


#12 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:07:27 PM

Posted 23 May 2013 - 08:54 PM

Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#13 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 23 May 2013 - 08:56 PM

Farbar Service Scanner Version: 14-04-2013
Ran by Wei Hsiang Huang (administrator) on 24-05-2013 at 11:55:53
Running from "D:\Wei Hsiang\Download"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Attempt to access Yahoo IP returned error. Yahoo IP is offline
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll
[2009-07-14 09:54] - [2009-07-14 11:41] - 1011712 ____A () D41D8CD98F00B204E9800998ECF8427E
 
ATTENTION!=====> C:\Program Files\Windows Defender\MpSvc.dll IS INFECTED AND SHOULD BE REPLACED.
 
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****


#14 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,507 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:07:27 PM

Posted 23 May 2013 - 09:03 PM

Do you have a USb Flash drive?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#15 falcon163

falcon163
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:10:27 AM

Posted 23 May 2013 - 09:04 PM

No I don't, only an external hard drive. 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users