Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

am I infected?


  • Please log in to reply
52 replies to this topic

#1 Tilkon

Tilkon

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 11 November 2014 - 06:33 AM

On my laptop I have two accounts, both administors. Yesterday I tried to access to the account B but it said the password was wrong. I am sure I did not change it, and nobody had access to this computer. I then accessed account A and from there created a new password for account B. So I managed to enter again in account B.

 

Today the problem repeated. I did the same procedure, using the using the old password as a new password. I switched from account a to b and immediately the password has been changed again! So I created a totally new password for account B and now its ok.

 

I had the same problem around one or two years ago on my desktop!o

 

I think time to check for malware..

 

 



BC AdBot (Login to Remove)

 


#2 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:59 AM

Posted 12 November 2014 - 04:35 PM

Hi Tilkon and :welcome:

 

I will try but not sure.So now you are in account A which is more privileged.

 

icon1348768721.jpgDownload Screen317 Security Check HERE and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If any security program requests permission to access the Internet, allow it to do so

icon1337954655.pngPlease download MiniToolBox HERE to your desktop to run it.
Checkmark the following boxes:
* List content of Hosts
* Flush DNS
* Report IE Proxy Settings
* Reset IE Proxy Settings
* Report FF Proxy Settings
* Reset FF Proxy Settings
* List last 10 Event Viewer log
* List Installed Programs
* List Devices (do NOT change any settings here)
* List Users, Partitions and Memory size
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
Click Go and Copy / Paste the result. (result.txt)

icon1337952077.pngPlease download Farbar Service Scanner (FSS) HERE and run it on the computer with the issue.

    Make sure the following options are checked:
        Internet Services
        Windows Firewall
        System Restore
        Security Center/Action Center
        Windows Update
        Windows Defender
        Other Services
    Press "Scan".
    It will create a log (FSS.txt) in the same directory the tool is run.
    Please copy and paste the log to your reply.

logo.jpgDownload Malwarebytes Anti-Rootkit HERE
    Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
    Double click on downloaded file. OK self extracting prompt.
    MBAR will start. Click "Next" to continue.
    Click in the following screen "Update" to obtain the latest malware definitions.
    Once the update is complete select "Next" and click "Scan".
    When the scan is finished and no malware has been found select "Exit".
    If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
    Open the MBAR folder located on your Desktop and paste the content of the following files in your next reply:
    "mbar-log-{date} (xx-xx-xx).txt"
    "system-log.txt"
 

icon1337304282.jpgPlease download TDSSKiller HERE and save the file to your Desktop.
Right-Click TDSSKiller.exe and select Run as administrator to run the programme.
Click Change parameters. Place a checkmark next to:

    Loaded Modules
    Detect TDLFS file system
    Verify file digital signatures

Note: If you receive the following message: Extended Monitoring Driver is required, click Reboot now, and continue from here following the reboot.
Click Start Scan. Do not use the computer during the scan.
If objects are found, change the action to skip.
Click Continue and close the window.
A log will be created and saved to the root directory (usually C:\TDSSKiller.<version_date_time>_log.txt). Attach the log in your next reply.
 

avz-icon.jpgAVZ by Kaspersky HERE .Extract ZiP in folder.Double click AVZ.exe.Click File menu above then Database Update and Start.Press Ok when is over.Select your hard drive checking boxes.Click Search Parameters tab and set tick under Search for TCP/UDP Ports used by Trojan Horses.
Rights set tick on Malware remove mode and change everything to Report only.Uncheck Heuristic file deletion and press Scan button.When is over click Save button rights as avz_log.txt and paste the content.


 

Thank you!



