Page 1 of 3 123 LastLast
Results 1 to 10 of 21
  1. #1
    Member mrr107i's Avatar
    Join Date
    Sep 2003
    Location
    Pittsfield, MA
    Posts
    50
    Points
    0

    Default My IE 9 gets "stuck"....

    ...also sometimes I have "Internet explorer has stopped working" message. I think a virus is causing this problem because my hdd is processing some "files"
    that are not detected by IE 9. Here are my log files.

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 01/17/2013 at 08:36 PM

    Application Version : 5.6.1014

    Core Rules Database Version : 9889
    Trace Rules Database Version: 7701

    Scan type : Complete Scan
    Total Scan Time : 00:36:57

    Operating System Information
    Windows 7 Professional 64-bit, Service Pack 1 (Build 6.01.7601)
    UAC Off - Administrator

    Memory items scanned : 674
    Memory threats detected : 0
    Registry items scanned : 71987
    Registry threats detected : 0
    File items scanned : 43660
    File threats detected : 6

    Adware.Tracking Cookie
    C:\Users\mrr107i\AppData\Roaming\Microsoft\Windows\Cookies\6OMQ1R3N.txt [ /doubleclick.net ]
    C:\Users\mrr107i\AppData\Roaming\Microsoft\Windows\Cookies\140ZMIJ2.txt [ /revsci.net ]
    C:\USERS\MRR107I\Cookies\6OMQ1R3N.txt [ Cookie:mrr107i@doubleclick.net/ ]
    media.nbcphiladelphia.com [ C:\USERS\MRR107I\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\E8DSEMLH ]
    video-vcdn.fastclick.net [ C:\USERS\MRR107I\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\E8DSEMLH ]
    www.naiadsystems.com [ C:\USERS\MRR107I\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\E8DSEMLH ]
    Malwarebytes Anti-Malware 1.70.0.1100
    Malwarebytes : Free anti-malware download

    Database version: v2013.01.17.09

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    mrr107i :: MY-ACER [administrator]

    1/17/2013 7:10:26 PM
    mbam-log-2013-01-17 (19-10-26).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
    Scan options disabled:
    Objects scanned: 256232
    Time elapsed: 9 minute(s), 12 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)
    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 7:07:16 PM, on 1/17/2013
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16457)
    Boot mode: Normal

    Running processes:
    C:\Users\mrr107i\Downloads\hijackthis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Search
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=userinit.exe,
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [BingDesktop] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
    O4 - HKLM\..\Run: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKCU\..\Run: [DriverMax_RESTART] "C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe" -RESTART
    O4 - HKCU\..\Run: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
    O4 - HKCU\..\Run: [ShowBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\RunOnce: [adawarebp] reg.exe delete "HKCU\Software\AppDataLow\Software\adawarebp" /f (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\RunOnce: [adawarebp] reg.exe delete "HKCU\Software\AppDataLow\Software\adawarebp" /f (User 'Default user')
    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O15 - Trusted Zone: *.whitenergroup.com
    O16 - DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} (SABScanProcesses Class) - http://www.superadblocker.com/activex/sabspx.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O20 - Winlogon Notify: SDWinLogon - SDWinLogon.dll (file missing)
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: Ati External Event Utility - Unknown owner - C:\Windows\system32\Ati2evxx.exe (file missing)
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - C:\Windows\system32\CISVC.EXE (file missing)
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: IHA_MessageCenter - Verizon - C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - C:\Windows\system32\inetsrv\inetinfo.exe (file missing)
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\Windows\system32\mqsvc.exe (file missing)
    O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) - Unknown owner - C:\Windows\system32\mqtgsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - C:\Windows\system32\inetsrv\wmsvc.exe (file missing)

    --
    End of file - 9518 bytes

    Thank You.

  2. #2
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    Hello and welcome to Help2Go

    We apologize for the delay in responding to your request for help. Here at Help2Go we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

    Please take note:

    1. If you have since resolved the original problem you were having, we would appreciate you letting us know.
    2. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
      • If you are unsure about any of these characteristics just post what you can and we will guide you.
    3. Please tell us if you have your original Windows CD/DVD available.
    4. If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.
    5. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.
    6. Upon completing the steps below I or another staff member will review your topic an do their best to resolve your issues.
    7. If you have already posted a DDS log, please do so again, as your situation may have changed.
    8. Use the 'Add Reply' and add the new log to this thread.