#3 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 05:05 PM

 Results of screen317's Security Check version 0.99.89  
 Windows 7 Service Pack 1 x86 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player     15.0.0.152  
 Adobe Reader XI  
 Mozilla Firefox (33.1)
````````Process Check: objlist.exe by Laurent````````  
 Kaspersky Lab Kaspersky Internet Security 2013 avp.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
 



#4 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 05:08 PM

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Cesare (administrator) on 12-11-2014 at 23:08:22
Running from "C:\Users\Cesare\Downloads"
Microsoft Windows 7 Professional  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Configurazione IP di Windows

Cache del resolver DNS svuotata.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================




========================= Event log errors: ===============================

Application errors:
==================
Error: (11/11/2014 07:13:44 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Nome del modulo che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Codice eccezione: 0xc0000005
Offset errore 0x000077eb
ID processo che ha generato l'errore: 0x1388
Ora di avvio dell'applicazione che ha generato l'errore: 0xsttray.exe0
Percorso dell'applicazione che ha generato l'errore: sttray.exe1
Percorso del modulo che ha generato l'errore: sttray.exe2
ID segnalazione: sttray.exe3

Error: (11/11/2014 04:38:18 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Nome del modulo che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Codice eccezione: 0xc0000005
Offset errore 0x000077eb
ID processo che ha generato l'errore: 0x450
Ora di avvio dell'applicazione che ha generato l'errore: 0xsttray.exe0
Percorso dell'applicazione che ha generato l'errore: sttray.exe1
Percorso del modulo che ha generato l'errore: sttray.exe2
ID segnalazione: sttray.exe3

Error: (11/11/2014 01:10:55 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/11/2014 01:09:07 PM) (Source: STacSV) (User: NT AUTHORITY)
Description: Connection to PortConfig COM interface failed

Error: (11/10/2014 09:33:09 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Nome del modulo che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Codice eccezione: 0xc0000005
Offset errore 0x000077eb
ID processo che ha generato l'errore: 0x1024
Ora di avvio dell'applicazione che ha generato l'errore: 0xsttray.exe0
Percorso dell'applicazione che ha generato l'errore: sttray.exe1
Percorso del modulo che ha generato l'errore: sttray.exe2
ID segnalazione: sttray.exe3

Error: (11/10/2014 09:28:49 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Nome del modulo che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Codice eccezione: 0xc0000005
Offset errore 0x000077eb
ID processo che ha generato l'errore: 0xe10
Ora di avvio dell'applicazione che ha generato l'errore: 0xsttray.exe0
Percorso dell'applicazione che ha generato l'errore: sttray.exe1
Percorso del modulo che ha generato l'errore: sttray.exe2
ID segnalazione: sttray.exe3

Error: (11/10/2014 09:28:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/10/2014 09:26:35 PM) (Source: STacSV) (User: NT AUTHORITY)
Description: Connection to PortConfig COM interface failed

Error: (11/10/2014 09:01:59 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Nome del modulo che ha generato l'errore: sttray.exe, versione: 1.0.6276.0, timestamp: 0x4ba991cc
Codice eccezione: 0xc0000005
Offset errore 0x000077eb
ID processo che ha generato l'errore: 0x1710
Ora di avvio dell'applicazione che ha generato l'errore: 0xsttray.exe0
Percorso dell'applicazione che ha generato l'errore: sttray.exe1
Percorso del modulo che ha generato l'errore: sttray.exe2
ID segnalazione: sttray.exe3

Error: (11/10/2014 08:56:40 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (11/12/2014 10:53:29 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 10:53:20 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 09:44:03 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 09:42:07 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 09:41:34 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 07:23:18 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 07:23:07 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 07:22:54 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 11:58:37 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (11/12/2014 11:58:27 AM) (Source: atikmdag) (User: )
Description: Display is not active


Microsoft Office Sessions:
=========================
Error: (11/11/2014 07:13:44 PM) (Source: Application Error)(User: )
Description: sttray.exe1.0.6276.04ba991ccsttray.exe1.0.6276.04ba991ccc0000005000077eb138801cffddb3880a582C:\Program Files\IDT\WDM\sttray.exeC:\Program Files\IDT\WDM\sttray.exe788cdd5d-69ce-11e4-b19f-00247e6110c8

Error: (11/11/2014 04:38:18 PM) (Source: Application Error)(User: )
Description: sttray.exe1.0.6276.04ba991ccsttray.exe1.0.6276.04ba991ccc0000005000077eb45001cffdc5801f4a18C:\Program Files\IDT\WDM\sttray.exeC:\Program Files\IDT\WDM\sttray.exec1f3f66c-69b8-11e4-b19f-00247e6110c8

Error: (11/11/2014 01:10:55 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/11/2014 01:09:07 PM) (Source: STacSV)(User: NT AUTHORITY)
Description: Connection to PortConfig COM interface failed

Error: (11/10/2014 09:33:09 PM) (Source: Application Error)(User: )
Description: sttray.exe1.0.6276.04ba991ccsttray.exe1.0.6276.04ba991ccc0000005000077eb102401cffd2588c70be9C:\Program Files\IDT\WDM\sttray.exeC:\Program Files\IDT\WDM\sttray.exec8319df6-6918-11e4-960f-00247e6110c8

Error: (11/10/2014 09:28:49 PM) (Source: Application Error)(User: )
Description: sttray.exe1.0.6276.04ba991ccsttray.exe1.0.6276.04ba991ccc0000005000077ebe1001cffd24ed008143C:\Program Files\IDT\WDM\sttray.exeC:\Program Files\IDT\WDM\sttray.exe2d5e32d6-6918-11e4-960f-00247e6110c8

Error: (11/10/2014 09:28:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/10/2014 09:26:35 PM) (Source: STacSV)(User: NT AUTHORITY)
Description: Connection to PortConfig COM interface failed

Error: (11/10/2014 09:01:59 PM) (Source: Application Error)(User: )
Description: sttray.exe1.0.6276.04ba991ccsttray.exe1.0.6276.04ba991ccc0000005000077eb171001cffd212dd8e9f5C:\Program Files\IDT\WDM\sttray.exeC:\Program Files\IDT\WDM\sttray.exe6d7f3540-6914-11e4-8c58-00247e6110c8

Error: (11/10/2014 08:56:40 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2014-10-13 17:57:09.757
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.755
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.752
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.744
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.742
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.739
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.733
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.731
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.728
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.

  Date: 2014-10-13 17:57:09.721
  Description: Controllo dell'integrità del codice: impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\KLELAMX86\klelam.sys. Impossibile trovare l'insieme di hash dell'immagine per pagina nel sistema.



=========================== Installed Programs ============================
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Italiano (HKLM\...\{AC76BA86-7AD7-1040-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: 1.5.0.0 - Canon Inc.)
Canon MX470 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX470_series) (Version: 1.00 - Canon Inc.)
Canon MX470 series On-screen Manual (HKLM\...\Canon MX470 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 2.1.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM\...\Canon My Image Garden Design Files) (Version: 2.1.0 - Canon Inc.)
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.2.0 - Canon Inc.)
Canon Quick Menu (HKLM\...\CanonQuickMenu) (Version: 2.3.0 - Canon Inc.)
Canon Utility Selezione rapida (HKLM\...\Speed Dial Utility) (Version: 1.4.0 - Canon Inc.)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5067 - CDBurnerXP)
CyberLink YouCam 5 (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.0909 - CyberLink Corp.)
CyberLink YouCam 5 (Version: 5.0.0909 - CyberLink Corp.) Hidden
doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: 7.3.400 - Softland)
f.lux (HKCU\...\Flux) (Version:  - )
IZArc 4.1.9 (HKLM\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.1.9 - Ivan Zahariev)
Kaspersky Internet Security 2013 (HKLM\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab)
Kaspersky Internet Security 2013 (Version: 13.0.1.4190 - Kaspersky Lab) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (ITA) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 it) (HKLM\...\Mozilla Firefox 33.1 (x86 it)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 33.0.3 - Mozilla)
Registrazione utente Canon MX470 series (HKLM\...\Registrazione utente Canon MX470 series) (Version:  - ?Canon Inc.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RoboForm 7-9-10-1 (All Users) (HKLM\...\AI RoboForm) (Version: 7-9-10-1 - Siber Systems)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Syntorial (HKLM\...\{0B10E9C8-D1C9-4F19-89D2-A006C12A3FD1}) (Version: 1.5.101 - Audible Genius, LLC)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 3069.2 MB
Available physical RAM: 1827.9 MB
Total Pagefile: 6136.68 MB
Available Pagefile: 4643.96 MB
Total Virtual: 2047.88 MB
Available Virtual: 1945.4 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:96.58 GB) (Free:70.39 GB) NTFS
2 Drive d: () (Fixed) (Total:369.08 GB) (Free:240.95 GB) NTFS

========================= Users: ========================================

Account utente per \\PC

Administrator            Cesare                   Guest                    
Utente                   
Esecuzione comando riuscita.


**** End of log ****
 



#5 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 05:24 PM

Farbar Service Scanner Version: 21-07-2014
Ran by Cesare (administrator) on 12-11-2014 at 23:09:46
Running from "C:\Users\Cesare\Downloads"
Microsoft Windows 7 Professional  Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => File is digitally signed
C:\Windows\system32\Drivers\nsiproxy.sys => File is digitally signed
C:\Windows\system32\dhcpcore.dll => File is digitally signed
C:\Windows\system32\Drivers\afd.sys => File is digitally signed
C:\Windows\system32\Drivers\tdx.sys => File is digitally signed
C:\Windows\system32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\system32\dnsrslvr.dll => File is digitally signed
C:\Windows\system32\mpssvc.dll => File is digitally signed
C:\Windows\system32\bfe.dll => File is digitally signed
C:\Windows\system32\Drivers\mpsdrv.sys => File is digitally signed
C:\Windows\system32\SDRSVC.dll => File is digitally signed
C:\Windows\system32\vssvc.exe => File is digitally signed
C:\Windows\system32\wscsvc.dll => File is digitally signed
C:\Windows\system32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\system32\wuaueng.dll => File is digitally signed
C:\Windows\system32\qmgr.dll => File is digitally signed
C:\Windows\system32\es.dll => File is digitally signed
C:\Windows\system32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\system32\ipnathlp.dll => File is digitally signed
C:\Windows\system32\iphlpsvc.dll => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed


**** End of log ****



#6 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:59 AM

Posted 12 November 2014 - 05:44 PM

Did you do a scan with kaspersky?

Thank you!



#7 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 05:46 PM

Malwarebytes Anti-Rootkit BETA 1.08.1.1001
www.malwarebytes.org

Database version: v2014.11.12.10

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.17358
Cesare :: PC [administrator]

12/11/2014 23:12:27
mbar-log-2014-11-12 (23-12-27).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 321168
Time elapsed: 15 minute(s), 10 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
 



#8 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 05:47 PM

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.08.1.1001

© Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x86

Account is Administrative

Internet Explorer version: 11.0.9600.17358

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 2.394000 GHz
Memory total: 3218284544, free: 1621016576

Downloaded database version: v2014.11.12.10
Downloaded database version: v2014.11.12.01
Initializing...
======================
------------ Kernel report ------------
     11/12/2014 23:12:16
------------ Loaded modules -----------
\SystemRoot\system32\ntkrnlpa.exe
\SystemRoot\system32\halmacpi.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\BOOTVID.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\DRIVERS\kl1.sys
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\compbatt.sys
\SystemRoot\system32\drivers\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\drivers\msahci.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\vmstorfl.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\system32\DRIVERS\hpdskflt.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\klif.sys
\SystemRoot\system32\DRIVERS\klflt.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\kltdi.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\klim6.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\kneps.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\system32\drivers\csc.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\NETw5s32.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\Rt86win7.sys
\SystemRoot\system32\DRIVERS\1394ohci.sys
\SystemRoot\system32\DRIVERS\jmcr.sys
\SystemRoot\system32\DRIVERS\SCSIPORT.SYS
\SystemRoot\system32\DRIVERS\sdbus.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\klkbdflt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\klmouflt.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\enecir.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\Accelerometer.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\clwvd.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\rdpbus.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\circlass.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\HdAudio.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\hidir.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\kbdhid.sys
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_dumpata.sys
\SystemRoot\System32\Drivers\dump_msahci.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\luafv.sys
\SystemRoot\System32\Drivers\BTHUSB.sys
\SystemRoot\System32\Drivers\bthport.sys
\SystemRoot\system32\DRIVERS\rfcomm.sys
\SystemRoot\system32\DRIVERS\BthEnum.sys
\SystemRoot\system32\DRIVERS\bthpan.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\System32\cdd.dll
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\MBAMSwissArmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\rpcrt4.dll
\Windows\System32\ole32.dll
\Windows\System32\msvcrt.dll
\Windows\System32\clbcatq.dll
\Windows\System32\difxapi.dll
\Windows\System32\ws2_32.dll
\Windows\System32\normaliz.dll
\Windows\System32\imagehlp.dll
\Windows\System32\sechost.dll
\Windows\System32\kernel32.dll
\Windows\System32\lpk.dll
\Windows\System32\wininet.dll
\Windows\System32\setupapi.dll
\Windows\System32\advapi32.dll
\Windows\System32\user32.dll
\Windows\System32\oleaut32.dll
\Windows\System32\shell32.dll
\Windows\System32\Wldap32.dll
\Windows\System32\imm32.dll
\Windows\System32\gdi32.dll
\Windows\System32\usp10.dll
\Windows\System32\psapi.dll
\Windows\System32\shlwapi.dll
\Windows\System32\comdlg32.dll
\Windows\System32\msctf.dll
\Windows\System32\nsi.dll
\Windows\System32\urlmon.dll
\Windows\System32\iertutil.dll
\Windows\System32\crypt32.dll
\Windows\System32\wintrust.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
\Windows\System32\KernelBase.dll
\Windows\System32\comctl32.dll
\Windows\System32\userenv.dll
\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
\Windows\System32\devobj.dll
\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
\Windows\System32\profapi.dll
\Windows\System32\msasn1.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff86be4628
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-0\
Lower Device Object: 0xffffffff8672c030
Lower Device Driver Name: \Driver\atapi\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86be4628, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86be4308, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xffffffff86be4628, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86be4c48, DeviceName: Unknown, DriverName: \Driver\hpdskflt\
DevicePointer: 0xffffffff85d6c938, DeviceName: Unknown, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff8672c030, DeviceName: \Device\Ide\IdeDeviceP0T0L0-0\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: DBF6EDF9

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 204800
    Partition file system is NTFS
    Partition is bootable

    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 206848  Numsec = 202545152

    Partition 2 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 202752000  Numsec = 774019072

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 500107862016 bytes
Sector size: 512 bytes

Done!
Scan finished
=======================================


Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...
Removal finished
 



#9 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 06:05 PM

In the root directory I found two TDSSKiller logs:

 

This is the first:

 

23:49:43.0872 0x0188  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
23:49:49.0499 0x0188  ============================================================
23:49:49.0499 0x0188  Current date / time: 2014/11/12 23:49:49.0499
23:49:49.0499 0x0188  SystemInfo:
23:49:49.0499 0x0188  
23:49:49.0499 0x0188  OS Version: 6.1.7601 ServicePack: 1.0
23:49:49.0499 0x0188  Product type: Workstation
23:49:49.0499 0x0188  ComputerName: PC
23:49:49.0499 0x0188  UserName: Cesare
23:49:49.0499 0x0188  Windows directory: C:\Windows
23:49:49.0499 0x0188  System windows directory: C:\Windows
23:49:49.0499 0x0188  Processor architecture: Intel x86
23:49:49.0499 0x0188  Number of processors: 2
23:49:49.0499 0x0188  Page size: 0x1000
23:49:49.0499 0x0188  Boot type: Normal boot
23:49:49.0499 0x0188  ============================================================
23:49:58.0592 0x0188  KLMD registered as C:\Windows\system32\drivers\23318314.sys
23:49:59.0412 0x0188  System UUID: {3B28E9F0-3EE0-D35E-D7EA-B77FDA235FCC}
23:50:00.0552 0x0188  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:50:00.0552 0x0188  ============================================================
23:50:00.0552 0x0188  \Device\Harddisk0\DR0:
23:50:00.0552 0x0188  MBR partitions:
23:50:00.0552 0x0188  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:50:00.0552 0x0188  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC129800
23:50:00.0552 0x0188  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC15C000, BlocksNum 0x2E229800
23:50:00.0552 0x0188  ============================================================
23:50:00.0592 0x0188  C: <-> \Device\Harddisk0\DR0\Partition2
23:50:00.0612 0x0188  D: <-> \Device\Harddisk0\DR0\Partition3
23:50:00.0612 0x0188  ============================================================
23:50:00.0612 0x0188  Initialize success
23:50:00.0612 0x0188  ============================================================
23:50:33.0121 0x1180  KLMD registered as C:\Windows\system32\drivers\73184821.sys
23:50:34.0613 0x1180  Deinitialize success
 



#10 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 06:12 PM

23:58:00.0354 0x018c  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
23:58:00.0900 0x018c  ============================================================
23:58:00.0900 0x018c  Current date / time: 2014/11/12 23:58:00.0900
23:58:00.0900 0x018c  SystemInfo:
23:58:00.0900 0x018c  
23:58:00.0900 0x018c  OS Version: 6.1.7601 ServicePack: 1.0
23:58:00.0900 0x018c  Product type: Workstation
23:58:00.0900 0x018c  ComputerName: PC
23:58:00.0900 0x018c  UserName: Cesare
23:58:00.0900 0x018c  Windows directory: C:\Windows
23:58:00.0900 0x018c  System windows directory: C:\Windows
23:58:00.0900 0x018c  Processor architecture: Intel x86
23:58:00.0900 0x018c  Number of processors: 2
23:58:00.0900 0x018c  Page size: 0x1000
23:58:00.0900 0x018c  Boot type: Normal boot
23:58:00.0900 0x018c  ============================================================
23:58:00.0900 0x018c  BG loaded
23:58:01.0508 0x018c  System UUID: {3B28E9F0-3EE0-D35E-D7EA-B77FDA235FCC}
23:58:02.0773 0x018c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:58:02.0813 0x018c  ============================================================
23:58:02.0813 0x018c  \Device\Harddisk0\DR0:
23:58:02.0813 0x018c  MBR partitions:
23:58:02.0813 0x018c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
23:58:02.0813 0x018c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC129800
23:58:02.0823 0x018c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC15C000, BlocksNum 0x2E229800
23:58:02.0823 0x018c  ============================================================
23:58:03.0065 0x018c  C: <-> \Device\Harddisk0\DR0\Partition2
23:58:03.0205 0x018c  D: <-> \Device\Harddisk0\DR0\Partition3
23:58:03.0205 0x018c  ============================================================
23:58:03.0205 0x018c  Initialize success
23:58:03.0205 0x018c  ============================================================
23:59:50.0420 0x1390  ============================================================
23:59:50.0420 0x1390  Scan started
23:59:50.0420 0x1390  Mode: Manual; SigCheck; TDLFS;
23:59:50.0420 0x1390  ============================================================
23:59:50.0420 0x1390  KSN ping started
23:59:52.0916 0x1390  KSN ping finished: true
23:59:55.0880 0x1390  ================ Scan system memory ========================
23:59:55.0880 0x1390  System memory - ok
23:59:55.0880 0x1390  ================ Scan services =============================
23:59:56.0036 0x1390  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
23:59:56.0177 0x1390  1394ohci - ok
23:59:56.0208 0x1390  [ CC1F1D3D70DC13C2C281488D347D4415, 3AB1495F8982C727D02E9975E2E04203B918AFAA7B05B5E7FEB5142EB30D1998 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
23:59:56.0223 0x1390  Accelerometer - ok
23:59:56.0255 0x1390  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:59:56.0286 0x1390  ACPI - ok
23:59:56.0301 0x1390  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:59:56.0379 0x1390  AcpiPmi - ok
23:59:56.0457 0x1390  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:59:56.0473 0x1390  AdobeARMservice - ok
23:59:56.0504 0x1390  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
23:59:56.0535 0x1390  adp94xx - ok
23:59:56.0551 0x1390  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
23:59:56.0567 0x1390  adpahci - ok
23:59:56.0613 0x1390  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
23:59:56.0629 0x1390  adpu320 - ok
23:59:56.0691 0x1390  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:59:56.0738 0x1390  AeLookupSvc - ok
23:59:56.0769 0x1390  [ 822D53766D57C90C437536232ECE9023, F6749E624912CA93121A12944AAFE90091812E49C6C553DFF9CED6B276FE975B ] AESTAud         C:\Windows\system32\drivers\AESTAud.sys
23:59:56.0832 0x1390  AESTAud - ok
23:59:56.0879 0x1390  [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD             C:\Windows\system32\drivers\afd.sys
23:59:56.0925 0x1390  AFD - ok
23:59:56.0957 0x1390  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
23:59:56.0972 0x1390  agp440 - ok
23:59:57.0019 0x1390  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
23:59:57.0050 0x1390  aic78xx - ok
23:59:57.0097 0x1390  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
23:59:57.0128 0x1390  ALG - ok
23:59:57.0159 0x1390  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:59:57.0191 0x1390  aliide - ok
23:59:57.0222 0x1390  [ B19505648F033393E907E2E419FDE8B3, BEF76AAD61FE0CA1F2B91C491FD94DE1BE67E776BBB7972D57ADFBE0333E9615 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:59:57.0269 0x1390  AMD External Events Utility - ok
23:59:57.0300 0x1390  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
23:59:57.0315 0x1390  amdagp - ok
23:59:57.0347 0x1390  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:59:57.0362 0x1390  amdide - ok
23:59:57.0393 0x1390  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
23:59:57.0425 0x1390  AmdK8 - ok
23:59:57.0456 0x1390  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
23:59:57.0487 0x1390  AmdPPM - ok
23:59:57.0518 0x1390  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:59:57.0534 0x1390  amdsata - ok
23:59:57.0596 0x1390  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
23:59:57.0627 0x1390  amdsbs - ok
23:59:57.0643 0x1390  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:59:57.0659 0x1390  amdxata - ok
23:59:57.0690 0x1390  [ E499E422412EF37576092A52648DB2B4, 95E9C11258CAF37060242BA4E1170CEDECF3376CF0A9A1E61D46706D7C7F36F8 ] AppID           C:\Windows\system32\drivers\appid.sys
23:59:57.0721 0x1390  AppID - ok
23:59:57.0752 0x1390  [ 89B6FA43B68A373B304DFB8F6776B255, 36ABD9AB89CBC7991DE9B04051B26014982953697862BC46EF8AE4ACC2404128 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:59:57.0768 0x1390  AppIDSvc - ok
23:59:57.0799 0x1390  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
23:59:57.0815 0x1390  Appinfo - ok
23:59:57.0846 0x1390  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
23:59:57.0908 0x1390  AppMgmt - ok
23:59:57.0955 0x1390  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
23:59:57.0971 0x1390  arc - ok
23:59:58.0002 0x1390  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
23:59:58.0017 0x1390  arcsas - ok
23:59:58.0111 0x1390  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
23:59:58.0142 0x1390  aspnet_state - ok
23:59:58.0158 0x1390  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:59:58.0236 0x1390  AsyncMac - ok
23:59:58.0251 0x1390  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
23:59:58.0298 0x1390  atapi - ok
23:59:58.0501 0x1390  [ 04F09923A393E4E0E8453A8F78361E73, B5C0B9D1195B87AF823887AD9355CD2B4C4F4DDF34103891EE48EA86F0F544E7 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
23:59:58.0641 0x1390  atikmdag - ok
23:59:58.0719 0x1390  [ 9A34927D722AD16841263636A4BF069B, 4A92A84E3E4A8BA9551CFB765D0E6FE50E7CBD5695568FB3A37E1556770A369F ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:59:58.0751 0x1390  AudioEndpointBuilder - ok
23:59:58.0766 0x1390  [ 9A34927D722AD16841263636A4BF069B, 4A92A84E3E4A8BA9551CFB765D0E6FE50E7CBD5695568FB3A37E1556770A369F ] Audiosrv        C:\Windows\System32\Audiosrv.dll
23:59:58.0797 0x1390  Audiosrv - ok
23:59:58.0875 0x1390  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] AVP             C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
23:59:58.0938 0x1390  AVP - ok
23:59:58.0969 0x1390  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:59:59.0047 0x1390  AxInstSV - ok
23:59:59.0109 0x1390  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
23:59:59.0187 0x1390  b06bdrv - ok
23:59:59.0250 0x1390  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
23:59:59.0281 0x1390  b57nd60x - ok
23:59:59.0328 0x1390  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
23:59:59.0390 0x1390  BDESVC - ok
23:59:59.0390 0x1390  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:59:59.0437 0x1390  Beep - ok
23:59:59.0484 0x1390  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
23:59:59.0546 0x1390  BFE - ok
23:59:59.0624 0x1390  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
23:59:59.0671 0x1390  BITS - ok
23:59:59.0687 0x1390  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:59:59.0718 0x1390  blbdrive - ok
23:59:59.0733 0x1390  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:59:59.0765 0x1390  bowser - ok
23:59:59.0780 0x1390  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
23:59:59.0811 0x1390  BrFiltLo - ok
23:59:59.0811 0x1390  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
23:59:59.0843 0x1390  BrFiltUp - ok
23:59:59.0874 0x1390  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
23:59:59.0905 0x1390  Browser - ok
23:59:59.0936 0x1390  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:59:59.0983 0x1390  Brserid - ok
23:59:59.0999 0x1390  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
00:00:00.0030 0x1390  BrSerWdm - ok
00:00:00.0045 0x1390  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
00:00:00.0061 0x1390  BrUsbMdm - ok
00:00:00.0092 0x1390  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
00:00:00.0123 0x1390  BrUsbSer - ok
00:00:00.0155 0x1390  [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
00:00:00.0186 0x1390  BthEnum - ok
00:00:00.0217 0x1390  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
00:00:00.0264 0x1390  BTHMODEM - ok
00:00:00.0264 0x1390  [ AD1872E5829E8A2C3B5B4B641C3EAB0E, 8C2DBCAC08DDB41E2B44E257C55FA2D0272959B308EFF9EAF5FF9AE1E4A0AA39 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
00:00:00.0295 0x1390  BthPan - ok
00:00:00.0342 0x1390  [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
00:00:00.0357 0x1390  BTHPORT - ok
00:00:00.0389 0x1390  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
00:00:00.0435 0x1390  bthserv - ok
00:00:00.0451 0x1390  [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
00:00:00.0482 0x1390  BTHUSB - ok
00:00:00.0513 0x1390  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
00:00:00.0529 0x1390  cdfs - ok
00:00:00.0576 0x1390  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
00:00:00.0607 0x1390  cdrom - ok
00:00:00.0654 0x1390  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
00:00:00.0685 0x1390  CertPropSvc - ok
00:00:00.0747 0x1390  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
00:00:00.0779 0x1390  circlass - ok
00:00:00.0825 0x1390  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
00:00:00.0857 0x1390  CLFS - ok
00:00:00.0903 0x1390  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:00:00.0919 0x1390  clr_optimization_v2.0.50727_32 - ok
00:00:00.0966 0x1390  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:00:00.0997 0x1390  clr_optimization_v4.0.30319_32 - ok
00:00:01.0044 0x1390  [ 0187042EA17404BD54E903CB3A8B0C10, 8E62E5E282E7F4FB288D6D0787317FF15D08922596D0256F019462D52843EBE8 ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
00:00:01.0091 0x1390  clwvd - ok
00:00:01.0106 0x1390  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
00:00:01.0122 0x1390  CmBatt - ok
00:00:01.0137 0x1390  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
00:00:01.0153 0x1390  cmdide - ok
00:00:01.0184 0x1390  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\Windows\system32\Drivers\cng.sys
00:00:01.0215 0x1390  CNG - ok
00:00:01.0247 0x1390  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
00:00:01.0262 0x1390  Compbatt - ok
00:00:01.0293 0x1390  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
00:00:01.0325 0x1390  CompositeBus - ok
00:00:01.0340 0x1390  COMSysApp - ok
00:00:01.0356 0x1390  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
00:00:01.0371 0x1390  crcdisk - ok
00:00:01.0418 0x1390  [ 623E143F2DF17C0106A9988F5D7DC878, 9DA30262FF22FA9F1DB247CB3B4A2892D79730EF0ECC9589D399D24B4F58E565 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
00:00:01.0449 0x1390  CryptSvc - ok
00:00:01.0496 0x1390  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
00:00:01.0543 0x1390  CSC - ok
00:00:01.0574 0x1390  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
00:00:01.0605 0x1390  CscService - ok
00:00:01.0652 0x1390  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
00:00:01.0699 0x1390  DcomLaunch - ok
00:00:01.0730 0x1390  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
00:00:01.0777 0x1390  defragsvc - ok
00:00:01.0793 0x1390  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
00:00:01.0824 0x1390  DfsC - ok
00:00:01.0855 0x1390  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
00:00:01.0886 0x1390  Dhcp - ok
00:00:01.0902 0x1390  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
00:00:01.0949 0x1390  discache - ok
00:00:01.0980 0x1390  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\drivers\disk.sys
00:00:01.0995 0x1390  Disk - ok
00:00:02.0027 0x1390  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
00:00:02.0042 0x1390  dmvsc - ok
00:00:02.0073 0x1390  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
00:00:02.0105 0x1390  Dnscache - ok
00:00:02.0120 0x1390  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
00:00:02.0167 0x1390  dot3svc - ok
00:00:02.0198 0x1390  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
00:00:02.0229 0x1390  DPS - ok
00:00:02.0276 0x1390  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
00:00:02.0307 0x1390  drmkaud - ok
00:00:02.0354 0x1390  [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
00:00:02.0385 0x1390  DXGKrnl - ok
00:00:02.0417 0x1390  [ 22EF8965101685ADD128F03A2B03CE16, 677F7B32C7A45C26F2F0DB67FFB526E9742E4B3A8BEAEA7B814CBCA2F56D6D5A ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
00:00:02.0432 0x1390  E1G60 - ok
00:00:02.0479 0x1390  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
00:00:02.0526 0x1390  EapHost - ok
00:00:02.0666 0x1390  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
00:00:02.0791 0x1390  ebdrv - ok
00:00:02.0822 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS             C:\Windows\System32\lsass.exe
00:00:02.0853 0x1390  EFS - ok
00:00:02.0947 0x1390  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
00:00:03.0025 0x1390  ehRecvr - ok
00:00:03.0041 0x1390  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
00:00:03.0072 0x1390  ehSched - ok
00:00:03.0119 0x1390  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
00:00:03.0134 0x1390  elxstor - ok
00:00:03.0165 0x1390  [ E1AF143203ABF52BA87BB122BB9A6EA3, 6B185CB63DE0D60ED325308F1DE2B204844BD1DB391AF53B5A0A743F72BF9E61 ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
00:00:03.0181 0x1390  enecir - ok
00:00:03.0197 0x1390  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
00:00:03.0212 0x1390  ErrDev - ok
00:00:03.0275 0x1390  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
00:00:03.0321 0x1390  EventSystem - ok
00:00:03.0337 0x1390  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
00:00:03.0384 0x1390  exfat - ok
00:00:03.0415 0x1390  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
00:00:03.0446 0x1390  fastfat - ok
00:00:03.0524 0x1390  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
00:00:03.0587 0x1390  Fax - ok
00:00:03.0602 0x1390  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
00:00:03.0633 0x1390  fdc - ok
00:00:03.0665 0x1390  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
00:00:03.0711 0x1390  fdPHost - ok
00:00:03.0727 0x1390  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
00:00:03.0758 0x1390  FDResPub - ok
00:00:03.0789 0x1390  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
00:00:03.0805 0x1390  FileInfo - ok
00:00:03.0821 0x1390  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
00:00:03.0852 0x1390  Filetrace - ok
00:00:03.0883 0x1390  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
00:00:03.0899 0x1390  flpydisk - ok
00:00:03.0930 0x1390  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
00:00:03.0945 0x1390  FltMgr - ok
00:00:03.0992 0x1390  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
00:00:04.0039 0x1390  FontCache - ok
00:00:04.0101 0x1390  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
00:00:04.0117 0x1390  FontCache3.0.0.0 - ok
00:00:04.0133 0x1390  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
00:00:04.0148 0x1390  FsDepends - ok
00:00:04.0179 0x1390  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
00:00:04.0195 0x1390  Fs_Rec - ok
00:00:04.0211 0x1390  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
00:00:04.0242 0x1390  fvevol - ok
00:00:04.0257 0x1390  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
00:00:04.0273 0x1390  gagp30kx - ok
00:00:04.0304 0x1390  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
00:00:04.0351 0x1390  gpsvc - ok
00:00:04.0382 0x1390  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
00:00:04.0398 0x1390  hcw85cir - ok
00:00:04.0429 0x1390  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:00:04.0445 0x1390  HdAudAddService - ok
00:00:04.0476 0x1390  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
00:00:04.0507 0x1390  HDAudBus - ok
00:00:04.0507 0x1390  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
00:00:04.0523 0x1390  HidBatt - ok
00:00:04.0554 0x1390  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
00:00:04.0569 0x1390  HidBth - ok
00:00:04.0601 0x1390  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
00:00:04.0616 0x1390  HidIr - ok
00:00:04.0663 0x1390  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
00:00:04.0725 0x1390  hidserv - ok
00:00:04.0772 0x1390  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
00:00:04.0819 0x1390  HidUsb - ok
00:00:04.0835 0x1390  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
00:00:04.0881 0x1390  hkmsvc - ok
00:00:04.0897 0x1390  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:00:04.0913 0x1390  HomeGroupListener - ok
00:00:04.0944 0x1390  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:00:04.0975 0x1390  HomeGroupProvider - ok
00:00:05.0006 0x1390  [ 4EF10B866C62ABBEAF7511CDD05A19BE, B758DCB9CD8C7E6ED4DEFB666A94B0F749CB86964D2CA9004DF94C5E321F5151 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
00:00:05.0022 0x1390  hpdskflt - ok
00:00:05.0053 0x1390  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
00:00:05.0069 0x1390  HpSAMD - ok
00:00:05.0084 0x1390  [ C0BEB56ED79B59B7B33D0AA6C38A0BA6, 8A21DB7B51BF533CBA08640498C132560641244B9218C483E2053502DF88313D ] hpsrv           C:\Windows\system32\Hpservice.exe
00:00:05.0084 0x1390  hpsrv - ok
00:00:05.0131 0x1390  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
00:00:05.0162 0x1390  HTTP - ok
00:00:05.0193 0x1390  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
00:00:05.0193 0x1390  hwpolicy - ok
00:00:05.0225 0x1390  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
00:00:05.0240 0x1390  i8042prt - ok
00:00:05.0271 0x1390  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
00:00:05.0303 0x1390  iaStorV - ok
00:00:05.0349 0x1390  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:00:05.0396 0x1390  idsvc - ok
00:00:05.0412 0x1390  IEEtwCollectorService - ok
00:00:05.0443 0x1390  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
00:00:05.0459 0x1390  iirsp - ok
00:00:05.0521 0x1390  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
00:00:05.0568 0x1390  IKEEXT - ok
00:00:05.0583 0x1390  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
00:00:05.0599 0x1390  intelide - ok
00:00:05.0677 0x1390  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
00:00:05.0708 0x1390  intelppm - ok
00:00:05.0739 0x1390  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
00:00:05.0802 0x1390  IPBusEnum - ok
00:00:05.0817 0x1390  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:00:05.0864 0x1390  IpFilterDriver - ok
00:00:05.0911 0x1390  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
00:00:05.0958 0x1390  iphlpsvc - ok
00:00:05.0973 0x1390  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
00:00:05.0989 0x1390  IPMIDRV - ok
00:00:06.0005 0x1390  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
00:00:06.0051 0x1390  IPNAT - ok
00:00:06.0067 0x1390  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
00:00:06.0114 0x1390  IRENUM - ok
00:00:06.0129 0x1390  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
00:00:06.0145 0x1390  isapnp - ok
00:00:06.0161 0x1390  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
00:00:06.0192 0x1390  iScsiPrt - ok
00:00:06.0223 0x1390  [ 5C2F34F60AAEC9DB4DAA973915CBAEDC, 34B4E5A097477C0E2BE475980B4A516DCB5895040E7C2A827EC10AB2B5DEBC93 ] JMCR            C:\Windows\system32\DRIVERS\jmcr.sys
00:00:06.0239 0x1390  JMCR - ok
00:00:06.0254 0x1390  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
00:00:06.0270 0x1390  kbdclass - ok
00:00:06.0317 0x1390  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
00:00:06.0348 0x1390  kbdhid - ok
00:00:06.0363 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso          C:\Windows\system32\lsass.exe
00:00:06.0379 0x1390  KeyIso - ok
00:00:06.0426 0x1390  [ 871C226234A48C24DFE7478F36C0050C, 657CAB49387E0E40311D4DEC93D9860B2DAC2C05F223698CFA2F9BB50B5F3022 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
00:00:06.0441 0x1390  kl1 - ok
00:00:06.0519 0x1390  [ 3D4FC0A34DFDDB931D65001839D73A5F, D2213EF050A0DF6236228E84A2D2AEAD81B1A7B630DC18447D4F934F68CA80C7 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
00:00:06.0535 0x1390  KLIF - ok
00:00:06.0582 0x1390  [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
00:00:06.0613 0x1390  KLIM6 - ok
00:00:06.0629 0x1390  [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
00:00:06.0644 0x1390  klkbdflt - ok
00:00:06.0691 0x1390  [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
00:00:06.0707 0x1390  klmouflt - ok
00:00:06.0722 0x1390  [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
00:00:06.0738 0x1390  kltdi - ok
00:00:06.0769 0x1390  [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
00:00:06.0785 0x1390  kneps - ok
00:00:06.0800 0x1390  [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
00:00:06.0816 0x1390  KSecDD - ok
00:00:06.0816 0x1390  [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
00:00:06.0831 0x1390  KSecPkg - ok
00:00:06.0863 0x1390  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
00:00:06.0909 0x1390  KtmRm - ok
00:00:06.0941 0x1390  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
00:00:06.0987 0x1390  LanmanServer - ok
00:00:07.0003 0x1390  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:00:07.0034 0x1390  LanmanWorkstation - ok
00:00:07.0081 0x1390  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
00:00:07.0097 0x1390  lltdio - ok
00:00:07.0128 0x1390  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
00:00:07.0175 0x1390  lltdsvc - ok
00:00:07.0190 0x1390  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
00:00:07.0221 0x1390  lmhosts - ok
00:00:07.0253 0x1390  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
00:00:07.0268 0x1390  LSI_FC - ok
00:00:07.0299 0x1390  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
00:00:07.0315 0x1390  LSI_SAS - ok
00:00:07.0331 0x1390  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
00:00:07.0346 0x1390  LSI_SAS2 - ok
00:00:07.0362 0x1390  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
00:00:07.0377 0x1390  LSI_SCSI - ok
00:00:07.0393 0x1390  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
00:00:07.0424 0x1390  luafv - ok
00:00:07.0440 0x1390  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
00:00:07.0455 0x1390  Mcx2Svc - ok
00:00:07.0487 0x1390  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
00:00:07.0487 0x1390  megasas - ok
00:00:07.0518 0x1390  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
00:00:07.0549 0x1390  MegaSR - ok
00:00:07.0565 0x1390  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
00:00:07.0611 0x1390  MMCSS - ok
00:00:07.0658 0x1390  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
00:00:07.0736 0x1390  Modem - ok
00:00:07.0767 0x1390  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
00:00:07.0783 0x1390  monitor - ok
00:00:07.0799 0x1390  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
00:00:07.0814 0x1390  mouclass - ok
00:00:07.0845 0x1390  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
00:00:07.0861 0x1390  mouhid - ok
00:00:07.0877 0x1390  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
00:00:07.0908 0x1390  mountmgr - ok
00:00:07.0955 0x1390  [ DEA022193DF8C88F6E2B3E33D148A5DB, 97DFC47DB83E04A975A1969AA120385463FCAF4E1A9984FD3220442D7026B45A ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:00:07.0970 0x1390  MozillaMaintenance - ok
00:00:08.0001 0x1390  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
00:00:08.0017 0x1390  mpio - ok
00:00:08.0048 0x1390  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
00:00:08.0079 0x1390  mpsdrv - ok
00:00:08.0111 0x1390  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
00:00:08.0157 0x1390  MpsSvc - ok
00:00:08.0173 0x1390  [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
00:00:08.0204 0x1390  MRxDAV - ok
00:00:08.0235 0x1390  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
00:00:08.0282 0x1390  mrxsmb - ok
00:00:08.0313 0x1390  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:00:08.0329 0x1390  mrxsmb10 - ok
00:00:08.0360 0x1390  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:00:08.0376 0x1390  mrxsmb20 - ok
00:00:08.0391 0x1390  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
00:00:08.0407 0x1390  msahci - ok
00:00:08.0423 0x1390  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
00:00:08.0438 0x1390  msdsm - ok
00:00:08.0469 0x1390  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
00:00:08.0485 0x1390  MSDTC - ok
00:00:08.0501 0x1390  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
00:00:08.0532 0x1390  Msfs - ok
00:00:08.0563 0x1390  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
00:00:08.0594 0x1390  mshidkmdf - ok
00:00:08.0657 0x1390  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
00:00:08.0672 0x1390  msisadrv - ok
00:00:08.0703 0x1390  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
00:00:08.0750 0x1390  MSiSCSI - ok
00:00:08.0750 0x1390  msiserver - ok
00:00:08.0766 0x1390  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
00:00:08.0797 0x1390  MSKSSRV - ok
00:00:08.0828 0x1390  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
00:00:08.0922 0x1390  MSPCLOCK - ok
00:00:08.0937 0x1390  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
00:00:08.0969 0x1390  MSPQM - ok
00:00:08.0984 0x1390  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
00:00:09.0000 0x1390  MsRPC - ok
00:00:09.0015 0x1390  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
00:00:09.0031 0x1390  mssmbios - ok
00:00:09.0062 0x1390  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
00:00:09.0093 0x1390  MSTEE - ok
00:00:09.0125 0x1390  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
00:00:09.0187 0x1390  MTConfig - ok
00:00:09.0203 0x1390  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
00:00:09.0218 0x1390  Mup - ok
00:00:09.0265 0x1390  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
00:00:09.0296 0x1390  napagent - ok
00:00:09.0374 0x1390  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
00:00:09.0405 0x1390  NativeWifiP - ok
00:00:09.0468 0x1390  [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS            C:\Windows\system32\drivers\ndis.sys
00:00:09.0499 0x1390  NDIS - ok
00:00:09.0530 0x1390  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
00:00:09.0561 0x1390  NdisCap - ok
00:00:09.0593 0x1390  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
00:00:09.0624 0x1390  NdisTapi - ok
00:00:09.0671 0x1390  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
00:00:09.0717 0x1390  Ndisuio - ok
00:00:09.0717 0x1390  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
00:00:09.0764 0x1390  NdisWan - ok
00:00:09.0780 0x1390  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
00:00:09.0811 0x1390  NDProxy - ok
00:00:09.0842 0x1390  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
00:00:09.0873 0x1390  NetBIOS - ok
00:00:09.0889 0x1390  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
00:00:09.0936 0x1390  NetBT - ok
00:00:09.0951 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon        C:\Windows\system32\lsass.exe
00:00:09.0967 0x1390  Netlogon - ok
00:00:10.0014 0x1390  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
00:00:10.0061 0x1390  Netman - ok
00:00:10.0076 0x1390  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:00:10.0092 0x1390  NetMsmqActivator - ok
00:00:10.0107 0x1390  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:00:10.0123 0x1390  NetPipeActivator - ok
00:00:10.0154 0x1390  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
00:00:10.0185 0x1390  netprofm - ok
00:00:10.0201 0x1390  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:00:10.0232 0x1390  NetTcpActivator - ok
00:00:10.0232 0x1390  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
00:00:10.0248 0x1390  NetTcpPortSharing - ok
00:00:10.0482 0x1390  [ 5B2DFA9C5C02DDF2A113CC0F551B59DF, C599955025A64A735AD8C7E24F52525CD7A82438A7214EB9103AAAD137EB9989 ] NETw5s32        C:\Windows\system32\DRIVERS\NETw5s32.sys
00:00:10.0669 0x1390  NETw5s32 - ok
00:00:10.0856 0x1390  [ 58218EC6B61B1169CF54AAB0D00F5FE2, B76ABB2AD78CE68D30F0F08563B0593D658298CDCF1B138B6E9FB0D64CBCC3C2 ] netw5v32        C:\Windows\system32\DRIVERS\netw5v32.sys
00:00:11.0090 0x1390  netw5v32 - ok
00:00:11.0137 0x1390  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
00:00:11.0153 0x1390  nfrd960 - ok
00:00:11.0184 0x1390  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc          C:\Windows\System32\nlasvc.dll
00:00:11.0199 0x1390  NlaSvc - ok
00:00:11.0215 0x1390  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
00:00:11.0246 0x1390  Npfs - ok
00:00:11.0262 0x1390  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
00:00:11.0293 0x1390  nsi - ok
00:00:11.0324 0x1390  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
00:00:11.0340 0x1390  nsiproxy - ok
00:00:11.0402 0x1390  [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
00:00:11.0449 0x1390  Ntfs - ok
00:00:11.0465 0x1390  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
00:00:11.0496 0x1390  Null - ok
00:00:11.0527 0x1390  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
00:00:11.0543 0x1390  nvraid - ok
00:00:11.0558 0x1390  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
00:00:11.0574 0x1390  nvstor - ok
00:00:11.0605 0x1390  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
00:00:11.0621 0x1390  nv_agp - ok
00:00:11.0667 0x1390  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
00:00:11.0699 0x1390  ohci1394 - ok
00:00:11.0730 0x1390  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
00:00:11.0761 0x1390  p2pimsvc - ok
00:00:11.0792 0x1390  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
00:00:11.0823 0x1390  p2psvc - ok
00:00:11.0855 0x1390  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\drivers\parport.sys
00:00:11.0917 0x1390  Parport - ok
00:00:11.0933 0x1390  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
00:00:11.0948 0x1390  partmgr - ok
00:00:11.0964 0x1390  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
00:00:11.0979 0x1390  Parvdm - ok
00:00:12.0011 0x1390  [ 3A55D53687F16D9EF5BF307BBFEFCD9C, F1BB1B43442B151686500768C43A4D20CAA47427E78386953A42DDB42D9DDF0C ] PcaSvc          C:\Windows\System32\pcasvc.dll
00:00:12.0026 0x1390  PcaSvc - ok
00:00:12.0042 0x1390  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
00:00:12.0057 0x1390  pci - ok
00:00:12.0089 0x1390  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
00:00:12.0104 0x1390  pciide - ok
00:00:12.0120 0x1390  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
00:00:12.0135 0x1390  pcmcia - ok
00:00:12.0151 0x1390  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
00:00:12.0182 0x1390  pcw - ok
00:00:12.0229 0x1390  [ 344D1FA0438A967F1A2BAA42C86D6E19, E9CB31CBD9075B84BA771CF82A4C3AB5BF57ADEA3E76ABE8FE36FEACFD681D89 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
00:00:12.0260 0x1390  PEAUTH - ok
00:00:12.0307 0x1390  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
00:00:12.0385 0x1390  PeerDistSvc - ok
00:00:12.0463 0x1390  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
00:00:12.0541 0x1390  pla - ok
00:00:12.0603 0x1390  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
00:00:12.0666 0x1390  PlugPlay - ok
00:00:12.0681 0x1390  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
00:00:12.0697 0x1390  PNRPAutoReg - ok
00:00:12.0728 0x1390  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
00:00:12.0744 0x1390  PNRPsvc - ok
00:00:12.0775 0x1390  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
00:00:12.0822 0x1390  PolicyAgent - ok
00:00:12.0837 0x1390  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
00:00:12.0884 0x1390  Power - ok
00:00:12.0900 0x1390  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
00:00:12.0947 0x1390  PptpMiniport - ok
00:00:12.0978 0x1390  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
00:00:12.0993 0x1390  Processor - ok
00:00:13.0025 0x1390  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc         C:\Windows\system32\profsvc.dll
00:00:13.0056 0x1390  ProfSvc - ok
00:00:13.0071 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:00:13.0087 0x1390  ProtectedStorage - ok
00:00:13.0118 0x1390  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
00:00:13.0149 0x1390  Psched - ok
00:00:13.0212 0x1390  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
00:00:13.0274 0x1390  ql2300 - ok
00:00:13.0305 0x1390  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
00:00:13.0321 0x1390  ql40xx - ok
00:00:13.0337 0x1390  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
00:00:13.0368 0x1390  QWAVE - ok
00:00:13.0383 0x1390  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
00:00:13.0399 0x1390  QWAVEdrv - ok
00:00:13.0415 0x1390  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
00:00:13.0446 0x1390  RasAcd - ok
00:00:13.0461 0x1390  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
00:00:13.0493 0x1390  RasAgileVpn - ok
00:00:13.0524 0x1390  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
00:00:13.0555 0x1390  RasAuto - ok
00:00:13.0571 0x1390  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
00:00:13.0602 0x1390  Rasl2tp - ok
00:00:13.0633 0x1390  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
00:00:13.0664 0x1390  RasMan - ok
00:00:13.0680 0x1390  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
00:00:13.0727 0x1390  RasPppoe - ok
00:00:13.0742 0x1390  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
00:00:13.0773 0x1390  RasSstp - ok
00:00:13.0805 0x1390  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
00:00:13.0836 0x1390  rdbss - ok
00:00:13.0851 0x1390  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
00:00:13.0867 0x1390  rdpbus - ok
00:00:13.0883 0x1390  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
00:00:13.0914 0x1390  RDPCDD - ok
00:00:13.0945 0x1390  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
00:00:13.0961 0x1390  RDPDR - ok
00:00:13.0976 0x1390  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
00:00:14.0007 0x1390  RDPENCDD - ok
00:00:14.0023 0x1390  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
00:00:14.0054 0x1390  RDPREFMP - ok
00:00:14.0101 0x1390  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
00:00:14.0117 0x1390  RdpVideoMiniport - ok
00:00:14.0148 0x1390  [ CD9214A6AE17D188D17C3CF8CB9CC693, 2E16FF1F7446F0600D6519010FD05A30B94D97167C16B3E7FC396A97D8139D60 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
00:00:14.0163 0x1390  RDPWD - ok
00:00:14.0210 0x1390  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
00:00:14.0257 0x1390  rdyboost - ok
00:00:14.0273 0x1390  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
00:00:14.0304 0x1390  RemoteAccess - ok
00:00:14.0335 0x1390  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
00:00:14.0366 0x1390  RemoteRegistry - ok
00:00:14.0397 0x1390  [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
00:00:14.0413 0x1390  RFCOMM - ok
00:00:14.0429 0x1390  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
00:00:14.0460 0x1390  RpcEptMapper - ok
00:00:14.0475 0x1390  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
00:00:14.0491 0x1390  RpcLocator - ok
00:00:14.0522 0x1390  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\system32\rpcss.dll
00:00:14.0553 0x1390  RpcSs - ok
00:00:14.0585 0x1390  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
00:00:14.0616 0x1390  rspndr - ok
00:00:14.0678 0x1390  [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
00:00:14.0709 0x1390  RTL8167 - ok
00:00:14.0725 0x1390  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
00:00:14.0756 0x1390  s3cap - ok
00:00:14.0772 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs           C:\Windows\system32\lsass.exe
00:00:14.0787 0x1390  SamSs - ok
00:00:14.0819 0x1390  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
00:00:14.0834 0x1390  sbp2port - ok
00:00:14.0865 0x1390  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
00:00:14.0897 0x1390  SCardSvr - ok
00:00:14.0912 0x1390  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
00:00:14.0943 0x1390  scfilter - ok
00:00:14.0990 0x1390  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll
00:00:15.0037 0x1390  Schedule - ok
00:00:15.0037 0x1390  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
00:00:15.0068 0x1390  SCPolicySvc - ok
00:00:15.0099 0x1390  [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
00:00:15.0115 0x1390  sdbus - ok
00:00:15.0146 0x1390  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
00:00:15.0177 0x1390  SDRSVC - ok
00:00:15.0209 0x1390  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
00:00:15.0255 0x1390  secdrv - ok
00:00:15.0287 0x1390  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
00:00:15.0318 0x1390  seclogon - ok
00:00:15.0333 0x1390  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
00:00:15.0365 0x1390  SENS - ok
00:00:15.0396 0x1390  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
00:00:15.0411 0x1390  SensrSvc - ok
00:00:15.0443 0x1390  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\drivers\serenum.sys
00:00:15.0458 0x1390  Serenum - ok
00:00:15.0474 0x1390  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\drivers\serial.sys
00:00:15.0505 0x1390  Serial - ok
00:00:15.0536 0x1390  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
00:00:15.0552 0x1390  sermouse - ok
00:00:15.0567 0x1390  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
00:00:15.0645 0x1390  SessionEnv - ok
00:00:15.0661 0x1390  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
00:00:15.0692 0x1390  sffdisk - ok
00:00:15.0708 0x1390  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
00:00:15.0723 0x1390  sffp_mmc - ok
00:00:15.0739 0x1390  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
00:00:15.0770 0x1390  sffp_sd - ok
00:00:15.0786 0x1390  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
00:00:15.0801 0x1390  sfloppy - ok
00:00:15.0833 0x1390  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
00:00:15.0879 0x1390  SharedAccess - ok
00:00:15.0911 0x1390  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:00:15.0957 0x1390  ShellHWDetection - ok
00:00:15.0973 0x1390  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
00:00:15.0989 0x1390  sisagp - ok
00:00:16.0035 0x1390  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
00:00:16.0067 0x1390  SiSRaid2 - ok
00:00:16.0082 0x1390  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
00:00:16.0098 0x1390  SiSRaid4 - ok
00:00:16.0145 0x1390  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
00:00:16.0160 0x1390  SkypeUpdate - ok
00:00:16.0191 0x1390  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
00:00:16.0238 0x1390  Smb - ok
00:00:16.0254 0x1390  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
00:00:16.0269 0x1390  SNMPTRAP - ok
00:00:16.0285 0x1390  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
00:00:16.0301 0x1390  spldr - ok
00:00:16.0332 0x1390  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
00:00:16.0379 0x1390  Spooler - ok
00:00:16.0488 0x1390  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
00:00:16.0597 0x1390  sppsvc - ok
00:00:16.0644 0x1390  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
00:00:16.0675 0x1390  sppuinotify - ok
00:00:16.0706 0x1390  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
00:00:16.0769 0x1390  srv - ok
00:00:16.0784 0x1390  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
00:00:16.0815 0x1390  srv2 - ok
00:00:16.0847 0x1390  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
00:00:16.0878 0x1390  srvnet - ok
00:00:16.0893 0x1390  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
00:00:16.0940 0x1390  SSDPSRV - ok
00:00:16.0956 0x1390  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
00:00:16.0987 0x1390  SstpSvc - ok
00:00:17.0081 0x1390  [ FE7F776F2590C8331123BDA3A3A21DE6, B227C86077B073B78739E9FD2C79CEAFF6AC7AAAC51C249F8198CA4D9F1B5708 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\sthda.inf_x86_neutral_34194676756b8405\STacSV.exe
00:00:17.0127 0x1390  STacSV - ok
00:00:17.0159 0x1390  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
00:00:17.0174 0x1390  stexstor - ok
00:00:17.0252 0x1390  [ A71F9A0DB6904A998988C5316E3FF90A, BB48494D1A8A242C01F82ADFC3EC91C6810C0F25F0E9382FAE11E3ACBDFD2C2D ] STHDA           C:\Windows\system32\drivers\sthda.sys
00:00:17.0330 0x1390  STHDA - ok
00:00:17.0408 0x1390  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
00:00:17.0439 0x1390  StiSvc - ok
00:00:17.0455 0x1390  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
00:00:17.0471 0x1390  storflt - ok
00:00:17.0486 0x1390  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
00:00:17.0517 0x1390  StorSvc - ok
00:00:17.0549 0x1390  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
00:00:17.0564 0x1390  storvsc - ok
00:00:17.0595 0x1390  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
00:00:17.0595 0x1390  swenum - ok
00:00:17.0673 0x1390  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
00:00:17.0736 0x1390  swprv - ok
00:00:17.0814 0x1390  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
00:00:17.0876 0x1390  SysMain - ok
00:00:17.0892 0x1390  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
00:00:17.0907 0x1390  TabletInputService - ok
00:00:17.0939 0x1390  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
00:00:17.0985 0x1390  TapiSrv - ok
00:00:17.0985 0x1390  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
00:00:18.0032 0x1390  TBS - ok
00:00:18.0095 0x1390  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
00:00:18.0141 0x1390  Tcpip - ok
00:00:18.0219 0x1390  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
00:00:18.0251 0x1390  TCPIP6 - ok
00:00:18.0282 0x1390  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
00:00:18.0297 0x1390  tcpipreg - ok
00:00:18.0313 0x1390  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
00:00:18.0344 0x1390  TDPIPE - ok
00:00:18.0360 0x1390  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
00:00:18.0375 0x1390  TDTCP - ok
00:00:18.0391 0x1390  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
00:00:18.0422 0x1390  tdx - ok
00:00:18.0438 0x1390  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
00:00:18.0453 0x1390  TermDD - ok
00:00:18.0453 0x1390  [ E951866BAC5A23403F62A349EDBB6EEB, BE6FB3C09D1CF8952B4D041F45B4DEE53D78EE7D27A5135012BC92B2F7CFBEA3 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
00:00:18.0485 0x1390  terminpt - ok
00:00:18.0531 0x1390  [ E05E31F7BF577228E27CFFCA5B54ABBD, BF053DE7FA6DF33E15D0DD421F34962D92575ED163E4A605FE6B8DA9CEA5CF55 ] TermService     C:\Windows\System32\termsrv.dll
00:00:18.0563 0x1390  TermService - ok
00:00:18.0594 0x1390  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
00:00:18.0641 0x1390  Themes - ok
00:00:18.0656 0x1390  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
00:00:18.0687 0x1390  THREADORDER - ok
00:00:18.0719 0x1390  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
00:00:18.0750 0x1390  TrkWks - ok
00:00:18.0812 0x1390  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:00:18.0859 0x1390  TrustedInstaller - ok
00:00:18.0890 0x1390  [ 6C5139E4283249518F7743D7043775B3, 58684E8C90EBAC65459A97C905CDCFE3A915CFF7E8E96071DE1AC3489F85E67F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
00:00:18.0906 0x1390  tssecsrv - ok
00:00:18.0937 0x1390  [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
00:00:18.0968 0x1390  TsUsbFlt - ok
00:00:18.0984 0x1390  [ 7E6E0797EB91F1D63641058416044313, 3A681A337DFCE9108B73CC4707462114E8D534C52BF8C8E226C0B31326FF24D5 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
00:00:18.0984 0x1390  TsUsbGD - ok
00:00:19.0031 0x1390  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
00:00:19.0062 0x1390  tunnel - ok
00:00:19.0093 0x1390  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
00:00:19.0109 0x1390  uagp35 - ok
00:00:19.0124 0x1390  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
00:00:19.0171 0x1390  udfs - ok
00:00:19.0202 0x1390  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
00:00:19.0218 0x1390  UI0Detect - ok
00:00:19.0265 0x1390  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
00:00:19.0280 0x1390  uliagpkx - ok
00:00:19.0296 0x1390  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
00:00:19.0311 0x1390  umbus - ok
00:00:19.0327 0x1390  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
00:00:19.0343 0x1390  UmPass - ok
00:00:19.0374 0x1390  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
00:00:19.0405 0x1390  UmRdpService - ok
00:00:19.0467 0x1390  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
00:00:19.0499 0x1390  upnphost - ok
00:00:19.0545 0x1390  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
00:00:19.0592 0x1390  usbccgp - ok
00:00:19.0655 0x1390  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
00:00:19.0686 0x1390  usbcir - ok
00:00:19.0701 0x1390  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
00:00:19.0733 0x1390  usbehci - ok
00:00:19.0748 0x1390  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
00:00:19.0764 0x1390  usbhub - ok
00:00:19.0779 0x1390  [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
00:00:19.0795 0x1390  usbohci - ok
00:00:19.0811 0x1390  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
00:00:19.0842 0x1390  usbprint - ok
00:00:19.0857 0x1390  [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:00:19.0889 0x1390  USBSTOR - ok
00:00:19.0904 0x1390  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
00:00:19.0935 0x1390  usbuhci - ok
00:00:19.0967 0x1390  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
00:00:19.0998 0x1390  usbvideo - ok
00:00:20.0029 0x1390  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
00:00:20.0045 0x1390  UxSms - ok
00:00:20.0060 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc        C:\Windows\system32\lsass.exe
00:00:20.0076 0x1390  VaultSvc - ok
00:00:20.0107 0x1390  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
00:00:20.0123 0x1390  vdrvroot - ok
00:00:20.0154 0x1390  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
00:00:20.0216 0x1390  vds - ok
00:00:20.0232 0x1390  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
00:00:20.0263 0x1390  vga - ok
00:00:20.0279 0x1390  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
00:00:20.0310 0x1390  VgaSave - ok
00:00:20.0325 0x1390  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
00:00:20.0341 0x1390  vhdmp - ok
00:00:20.0372 0x1390  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
00:00:20.0388 0x1390  viaagp - ok
00:00:20.0403 0x1390  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
00:00:20.0419 0x1390  ViaC7 - ok
00:00:20.0450 0x1390  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
00:00:20.0466 0x1390  viaide - ok
00:00:20.0481 0x1390  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
00:00:20.0497 0x1390  vmbus - ok
00:00:20.0528 0x1390  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
00:00:20.0544 0x1390  VMBusHID - ok
00:00:20.0575 0x1390  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
00:00:20.0622 0x1390  volmgr - ok
00:00:20.0637 0x1390  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
00:00:20.0653 0x1390  volmgrx - ok
00:00:20.0684 0x1390  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
00:00:20.0715 0x1390  volsnap - ok
00:00:20.0747 0x1390  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
00:00:20.0762 0x1390  vsmraid - ok
00:00:20.0809 0x1390  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
00:00:20.0871 0x1390  VSS - ok
00:00:20.0903 0x1390  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
00:00:20.0918 0x1390  vwifibus - ok
00:00:20.0949 0x1390  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
00:00:20.0965 0x1390  vwififlt - ok
00:00:20.0981 0x1390  [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
00:00:20.0996 0x1390  vwifimp - ok
00:00:21.0027 0x1390  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
00:00:21.0074 0x1390  W32Time - ok
00:00:21.0105 0x1390  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
00:00:21.0121 0x1390  WacomPen - ok
00:00:21.0137 0x1390  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
00:00:21.0168 0x1390  WANARP - ok
00:00:21.0183 0x1390  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
00:00:21.0199 0x1390  Wanarpv6 - ok
00:00:21.0293 0x1390  [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
00:00:21.0355 0x1390  WatAdminSvc - ok
00:00:21.0402 0x1390  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
00:00:21.0464 0x1390  wbengine - ok
00:00:21.0495 0x1390  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
00:00:21.0527 0x1390  WbioSrvc - ok
00:00:21.0542 0x1390  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
00:00:21.0573 0x1390  wcncsvc - ok
00:00:21.0589 0x1390  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:00:21.0620 0x1390  WcsPlugInService - ok
00:00:21.0667 0x1390  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
00:00:21.0698 0x1390  Wd - ok
00:00:21.0745 0x1390  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
00:00:21.0792 0x1390  Wdf01000 - ok
00:00:21.0823 0x1390  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
00:00:21.0917 0x1390  WdiServiceHost - ok
00:00:21.0917 0x1390  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
00:00:21.0948 0x1390  WdiSystemHost - ok
00:00:21.0963 0x1390  [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient       C:\Windows\System32\webclnt.dll
00:00:21.0995 0x1390  WebClient - ok
00:00:21.0995 0x1390  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
00:00:22.0026 0x1390  Wecsvc - ok
00:00:22.0041 0x1390  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
00:00:22.0073 0x1390  wercplsupport - ok
00:00:22.0088 0x1390  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
00:00:22.0119 0x1390  WerSvc - ok
00:00:22.0151 0x1390  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
00:00:22.0197 0x1390  WfpLwf - ok
00:00:22.0213 0x1390  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
00:00:22.0229 0x1390  WIMMount - ok
00:00:22.0291 0x1390  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
00:00:22.0338 0x1390  WinDefend - ok
00:00:22.0338 0x1390  WinHttpAutoProxySvc - ok
00:00:22.0385 0x1390  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
00:00:22.0463 0x1390  Winmgmt - ok
00:00:22.0509 0x1390  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
00:00:22.0572 0x1390  WinRM - ok
00:00:22.0665 0x1390  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
00:00:22.0697 0x1390  Wlansvc - ok
00:00:22.0728 0x1390  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
00:00:22.0743 0x1390  WmiAcpi - ok
00:00:22.0775 0x1390  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
00:00:22.0806 0x1390  wmiApSrv - ok
00:00:22.0931 0x1390  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
00:00:22.0962 0x1390  WMPNetworkSvc - ok
00:00:22.0977 0x1390  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
00:00:23.0009 0x1390  WPCSvc - ok
00:00:23.0009 0x1390  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
00:00:23.0040 0x1390  WPDBusEnum - ok
00:00:23.0071 0x1390  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
00:00:23.0087 0x1390  ws2ifsl - ok
00:00:23.0102 0x1390  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
00:00:23.0133 0x1390  wscsvc - ok
00:00:23.0133 0x1390  WSearch - ok
00:00:23.0227 0x1390  [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv        C:\Windows\system32\wuaueng.dll
00:00:23.0289 0x1390  wuauserv - ok
00:00:23.0321 0x1390  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
00:00:23.0352 0x1390  WudfPf - ok
00:00:23.0383 0x1390  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
00:00:23.0414 0x1390  WUDFRd - ok
00:00:23.0430 0x1390  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
00:00:23.0445 0x1390  wudfsvc - ok
00:00:23.0477 0x1390  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
00:00:23.0508 0x1390  WwanSvc - ok
00:00:23.0539 0x1390  ================ Scan global ===============================
00:00:23.0555 0x1390  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
00:00:23.0601 0x1390  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
00:00:23.0664 0x1390  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
00:00:23.0695 0x1390  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
00:00:23.0742 0x1390  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
00:00:23.0757 0x1390  [ Global ] - ok
00:00:23.0757 0x1390  ================ Scan MBR ==================================
00:00:23.0757 0x1390  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:00:24.0397 0x1390  \Device\Harddisk0\DR0 - ok
00:00:24.0413 0x1390  ================ Scan VBR ==================================
00:00:24.0413 0x1390  [ B8A4133A4935A370DDDEA2D3260CF298 ] \Device\Harddisk0\DR0\Partition1
00:00:24.0413 0x1390  \Device\Harddisk0\DR0\Partition1 - ok
00:00:24.0428 0x1390  [ FC6144CBA17D50DC4659F1F04CF4E0D1 ] \Device\Harddisk0\DR0\Partition2
00:00:24.0428 0x1390  \Device\Harddisk0\DR0\Partition2 - ok
00:00:24.0459 0x1390  [ EBF4015C0FBA65ADC4A2CCB7010EBA8E ] \Device\Harddisk0\DR0\Partition3
00:00:24.0459 0x1390  \Device\Harddisk0\DR0\Partition3 - ok
00:00:24.0459 0x1390  ================ Scan active images ========================
00:00:24.0459 0x1390  [ B7EFEF22FF426EC4158A177CB3B558D3, 87D8F07E23B928B9D71B13B0F43A6235BAFC48879CFCF5920889849D09FFCD6C ] C:\Windows\System32\drivers\crashdmp.sys
00:00:24.0459 0x1390  C:\Windows\System32\drivers\crashdmp.sys - ok
00:00:24.0475 0x1390  [ 5428227D4730EBDFC842E9FB593F8C8A, C62A122FC8A04B63A94F337699A70901ED04B0F20AEC9538EC6E83ED2D18F1E3 ] C:\Windows\System32\drivers\Dumpata.sys
00:00:24.0475 0x1390  C:\Windows\System32\drivers\Dumpata.sys - ok
00:00:24.0491 0x1390  [ 62A63EF2F3053B461CB327E4D69AAA74, 26CC8BBC9BB6C53B46C837FA75C5449508989C26949BD19EB8E03E37F7928456 ] C:\Windows\System32\drivers\dumpfve.sys
00:00:24.0491 0x1390  C:\Windows\System32\drivers\dumpfve.sys - ok
00:00:24.0491 0x1390  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] C:\Windows\System32\drivers\msahci.sys
00:00:24.0491 0x1390  C:\Windows\System32\drivers\msahci.sys - ok
00:00:24.0506 0x1390  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] C:\Windows\System32\drivers\cdrom.sys
00:00:24.0506 0x1390  C:\Windows\System32\drivers\cdrom.sys - ok
00:00:24.0522 0x1390  [ 8912A7EACC9D1A7FA649A8EDF2774A85, 4CD1E7980533FF3B713F2DDAD868E0C6A74B588CD8C7ED7D40B865EE7CECCF57 ] C:\Windows\System32\drivers\klflt.sys
00:00:24.0522 0x1390  C:\Windows\System32\drivers\klflt.sys - ok
00:00:24.0522 0x1390  [ 3D4FC0A34DFDDB931D65001839D73A5F, D2213EF050A0DF6236228E84A2D2AEAD81B1A7B630DC18447D4F934F68CA80C7 ] C:\Windows\System32\drivers\klif.sys
00:00:24.0522 0x1390  C:\Windows\System32\drivers\klif.sys - ok
00:00:24.0522 0x1390  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] C:\Windows\System32\drivers\null.sys
00:00:24.0522 0x1390  C:\Windows\System32\drivers\null.sys - ok
00:00:24.0537 0x1390  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] C:\Windows\System32\drivers\beep.sys
00:00:24.0537 0x1390  C:\Windows\System32\drivers\beep.sys - ok
00:00:24.0537 0x1390  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] C:\Windows\System32\drivers\RDPCDD.sys
00:00:24.0537 0x1390  C:\Windows\System32\drivers\RDPCDD.sys - ok
00:00:24.0537 0x1390  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] C:\Windows\System32\drivers\RDPENCDD.sys
00:00:24.0537 0x1390  C:\Windows\System32\drivers\RDPENCDD.sys - ok
00:00:24.0553 0x1390  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] C:\Windows\System32\drivers\vga.sys
00:00:24.0553 0x1390  C:\Windows\System32\drivers\vga.sys - ok
00:00:24.0553 0x1390  [ 15C126D1B55814B9E5CAB10A9C1F4C67, CD118B6508355037294AE940E039C095BA9E4A96AA129D38DB0AEC0C393D0F00 ] C:\Windows\System32\drivers\videoprt.sys
00:00:24.0553 0x1390  C:\Windows\System32\drivers\videoprt.sys - ok
00:00:24.0553 0x1390  [ CB45A417C8EF7BA6BAC67EDCDDED8700, 0D9AD2498A7D3B7C3E485A5803D2BDF781B38E07E3C2B5980859073EF6FD9B8A ] C:\Windows\System32\drivers\watchdog.sys
00:00:24.0553 0x1390  C:\Windows\System32\drivers\watchdog.sys - ok
00:00:24.0553 0x1390  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] C:\Windows\System32\drivers\msfs.sys
00:00:24.0553 0x1390  C:\Windows\System32\drivers\msfs.sys - ok
00:00:24.0569 0x1390  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] C:\Windows\System32\drivers\npfs.sys
00:00:24.0569 0x1390  C:\Windows\System32\drivers\npfs.sys - ok
00:00:24.0569 0x1390  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] C:\Windows\System32\drivers\RDPREFMP.sys
00:00:24.0569 0x1390  C:\Windows\System32\drivers\RDPREFMP.sys - ok
00:00:24.0569 0x1390  [ 2F885864D5BC8A16C86BEE595969A48A, 279E176CDEF9148A4A07F7D37172A2C2BDC89E47021EEB76F1BCDF789B76D95A ] C:\Windows\System32\drivers\tdi.sys
00:00:24.0569 0x1390  C:\Windows\System32\drivers\tdi.sys - ok
00:00:24.0569 0x1390  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] C:\Windows\System32\drivers\tdx.sys
00:00:24.0569 0x1390  C:\Windows\System32\drivers\tdx.sys - ok
00:00:24.0584 0x1390  [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] C:\Windows\System32\drivers\afd.sys
00:00:24.0584 0x1390  C:\Windows\System32\drivers\afd.sys - ok
00:00:24.0584 0x1390  [ 8FD802F86D4AB3FB329B8E51517BFF2A, 321750DC0C664FE5580C855D7B70AC74753DDD881F0C4482A2B4505BB2D88345 ] C:\Windows\System32\drivers\kltdi.sys
00:00:24.0584 0x1390  C:\Windows\System32\drivers\kltdi.sys - ok
00:00:24.0584 0x1390  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] C:\Windows\System32\drivers\netbt.sys
00:00:24.0584 0x1390  C:\Windows\System32\drivers\netbt.sys - ok
00:00:24.0584 0x1390  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] C:\Windows\System32\drivers\pacer.sys
00:00:24.0584 0x1390  C:\Windows\System32\drivers\pacer.sys - ok
00:00:24.0600 0x1390  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] C:\Windows\System32\drivers\vwififlt.sys
00:00:24.0600 0x1390  C:\Windows\System32\drivers\vwififlt.sys - ok
00:00:24.0600 0x1390  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] C:\Windows\System32\drivers\wfplwf.sys
00:00:24.0600 0x1390  C:\Windows\System32\drivers\wfplwf.sys - ok
00:00:24.0600 0x1390  [ 039FB019C92A16A54FE527D93B0CFB96, 080897B377511FD2439EB651086390CD72B822E8222C79AB0569FAFAA14BA0AE ] C:\Windows\System32\drivers\klim6.sys
00:00:24.0600 0x1390  C:\Windows\System32\drivers\klim6.sys - ok
00:00:24.0600 0x1390  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] C:\Windows\System32\drivers\netbios.sys
00:00:24.0600 0x1390  C:\Windows\System32\drivers\netbios.sys - ok
00:00:24.0615 0x1390  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] C:\Windows\System32\drivers\rdbss.sys
00:00:24.0615 0x1390  C:\Windows\System32\drivers\rdbss.sys - ok
00:00:24.0615 0x1390  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] C:\Windows\System32\drivers\termdd.sys
00:00:24.0615 0x1390  C:\Windows\System32\drivers\termdd.sys - ok
00:00:24.0615 0x1390  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] C:\Windows\System32\drivers\wanarp.sys
00:00:24.0615 0x1390  C:\Windows\System32\drivers\wanarp.sys - ok
00:00:24.0615 0x1390  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] C:\Windows\System32\drivers\discache.sys
00:00:24.0615 0x1390  C:\Windows\System32\drivers\discache.sys - ok
00:00:24.0615 0x1390  [ 8F932DF10408BCABA2FCF6163C843F8E, 26BB4E2A2562CF6C687EC9F61C7B3C80992C1D57C47BBAEA8ED2AB6643A91C0E ] C:\Windows\System32\drivers\kneps.sys
00:00:24.0615 0x1390  C:\Windows\System32\drivers\kneps.sys - ok
00:00:24.0631 0x1390  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] C:\Windows\System32\drivers\mssmbios.sys
00:00:24.0631 0x1390  C:\Windows\System32\drivers\mssmbios.sys - ok
00:00:24.0631 0x1390  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] C:\Windows\System32\drivers\nsiproxy.sys
00:00:24.0631 0x1390  C:\Windows\System32\drivers\nsiproxy.sys - ok
00:00:24.0631 0x1390  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] C:\Windows\System32\drivers\blbdrive.sys
00:00:24.0631 0x1390  C:\Windows\System32\drivers\blbdrive.sys - ok
00:00:24.0647 0x1390  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] C:\Windows\System32\drivers\csc.sys
00:00:24.0647 0x1390  C:\Windows\System32\drivers\csc.sys - ok
00:00:24.0647 0x1390  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] C:\Windows\System32\drivers\dfsc.sys
00:00:24.0647 0x1390  C:\Windows\System32\drivers\dfsc.sys - ok
00:00:24.0647 0x1390  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] C:\Windows\System32\drivers\CmBatt.sys
00:00:24.0647 0x1390  C:\Windows\System32\drivers\CmBatt.sys - ok
00:00:24.0647 0x1390  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] C:\Windows\System32\drivers\intelppm.sys
00:00:24.0647 0x1390  C:\Windows\System32\drivers\intelppm.sys - ok
00:00:24.0662 0x1390  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] C:\Windows\System32\drivers\tunnel.sys
00:00:24.0662 0x1390  C:\Windows\System32\drivers\tunnel.sys - ok
00:00:24.0662 0x1390  [ E0B8C6B1EA1EF94747E966E9093FB968, 364539AE2AD49870DAF2773B6BD6306764D936F5EE1C2929B2B5A47EEC3409A7 ] C:\Windows\System32\ntdll.dll
00:00:24.0662 0x1390  C:\Windows\System32\ntdll.dll - ok
00:00:24.0662 0x1390  [ DE91DCC7BC55E940979097E98F743205, 77CBB42FA1648CF03F21709738F7F91513385F82B544981741F7BD8D65FB7786 ] C:\Windows\System32\smss.exe
00:00:24.0662 0x1390  C:\Windows\System32\smss.exe - ok
00:00:24.0662 0x1390  [ F88A52EB62019D6A62FDD9E08034DBD8, 2E035366E9A1A26FB15F1E4857056E6AD7932BCE8CC68BB4B655609F424D2756 ] C:\Windows\System32\autochk.exe
00:00:24.0662 0x1390  C:\Windows\System32\autochk.exe - ok
00:00:24.0678 0x1390  [ 04F09923A393E4E0E8453A8F78361E73, B5C0B9D1195B87AF823887AD9355CD2B4C4F4DDF34103891EE48EA86F0F544E7 ] C:\Windows\System32\drivers\atikmdag.sys
00:00:24.0678 0x1390  C:\Windows\System32\drivers\atikmdag.sys - ok
00:00:24.0678 0x1390  [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] C:\Windows\System32\drivers\dxgkrnl.sys
00:00:24.0678 0x1390  C:\Windows\System32\drivers\dxgkrnl.sys - ok
00:00:24.0678 0x1390  [ 0EC652D17AB4607745FB4E6958E8FAB6, 4103548218674B39EE707D216F9EF6E224D9FA2E016A0262247C8FB1D4B588A5 ] C:\Windows\System32\drivers\dxgmms1.sys
00:00:24.0678 0x1390  C:\Windows\System32\drivers\dxgmms1.sys - ok
00:00:24.0678 0x1390  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] C:\Windows\System32\drivers\hdaudbus.sys
00:00:24.0678 0x1390  C:\Windows\System32\drivers\hdaudbus.sys - ok
00:00:24.0693 0x1390  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] C:\Windows\System32\drivers\usbehci.sys
00:00:24.0693 0x1390  C:\Windows\System32\drivers\usbehci.sys - ok
00:00:24.0693 0x1390  [ EC2C5AF37B76D7B58C642CB74423DB7A, BE1F6F2CE3B1539DAC23B73EA655B77E6E628E5E55BD16091E76934723BE77B1 ] C:\Windows\System32\drivers\usbport.sys
00:00:24.0693 0x1390  C:\Windows\System32\drivers\usbport.sys - ok
00:00:24.0693 0x1390  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] C:\Windows\System32\drivers\usbuhci.sys
00:00:24.0693 0x1390  C:\Windows\System32\drivers\usbuhci.sys - ok
00:00:24.0693 0x1390  [ 5B2DFA9C5C02DDF2A113CC0F551B59DF, C599955025A64A735AD8C7E24F52525CD7A82438A7214EB9103AAAD137EB9989 ] C:\Windows\System32\drivers\NETw5s32.sys
00:00:24.0693 0x1390  C:\Windows\System32\drivers\NETw5s32.sys - ok
00:00:24.0709 0x1390  [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] C:\Windows\System32\drivers\Rt86win7.sys
00:00:24.0709 0x1390  C:\Windows\System32\drivers\Rt86win7.sys - ok
00:00:24.0709 0x1390  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] C:\Windows\System32\drivers\vwifibus.sys
00:00:24.0709 0x1390  C:\Windows\System32\drivers\vwifibus.sys - ok
00:00:24.0709 0x1390  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] C:\Windows\System32\drivers\1394ohci.sys
00:00:24.0709 0x1390  C:\Windows\System32\drivers\1394ohci.sys - ok
00:00:24.0725 0x1390  [ 5C2F34F60AAEC9DB4DAA973915CBAEDC, 34B4E5A097477C0E2BE475980B4A516DCB5895040E7C2A827EC10AB2B5DEBC93 ] C:\Windows\System32\drivers\jmcr.sys
00:00:24.0725 0x1390  C:\Windows\System32\drivers\jmcr.sys - ok
00:00:24.0725 0x1390  [ 099972E1FAF4950D3994FBAB9DD21253, 254B560447F24237D3A2DE6BED57D5A1F09DADBD28A5BAB55EC9C48A18E38B2C ] C:\Windows\System32\drivers\scsiport.sys
00:00:24.0725 0x1390  C:\Windows\System32\drivers\scsiport.sys - ok
00:00:24.0725 0x1390  [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] C:\Windows\System32\drivers\sdbus.sys
00:00:24.0725 0x1390  C:\Windows\System32\drivers\sdbus.sys - ok
00:00:24.0725 0x1390  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] C:\Windows\System32\drivers\i8042prt.sys
00:00:24.0725 0x1390  C:\Windows\System32\drivers\i8042prt.sys - ok
00:00:24.0740 0x1390  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] C:\Windows\System32\drivers\kbdclass.sys
00:00:24.0740 0x1390  C:\Windows\System32\drivers\kbdclass.sys - ok
00:00:24.0740 0x1390  [ 249A266AF74ADE44AE8424E78D145E09, 2D83543DFD9E3C1060E231D776E1755E2041CFD0245139C2041D560956165C0E ] C:\Windows\System32\drivers\klkbdflt.sys
00:00:24.0740 0x1390  C:\Windows\System32\drivers\klkbdflt.sys - ok
00:00:24.0740 0x1390  [ 035724BA6D5676B76FD3AFB66AB4F1E3, 81B30112B96DD3E7250420EEFF2ACECD424A2BE155E83C44434321CEA7DBE117 ] C:\Windows\System32\drivers\klmouflt.sys
00:00:24.0740 0x1390  C:\Windows\System32\drivers\klmouflt.sys - ok
00:00:24.0740 0x1390  [ E1AF143203ABF52BA87BB122BB9A6EA3, 6B185CB63DE0D60ED325308F1DE2B204844BD1DB391AF53B5A0A743F72BF9E61 ] C:\Windows\System32\drivers\enecir.sys
00:00:24.0740 0x1390  C:\Windows\System32\drivers\enecir.sys - ok
00:00:24.0740 0x1390  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] C:\Windows\System32\drivers\mouclass.sys
00:00:24.0756 0x1390  C:\Windows\System32\drivers\mouclass.sys - ok
00:00:24.0756 0x1390  [ CC1F1D3D70DC13C2C281488D347D4415, 3AB1495F8982C727D02E9975E2E04203B918AFAA7B05B5E7FEB5142EB30D1998 ] C:\Windows\System32\drivers\Accelerometer.sys
00:00:24.0756 0x1390  C:\Windows\System32\drivers\Accelerometer.sys - ok
00:00:24.0756 0x1390  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] C:\Windows\System32\drivers\wmiacpi.sys
00:00:24.0756 0x1390  C:\Windows\System32\drivers\wmiacpi.sys - ok
00:00:24.0756 0x1390  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] C:\Windows\System32\drivers\CompositeBus.sys
00:00:24.0756 0x1390  C:\Windows\System32\drivers\CompositeBus.sys - ok
00:00:24.0771 0x1390  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] C:\Windows\System32\drivers\agilevpn.sys
00:00:24.0771 0x1390  C:\Windows\System32\drivers\agilevpn.sys - ok
00:00:24.0771 0x1390  [ 0187042EA17404BD54E903CB3A8B0C10, 8E62E5E282E7F4FB288D6D0787317FF15D08922596D0256F019462D52843EBE8 ] C:\Windows\System32\drivers\clwvd.sys
00:00:24.0771 0x1390  C:\Windows\System32\drivers\clwvd.sys - ok
00:00:24.0771 0x1390  [ 5DCEF0C32BE0F33277326586FA503689, B6AEB5DE8F2430D2032DAF5B58DBB4E192F6113DB5379F5AD8189A7AC2560EEA ] C:\Windows\System32\drivers\ks.sys
00:00:24.0771 0x1390  C:\Windows\System32\drivers\ks.sys - ok
00:00:24.0771 0x1390  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] C:\Windows\System32\drivers\ndistapi.sys
00:00:24.0771 0x1390  C:\Windows\System32\drivers\ndistapi.sys - ok
00:00:24.0787 0x1390  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] C:\Windows\System32\drivers\rasl2tp.sys
00:00:24.0787 0x1390  C:\Windows\System32\drivers\rasl2tp.sys - ok
00:00:24.0787 0x1390  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] C:\Windows\System32\drivers\ndiswan.sys
00:00:24.0787 0x1390  C:\Windows\System32\drivers\ndiswan.sys - ok
00:00:24.0787 0x1390  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] C:\Windows\System32\drivers\raspppoe.sys
00:00:24.0787 0x1390  C:\Windows\System32\drivers\raspppoe.sys - ok
00:00:24.0787 0x1390  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] C:\Windows\System32\drivers\raspptp.sys
00:00:24.0787 0x1390  C:\Windows\System32\drivers\raspptp.sys - ok
00:00:24.0803 0x1390  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] C:\Windows\System32\drivers\rassstp.sys
00:00:24.0803 0x1390  C:\Windows\System32\drivers\rassstp.sys - ok
00:00:24.0803 0x1390  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] C:\Windows\System32\drivers\rdpbus.sys
00:00:24.0803 0x1390  C:\Windows\System32\drivers\rdpbus.sys - ok
00:00:24.0803 0x1390  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] C:\Windows\System32\drivers\circlass.sys
00:00:24.0803 0x1390  C:\Windows\System32\drivers\circlass.sys - ok
00:00:24.0803 0x1390  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] C:\Windows\System32\drivers\swenum.sys
00:00:24.0803 0x1390  C:\Windows\System32\drivers\swenum.sys - ok
00:00:24.0818 0x1390  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] C:\Windows\System32\drivers\umbus.sys
00:00:24.0818 0x1390  C:\Windows\System32\drivers\umbus.sys - ok
00:00:24.0818 0x1390  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] C:\Windows\System32\drivers\usbhub.sys
00:00:24.0818 0x1390  C:\Windows\System32\drivers\usbhub.sys - ok
00:00:24.0818 0x1390  [ C9059EF0C94C55C0DA9CACEE160A5F66, FCF657B45370D82FEF099FE78DA329F90DC4CDC3BA3ABB902A514698CB822EE3 ] C:\Windows\System32\rpcrt4.dll
00:00:24.0818 0x1390  C:\Windows\System32\rpcrt4.dll - ok
00:00:24.0818 0x1390  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] C:\Windows\System32\drivers\ndproxy.sys
00:00:24.0818 0x1390  C:\Windows\System32\drivers\ndproxy.sys - ok
00:00:24.0818 0x1390  [ 9842041E2F5ACE1E2F5FB4EF02053DC8, 8260D3DDCC92987CA3A456ABD0982A7C81DBBEDB87DE781039F2E4BCCF27DB6D ] C:\Windows\System32\drivers\drmk.sys
00:00:24.0818 0x1390  C:\Windows\System32\drivers\drmk.sys - ok
00:00:24.0834 0x1390  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] C:\Windows\System32\drivers\HdAudio.sys
00:00:24.0834 0x1390  C:\Windows\System32\drivers\HdAudio.sys - ok
00:00:24.0834 0x1390  [ EB6137D696A9B4E9718AC6F8641CB4C9, 438B6177F8BF50E17226D9C4E5FAE42D82178CCDD79979C78B15261B459E153E ] C:\Windows\System32\drivers\portcls.sys
00:00:24.0834 0x1390  C:\Windows\System32\drivers\portcls.sys - ok
00:00:24.0834 0x1390  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\System32\normaliz.dll
00:00:24.0834 0x1390  C:\Windows\System32\normaliz.dll - ok
00:00:24.0834 0x1390  [ 3065FF6794A7FDC882F0DA8B6230AB6E, F93F8B3E1B7CCD51C202E7F9327D50EEAC1DF2C85F4AF0314D5165A7F3342182 ] C:\Windows\System32\urlmon.dll
00:00:24.0834 0x1390  C:\Windows\System32\urlmon.dll - ok
00:00:24.0849 0x1390  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\System32\oleaut32.dll
00:00:24.0849 0x1390  C:\Windows\System32\oleaut32.dll - ok
00:00:24.0849 0x1390  [ F1B27299F547D452EDAEF01FC187CB91, 574FC8ACB349244122E6D76333E2BB72680639EEF61C0B679F8485023B619263 ] C:\Windows\System32\drivers\hidparse.sys
00:00:24.0849 0x1390  C:\Windows\System32\drivers\hidparse.sys - ok
00:00:24.0849 0x1390  [ 50ABE682EBE752EAF62B18790D6D491C, E01499C4F81CC49A89590A07CB814D21126CE52DCD3FACADB6D1E243940C69FA ] C:\Windows\System32\drivers\hidclass.sys
00:00:24.0849 0x1390  C:\Windows\System32\drivers\hidclass.sys - ok
00:00:24.0849 0x1390  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] C:\Windows\System32\drivers\hidir.sys
00:00:24.0849 0x1390  C:\Windows\System32\drivers\hidir.sys - ok
00:00:24.0865 0x1390  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] C:\Windows\System32\drivers\kbdhid.sys
00:00:24.0865 0x1390  C:\Windows\System32\drivers\kbdhid.sys - ok
00:00:24.0865 0x1390  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] C:\Windows\System32\drivers\mouhid.sys
00:00:24.0865 0x1390  C:\Windows\System32\drivers\mouhid.sys - ok
00:00:24.0865 0x1390  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] C:\Windows\System32\drivers\usbccgp.sys
00:00:24.0865 0x1390  C:\Windows\System32\drivers\usbccgp.sys - ok
00:00:24.0865 0x1390  [ 74F805AB12EB0E3E49E469F19FF02640, 23A845F9162ECE37B6CF5B2537562C69705A4192D19438109B5212E111A49004 ] C:\Windows\System32\drivers\usbd.sys
00:00:24.0865 0x1390  C:\Windows\System32\drivers\usbd.sys - ok
00:00:24.0881 0x1390  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] C:\Windows\System32\drivers\usbvideo.sys
00:00:24.0881 0x1390  C:\Windows\System32\drivers\usbvideo.sys - ok
00:00:24.0881 0x1390  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\System32\clbcatq.dll
00:00:24.0881 0x1390  C:\Windows\System32\clbcatq.dll - ok
00:00:24.0881 0x1390  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\System32\msvcrt.dll
00:00:24.0881 0x1390  C:\Windows\System32\msvcrt.dll - ok
00:00:24.0881 0x1390  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] C:\Windows\System32\drivers\hidusb.sys
00:00:24.0881 0x1390  C:\Windows\System32\drivers\hidusb.sys - ok
00:00:24.0896 0x1390  [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] C:\Windows\System32\drivers\bthport.sys
00:00:24.0896 0x1390  C:\Windows\System32\drivers\bthport.sys - ok
00:00:24.0896 0x1390  [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] C:\Windows\System32\drivers\BTHUSB.SYS
00:00:24.0896 0x1390  C:\Windows\System32\drivers\BTHUSB.SYS - ok
00:00:24.0896 0x1390  [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] C:\Windows\System32\drivers\bthenum.sys
00:00:24.0896 0x1390  C:\Windows\System32\drivers\bthenum.sys - ok
00:00:24.0896 0x1390  [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] C:\Windows\System32\drivers\rfcomm.sys
00:00:24.0896 0x1390  C:\Windows\System32\drivers\rfcomm.sys - ok
00:00:24.0912 0x1390  [ 7AE80F921027CF88CB9D0433088A3E55, 7B495ADBA2DCBD873C918F5F6FF588BAFAB5AF29BE4E8BEF12A520947457B738 ] C:\Windows\System32\wininet.dll
00:00:24.0912 0x1390  C:\Windows\System32\wininet.dll - ok
00:00:24.0912 0x1390  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\System32\usp10.dll
00:00:24.0912 0x1390  C:\Windows\System32\usp10.dll - ok
00:00:24.0912 0x1390  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\System32\shlwapi.dll
00:00:24.0912 0x1390  C:\Windows\System32\shlwapi.dll - ok
00:00:24.0912 0x1390  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\System32\sechost.dll
00:00:24.0912 0x1390  C:\Windows\System32\sechost.dll - ok
00:00:24.0927 0x1390  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\System32\ws2_32.dll
00:00:24.0927 0x1390  C:\Windows\System32\ws2_32.dll - ok
00:00:24.0927 0x1390  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\System32\setupapi.dll
00:00:24.0927 0x1390  C:\Windows\System32\setupapi.dll - ok
00:00:24.0927 0x1390  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\System32\ole32.dll
00:00:24.0927 0x1390  C:\Windows\System32\ole32.dll - ok
00:00:24.0927 0x1390  [ AD1872E5829E8A2C3B5B4B641C3EAB0E, 8C2DBCAC08DDB41E2B44E257C55FA2D0272959B308EFF9EAF5FF9AE1E4A0AA39 ] C:\Windows\System32\drivers\bthpan.sys
00:00:24.0927 0x1390  C:\Windows\System32\drivers\bthpan.sys - ok
00:00:24.0943 0x1390  [ 070C5B9D3006602A07757179D9B56F5D, 7B24E38ADDEEDD9168D0C87275AC0936D0A4F1195810F9736118076589BC18BA ] C:\Windows\System32\difxapi.dll
00:00:24.0943 0x1390  C:\Windows\System32\difxapi.dll - ok
00:00:24.0943 0x1390  [ DBF9369D554A229DB0D554BB95A4B0AA, A03F11C511B63E13BB1CB28C6CC3E4FB5FFDB50684B5307F63E2D942DF36C6DB ] C:\Windows\System32\gdi32.dll
00:00:24.0943 0x1390  C:\Windows\System32\gdi32.dll - ok
00:00:24.0943 0x1390  [ 4A8E2F20809CC161107FAA94F6CF2685, 561DCE9E49696288A9EE802C0BEF424EB34A1C29B6D8931CCD5C7E26CB4F88EA ] C:\Windows\System32\imm32.dll
00:00:24.0943 0x1390  C:\Windows\System32\imm32.dll - ok
00:00:24.0943 0x1390  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\System32\nsi.dll
00:00:24.0943 0x1390  C:\Windows\System32\nsi.dll - ok
00:00:24.0959 0x1390  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\System32\Wldap32.dll
00:00:24.0959 0x1390  C:\Windows\System32\Wldap32.dll - ok
00:00:24.0959 0x1390  [ 386BF6FD9FC562B1A5558C49E1C3A6FB, 6ED5A61C911845027D0A67B2473603D87E79DB88F0C0C699CBB2D1639C1DFDA5 ] C:\Windows\System32\shell32.dll
00:00:24.0959 0x1390  C:\Windows\System32\shell32.dll - ok
00:00:24.0959 0x1390  [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66, 6CCAD926934EACBE92FDFA1AE46DA6101D78A0B44AE38594E3A88FEBB35D230F ] C:\Windows\System32\user32.dll
00:00:24.0959 0x1390  C:\Windows\System32\user32.dll - ok
00:00:24.0959 0x1390  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\System32\imagehlp.dll
00:00:24.0959 0x1390  C:\Windows\System32\imagehlp.dll - ok
00:00:24.0974 0x1390  [ F74FFA7654702F81884BDB41EB80DAC2, 96901AA7A9E38C537BEBBF3459EB129A654709CE21A143A080D50B021FEA8626 ] C:\Windows\System32\kernel32.dll
00:00:24.0974 0x1390  C:\Windows\System32\kernel32.dll - ok
00:00:24.0974 0x1390  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\System32\comdlg32.dll
00:00:24.0974 0x1390  C:\Windows\System32\comdlg32.dll - ok
00:00:24.0974 0x1390  [ F632602316001D517F4EF3B53B9A6C33, 1492B82B12AA8B69C5111D5E61997D41AEC9E454BE76E8024B18E28B145E9FFD ] C:\Windows\System32\lpk.dll
00:00:24.0974 0x1390  C:\Windows\System32\lpk.dll - ok
00:00:24.0974 0x1390  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\System32\psapi.dll
00:00:24.0974 0x1390  C:\Windows\System32\psapi.dll - ok
00:00:24.0990 0x1390  [ 55A400FDB21D157E947A0EE65AEDB1B3, 8790D3A676007F086F6298C5BA65F8FE85FD150248FC9DCAF48BCCEAD1B31764 ] C:\Windows\System32\iertutil.dll
00:00:24.0990 0x1390  C:\Windows\System32\iertutil.dll - ok
00:00:24.0990 0x1390  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\System32\advapi32.dll
00:00:24.0990 0x1390  C:\Windows\System32\advapi32.dll - ok
00:00:24.0990 0x1390  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\System32\msctf.dll
00:00:24.0990 0x1390  C:\Windows\System32\msctf.dll - ok
00:00:24.0990 0x1390  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\System32\userenv.dll
00:00:24.0990 0x1390  C:\Windows\System32\userenv.dll - ok
00:00:25.0005 0x1390  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
00:00:25.0005 0x1390  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
00:00:25.0005 0x1390  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
00:00:25.0005 0x1390  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
00:00:25.0005 0x1390  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
00:00:25.0005 0x1390  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
00:00:25.0005 0x1390  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\System32\comctl32.dll
00:00:25.0005 0x1390  C:\Windows\System32\comctl32.dll - ok
00:00:25.0021 0x1390  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
00:00:25.0021 0x1390  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
00:00:25.0021 0x1390  [ 454BF1E3B844306E764ADC0EA7B6E64C, 5E46DEBF75EEEF03410CA8B9C52E2577A19313104EBB7A7DE8656519285C2C36 ] C:\Windows\System32\crypt32.dll
00:00:25.0021 0x1390  C:\Windows\System32\crypt32.dll - ok
00:00:25.0021 0x1390  [ E365C7B3EBB96451D3C9DF6B6B6900C2, 8A3C9B274969EC65BA9B968AA6910216464320A5D0D3A7E4E24B43A746D4728A ] C:\Windows\System32\wintrust.dll
00:00:25.0021 0x1390  C:\Windows\System32\wintrust.dll - ok
00:00:25.0021 0x1390  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
00:00:25.0021 0x1390  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
00:00:25.0037 0x1390  [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\System32\cfgmgr32.dll
00:00:25.0037 0x1390  C:\Windows\System32\cfgmgr32.dll - ok
00:00:25.0037 0x1390  [ FD25B74DC1A18C56BF1A879BF086555A, 9901F06872EAEB1412E2A4915EFA29E955312F1043004E2A60DFDD938F5F3776 ] C:\Windows\System32\KernelBase.dll
00:00:25.0037 0x1390  C:\Windows\System32\KernelBase.dll - ok
00:00:25.0037 0x1390  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
00:00:25.0037 0x1390  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
00:00:25.0037 0x1390  [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\System32\devobj.dll
00:00:25.0037 0x1390  C:\Windows\System32\devobj.dll - ok
00:00:25.0052 0x1390  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\System32\msasn1.dll
00:00:25.0052 0x1390  C:\Windows\System32\msasn1.dll - ok
00:00:25.0052 0x1390  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\System32\profapi.dll
00:00:25.0052 0x1390  C:\Windows\System32\profapi.dll - ok
00:00:25.0052 0x1390  [ 5FCD3320AAE71506B43F9E12E4E72172, 067531833F90241A181EF082D85CFF74336D68DAB0AADE4393C1F35CD662DAAE ] C:\Windows\System32\drivers\dxapi.sys
00:00:25.0052 0x1390  C:\Windows\System32\drivers\dxapi.sys - ok
00:00:25.0052 0x1390  [ 348289FDF17FB4A1F23091F9463642D6, 0ECA37400F2186F0253DE206B392047C0394B539468BF5CEB5D035E0D5BBB639 ] C:\Windows\System32\win32k.sys
00:00:25.0052 0x1390  C:\Windows\System32\win32k.sys - ok
00:00:25.0068 0x1390  [ 23AB7E36551C6BA5370EF7F05142F0EB, F190F2DCB416D109DFCA167628824CE053774FB708AA494450AD6313EF6BE654 ] C:\Windows\System32\csrsrv.dll
00:00:25.0068 0x1390  C:\Windows\System32\csrsrv.dll - ok
00:00:25.0068 0x1390  [ 342271F6142E7C70805B8A81E1BA5F5C, F9112B88FEC5EF10A7AEDF88DCEE61956D1FCDE7CB42197216E8265578713786 ] C:\Windows\System32\csrss.exe
00:00:25.0068 0x1390  C:\Windows\System32\csrss.exe - ok
00:00:25.0068 0x1390  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\System32\basesrv.dll
00:00:25.0068 0x1390  C:\Windows\System32\basesrv.dll - ok
00:00:25.0068 0x1390  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\System32\winsrv.dll
00:00:25.0068 0x1390  C:\Windows\System32\winsrv.dll - ok
00:00:25.0083 0x1390  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] C:\Windows\System32\drivers\monitor.sys
00:00:25.0083 0x1390  C:\Windows\System32\drivers\monitor.sys - ok
00:00:25.0083 0x1390  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\System32\sxssrv.dll
00:00:25.0083 0x1390  C:\Windows\System32\sxssrv.dll - ok
00:00:25.0083 0x1390  [ 7C76B61A5E1EF5D1FA554CF134100F18, 2B07C27A2C9A5D939CE9255C67E87B4EF8BFD3B011A592CC0E6994E660483648 ] C:\Windows\System32\tsddd.dll
00:00:25.0083 0x1390  C:\Windows\System32\tsddd.dll - ok
00:00:25.0083 0x1390  [ B5C5DCAD3899512020D135600129D665, F6B4D18FA0D3C4958711AC0D476C21A6FDF2897F989A0AD290B43F463DD8B5B0 ] C:\Windows\System32\wininit.exe
00:00:25.0083 0x1390  C:\Windows\System32\wininit.exe - ok
00:00:25.0099 0x1390  [ F961BF9DCFC714D70F7400A90F3523CD, 33A0833900FA7896F1DDD727F8F2B33995B69C0D8A8CA96C73CFAFD0EF678323 ] C:\Windows\System32\KBDIT.DLL
00:00:25.0099 0x1390  C:\Windows\System32\KBDIT.DLL - ok
00:00:25.0099 0x1390  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\System32\RpcRtRemote.dll
00:00:25.0099 0x1390  C:\Windows\System32\RpcRtRemote.dll - ok
00:00:25.0099 0x1390  [ 357B990A4249D7F7485B230C0CC8825A, FE15918D883B0861D6BBA0E6AC77ABD8FE42C8F76869768BE4FD1F2A5027BD7A ] C:\Windows\System32\KBDUS.DLL
00:00:25.0099 0x1390  C:\Windows\System32\KBDUS.DLL - ok
00:00:25.0099 0x1390  [ 5860EE5C807CB3866551B845123493C6, E8EBD2A2AF76ABD8091A21CDF2650EB9239E1B41E73F656C8C13E5B2CF3CABE5 ] C:\Windows\System32\cdd.dll
00:00:25.0099 0x1390  C:\Windows\System32\cdd.dll - ok
00:00:25.0115 0x1390  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\System32\sxs.dll
00:00:25.0115 0x1390  C:\Windows\System32\sxs.dll - ok
00:00:25.0115 0x1390  [ 633C2C060CF857099F6C4F8D75C952B1, 95E14B5212301900BC9DDB6B42735B114D364188E9B312C786511258106398C8 ] C:\Windows\System32\WlS0WndH.dll
00:00:25.0115 0x1390  C:\Windows\System32\WlS0WndH.dll - ok
00:00:25.0115 0x1390  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\System32\cryptbase.dll
00:00:25.0115 0x1390  C:\Windows\System32\cryptbase.dll - ok
00:00:25.0115 0x1390  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\System32\apphelp.dll
00:00:25.0115 0x1390  C:\Windows\System32\apphelp.dll - ok
00:00:25.0130 0x1390  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] C:\Windows\System32\lsass.exe
00:00:25.0130 0x1390  C:\Windows\System32\lsass.exe - ok
00:00:25.0130 0x1390  [ 8AEA9A37C1A3565A204D37C5E72AB791, 939903F93FF37525A6C4B5CBA29CDEEE6D6055C42D605E80AE787F2A76F9870E ] C:\Windows\System32\lsm.exe
00:00:25.0130 0x1390  C:\Windows\System32\lsm.exe - ok
00:00:25.0130 0x1390  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\System32\services.exe
00:00:25.0130 0x1390  C:\Windows\System32\services.exe - ok
00:00:25.0130 0x1390  [ 3369D021265E369D57317D61FA86DD79, 25A3BE3619324578C5B7CCB4585D89131DC60A969D35F9573FF20CCD67809BA3 ] C:\Windows\System32\scext.dll
00:00:25.0130 0x1390  C:\Windows\System32\scext.dll - ok
00:00:25.0146 0x1390  [ CAA3039FFA0CDF8C2A9845C1609CDE00, 2B3C1A7539832A47E03E68459A04985A8DCCF7C5A7544FBAEC570796DC634385 ] C:\Windows\System32\sspicli.dll
00:00:25.0146 0x1390  C:\Windows\System32\sspicli.dll - ok
00:00:25.0146 0x1390  [ DCA0AC63EF309E17BEEDE8D90622285F, F3F002CF2B9E91E721D9D8D308E5A6472E21A94332E34C1E5F3839B4D086DC3F ] C:\Windows\System32\lsasrv.dll
00:00:25.0146 0x1390  C:\Windows\System32\lsasrv.dll - ok
00:00:25.0146 0x1390  [ 250AA41DE690561AF1282D598914564C, 0F16F50EC74CAC8879F8D88AF4FB656E06D19819E96BC3D71BCDDBF400C78F60 ] C:\Windows\System32\scesrv.dll
00:00:25.0146 0x1390  C:\Windows\System32\scesrv.dll - ok
00:00:25.0146 0x1390  [ C94CE65AE7701E9FDBA889045543E27C, E6D75322BE3076EB3AB4622C29A0765C05465BE355C9AA3A9DE7431F020BC176 ] C:\Windows\System32\secur32.dll
00:00:25.0146 0x1390  C:\Windows\System32\secur32.dll - ok
00:00:25.0146 0x1390  [ 61BC8ACDEC57469B22EC519B22FB3642, 430B68839EE239BCCA26A1488A82C381CCCBDE175E46E0FCAF3FEA069F4370D8 ] C:\Windows\System32\sspisrv.dll
00:00:25.0146 0x1390  C:\Windows\System32\sspisrv.dll - ok
00:00:25.0161 0x1390  [ BA51FFE170C5B3AE8EC4F5BD2581A29E, CF734875C91B6C547A5F0BA68FB10ECDFD5FF24166A0D69309C27DC712C22F4B ] C:\Windows\System32\sysntfy.dll
00:00:25.0161 0x1390  C:\Windows\System32\sysntfy.dll - ok
00:00:25.0161 0x1390  [ D412B1B72C5AB020218E9A047D90CA05, A9CF8134DB968D259DF4DCC736159841BCB8DF309BEED4FB44F99033B8D31B39 ] C:\Windows\System32\wmsgapi.dll
00:00:25.0161 0x1390  C:\Windows\System32\wmsgapi.dll - ok
00:00:25.0161 0x1390  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\System32\srvcli.dll
00:00:25.0161 0x1390  C:\Windows\System32\srvcli.dll - ok
00:00:25.0161 0x1390  [ 245F4691314F42D4D1BC06442F0B2086, 281DD81E06547BEB0DDB1FBB68B149961F1DEE268C9E9648DE662900ECB40FE0 ] C:\Windows\System32\samsrv.dll
00:00:25.0161 0x1390  C:\Windows\System32\samsrv.dll - ok
00:00:25.0177 0x1390  [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\System32\cryptdll.dll
00:00:25.0177 0x1390  C:\Windows\System32\cryptdll.dll - ok
00:00:25.0177 0x1390  [ C6A5FBD4977305E1FA23E02C042DB463, A6EB5E4B8051A258D40A385609E930318EAA3494C8466F48542B806FE6A7C47A ] C:\Windows\System32\drivers\TsUsbFlt.sys
00:00:25.0177 0x1390  C:\Windows\System32\drivers\TsUsbFlt.sys - ok
00:00:25.0177 0x1390  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\System32\wevtapi.dll
00:00:25.0177 0x1390  C:\Windows\System32\wevtapi.dll - ok
00:00:25.0177 0x1390  [ FB4EB9352B7D698E6B3C2AA2ED724DAD, 534AB280ACD29E88FD1BD8838E1231D9364E649C917547A838F51EC8AB941EE2 ] C:\Windows\System32\authz.dll
00:00:25.0177 0x1390  C:\Windows\System32\authz.dll - ok
00:00:25.0193 0x1390  [ 50BA656134F78AF64E4DD3C8B6FEFD7E, F7AB96E0C9658B0444FD473E87165199FA90AE5CE434B40FBA1DB324925DF886 ] C:\Windows\System32\cngaudit.dll
00:00:25.0193 0x1390  C:\Windows\System32\cngaudit.dll - ok
00:00:25.0193 0x1390  [ C61DDFE40204F3BE3DF111981D91560E, 450D5E608D344B2186A73F5421CAF1792902BFB428182D6C5A971C5E0686842F ] C:\Windows\System32\ncrypt.dll
00:00:25.0193 0x1390  C:\Windows\System32\ncrypt.dll - ok
00:00:25.0193 0x1390  [ FC7650224790CAE75A5E9231961FDEC5, D634FC1F43AAC41D8B440BD4C1E7576886CDE683EDE4CAF06C43163B5E176CBB ] C:\Windows\System32\bcrypt.dll
00:00:25.0193 0x1390  C:\Windows\System32\bcrypt.dll - ok
00:00:25.0193 0x1390  [ C90878913DF3DC504790282043DB5F4C, 5DC30020A523B5B219A219D74208A1249A43510D70723985817A021249D97036 ] C:\Windows\System32\msprivs.dll
00:00:25.0193 0x1390  C:\Windows\System32\msprivs.dll - ok
00:00:25.0208 0x1390  [ E343CABBD8D600ABAF3F11625D33B3D0, AA73D0F205749C291BF5EF179BDF3BF30977E36C87F4FF5361942EE024E848F9 ] C:\Windows\System32\netjoin.dll
00:00:25.0208 0x1390  C:\Windows\System32\netjoin.dll - ok
00:00:25.0208 0x1390  [ 1B85FA0D0A93C011B76678733F39DB6C, 46B177B723C417B150A4EE2503CB94B9212A99E0CBCA54D77CBBB8A147DF2BEB ] C:\Windows\System32\kerberos.dll
00:00:25.0208 0x1390  C:\Windows\System32\kerberos.dll - ok
00:00:25.0208 0x1390  [ 6DCFAEC6D1334AA6CDF8961DB4633CBF, DA7A26935691379DA0DBA829DEDE82401BCA7D35E28BFBFE3F9CE38AFF344737 ] C:\Windows\System32\negoexts.dll
00:00:25.0208 0x1390  C:\Windows\System32\negoexts.dll - ok
00:00:25.0208 0x1390  [ 6B07EE9C7668D2C704563DA838026828, CFC0CA7F9F3ADF14FBA9AF6182F0260CF6B6C088F3A9DF6FD20B51B483385BBB ] C:\Windows\System32\cryptsp.dll
00:00:25.0208 0x1390  C:\Windows\System32\cryptsp.dll - ok
00:00:25.0224 0x1390  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\System32\mswsock.dll
00:00:25.0224 0x1390  C:\Windows\System32\mswsock.dll - ok
00:00:25.0224 0x1390  [ 8BA721F76C97A219599E88722AA48875, 7784C7E329160AB2559E4192A7B46310E5B60E2727883C5080AC80875988D7F5 ] C:\Windows\System32\msv1_0.dll
00:00:25.0224 0x1390  C:\Windows\System32\msv1_0.dll - ok
00:00:25.0224 0x1390  [ C1809B9907ADEDAF16F50C894100883B, 464CF897CB376DCDC9A584A2A470B5B82D99C595DC55930778B162E605CDFBA8 ] C:\Windows\System32\netlogon.dll
00:00:25.0224 0x1390  C:\Windows\System32\netlogon.dll - ok
00:00:25.0224 0x1390  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\System32\wship6.dll
00:00:25.0224 0x1390  C:\Windows\System32\wship6.dll - ok
00:00:25.0239 0x1390  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\System32\dnsapi.dll
00:00:25.0239 0x1390  C:\Windows\System32\dnsapi.dll - ok
00:00:25.0239 0x1390  [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\System32\logoncli.dll
00:00:25.0239 0x1390  C:\Windows\System32\logoncli.dll - ok
00:00:25.0239 0x1390  [ F95E1E9D97D25C11F29CA34C843A6F4D, 97DF01FA582425B72EFE54BE1CE8B28C4A8BA680A081F4D32797C5A0425FFB41 ] C:\Windows\System32\schannel.dll
00:00:25.0239 0x1390  C:\Windows\System32\schannel.dll - ok
00:00:25.0239 0x1390  [ C71CC796F0E2E9BD542C87532706FCFE, 2E49C94F6CC81E0EACA6CF72932B8E8E34A0EA8BD565BE9CC20019374DC41E9E ] C:\Windows\System32\wdigest.dll
00:00:25.0239 0x1390  C:\Windows\System32\wdigest.dll - ok
00:00:25.0255 0x1390  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\System32\rsaenh.dll
00:00:25.0255 0x1390  C:\Windows\System32\rsaenh.dll - ok
00:00:25.0255 0x1390  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\System32\bcryptprimitives.dll
00:00:25.0255 0x1390  C:\Windows\System32\bcryptprimitives.dll - ok
00:00:25.0255 0x1390  [ 37CC990D4E2CDFAE12AC47F6B620FC13, D07E6EF4EED10ACA21A41A739147E54CC435EAF952CD0CA1F2E3CB2D83CEC831 ] C:\Windows\System32\pku2u.dll
00:00:25.0255 0x1390  C:\Windows\System32\pku2u.dll - ok
00:00:25.0255 0x1390  [ 13829161C1297F4170A5546430147BBD, D24592A3DD1E8DFF9E340511E0B075F8BD2359410543706FA0311C33E857B53A ] C:\Windows\System32\TSpkg.dll
00:00:25.0255 0x1390  C:\Windows\System32\TSpkg.dll - ok
00:00:25.0271 0x1390  [ DB1D6751689B4A7EE2439C64F2ADF1C9, C352B00DA59F80CD55338C27D6DD314B37401952863B70915501C6391EAEF2E7 ] C:\Windows\System32\credssp.dll
00:00:25.0271 0x1390  C:\Windows\System32\credssp.dll - ok
00:00:25.0271 0x1390  [ 91F434FF6606ED9BDC6A05D651B69553, F2CF43DDDE2241E8A25F710A516371E0C56D99195022D9715A98379C753929B3 ] C:\Windows\System32\efslsaext.dll
00:00:25.0271 0x1390  C:\Windows\System32\efslsaext.dll - ok
00:00:25.0271 0x1390  [ 8124944EC89D6A1815E4E53F5B96AAF4, A6766BD0F62A381C9899F66E5C32731BD91600363F4CFBE560BC8AA2B111C790 ] C:\Windows\System32\scecli.dll
00:00:25.0271 0x1390  C:\Windows\System32\scecli.dll - ok
00:00:25.0271 0x1390  [ 7222995615BF93B628DCEA4BD6CCACF7, 306A3220868AC38AC796027F0D75052B596F55B9CAE87A9B8863515995BFC2F2 ] C:\Windows\System32\ubpm.dll
00:00:25.0271 0x1390  C:\Windows\System32\ubpm.dll - ok
00:00:25.0271 0x1390  [ FD67683FBA9B2C4BB551780BD8846F64, 4BB7C956EA8D2CE63F5BF80FAE652F98416A7635202AEE04FC8D81000E6363DF ] C:\Windows\System32\winsta.dll
00:00:25.0271 0x1390  C:\Windows\System32\winsta.dll - ok
00:00:25.0286 0x1390  [ 4BDBBE5E4208022DD794F7EEEB0F7366, 4F69BA2EDABFA63A300B9F1880349EFAE185B899DD5C561E7B3BA6AAA4B22D6A ] C:\Windows\System32\SPInf.dll
00:00:25.0286 0x1390  C:\Windows\System32\SPInf.dll - ok
00:00:25.0286 0x1390  [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\System32\svchost.exe
00:00:25.0286 0x1390  C:\Windows\System32\svchost.exe - ok
00:00:25.0286 0x1390  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] C:\Windows\System32\umpnpmgr.dll
00:00:25.0286 0x1390  C:\Windows\System32\umpnpmgr.dll - ok
00:00:25.0286 0x1390  [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\System32\devrtl.dll
00:00:25.0286 0x1390  C:\Windows\System32\devrtl.dll - ok
00:00:25.0302 0x1390  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\System32\gpapi.dll
00:00:25.0302 0x1390  C:\Windows\System32\gpapi.dll - ok
00:00:25.0302 0x1390  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] C:\Windows\System32\umpo.dll
00:00:25.0302 0x1390  C:\Windows\System32\umpo.dll - ok
00:00:25.0302 0x1390  [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\System32\pcwum.dll
00:00:25.0302 0x1390  C:\Windows\System32\pcwum.dll - ok
00:00:25.0302 0x1390  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\System32\powrprof.dll
00:00:25.0302 0x1390  C:\Windows\System32\powrprof.dll - ok
00:00:25.0317 0x1390  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] C:\Windows\System32\drivers\luafv.sys
00:00:25.0317 0x1390  C:\Windows\System32\drivers\luafv.sys - ok
00:00:25.0317 0x1390  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] C:\Windows\System32\RpcEpMap.dll
00:00:25.0317 0x1390  C:\Windows\System32\RpcEpMap.dll - ok
00:00:25.0317 0x1390  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] C:\Windows\System32\rpcss.dll
00:00:25.0317 0x1390  C:\Windows\System32\rpcss.dll - ok
00:00:25.0317 0x1390  [ B19505648F033393E907E2E419FDE8B3, BEF76AAD61FE0CA1F2B91C491FD94DE1BE67E776BBB7972D57ADFBE0333E9615 ] C:\Windows\System32\atiesrxx.exe
00:00:25.0317 0x1390  C:\Windows\System32\atiesrxx.exe - ok
00:00:25.0333 0x1390  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\System32\wshqos.dll
00:00:25.0333 0x1390  C:\Windows\System32\wshqos.dll - ok
00:00:25.0333 0x1390  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\System32\WSHTCPIP.DLL
00:00:25.0333 0x1390  C:\Windows\System32\WSHTCPIP.DLL - ok
00:00:25.0333 0x1390  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\System32\FirewallAPI.dll
00:00:25.0333 0x1390  C:\Windows\System32\FirewallAPI.dll - ok
00:00:25.0333 0x1390  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\System32\wtsapi32.dll
00:00:25.0333 0x1390  C:\Windows\System32\wtsapi32.dll - ok
00:00:25.0349 0x1390  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\System32\version.dll
00:00:25.0349 0x1390  C:\Windows\System32\version.dll - ok
00:00:25.0349 0x1390  [ 52449FD429D6053B78AE564DEF303870, 473E42C5B48493C84CF1B22D054AD1C788FCE3603E439ABC77A3B37DACFF9F1C ] C:\Windows\System32\winlogon.exe
00:00:25.0349 0x1390  C:\Windows\System32\winlogon.exe - ok
00:00:25.0349 0x1390  [ 241E015DD809CFB23242F890B1FC575B, 763381DCBACF06FD8D043B14D383B6F4D5295B8E665796C59603F15F3E3E36FC ] C:\Windows\System32\wevtsvc.dll
00:00:25.0349 0x1390  C:\Windows\System32\wevtsvc.dll - ok
00:00:25.0349 0x1390  [ 3EF0D8AB08385AAB5802E773511A2E6A, 1A7EE4BC646767004372EAEA9BC0A2071790E739101F7D25ECD9C95D3F29AFD6 ] C:\Windows\System32\LogonUI.exe
00:00:25.0349 0x1390  C:\Windows\System32\LogonUI.exe - ok
00:00:25.0364 0x1390  [ 43CD23B65CBF04D6F8ACA984B0EF93FE, DD470EE9DFEE584303EFFDBCE82E782FAFC5B32BE985354A18C678C29726863B ] C:\Windows\System32\authui.dll
00:00:25.0364 0x1390  C:\Windows\System32\authui.dll - ok
00:00:25.0364 0x1390  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] C:\Windows\System32\profsvc.dll
00:00:25.0364 0x1390  C:\Windows\System32\profsvc.dll - ok
00:00:25.0364 0x1390  [ 9A34927D722AD16841263636A4BF069B, 4A92A84E3E4A8BA9551CFB765D0E6FE50E7CBD5695568FB3A37E1556770A369F ] C:\Windows\System32\audiosrv.dll
00:00:25.0364 0x1390  C:\Windows\System32\audiosrv.dll - ok
00:00:25.0364 0x1390  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] C:\Windows\System32\FntCache.dll
00:00:25.0364 0x1390  C:\Windows\System32\FntCache.dll - ok
00:00:25.0380 0x1390  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] C:\Windows\System32\mmcss.dll
00:00:25.0380 0x1390  C:\Windows\System32\mmcss.dll - ok
00:00:25.0380 0x1390  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\System32\avrt.dll
00:00:25.0380 0x1390  C:\Windows\System32\avrt.dll - ok
00:00:25.0380 0x1390  [ FE7F776F2590C8331123BDA3A3A21DE6, B227C86077B073B78739E9FD2C79CEAFF6AC7AAAC51C249F8198CA4D9F1B5708 ] C:\Windows\System32\DriverStore\FileRepository\sthda.inf_x86_neutral_34194676756b8405\stacsv.exe
00:00:25.0380 0x1390  C:\Windows\System32\DriverStore\FileRepository\sthda.inf_x86_neutral_34194676756b8405\stacsv.exe - ok
00:00:25.0380 0x1390  [ AC8C80DC4F1A6E60C9A762C1799F0B39, 9FD3A62B4E476CBE6D94D587826B5D8C6EB8208035A20B8E17749312C251FD6A ] C:\Windows\System32\adtschema.dll
00:00:25.0380 0x1390  C:\Windows\System32\adtschema.dll - ok
00:00:25.0395 0x1390  [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\System32\dsound.dll
00:00:25.0395 0x1390  C:\Windows\System32\dsound.dll - ok
00:00:25.0395 0x1390  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\System32\MMDevAPI.dll
00:00:25.0395 0x1390  C:\Windows\System32\MMDevAPI.dll - ok
00:00:25.0395 0x1390  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\System32\propsys.dll
00:00:25.0395 0x1390  C:\Windows\System32\propsys.dll - ok
00:00:25.0395 0x1390  [ 7FFD52D73352806969D424EF327D10A7, DD44B084F052EF798997D7A8578E98DD4EF3F0E2A0C522DA2CC169D362C7B900 ] C:\Windows\System32\radardt.dll
00:00:25.0395 0x1390  C:\Windows\System32\radardt.dll - ok
00:00:25.0411 0x1390  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\System32\winmm.dll
00:00:25.0411 0x1390  C:\Windows\System32\winmm.dll - ok
00:00:25.0411 0x1390  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\System32\netprofm.dll
00:00:25.0411 0x1390  C:\Windows\System32\netprofm.dll - ok
00:00:25.0411 0x1390  [ 6BB12A7CA8779D96334B258548B071F5, 33EB3F223180463E6FBC0FF73D3DB57DBB2EE04679384E838E7C5E269E43F42B ] C:\Windows\System32\cryptui.dll
00:00:25.0411 0x1390  C:\Windows\System32\cryptui.dll - ok
00:00:25.0411 0x1390  [ C9E48209C242342BC731267607081257, E7AF8180D7D57115971B9065160CBB969424F1F1BC3F8300BA8F785B6F9DD501 ] C:\Windows\System32\stacapi.dll
00:00:25.0411 0x1390  C:\Windows\System32\stacapi.dll - ok
00:00:25.0427 0x1390  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
00:00:25.0427 0x1390  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
00:00:25.0427 0x1390  [ 9F2A49EE7FF68670E8ADE541A2CF213B, 09E83846F05C4117FA8CE2E056B39302151731D8F117CA9B04BB87E8C6520D38 ] C:\Windows\System32\audiodg.exe
00:00:25.0427 0x1390  C:\Windows\System32\audiodg.exe - ok
00:00:25.0427 0x1390  [ 47BB23927747B934C6690F86C33E3C16, 28009E9966CDA25DA61A3B25DB8B2A84FE765932D568D5DB335C0A955D834782 ] C:\Windows\System32\fthsvc.dll
00:00:25.0427 0x1390  C:\Windows\System32\fthsvc.dll - ok
00:00:25.0427 0x1390  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\System32\ntmarta.dll
00:00:25.0427 0x1390  C:\Windows\System32\ntmarta.dll - ok
00:00:25.0442 0x1390  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] C:\Windows\System32\wlansvc.dll
00:00:25.0442 0x1390  C:\Windows\System32\wlansvc.dll - ok
00:00:25.0442 0x1390  [ F14A9B1778376D0B1788E402AC1F831A, 6110F29669E03F8163B5CD7124BE0FF329F36C18529FA3B8FF70FC00B2D8AA02 ] C:\Windows\System32\shacct.dll
00:00:25.0442 0x1390  C:\Windows\System32\shacct.dll - ok
00:00:25.0442 0x1390  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] C:\Windows\System32\cscsvc.dll
00:00:25.0442 0x1390  C:\Windows\System32\cscsvc.dll - ok
00:00:25.0442 0x1390  [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\System32\atl.dll
00:00:25.0442 0x1390  C:\Windows\System32\atl.dll - ok
00:00:25.0458 0x1390  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] C:\Windows\System32\gpsvc.dll
00:00:25.0458 0x1390  C:\Windows\System32\gpsvc.dll - ok
00:00:25.0458 0x1390  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\System32\samlib.dll
00:00:25.0458 0x1390  C:\Windows\System32\samlib.dll - ok
00:00:25.0458 0x1390  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] C:\Windows\System32\themeservice.dll
00:00:25.0458 0x1390  C:\Windows\System32\themeservice.dll - ok
00:00:25.0458 0x1390  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] C:\Windows\System32\es.dll
00:00:25.0458 0x1390  C:\Windows\System32\es.dll - ok
00:00:25.0473 0x1390  [ 63BFDF555DA2075A77D677829C3CCCD0, 13B0C0576A0158FBEE6C216136F8C66373C8E6592895D3D824EC67147B9190E9 ] C:\Windows\System32\uxtheme.dll
00:00:25.0473 0x1390  C:\Windows\System32\uxtheme.dll - ok
00:00:25.0473 0x1390  [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
00:00:25.0473 0x1390  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
00:00:25.0473 0x1390  [ 5826854E4E420E29F59C2865F0FA562F, F62B0AD7C2C0390A715B018180C2C9E6349FEFF605B9C02426099EE632A65D97 ] C:\Program Files\Windows Defender\MpEvMsg.dll
00:00:25.0473 0x1390  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
00:00:25.0473 0x1390  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE, DA16117429AF47230CD7C136407C81951B8D2E45A8B7A9DC6948407AA2EC4ADD ] C:\Windows\System32\dsrole.dll
00:00:25.0473 0x1390  C:\Windows\System32\dsrole.dll - ok
00:00:25.0489 0x1390  [ 50E0DD0A5B8D8BC353578F2F73926697, 9A453F60FC0149417105BB5B4CB910D614A3D832D98313A58D0EA36BABED4460 ] C:\Windows\System32\nlaapi.dll
00:00:25.0489 0x1390  C:\Windows\System32\nlaapi.dll - ok
00:00:25.0489 0x1390  [ 772F44012DBE49DE894976AE2259A659, 34C7E200D075087A4084EF8947D5FC5A2511CC02A8A34AF8CFEEB5691364E522 ] C:\Windows\System32\PeerDist.dll
00:00:25.0489 0x1390  C:\Windows\System32\PeerDist.dll - ok
00:00:25.0489 0x1390  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\System32\slc.dll
00:00:25.0489 0x1390  C:\Windows\System32\slc.dll - ok
00:00:25.0489 0x1390  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\System32\taskschd.dll
00:00:25.0489 0x1390  C:\Windows\System32\taskschd.dll - ok
00:00:25.0489 0x1390  [ 808D8A8B2A3074002852BC856D419576, 1AFDEAAD071D398F4663E82D58510ABC0A30048018866C59AB53D3ECB6E6D349 ] C:\Windows\System32\comres.dll
00:00:25.0489 0x1390  C:\Windows\System32\comres.dll - ok
00:00:25.0505 0x1390  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] C:\Windows\System32\Sens.dll
00:00:25.0505 0x1390  C:\Windows\System32\Sens.dll - ok
00:00:25.0505 0x1390  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\System32\mstask.dll
00:00:25.0505 0x1390  C:\Windows\System32\mstask.dll - ok
00:00:25.0505 0x1390  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\System32\dui70.dll
00:00:25.0505 0x1390  C:\Windows\System32\dui70.dll - ok
00:00:25.0505 0x1390  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\System32\duser.dll
00:00:25.0505 0x1390  C:\Windows\System32\duser.dll - ok
00:00:25.0520 0x1390  [ C0BEB56ED79B59B7B33D0AA6C38A0BA6, 8A21DB7B51BF533CBA08640498C132560641244B9218C483E2053502DF88313D ] C:\Windows\System32\hpservice.exe
00:00:25.0520 0x1390  C:\Windows\System32\hpservice.exe - ok
00:00:25.0520 0x1390  [ 2CFA4569350B7F84F815E9EC34E85766, 8DE5F880F23435256E697C24BDDFA9B8994ACC3FAA063AF274BEC918FE012788 ] C:\Windows\System32\SndVolSSO.dll
00:00:25.0520 0x1390  C:\Windows\System32\SndVolSSO.dll - ok
00:00:25.0520 0x1390  [ 24CAEDCD73B5B0E22226283B7B2468C7, DB491CC4CB4DB854C5C4EB90DA8323728C342A23CA517FC98FA4E8339531A1B6 ] C:\Windows\System32\mfc42u.dll
00:00:25.0520 0x1390  C:\Windows\System32\mfc42u.dll - ok
00:00:25.0520 0x1390  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\System32\hid.dll
00:00:25.0520 0x1390  C:\Windows\System32\hid.dll - ok
00:00:25.0536 0x1390  [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\System32\wdmaud.drv
00:00:25.0536 0x1390  C:\Windows\System32\wdmaud.drv - ok
00:00:25.0536 0x1390  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\System32\dwmapi.dll
00:00:25.0536 0x1390  C:\Windows\System32\dwmapi.dll - ok
00:00:25.0536 0x1390  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\System32\ksuser.dll
00:00:25.0536 0x1390  C:\Windows\System32\ksuser.dll - ok
00:00:25.0536 0x1390  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\System32\xmllite.dll
00:00:25.0536 0x1390  C:\Windows\System32\xmllite.dll - ok
00:00:25.0551 0x1390  [ 7D34AF98A706230CC2DEDFE0CABF87AB, 93237B839C2BC6E84C2C675BB211CA0FB781B348A033EF648A9AA5BDAC1EFDAE ] C:\Windows\System32\odbc32.dll
00:00:25.0551 0x1390  C:\Windows\System32\odbc32.dll - ok
00:00:25.0551 0x1390  [ 3506073028F82A26771F703B18072FD9, 330465FE0EAF08DBE437DEB6366199725B3995146BF348A35F3F3EF8FC48BA73 ] C:\Windows\System32\accelerometerdll.DLL
00:00:25.0551 0x1390  C:\Windows\System32\accelerometerdll.DLL - ok
00:00:25.0551 0x1390  [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\System32\odbcint.dll
00:00:25.0551 0x1390  C:\Windows\System32\odbcint.dll - ok
00:00:25.0551 0x1390  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] C:\Windows\System32\uxsms.dll
00:00:25.0551 0x1390  C:\Windows\System32\uxsms.dll - ok
00:00:25.0567 0x1390  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] C:\Windows\System32\drivers\lltdio.sys
00:00:25.0567 0x1390  C:\Windows\System32\drivers\lltdio.sys - ok
00:00:25.0567 0x1390  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] C:\Windows\System32\drivers\ndisuio.sys
00:00:25.0567 0x1390  C:\Windows\System32\drivers\ndisuio.sys - ok
00:00:25.0567 0x1390  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] C:\Windows\System32\drivers\nwifi.sys
00:00:25.0567 0x1390  C:\Windows\System32\drivers\nwifi.sys - ok
00:00:25.0567 0x1390  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] C:\Windows\System32\dhcpcore.dll
00:00:25.0567 0x1390  C:\Windows\System32\dhcpcore.dll - ok
00:00:25.0583 0x1390  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] C:\Windows\System32\drivers\rspndr.sys
00:00:25.0583 0x1390  C:\Windows\System32\drivers\rspndr.sys - ok
00:00:25.0583 0x1390  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\System32\IPHLPAPI.DLL
00:00:25.0583 0x1390  C:\Windows\System32\IPHLPAPI.DLL - ok
00:00:25.0583 0x1390  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] C:\Windows\System32\lmhsvc.dll
00:00:25.0583 0x1390  C:\Windows\System32\lmhsvc.dll - ok
00:00:25.0583 0x1390  [ D2A937964199F647B1C3BC435712E5D9, 03029296547750229C0C484CD09D67286096B92661C41DF67C60019DEF75A2F7 ] C:\Windows\System32\nrpsrv.dll
00:00:25.0583 0x1390  C:\Windows\System32\nrpsrv.dll - ok
00:00:25.0598 0x1390  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] C:\Windows\System32\nsisvc.dll
00:00:25.0598 0x1390  C:\Windows\System32\nsisvc.dll - ok
00:00:25.0598 0x1390  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\System32\winnsi.dll
00:00:25.0598 0x1390  C:\Windows\System32\winnsi.dll - ok
00:00:25.0598 0x1390  [ EF71BA5DF59034962B0C62314A71351A, BB31EDFCCFF1CE984CDE0E1D8996BF70DC28F97B6685AE54172F2F4BAFA56A0F ] C:\Windows\System32\dhcpcore6.dll
00:00:25.0598 0x1390  C:\Windows\System32\dhcpcore6.dll - ok
00:00:25.0598 0x1390  [ AF75DBA674E55221B7A055B0A4345F16, 50F1B550F4EBFA946564EB66BBD17C308DCB08055017E010095A94C2EBCE208D ] C:\Windows\System32\keyiso.dll
00:00:25.0598 0x1390  C:\Windows\System32\keyiso.dll - ok
00:00:25.0614 0x1390  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] C:\Windows\System32\dnsrslvr.dll
00:00:25.0614 0x1390  C:\Windows\System32\dnsrslvr.dll - ok
00:00:25.0614 0x1390  [ 9A892B3439884C62B04718F0303A49E9, E3A772832BE440B074628FCAE06FACA451E2329BAEDD62CAB54310B44AF6BA4A ] C:\Windows\System32\eapphost.dll
00:00:25.0614 0x1390  C:\Windows\System32\eapphost.dll - ok
00:00:25.0614 0x1390  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] C:\Windows\System32\eapsvc.dll
00:00:25.0614 0x1390  C:\Windows\System32\eapsvc.dll - ok
00:00:25.0614 0x1390  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\System32\FWPUCLNT.DLL
00:00:25.0614 0x1390  C:\Windows\System32\FWPUCLNT.DLL - ok
00:00:25.0629 0x1390  [ 100103C6535C66265267F5EEA5F5846E, DC5972BC1FCABDC51E4DF4D5124D408BB03F2EFAF25AB70C921DD7A03A12DFD4 ] C:\Windows\System32\dnsext.dll
00:00:25.0629 0x1390  C:\Windows\System32\dnsext.dll - ok
00:00:25.0629 0x1390  [ D33E95C0A2754061233B58DC41F8094C, C957FD018DCCC8EA4BFD0EBB16A8A65B5F8AD543929EE92251C8718872BBA628 ] C:\Windows\System32\umb.dll
00:00:25.0629 0x1390  C:\Windows\System32\umb.dll - ok
00:00:25.0629 0x1390  [ 3C9035085141162416A0DD34DBF3F3C1, 31856241BBCC5AEC32C36BD073667001ECBA3A65C1D55B26A9CEE186CE1C03E6 ] C:\Windows\System32\wlanmsm.dll
00:00:25.0629 0x1390  C:\Windows\System32\wlanmsm.dll - ok
00:00:25.0629 0x1390  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\System32\dhcpcsvc.dll
00:00:25.0629 0x1390  C:\Windows\System32\dhcpcsvc.dll - ok
00:00:25.0645 0x1390  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\System32\dhcpcsvc6.dll
00:00:25.0645 0x1390  C:\Windows\System32\dhcpcsvc6.dll - ok
00:00:25.0645 0x1390  [ 20C06A50DFC097E134BC6FA8444CA9BC, 7739CF0ABCA918C9A49D655FB4E032163BBFB7064844F0C8EBDA282CB0225DFC ] C:\Windows\System32\wlansec.dll
00:00:25.0645 0x1390  C:\Windows\System32\wlansec.dll - ok
00:00:25.0645 0x1390  [ 666E57B6B51824D1D235F80A3DD70A13, B2ACCABDD5D8B23E502FE691C1DEE4A2C0EA20EDCDE5B4000557579D56D411EC ] C:\Windows\System32\eappprxy.dll
00:00:25.0645 0x1390  C:\Windows\System32\eappprxy.dll - ok
00:00:25.0645 0x1390  [ F748F53FE09D21D8ECBB6421E6792024, 38F737673F8B089B2540CE7015A4DF7081754F7CC83BFF85199B70555AF32ED0 ] C:\Windows\System32\onex.dll
00:00:25.0645 0x1390  C:\Windows\System32\onex.dll - ok
00:00:25.0645 0x1390  [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97, 364A2DC446E9AB091A216D0EED559CEA334AA46EC0BC693CBD6CE1DE0F89317B ] C:\Windows\System32\eappcfg.dll
00:00:25.0645 0x1390  C:\Windows\System32\eappcfg.dll - ok
00:00:25.0661 0x1390  [ C1585EAA67C37A05BF6F93726FAFC069, 50401A628053871D5B864E2493018236A117F177AD1E466EDE6FB3CACBD6C5BD ] C:\Windows\System32\l2gpstore.dll
00:00:25.0661 0x1390  C:\Windows\System32\l2gpstore.dll - ok
00:00:25.0661 0x1390  [ 9419ABF3163B6F0E3AD3DD2B381C879F, 75029AFDB5F8A8F74A63B6C8165E77110E2FBAEC0021A9613035BFFEC646A54E ] C:\Windows\System32\WinSCard.dll
00:00:25.0661 0x1390  C:\Windows\System32\WinSCard.dll - ok
00:00:25.0661 0x1390  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\System32\wlanutil.dll
00:00:25.0661 0x1390  C:\Windows\System32\wlanutil.dll - ok
00:00:25.0661 0x1390  [ 749F9795F01C35EEBE100A87D82B9681, 03A636328D3D97AFA6B5D6B3085EA8D27C3DBCAEA5986FD74904FC754378CD64 ] C:\Windows\System32\wlgpclnt.dll
00:00:25.0661 0x1390  C:\Windows\System32\wlgpclnt.dll - ok
00:00:25.0676 0x1390  [ E227B810296AA27E6C69307A7B6456E5, 0FBF1C90362EA0D12B4B0E18A2FB3E3AC90E116C30BE4CBE95F12EB4882FB985 ] C:\Windows\System32\msxml6.dll
00:00:25.0676 0x1390  C:\Windows\System32\msxml6.dll - ok
00:00:25.0676 0x1390  [ 776DBF61BA3E8FA64FFA052559A29174, 49138662E97D4E0195455EC3BA593C6191E9B3EC2DFCA62FB9A164B53C2886A8 ] C:\Windows\System32\AudioSes.dll
00:00:25.0676 0x1390  C:\Windows\System32\AudioSes.dll - ok
00:00:25.0676 0x1390  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] C:\Windows\System32\shsvcs.dll
00:00:25.0676 0x1390  C:\Windows\System32\shsvcs.dll - ok
00:00:25.0676 0x1390  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] C:\Windows\System32\schedsvc.dll
00:00:25.0676 0x1390  C:\Windows\System32\schedsvc.dll - ok
00:00:25.0707 0x1390  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\System32\WindowsCodecs.dll
00:00:25.0707 0x1390  C:\Windows\System32\WindowsCodecs.dll - ok
00:00:25.0707 0x1390  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\System32\netapi32.dll
00:00:25.0707 0x1390  C:\Windows\System32\netapi32.dll - ok
00:00:25.0707 0x1390  [ 1FF7E4F548C7C372C804938F0D5B36AE, F20409733F67853CBF51FD83E4DB73260FED7B7A4F361C6B3482D78C990E16FC ] C:\Windows\System32\netcfgx.dll
00:00:25.0707 0x1390  C:\Windows\System32\netcfgx.dll - ok
00:00:25.0707 0x1390  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\System32\netutils.dll
00:00:25.0707 0x1390  C:\Windows\System32\netutils.dll - ok
00:00:25.0723 0x1390  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\System32\wkscli.dll
00:00:25.0723 0x1390  C:\Windows\System32\wkscli.dll - ok
00:00:25.0723 0x1390  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\System32\winbrand.dll
00:00:25.0723 0x1390  C:\Windows\System32\winbrand.dll - ok


continuation of second log:

 

 

00:00:25.0723 0x1390  [ 65BF13016A3C22775F3E17591AE5268A, 7DFE2F99D33D47E4A55ACBE83FE5B536A2983742522629414D5F941043C591D3 ] C:\Windows\System32\VaultCredProvider.dll
00:00:25.0723 0x1390  C:\Windows\System32\VaultCredProvider.dll - ok
00:00:25.0723 0x1390  [ 2A6C2CA59D9939D9A3412706649D6776, A39C181FAA293B545FB4D3C166BAF385E76B56B392DF783238A285341F4A2C19 ] C:\Program Files\CyberLink\YouCam\CLCredProv\x86\CLCredProv.dll
00:00:25.0723 0x1390  C:\Program Files\CyberLink\YouCam\CLCredProv\x86\CLCredProv.dll - ok
00:00:25.0739 0x1390  [ 4BCC63ED1C3D15B2635A8AE2B854B3EB, 4CF29B4E896996145D54263FD06358E16C3FE2CD39C3AF6BCCE607590C637555 ] C:\Windows\System32\SmartcardCredentialProvider.dll
00:00:25.0739 0x1390  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
00:00:25.0739 0x1390  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\System32\msacm32.drv
00:00:25.0739 0x1390  C:\Windows\System32\msacm32.drv - ok
00:00:25.0739 0x1390  [ E59F08ED9D2A128CE436BBFC232247F6, 9CD690C1B7CB6CA59F6AB2752A5AF2FC5A057CCBDA4166900F0AC68296972060 ] C:\Windows\System32\BioCredProv.dll
00:00:25.0739 0x1390  C:\Windows\System32\BioCredProv.dll - ok
00:00:25.0739 0x1390  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\System32\midimap.dll
00:00:25.0739 0x1390  C:\Windows\System32\midimap.dll - ok
00:00:25.0754 0x1390  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\System32\msacm32.dll
00:00:25.0754 0x1390  C:\Windows\System32\msacm32.dll - ok
00:00:25.0754 0x1390  [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\System32\credui.dll
00:00:25.0754 0x1390  C:\Windows\System32\credui.dll - ok
00:00:25.0754 0x1390  [ 3FAD263CE1E2A6FFF40D00043B2275E3, 0063D7DAD57CA78C3DCE6A2E7D4FF7A47DBBBBAA33F92AEF747D8102E055D1AA ] C:\Windows\System32\winbio.dll
00:00:25.0754 0x1390  C:\Windows\System32\winbio.dll - ok
00:00:25.0754 0x1390  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\System32\samcli.dll
00:00:25.0754 0x1390  C:\Windows\System32\samcli.dll - ok
00:00:25.0770 0x1390  [ 36B8D5903CEEF0AA42A1EE002BD27FF1, CBD5C4D0E05B9A2657D816B655FFFC386807061594DEAABA754658D3152F7403 ] C:\Windows\System32\vaultcli.dll
00:00:25.0770 0x1390  C:\Windows\System32\vaultcli.dll - ok
00:00:25.0770 0x1390  [ 6D8CACF3B1B54943EFCF420C2D667B37, 64EB621EC68077761A0662BE78D2D17ADA982FCFE4D3BBD3A96D0D990BD8541A ] C:\Windows\System32\certCredProvider.dll
00:00:25.0770 0x1390  C:\Windows\System32\certCredProvider.dll - ok
00:00:25.0770 0x1390  [ FFE4BEC5C187C426A17AE76A773063A6, 0003F7DBCE52F3E7B467FBB6522623E7318E22BC2E1BB5890AFAE29682543F99 ] C:\Windows\System32\rasplap.dll
00:00:25.0770 0x1390  C:\Windows\System32\rasplap.dll - ok
00:00:25.0770 0x1390  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\System32\rasapi32.dll
00:00:25.0770 0x1390  C:\Windows\System32\rasapi32.dll - ok
00:00:25.0770 0x1390  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\System32\rasman.dll
00:00:25.0770 0x1390  C:\Windows\System32\rasman.dll - ok
00:00:25.0785 0x1390  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\System32\rtutils.dll
00:00:25.0785 0x1390  C:\Windows\System32\rtutils.dll - ok
00:00:25.0785 0x1390  [ A12829E9974F57E9B5DBFEA7C93190F6, 1EC2A36CAF30A706B6082C5CA79B6A33FA99342E144508DB1415D1611E631EBC ] C:\Windows\System32\UXInit.dll
00:00:25.0785 0x1390  C:\Windows\System32\UXInit.dll - ok
00:00:25.0785 0x1390  [ 77F95AE51E834BAFE903912F7EBE825B, C8EC9C53177596F651FDE3D384CFCEE50B9FC78E186B90654A18D6B4A2644CBA ] C:\Windows\System32\AudioEng.dll
00:00:25.0785 0x1390  C:\Windows\System32\AudioEng.dll - ok
00:00:25.0785 0x1390  [ 9153F819C855EBD72417DAE7C176CF50, 41715D3F0857CF7861BA6ECE8AD95596F2047B9A41951F6546A3C94A7EB29AAE ] C:\Windows\System32\AUDIOKSE.dll
00:00:25.0785 0x1390  C:\Windows\System32\AUDIOKSE.dll - ok
00:00:25.0801 0x1390  [ 4E30ED3E551E867ADD1C8D58F5EDD9DF, C933ABF1069128F4AB73DA47B2E7C029249804D65F50720897ECCAB3F4A07C27 ] C:\Windows\System32\WMALFXGFXDSP.dll
00:00:25.0801 0x1390  C:\Windows\System32\WMALFXGFXDSP.dll - ok
00:00:25.0801 0x1390  [ 378F5EB676C0BD7EAAAFA7AD5BA44B16, AD72A318E7BED699872ADEAFF04BA544E5864AE3FAF1D23D09A08FCB32781F1E ] C:\Windows\System32\atieclxx.exe
00:00:25.0801 0x1390  C:\Windows\System32\atieclxx.exe - ok
00:00:25.0801 0x1390  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\System32\oleacc.dll
00:00:25.0801 0x1390  C:\Windows\System32\oleacc.dll - ok
00:00:25.0801 0x1390  [ 5C7F2885B3BD9066DE2D02DDBFC7F5DD, 026648CE0CBCAA3B3035E0F6EA3070FE5BC92A0EECCA4BD5CC311039EB4F177E ] C:\Windows\System32\atiadlxx.dll
00:00:25.0801 0x1390  C:\Windows\System32\atiadlxx.dll - ok
00:00:25.0817 0x1390  [ FD049C25A168D3DE310D9207B7B6367B, 48966605E7CF87996068AC1A2E563F90F6F152E710323792C633E10BCBA480E4 ] C:\Windows\System32\UIAutomationCore.dll
00:00:25.0817 0x1390  C:\Windows\System32\UIAutomationCore.dll - ok
00:00:25.0817 0x1390  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\System32\msimg32.dll
00:00:25.0817 0x1390  C:\Windows\System32\msimg32.dll - ok
00:00:25.0817 0x1390  [ BAA90E40DB931A0DBDB1D555AB85D8D0, 4EBBAFF5DC9FDFCF1EC63E46CFE01C2FB41CE4640473359CA14691F2CA9E3C1C ] C:\Windows\System32\atimuixx.dll
00:00:25.0817 0x1390  C:\Windows\System32\atimuixx.dll - ok
00:00:25.0832 0x1390  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] C:\Windows\System32\MPSSVC.dll
00:00:25.0832 0x1390  C:\Windows\System32\MPSSVC.dll - ok
00:00:25.0832 0x1390  [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] C:\Windows\System32\drivers\vwifimp.sys
00:00:25.0832 0x1390  C:\Windows\System32\drivers\vwifimp.sys - ok
00:00:25.0832 0x1390  [ 38B13C0DF479DBA23ECFA815159BA86E, C289C65AF3FB689AD6B770AB0E815860D9EA36FB2A8DE9F1818C63AD0FE47CBD ] C:\Windows\System32\ktmw32.dll
00:00:25.0832 0x1390  C:\Windows\System32\ktmw32.dll - ok
00:00:25.0832 0x1390  [ E6D90DC604F407B3B5E0FD285E46B2A0, 41C0E25E93E6985445410B23058B8972E7720464ABDB41D84FF10CCAC204921A ] C:\Windows\System32\fveapi.dll
00:00:25.0832 0x1390  C:\Windows\System32\fveapi.dll - ok
00:00:25.0832 0x1390  [ C87F28A34B3840F4B40011D170B1A159, 4FB94B9197C5FA73E1A74BA8DCD4ACE830C927FD67B117426714CCD7396E3CB9 ] C:\Windows\System32\fvecerts.dll
00:00:25.0848 0x1390  C:\Windows\System32\fvecerts.dll - ok
00:00:25.0848 0x1390  [ 1C3E8371377E988B683797A132EFFE1B, CC4A9B9084F163428973A04D77CADDAA838C5761BF9E55971FAD7275BB9D2194 ] C:\Windows\System32\taskcomp.dll
00:00:25.0848 0x1390  C:\Windows\System32\taskcomp.dll - ok
00:00:25.0848 0x1390  [ EAFC149CD3BD78C443E31BB157841197, 9045425B0C7A23D5A96D1084FB3B1DED35852B3FB1DCB942DEB4A5B906126CA4 ] C:\Windows\System32\tbs.dll
00:00:25.0848 0x1390  C:\Windows\System32\tbs.dll - ok
00:00:25.0848 0x1390  [ E2D56AE1D40E3725084054CD8E9CFBB1, 7548C22DE09DCCC9BA41BA1DE331CFD0B18DDA00A40E27DFB8EA551CDF7050BC ] C:\Windows\System32\wiarpc.dll
00:00:25.0848 0x1390  C:\Windows\System32\wiarpc.dll - ok
00:00:25.0848 0x1390  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] C:\Windows\System32\drivers\http.sys
00:00:25.0848 0x1390  C:\Windows\System32\drivers\http.sys - ok
00:00:25.0863 0x1390  [ 8C147D67D4E75882DA88206DF098229A, E42B67E30C3B616EF9070BC426A119B8AF229E672435D57B51435837E0D3639F ] C:\Windows\System32\mfplat.dll
00:00:25.0863 0x1390  C:\Windows\System32\mfplat.dll - ok
00:00:25.0863 0x1390  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] C:\Windows\System32\spoolsv.exe
00:00:25.0863 0x1390  C:\Windows\System32\spoolsv.exe - ok
00:00:25.0863 0x1390  [ 7ADD763FC46041180E83B4BFAEE593A5, 5D649E3D96EEF70F2C844198F2A58ACB680658C88B70978FA4A7BB060A717553 ] C:\Program Files\CyberLink\YouCam\CLWFLService.exe
00:00:25.0863 0x1390  C:\Program Files\CyberLink\YouCam\CLWFLService.exe - ok
00:00:25.0863 0x1390  [ CA257FDBA45DEE8D3DCDD9C4A62EF133, 1887A7EE7354017B1E91F2DC20A6493A114CA2D510BCE24EBB67937793A79ECF ] C:\Program Files\CyberLink\YouCam\subsys\PyFaceLogin\CLWFL.dll
00:00:25.0863 0x1390  C:\Program Files\CyberLink\YouCam\subsys\PyFaceLogin\CLWFL.dll - ok
00:00:25.0879 0x1390  [ 7069AAB8536F29ED7323140973A2894B, 04B7FB6C64BFA3B80549F35CEF36D5DAE5D19A40E42444B3665B6BEFDF98EB5F ] C:\Windows\System32\msdmo.dll
00:00:25.0879 0x1390  C:\Windows\System32\msdmo.dll - ok
00:00:25.0879 0x1390  [ CC5BF60E9D3F181C0B62AC91AD8634B8, AFF680E62D989A62CBDEC2BF70B6D17F7615F9826EAEE0C8A524AF80F9FF862D ] C:\Windows\System32\qcap.dll
00:00:25.0879 0x1390  C:\Windows\System32\qcap.dll - ok
00:00:25.0879 0x1390  [ C335EC1182AC10B188705554E0BC1186, 963CD11CEF7A79559361134FDF9C07B8EA829A40D3996D77E95C291DD17AAD2B ] C:\Windows\System32\msvfw32.dll
00:00:25.0879 0x1390  C:\Windows\System32\msvfw32.dll - ok
00:00:25.0895 0x1390  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
00:00:25.0895 0x1390  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
00:00:25.0895 0x1390  [ 5C3BA07E215B4F693E7D78D6F4980D98, 7DBA5D646583D8B4170ED7EC204C17E71B8162B72C0A32F2BD9E8D899A692C5A ] C:\Windows\System32\quartz.dll
00:00:25.0895 0x1390  C:\Windows\System32\quartz.dll - ok
00:00:25.0895 0x1390  [ 7448354E89900479C227DD3118EBD6FD, 2169D58212C2BB0BAD45B81CDB8FE745D2C06383DCFE69F35AFBE0ADD68545B8 ] C:\Program Files\CyberLink\YouCam\MUITransfer\MUITransfer.dll
00:00:25.0895 0x1390  C:\Program Files\CyberLink\YouCam\MUITransfer\MUITransfer.dll - ok
00:00:25.0895 0x1390  [ 863ABB8788D7A4562D845A70B3CCA426, D67A5313750093AD58FE44FCDE2F255AEA58D4051AE3BEC73ACFFA5C7C8AA04B ] C:\Program Files\CyberLink\YouCam\MFC71u.dll
00:00:25.0895 0x1390  C:\Program Files\CyberLink\YouCam\MFC71u.dll - ok
00:00:25.0910 0x1390  [ CA2F560921B7B8BE1CF555A5A18D54C3, C4D4339DF314A27FF75A38967B7569D9962337B8D4CD4B0DB3ABA5FF72B2BFBB ] C:\Program Files\CyberLink\YouCam\msvcr71.dll
00:00:25.0910 0x1390  C:\Program Files\CyberLink\YouCam\msvcr71.dll - ok
00:00:25.0910 0x1390  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] C:\Windows\System32\BFE.DLL
00:00:25.0910 0x1390  C:\Windows\System32\BFE.DLL - ok
00:00:25.0910 0x1390  [ A94DC60A90EFD7A35C36D971E3EE7470, 6C483CBE349863C7DCF6F8CB7334E7D28C299E7D5AA063297EA2F62352F6BDD9 ] C:\Program Files\CyberLink\YouCam\msvcp71.dll
00:00:25.0910 0x1390  C:\Program Files\CyberLink\YouCam\msvcp71.dll - ok
00:00:25.0910 0x1390  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] C:\Windows\System32\drivers\bowser.sys
00:00:25.0910 0x1390  C:\Windows\System32\drivers\bowser.sys - ok
00:00:25.0926 0x1390  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] C:\Windows\System32\drivers\mpsdrv.sys
00:00:25.0926 0x1390  C:\Windows\System32\drivers\mpsdrv.sys - ok
00:00:25.0926 0x1390  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] C:\Windows\System32\drivers\mrxsmb.sys
00:00:25.0926 0x1390  C:\Windows\System32\drivers\mrxsmb.sys - ok
00:00:25.0926 0x1390  [ 8B8D1CEF498678CAB9DF17145D34BC64, B833545CC592BBF77F4F3E6BA9961D10673AA3F4E2CF6369F6A3BDAF1BC02026 ] C:\Windows\System32\msxml3.dll
00:00:25.0926 0x1390  C:\Windows\System32\msxml3.dll - ok
00:00:25.0926 0x1390  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] C:\Windows\System32\drivers\fltMgr.sys
00:00:25.0926 0x1390  C:\Windows\System32\drivers\fltMgr.sys - ok
00:00:25.0941 0x1390  [ 8B0B4C5927A333A05513791758350DC4, 52FF08569678F3DA6D52FAE200E4C8C85E986805987EF1CDC0616C29664E7D64 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
00:00:25.0941 0x1390  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
00:00:25.0941 0x1390  [ D93A937A2A9D2CBC06B3A615A197011F, E55028F641512EC22CEC4674F7E380FE71059A21E51ECB345DDB769A276F30D1 ] C:\Windows\System32\PSHED.DLL
00:00:25.0941 0x1390  C:\Windows\System32\PSHED.DLL - ok
00:00:25.0941 0x1390  [ 019C372B1A9DA73A22D0D35A4D40F5C9, 6DDAF455D528FDC2F8271E5909289E76E54D81AC5563433653FC7E0C6EA5BB70 ] C:\Windows\System32\wfapigp.dll
00:00:25.0941 0x1390  C:\Windows\System32\wfapigp.dll - ok
00:00:25.0941 0x1390  [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E, 27848861F25C00168A1A0FE0722D8E327D2251C4FB69A7968EE5722ECCD129E3 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
00:00:25.0941 0x1390  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
00:00:25.0957 0x1390  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] C:\Windows\System32\drivers\mrxsmb10.sys
00:00:25.0957 0x1390  C:\Windows\System32\drivers\mrxsmb10.sys - ok
00:00:25.0957 0x1390  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] C:\Windows\System32\drivers\mrxsmb20.sys
00:00:25.0957 0x1390  C:\Windows\System32\drivers\mrxsmb20.sys - ok
00:00:25.0957 0x1390  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] C:\Windows\System32\wkssvc.dll
00:00:25.0957 0x1390  C:\Windows\System32\wkssvc.dll - ok
00:00:25.0957 0x1390  [ 64EF98497C5C3E5A19CA7800A3222D69, ABB8B627B59E16DE634A84ABBF4E219C756CF2D5C126A2F23EAF4DBB67C9F54A ] C:\Program Files\CyberLink\YouCam\Custom\Lang\ITA\IM.dll
00:00:25.0957 0x1390  C:\Program Files\CyberLink\YouCam\Custom\Lang\ITA\IM.dll - ok
00:00:25.0973 0x1390  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\System32\mscms.dll
00:00:25.0973 0x1390  C:\Windows\System32\mscms.dll - ok
00:00:25.0973 0x1390  [ 3A55D53687F16D9EF5BF307BBFEFCD9C, F1BB1B43442B151686500768C43A4D20CAA47427E78386953A42DDB42D9DDF0C ] C:\Windows\System32\pcasvc.dll
00:00:25.0973 0x1390  C:\Windows\System32\pcasvc.dll - ok
00:00:25.0973 0x1390  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] C:\Windows\System32\snmptrap.exe
00:00:25.0973 0x1390  C:\Windows\System32\snmptrap.exe - ok
00:00:25.0973 0x1390  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\System32\imageres.dll
00:00:25.0973 0x1390  C:\Windows\System32\imageres.dll - ok
00:00:25.0988 0x1390  [ F70CE04DD355A61DB6FE1B19540CF2F5, 5F5E3A2FAD5D6EA5EF0902B8CA28E94CB628BB2986D83E159009E7B4BCAB3272 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
00:00:25.0988 0x1390  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
00:00:25.0988 0x1390  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] C:\Windows\System32\drivers\parport.sys
00:00:25.0988 0x1390  C:\Windows\System32\drivers\parport.sys - ok
00:00:25.0988 0x1390  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
00:00:25.0988 0x1390  C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
00:00:25.0988 0x1390  [ 4A1E806032413883BAF1E9A6047BC668, 4D8EA2B36B57C7ABF131193B9C23B1A7209A3464C2716C471C7F8C11E0FA9E62 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
00:00:25.0988 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
00:00:26.0004 0x1390  [ A2F17346CC5C502D4E29EF986BD17D34, 786E1DA5DBE8B56A8708F361425059EC6DB89C43FD4A136090BAB44B084CC204 ] C:\Windows\System32\PeerDistSh.dll
00:00:26.0004 0x1390  C:\Windows\System32\PeerDistSh.dll - ok
00:00:26.0004 0x1390  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] C:\Windows\System32\sstpsvc.dll
00:00:26.0004 0x1390  C:\Windows\System32\sstpsvc.dll - ok
00:00:26.0004 0x1390  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] C:\Windows\System32\provsvc.dll
00:00:26.0004 0x1390  C:\Windows\System32\provsvc.dll - ok
00:00:26.0004 0x1390  [ B3892E6DA8E2C8CE4B0A9D3EB9A185E5, AE163388201EF2F119E11265586E7DA32C6E5B348E0CC32E3F72E21EBFD0843B ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll
00:00:26.0004 0x1390  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll - ok
00:00:26.0019 0x1390  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
00:00:26.0019 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe - ok
00:00:26.0019 0x1390  [ C9C41A9EF885F35231ECEA03EFFDB83C, 3721ACC69EDDCCEE97787A5454AC6B5CBACA691CFA82092B957149D30D2409B5 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ushata.dll
00:00:26.0019 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ushata.dll - ok
00:00:26.0019 0x1390  [ E36CB8B559C8FA3D296415AB5169116E, 9D28F5B33B4DE5A4DE07F5BBA1089E095BC90AD9FD3003BA5A9F917FB5DBCFB2 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpinit.dll
00:00:26.0019 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpinit.dll - ok
00:00:26.0019 0x1390  [ DA849AB6870AB975375E37A45CC0E330, BDCDAD2261A9E6194B05DD6DFD285D8A522CF58715B62B2378F38624A1E69492 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpservice.dll
00:00:26.0019 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpservice.dll - ok
00:00:26.0035 0x1390  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\System32\fltLib.dll
00:00:26.0035 0x1390  C:\Windows\System32\fltLib.dll - ok
00:00:26.0035 0x1390  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msvcp100.dll
00:00:26.0035 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msvcp100.dll - ok
00:00:26.0035 0x1390  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msvcr100.dll
00:00:26.0035 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msvcr100.dll - ok
00:00:26.0035 0x1390  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\System32\cryptnet.dll
00:00:26.0035 0x1390  C:\Windows\System32\cryptnet.dll - ok
00:00:26.0051 0x1390  [ 623E143F2DF17C0106A9988F5D7DC878, 9DA30262FF22FA9F1DB247CB3B4A2892D79730EF0ECC9589D399D24B4F58E565 ] C:\Windows\System32\cryptsvc.dll
00:00:26.0051 0x1390  C:\Windows\System32\cryptsvc.dll - ok
00:00:26.0051 0x1390  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] C:\Windows\System32\dps.dll
00:00:26.0051 0x1390  C:\Windows\System32\dps.dll - ok
00:00:26.0051 0x1390  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] C:\Windows\System32\FDResPub.dll
00:00:26.0051 0x1390  C:\Windows\System32\FDResPub.dll - ok
00:00:26.0051 0x1390  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] C:\Windows\System32\IKEEXT.DLL
00:00:26.0051 0x1390  C:\Windows\System32\IKEEXT.DLL - ok
00:00:26.0066 0x1390  [ 900CF8C1A3F2504C0435B8DFA0FF1D35, 72920008A092ED9EECD262E88101605CF16B7275120513264DB730AF0AA1869F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpmain.dll
00:00:26.0066 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpmain.dll - ok
00:00:26.0066 0x1390  [ C7EDF9020894938533A837C5E4B3189C, 1B7D090D652A93DE74A07B5693982DD9E01F4AD4CFBDBA41D3A5E389FE572A4D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\fssync.dll
00:00:26.0066 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\fssync.dll - ok
00:00:26.0066 0x1390  [ 344D1FA0438A967F1A2BAA42C86D6E19, E9CB31CBD9075B84BA771CF82A4C3AB5BF57ADEA3E76ABE8FE36FEACFD681D89 ] C:\Windows\System32\drivers\PEAuth.sys
00:00:26.0066 0x1390  C:\Windows\System32\drivers\PEAuth.sys - ok
00:00:26.0082 0x1390  [ 34BEC2BCD77ECB238E00394483AA040D, 03CFB09D50F0D945D4BA9B571BDAE6E98BD3CFF2033E5D774E96773D74C5C787 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dumpwriter.dll
00:00:26.0082 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dumpwriter.dll - ok
00:00:26.0082 0x1390  [ 66B06D043F52A49244685AC6C4DC7E96, DF63AC00273AEAB6254466F67148D56E4AAE97E485354B208D70C6F6345718D6 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prremote.dll
00:00:26.0082 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prremote.dll - ok
00:00:26.0082 0x1390  [ 66B06D043F52A49244685AC6C4DC7E96, DF63AC00273AEAB6254466F67148D56E4AAE97E485354B208D70C6F6345718D6 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prremote2.dll
00:00:26.0082 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prremote2.dll - ok
00:00:26.0082 0x1390  [ F02FE922D118427A8C45B6C6206AB652, 7639CC75D09D94B3905C1C9CB4396A4FAF4D9041033CB187E5B3ACA7DDE34C68 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\service.dll
00:00:26.0082 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\service.dll - ok
00:00:26.0097 0x1390  [ 73F6C5223F7E9B5780DD4A6C30FCF569, 121A361A572EFC6AC964300DA93BF28DC11E55DDCA29A7C6E6FD12955FBA68B8 ] C:\Windows\System32\WSDApi.dll
00:00:26.0097 0x1390  C:\Windows\System32\WSDApi.dll - ok
00:00:26.0097 0x1390  [ DB846EECA70EE9D2E2FF31147C57B0F4, 1086310477697F43EB156314804B7E9100E04966EF3934F9F5E37112C5129954 ] C:\Windows\System32\webservices.dll
00:00:26.0097 0x1390  C:\Windows\System32\webservices.dll - ok
00:00:26.0097 0x1390  [ 89D90579E5FB1469CB0464F6512E42B7, 0E85C6935FEAA219C923FF63D17F7C3AF72FF5028E0FF95B66092C6DF64C665C ] C:\Windows\System32\fundisc.dll
00:00:26.0097 0x1390  C:\Windows\System32\fundisc.dll - ok
00:00:26.0097 0x1390  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] C:\Windows\System32\nlasvc.dll
00:00:26.0097 0x1390  C:\Windows\System32\nlasvc.dll - ok
00:00:26.0113 0x1390  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\System32\winhttp.dll
00:00:26.0113 0x1390  C:\Windows\System32\winhttp.dll - ok
00:00:26.0113 0x1390  [ 779BBCA7ABA4693F60AA2939B95874CA, 3DE8A5683F27ADE98E6171487E3757BBBE22F48F395B1BC45E63C233D24DE099 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prloader.dll
00:00:26.0113 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\prloader.dll - ok
00:00:26.0113 0x1390  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] C:\Windows\System32\drivers\secdrv.sys
00:00:26.0113 0x1390  C:\Windows\System32\drivers\secdrv.sys - ok
00:00:26.0113 0x1390  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] C:\Program Files\Skype\Updater\Updater.exe
00:00:26.0113 0x1390  C:\Program Files\Skype\Updater\Updater.exe - ok
00:00:26.0129 0x1390  [ 5845B1C54380FB980F68024B3A8B1E66, A7215D59B5C452F1494CFEC0DFC1E4ABE2D17EA0E1D07FBA062901BC3DED21AF ] C:\Windows\System32\vpnikeapi.dll
00:00:26.0129 0x1390  C:\Windows\System32\vpnikeapi.dll - ok
00:00:26.0129 0x1390  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] C:\Windows\System32\drivers\srvnet.sys
00:00:26.0129 0x1390  C:\Windows\System32\drivers\srvnet.sys - ok
00:00:26.0129 0x1390  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] C:\Windows\System32\drivers\tcpipreg.sys
00:00:26.0129 0x1390  C:\Windows\System32\drivers\tcpipreg.sys - ok
00:00:26.0129 0x1390  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] C:\Windows\System32\sysmain.dll
00:00:26.0129 0x1390  C:\Windows\System32\sysmain.dll - ok
00:00:26.0144 0x1390  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\System32\webio.dll
00:00:26.0144 0x1390  C:\Windows\System32\webio.dll - ok
00:00:26.0144 0x1390  [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\System32\httpapi.dll
00:00:26.0144 0x1390  C:\Windows\System32\httpapi.dll - ok
00:00:26.0144 0x1390  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] C:\Windows\System32\wbem\WMIsvc.dll
00:00:26.0144 0x1390  C:\Windows\System32\wbem\WMIsvc.dll - ok
00:00:26.0144 0x1390  [ C4B1EE61C1AC72E66E961DA4F183E49E, 2D81F1DC1E673702227D376559B9645ADF0EB645747E0543F655C2AD5FFD2C1B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\nfio.ppl
00:00:26.0144 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\nfio.ppl - ok
00:00:26.0160 0x1390  [ 140D9F911182357626165EA0BEB98C4F, 9B24047BF104895FCFDB68694934BDDD92DE98A0E6334A62E987C6DCBFFB9C5B ] C:\Windows\System32\ncsi.dll
00:00:26.0160 0x1390  C:\Windows\System32\ncsi.dll - ok
00:00:26.0160 0x1390  [ 28E2231BD34A39C854BDF3923AB2FF86, A95179068F7B86E04F976B724F155DA86253B7F4414F43DBD95F2058282B99E4 ] C:\Windows\System32\ssdpapi.dll
00:00:26.0160 0x1390  C:\Windows\System32\ssdpapi.dll - ok
00:00:26.0160 0x1390  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\System32\wbemcomn.dll
00:00:26.0160 0x1390  C:\Windows\System32\wbemcomn.dll - ok
00:00:26.0160 0x1390  [ 13337A3FB17F2242487FD45488ED0485, C174F8652118876494336AB88A65D594E0E6CCBAB20CC6BA08E6B253855A01CA ] C:\Windows\System32\vssapi.dll
00:00:26.0160 0x1390  C:\Windows\System32\vssapi.dll - ok
00:00:26.0175 0x1390  [ 881D9F2D6E04E1C323050CF1574870F7, DA02C415977A2E50C3D1E96E227234E7195BD33903C446A17FBE0FA8D14A164F ] C:\Windows\System32\wbem\WinMgmtR.dll
00:00:26.0175 0x1390  C:\Windows\System32\wbem\WinMgmtR.dll - ok
00:00:26.0175 0x1390  [ 701C9EB15E1E23D22F7C7184C0506673, 1CD59E8B8889C93B55F600DA1A7246810E8EAB725EFEF80327AC96344AC596A6 ] C:\Windows\System32\wbem\WmiDcPrv.dll
00:00:26.0175 0x1390  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
00:00:26.0175 0x1390  [ B940289C83121046BD6A60ACC6028593, EBD1C2C0A8EBB201924536AB5C6E032C12B9E081A153CC079748E1D6D625F0DF ] C:\Windows\System32\vsstrace.dll
00:00:26.0175 0x1390  C:\Windows\System32\vsstrace.dll - ok
00:00:26.0175 0x1390  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\System32\mpr.dll
00:00:26.0175 0x1390  C:\Windows\System32\mpr.dll - ok
00:00:26.0191 0x1390  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] C:\Windows\System32\drivers\srv2.sys
00:00:26.0191 0x1390  C:\Windows\System32\drivers\srv2.sys - ok
00:00:26.0191 0x1390  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] C:\Windows\System32\iphlpsvc.dll
00:00:26.0191 0x1390  C:\Windows\System32\iphlpsvc.dll - ok
00:00:26.0191 0x1390  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] C:\Windows\System32\drivers\srv.sys
00:00:26.0191 0x1390  C:\Windows\System32\drivers\srv.sys - ok
00:00:26.0191 0x1390  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] C:\Windows\System32\trkwks.dll
00:00:26.0191 0x1390  C:\Windows\System32\trkwks.dll - ok
00:00:26.0207 0x1390  [ 36ABB491B6B6A62ED82332FD5D5B7A5F, 469AC1544DA7032B80EB8B4AD0F62204765628A685834DFC241108BBFD4A94C5 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\fsdrvplg.ppl
00:00:26.0207 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\fsdrvplg.ppl - ok
00:00:26.0207 0x1390  [ 229E9AA2F80FB65F7B6BE72783D08382, 53303DA3A043F4DCD5C251B9DB15D7F4E8360B5C8DEBE35C19AA8327C079ACBB ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\winreg.ppl
00:00:26.0207 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\winreg.ppl - ok
00:00:26.0207 0x1390  [ 3CF38BA02F17C0A4EAFC9C082BD1F8C8, 141AF768B0A17B73A4C743555CC1038E979F723F4856C32E3BC6CEF71D0566B2 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\pxstub.ppl
00:00:26.0207 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\pxstub.ppl - ok
00:00:26.0207 0x1390  [ CE26AC1D26FAECA8D0699325160003B2, 549F1D78A13E5E6FA7868614F7E5CE080626BC4C6E44BD2AE4419263D3F343B0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\params.ppl
00:00:26.0207 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\params.ppl - ok
00:00:26.0222 0x1390  [ D2C733C669A54F1EC29B05C4CE3A70D3, CC600D7EB3E5A52B29EBC26C8D0F33351C233291857D19930702E4D83508EF47 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\app_core_legacy.dll
00:00:26.0222 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\app_core_legacy.dll - ok
00:00:26.0222 0x1390  [ 3747A53ADE8EF6E1719B8A4E7B51F99C, 8C53C618FE334B32432D0BA95CD4B5A65CB763B57FC04B4BD0EB095C1696137B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\key_value_storage.dll
00:00:26.0222 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\key_value_storage.dll - ok
00:00:26.0222 0x1390  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\System32\wbem\fastprox.dll
00:00:26.0222 0x1390  C:\Windows\System32\wbem\fastprox.dll - ok
00:00:26.0238 0x1390  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\System32\ntdsapi.dll
00:00:26.0238 0x1390  C:\Windows\System32\ntdsapi.dll - ok
00:00:26.0238 0x1390  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\System32\wbem\wbemprox.dll
00:00:26.0238 0x1390  C:\Windows\System32\wbem\wbemprox.dll - ok
00:00:26.0238 0x1390  [ CE292C4C10B8DB6070F262EA2733F0DC, 0A685263DA0277F2D215C4C22BF39E2F869B632B42B8C992E068129F57177BE1 ] C:\Windows\System32\sqmapi.dll
00:00:26.0238 0x1390  C:\Windows\System32\sqmapi.dll - ok
00:00:26.0238 0x1390  [ A399514D3B28C9A3453A486BBAAFF1C7, 487CAA68CF4EE0C9DC26975C694A2780ADEFB687D1EDF929CE6E1C7E3722FFE9 ] C:\Windows\System32\wdscore.dll
00:00:26.0238 0x1390  C:\Windows\System32\wdscore.dll - ok
00:00:26.0253 0x1390  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] C:\Windows\System32\srvsvc.dll
00:00:26.0253 0x1390  C:\Windows\System32\srvsvc.dll - ok
00:00:26.0253 0x1390  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] C:\Windows\System32\browser.dll
00:00:26.0253 0x1390  C:\Windows\System32\browser.dll - ok
00:00:26.0253 0x1390  [ E4B72E71EC37A59FE574A998A0C0EB9B, C17B06C936FC47B6AA5221ABF1DDE283F59E5751BEE9CDBCCBAF25CD4E7232AD ] C:\Windows\System32\netmsg.dll
00:00:26.0253 0x1390  C:\Windows\System32\netmsg.dll - ok
00:00:26.0253 0x1390  [ AE9898D5600A232CD8AE3298692162E5, 8B94BA9C404B8A21CE023335960E77C73245FB30015161EEFF48573DDB7E6922 ] C:\Windows\System32\clusapi.dll
00:00:26.0253 0x1390  C:\Windows\System32\clusapi.dll - ok
00:00:26.0253 0x1390  [ 89E783711AF91AF09E1EF30EF3107446, CA91DABED7508A86A4AFA5F99A4A78D0BA3577168B04C8E3462FC4D55FA33FFD ] C:\Windows\System32\sscore.dll
00:00:26.0253 0x1390  C:\Windows\System32\sscore.dll - ok
00:00:26.0269 0x1390  [ 2AF094C822BD6094F14A8E85FB51D52A, F70A4FEC66E64245237D9D1A4C2C87168A26F224FCE648A3D7065E95259887D2 ] C:\Windows\System32\resutils.dll
00:00:26.0269 0x1390  C:\Windows\System32\resutils.dll - ok
00:00:26.0269 0x1390  [ 6383C60EC0133B14F5705F96369421B2, EAB3FA2344B853148F199F744E716FBB8E9331B9DB588F784274599B6BCE2335 ] C:\Windows\System32\hnetcfg.dll
00:00:26.0269 0x1390  C:\Windows\System32\hnetcfg.dll - ok
00:00:26.0269 0x1390  [ 45D9F6CD2469CDB6A640DD4BD2B01471, 21704ADB83B26DD9C2D4D248FE61F3FEC2003D6748BB6A830334F0FDA9610362 ] C:\Windows\System32\nci.dll
00:00:26.0269 0x1390  C:\Windows\System32\nci.dll - ok
00:00:26.0269 0x1390  [ 585EB475E7AF55C9065256E8FFB751A1, 5AE557013435DF993F0E872B90A94CBB9E80FA8A080469C300EBCEE62CABA92F ] C:\Windows\System32\wbem\wbemcore.dll
00:00:26.0269 0x1390  C:\Windows\System32\wbem\wbemcore.dll - ok
00:00:26.0285 0x1390  [ 5AE88135C6A86FCD67BA16AFBB1C8389, 0FC750B5C84F1AFBE93E8A23410360F4B068D367A9AF6FF2E3F6160DA5005DE5 ] C:\Windows\System32\wbem\esscli.dll
00:00:26.0285 0x1390  C:\Windows\System32\wbem\esscli.dll - ok
00:00:26.0285 0x1390  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\System32\wbem\wbemsvc.dll
00:00:26.0285 0x1390  C:\Windows\System32\wbem\wbemsvc.dll - ok
00:00:26.0285 0x1390  [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\System32\wbem\wmiutils.dll
00:00:26.0285 0x1390  C:\Windows\System32\wbem\wmiutils.dll - ok
00:00:26.0285 0x1390  [ 371E3B05894549113D07CD3081ED55EF, 9973678AC0F50B1F02B379B1D4A7DDF317B724D65BE3FF635FD751EDD1D96B5A ] C:\Windows\System32\wbem\repdrvfs.dll
00:00:26.0285 0x1390  C:\Windows\System32\wbem\repdrvfs.dll - ok
00:00:26.0300 0x1390  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\System32\rasadhlp.dll
00:00:26.0300 0x1390  C:\Windows\System32\rasadhlp.dll - ok
00:00:26.0300 0x1390  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] C:\Windows\System32\wdi.dll
00:00:26.0300 0x1390  C:\Windows\System32\wdi.dll - ok
00:00:26.0300 0x1390  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\System32\npmproxy.dll
00:00:26.0300 0x1390  C:\Windows\System32\npmproxy.dll - ok
00:00:26.0300 0x1390  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] C:\Windows\System32\bthserv.dll
00:00:26.0316 0x1390  C:\Windows\System32\bthserv.dll - ok
00:00:26.0316 0x1390  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] C:\Windows\System32\wpdbusenum.dll
00:00:26.0316 0x1390  C:\Windows\System32\wpdbusenum.dll - ok
00:00:26.0316 0x1390  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] C:\Windows\System32\hidserv.dll
00:00:26.0316 0x1390  C:\Windows\System32\hidserv.dll - ok
00:00:26.0316 0x1390  [ ECF036299AA554B5E0455262857B39D0, E7A08E4AA1677291FB55E1B43511B912D45676652E35C6BA75D1604A8BE5B1D0 ] C:\Windows\System32\diagperf.dll
00:00:26.0316 0x1390  C:\Windows\System32\diagperf.dll - ok
00:00:26.0316 0x1390  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\System32\shfolder.dll
00:00:26.0316 0x1390  C:\Windows\System32\shfolder.dll - ok
00:00:26.0331 0x1390  [ F8E882C10AF4C29E378D1E28D4817CB1, 1164096E044FA9B38CCC462315B9A2F7C43C472091F539F6A4BF7B5EAA389410 ] C:\Windows\System32\pnpts.dll
00:00:26.0331 0x1390  C:\Windows\System32\pnpts.dll - ok
00:00:26.0331 0x1390  [ F0016853FA3F38F55FD868FF74C0359B, 49A6A6D610591D0F2FF8A88C8E72D6DCABB8C5FE5D3E995F0CE0E8FC073BA289 ] C:\Windows\System32\wdiasqmmodule.dll
00:00:26.0331 0x1390  C:\Windows\System32\wdiasqmmodule.dll - ok
00:00:26.0331 0x1390  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] C:\Windows\System32\IPSECSVC.DLL
00:00:26.0331 0x1390  C:\Windows\System32\IPSECSVC.DLL - ok
00:00:26.0331 0x1390  [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\System32\mprapi.dll
00:00:26.0331 0x1390  C:\Windows\System32\mprapi.dll - ok
00:00:26.0347 0x1390  [ F7FE730CE31B54145DEE1F1482BCCDD7, E7F0F59AB2B0D5EC5FE9B966006D06FE0FCEDBA99E2A4A8A6D410A0490F1F017 ] C:\Windows\System32\ndiscapCfg.dll
00:00:26.0347 0x1390  C:\Windows\System32\ndiscapCfg.dll - ok
00:00:26.0347 0x1390  [ E98278865E8DABA21CFE5FE4BE34210A, 3BB431A9F6476EA98C17DF46BA5DFA265E74328D84875E402236ED12E50B6330 ] C:\Windows\System32\PortableDeviceApi.dll
00:00:26.0347 0x1390  C:\Windows\System32\PortableDeviceApi.dll - ok
00:00:26.0347 0x1390  [ 761A3A4038C1FD4F5795427907C28484, B9338BC022DC5B8C0502E6A88E7D76E03C19A828861A922360B147441FB09285 ] C:\Windows\System32\rascfg.dll
00:00:26.0347 0x1390  C:\Windows\System32\rascfg.dll - ok
00:00:26.0347 0x1390  [ D99621C0735B21DCC8BC4FEF02F379EF, C9FAD74DD80B6CCA95B83B767BB55644E775E8DC3FFC05CD89AEF16686F902FD ] C:\Windows\System32\Apphlpdm.dll
00:00:26.0347 0x1390  C:\Windows\System32\Apphlpdm.dll - ok
00:00:26.0363 0x1390  [ 9A7B54D57594233EEB17892BAD309970, 64EF2A51BFA13455038DCB6773F9DEF6FD46FAA1F1CF47E7B61D3E64466DA5AA ] C:\Windows\System32\mprmsg.dll
00:00:26.0363 0x1390  C:\Windows\System32\mprmsg.dll - ok
00:00:26.0363 0x1390  [ CAFC0B884E5590B5E80D84F592388B3D, FFCA66AEB6869BCC7A469C5E968B20A2DFA49D97E4E598CC36E839047FF7AB2B ] C:\Windows\System32\tcpipcfg.dll
00:00:26.0363 0x1390  C:\Windows\System32\tcpipcfg.dll - ok
00:00:26.0363 0x1390  [ 4F8CCD3E7D9F17A7C60FA0AE2466CACF, 77849DD78145EA879E63A42AE1481C0DEA3E16D89BB067229203317E9EDD340D ] C:\Windows\System32\wer.dll
00:00:26.0363 0x1390  C:\Windows\System32\wer.dll - ok
00:00:26.0378 0x1390  [ C693E642ACFBDD76433AF6BE3C3EEE6F, 5241C30CCB095B10B10AD11F42F57B2DEA362C7F6DA36A9A5B23E4DFF113CFD7 ] C:\Windows\System32\PortableDeviceConnectApi.dll
00:00:26.0378 0x1390  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
00:00:26.0378 0x1390  [ 7E82616BEE76BF5EAA5B30F681414E21, 2138D743C4C09ECD829E194CA42934CB044BFF400921DA9B5FA50371E191656E ] C:\Windows\System32\perftrack.dll
00:00:26.0378 0x1390  C:\Windows\System32\perftrack.dll - ok
00:00:26.0378 0x1390  [ 8B794AE6D5C7D42092804BC39A2EB8F6, 0C8078442EABA31D48019F1A3B7941CC19D9B3AA571FFA5DCD4E19F67DEBF723 ] C:\Windows\System32\aepic.dll
00:00:26.0378 0x1390  C:\Windows\System32\aepic.dll - ok
00:00:26.0378 0x1390  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\System32\sfc.dll
00:00:26.0378 0x1390  C:\Windows\System32\sfc.dll - ok
00:00:26.0394 0x1390  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\System32\sfc_os.dll
00:00:26.0394 0x1390  C:\Windows\System32\sfc_os.dll - ok
00:00:26.0394 0x1390  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\System32\NapiNSP.dll
00:00:26.0394 0x1390  C:\Windows\System32\NapiNSP.dll - ok
00:00:26.0394 0x1390  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\System32\pnrpnsp.dll
00:00:26.0394 0x1390  C:\Windows\System32\pnrpnsp.dll - ok
00:00:26.0394 0x1390  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\System32\winrnr.dll
00:00:26.0394 0x1390  C:\Windows\System32\winrnr.dll - ok
00:00:26.0409 0x1390  [ AC122407B29378FF9646F03404AC7C54, 01F03A11C4419665557C3CB7E712B8AD59B13703115CB10C9F39FBE82D177BE6 ] C:\Windows\System32\wshbth.dll
00:00:26.0409 0x1390  C:\Windows\System32\wshbth.dll - ok
00:00:26.0409 0x1390  [ 01E357643AC1596513DF13AF47FBBE7E, 534B9F499D8C39F88A4716BF6F7B6EE5487C533425551A07FA20E41A09850F8E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\eka_meta.dll
00:00:26.0409 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\eka_meta.dll - ok
00:00:26.0409 0x1390  [ 45FD390D397A2EA84CDB0AA477C59919, 81A52DC3E9B5DDD23FD464CEAAD0B3C08B86712721A29F4BD3EE92B8D3CC612B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\updater_meta.dll
00:00:26.0409 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\updater_meta.dll - ok
00:00:26.0409 0x1390  [ E165B5A37371CDF59ECC24C52275EF4E, DF32B28D7AE06F2D6EF03D7071005CD570FF84AF5B21CBA8BA90370615D42000 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\content_filtering_meta.dll
00:00:26.0409 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\content_filtering_meta.dll - ok
00:00:26.0425 0x1390  [ 208881D39A2E0ACF68DCC560F4D778D9, 5B5EE6C3120C1EB013456F19935666B480873CB1120E3AE370D5BEA19E32C43E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\am_meta.dll
00:00:26.0425 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\am_meta.dll - ok
00:00:26.0425 0x1390  [ 29DD01CC4F0FD9A68E674EA7E7225692, C688F3756D24F24CCE5C5D1B54948EE98719145AF3F4CE95A6BB268E66F59955 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ac_meta.dll
00:00:26.0425 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ac_meta.dll - ok
00:00:26.0425 0x1390  [ BCB0244F8F1D90B21CF519932E0E31EB, 5413D24B7893B39EBECEC8A6524009A080455AB9D1C38695E61D5450D4FA4037 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\app_core_meta.dll
00:00:26.0425 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\app_core_meta.dll - ok
00:00:26.0425 0x1390  [ 1FBC0481C7ED3E28975E77701B3DCF64, 63E7A22CA3E2EDEE5D06E273142DAD66CC79974393B589A4BEA039E26CA276C7 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\product_metainfo.dll
00:00:26.0425 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\product_metainfo.dll - ok
00:00:26.0441 0x1390  [ 0852713F3DE326C7F62B600C119CD989, 625A4188EA10EC3F2C2BC07A54415A795594F104A5098EF58CA71881BC171A6C ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\plugins_meta.dll
00:00:26.0441 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\plugins_meta.dll - ok
00:00:26.0441 0x1390  [ 06096EF9878350320FD29416DA0B8E05, 1F8CCE0262C70FC821CF2156CE28138ED60B94A1F79215E4C9D66F3E2678776B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_meta.dll
00:00:26.0441 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_meta.dll - ok
00:00:26.0441 0x1390  [ 0C0C20F1DB4155D1B49C20B127944CCA, 523A1A0B0B347741D76E68D50DC09601AD998F809E76A8EC1ABF3BFBBF9265FF ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ucp_meta.dll
00:00:26.0441 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ucp_meta.dll - ok
00:00:26.0456 0x1390  [ ED1B8267952CE1D3BF33EEF74F06E909, 1E475A12BE1E76C54265C32CDDF24E136511B5DEF2CA4AEFA2C998E06CD5045F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\klifpp_meta.dll
00:00:26.0456 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\klifpp_meta.dll - ok
00:00:26.0456 0x1390  [ 877F3223B5061EA6684860184BA28C7C, DF8F24CFE7F8EA7ADD56845A4F466BF023B605BD524117376C052AA5AF4C4161 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\instrumental_meta.dll
00:00:26.0456 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\instrumental_meta.dll - ok
00:00:26.0456 0x1390  [ 84AE2D45E2AACF836BEA55EF19416AD0, 2C58B97EDE9F729D12E5BAB931A731FDD573937D3EC8BB8BB37B503641DE2AA8 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\storage.dll
00:00:26.0456 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\storage.dll - ok
00:00:26.0456 0x1390  [ 0C500A5719E998DD9535625470AD33A7, A9B1C27FC8AAD7E970E8CD063E9F4BB6B1417BDE1CE3B41AEA7037D4BDC2AEC8 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ichecker.dll
00:00:26.0456 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ichecker.dll - ok
00:00:26.0472 0x1390  [ 106EA570168EC9BE573E69479729210C, CF968BD5A1E848755C2614F7E6F27BEC72F83454F8EC1CDC8530230077C9654E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\klifpp.dll
00:00:26.0472 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\klifpp.dll - ok
00:00:26.0472 0x1390  [ E076FE9C1DD7930B404B5B9D28532BEF, 49EBB73B492C30E90C72D323407454F626B68BEB1B5E8EB99FDD24BDA4516DD2 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_facade.dll
00:00:26.0472 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_facade.dll - ok
00:00:26.0472 0x1390  [ E9489D39FA4140316DF7E3152B0002F1, 7BAEC277B2F9786621333949F5960F0961531D8594D56A0BE225D915CDED213F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\acassembler.dll
00:00:26.0472 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\acassembler.dll - ok
00:00:26.0472 0x1390  [ 1307377AC5238074C5F9169FEF7967B6, B74C49F3F3A508CF09E40439888365B2801BDDDBAF9CD2BA8274B2168174B062 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ckahum.dll
00:00:26.0472 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ckahum.dll - ok
00:00:26.0487 0x1390  [ DB603D3FD090C66F9709EF6493C26BA3, A9D9A3309DAEFC5AED885AC729B1E9DE8BA5454A0C83FD4F61BCAC935F6CBB4A ] C:\Windows\System32\FwRemoteSvr.dll
00:00:26.0487 0x1390  C:\Windows\System32\FwRemoteSvr.dll - ok
00:00:26.0487 0x1390  [ D9C4814CAF57E178BC5D578EB9638638, 7950C0737C11C9E5394DB2C80F13DA724DCC009EC07509A084F77D4085FB82B5 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ckahcomm.dll
00:00:26.0487 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ckahcomm.dll - ok
00:00:26.0487 0x1390  [ 10010355D9EBD7C0718D1D84DF978539, 1D5857138F2063427AFFB469B1CF43F1FAE2A25604C87F10FB532DE0BC2F2C03 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ckahrule.dll
00:00:26.0487 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ckahrule.dll - ok
00:00:26.0503 0x1390  [ A30A5F9CF87FBCDB48AD22C5FB956F14, 87CC750AAB902062F0063CB2030F9372A4086EFD4183F0C277C406E249E1F178 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\thpimpl.ppl
00:00:26.0503 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\thpimpl.ppl - ok
00:00:26.0503 0x1390  [ 69BF00687AD5844FE370E5D8913CCC6C, 3AA701D7E29501D74740232A8D94A895080CE941A32C1FA048AB1FBD215A0591 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\propmap.ppl
00:00:26.0503 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\propmap.ppl - ok
00:00:26.0503 0x1390  [ BE08CC530285D07CB82C6C9F581641F7, B1701BFA51917D15AC5C8EB7C4AC6EBAB3946E4406A8979C1C7AD8E206F5A7E0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\tm.ppl
00:00:26.0503 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\tm.ppl - ok
00:00:26.0503 0x1390  [ 0403B642D028217D374C2D2226223B26, 6916AB5871361362641BF34F63E8ED37D6FF7D925814A15252EC348483DAE466 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dtreg.ppl
00:00:26.0503 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dtreg.ppl - ok
00:00:26.0519 0x1390  [ 7C068818A1C141AA2B3534CF9330DC42, 0BA9D7E30030BB0A742AE5231F29265DBE8F26A365B5412708E6D261D493B3BE ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\bl.ppl
00:00:26.0519 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\bl.ppl - ok
00:00:26.0519 0x1390  [ 78DE417B7921DACA072059E6BF410FC7, 8A32772A5500F6076D207EA7194C67B4147BCE28DEA4B582C2129BEC4A42D7CD ] C:\Windows\System32\wshnetbs.dll
00:00:26.0519 0x1390  C:\Windows\System32\wshnetbs.dll - ok
00:00:26.0519 0x1390  [ 9E6AF823733C70E207D9FB6731A63B3D, 2E10E0CD623243A465315985630C25906B700F1F2DA52BC641F4900615B4F28E ] C:\Windows\System32\wlaninst.dll
00:00:26.0519 0x1390  C:\Windows\System32\wlaninst.dll - ok
00:00:26.0519 0x1390  [ 5B6EF0861BB5AC0EC347548E85C24A1D, 790EAEF1025293E45436654AD04C6D4E1A366879C0DA176AF157B0465E3A9A21 ] C:\Windows\System32\wwaninst.dll
00:00:26.0519 0x1390  C:\Windows\System32\wwaninst.dll - ok
00:00:26.0534 0x1390  [ 6440E46B3F50FAC938361626D0512F85, 205F56836F3F3302B6A361169EF30B26C4EF504B70E11D3E567BA921FED6ECA9 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\libcurl.dll
00:00:26.0534 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\libcurl.dll - ok
00:00:26.0534 0x1390  [ 8342ABA90C06D17428882DA183DF36C7, 9A74703372279459FF425E14BF38B81BF4E419BC796D0C82CBBDB3348AF7836A ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\libeay32.dll
00:00:26.0534 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\libeay32.dll - ok
00:00:26.0534 0x1390  [ AEC3F92140C8F308A65DAED58042C606, 2FCAAAC73B442969A2715913D1C94A473411982BCE088F4926817F0FAFCE44A1 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ssleay32.dll
00:00:26.0534 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ssleay32.dll - ok
00:00:26.0534 0x1390  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\System32\wsock32.dll
00:00:26.0534 0x1390  C:\Windows\System32\wsock32.dll - ok
00:00:26.0550 0x1390  [ A00FA077D08FE1893B15B2AC61ADDDA7, 40904FBB097D8D89190AFFE559856B7B281A657FC13AF91441461D7A092E3918 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmihlpr.ppl
00:00:26.0550 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmihlpr.ppl - ok
00:00:26.0550 0x1390  [ 4A533BBB6F84D7EDD6ACB01B0E17D536, 949D9E22597B59361BEE400558BABACF61F099457C11911F40D5D6ED87FEF230 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\vercheck.ppl
00:00:26.0550 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\vercheck.ppl - ok
00:00:26.0550 0x1390  [ 800E9F862C176ECEB57547D9C1B2E152, C00A1CCFFD7C7FB34BC34314E56D091DB4A8A6463252319B5EE1E96A75D02C86 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\regmap.ppl
00:00:26.0550 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\regmap.ppl - ok
00:00:26.0565 0x1390  [ 35659F096711725887D1674395937917, CCDEA6CF9DCE02CC817ECC752E794EE15ACAE0D809C3CD580D708A1C47A6334C ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\localization_manager.dll
00:00:26.0565 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\localization_manager.dll - ok
00:00:26.0565 0x1390  [ D476540A5E387DE70966B2BB5C2E258D, C4C2618303DBF281B90A6CE9CE20447634FB262A4D3D450DA8FC124C35034811 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\threats_disinfection.dll
00:00:26.0565 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\threats_disinfection.dll - ok
00:00:26.0565 0x1390  [ 9C3ED1FFBA35571AE606239386F08898, 530A78046A431336DEC32E6D28A5CBCCFBC7FE5CAFD94E6EEE2BBBC5624133F3 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\am_facade.dll
00:00:26.0565 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\am_facade.dll - ok
00:00:26.0565 0x1390  [ 4B9E4CE667DF26ADA061AA81E9AA841D, F6C151A14ADF4229AC8192EE9B7C3C5445619EECCCCEB647F3674360D65284B9 ] C:\Windows\System32\spfileq.dll
00:00:26.0565 0x1390  C:\Windows\System32\spfileq.dll - ok
00:00:26.0581 0x1390  [ A19803FB8636BE74DD5086CD26D874C8, 0D191DFC590D62DEC93B39A11DCB88B20488D9ABEB31FCACFAB2525C750CFA70 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ndetect.ppl
00:00:26.0581 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ndetect.ppl - ok
00:00:26.0581 0x1390  [ D1ED6EDC7C84EEC38FA3235B4E898AF9, CDFD45B6D1395E15D120444536D94048F539F24BA902538DD8AEC10773B8F330 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\crpthlpr.ppl
00:00:26.0581 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\crpthlpr.ppl - ok
00:00:26.0581 0x1390  [ 2756E5754EFD53CA896AC79DA0C4BFBE, 07FDD420899BA60E630A50D2F340F2298F383CF43B876E0CFFBBC55D639381A5 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\report.ppl
00:00:26.0581 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\report.ppl - ok
00:00:26.0581 0x1390  [ 72E953215CADE1A726C04AAFDF6B463D, 473866333D2241BAD6918D21EBCBE8F8EEA9344D816788300BCA290A89FBD3DD ] C:\Windows\System32\taskhost.exe
00:00:26.0581 0x1390  C:\Windows\System32\taskhost.exe - ok
00:00:26.0597 0x1390  [ C5C867CD7EFAC60D5021223E374DEEC5, 197FEE8F02DE348E75771AC9AD748EFB29939F1AAF02DA6555181EEF787FD099 ] C:\Windows\System32\dimsjob.dll
00:00:26.0597 0x1390  C:\Windows\System32\dimsjob.dll - ok
00:00:26.0597 0x1390  [ 14486EB6AF542F2BD3239F7FC3E713F7, C084C653CF6C63D7B4DB08CBDE2CAF059019D276BCACD923A29D22E69055012C ] C:\Windows\System32\pautoenr.dll
00:00:26.0597 0x1390  C:\Windows\System32\pautoenr.dll - ok
00:00:26.0597 0x1390  [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\System32\certcli.dll
00:00:26.0597 0x1390  C:\Windows\System32\certcli.dll - ok
00:00:26.0597 0x1390  [ 29BC473072568C072EC8B176498DE996, D3A4DB88BECA8AB3F8722E499548EFEC63022C1CE38F526AFBDA76DDBA8E9064 ] C:\Windows\System32\CertEnroll.dll
00:00:26.0597 0x1390  C:\Windows\System32\CertEnroll.dll - ok
00:00:26.0612 0x1390  [ 5BEC497CBFE08084C29516E00F4850EC, BB0A637373FB0C1946E96A49FD0BF28BAB143E5C5A47B855AFE4328363025590 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_facade.dll
00:00:26.0612 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_facade.dll - ok
00:00:26.0612 0x1390  [ FD0033EFFC0D1715A9CB9FC26B811518, 2183042FAA7BF99B098138E16F6CB869AB2452FC352DACD1FB9AE589B93467D8 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll
00:00:26.0612 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kpcengine.2.2.dll - ok
00:00:26.0612 0x1390  [ 1D3FF0ADFF08C3B0973DCCF410217953, 238834B65A122D60832364AE90933589A5F3551C5EC38D07766EF1D55D50BD0D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icuin40.dll
00:00:26.0612 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icuin40.dll - ok
00:00:26.0612 0x1390  [ ADA1971194495C3D0C42EE0DC8FA82F5, E35D42193FD65726C89E7EAD6920EE715A11F3DE128C4863B24E614BEB4ACEBA ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icuuc40.dll
00:00:26.0612 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icuuc40.dll - ok
00:00:26.0628 0x1390  [ 9D2695FDDD875009A50E231EBBECD694, 636F9A8162866892F7DB622E5E9120E5C1DEEADD3E7ADE9A25557D60521B55D9 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icudt40.dll
00:00:26.0628 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icudt40.dll - ok
00:00:26.0628 0x1390  [ 4180F793AFF75412907D8AD251B3BF39, 1F4C95B157062791B68C4E138B2A0273665D7F5A2B668B1C7087B3A9CCE7740E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icuio40.dll
00:00:26.0628 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icuio40.dll - ok
00:00:26.0628 0x1390  [ 74B20D05BAF57B2F1CBED6BD8390D6C6, 42C50659B61FAC0A1E0F136E35C1E113617820C30097AFB07BCEE3DB5F977A1A ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\schedule.ppl
00:00:26.0628 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\schedule.ppl - ok
00:00:26.0628 0x1390  [ C705355FE7496096EC784AC55C6D36A0, 202F66C1E775718C4EE4535D10700A380E1C2F27A45EF441F4263AE1CE1879ED ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\timer.ppl
00:00:26.0628 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\timer.ppl - ok
00:00:26.0643 0x1390  [ 1A06BD406146AA8695BC68270FA84D23, EA3CA1FCB9C3A367869CB66E9E1AF63933B5F1E96EC7AC8999D9FFE522A9AE70 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\reportdb.ppl
00:00:26.0643 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\reportdb.ppl - ok
00:00:26.0643 0x1390  [ 3CDE2911462FEC80064A409C07710C06, DBEC8669B1B8FA68750B17008C4328B223F8263EBE02C550780926C23D38D7D3 ] C:\Windows\System32\wbem\WmiPrvSD.dll
00:00:26.0643 0x1390  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
00:00:26.0643 0x1390  [ A4CC7227A452C4909F9499D91B184364, 56111E57D17553BE3EAB8DA2DC42C7132E4458549AFFC08975B7A7204D8F5E76 ] C:\Windows\System32\ncobjapi.dll
00:00:26.0643 0x1390  C:\Windows\System32\ncobjapi.dll - ok
00:00:26.0659 0x1390  [ B350509B6C9296529BC464C60FEEAEF1, CC653ED001FE6A2BE5A9687572A70CEF9FAB258A57896643379E5D6C1D8E4F1F ] C:\Windows\System32\wbem\wbemess.dll
00:00:26.0659 0x1390  C:\Windows\System32\wbem\wbemess.dll - ok
00:00:26.0659 0x1390  [ 45DF0EA46A032EC6B09A69EAAF648CD7, 9629A3E70681AA0880186A6F5388AA93B08B8FD68E34B525803A0888205D5992 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksnhelper.dll
00:00:26.0659 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksnhelper.dll - ok
00:00:26.0659 0x1390  [ B729D7178BB4E5A8C6626EB028CF7DE8, 0DFF5F9AEB0AFE932E5A4666CFA59B6E2EAD5BEC4FFEFA027B0B4E7FB08C3294 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\packed_io.dll
00:00:26.0659 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\packed_io.dll - ok
00:00:26.0659 0x1390  [ 2E9EE04A58990AA78E9FCE5877B0EF24, 725F0E5887ED61E080986D63047142D6BA40CCDD4CFBAFB35CF8DD716F498E47 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\processmonitor.dll
00:00:26.0659 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\processmonitor.dll - ok
00:00:26.0675 0x1390  [ 102D12912CE68C4535C196094D504CCB, 9322AA155E2ABC38991AB1E3A6070FD7B7F9713FB253D238E62F96E0DCF6AC6F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\excludemanager.dll
00:00:26.0675 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\excludemanager.dll - ok
00:00:26.0675 0x1390  [ 31328123BF7581298BFC4E46188A58C6, CBD2FF14D69D7BE14D8B68B06E234D91C6A36D6559EF9C08915D0A5F59EB677F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\sfdb.ppl
00:00:26.0675 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\sfdb.ppl - ok
00:00:26.0675 0x1390  [ 89231F82DE33B0B57B14BE21D231AF65, 4750BFD230AEA3F8179957B98FBA1FEF7458D2A80A7B8AB19E77D0FCF34F34C2 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\format_recognizer.dll
00:00:26.0675 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\format_recognizer.dll - ok
00:00:26.0675 0x1390  [ 6AD434E231734518DA1BC3923DD8EE53, DD43DCE9B483C012667499E238F501DFFE745A1BAF4774F2F40A40CAD56D0D9F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\lic.ppl
00:00:26.0675 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\lic.ppl - ok
00:00:26.0690 0x1390  [ BCB52877ECD041FB4B3292468558B106, 2ACDEABD4BDAE7FE36D75753C130D929F51BCDB9A5AC6C9AAA38550B77AF5346 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cbi.dll
00:00:26.0690 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cbi.dll - ok
00:00:26.0690 0x1390  [ 1A5CA707943EFBCACCB2652149B793F6, 578EAC2A836439AE867C7FAD633A3667BDCE9ED4929F9774B021AC6BCD92A30D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\hashmd5.ppl
00:00:26.0690 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\hashmd5.ppl - ok
00:00:26.0706 0x1390  [ 1A98C6BDE8E2FC093CFF2BE8DE6E9055, 0D107282C8AC243A4DDAA52F485AB9E859F448AE937D119C6886FE88C9DDADEB ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\threatsmanager.dll
00:00:26.0706 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\threatsmanager.dll - ok
00:00:26.0706 0x1390  [ 0577C58AEBBA4B6C6AA9224F6581DF27, 2CC8C123FF48F81A8D8F8AA47E340EBD0FF38097982EDA6DA44FDCDC5A0C65D3 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qb.ppl
00:00:26.0706 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qb.ppl - ok
00:00:26.0706 0x1390  [ CDAB8C6721D39B7D1A1C89575F5999DA, B1C3FEBA9DC8F2C98B14A3B252A65FA86231582ED550E8EA549AA2223BC293DA ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avs.ppl
00:00:26.0706 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avs.ppl - ok
00:00:26.0721 0x1390  [ 7418FBCE0863D8ED7966E0364D586644, A855BB079C1001F69CC8A55DA466E28F26A291512C654075F391690C76B0CE74 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dmap.ppl
00:00:26.0721 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dmap.ppl - ok
00:00:26.0721 0x1390  [ 5D8316954B2FBFCFDC534571BCAB17DD, 0616E2B1D19E48AE9C7727F4F3C6E2D274698EE2C9AB0269C899D4C0B87F2CDE ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_client.dll
00:00:26.0721 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_client.dll - ok
00:00:26.0737 0x1390  [ 95C04EA043FDF5B055A02DB404EB2929, 55AE0FBB3C7D7782846153B8EB7B5BFB041589FFAE6C0149AD0BBA80842F125B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\transport_provider.dll
00:00:26.0737 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\transport_provider.dll - ok
00:00:26.0737 0x1390  [ 012A22A626884CF63DC51792081DF46B, 44F5DAD7DC9B542384C89B5E68B5896A745126E976E4549E3512EF171B3F6064 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cryptostaticprovider.dll
00:00:26.0737 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cryptostaticprovider.dll - ok
00:00:26.0753 0x1390  [ 68DAEECEAD995D74278A8168F9A35699, A39131A24C4EC556F67659EEDB699EA07C21F6BE22D76C29AF3D93D3AEE90553 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\uds.dll.68daeecead995d74278a8168f9a35699
00:00:26.0753 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\uds.dll.68daeecead995d74278a8168f9a35699 - ok
00:00:26.0753 0x1390  [ 97C38E35655EBC8EE396D74690D1F699, 27FED4BEE4DE332746701411D95A0B4F5E3DB7D6246BC47E0C0E3F0AA50FE9F6 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\avengine.dll.97c38e35655ebc8ee396d74690d1f699
00:00:26.0753 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\avengine.dll.97c38e35655ebc8ee396d74690d1f699 - ok
00:00:26.0753 0x1390  [ 7AA539A1CBBFB4BAA644B9866F4BCF4B, C9134F52C6BCB5B6FBC7BB85B94191BBA0F6AD5DBDA7670FC5571BE46E286038 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavbase.kdl.7aa539a1cbbfb4baa644b9866f4bcf4b
00:00:26.0753 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavbase.kdl.7aa539a1cbbfb4baa644b9866f4bcf4b - ok
00:00:26.0768 0x1390  [ 52E35DD9E2E8C72BFFC1811C35400A36, AB9006965CCF1DEB913D8BA282C8135BC592EDB2F82DE27C9C86E90E233AD9BB ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavemu.kdl.52e35dd9e2e8c72bffc1811c35400a36
00:00:26.0768 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavemu.kdl.52e35dd9e2e8c72bffc1811c35400a36 - ok
00:00:26.0768 0x1390  [ 1A99F27DF9C8127F075EBAE512E2E0DB, AA9C50C0D9B3B3FCB319841E64024EE02F9BAD0AA92FAC104078822ACC79D0ED ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kjim.kdl.1a99f27df9c8127f075ebae512e2e0db
00:00:26.0768 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kjim.kdl.1a99f27df9c8127f075ebae512e2e0db - ok
00:00:26.0768 0x1390  [ A4C55DF46F9B4DF9760A8168C7ED770B, A7C1113731B9167EC05219C9721289CF915AA470EB906B01B7CFFD821E78756F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ucp_agent.dll
00:00:26.0768 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ucp_agent.dll - ok
00:00:26.0768 0x1390  [ 7957EC0F1536B620BCEAC0DCC413CA58, 5AE8F481493CECDC4CF857EC271F3E6A9C12811348C0DB0D16DE5DFB7857A9AB ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\mark.kdl.7957ec0f1536b620bceac0dcc413ca58
00:00:26.0768 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\mark.kdl.7957ec0f1536b620bceac0dcc413ca58 - ok
00:00:26.0784 0x1390  [ E773ED0C888BA4CD62C96A5EE02DEC93, F76A6C1330B2E59E3445FC1DDD0065BF19CAA47E6BAA82953FE34EDA2C582831 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\filesystem_services.dll
00:00:26.0784 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\filesystem_services.dll - ok
00:00:26.0784 0x1390  [ 75BC7021D19DABC13B3578597A15F843, BD58AC491F7C5EA28B27E704F58718749657278DA9D63EFD123DBD57F1631DD4 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\vlns.kdl.75bc7021d19dabc13b3578597a15f843
00:00:26.0784 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\vlns.kdl.75bc7021d19dabc13b3578597a15f843 - ok
00:00:26.0784 0x1390  [ 94C366B442C3ACCC919782CE5F0D7FD0, 79BFB66D83CC692A3A51271207DD0BA660A1492DE163409C2336CF88BA0E47F0 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\qscan.kdl.94c366b442c3accc919782ce5f0d7fd0
00:00:26.0784 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\qscan.kdl.94c366b442c3accc919782ce5f0d7fd0 - ok
00:00:26.0799 0x1390  [ B3C98AC7AE0BD36755FE4708A065AD18, D51EE9871765F979EA737C5168076BAD9090270A7EB33426CDC4CE46747D5E35 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pbs.kdl.b3c98ac7ae0bd36755fe4708a065ad18
00:00:26.0799 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pbs.kdl.b3c98ac7ae0bd36755fe4708a065ad18 - ok
00:00:26.0799 0x1390  [ 30C81975F2936E238DF8D58321600169, 2003F193835A6C0B9D0CA4266AE8D039546CA3BF04C2A3403F8F75ABCDC82250 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\plugins_facade.dll
00:00:26.0799 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\plugins_facade.dll - ok
00:00:26.0799 0x1390  [ EF2960EA49CACD970AFACE57BDC7650D, B4EB6B9C3A6F3826B632E632F6C0837A182D40FBCE84B2AAD624DD790048DCC4 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\arkmon.kdl.ef2960ea49cacd970aface57bdc7650d
00:00:26.0799 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\arkmon.kdl.ef2960ea49cacd970aface57bdc7650d - ok
00:00:26.0799 0x1390  [ 3CBCE9162519AE9D590238CB927FBB55, EE6EA5F6EDCE90E7120F9E90AA5FC4CF59694B38ABF0B94010CEDD2845DCC3DD ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavsys.kdl.3cbce9162519ae9d590238cb927fbb55
00:00:26.0799 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavsys.kdl.3cbce9162519ae9d590238cb927fbb55 - ok
00:00:26.0815 0x1390  [ 3888D02CE6413C2A06D903DE1C778BF5, 4158B80F3F481C8275DBA1361B49C34025F4B6DC154DB8237AB69665727516F7 ] C:\Windows\System32\msi.dll
00:00:26.0815 0x1390  C:\Windows\System32\msi.dll - ok
00:00:26.0815 0x1390  [ 59453C67A71C6A5DFA3AA0570D07B9FC, 9C7E3377918C040CFA643FAA7734B3C3E42B14CA9EBB5A56DDDDE3C8DE666034 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\stat.ppl
00:00:26.0815 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\stat.ppl - ok
00:00:26.0815 0x1390  [ 208CC0625B984EFC896A093C8852692B, 1E8ECDC9ACFDD9093B923FE9C1B178D3286FE5570982474A02BF207C9A9D17E5 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ac_facade.dll
00:00:26.0815 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ac_facade.dll - ok
00:00:26.0815 0x1390  [ 31C4D1F503B2D3216CB219A52FAC02ED, FB202419C3671DE855782B5AC6A83D09C8D8F8AEFEC65EC6FD21A5549833D5E0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\netwatch.ppl
00:00:26.0815 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\netwatch.ppl - ok
00:00:26.0831 0x1390  [ 1C18C63FDBA6D5A6F5C1F6D8611DF731, 1A57CECDECEAB300C5401FAA34989587D9750161881D31704654A666FD59ECE2 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\procmon.ppl
00:00:26.0831 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\procmon.ppl - ok
00:00:26.0831 0x1390  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\System32\wlanapi.dll
00:00:26.0831 0x1390  C:\Windows\System32\wlanapi.dll - ok
00:00:26.0831 0x1390  [ 250E75C744E3AF7D35C10A2C76DB0BFD, E25C6F891B4D468B56008E4FCFCBAA608AEB2413A54E3C3FB8D2200AA409BFB9 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\memmon.dll
00:00:26.0831 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\memmon.dll - ok
00:00:26.0831 0x1390  [ C96B4553047D850296590D267F6810F1, EDA606A34E724C164408F0DAEC493C5361D503B15DF3F60E1A2D401BFF274552 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\safe_banking.dll
00:00:26.0831 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\safe_banking.dll - ok
00:00:26.0846 0x1390  [ 541A83C8E5DB33A9E0E2D4A3FF0B8E25, 0232D7315A4291B0273AD6047BEF4AA0EBCFE8DC687706212AE233A4B50D2C96 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\oas.ppl
00:00:26.0846 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\oas.ppl - ok
00:00:26.0846 0x1390  [ E2F65916C9455544A897B9671DBE42F7, 5B4B9FBC18CEAB8232109F44F33DF39B67D4FB58ED0DA91E1CC4E10EBF263813 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\volenum.ppl
00:00:26.0846 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\volenum.ppl - ok
00:00:26.0846 0x1390  [ 0E2A7971C47A61EF430812931E1666E2, 72910B84B670049236FDC94F4D2E4307C35DC0B582E094C5F69E15B794C3029A ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\hips.ppl
00:00:26.0846 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\hips.ppl - ok
00:00:26.0862 0x1390  [ 3F39D46DAAC6316609F630C7BE5915BA, 04C5CB665D45BBA91CC28F50BEC5E6C86D2774F9F7C22FAE2D9D97F511D06427 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\appcat.ppl
00:00:26.0862 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\appcat.ppl - ok
00:00:26.0862 0x1390  [ E8E9A4E9C177B2185779D276EDD688B9, 784CFE2DDCA447AB0EF5A8D0A9279DE6A2162989C429DC8A55C2F06947F5383D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\integrity_control.dll
00:00:26.0862 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\integrity_control.dll - ok
00:00:26.0862 0x1390  [ 2211490FB020E26905AA119099B3E6F6, 119A63C2D448D2B919E205F649171E0972138C6E5512C661E6C6912D2212493E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\filecategorizer.dll
00:00:26.0862 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\filecategorizer.dll - ok
00:00:26.0862 0x1390  [ 86B33E4E3B4502051CE2697C2BE7C06C, 78AC25D9FE12E44398FCEFEE7F3467CDD971023B37FD4BB737CDBFCB1BDAEC37 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ahids.ppl
00:00:26.0862 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ahids.ppl - ok
00:00:26.0877 0x1390  [ 5710F99DFD16D78E00742A0F6F49B5B1, 0FE94726B19105588F033EFE669C0687FEFEEACF0CA65A3FDA7D01C309304935 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imc.ppl
00:00:26.0877 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imc.ppl - ok
00:00:26.0877 0x1390  [ 776A9A2237047219E580DEBD8677A424, EAA8E7EED9826655DCCEA9B14824CF6B5C90BF37B9AE68B6ABFB47577A7F3851 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ekasyswatch.dll
00:00:26.0877 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ekasyswatch.dll - ok
00:00:26.0877 0x1390  [ B0FD4FC1A05AC398617C54625DF17580, 3DDB832BFCC5DE2A502D14B13C5290476B2ADACA58D942C0D349004A312AAC67 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\sax_xml_parser.dll
00:00:26.0877 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\sax_xml_parser.dll - ok
00:00:26.0877 0x1390  [ 90B87FF4149EF420A648863C17E7ED29, 9A6777C94111FE7D02B7B297B60F10B099B296BEF12C18B7000100D6F7612CC4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\extlprtc.ppl
00:00:26.0877 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\extlprtc.ppl - ok
00:00:26.0893 0x1390  [ D750E3AC0595549B37EBC6D019873F5B, 4AB5C6DA1EE8A2E249A5E4B22F7D91195018FBDA0BBAD729EB9804274863A6E0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icqprtc.dll
00:00:26.0893 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\icqprtc.dll - ok
00:00:26.0893 0x1390  [ 69FF7F62698BAAF40E83EDDB75A1B24A, EFE2E177853D340940E460E6F3539AAFBCD2986D7FDFB1E7C3D6343BC505FE42 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mc.ppl
00:00:26.0893 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mc.ppl - ok
00:00:26.0893 0x1390  [ 817DDA8857B98D41AEC66B4D22610E2E, 2DD9AC352404DBE12C44B1F14ECAA059BC3D49938D8C335B0E736CD01536A1FB ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavasyswatch.dll.817dda8857b98d41aec66b4d22610e2e
00:00:26.0893 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavasyswatch.dll.817dda8857b98d41aec66b4d22610e2e - ok
00:00:26.0909 0x1390  [ 7BA04BB0037563B55D8D4AD5425FEAC2, F4A66E6C446E25BD7D36D94DA4BE507093E52C4F70C82DC1C4A9F769FEE43158 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\httpscan.ppl
00:00:26.0909 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\httpscan.ppl - ok
00:00:26.0909 0x1390  [ 0202DC6BFEA75560928B097C567A2F21, 7AF131C46465E0CFEC92359D028D3F86FBD3839F495BDA37C4EF59DCE2C6A0D4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\trafmon2.ppl
00:00:26.0909 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\trafmon2.ppl - ok
00:00:26.0909 0x1390  [ C82C44C46D6E0B7E23ACA8C87935239D, 23D1E0D53C5AB3B20A2430BF487F954D0B96BA0AFA5870BBF49319EB8F117904 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\finance_url_categorizer.dll
00:00:26.0909 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\finance_url_categorizer.dll - ok
00:00:26.0909 0x1390  [ 9FBB9EBEDF7251AB9E565CB5433E5EF7, B238F19DF9F583EB6478BABE10ADD5149D068388C03A9368A4C3BAF94053AFA7 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_statistics.dll
00:00:26.0909 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ksn_statistics.dll - ok
00:00:26.0924 0x1390  [ 2FCCDF17371E6C4B8085E32AE1D842CB, 73CD31762F25333213A03309A34A57E6B17C3D2C2156D82EC5CD8D76426C3770 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msnprtc.dll
00:00:26.0924 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msnprtc.dll - ok
00:00:26.0924 0x1390  [ 13A19B5BFDB47F5B871106EEEA79997B, 9AD5E71D4D7D7EC332984FE2DDDBD404DF72D1440EE94AF3FA809270DF305C9A ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\vulnerability_status_provider.dll
00:00:26.0924 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\vulnerability_status_provider.dll - ok
00:00:26.0924 0x1390  [ 9A9F9D2A7FF8BA975E6613E46017DC19, AA824177A019BB1E86BAEFEE6F84EC0F1E6C274979207FCEE60268C0B19BED9D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\smtpprtc.ppl
00:00:26.0924 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\smtpprtc.ppl - ok
00:00:26.0940 0x1390  [ FD4226A989C3378EEBFC217DC98AF133, 62DC19780C5E79DA8FD92ECE64A9812D5EA4E78D329AC7DE1C40215B2D6655D0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\jbrprtc.dll
00:00:26.0940 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\jbrprtc.dll - ok
00:00:26.0940 0x1390  [ 65879F90A0E3BCCBB10CA2C23B880154, 7F1D1BAA0FDA883CF24A8A0AF06BE7661A99939414A978707B62FE090F549242 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\webnetstat.ppl
00:00:26.0940 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\webnetstat.ppl - ok
00:00:26.0940 0x1390  [ A98C803229775DA4E17590FAB742E3AE, 2D3AE76598920DEC3EC0A4742FB2B250C4CA9BE56B7BFAAB3636F9A47FC5D77A ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\swpragueplugin.dll
00:00:26.0940 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\swpragueplugin.dll - ok
00:00:26.0940 0x1390  [ 93FDB0D9049B0B575A1C835664D7CD75, BD27995BE92197848B52AD4A172B87B6F816A4A427848B1E81D93D008E3CE591 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ircprtc.dll
00:00:26.0940 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ircprtc.dll - ok
00:00:26.0955 0x1390  [ CED8CC7E9AC262C46ED8B66072C6FBBC, 4F93FC90BC62800B81A7CD50EEA591171183936EABBD1089641205BC1516A9C2 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\pop3prtc.ppl
00:00:26.0955 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\pop3prtc.ppl - ok
00:00:26.0955 0x1390  [ 9F0CFFD667F5FDD67A46731CE7597E8B, EDA4E7A7E1D75ECA53F66F1532007CDF7BD60B95EEAB98E363ECC111682DBFC6 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\yhoprtc.dll
00:00:26.0955 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\yhoprtc.dll - ok
00:00:26.0955 0x1390  [ 331EAE0B28BFD9FCF0D2C2B7C8CCAD3F, F2BF038B86FD95FD05B827C1A1B8B6E4E24BEC3D1CB1EFE0B95B72094E78EF71 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dns_client.dll
00:00:26.0955 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dns_client.dll - ok
00:00:26.0971 0x1390  [ 58CB797C94BD07ABB1E309DE4DE505C5, 82A10EE66972BA2FD2B4066C109C3545D64C733D9CA7CF2ECF528063E2935341 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imapprtc.ppl
00:00:26.0971 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imapprtc.ppl - ok
00:00:26.0971 0x1390  [ 551315671EB76C685A4CB13F1837E8AA, DEFC1587445B4773D370BAF113E7FFD1E89745C18459BB5DC3578D84016ED8D7 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mmpprtc.dll
00:00:26.0971 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mmpprtc.dll - ok
00:00:26.0971 0x1390  [ 78413ED46210C1A16F0D5C1EA30FC588, 7708A1EED4F4473295AD995D14EE27F3653D974A92175ED17E20776AD1AB0554 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_anti_malware_facade.dll
00:00:26.0971 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_anti_malware_facade.dll - ok
00:00:26.0971 0x1390  [ 6C5EAD61EB2A70A70B9D61977465591D, 219919068DFCA2F724452998AD9196670D6F341508C07A9A8D78675DA06405EE ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\network_services.dll
00:00:26.0971 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\network_services.dll - ok
00:00:26.0987 0x1390  [ EF099B2AFEF2F3EC323EA3B379B49595, 255BA58A3A8FA4D044F9F6EDC707004D4984440BDA94447E8BB9BC110F5594A3 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\antispam.ppl
00:00:26.0987 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\antispam.ppl - ok
00:00:26.0987 0x1390  [ FF5761096FA12B1344CD307FE3A77C8F, 63CE2748C7F430DDB8BB60FC7EA42D49A6F08C30141ED1E5EF7765D6FE8EA191 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\httpanlz.ppl
00:00:26.0987 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\httpanlz.ppl - ok
00:00:26.0987 0x1390  [ 7EDFDA27D9DBB338D06995788795BF9F, E74BFF36F88B17265D1570B6FE2008251E9610924C6E90BF9B79A94B24D3E1B4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\nntpprtc.ppl
00:00:26.0987 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\nntpprtc.ppl - ok
00:00:26.0987 0x1390  [ 511AEA8DA75082728E52BBB012A8ACE7, E736C8EC3315C982449C97DC3FE8886B4BFC736842029F5C015685874B0E8267 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\aphishex.ppl
00:00:26.0987 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\aphishex.ppl - ok
00:00:27.0002 0x1390  [ 2CE2C4040E097BB1AE2D9E6966568310, 447CB8DC5195FB5A3796AAD137C9C77CDFFC65166300EC5D0FA74D0DC3E458F4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\traffic_processing_product_facade.dll
00:00:27.0002 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\traffic_processing_product_facade.dll - ok
00:00:27.0002 0x1390  [ D6A8DF0FE5FF5656D2FD436C3CB1D1D1, FFACFB5BFD64C2BD6C912F4A9C61C7C9D4A2BB754F6BA0E794D98EC4D1F36234 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\proxydet.ppl
00:00:27.0002 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\proxydet.ppl - ok
00:00:27.0002 0x1390  [ C2E80F0F0B97F67A5995CDB63D91BC24, 6956FA6BB4909E7AE7846278E1B54B455BF3B62EC7FEAC41852CFDFF461B94F0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\updater.dll
00:00:27.0002 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\updater.dll - ok
00:00:27.0002 0x1390  [ 7DD5EE010FBF4088156A3F3D747FF0E2, 46A58770C489F08DC021A0B8FFBBCA4F0A7628BE128C7F8B1A4D7FE3FBCAEC68 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\diffs.dll
00:00:27.0002 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\diffs.dll - ok
00:00:27.0018 0x1390  [ 91A8F92D4F9C57820C294ED2E36127A2, E50EF9833A954E7D0375D0E48EBDC7DB170CD6464012063C39427872B838BBC7 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_prague_adapter.ppl
00:00:27.0018 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_prague_adapter.ppl - ok
00:00:27.0018 0x1390  [ A0EDB24A88A07263BF922F2939AAC065, 5BCDE6F2CAD720D4ECA5DC3CBCEC3466D74BC4085370ED64A947D2CC5881F827 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ftpprtc.dll
00:00:27.0018 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\ftpprtc.dll - ok
00:00:27.0018 0x1390  [ 5532BECA481B40DB38F2CA000086A7EB, A3C30C5C981F27B852AFACF74DCABB8439667DA683C363BBE26C5629B8437484 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_response_provider.dll
00:00:27.0018 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cf_response_provider.dll - ok
00:00:27.0033 0x1390  [ 9BDEEA2C0F801412D3AEA8A6F6BF8D42, AEE5BFCC0FE659E6D456B481E51ACD5F6FAA1608E770F4D92408DA1BCF404264 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\anti_phishing_http_filter.dll
00:00:27.0033 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\anti_phishing_http_filter.dll - ok
00:00:27.0033 0x1390  [ D6262DE2093155699C6B52D7E3BBE73C, 209236E93147B69EDB633729C682CD7EF2E19C22307AF734340C8759FD182C7D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\url_processing.dll
00:00:27.0033 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\url_processing.dll - ok
00:00:27.0033 0x1390  [ A87F26388E5A426823854E733F77FFCB, D111E378E458236F71A2EF645EC7F1570B54265CF37129FCD685117EC433B8C4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\office_antivirus_facade.dll
00:00:27.0033 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\office_antivirus_facade.dll - ok
00:00:27.0033 0x1390  [ 3E8B21CF357ECEFE6529658C1AE62636, 80537FE11E634D977173662C4164A7C01DB75FF1E56D63788EAE62E6D00FC4F3 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pdm.kdl.3e8b21cf357ecefe6529658c1ae62636
00:00:27.0033 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pdm.kdl.3e8b21cf357ecefe6529658c1ae62636 - ok
00:00:27.0049 0x1390  [ 7B5ED3CA6D3D7225B866AF3C09484FEC, CE769D739EF466014F7BD425FAE83B9397E41A83735F54425C9ADECD7184FDA3 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\bsshlp2.kdl.7b5ed3ca6d3d7225b866af3c09484fec
00:00:27.0049 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\bsshlp2.kdl.7b5ed3ca6d3d7225b866af3c09484fec - ok
00:00:27.0049 0x1390  [ DF0B8EC405E6F1BC83FD4669A4225FA5, 9ACC1B29B0E5E3F80E208C0C045470DD90F042CDDDED54D96AF4A2ECD7125CE0 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\sys_critical_obj.dll
00:00:27.0049 0x1390  C:\ProgramData\Kaspersky Lab\AVP13\Bases\sys_critical_obj.dll - ok
00:00:27.0049 0x1390  [ 748CAEEBD567FC8A48119F7F71E59D76, 55344B2B82CF4BDED58FDD4F6BD1071F794D45A9C819460F27DC7526C2EF7CD0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmi32.exe
00:00:27.0049 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmi32.exe - ok
00:00:27.0049 0x1390  [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\System32\wscisvif.dll
00:00:27.0049 0x1390  C:\Windows\System32\wscisvif.dll - ok
00:00:27.0065 0x1390  [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\System32\wscapi.dll
00:00:27.0065 0x1390  C:\Windows\System32\wscapi.dll - ok
00:00:27.0065 0x1390  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
00:00:27.0065 0x1390  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
00:00:27.0065 0x1390  [ 0691E79EB581DB367826FD8E23E6A877, BC3ED2D1FE74784D322067335028285112B8D67BE95B368BBE29B9812D26AFD0 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\minizip.ppl
00:00:27.0065 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\minizip.ppl - ok
00:00:27.0065 0x1390  [ 7E5447320423A77C168123F8277372AF, 6C90E4156C68673115C3FF27DA99AFD72EEA80A29A039583779C1D6ADCC3094D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\uniarc.ppl
00:00:27.0065 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\uniarc.ppl - ok
00:00:27.0080 0x1390  [ 917CF3BFEC250EE36A1D2F6B4176F634, 8D6123C1374ABB706146BF3D8E782E301CAF6E9DFFA6143BA99B1ED76C601707 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cab.ppl
00:00:27.0080 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\cab.ppl - ok
00:00:27.0080 0x1390  [ D88B83632EAF807E7C598597A2AB40EC, BC36653FB9B7954F84300CA30F6DA4F0D39EE809359645A8E2046BD0D39C1BA9 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\arj.ppl
00:00:27.0080 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\arj.ppl - ok
00:00:27.0080 0x1390  [ CCF7343CA7C0F0745096AA3ABD8DB04A, CFA4461AAD4CD73C0BA6F4D0DEA4A188B3E97361F8A0F77EED6B3057D928C71E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\lha.ppl
00:00:27.0080 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\lha.ppl - ok
00:00:27.0096 0x1390  [ 0095B1EA8C9031761B12E1699D1159C2, 00E1421E17DB53C1FAC92C62045FAB1D701E9A0F9496437C0984D1E3D88DE95E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\rar.ppl
00:00:27.0096 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\rar.ppl - ok
00:00:27.0096 0x1390  [ 0FC9074C30B9838A4AF677F7DE8A9641, EAE1A0535B71FD5BAA29A99105415EA3340CD3BEE168E67B693D27BDA3D0E627 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mdb.ppl
00:00:27.0096 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mdb.ppl - ok
00:00:27.0096 0x1390  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6, 4F40D5CCE264290C8DD73A5766062A55ED4CF77D8F6B59D453DDB6F88B640D7E ] C:\Windows\System32\mapi32.dll
00:00:27.0096 0x1390  C:\Windows\System32\mapi32.dll - ok
00:00:27.0096 0x1390  [ 9B812C9BF0DB58B5F4FA72781597C747, 908DA8CF4A775B98287700F2F0BCDCAA0B270F67C82D25FD28DB7BEEA50C2A86 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mailmsg.ppl
00:00:27.0096 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\mailmsg.ppl - ok
00:00:27.0111 0x1390  [ 2B37BF85F89DE45E6AC420F5DB5BFA5E, EB84895056EF7983071569BF945574F2561242DA2F3B2389A268D63E3C827629 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msoe.ppl
00:00:27.0111 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\msoe.ppl - ok
00:00:27.0111 0x1390  [ 97ADBCD478DCB01FD7C15D50960F81E9, 743349847691BB993AAC1465223F099738798A85822BDAADAD05133838A7CB5A ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wdiskio.ppl
00:00:27.0111 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wdiskio.ppl - ok
00:00:27.0111 0x1390  [ 5C3F9DBA818CD93379D1A0F215270374, 6A4D96AC83989D47D80332E41E627F2607A3B2167E1A5D8E21361136C4424633 ] C:\Windows\System32\esent.dll
00:00:27.0111 0x1390  C:\Windows\System32\esent.dll - ok
00:00:27.0111 0x1390  [ F148865E4AC4F715E322EA06E6E21D84, 88CF0A1CB18BA9CA3D356EAF2F7EF8892CDDD9BF55798E64E4351C1ED111575A ] C:\Windows\System32\wbem\NCProv.dll
00:00:27.0111 0x1390  C:\Windows\System32\wbem\NCProv.dll - ok
00:00:27.0127 0x1390  [ 74AF6AA2E8B3180AADAE5FE8813CB1CD, FB1C334A76B4E51B1C91141CB7E8B435FE4A8403072112B5F1BAC917649FFC22 ] C:\Windows\System32\localspl.dll
00:00:27.0127 0x1390  C:\Windows\System32\localspl.dll - ok
00:00:27.0127 0x1390  [ 629181C26A78EB66B0B4E774E5AC2882, DE39D01ADC4123C81EF77B24D7FC2F66C27CC2D31248EF53C52CD31AC90A95CE ] C:\Windows\System32\spoolss.dll
00:00:27.0127 0x1390  C:\Windows\System32\spoolss.dll - ok
00:00:27.0127 0x1390  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\System32\winspool.drv
00:00:27.0127 0x1390  C:\Windows\System32\winspool.drv - ok
00:00:27.0127 0x1390  [ 03CF941D031F30272D3063E5A4D686F5, 641189DA98156FC8DFABF766EB34726F64E5901AF5F74B42C392C218C892F179 ] C:\Windows\System32\PrintIsolationProxy.dll
00:00:27.0127 0x1390  C:\Windows\System32\PrintIsolationProxy.dll - ok
00:00:27.0143 0x1390  [ 84E4921CB4EC576985E02AAC800E8A3F, A33144BA7807425D30B48FD9EBC35764D6A9BEB4DA0C5FF19A0C8C3956C1D69B ] C:\Windows\System32\CNCALC2.DLL
00:00:27.0143 0x1390  C:\Windows\System32\CNCALC2.DLL - ok
00:00:27.0143 0x1390  [ 89D008942E78CD36097657991FBAD61E, F1F22158D96D409924ABAA7ACA08FA930B4722BF00B29AF254600B578C4021E7 ] C:\Windows\System32\CNMLMC2.DLL
00:00:27.0143 0x1390  C:\Windows\System32\CNMLMC2.DLL - ok
00:00:27.0143 0x1390  [ B0CCE15E9A93C09152C6C84637651E81, 61F3D614899F85FF6A8F6CD3E8A2C25E482A6E01700C9E5282B2D26BE83CB1A4 ] C:\Windows\System32\CNMNPPM.DLL
00:00:27.0143 0x1390  C:\Windows\System32\CNMNPPM.DLL - ok
00:00:27.0143 0x1390  [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\System32\regsvr32.exe
00:00:27.0143 0x1390  C:\Windows\System32\regsvr32.exe - ok
00:00:27.0158 0x1390  [ 373EEE6FFCAD359FF9C058DFED2728D6, EC0039CA44D124949EED0EC0EA59CBEA22A2B8106CAA72E7B148F92D07CC26ED ] C:\Windows\System32\dopdfmn7.dll
00:00:27.0158 0x1390  C:\Windows\System32\dopdfmn7.dll - ok
00:00:27.0158 0x1390  [ 126F8331BD023178C7F0EF2F5EDE16B3, F56DDCC9F282274F2EB073CE33B0CAB7EFC759B9C39B19909FE901E89DA0307F ] C:\Windows\System32\FXSMON.dll
00:00:27.0158 0x1390  C:\Windows\System32\FXSMON.dll - ok
00:00:27.0158 0x1390  [ B390C1D825C7687493BEDE237C6C2F25, 969C456E52695E8AECDDF80995F05D18F6F686AA1AE58A9A661C3069CDF5B1BD ] C:\Windows\System32\tcpmon.dll
00:00:27.0158 0x1390  C:\Windows\System32\tcpmon.dll - ok
00:00:27.0158 0x1390  [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\System32\snmpapi.dll
00:00:27.0158 0x1390  C:\Windows\System32\snmpapi.dll - ok
00:00:27.0174 0x1390  [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll
00:00:27.0174 0x1390  C:\Windows\AppPatch\AcGenral.dll - ok
00:00:27.0174 0x1390  [ 6357E2B68753A1F5CF4A68A25C4FD14A, F56BFEEACBB9DAE084F4C275DF0086091F5B83DE7183FA33F4445CD31FBB44E3 ] C:\Windows\System32\wsnmp32.dll
00:00:27.0174 0x1390  C:\Windows\System32\wsnmp32.dll - ok
00:00:27.0174 0x1390  [ 923CDD30092DB73EC4A0EBCDDD16C686, 83F94BE7C324FFADCA13780C617A8CAA1C7CD80F205EACA8FBADA83865D1E0D3 ] C:\Windows\System32\usbmon.dll
00:00:27.0174 0x1390  C:\Windows\System32\usbmon.dll - ok
00:00:27.0174 0x1390  [ A8EB761DE499242BECF153B2B34F020E, 3C6F477B5143FCE607FDB088AE471C7037E2BAC01D8CE8C57B5CF1BE57E78D46 ] C:\Windows\System32\WSDMon.dll
00:00:27.0174 0x1390  C:\Windows\System32\WSDMon.dll - ok
00:00:27.0189 0x1390  [ F34CFADA6C48DAA41B996D24C7D8D3CA, D294DECC607A6ED7264BEC41FDA3BF12D3F2B3FAFAF55F0C5F2235A9066C97EC ] C:\Windows\System32\fdPnp.dll
00:00:27.0189 0x1390  C:\Windows\System32\fdPnp.dll - ok
00:00:27.0189 0x1390  [ CD72C6406BA561BED6D42CB145E55307, F5DD79FCE5CAA5049C74462B366509356B8B5CCB68E14586ED95CDF98F307787 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
00:00:27.0189 0x1390  C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
00:00:27.0189 0x1390  [ 7C5B922771F577DCFCD3EE9E6911A823, 38FC9A860C4E8257D208A8CC4C292DC77A8F553E06766CB401DB53FC0536ABFA ] C:\Windows\System32\spool\prtprocs\w32x86\CNMPDC2.DLL
00:00:27.0189 0x1390  C:\Windows\System32\spool\prtprocs\w32x86\CNMPDC2.DLL - ok
00:00:27.0189 0x1390  [ FC415B303B1ECF80B5F130A1F7203D02, ACC51D8CCF02E5EFB495BF66538B5F42CFFE5A186BC5762CC286E98509FC5DC4 ] C:\Windows\System32\win32spl.dll
00:00:27.0189 0x1390  C:\Windows\System32\win32spl.dll - ok
00:00:27.0205 0x1390  [ C7E689F0E6BD4CFDC669B1BAD3CA3AE6, 87CB8E7FE9F5CC79BBA4193644C90A38734D57C3B770356529B6BA86EB05F1A4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\scrchpg.dll
00:00:27.0205 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\scrchpg.dll - ok
00:00:27.0205 0x1390  [ D27DDE7E0444C7F1819F958469EB7D93, EA13616D78F17CCFD77603F7EE2DDDD159100AA3DF78C1FAAEB4695D5AC7218A ] C:\Windows\System32\inetpp.dll
00:00:27.0205 0x1390  C:\Windows\System32\inetpp.dll - ok
00:00:27.0205 0x1390  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\System32\cscapi.dll
00:00:27.0205 0x1390  C:\Windows\System32\cscapi.dll - ok
00:00:27.0205 0x1390  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:00:27.0205 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
00:00:27.0221 0x1390  [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\System32\msvcr110_clr0400.dll
00:00:27.0221 0x1390  C:\Windows\System32\msvcr110_clr0400.dll - ok
00:00:27.0221 0x1390  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\System32\mscoree.dll
00:00:27.0221 0x1390  C:\Windows\System32\mscoree.dll - ok
00:00:27.0221 0x1390  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] C:\Windows\System32\sppsvc.exe
00:00:27.0221 0x1390  C:\Windows\System32\sppsvc.exe - ok
00:00:27.0221 0x1390  [ D16D818E9930A6E5B4F6476DD0998D1A, 11284FBAE473325322DA0CA6F9317B9A700A666D6D907BBBC812FD0E7BE7FE67 ] C:\Windows\System32\drivers\spsys.sys
00:00:27.0221 0x1390  C:\Windows\System32\drivers\spsys.sys - ok
00:00:27.0236 0x1390  [ 3A11396EAC2414012155AB14E5C1E332, 27B2DF1C2980098025EC43B354C150BA1CE795F1138DFC03C763A115BBF77010 ] C:\Windows\System32\sppwinob.dll
00:00:27.0236 0x1390  C:\Windows\System32\sppwinob.dll - ok
00:00:27.0236 0x1390  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] C:\Program Files\Windows Defender\MpSvc.dll
00:00:27.0236 0x1390  C:\Program Files\Windows Defender\MpSvc.dll - ok
00:00:27.0236 0x1390  [ 5B8E80EC0D621CDF920AB2141CDBC733, CDF4BD7BE5B6ADEDD06448DCDCF9FCA6FA9EC57788342FF42D0EF09F651C3245 ] C:\Program Files\Windows Defender\MpClient.dll
00:00:27.0236 0x1390  C:\Program Files\Windows Defender\MpClient.dll - ok
00:00:27.0236 0x1390  [ 421D9645B72CD341ECDBB0FCE06C97DE, C2F0DF431E526A8F6F3F521E1BD26838A6A7B5F8E5DBDD044871815DBC5FF6B1 ] C:\Windows\System32\sppobjs.dll
00:00:27.0236 0x1390  C:\Windows\System32\sppobjs.dll - ok
00:00:27.0252 0x1390  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
00:00:27.0252 0x1390  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
00:00:27.0252 0x1390  [ 5CF15474FFDB5005E54958DF6EDD97AB, D4DBB3AACBB7679948258FFC53472FE8B5D0B3EC06D572EE2BDBF45CE608D86D ] C:\Windows\System32\wmdrmdev.dll
00:00:27.0252 0x1390  C:\Windows\System32\wmdrmdev.dll - ok
00:00:27.0252 0x1390  [ C1140AAB50F59C68394CE4C4046A9A8D, 49F485CA03ED7C640328F471B970C93A4513BF37242298F3A71D68DFB55740B3 ] C:\Windows\System32\drmv2clt.dll
00:00:27.0252 0x1390  C:\Windows\System32\drmv2clt.dll - ok
00:00:27.0252 0x1390  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] C:\Windows\System32\wscsvc.dll
00:00:27.0252 0x1390  C:\Windows\System32\wscsvc.dll - ok
00:00:27.0267 0x1390  [ 2C5D7D6C3C3E998306F0BFD7FF7114B9, 6D0166C56968C03F154DCDB4C88EA75556C13967EE5380A925154DB0ACEE1DA1 ] C:\Windows\System32\blackbox.dll
00:00:27.0267 0x1390  C:\Windows\System32\blackbox.dll - ok
00:00:27.0267 0x1390  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\System32\dbghelp.dll
00:00:27.0267 0x1390  C:\Windows\System32\dbghelp.dll - ok
00:00:27.0267 0x1390  [ 236F286E103FD44BD85FDD93097FD5DD, C369C98E76FEFBB05A12ABEECCF89C75132419B56866ED9AB77F61F84BA62785 ] C:\Windows\System32\SearchIndexer.exe
00:00:27.0267 0x1390  C:\Windows\System32\SearchIndexer.exe - ok
00:00:27.0267 0x1390  [ 1B0EC94520CAB89A9CE1B2DA405166AF, 129102C98C8B3D403C85604C9A2AFC0471CDB1212FD2C5487D73FC089FC88F0C ] C:\Windows\System32\p2pcollab.dll
00:00:27.0267 0x1390  C:\Windows\System32\p2pcollab.dll - ok
00:00:27.0267 0x1390  [ 954EA9B34F155C844B11F4047A8F6F89, 44703118AE57D44C802DFA5619DC1CA55C5C046D666CE546E5870D722786E395 ] C:\Windows\System32\upnp.dll
00:00:27.0267 0x1390  C:\Windows\System32\upnp.dll - ok
00:00:27.0283 0x1390  [ 465DBF63A5049E4DB4BC5C12FFE781CB, D12F6A9FB92144B2CFFD28BD72C234BA42F882EF22122DB83CE5EB1B8EBE9017 ] C:\Windows\System32\tquery.dll
00:00:27.0283 0x1390  C:\Windows\System32\tquery.dll - ok
00:00:27.0283 0x1390  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] C:\Windows\System32\QAGENTRT.DLL
00:00:27.0283 0x1390  C:\Windows\System32\QAGENTRT.DLL - ok
00:00:27.0283 0x1390  [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2, FC71F6CC24FE61BF83DD3E237C00DD0002D84DC303DB9570B241BF8212B8639D ] C:\Windows\System32\fveui.dll
00:00:27.0283 0x1390  C:\Windows\System32\fveui.dll - ok
00:00:27.0283 0x1390  [ 0241CB16136B9A4939CA0395768AE286, E7A3A0BDB4AC4BD718C93BE650541F96603739BDB3DB6860665DCC073DA8007D ] C:\Windows\System32\mssrch.dll
00:00:27.0283 0x1390  C:\Windows\System32\mssrch.dll - ok
00:00:27.0299 0x1390  [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] C:\Windows\System32\wuaueng.dll
00:00:27.0299 0x1390  C:\Windows\System32\wuaueng.dll - ok
00:00:27.0299 0x1390  [ 81600E2E27ED61427AAD865B9BCDDB9D, 0D7D39C0A5A2C24FAADCA41658A1C62D13180B462C78103BDF6DBD76B64DD79A ] C:\Windows\System32\msidle.dll
00:00:27.0299 0x1390  C:\Windows\System32\msidle.dll - ok
00:00:27.0299 0x1390  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] C:\Windows\System32\ssdpsrv.dll
00:00:27.0299 0x1390  C:\Windows\System32\ssdpsrv.dll - ok
00:00:27.0299 0x1390  [ 867148EBF47E7E7E7B21C07B4A981929, 3272520CAFC13684F4AA5A3CFA996736B025D48A4DFB90F3A3BC230A450776EC ] C:\Windows\System32\wuapi.dll
00:00:27.0299 0x1390  C:\Windows\System32\wuapi.dll - ok
00:00:27.0314 0x1390  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\System32\cabinet.dll
00:00:27.0314 0x1390  C:\Windows\System32\cabinet.dll - ok
00:00:27.0314 0x1390  [ 255F0417EC31C71585824269522EC8E9, EE25FB9239FF8C696CEC94F5C8036A2977788E47C12E848E320CC8C521BF5F36 ] C:\Windows\System32\wups.dll
00:00:27.0314 0x1390  C:\Windows\System32\wups.dll - ok
00:00:27.0314 0x1390  [ 089B5F924E96BA9C40E4E4522BF43770, F89434E0129FDA710BB9817C5D104415E7642A40B66969F577370761B1C45B4B ] C:\Program Files\Windows Defender\MpRTP.dll
00:00:27.0314 0x1390  C:\Program Files\Windows Defender\MpRTP.dll - ok
00:00:27.0314 0x1390  [ 401D25136E26B237D77DA1BF1198B3BD, 382F977D56683367E095C7B3249708CA412E12AF18C19958470C2256EB9E4082 ] C:\Windows\System32\tdh.dll
00:00:27.0314 0x1390  C:\Windows\System32\tdh.dll - ok
00:00:27.0330 0x1390  [ D26B73F34CD1B70C77EADC04438344B3, 6B79E9CB30A0A433486CAA03A2735E65530AD2170BF42840F86086F0B5F08F06 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1870F8A-24C4-443B-8150-427F6EDFEE90}\mpengine.dll
00:00:27.0330 0x1390  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1870F8A-24C4-443B-8150-427F6EDFEE90}\mpengine.dll - ok
00:00:27.0330 0x1390  [ 152FCD9B979D70FDB703A28152B634EA, 0F29CF84D1CA0D7E3318F86CE3345B97F5D7CBCE92F4F8A1DEFA682837CDE3D8 ] C:\Windows\System32\wmp.dll
00:00:27.0330 0x1390  C:\Windows\System32\wmp.dll - ok
00:00:27.0330 0x1390  [ 6556819CD55CE306D7FF546E1DF680D6, 2B7068963E59C1FDF2ABB60F3FF8A133028E2F1484D1F7B9482F52C799487A0C ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1870F8A-24C4-443B-8150-427F6EDFEE90}\mpasbase.vdm
00:00:27.0330 0x1390  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1870F8A-24C4-443B-8150-427F6EDFEE90}\mpasbase.vdm - ok
00:00:27.0330 0x1390  [ A7DD5C1F29877A473265D4B98B3495ED, 557E7B6BA35D87488B59AC7EC1ACC8B42886468E23E5490D5FD1127175AC504B ] C:\Windows\System32\wmploc.DLL
00:00:27.0330 0x1390  C:\Windows\System32\wmploc.DLL - ok
00:00:27.0345 0x1390  [ C2BA62EE92527A3CE2F2FE0892319C9D, 8866DE84316AB1D6F72A83026B31892DED6D8CE3C4F6711F50CC367B21714BF9 ] C:\Program Files\Internet Explorer\ieproxy.dll
00:00:27.0345 0x1390  C:\Program Files\Internet Explorer\ieproxy.dll - ok
00:00:27.0345 0x1390  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
00:00:27.0345 0x1390  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
00:00:27.0345 0x1390  [ 3F2B83695E5BF11930C16AF50E991F96, 339535078CDDEF3B0C7C749E7C53634C3B1C7FF18E808F118E1DF36D748A6E15 ] C:\Windows\System32\wmpps.dll
00:00:27.0345 0x1390  C:\Windows\System32\wmpps.dll - ok
00:00:27.0345 0x1390  [ 7B97346CE563B74BBCC120FC83E5A6D9, 03D8BE3F69A02EF22C50365A236CCD56D3A53580B332D1AF51B5560FCB7CD7FD ] C:\Windows\System32\wmpmde.dll
00:00:27.0345 0x1390  C:\Windows\System32\wmpmde.dll - ok
00:00:27.0361 0x1390  [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E, B1F7FCDA2C8D81CB3661F014745E00423CDDA99AD7909C7BB52DBFA414F2F23D ] C:\Windows\System32\WinSATAPI.dll
00:00:27.0361 0x1390  C:\Windows\System32\WinSATAPI.dll - ok
00:00:27.0361 0x1390  [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\System32\dxgi.dll
00:00:27.0361 0x1390  C:\Windows\System32\dxgi.dll - ok
00:00:27.0361 0x1390  [ CBBD4D79EEC3EF5A4ADAE9697944C6B9, 5A642C6C384E69F4B25FFF250EFC8ED4FC6398132C811CBA8B5144F20F0CC621 ] C:\Windows\System32\MSMPEG2ENC.DLL
00:00:27.0361 0x1390  C:\Windows\System32\MSMPEG2ENC.DLL - ok
00:00:27.0361 0x1390  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\System32\devenum.dll
00:00:27.0361 0x1390  C:\Windows\System32\devenum.dll - ok
00:00:27.0377 0x1390  [ 233B1E8832285903166A0BC7DE2014A1, 44D95114CB023D6C6F9A239986CFEE59F77A73A8F0D01CBCA3D4355982D57ACD ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1870F8A-24C4-443B-8150-427F6EDFEE90}\mpasdlta.vdm
00:00:27.0377 0x1390  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1870F8A-24C4-443B-8150-427F6EDFEE90}\mpasdlta.vdm - ok
00:00:27.0377 0x1390  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] C:\Windows\System32\upnphost.dll
00:00:27.0377 0x1390  C:\Windows\System32\upnphost.dll - ok
00:00:27.0377 0x1390  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7, CBE2392792D209E15E44AC29E906FFDD5FBF6EED8BAB0D97D66E109AB2C5C56E ] C:\Windows\System32\wbem\WmiPrvSE.exe
00:00:27.0377 0x1390  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
00:00:27.0392 0x1390  [ C6B0509AA89F656247694E2D6ABF7255, 5E8ABE4B83590E499C418D79FAB152AD3B0FD01E94F137B192518D6DD24E5D97 ] C:\Windows\System32\wbem\wmiprov.dll
00:00:27.0392 0x1390  C:\Windows\System32\wbem\wmiprov.dll - ok
00:00:27.0392 0x1390  [ 230EA9ABBC3432CDE388F4891E76E867, 97B169AE84128FE9986BCD70C92FCBA8EB8C814F1C8FD7923BF34B3B984B2745 ] C:\Windows\System32\udhisapi.dll
00:00:27.0392 0x1390  C:\Windows\System32\udhisapi.dll - ok
00:00:27.0392 0x1390  [ 3CA5D661E6C5DDE5574D02F324C32E53, 24035EEDFA68FF23829937E76BD2015EC765269BE78DA34865700155F9F7ED1D ] C:\Program Files\Windows Defender\MsMpLics.dll
00:00:27.0392 0x1390  C:\Program Files\Windows Defender\MsMpLics.dll - ok
00:00:27.0392 0x1390  [ 7DF186D86CF8C571A12AAB788C777F84, A2C1064BFDEF2A85CB12A11E55728BCC09933C115C278403F07B27DB2C36C710 ] C:\Windows\System32\wscproxystub.dll
00:00:27.0392 0x1390  C:\Windows\System32\wscproxystub.dll - ok
00:00:27.0408 0x1390  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\System32\linkinfo.dll
00:00:27.0408 0x1390  C:\Windows\System32\linkinfo.dll - ok
00:00:27.0408 0x1390  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F, 6BEAF5AFC98961190B004E8DE57CD5F9F39117287AE18D59DDB2EC5C0A0C6622 ] C:\Windows\System32\networkexplorer.dll
00:00:27.0408 0x1390  C:\Windows\System32\networkexplorer.dll - ok
00:00:27.0408 0x1390  [ D6692338B985D4A0CA52B828314D897D, CB0B7C84C1E2782A95489E2F4D2AF4CFDAC02676B76F49FF7D6A7091739EA25D ] C:\Windows\System32\drprov.dll
00:00:27.0408 0x1390  C:\Windows\System32\drprov.dll - ok
00:00:27.0408 0x1390  [ D7B7159BC8374E87D8C45A30377A3440, 0B68B6E7C35280D502BF05177ADADE2EE35D4D5307C3D1EE2635879BA06D904D ] C:\Windows\System32\ntlanman.dll
00:00:27.0408 0x1390  C:\Windows\System32\ntlanman.dll - ok
00:00:27.0408 0x1390  [ EAF4712B706936C0B10D3B5319B37E81, 1A356A3AB52DC8A13F41D2B7F26B6B0E23663D7C9DD6DF6E464EF29460EF2602 ] C:\Windows\System32\davclnt.dll
00:00:27.0423 0x1390  C:\Windows\System32\davclnt.dll - ok
00:00:27.0423 0x1390  [ 179BECE8D1A4C488DDB7191FF9BE3FB0, F91ABCB67A2AFD471A9B94AA2B9C46AAEF606266DC2276E81A6D0832566162A5 ] C:\Windows\System32\davhlpr.dll
00:00:27.0423 0x1390  C:\Windows\System32\davhlpr.dll - ok
00:00:27.0423 0x1390  [ E1AC89F6C5252057E6062843E36A6701, 32BE52836F2A011D46957AD60ABA48986B87026FD50ED09D8495460C7F1AB23E ] C:\Windows\System32\SearchProtocolHost.exe
00:00:27.0423 0x1390  C:\Windows\System32\SearchProtocolHost.exe - ok
00:00:27.0423 0x1390  [ 387A8A473ECC5BA02CF453277C1F3274, 3F36D3088B0F7CB0CC2C31E8F908527EC5502F0D3153D20332745B7BBF8B04D7 ] C:\Windows\System32\mspatcha.dll
00:00:27.0423 0x1390  C:\Windows\System32\mspatcha.dll - ok
00:00:27.0439 0x1390  [ A5D237B8673025B052C0E6FDB6A883E8, 0DAE34965C08F7450938A5145D2B53C68AA917744B8C6FCB130A35C03C5CEF6F ] C:\Windows\System32\msshooks.dll
00:00:27.0439 0x1390  C:\Windows\System32\msshooks.dll - ok
00:00:27.0439 0x1390  [ A6CD6B3F71E13E2E45B727FB8A47EA87, 4D84F6B03185DA961543ADFB927CBC17A1A9F216AC24E9A9228780AD7DD0222E ] C:\Windows\System32\SearchFilterHost.exe
00:00:27.0439 0x1390  C:\Windows\System32\SearchFilterHost.exe - ok
00:00:27.0439 0x1390  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
00:00:27.0439 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
00:00:27.0439 0x1390  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\System32\mssprxy.dll
00:00:27.0439 0x1390  C:\Windows\System32\mssprxy.dll - ok
00:00:27.0455 0x1390  [ DB67C7C62038BDE813CB6486581A7611, DC0ACAA2795BBF4C8C35CE9DD9C14636ACFD94296CDC103696B64357CC2C84BB ] C:\Windows\System32\mssph.dll
00:00:27.0455 0x1390  C:\Windows\System32\mssph.dll - ok
00:00:27.0455 0x1390  [ 8B57A1AD493653BB57F281FE75DD175B, 65A54DDCA45CED94F7CF079632F127C247DD9E5E4D2B074593F89621F8CC6C55 ] C:\Windows\System32\NaturalLanguage6.dll
00:00:27.0455 0x1390  C:\Windows\System32\NaturalLanguage6.dll - ok
00:00:27.0455 0x1390  [ D8F67CCCCF4DE5EBD0E1F79121AFA79E, DC396350CFC48966CE8114DDFD7B56F9AF2EE4D76ACF706EFC64AA72B2D6F3FA ] C:\Windows\System32\NlsData0010.dll
00:00:27.0455 0x1390  C:\Windows\System32\NlsData0010.dll - ok
00:00:27.0455 0x1390  [ 8EA11B7DF3200D72D10FB7D33F750EF4, 9E090DD106485088523E9C101F77CF42DA1F18876A25B7D051AE2D5FD2E92BBF ] C:\Windows\System32\NlsLexicons0010.dll
00:00:27.0455 0x1390  C:\Windows\System32\NlsLexicons0010.dll - ok
00:00:27.0470 0x1390  [ 8444A7364D6877922049E99BF4B78C5C, 8BA2EEE84D61743CAA6286D59839963C5ED9AB7C857A4B9926EB640BBE43C425 ] C:\Windows\System32\ELSCore.dll
00:00:27.0470 0x1390  C:\Windows\System32\ELSCore.dll - ok
00:00:27.0470 0x1390  [ 7B3FD36359DE5D2EE49D213CCAD13427, 1903FAB91028CCE19AF4B88154EBE2B175F3C4535B0FAE8F2DBB5A83E74C7DD1 ] C:\Windows\System32\elsTrans.dll
00:00:27.0470 0x1390  C:\Windows\System32\elsTrans.dll - ok
00:00:27.0470 0x1390  [ 02A2ED8497F437EA200DF3ACED255AFE, 228EF857617715297C31349C9A568E9759D5AA58D5800E9C048AD3F1B9482777 ] C:\Windows\System32\elslad.dll
00:00:27.0470 0x1390  C:\Windows\System32\elslad.dll - ok
00:00:27.0470 0x1390  [ 28CAAA8B3DAC4604B6871F311C6B9F49, 27552F9FF89C48275FA430190F9E8281F2A83A26C9F9CDE2E7D3B4DD1C199B6A ] C:\Windows\System32\NlsData0000.dll
00:00:27.0470 0x1390  C:\Windows\System32\NlsData0000.dll - ok
00:00:27.0470 0x1390  [ 459E257F8915D44B23ACB46211FD45D0, 11A72DBFB0AAC070BB77A7AE9358E9A9402F2FD0484D87F1BFA4DF5A280DCF47 ] C:\Windows\System32\wups2.dll
00:00:27.0470 0x1390  C:\Windows\System32\wups2.dll - ok
00:00:27.0486 0x1390  [ CB67C2B94302DC94BC15ED6553A5C1C7, AB75F74122123027AF37F8B95CFF1A63852BC2B05F9D7910F0A7FE752AF388FF ] C:\Windows\System32\wbem\cimwin32.dll
00:00:27.0486 0x1390  C:\Windows\System32\wbem\cimwin32.dll - ok
00:00:27.0486 0x1390  [ D0481FB85BEEDD30A0884BE327880F80, D28D53F8FFE4F6D728281BC0FBEF4EB435C153774855AE6348D0B75C80C2EC78 ] C:\Windows\System32\framedynos.dll
00:00:27.0486 0x1390  C:\Windows\System32\framedynos.dll - ok
00:00:27.0486 0x1390  [ 4F6E72B34ED3DC53DCC5E8708E60B61F, CB79F4EBCE11ECCFA167498F329F95D545F8D4E5CCE4006B2A03B595733AEBC2 ] C:\Windows\System32\security.dll
00:00:27.0486 0x1390  C:\Windows\System32\security.dll - ok
00:00:27.0486 0x1390  [ 99B9343280AF6A4C0F27CF2E28E94BBF, 0E29E05E893B2516A1BB5B1D5B7AC91BB55E2B5D463C8C50765328C10BCEA67E ] C:\Windows\System32\dssenh.dll
00:00:27.0486 0x1390  C:\Windows\System32\dssenh.dll - ok
00:00:27.0501 0x1390  [ 72910F1DEB838E6E08A9017BFB7D4F0B, A2EAE06069778605765ECB4734760BA296707ED6E166F85F31603F5D79ACC125 ] C:\Windows\System32\browcli.dll
00:00:27.0501 0x1390  C:\Windows\System32\browcli.dll - ok
00:00:27.0501 0x1390  [ A42E7748BE906434C5FD17161D168C20, 883A263ED30F9D83A788C484FE61BDB3A518FE489CF97DA4AE9599A8E39E6AE7 ] C:\Windows\System32\schedcli.dll
00:00:27.0501 0x1390  C:\Windows\System32\schedcli.dll - ok
00:00:27.0501 0x1390  [ 43BE3B9CA431F88E049928DC45C4365C, D370BEBF27FE039D63B2799F636460988DE751E8088BC7187C05E6E4770E3309 ] C:\Windows\System32\wbem\wmipcima.dll
00:00:27.0501 0x1390  C:\Windows\System32\wbem\wmipcima.dll - ok
00:00:27.0501 0x1390  [ 907281ED4AD35D41B29FFDC211EBAD80, 42171AE21B62F07511D8AEE66FF8AC6D40D53290BD01BA6125D886EC70CD3B8D ] C:\Windows\System32\wmi.dll
00:00:27.0501 0x1390  C:\Windows\System32\wmi.dll - ok
00:00:27.0517 0x1390  [ 52799EAD792B0E9AE7FD4BA5BD18FE5C, BE4838F4DB23D56CF75730DD36451C5F0F2ACA36B8A74844E7675DC5D5AD0C58 ] C:\Windows\System32\wbem\WMIADAP.exe
00:00:27.0517 0x1390  C:\Windows\System32\wbem\WMIADAP.exe - ok
00:00:27.0517 0x1390  [ 529879612A7FAE235914E3AA6A9A669C, 715843BDDCB7BFB9C6A968F6DC7BBDE0844883FD57CB72608E2D7352F385C7A8 ] C:\Windows\System32\loadperf.dll
00:00:27.0517 0x1390  C:\Windows\System32\loadperf.dll - ok
00:00:27.0517 0x1390  [ 3931B8EB94184AFF87419FE0F6528462, BF2EB10A178704AF656821D4659020695016116D1B6F72542F4D2B6761A05A2C ] C:\Windows\System32\wbem\WmiApRes.dll
00:00:27.0517 0x1390  C:\Windows\System32\wbem\WmiApRes.dll - ok
00:00:27.0517 0x1390  [ 473BAE7ED99FBB8E839B2BFA6B69F476, 912305A08C92A1791E85568074645FAD8AA14EC46F1020F17D6B03A7A4BDCCA9 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\persistent_queue.dll
00:00:27.0517 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\persistent_queue.dll - ok
00:00:27.0533 0x1390  [ 63B282FB2550893724647A359BA2323F, 578899A358A571C6ADDF178B6EC3392F2B5945A352B132FDA526950535389157 ] C:\Windows\System32\Query.dll
00:00:27.0533 0x1390  C:\Windows\System32\Query.dll - ok
00:00:27.0533 0x1390  [ 6F778263DEB34EDA9EA7156FF3ABB26B, A16F73D432BEAC8F905DFC96C6BB6E47EEDF816DEC5875CD8F33E5757F60EC41 ] C:\Windows\System32\NlsData0007.dll
00:00:27.0533 0x1390  C:\Windows\System32\NlsData0007.dll - ok
00:00:27.0533 0x1390  [ A63DC5C2EA944E6657203E0C8EDEAF61, F7AD4B09AFB301CE46DF695B22114331A57D52E6D4163FF74787BF68CCF44C78 ] C:\Windows\System32\dllhost.exe
00:00:27.0533 0x1390  C:\Windows\System32\dllhost.exe - ok
00:00:27.0533 0x1390  [ 5E09C2AB22939CB7A637B7F1C5AE7D4F, 87DD181E3B145956DAEE8462B252924833BE7CCF24F4D403A5B4EA3D4E96F2C1 ] C:\Windows\System32\NlsLexicons0007.dll
00:00:27.0533 0x1390  C:\Windows\System32\NlsLexicons0007.dll - ok
00:00:27.0548 0x1390  [ 0B31464B7B2D616BD5F7036673588EC1, AAC717D7FB02D5F7CC11AECC5C87FE6B7224340C569EBF7B77BD8C9F79FAA190 ] C:\Windows\System32\IDStore.dll
00:00:27.0548 0x1390  C:\Windows\System32\IDStore.dll - ok
00:00:27.0548 0x1390  [ 3CA2BB895E204478C7A4C9BAF70970CE, DE3196627BC810DD22F58DEE65747BACA25485CCD0CEE2701055ECE1058F1C6A ] C:\Windows\System32\AtBroker.exe
00:00:27.0548 0x1390  C:\Windows\System32\AtBroker.exe - ok
00:00:27.0548 0x1390  [ 61AC3EFDFACFDD3F0F11DD4FD4044223, 538FE1012FEDC72727A8DE0C2C01944B3D35C29812ECEF88E95AAC07235E0B0B ] C:\Windows\System32\userinit.exe
00:00:27.0548 0x1390  C:\Windows\System32\userinit.exe - ok
00:00:27.0548 0x1390  [ 505BF4D1CADEB8D4F8BCD08D944DE25D, 526F07768471F4457CBEAB7093AF0B0242044C89A80A347DB47F44EBADEEA68D ] C:\Windows\System32\dwm.exe
00:00:27.0548 0x1390  C:\Windows\System32\dwm.exe - ok
00:00:27.0564 0x1390  [ 754AFC50022C95DA7C86B7020DB78136, 81C58F303DA2E0EC066261890C1D638EE02D2B579BBCB1BB398EDF6A0EBA671E ] C:\Windows\System32\dwmredir.dll
00:00:27.0564 0x1390  C:\Windows\System32\dwmredir.dll - ok
00:00:27.0564 0x1390  [ 497E59D9F01C6F247E72222A61835119, 4C31900BA2F911B2A5AE8F7FCE267DCE17655B20A6B71CD4E38FE1B1692142D1 ] C:\Windows\System32\dwmcore.dll
00:00:27.0564 0x1390  C:\Windows\System32\dwmcore.dll - ok
00:00:27.0564 0x1390  [ 7319102526BD11B45FD66335CF90CA12, F2C7484AE33BEDE8586FB09273665B25DA7E8FEEACF9FEF43EB0B902CE4A0BD9 ] C:\Windows\System32\HotStartUserAgent.dll
00:00:27.0564 0x1390  C:\Windows\System32\HotStartUserAgent.dll - ok
00:00:27.0564 0x1390  [ 3C1936A12C62254F914A01BBC6A8DC69, 0068F7A8B0D9E9776B44EAD99007B0CE5A5600633F2B477E9EFAAC644408C70E ] C:\Windows\System32\d3d10_1.dll
00:00:27.0564 0x1390  C:\Windows\System32\d3d10_1.dll - ok
00:00:27.0579 0x1390  [ D4212AB475A3B25EC4DF574536C3EDC5, F8BBEECB66BA6DDE5A64ED41D8BF95A1C81470552B4BFD5B11D888156289CCDD ] C:\Windows\System32\d3d10_1core.dll
00:00:27.0579 0x1390  C:\Windows\System32\d3d10_1core.dll - ok
00:00:27.0579 0x1390  [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\System32\d3d11.dll
00:00:27.0579 0x1390  C:\Windows\System32\d3d11.dll - ok
00:00:27.0579 0x1390  [ 8B88EBBB05A0E56B7DCC708498C02B3E, 9E1EC8B43A88E68767FD8FED2F38E7984357B3F4186D0F907E62F8B6C9FF56AD ] C:\Windows\explorer.exe
00:00:27.0579 0x1390  C:\Windows\explorer.exe - ok
00:00:27.0579 0x1390  [ F58516E2DC0D963EF70D6BFC21FD82C4, 5689BF12B43BE0D6BFBD6B9122A2FF53FCEC766A58A0F3C6B88AE504ACB10E04 ] C:\Windows\System32\PlaySndSrv.dll
00:00:27.0579 0x1390  C:\Windows\System32\PlaySndSrv.dll - ok
00:00:27.0595 0x1390  [ 50583B33AE16F8790BD0320737F9BB49, 4AA7C1DAB61360875F7DD51200FE89FE6686514E16812A2C6C1B0B87D0580F89 ] C:\Windows\System32\atidxx32.dll
00:00:27.0595 0x1390  C:\Windows\System32\atidxx32.dll - ok
00:00:27.0595 0x1390  [ B43687C534A49700BF4B3C9898763752, B4C371CB2C0EAC1803E6C845F629814B2CE4C568022EB6A1C9AC1F293BF74F40 ] C:\Windows\System32\MsCtfMonitor.dll
00:00:27.0595 0x1390  C:\Windows\System32\MsCtfMonitor.dll - ok
00:00:27.0595 0x1390  [ 56CEED370508F69A1BA04939BD1BADDA, C84F383F2B3C9581F635E51DA39567F0B5ED2D847B18CCE51022BA4B2FA7EA8D ] C:\Windows\System32\msutb.dll
00:00:27.0595 0x1390  C:\Windows\System32\msutb.dll - ok
00:00:27.0595 0x1390  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\System32\ExplorerFrame.dll
00:00:27.0595 0x1390  C:\Windows\System32\ExplorerFrame.dll - ok
00:00:27.0611 0x1390  [ 2100560AF3F7F2948F2676E44DFB4ECF, 28472E8BEE46DCAE961C7AFEF71EFD5675ECD05492A92631CCB4EF62DFD10F7A ] C:\Windows\System32\uDWM.dll
00:00:27.0611 0x1390  C:\Windows\System32\uDWM.dll - ok
00:00:27.0611 0x1390  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\System32\EhStorShell.dll
00:00:27.0611 0x1390  C:\Windows\System32\EhStorShell.dll - ok
00:00:27.0611 0x1390  [ 3EC541C196DE18ED9A0D0AC82A694D4C, 51BCBDDFF113A02EF85E09BE6B2727EDB505EBFE355A8E163A7F4C82EBFBBCC4 ] C:\Windows\System32\cscui.dll
00:00:27.0611 0x1390  C:\Windows\System32\cscui.dll - ok
00:00:27.0611 0x1390  [ 57A51217581614DE07F30E34D6BB4993, 19D06DCCF1B39DFE4FF269C5C4001E60837296411EB8E169CE142DEFAA3D94FA ] C:\Windows\System32\cscdll.dll
00:00:27.0611 0x1390  C:\Windows\System32\cscdll.dll - ok
00:00:27.0626 0x1390  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\System32\ntshrui.dll
00:00:27.0626 0x1390  C:\Windows\System32\ntshrui.dll - ok
00:00:27.0626 0x1390  [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\System32\IconCodecService.dll
00:00:27.0626 0x1390  C:\Windows\System32\IconCodecService.dll - ok
00:00:27.0626 0x1390  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\System32\runonce.exe
00:00:27.0626 0x1390  C:\Windows\System32\runonce.exe - ok
00:00:27.0626 0x1390  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\System32\cmd.exe
00:00:27.0626 0x1390  C:\Windows\System32\cmd.exe - ok
00:00:27.0626 0x1390  [ 2DE16A63F71D10B42ACE01E759078600, D52FAE32C1BBF982C9222FBF275FF53D5F6F77B7747AFBF641937DFDC8D70487 ] C:\Windows\System32\conhost.exe
00:00:27.0642 0x1390  C:\Windows\System32\conhost.exe - ok
00:00:27.0642 0x1390  [ EF94FA1F3D90520CCA4AE65D639A9E62, 2F9DD6D8AC0A02009D9F162BE317436FE78D5973518F5997B78867D852DF617F ] C:\Windows\System32\ieframe.dll
00:00:27.0642 0x1390  C:\Windows\System32\ieframe.dll - ok
00:00:27.0642 0x1390  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
00:00:27.0642 0x1390  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
00:00:27.0642 0x1390  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\System32\shdocvw.dll
00:00:27.0642 0x1390  C:\Windows\System32\shdocvw.dll - ok
00:00:27.0657 0x1390  [ 2AD9820E4B17E78110A6AA06BF5C1CE2, 330A62FC255D24FCF7904B11CD533A9A06C1EBDBD90491A11960317759E7F4D0 ] C:\Users\Cesare\AppData\Local\Temp\{9FFB81FC-8872-407D-8F41-7B9BD9D7FA10}.exe
00:00:27.0657 0x1390  C:\Users\Cesare\AppData\Local\Temp\{9FFB81FC-8872-407D-8F41-7B9BD9D7FA10}.exe - ok
00:00:27.0657 0x1390  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\System32\SensApi.dll
00:00:27.0657 0x1390  C:\Windows\System32\SensApi.dll - ok
00:00:27.0657 0x1390  [ A24AE157953BBC8DC856BA96E9A0D82E, 38178EADA28BDCFF1F6620952DD800EE136294E63DD0AC1AF29998A74D37F61E ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\buffer.ppl
00:00:27.0657 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\buffer.ppl - ok
00:00:27.0657 0x1390  [ 072678E0D68E9C3A7960328671134C7B, 65A3CBED081D6FBC65FCD260B6735EA763ACC378ED0ABF253E20375917312EBC ] C:\Windows\System32\wuauclt.exe
00:00:27.0657 0x1390  C:\Windows\System32\wuauclt.exe - ok
00:00:27.0673 0x1390  [ EC6E2DB67695966DF22CF5EBEFC1D305, A2643191E055F4E0600BCD382BDDB573FE1C1E8F9EE89477C1A4DA27F0C05343 ] C:\Windows\System32\wucltux.dll
00:00:27.0673 0x1390  C:\Windows\System32\wucltux.dll - ok
00:00:27.0673 0x1390  [ 7E9917D5309A90E7576653BFE39F80D8, 3525795CA69EF165AAAA20C878A20DF5A5F183CF6F8358A0132A88153E6459C6 ] C:\Windows\System32\timedate.cpl
00:00:27.0673 0x1390  C:\Windows\System32\timedate.cpl - ok
00:00:27.0673 0x1390  [ D2958325C1AE1AE37A83334C6229E3BC, D8263CB39A25447442B75A8D8E8111DF671D645DA90A33865C089DEDA9706904 ] C:\Windows\System32\actxprxy.dll
00:00:27.0673 0x1390  C:\Windows\System32\actxprxy.dll - ok
00:00:27.0673 0x1390  [ 3A16EA01FCFAAB40882DB5BFEE632322, 04ED66BEFDB822181EBD1D84CBF0B17AAADF8455AE742F44D7ADCB26AB07BDAD ] C:\Windows\System32\msftedit.dll
00:00:27.0673 0x1390  C:\Windows\System32\msftedit.dll - ok
00:00:27.0689 0x1390  [ 298FDE634538B62CEEEC266D8773B21A, E6E445282D17CEAFEAB66A5A1E0124DD50F2438205BCE5649DB998BDAED06CB7 ] C:\Windows\System32\msls31.dll
00:00:27.0689 0x1390  C:\Windows\System32\msls31.dll - ok
00:00:27.0689 0x1390  [ D29457125756A4A6D1996BBC2F2322AA, 97F31618715DE548A25F3F97DCF044C24550CD1D0229682FBA42FF1898FACA50 ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
00:00:27.0689 0x1390  C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
00:00:27.0689 0x1390  [ 64E211E0FDFCE4D186DF58BB7D0503BC, 6B9E12979119BAD721D493A9CEFDC7B4150121D5590222069FD1B8D80F9AC5C0 ] C:\Windows\System32\gameux.dll
00:00:27.0689 0x1390  C:\Windows\System32\gameux.dll - ok
00:00:27.0689 0x1390  [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\System32\msiltcfg.dll
00:00:27.0689 0x1390  C:\Windows\System32\msiltcfg.dll - ok
00:00:27.0704 0x1390  [ 2A39F32E0067CBF221611FE1FA8C6D8F, C6D1CAB7BC87F8EB7D801BE3E3DA9B631932A94468E7A6F46D60A43C9AB08EE7 ] C:\Windows\System32\DeviceCenter.dll
00:00:27.0704 0x1390  C:\Windows\System32\DeviceCenter.dll - ok
00:00:27.0704 0x1390  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:00:27.0704 0x1390  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
00:00:27.0704 0x1390  [ 672D7C5080ACB003343006405DA2E621, 5F28C83A20ECB1F20894B60725477BEF0D672817DFDB9822FB345A3270A0C095 ] C:\Windows\System32\thumbcache.dll
00:00:27.0704 0x1390  C:\Windows\System32\thumbcache.dll - ok
00:00:27.0704 0x1390  [ 7EAFC20E93923DBE751164EB0683C490, B485C1AD3E804B3D00BCFE74B2FBDBED18F79FC82762DB517264156CF4EEDE3C ] C:\Program Files\CyberLink\YouCam\YouCamService.exe
00:00:27.0704 0x1390  C:\Program Files\CyberLink\YouCam\YouCamService.exe - ok
00:00:27.0720 0x1390  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
00:00:27.0720 0x1390  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
00:00:27.0720 0x1390  [ 175383778EB24D98C84E624021E3AA0B, FE831AC7C5375FE0F0D2A56F1546F968B2595503CC63FE9A8F819F7910A1604A ] C:\Windows\System32\aeevts.dll
00:00:27.0720 0x1390  C:\Windows\System32\aeevts.dll - ok
00:00:27.0720 0x1390  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
00:00:27.0720 0x1390  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
00:00:27.0720 0x1390  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
00:00:27.0720 0x1390  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
00:00:27.0735 0x1390  [ 58B8702C20DE211D1FCB248D2FDD71D1, B2F6E3BA6FB5250F0E70555B39D34F19ADA760BDDA7E1A44113B97C3A1FD3F8B ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe
00:00:27.0735 0x1390  C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
00:00:27.0735 0x1390  [ 031E0AC7341FBF5699011D71D4157D60, 272F8E40ACDDDCA0E6CE51190693EF0E2C0378B1327CC3647353D85DAFE3FF4E ] C:\Program Files\IDT\WDM\sttray.exe
00:00:27.0735 0x1390  C:\Program Files\IDT\WDM\sttray.exe - ok
00:00:27.0735 0x1390  [ 3382E7CECC5062A9F5B150F40A153D85, 681839BEF7F9D23E2808C244DD04FE31A6A0E35D378E7B6B81C023A08CA3DB3C ] C:\Program Files\IDT\WDM\stlang.dll
00:00:27.0735 0x1390  C:\Program Files\IDT\WDM\stlang.dll - ok
00:00:27.0735 0x1390  [ B424641BF7FAAEC3AB2FF2A00DE4602F, 0BE34A68F557C292FC65EFD221893FE5C60FD81A42608F1AC4EA6DBDD837E55B ] C:\Program Files\Internet Explorer\sqmapi.dll
00:00:27.0735 0x1390  C:\Program Files\Internet Explorer\sqmapi.dll - ok
00:00:27.0751 0x1390  [ 5225673E3F28A251CC8449EFA7C82F03, 4E7467582D0D22366DE5BCD73E8BFB15DCD28D7A6A8DCBDA78E81FD175F6176F ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ITA.dll
00:00:27.0751 0x1390  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ITA.dll - ok
00:00:27.0751 0x1390  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\System32\msvcp100.dll
00:00:27.0751 0x1390  C:\Windows\System32\msvcp100.dll - ok
00:00:27.0751 0x1390  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\System32\msvcr100.dll
00:00:27.0751 0x1390  C:\Windows\System32\msvcr100.dll - ok
00:00:27.0767 0x1390  [ DFCD94101C5AAE5BDE2F662A60E725EA, ACEF94E75342AE8328C21555B2D640FA80F0110ED0BDE1CB4D3188A8AE9F600F ] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE
00:00:27.0767 0x1390  C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE - ok
00:00:27.0767 0x1390  [ E24FE90E9DE8D8AE70E59F7B01675DEF, DDB0691488DB424CC203505E27364B24E4410E599A972CF2C1AFF4E2F3E3C04F ] C:\Windows\System32\avicap32.dll
00:00:27.0767 0x1390  C:\Windows\System32\avicap32.dll - ok
00:00:27.0767 0x1390  [ 8E2242BB3CB7A632A8CF22BDE2A41AE1, FB068D1EED054DB6935A5DE19DEA6AFCCE8C3F0F665973FDFB97431078207D91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
00:00:27.0767 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
00:00:27.0767 0x1390  [ 24498D084FAA7A459C91066EC241E1CE, 5214A26D8B441F7A55414DC2935AF6C76DB8C8D55F8677DA97D19943C69D765E ] C:\Windows\System32\vfwwdm32.dll
00:00:27.0767 0x1390  C:\Windows\System32\vfwwdm32.dll - ok
00:00:27.0782 0x1390  [ BDC28D69C3AB3AD7C3188CF2843F6927, EC7D422E4BCE106047AAAA81E5F965061EEA9F3FD52FC645E241F1E24690D3FC ] C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
00:00:27.0782 0x1390  C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe - ok
00:00:27.0782 0x1390  [ 1C7F1C3EA5894995E6C563E9AE9F029F, 992F3206D4AAD0E22EC361C1DADF8A771CA5F2E6F0B999B43F56ECE8C412D414 ] C:\Windows\System32\l3codeca.acm
00:00:27.0782 0x1390  C:\Windows\System32\l3codeca.acm - ok
00:00:27.0782 0x1390  [ 4F35412CE1E763F40DFCD83DEB264AF9, B46574F811879F45D59B6002022EE35B1636C314C0A49E6EF0A4732892F31B81 ] C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
00:00:27.0782 0x1390  C:\Program Files\Siber Systems\AI RoboForm\roboform.dll - ok
00:00:27.0782 0x1390  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{8020600F-E011-4340-93B3-D37940ABA84C}.tmp
00:00:27.0782 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{8020600F-E011-4340-93B3-D37940ABA84C}.tmp - ok
00:00:27.0798 0x1390  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{EB457B90-D61D-4AE5-AED1-8A11D1C24A4D}.tmp
00:00:27.0798 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{EB457B90-D61D-4AE5-AED1-8A11D1C24A4D}.tmp - ok
00:00:27.0798 0x1390  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{79512D72-68C2-4D4F-80C6-CAE2993D8F29}.tmp
00:00:27.0798 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{79512D72-68C2-4D4F-80C6-CAE2993D8F29}.tmp - ok
00:00:27.0798 0x1390  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Cesare\AppData\Local\FluxSoftware\Flux\flux.exe
00:00:27.0798 0x1390  C:\Users\Cesare\AppData\Local\FluxSoftware\Flux\flux.exe - ok
00:00:27.0798 0x1390  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] C:\Windows\System32\qmgr.dll
00:00:27.0798 0x1390  C:\Windows\System32\qmgr.dll - ok
00:00:27.0813 0x1390  [ 48627D5A929E91C6655D3D27501F8507, 0BF1E5844AA96AD1BA1FFD0CA078E02613F677DFB8CC39FD5326B4E852632516 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpgui.ppl
00:00:27.0813 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avpgui.ppl - ok
00:00:27.0813 0x1390  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{61FAAEC5-740E-4A0F-BE52-B07CE7DEC569}.tmp
00:00:27.0813 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{61FAAEC5-740E-4A0F-BE52-B07CE7DEC569}.tmp - ok
00:00:27.0813 0x1390  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{E88990CE-574E-49EA-8C0B-2C2BFD803402}.tmp
00:00:27.0813 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{E88990CE-574E-49EA-8C0B-2C2BFD803402}.tmp - ok
00:00:27.0813 0x1390  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{1992C7AA-6F9A-4B9D-963D-F1AD342290DF}.tmp
00:00:27.0813 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{1992C7AA-6F9A-4B9D-963D-F1AD342290DF}.tmp - ok
00:00:27.0829 0x1390  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{B07320D5-3047-4C23-AB70-24CB0D306308}.tmp
00:00:27.0829 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{B07320D5-3047-4C23-AB70-24CB0D306308}.tmp - ok
00:00:27.0829 0x1390  [ 0552A8684BF7566F744D5B19FF6AEC6B, D1EB44C75A0AE0C9ABFE3B1B7AD648DF77B56B4358E522DFF732911906B20B49 ] C:\Windows\System32\bitsperf.dll
00:00:27.0829 0x1390  C:\Windows\System32\bitsperf.dll - ok
00:00:27.0829 0x1390  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\System32\ddraw.dll
00:00:27.0829 0x1390  C:\Windows\System32\ddraw.dll - ok
00:00:27.0829 0x1390  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{EB80285D-5E57-467E-8C96-BBA49B1B8B71}.tmp
00:00:27.0829 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{EB80285D-5E57-467E-8C96-BBA49B1B8B71}.tmp - ok
00:00:27.0845 0x1390  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{5A1C8E58-2C2F-4B2C-8E4C-411542CC76B1}.tmp
00:00:27.0845 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{5A1C8E58-2C2F-4B2C-8E4C-411542CC76B1}.tmp - ok
00:00:27.0845 0x1390  [ F45ED8C4F9AF862CD9992849B5203C11, F51E56977C33B8F202C2945FB977501C6FFDD453F158B2BE01453FAF13569919 ] C:\Windows\System32\bitsigd.dll
00:00:27.0845 0x1390  C:\Windows\System32\bitsigd.dll - ok
00:00:27.0845 0x1390  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{302243CB-1E0D-406E-A498-E7C52BE03435}.tmp
00:00:27.0845 0x1390  C:\Users\Cesare\AppData\Local\Temp\{75BD06A9-8098-4A4B-ADAC-CAC13B0E5358}\{302243CB-1E0D-406E-A498-E7C52BE03435}.tmp - ok
00:00:27.0860 0x1390  [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\System32\qmgrprxy.dll
00:00:27.0860 0x1390  C:\Windows\System32\qmgrprxy.dll - ok
00:00:27.0860 0x1390  [ C1F1E53851FAA7E029CFA07DAF9A5E81, 5FED0DC48651735AEBF53D5B7C16D13A9F7205B9EBEFE829022FC9281A940718 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
00:00:27.0860 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll - ok
00:00:27.0860 0x1390  [ 2342EC9254F4C60CA98441BD65C89E12, 7FDCAEB5D021E291A1C9B94DD4D49913CE363BF94D37518E466DB3DD72C41D05 ] C:\Windows\System32\dciman32.dll
00:00:27.0860 0x1390  C:\Windows\System32\dciman32.dll - ok
00:00:27.0860 0x1390  [ 1F27643C4C626457FCE8F047AE1CD7E1, 68E2367B9AA21C1BDE7FEA566D5F0DBDF1E246CB53E949622F8EDC810AA95956 ] C:\Windows\System32\dxva2.dll
00:00:27.0860 0x1390  C:\Windows\System32\dxva2.dll - ok
00:00:27.0876 0x1390  [ B5BD0D5792E8C6195312275D335F50E1, 78796189E3404E95FBD72270AFF0F50BCC3233734E67026D376BEB68061954C6 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtcore4.dll
00:00:27.0876 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtcore4.dll - ok
00:00:27.0876 0x1390  [ 912AAADB198854104D747AA617458FE3, EBB53FF34FCB241D26BFE69D66426525B02483E4E6F2F5FE5593BE8C9FA5122B ] C:\Windows\System32\atiumdag.dll
00:00:27.0876 0x1390  C:\Windows\System32\atiumdag.dll - ok
00:00:27.0876 0x1390  [ 99BE216125AAB5A73AFCBA094453E5F0, C0F10ABD5D0A99284216BBC4EEDFE8B9BCD2FA7ED2A27930F3CDCFE4FA573AF6 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtdeclarative4.dll
00:00:27.0876 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtdeclarative4.dll - ok
00:00:27.0876 0x1390  [ DD53819A94889702B4AE20365DC7EFB7, 4B57F5B8E5CEEAE6ADF1757AF0699E9D875537ACADE488A059650C0FC4292983 ] C:\Windows\System32\atiumdva.dll
00:00:27.0876 0x1390  C:\Windows\System32\atiumdva.dll - ok
00:00:27.0891 0x1390  [ 25D986A4DA38668E2AA89955A790E578, 4D88AD5628CEAB8E3C4FDE43E59FCE26E7F7EDD5D956D27A9D458FAB5B8223A4 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtscript4.dll
00:00:27.0891 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtscript4.dll - ok
00:00:27.0891 0x1390  [ 723E7574A94C54664E4C8D0A4AAE4F97, B905E8154AA346EBFC94786466D34A901F89B223A396FD96D2844883FED922AD ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtsql4.dll
00:00:27.0891 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtsql4.dll - ok
00:00:27.0891 0x1390  [ 61DC2C38CEC0B2DF22B09F1A6E0B00DD, F9985D872A3A93C937C63AD489DAB3D4A81926289F5E42A39DFB9D04222E5745 ] C:\Windows\System32\mscat32.dll
00:00:27.0891 0x1390  C:\Windows\System32\mscat32.dll - ok
00:00:27.0891 0x1390  [ D8DB8523C1585589411277AE5DC91555, BF14C47AD29D4A931580D9A360B02403DC174F5E675F9F089DBA01542464D90D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtgui4.dll
00:00:27.0891 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtgui4.dll - ok
00:00:27.0907 0x1390  [ F75EB0078259C7F9A5F09A00355725DD, E0C3C22936D861421DAA118A5DAB0C79687F3455105E89D53D7DC7148D872F13 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtnetwork4.dll
00:00:27.0907 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\qtnetwork4.dll - ok
00:00:27.0907 0x1390  [ 2AE206C2AB6FA06C56FB4297433F2EBA, B4F4EB71B1D77C56409739B6388A2E690E4D1C21B6D1A61699A62DA50C97AFD7 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll
00:00:27.0907 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\dblite.dll - ok
00:00:27.0907 0x1390  [ 7DB4023504080682DB6DA5C71F678746, F4C68FF8D1F997FB6C2F1DA3A2C6C233B06BC4830EAEAFB85F296810774BBB24 ] C:\Program Files\Canon\Quick Menu\CNQMCOMN.DLL
00:00:27.0907 0x1390  C:\Program Files\Canon\Quick Menu\CNQMCOMN.DLL - ok
00:00:27.0923 0x1390  [ 504A5EE33D3A479FD6EF909ECCFA26FD, 918462BD98231F3F0B7D201E4E9ADB562D64AEC3B310C0B0D7802B9B3EBEC9BF ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\basegui.ppl
00:00:27.0923 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\basegui.ppl - ok
00:00:27.0923 0x1390  [ 311C2664FA7B215B31345469D7B143C6, AAA73AFFB119B0ACE6B2CAC4956F40A3E1007D74904E4C4DE53A0E82D72DBE6D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll
00:00:27.0923 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll - ok
00:00:27.0923 0x1390  [ 912649A1B3F9E6ACB3899FBDABA2ED5F, 049DFA9EA45A888B984E459B927A0F8AA4C10B9D36C6C0A0FE57F6329BEAF555 ] C:\Windows\System32\stobject.dll
00:00:27.0923 0x1390  C:\Windows\System32\stobject.dll - ok
00:00:27.0923 0x1390  [ D611F46C2A564BAA38319982960B95B0, 71FD57DCF2CB0E14A1BA29CC9ACA1C5BE266D2EFEE7D89906EDF3D3D14A46818 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\parental_control_gui.dll
00:00:27.0923 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\parental_control_gui.dll - ok
00:00:27.0938 0x1390  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\System32\riched20.dll
00:00:27.0938 0x1390  C:\Windows\System32\riched20.dll - ok
00:00:27.0938 0x1390  [ 67C1B58706B47EEBA4E117AC197289E6, 9213E55DA854563E3A99369A4FAD853C0A97241A4F6D93F98444C57ADEEF89C1 ] C:\Windows\System32\batmeter.dll
00:00:27.0938 0x1390  C:\Windows\System32\batmeter.dll - ok
00:00:27.0938 0x1390  [ 81D3E9BACEE3580DDE88E325592D0224, FF7D16EC649498FCCEC98BDE0B832FD63419A7B37943827DD2E0B5FD7846F66F ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kav.bav
00:00:27.0938 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kav.bav - ok
00:00:27.0938 0x1390  [ 2AAD1EF2F6FBAA5FE49C70AA5B6BAD10, F3FDF672847340D66D150A71BD8484F42BBEF4BC297F422BA58BA77AA117C10D ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kav.tbp
00:00:27.0938 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\kav.tbp - ok
00:00:27.0954 0x1390  [ 8B285BDAB7735FDFB18E6F7122923B77, DE3DBDDBF0E999CDE4A53B194128094671684708CDBED2C4D5362316CAA3A8CD ] C:\Windows\System32\UIAnimation.dll
00:00:27.0954 0x1390  C:\Windows\System32\UIAnimation.dll - ok
00:00:27.0954 0x1390  [ C8333F1F77A1B2E25F2202E892CAF634, 7A614AA4353ECE8175B6AB7B25EE26FAB22DF2A53C9A5A694B3A3B56F6C783A7 ] C:\Windows\System32\prnfldr.dll
00:00:27.0954 0x1390  C:\Windows\System32\prnfldr.dll - ok
00:00:27.0954 0x1390  [ 22EDF349ABFB29E711E51DB0295A25DE, 6FCB7E1E0F2AC8593391DEA2CA159A922A7346A131C86ADF2B53DFB309167FD0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\94bbd298ec8575f3c6151a59538a109c\WindowsBase.ni.dll
00:00:27.0954 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\94bbd298ec8575f3c6151a59538a109c\WindowsBase.ni.dll - ok
00:00:27.0954 0x1390  [ ADDB05C93272A62606599B24730BD645, 38E2E2979C48549A3B72807B33254DB3AC106DB1FD2790C8AC1B27CDE86EC38F ] C:\Windows\System32\DXP.dll
00:00:27.0954 0x1390  C:\Windows\System32\DXP.dll - ok
00:00:27.0969 0x1390  [ 856CFFCD835528136367BB1A8FE1DB87, 97EE0B243F460BE737D18B634559BC6389064BA013890E69B650E5152AB873C8 ] C:\Windows\System32\Syncreg.dll
00:00:27.0969 0x1390  C:\Windows\System32\Syncreg.dll - ok
00:00:27.0969 0x1390  [ F8F03D206F7D5811D630349A23E9B9B9, D8F63A2DF5E79103BC3DD36BF09E60D095577BCB30BADA8763168E0199ED4CD8 ] C:\Windows\ehome\ehSSO.dll
00:00:27.0969 0x1390  C:\Windows\ehome\ehSSO.dll - ok
00:00:27.0969 0x1390  [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\System32\netshell.dll
00:00:27.0969 0x1390  C:\Windows\System32\netshell.dll - ok
00:00:27.0969 0x1390  [ F27763800CE191CB5EFF9AE204B2338C, EB017E347935BFCA16E3A2A2BE2B6C1434ED56E84F80536D4781B164FCA48B41 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\006d28e7c86f3e70db90ce06ea2f33fb\PresentationCore.ni.dll
00:00:27.0969 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\006d28e7c86f3e70db90ce06ea2f33fb\PresentationCore.ni.dll - ok
00:00:27.0985 0x1390  [ B2B3DAE040F6B5AE1DF52B0CD7631A18, 062680EFF24EB83FF34DDD76043DB9ABB476C8FEE7BBE869A1E7F7FC8891314F ] C:\Windows\System32\AltTab.dll
00:00:27.0985 0x1390  C:\Windows\System32\AltTab.dll - ok
00:00:27.0985 0x1390  [ 735263DA17BF5BAF9CCD483843BF9D5A, A493F9191EA3F37A53474E94B3917EA038B29545FC62B1634CE47F05EA2FF5C6 ] C:\Windows\System32\WPDShServiceObj.dll
00:00:27.0985 0x1390  C:\Windows\System32\WPDShServiceObj.dll - ok
00:00:27.0985 0x1390  [ ADB45A977BD9E45790CA496DB84BA148, BB251C9A5D2F5C6BDFB22C6BA235748472FC28AF2ADAF1CE7948352301DDE3C1 ] C:\Windows\System32\PortableDeviceTypes.dll
00:00:27.0985 0x1390  C:\Windows\System32\PortableDeviceTypes.dll - ok
00:00:27.0985 0x1390  [ 3D6F22551D422F97AACB0BB927E4C846, 9AB7C9F2E7F3D1CEC4553D0DF57E074121957055A9A4349946D354ACB6FC4579 ] C:\Windows\System32\pnidui.dll
00:00:27.0985 0x1390  C:\Windows\System32\pnidui.dll - ok
00:00:28.0001 0x1390  [ 98AF3A8430A1D01A14F2F8C48C03013B, 260053A3414FED281BB1D2F62268FFF492264681D9307BADC9A001AF5684BFE1 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\3646375313dd2b8e3afecbf945960336\PresentationFramework.ni.dll
00:00:28.0001 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\3646375313dd2b8e3afecbf945960336\PresentationFramework.ni.dll - ok
00:00:28.0001 0x1390  [ BD626EF05967D14C772B8096292731A3, FE3838B41DCAFC52089D909E7F411186D993C08AC149E093352D691D57C9BE71 ] C:\Windows\System32\QUTIL.DLL
00:00:28.0001 0x1390  C:\Windows\System32\QUTIL.DLL - ok
00:00:28.0001 0x1390  [ CF4274CEEA9F7791FB7FC40A066BC2C7, C153EC0D420261185001B354955DF85C6E842334D34E70BB69CECC3AFC8CE36C ] C:\Windows\System32\cscobj.dll
00:00:28.0001 0x1390  C:\Windows\System32\cscobj.dll - ok
00:00:28.0001 0x1390  [ 674B0C0F6A448EB185CAAB9C51D44032, 6722351F46BF70BA967844D3239CD801DFC4538A4EB6C478D8497F27F7FD9F1D ] C:\Windows\System32\srchadmin.dll
00:00:28.0001 0x1390  C:\Windows\System32\srchadmin.dll - ok
00:00:28.0016 0x1390  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] C:\Windows\System32\netman.dll
00:00:28.0016 0x1390  C:\Windows\System32\netman.dll - ok
00:00:28.0016 0x1390  [ 03B3541AE6986602CF9CB5B3AD169C33, FC4B0ABA53EDB19DCBA00B8FEBE807643A4AB2D6B8337EE05CE2D0283BEF0F4E ] C:\Windows\System32\webcheck.dll
00:00:28.0016 0x1390  C:\Windows\System32\webcheck.dll - ok
00:00:28.0016 0x1390  [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\System32\rasdlg.dll
00:00:28.0016 0x1390  C:\Windows\System32\rasdlg.dll - ok
00:00:28.0016 0x1390  [ 04B88428A872390D235BE52D38A9D4EF, F6954D514B67547738EB012456342D65289B0B18A0304BBAD5BDAA3436181C77 ] C:\Windows\System32\dot3api.dll
00:00:28.0016 0x1390  C:\Windows\System32\dot3api.dll - ok
00:00:28.0032 0x1390  [ 9A39A2A5F443A756C568C6ED5748AFE4, 13C2790985CBA9CD325BA20364A665DB50B769B7DDE93E6BE20F25427BDB34F8 ] C:\Windows\System32\ActionCenter.dll
00:00:28.0032 0x1390  C:\Windows\System32\ActionCenter.dll - ok
00:00:28.0032 0x1390  [ 987323F0247D023AD1AE52195540ECE0, 74DE9609D81C58E5BF11A6EB5E8EEC18F0253834DB64BEF444339640D545F093 ] C:\Windows\System32\mssvp.dll
00:00:28.0032 0x1390  C:\Windows\System32\mssvp.dll - ok
00:00:28.0032 0x1390  [ 8063046AA70B97CA9985672B8848FB2E, C7A7F2D216D1F0D7F28A22E4933DB3D821AC52CC2EF7AE8BA08D18104FCF8B81 ] C:\Windows\System32\wlanhlp.dll
00:00:28.0032 0x1390  C:\Windows\System32\wlanhlp.dll - ok
00:00:28.0032 0x1390  [ 2DDEA2C345DA5BC589EFD398F220DB0E, B515B15BE7CB66F94B7A9B802719DAF7D50E1FE2832B66B6883AC0023060800D ] C:\Windows\System32\SyncCenter.dll
00:00:28.0032 0x1390  C:\Windows\System32\SyncCenter.dll - ok
00:00:28.0047 0x1390  [ 6118105F2D09953430437F9BF05BD704, BD3D2EE12022B36B1AB09CFA458D8F08D8A31210D28283EB81F4039E92662017 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll
00:00:28.0047 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll - ok
00:00:28.0047 0x1390  [ 4277F5164DE9B7C665BB928B9145BEE0, B977BF5D20BD4AA3B5FFFAF42C02D95E9883625E79820531A77C470C8D29CA37 ] C:\Windows\System32\DWrite.dll
00:00:28.0047 0x1390  C:\Windows\System32\DWrite.dll - ok
00:00:28.0047 0x1390  [ 2D11BC8B460957E62E4420373A0D8BDA, 56105E84333998D43DFCDA9E8A4D70EAC43076CFF8389B2E525EC5C3017DC5FD ] C:\Windows\System32\imapi2.dll
00:00:28.0047 0x1390  C:\Windows\System32\imapi2.dll - ok
00:00:28.0047 0x1390  [ 53683A331F8A1BB20ADD0330F1DE6388, 5525766F740268FF5287F927CD784B885F5B8523374AC2858256E6757CDED9F4 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
00:00:28.0047 0x1390  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
00:00:28.0063 0x1390  [ 8F8AB20AA863EA95A421B9D54C74F20C, BA71E3EED39E78EC554049464D4112EB3A15419F0C5809D9C7CB7F1746BDEBD3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
00:00:28.0063 0x1390  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
00:00:28.0063 0x1390  [ 76C2A3B47FE220E027697CDEF63A72C9, 6C2ECAD3DEB1410E3AEE506EF23562DBCFBE4C3BB3CD5C3CE3A660FA24262F91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
00:00:28.0063 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
00:00:28.0063 0x1390  [ C02AA67276FEE0C15CC4D6D616BDE95E, 24B0FFA2903CC77FEDE6B491647BB759C4AE054E38A19EFA0D2662AC2959570B ] C:\Windows\System32\WWanAPI.dll
00:00:28.0063 0x1390  C:\Windows\System32\WWanAPI.dll - ok
00:00:28.0063 0x1390  [ F2ED6D00921CA138289E5E0CCB9ABF87, 528F249CE0835CA4D8B7C4940F5132DF1155EB344177BEA4CD7FCF9B8DCCCA4B ] C:\Windows\System32\wwapi.dll
00:00:28.0063 0x1390  C:\Windows\System32\wwapi.dll - ok
00:00:28.0079 0x1390  [ AE839020FEE052598F096942C8002C73, 9F0520B75EE30E2AD6BFA46C7D52782A8A9515AA6D14579DEF2F9D222EC57083 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
00:00:28.0079 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
00:00:28.0079 0x1390  [ 02530B0B7E048DD5AC8D52DAEACAEB2B, 2DEB454F8B71EC54C59185E2F1D679F7EC1C7AEFCD1D59761FDD3D70CABE0254 ] C:\Windows\System32\QAGENT.DLL
00:00:28.0079 0x1390  C:\Windows\System32\QAGENT.DLL - ok
00:00:28.0079 0x1390  [ 3AD3602258590F5A3C45DC7A029D0140, 7428C3747AA6EFB48C596041B5EB76ABB2AF6A28BE105775852D2305C067ADE0 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
00:00:28.0079 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
00:00:28.0079 0x1390  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] C:\Windows\System32\wersvc.dll
00:00:28.0079 0x1390  C:\Windows\System32\wersvc.dll - ok
00:00:28.0094 0x1390  [ 1E8D06AAE74FED674C1156B3FEA911C2, C1999BA9E436F9E0B9302DC82DF8B214E66372899FD4C0C60C56EE5340BADB9F ] C:\Windows\System32\Faultrep.dll
00:00:28.0094 0x1390  C:\Windows\System32\Faultrep.dll - ok
00:00:28.0094 0x1390  [ C7952D0A4C43A965A1741916BB134751, 84EF222159E8C444A1D9D2E6509245716E4106C8032861DBFF399001A529BF94 ] C:\Windows\System32\hgcpl.dll
00:00:28.0094 0x1390  C:\Windows\System32\hgcpl.dll - ok
00:00:28.0094 0x1390  [ 5FEAB868CAEDBBD1B7A145CA8261E4AA, 08BACE187A0225E10677DE9AA6738A7118BE3E5CAD6DC45FB8D3366A61BB343C ] C:\Windows\System32\WerFault.exe
00:00:28.0094 0x1390  C:\Windows\System32\WerFault.exe - ok
00:00:28.0094 0x1390  [ 1452AF963D2821CC35A24FE52F86B8A7, B88251D57DCE5087B7AF0D026A74B002C2C942F624EF88A083CC5C7D28686D87 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\54565a827b0e5a6f78e93e2ae06dd0e4\System.Runtime.Remoting.ni.dll
00:00:28.0094 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\54565a827b0e5a6f78e93e2ae06dd0e4\System.Runtime.Remoting.ni.dll - ok
00:00:28.0110 0x1390  [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\System32\bthprops.cpl
00:00:28.0110 0x1390  C:\Windows\System32\bthprops.cpl - ok
00:00:28.0110 0x1390  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] C:\Windows\System32\fdPHost.dll
00:00:28.0110 0x1390  C:\Windows\System32\fdPHost.dll - ok
00:00:28.0110 0x1390  [ DE6F4B7E62FDE776F3DE8E5FB5A05C48, 703587D10434C1D6755E5F17EB2110433A506E51ECC5329E2CCA0B8380C455EC ] C:\Windows\System32\fdWSD.dll
00:00:28.0110 0x1390  C:\Windows\System32\fdWSD.dll - ok
00:00:28.0110 0x1390  [ 8E8C92DD50F6B34907813AFDC0C8F7DD, EF7FF7CFAEB5D930EB96B5F81BD60EE23692E24A31650CA72B25164D20F2DAE4 ] C:\Windows\System32\dbgeng.dll
00:00:28.0110 0x1390  C:\Windows\System32\dbgeng.dll - ok
00:00:28.0110 0x1390  [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\System32\mlang.dll
00:00:28.0110 0x1390  C:\Windows\System32\mlang.dll - ok
00:00:28.0125 0x1390  [ 674611721264013DB169EC12AFC9C3B6, 7BC2791EF2239483F1F71A7F0F53E59002F5A1297A39BE3AF51CA34FFCE2CE24 ] C:\Windows\System32\fdSSDP.dll
00:00:28.0125 0x1390  C:\Windows\System32\fdSSDP.dll - ok
00:00:28.0125 0x1390  [ 71ECC01F9928873A5DEB5B475C0F2429, 608B7D5EFB980CBCC519A039C85EF86E4DD12CCFCA6884675615BBE6DAAF6582 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
00:00:28.0125 0x1390  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
00:00:28.0125 0x1390  [ 3FF0FA0A81910617739644A06D06D016, 6B6828E06332805FDA887ED181464FD11A16F49ACADE2856F3CF69E98D81DEDB ] C:\Windows\System32\fdProxy.dll
00:00:28.0125 0x1390  C:\Windows\System32\fdProxy.dll - ok
00:00:28.0125 0x1390  [ 697C74E92BAF6209B8FB300B00890B0E, 7F9113694FEC9529F7BFD37913B5D1A3ABA535E9673C9E554369E2F3F4E5A0F8 ] C:\Program Files\Canon\Quick Menu\LangInfo\CNQMLANG.dll
00:00:28.0125 0x1390  C:\Program Files\Canon\Quick Menu\LangInfo\CNQMLANG.dll - ok
00:00:28.0141 0x1390  [ BB3C7E48088D37417EB37F1A9E3D2449, EA1AA2D208472790FCA1ACFC8A6DB9EAF0CDDE4E0B54B0B8631B3F6EC0FD56FF ] C:\Windows\System32\werui.dll
00:00:28.0141 0x1390  C:\Windows\System32\werui.dll - ok
00:00:28.0141 0x1390  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] C:\Windows\System32\ListSvc.dll
00:00:28.0141 0x1390  C:\Windows\System32\ListSvc.dll - ok
00:00:28.0141 0x1390  [ 08DF1B8C9C0754A7069E80A986373F52, 7397FDE63A8F3644784C4F9181EEDF80A8A0F824524C619B8795B8F97A8101EC ] C:\Windows\System32\P2P.dll
00:00:28.0141 0x1390  C:\Windows\System32\P2P.dll - ok
00:00:28.0141 0x1390  [ 68580AEF5F1529E493F5DE41622D0C92, 8FF4D5E018F6490EEEE002FF192AEA0A9A03C1E52E0DCC589F715A7BF43E798C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll
00:00:28.0141 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll - ok
00:00:28.0157 0x1390  [ 9DC23ACF360AEA7DF55AD7A8D3FBF4E6, 03FDE54B593303D627B6D60501C7FA12B2D7F88AFE7F9DA05D4AB192EB113F10 ] C:\Windows\System32\IdListen.dll
00:00:28.0157 0x1390  C:\Windows\System32\IdListen.dll - ok
00:00:28.0157 0x1390  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] C:\Windows\System32\pnrpsvc.dll
00:00:28.0157 0x1390  C:\Windows\System32\pnrpsvc.dll - ok
00:00:28.0157 0x1390  [ F059EB4C9C256F62F196EAA439E28F74, 5BE15E844D96B10195333C7DAECD50D69C393ACA99B3C358A19C5819DF941FB5 ] C:\Windows\System32\hgprint.dll
00:00:28.0157 0x1390  C:\Windows\System32\hgprint.dll - ok
00:00:28.0157 0x1390  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] C:\Windows\System32\p2psvc.dll
00:00:28.0157 0x1390  C:\Windows\System32\p2psvc.dll - ok
00:00:28.0172 0x1390  [ 4DE55F6318B14D5149D2BD7943266EC8, BFA0AA4C8129224FDEEDCACCB130FE38639007A5BEB20B2D343F9929F48FFDC6 ] C:\Program Files\Canon\Quick Menu\CNQMXML.dll
00:00:28.0172 0x1390  C:\Program Files\Canon\Quick Menu\CNQMXML.dll - ok
00:00:28.0172 0x1390  [ 1372E8E8FD066002131E3D509275E697, 7CAFCFAFB6DF16CBE88104C4146988AAC1824D9CAA8EE63A7D91092F36BA1313 ] C:\Windows\System32\P2PGraph.dll
00:00:28.0172 0x1390  C:\Windows\System32\P2PGraph.dll - ok
00:00:28.0172 0x1390  [ 7DD7A27021AF2EA6B0F69865DC5AAC18, D70BCE1CD24510EE2B5DFA24F42E132F1906F1257ED68F0A0E00DF09AD8F2E2E ] C:\Program Files\Canon\Quick Menu\CNQMUTIL.dll
00:00:28.0172 0x1390  C:\Program Files\Canon\Quick Menu\CNQMUTIL.dll - ok
00:00:28.0172 0x1390  [ DD088B7F541AFF74CF4682404AF58F72, B2BECAAA913FC55532725266A76256F7505B491879067B59F2C74DB84A57058B ] C:\Program Files\Canon\Quick Menu\CNQMMWRP.DLL
00:00:28.0172 0x1390  C:\Program Files\Canon\Quick Menu\CNQMMWRP.DLL - ok
00:00:28.0188 0x1390  [ 6705D86C9BCF2D3EABBFE64B7C1A9CC6, 1DCAD8A3BBD798FD7A9DB3C99D1494D048A72F0B976ACDFB3856B38CAABED6C3 ] C:\Program Files\Canon\Quick Menu\CCL.DLL
00:00:28.0188 0x1390  C:\Program Files\Canon\Quick Menu\CCL.DLL - ok
00:00:28.0188 0x1390  [ 9188BA404850B16C41AB59E3BE19BA66, 13B5AA2FFBD0BD9A1F24A28AAD39F73B796C95FA24F11289BB4EC47D2170798B ] C:\Program Files\Canon\Quick Menu\mfc100u.dll
00:00:28.0188 0x1390  C:\Program Files\Canon\Quick Menu\mfc100u.dll - ok
00:00:28.0188 0x1390  [ 397FC81BD0FB460508A680C5F825FF9B, 6B47768689EBB589EE93FDC5FCB3385E77B3FFE876EA62AB135F78A53CA233B0 ] C:\Program Files\Canon\Quick Menu\msvcr100.dll
00:00:28.0188 0x1390  C:\Program Files\Canon\Quick Menu\msvcr100.dll - ok
00:00:28.0188 0x1390  [ EA009C246109A0EEC4E4ED7D3EB3BF5C, 04A4718D16CC3E3A5F86B883AD049520240B3FA4EC071B0EB1BBE398C613A686 ] C:\Program Files\Canon\Quick Menu\msvcp100.dll
00:00:28.0188 0x1390  C:\Program Files\Canon\Quick Menu\msvcp100.dll - ok
00:00:28.0203 0x1390  [ C2D6A4475B87651D5909E364439FDA52, BE9B898A8396F977E05A22D6EDF7B6B4EF4C16E159806453D03C2A918D24C19F ] C:\Windows\System32\FXSST.dll
00:00:28.0203 0x1390  C:\Windows\System32\FXSST.dll - ok
00:00:28.0203 0x1390  [ D9747507D0885342B3D94C3FA4A784ED, C6F0FD8B7206B0CC72210CBAFD2ED75433649B11DA9D970D9A74FFCB5FBF6752 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll
00:00:28.0203 0x1390  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll - ok
00:00:28.0203 0x1390  [ 942E57152F1CD0533644AB30EF1A4728, 4F72510BECFAFDBB06C9CAAC66BA9E95225DE1EA12B4D2FD5B67492A2E628ABD ] C:\Windows\System32\FXSAPI.dll
00:00:28.0203 0x1390  C:\Windows\System32\FXSAPI.dll - ok
00:00:28.0203 0x1390  [ C4096CA42199428B3D63DC206C197F0E, 76336CD81608650E5AAD02D59D2AC752E7BDD057314BBC7334CECF74D1EAB587 ] C:\Windows\System32\FXSRESM.dll
00:00:28.0203 0x1390  C:\Windows\System32\FXSRESM.dll - ok
00:00:28.0219 0x1390  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] C:\Windows\System32\FXSSVC.exe
00:00:28.0219 0x1390  C:\Windows\System32\FXSSVC.exe - ok
00:00:28.0219 0x1390  [ 65068E245EFE045E6956190CD0E2FB91, 6201B73951BF08BB52C4C387CDB536B13A7F2B078CD888201FAB88AB4550FFCC ] C:\Program Files\Mozilla Firefox\firefox.exe
00:00:28.0219 0x1390  C:\Program Files\Mozilla Firefox\firefox.exe - ok
00:00:28.0219 0x1390  [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
00:00:28.0219 0x1390  C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
00:00:28.0219 0x1390  [ 0184C1BFE529C512D8E18D4C83BDB86A, F0C4A3337B713B9DDD1F333249A94F4FBA63005699D0C19CCEBDE6FB29C07F47 ] C:\Program Files\Mozilla Firefox\mozglue.dll
00:00:28.0219 0x1390  C:\Program Files\Mozilla Firefox\mozglue.dll - ok
00:00:28.0235 0x1390  [ 03E9314004F504A14A61C3D364B62F66, A3BA6421991241BEA9C8334B62C3088F8F131AB906C3CC52113945D05016A35F ] C:\Program Files\Mozilla Firefox\msvcp100.dll
00:00:28.0235 0x1390  C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
00:00:28.0235 0x1390  [ 1CB3CAC85D153D3363E973997146E5B6, 622752318A961620984077DEBF02B7858385AC570D09F5A7F90A1D342B7A0571 ] C:\Program Files\Mozilla Firefox\sandboxbroker.dll
00:00:28.0235 0x1390  C:\Program Files\Mozilla Firefox\sandboxbroker.dll - ok
00:00:28.0235 0x1390  [ 413C65F0CC04F90F187ACBC52DE06A64, CEBF68F48849FE90375EEF1582F356A64CFC90D605BB0507FD0945F4AB2D7CB0 ] C:\Program Files\Mozilla Firefox\nss3.dll
00:00:28.0235 0x1390  C:\Program Files\Mozilla Firefox\nss3.dll - ok
00:00:28.0235 0x1390  [ 6196625C058C5181F074BC7D200D4F10, 552951301F7C646B2E3B3528D1922959F8D0FF5B664F96C7D4D0B08D07DB17CC ] C:\Program Files\Mozilla Firefox\mozjs.dll
00:00:28.0235 0x1390  C:\Program Files\Mozilla Firefox\mozjs.dll - ok
00:00:28.0250 0x1390  [ CBE8476C3D9FDCD368A8AE87FFD280D5, 25A751931D7596B44124C0CBE4E2B8462A1BAD6C8F468A7DB5D4BECC5D36E580 ] C:\Program Files\Mozilla Firefox\icuin52.dll
00:00:28.0250 0x1390  C:\Program Files\Mozilla Firefox\icuin52.dll - ok
00:00:28.0250 0x1390  [ 70EB8C744F2133D0FB12720C8DC3B6DF, E176D44D520823AFADCF7BD5409628520AF128BE3FEC8D0654899695F4237414 ] C:\Program Files\Mozilla Firefox\icuuc52.dll
00:00:28.0250 0x1390  C:\Program Files\Mozilla Firefox\icuuc52.dll - ok
00:00:28.0250 0x1390  [ 461C680AE3711C4D65FECB6CD67E54FC, E046BFD7A1CC33FAC3648B80F766A4074EB125F1D6F56B5B09D9F4A7CB6DCBE2 ] C:\Program Files\Mozilla Firefox\icudt52.dll
00:00:28.0250 0x1390  C:\Program Files\Mozilla Firefox\icudt52.dll - ok
00:00:28.0266 0x1390  [ 4875B9B880ADB135759AFD4E6C932FD9, 1F5C37AC3C7BFE64AF77773459B20C4561544ACF31B93E2B158A4F8B114F6085 ] C:\Program Files\Mozilla Firefox\gkmedias.dll
00:00:28.0266 0x1390  C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
00:00:28.0266 0x1390  [ E38ADE98EE3B258E82DF4DBF70469C6C, DF6A9070B6FEA652AFC833FD1F8C59728B1388EAC8E097417A4BA9DB19C458A9 ] C:\Program Files\Mozilla Firefox\mozalloc.dll
00:00:28.0266 0x1390  C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
00:00:28.0266 0x1390  [ 22C07AADB4FCBB70AEDF79BDBD1D41D8, 2D8FE87329F3969BFE292D59226DE585E0473F2FE256869CFE91A2A7086F2F1A ] C:\Program Files\Mozilla Firefox\xul.dll
00:00:28.0266 0x1390  C:\Program Files\Mozilla Firefox\xul.dll - ok
00:00:28.0266 0x1390  [ 487F44B08EFEAF5AD087878357B9403D, B02C99850940588D52B3E6DB30DB64582F294E0BD62101067BECFEA1483010C6 ] C:\Windows\System32\pdh.dll
00:00:28.0266 0x1390  C:\Windows\System32\pdh.dll - ok
00:00:28.0281 0x1390  [ 7E6B142C143282BF13AB0FAB9E7A247F, 740CA33D47E3B11981A72BEAD58CA5ABDEB3D8CEE539FC18231115925867BAB4 ] C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll
00:00:28.0281 0x1390  C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll - ok
00:00:28.0281 0x1390  [ 43C9CF6825CEA58F1815B7C3DBBB385C, C79DB405D588C77E4ACAE3BC26080213BEEB604C0A109AFDF88031FC46B4CBC0 ] C:\Windows\System32\Wpc.dll
00:00:28.0281 0x1390  C:\Windows\System32\Wpc.dll - ok
00:00:28.0281 0x1390  [ 14800BD31701A5047AC3145BB1E698AE, 05B4E33B14B9623EE065634708D9C4CDC7226146F9614C4F374E6B097BB35A50 ] C:\Windows\System32\d2d1.dll
00:00:28.0281 0x1390  C:\Windows\System32\d2d1.dll - ok
00:00:28.0281 0x1390  [ 1ECE740CA846C1E2E1E07B0D0011FB3B, 9849845D569BA78C8D1DA4A9A69F88D206A95E7C356E240BE9E6465E3608BE45 ] C:\Program Files\Mozilla Firefox\softokn3.dll
00:00:28.0281 0x1390  C:\Program Files\Mozilla Firefox\softokn3.dll - ok
00:00:28.0297 0x1390  [ DA09A49EEE2F7E234BA4D1440C1BB583, 7C270F89C3404BEE3D8F06ACBD9A0163B772EFE2BB78B4CA304975D88858D0AC ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
00:00:28.0297 0x1390  C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
00:00:28.0297 0x1390  [ 45692E231D5318FC995DE4FE464C56EB, 96E25B1899C2F0DFF39863458E518522C0B2D71356469EEE4B96FA1537E4855D ] C:\Program Files\Mozilla Firefox\freebl3.dll
00:00:28.0297 0x1390  C:\Program Files\Mozilla Firefox\freebl3.dll - ok
00:00:28.0297 0x1390  [ 34C27E75CD82C50B3825CE2A7A70B85D, C756A0F4D62AFA598ADB9DEB95FAAD4BB2633EB1702F0E7EF5E0A2C05672CBA0 ] C:\Program Files\Mozilla Firefox\nssckbi.dll
00:00:28.0297 0x1390  C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
00:00:28.0297 0x1390  [ 940801D24C92A9936CCF2732339316F0, B5FD98A0D77A63B76DFC699F6102B0F3CC27E9F901A22B85570255109701EA19 ] C:\Program Files\Siber Systems\AI RoboForm\Firefox\rf-firefox.dll
00:00:28.0297 0x1390  C:\Program Files\Siber Systems\AI RoboForm\Firefox\rf-firefox.dll - ok
00:00:28.0313 0x1390  [ AA3B91B70E79BCE70AD3B190789B9574, BEA5C6921C0B5A680CC3A5BA1AAD1C365F38C6FA7F80BC93475FFD2AA26F710A ] C:\Windows\System32\drttransport.dll
00:00:28.0313 0x1390  C:\Windows\System32\drttransport.dll - ok
00:00:28.0313 0x1390  [ EE29FCC244C8033E2F748D863DCBF378, 406C5EB8FD274588ADC54C07B56DCAEEB21D3C8E38B84BB9B9CFF14629CA7196 ] C:\Windows\System32\drt.dll
00:00:28.0313 0x1390  C:\Windows\System32\drt.dll - ok
00:00:28.0313 0x1390  [ 0786D45A6F41F075E20A18E2F7285BA0, 1561688A6641BE8D538CBD0933546C40887C4A336E8EA6D976333492C4C714B1 ] C:\Program Files\Windows Media Player\wmplayer.exe
00:00:28.0313 0x1390  C:\Program Files\Windows Media Player\wmplayer.exe - ok
00:00:28.0313 0x1390  [ 72DB7DD3611C6635BA1E3AAA88A3FEAC, 3B46E9AFA4D47868F42071364CE7B02CFBBF71D90A8EE91446232DDBEFCCFE10 ] C:\Program Files\CyberLink\YouCam\YouCam.exe
00:00:28.0313 0x1390  C:\Program Files\CyberLink\YouCam\YouCam.exe - ok
00:00:28.0328 0x1390  [ AEB983842B327F4A088D35EDFB4FDB19, C4A950B3C731BC6A43FF01150780E402B72F456567C4B19EA433B708F7125694 ] C:\Program Files\CyberLink\YouCam\Koan\pyloader.dll
00:00:28.0328 0x1390  C:\Program Files\CyberLink\YouCam\Koan\pyloader.dll - ok
00:00:28.0328 0x1390  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\System32\d3d9.dll
00:00:28.0328 0x1390  C:\Windows\System32\d3d9.dll - ok
00:00:28.0328 0x1390  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\System32\d3d8thk.dll
00:00:28.0328 0x1390  C:\Windows\System32\d3d8thk.dll - ok
00:00:28.0328 0x1390  [ 6E087B1CDBE342D8CA485711B31C9165, 776593D13CDBA753597AF1FEE0EF27294817C3974A752FECFAE78CC174654E31 ] C:\Program Files\CyberLink\YouCam\Koan\python25.dll
00:00:28.0328 0x1390  C:\Program Files\CyberLink\YouCam\Koan\python25.dll - ok
00:00:28.0328 0x1390  [ D2E95CE4B980EFD9605D1A38F895B3DF, CEB2E176F3CB18628512E459E52EF766E111A7DC70E705CE6EABB6D14A464A36 ] C:\Program Files\CyberLink\YouCam\Koan\_render3d.pyd
00:00:28.0328 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_render3d.pyd - ok
00:00:28.0344 0x1390  [ F182E8EC4BE415E4EB60766A2BC3A760, A583A83E7EECA2D7CA1787A3F68DC52FF7A51CBF02D8E7B7BFB156770BAE28E0 ] C:\Program Files\CyberLink\YouCam\Koan\_font.pyd
00:00:28.0344 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_font.pyd - ok
00:00:28.0344 0x1390  [ C084F360C0386BBF6773AB4C5AFC0D86, B2D9F3EA68C30E496541899A99CEF8B2324FAE408E23898508D1CD819945A810 ] C:\Program Files\CyberLink\YouCam\Koan\_Interpolator.pyd
00:00:28.0344 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_Interpolator.pyd - ok
00:00:28.0344 0x1390  [ 58855D0103C825993E578902126FB18F, FEA9ED542379F058DFC5B655CAD42FFAF486C48DAA7A49763BEDCA945A09E34C ] C:\Program Files\CyberLink\YouCam\Koan\_image.pyd
00:00:28.0344 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_image.pyd - ok
00:00:28.0344 0x1390  [ BF0852AAC80EBB66A7E1C984C898B4F0, 3025A77D2CDAA6FFD4995741F12A4A8433D9C1CC634340D4E8CA74501FBE3E65 ] C:\Program Files\CyberLink\YouCam\Koan\_wingdi.pyd
00:00:28.0344 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_wingdi.pyd - ok
00:00:28.0359 0x1390  [ 4DC7345657EFC069D301496DC5B66ECD, 9B12CC69AAAE24828510216509497C29C2C36544F51243971E2749F980FE4D22 ] C:\Program Files\CyberLink\YouCam\Koan\_ctypes.pyd
00:00:28.0359 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_ctypes.pyd - ok
00:00:28.0359 0x1390  [ E415862612E65F10D7D888443ECD7594, 5EDEED79F2359527A55B8189CFA8B9B121CD608D44EEAD905A0F3436938AD532 ] C:\Program Files\CyberLink\YouCam\Koan\d3dx9_30.dll
00:00:28.0359 0x1390  C:\Program Files\CyberLink\YouCam\Koan\d3dx9_30.dll - ok
00:00:28.0359 0x1390  [ 76FC7842573EDFBB128E668512AA63C9, 36D6B61C771C337F8BFD7CED898C20E6E265FE10FC1A9A48215E4CAB28E2379E ] C:\Program Files\CyberLink\YouCam\Koan\_socket.pyd
00:00:28.0359 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_socket.pyd - ok
00:00:28.0375 0x1390  [ 34E7F32C5C4E6D509A14EC84913C244A, BE803BED2D1A44DE2BF48563A29687B99E644F8302E8F9B87003A40D1FEEF005 ] C:\Program Files\CyberLink\YouCam\Koan\_ssl.pyd
00:00:28.0375 0x1390  C:\Program Files\CyberLink\YouCam\Koan\_ssl.pyd - ok
00:00:28.0375 0x1390  [ 26EA93B949F0BE2C7481CC9A4A9F83AB, FF13583ED5109961114C89FAA8085105B35EBBCD96F3C3C88A50563F924BFE4E ] C:\Program Files\CyberLink\YouCam\subsys\Mui\_CLMuiTransfer.pyd
00:00:28.0375 0x1390  C:\Program Files\CyberLink\YouCam\subsys\Mui\_CLMuiTransfer.pyd - ok
00:00:28.0375 0x1390  [ 738BC1EC1094DFD93F0EEF567E3011B7, 1A8B8A2F3B631EE55EBBF6FFEF11CBA6E6DF96AF4A9377C0E69E61EC68E45E34 ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLVTransDetect.dll
00:00:28.0375 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLVTransDetect.dll - ok
00:00:28.0375 0x1390  [ 53B1185B44464964FFD50774F5A8A13E, 1F42F5DDFB1E8574F7A913BE15200854F4F1AA3C09DCCFFBF3251FDA6FBD4B05 ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\_PyYouCam.pyd
00:00:28.0375 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\_PyYouCam.pyd - ok
00:00:28.0391 0x1390  [ 0F416E23DD2EB4DEBE70608020CFD283, 8762F519453F114EC3126698E3DD49F2C5AF79124DDBFC87DF08D1EC2B292235 ] C:\Windows\System32\WMVCORE.DLL
00:00:28.0391 0x1390  C:\Windows\System32\WMVCORE.DLL - ok
00:00:28.0391 0x1390  [ A7DD56261518373F70F23079EB3CD0A2, 4BC8DC1744DA5C062DEA5BE122CBAE948810536116BBA747844556783768F1F6 ] C:\Windows\System32\WMASF.DLL
00:00:28.0391 0x1390  C:\Windows\System32\WMASF.DLL - ok
00:00:28.0391 0x1390  [ 794E62D96E8CE1ED9AABCA917F632AD3, C74D8CC791AE2BF441AA5F5216E585C37C4B518409E29B3197C7DE92F5A33FFF ] C:\Program Files\CyberLink\YouCam\subsys\Device\_Device.pyd
00:00:28.0391 0x1390  C:\Program Files\CyberLink\YouCam\subsys\Device\_Device.pyd - ok
00:00:28.0391 0x1390  [ BDCD3B55058D8ABFF3A26A04F4760B2F, 39D4AC1F39F16B511E4CB4FDED95B8B76C04D145A6DE051ABF8D02206BCCA4B6 ] C:\Program Files\CyberLink\YouCam\subsys\SplashWnd\_PySplashWnd.pyd
00:00:28.0391 0x1390  C:\Program Files\CyberLink\YouCam\subsys\SplashWnd\_PySplashWnd.pyd - ok
00:00:28.0406 0x1390  [ 5D6575A080B7F8D44B64D7E78951E5AF, 8DA1CD96C3EF0B0D84471F8C893E88861B5A85061881D3FAAF6F66EA36282D7C ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLFxRec.dll
00:00:28.0406 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLFxRec.dll - ok
00:00:28.0406 0x1390  [ 76144D2A8B190A35EB578F65C66C88BB, 6714A0D045227A7F446A25550E7C98D8CCF0BAD3FA8D84A9B836E7513D52817D ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLWebCameraSource.ax
00:00:28.0406 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLWebCameraSource.ax - ok
00:00:28.0406 0x1390  [ A626AEB98E7454EE84BA00BBB907A752, AA5483300288A88DAFDAC6D7E411247A53EDF77F861ABE08531ECEBA1FF0D87B ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\XUControl.dll
00:00:28.0406 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\XUControl.dll - ok
00:00:28.0406 0x1390  [ 9C7161CDF282B770E79174B0B1D66829, 4CF311FECEBD76D2D92647906A22E1D2A7243F67DB519C2E3D573E36B07C12F2 ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLWVDAdapter.dll
00:00:28.0406 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLWVDAdapter.dll - ok
00:00:28.0422 0x1390  [ EE5138EE6B5D8D166163B95EF0EBDDF3, B0C4A1040AB0DD04209E05693176F2E8F0520FE96DACE980BE60D3C8B01D39FD ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLCSIWriter.ax
00:00:28.0422 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLCSIWriter.ax - ok
00:00:28.0422 0x1390  [ C2B7A2172F456A0FBD24434E14C0E209, 3E59EE4AD35392A6E010A997265E7F4759BDA4D0F6724DE43EA76294433888E9 ] C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLRGL.ax
00:00:28.0422 0x1390  C:\Program Files\CyberLink\YouCam\subsys\YouCam\CLRGL.ax - ok
00:00:28.0422 0x1390  [ EE1320789A5B398C8BC2A6216953F625, E1FBB911CB000193FC55E57189945141E4D50D158A0FC8B9F1B8304F07BF0B9C ] C:\Windows\System32\WMSPDMOE.DLL
00:00:28.0422 0x1390  C:\Windows\System32\WMSPDMOE.DLL - ok
00:00:28.0422 0x1390  [ 436B7C33425D6445FDC733083C823458, C0EC5145CCD44AE986D81F3910268013068E36BF99C4AABFFCDB9E26C8899D4C ] C:\Windows\System32\WMADMOE.DLL
00:00:28.0422 0x1390  C:\Windows\System32\WMADMOE.DLL - ok
00:00:28.0437 0x1390  [ C2A12B061F591E093E3FD99D75811398, 015EEC31E429735E83556A6A727A7D7C42534B0F7E0BCE01DC21AF76B48F726E ] C:\Windows\System32\imaadp32.acm
00:00:28.0437 0x1390  C:\Windows\System32\imaadp32.acm - ok
00:00:28.0437 0x1390  [ BF3D6F7D929E018703BE2D4556DD679A, 577DF98717786E33468A1AD3D7E413ACD08720A449832499B7DB6253B68462FF ] C:\Windows\System32\msg711.acm
00:00:28.0437 0x1390  C:\Windows\System32\msg711.acm - ok
00:00:28.0437 0x1390  [ AE796D3FD1C69CE62BB6AFACDFB950AA, 83731776EE080CB5C3DB3121C508F0BCB123D8D40ABE29C648F2C9964312A62C ] C:\Windows\System32\msgsm32.acm
00:00:28.0437 0x1390  C:\Windows\System32\msgsm32.acm - ok
00:00:28.0437 0x1390  [ 8EE566982477BC5886FE622CEBEE9C86, 19D6100EDA7C3F250610062B0D87246469FE10A48AF5E34A541787A6773BE278 ] C:\Windows\System32\msadp32.acm
00:00:28.0437 0x1390  C:\Windows\System32\msadp32.acm - ok
00:00:28.0453 0x1390  [ 106237BC218D53A0FCEBD2AC7ADD5721, FA6C6369480E674B24C02B3E6005E26DF65AD6623CED40C155528E173EF472A8 ] C:\Windows\System32\WMVSENCD.DLL
00:00:28.0453 0x1390  C:\Windows\System32\WMVSENCD.DLL - ok
00:00:28.0453 0x1390  [ 50E32B49ED0AAC7403550B63DAC2DB68, CA76705400A347676845E1086BA4B3993D12A4EFC9DF82A70F00F234330074E8 ] C:\Windows\System32\WMVXENCD.DLL
00:00:28.0453 0x1390  C:\Windows\System32\WMVXENCD.DLL - ok
00:00:28.0453 0x1390  [ E19AF92D61DC3E377F9DF9BF72C7A128, 4CE0E20231FA0F4FFC222721FB4A396B8FCE09920BEC36394B2B74F4092E6A29 ] C:\Windows\System32\WMVENCOD.DLL
00:00:28.0453 0x1390  C:\Windows\System32\WMVENCOD.DLL - ok
00:00:28.0453 0x1390  [ C140F86932B5B61F54A4D836E2D34AB2, 94821597EC70F27BF11A747D5EED474C57F389F20A2E0C3F1D0CB3F00974A53B ] C:\Windows\System32\ksproxy.ax
00:00:28.0453 0x1390  C:\Windows\System32\ksproxy.ax - ok
00:00:28.0469 0x1390  [ 4DDACA8A66B95ABA02812FF3C13DE198, FC14FA85367B29A5DA6479D198B9FA1D9A41C965685F51D5F0166D72A9F4668E ] C:\Windows\System32\vidcap.ax
00:00:28.0469 0x1390  C:\Windows\System32\vidcap.ax - ok
00:00:28.0469 0x1390  [ 630A31F277349109299E590856A4B004, E686938BE16163976BA048C19E0F23F27CFFBDEB044C0C038176BA3435C67C0B ] C:\Windows\System32\Kswdmcap.ax
00:00:28.0469 0x1390  C:\Windows\System32\Kswdmcap.ax - ok
00:00:28.0469 0x1390  [ DC6612A9EE015A36BA2A27BC9CC12537, F4456A3E4028BE3BDE46363290CCC1E8420034A122596D86272CE4B554C78DB5 ] C:\Windows\System32\mfc42.dll
00:00:28.0469 0x1390  C:\Windows\System32\mfc42.dll - ok
00:00:28.0469 0x1390  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] C:\Windows\System32\drivers\mspqm.sys
00:00:28.0469 0x1390  C:\Windows\System32\drivers\mspqm.sys - ok
00:00:28.0484 0x1390  [ 2977FFEC201E48A2970998F2DD936E32, EC383115E6C76528EFD887A8F1B4BF9CD4F445D2FAC18F88B1D2604B0366BB69 ] C:\Program Files\CyberLink\YouCam\Trial\Trial.exe
00:00:28.0484 0x1390  C:\Program Files\CyberLink\YouCam\Trial\Trial.exe - ok
00:00:28.0484 0x1390  [ B0BF37F2DD076FE7B8AE0A7B6396EF06, 91A23F85B353D194ABD02DD6EEE247A9688258429358983F070EFDA07449DC64 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qgif4.dll
00:00:28.0484 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qgif4.dll - ok
00:00:28.0484 0x1390  [ B7F5824B020F89351AC1FB28FCEB6D29, 49172C065CE4AA9D87F16725680D27B212200D83657AFFA27B454256BD58CCE7 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qico4.dll
00:00:28.0484 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qico4.dll - ok
00:00:28.0500 0x1390  [ AB1B9A2E2A9BE141988E2800F2052971, FFEF582D9E3DAAA8FF06D3933DFB5E6F6D0B39BF9C6FE28ECB74041DBAD57C37 ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qjpeg4.dll
00:00:28.0500 0x1390  C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\imageformats\qjpeg4.dll - ok
00:00:28.0500 0x1390  [ C5413BC4F10CEB4C3070BBF04D324117, 83908C79D22458BC05FAB5ABF1DDF74177B1E5C612E893C62C19C284D2C86F60 ] C:\Windows\System32\msisip.dll
00:00:28.0500 0x1390  C:\Windows\System32\msisip.dll - ok
00:00:28.0500 0x1390  [ 5F0688DE86AC1EA98B0CB7224C6A3EFA, EC9709CA79303A1C4C2041EC0D2611D91B490A2AAB6F8C4054131D8502F5A2F4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe
00:00:28.0500 0x1390  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARMHelper.exe - ok
00:00:28.0500 0x1390  ================ Scan generic autorun ======================
00:00:28.0609 0x1390  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:00:28.0640 0x1390  Adobe ARM - ok
00:00:28.0671 0x1390  [ 7EAFC20E93923DBE751164EB0683C490, B485C1AD3E804B3D00BCFE74B2FBDBED18F79FC82762DB517264156CF4EEDE3C ] C:\Program Files\CyberLink\YouCam\YouCamService.exe
00:00:28.0687 0x1390  YouCam Service - ok
00:00:28.0734 0x1390  [ 031E0AC7341FBF5699011D71D4157D60, 272F8E40ACDDDCA0E6CE51190693EF0E2C0378B1327CC3647353D85DAFE3FF4E ] C:\Program Files\IDT\WDM\sttray.exe
00:00:28.0765 0x1390  SysTrayApp - ok
00:00:28.0765 0x1390  AESTFltr - ok
00:00:28.0843 0x1390  [ 15D2DB9BFA8E833ED31FAB2BB088FDDA, 6198C0A5DA01DA146A9A054C3C882A1DBF9BA84466EBFDDA1C1062EF36F9B34B ] C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
00:00:28.0874 0x1390  AVP - ok
00:00:28.0999 0x1390  [ DFCD94101C5AAE5BDE2F662A60E725EA, ACEF94E75342AE8328C21555B2D640FA80F0110ED0BDE1CB4D3188A8AE9F600F ] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE
00:00:29.0046 0x1390  CanonQuickMenu - ok
00:00:29.0171 0x1390  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
00:00:29.0249 0x1390  Sidebar - ok
00:00:29.0280 0x1390  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
00:00:29.0295 0x1390  mctadmin - ok
00:00:29.0342 0x1390  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
00:00:29.0373 0x1390  Sidebar - ok
00:00:29.0389 0x1390  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
00:00:29.0405 0x1390  mctadmin - ok
00:00:29.0436 0x1390  Skype - ok
00:00:29.0467 0x1390  [ BDC28D69C3AB3AD7C3188CF2843F6927, EC7D422E4BCE106047AAAA81E5F965061EEA9F3FD52FC645E241F1E24690D3FC ] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
00:00:29.0483 0x1390  RoboForm - ok
00:00:29.0607 0x1390  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Utente\AppData\Local\FluxSoftware\Flux\flux.exe
00:00:29.0639 0x1390  f.lux - ok
00:00:29.0670 0x1390  [ BDC28D69C3AB3AD7C3188CF2843F6927, EC7D422E4BCE106047AAAA81E5F965061EEA9F3FD52FC645E241F1E24690D3FC ] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
00:00:29.0685 0x1390  RoboForm - ok
00:00:29.0763 0x1390  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Cesare\AppData\Local\FluxSoftware\Flux\flux.exe
00:00:29.0795 0x1390  f.lux - ok
00:00:29.0795 0x1390  Waiting for KSN requests completion. In queue: 12
00:00:30.0809 0x1390  Waiting for KSN requests completion. In queue: 12
00:00:31.0823 0x1390  Waiting for KSN requests completion. In queue: 12
00:00:32.0899 0x1390  AV detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmiav.exe ( 13.0.1.4190 ), 0x41000 ( enabled : updated )
00:00:32.0915 0x1390  FW detected via SS2: Kaspersky Internet Security, C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2013\wmifw.exe ( 13.0.1.4190 ), 0x41010 ( enabled )
00:00:35.0520 0x1390  ============================================================
00:00:35.0520 0x1390  Scan finished
00:00:35.0520 0x1390  ============================================================
00:00:35.0535 0x1388  Detected object count: 0
00:00:35.0535 0x1388  Actual detected object count: 0
00:01:07.0141 0x0a88  Deinitialize success
 



#11 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 06:54 PM

AVZ Antiviral Toolkit log; AVZ version is 4.43
Scanning started at 13.11.2014 00:35:59
Database loaded: signatures - 297605, NN profile(s) - 2, malware removal microprograms - 56, signature database released 12.11.2014 16:00
Heuristic microprograms loaded: 407
PVS microprograms loaded: 9
Digital signatures of system files loaded: 702551
Heuristic analyzer mode: Medium heuristics mode
Malware removal mode: enabled
Windows version is: 6.1.7601, Service Pack 1 "Windows 7 Professional" ; AVZ is run with administrator rights
System Restore: enabled
1. Searching for Rootkits and other software intercepting API functions
1.1 Searching for user-mode API hooks
 Analysis: kernel32.dll, export table found in section .text
 Analysis: ntdll.dll, export table found in section .text
 Analysis: user32.dll, export table found in section .text
 Analysis: advapi32.dll, export table found in section .text
 Analysis: ws2_32.dll, export table found in section .text
 Analysis: wininet.dll, export table found in section .text
 Analysis: rasapi32.dll, export table found in section .text
 Analysis: urlmon.dll, export table found in section .text
 Analysis: netapi32.dll, export table found in section .text
1.2 Searching for kernel-mode API hooks
 Driver loaded successfully
 SDT found (RVA=169B00)
 Kernel ntkrnlpa.exe found in memory at address 82C1C000
   SDT = 82D85B00
   KiST = 82C9A58C (401)
Function NtAdjustPrivilegesToken (0C) intercepted (82EA1F03->90879730), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtAlpcConnectPort (16) intercepted (82E925CE->9082CCA2), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtAlpcCreatePort (17) intercepted (82E11DDE->9082CFEA), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtAlpcSendWaitReceivePort (27) intercepted (82E6F255->9082D430), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtClose (32) intercepted (82E615F8->908152AE), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtConnectPort (3B) intercepted (82E950D0->9082C97C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateEvent (40) intercepted (82E5D8EE->90815826), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateMutant (4A) intercepted (82E2D386->9081570C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreatePort (4D) intercepted (82E0E8D2->9082CE4E), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateSection (54) intercepted (82E4016D->9087C690), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateSemaphore (55) intercepted (82E22B98->90815946), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateSymbolicLinkObject (56) intercepted (82E1EA00->9083D040), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateThread (57) intercepted (82EF9002->9087BB18), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateThreadEx (58) intercepted (82E8D4DB->9087BD64), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateUserProcess (5D) intercepted (82E8B40D->9087B75E), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtCreateWaitablePort (5E) intercepted (82DC11E4->9082CF1C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtDebugActiveProcess (60) intercepted (82ECAF02->9087B604), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtDeviceIoControlFile (6B) intercepted (82E9077F->908152F2), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtDuplicateObject (6F) intercepted (82E4E791->90879872), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtLoadDriver (9B) intercepted (82DE2C44->908794DA), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtMapViewOfSection (A8) intercepted (82E63621->9083D060), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtNotifyChangeKey (AC) intercepted (82E16FE9->9082B0DA), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtOpenEvent (B1) intercepted (82E2CD82->908158BC), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtOpenMutant (BB) intercepted (82E7E48D->9081579C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtOpenProcess (BE) intercepted (82E2EBCD->9087B146), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtOpenSection (C2) intercepted (82E86A2B->9087C93C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtOpenSemaphore (C3) intercepted (82E02230->908159DC), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtOpenThread (C6) intercepted (82E7B132->9087B816), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtPlugPlayControl (CC) intercepted (82E0066A->9083D050), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtQueryDirectoryObject (E0) intercepted (82E75DFB->90815A66), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtQueryIntervalProfile (F2) intercepted (82F2850B->9083D090), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtQueryObject (F8) intercepted (82E1E0E1->9082B2E8), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtQueueApcThread (10D) intercepted (82E18E7C->9087C33C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtReplyPort (126) intercepted (82E0DBB0->9082D214), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtReplyWaitReceivePort (127) intercepted (82E55884->9082D0A2), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtReplyWaitReceivePortEx (128) intercepted (82E55407->9082D158), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtRequestWaitReplyPort (12B) intercepted (82E5AB52->9082D284), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtResumeThread (130) intercepted (82E8D702->9087C066), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSecureConnectPort (138) intercepted (82E7B167->9082CB0A), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSetContextThread (13C) intercepted (82EFA877->9087C1C4), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSetInformationToken (150) intercepted (82E2098B->90815B08), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSetSystemInformation (15E) intercepted (82E6B3AA->908795E4), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSuspendProcess (16E) intercepted (82EFAD0B->9087B34C), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSuspendThread (16F) intercepted (82EB21F8->9087BF0E), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtSystemDebugControl (170) intercepted (82EA2832->90815B1A), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtTerminateProcess (172) intercepted (82E77DCA->9087B4AC), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtTerminateThread (173) intercepted (82E956FB->9087BA14), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtUnmapViewOfSection (181) intercepted (82E819EA->9087CAA4), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Function NtWriteVirtualMemory (18F) intercepted (82E7CAC7->9087C7CE), hook C:\Windows\system32\DRIVERS\klif.sys, driver recognized as trusted
Functions checked: 401, intercepted: 49, restored: 0
1.3 Checking IDT and SYSENTER
 Analyzing CPU 1
 Analyzing CPU 2
 Checking IDT and SYSENTER - complete
1.4 Searching for masking processes and drivers
 Checking not performed: extended monitoring driver (AVZPM) is not installed
1.5 Checking IRP handlers
 Driver loaded successfully
 Checking - complete
2. Scanning RAM
 Number of processes found: 45
 Number of modules loaded: 671
Scanning RAM - complete
3. Scanning disks
Direct reading: C:\Users\Cesare\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.tmp
C:\Windows\Temp\TS_9223.tmp >>> suspicion for Trojan.Win32.Agent2.byu ( 1C9D8C69 1E621768 004D6E44 004D6E44 131072)
4. Checking  Winsock Layered Service Provider (SPI/LSP)
 LSP settings checked. No errors detected
5. Searching for keyboard/mouse/windows events hooks (Keyloggers, Trojan DLLs)
6. Searching for opened TCP/UDP ports used by malicious software
 In the database 317 port descriptions
 Opened at this PC: 91 TCP ports and 21 UDP ports
 Checking - complete; no suspicious ports detected
7. Heuristic system check
Checking - complete
8. Searching for vulnerabilities
>> Services: potentially dangerous service allowed: TermService (Servizi Desktop remoto)
>> Services: potentially dangerous service allowed: SSDPSRV (Individuazione SSDP)
>> Services: potentially dangerous service allowed: Schedule (Utilità di pianificazione)
> Services: please bear in mind that the set of services depends on the use of the PC (home PC, office PC connected to corporate network, etc)!
>> Security: disk drives' autorun is enabled
>> Security: administrative shares (C$, D$ ...) are enabled
>> Security: anonymous user access is enabled
>>> Security: Internet Explorer allows ActiveX, not marked as safe
>>> Security: block ActiveX, not marked as safe, in Internet Explorer
>>> Security: Internet Explorer allows unsigned ActiveX elements
>>> Security: Internet Explorer allows automatic queries of ActiveX administrative elements
>>> Security: Internet Explorer allows running files and applications in IFRAME window without asking user
>> Security: sending Remote Assistant queries is enabled
Checking - complete
9. Troubleshooting wizard
 >>  Internet Explorer - ActiveX, not marked as safe, are allowed
 >>  Internet Explorer - signed ActiveX elements are allowed without asking user
 >>  Internet Explorer - unsigned ActiveX elements are allowed
 >>  Internet Explorer - automatic queries of ActiveX operating elements are allowed
 >>  Internet Explorer - running programs and files in IFRAME window is allowed
 >>  HDD autorun is allowed
 >>  Network drives autorun is allowed
 >>  Removable media autorun is allowed
Checking - complete
Files scanned: 64880, extracted from archives: 25622, malicious software found 0, suspicions - 1
Scanning finished at 13.11.2014 00:50:28
Time of scanning: 00:14:31
If you have a suspicion on presence of viruses or questions on the suspected objects,
you can address http://forum.kaspersky.com/index.php?showforum=19
For automatic scanning of files from the AVZ quarantine you can use the service http://virusdetector.ru/
 



#12 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 06:57 PM

note: dont know if it is related, anyway while the AVZ scan was running, I was sending an email from my email website. At some point, while I was typing, a text  appeared without me typing it! It read something like "testtesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttesttest".

What is this...?



#13 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:59 AM

Posted 12 November 2014 - 07:18 PM

So we have only one thing until now - Trojan.Win32.Agent2.byu
Different info in Google.Open Virus Total - https://www.virustotal.com/en/
Choose file and navigate through here - C:\Windows\Temp\TS_9223.tmp
Send file for analyse and paste link of result.
Also:


Mod Edit Use of RK is Prohibited in this area, so it was removed.
A&V see Instructions for posting advice in Am I Infected Forum

Global Moderator ~~boopme


Thank you!


Edited by boopme, 14 November 2014 - 09:40 PM.


#14 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:59 AM

Posted 12 November 2014 - 07:26 PM

We will see I don`t know this typing.



#15 Tilkon

Tilkon
  • Topic Starter

  • Members
  • 135 posts
  • OFFLINE
  •  
  • Local time:06:59 AM

Posted 12 November 2014 - 07:35 PM

RogueKiller V10.0.5.0 [Nov 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : Cesare [Administrator]
Mode : Scan -- Date : 11/13/2014  01:33:21

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\utyymje2 (\??\C:\Windows\system32\Drivers\utyymje2.sys) -> Found
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Found
[PUM.StartMenu] HKEY_USERS\S-1-5-21-886373352-1276605797-4203897278-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] HKEY_USERS\S-1-5-21-886373352-1276605797-4203897278-1003\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found
[PUM.DesktopIcons] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] 7xeucwa8.default : user_pref("browser.startup.homepage", "www.google.com"); -> Found

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MQ01ABF050 ATA Device +++++
--- User ---
[MBR] 670a782bc776ce0dfbe3adaecf4e70f0
[BSP] 57e5a94fb94b064da0ce395ac1447487 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 98899 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 202752000 | Size: 377939 MB
User = LL1 ... OK
User = LL2 ... OK
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users