    We need to see some information about what is happening in your machine. Please perform the following scan again:

    • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
    • Double click on the DDS icon, allow it to run.
    • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
    • Notepad will open with the results.
    • Follow the instructions that pop up for posting the results.
    • Close the program window, and delete the program from your desktop.
    Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

    Information on A/V control HERE


    We also need a new log from the GMER anti-rootkit Scanner.



    Please first disable any CD emulation programs using the steps found in this topic:

    Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:


    Note:
    If you are unable to run a Gmer scan due the fact you are running a 64bit machine please run the following tool and post its log.

    Please download aswMBR ( 511KB ) to your desktop.
    • Double click the aswMBR.exe icon to run it
    • Click the Scan button to start the scan
    • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.




    Thanks and again sorry for the delay.
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  3. #3
    Member mrr107i's Avatar
    Join Date
    Sep 2003
    Location
    Pittsfield, MA
    Posts
    50
    Points
    0

    Default

    Thanks for responding...My OS is Windows 7 Pro, 64-Bit. I have Win Pro CD. I used Ccleaner for a clean out. I had used Avast! to scan for viruses, and upon completion, a message says, "Some files were not scanned because they are password protected." Also used boot up scan on Avast! which came up with a file found from superantispyware file which is corrupt.

    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 9.0.8112.16457
    Run by mrr107i at 18:21:19 on 2013-01-19
    Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1790.376 [GMT -5:00]
    .
    AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\system32\Ati2evxx.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k GPSvcGroup
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\Ati2evxx.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Windows\system32\svchost.exe -k apphost
    C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
    C:\Windows\system32\CISVC.EXE
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\system32\svchost.exe -k ftpsvc
    C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    C:\Windows\system32\inetsrv\inetinfo.exe
    C:\Windows\System32\svchost.exe -k ipripsvc
    C:\Windows\System32\svchost.exe -k LPDService
    C:\Windows\system32\mqsvc.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    C:\Windows\System32\tcpsvcs.exe
    C:\Windows\System32\snmp.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Windows\system32\svchost.exe -k iissvcs
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    C:\Windows\system32\mqtgsvc.exe
    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\svchost.exe -k SDRSVC
    C:\Windows\system32\taskeng.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Program Files (x86)\Skype\Phone\Skype.exe
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Windows\SysWow64\NOTEPAD.EXE
    C:\Program Files (x86)\Internet Explorer\iexplore.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://msn.com/
    uSearch Bar = Preserve
    mStart Page = hxxp://www.safesearch.net/?utm_medium=ch&utm_campaign=21&utm_source=sm&utm_content=1&utm_term=5EDBBE5459F7448B
    mWinlogon: Userinit = userinit.exe,
    BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    uRun: [DriverMax_RESTART] "C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe" -RESTART
    uRun: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
    uRun: [ShowBatteryBar] "C:\Program Files\BatteryBar\ShowBatteryBar.exe" show
    mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun: [BingDesktop] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe /fromkey
    mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    dRunOnce: [adawarebp] reg.exe delete "HKCU\Software\AppDataLow\Software\adawarebp" /f
    dRunOnce: [adawarebp_XP] reg.exe delete "HKCU\Software\adawarebp" /f
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableLUA = dword:0
    mPolicies-System: EnableUIADesktopToggle = dword:0
    mPolicies-System: PromptOnSecureDesktop = dword:0
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
    DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - hxxp://www.superadblocker.com/activex/sabspx.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    TCP: NameServer = 192.168.1.1
    TCP: Interfaces\{3F47479F-5584-44C1-A78F-C5D9638A92BD} : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{3F47479F-5584-44C1-A78F-C5D9638A92BD}\B4259716E6 : DHCPNameServer = 192.168.1.1
    TCP: Interfaces\{3F47479F-5584-44C1-A78F-C5D9638A92BD}\D4252513037394D20534D2E4564777F627B6 : DHCPNameServer = 192.168.0.1
    TCP: Interfaces\{3F47479F-5584-44C1-A78F-C5D9638A92BD}\D6272713037396 : DHCPNameServer = 192.168.1.1
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    Notify: SDWinLogon - SDWinLogon.dll
    SSODL: WebCheck - <orphaned>
    x64-BHO: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
    x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    x64-TB: avast! WebRep: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
    x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
    x64-Run: [MsmqIntCert] regsvr32 /s mqrt.dll
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-SSODL: WebCheck - <orphaned>
    Hosts: 127.0.0.1 Spyware Info | Spyware Info | spyware software | spyware program | protection spyware
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 amdide64;amdide64;C:\Windows\System32\drivers\amdide64.sys [2012-12-7 11904]
    R0 gfibto;gfibto;C:\Windows\System32\drivers\gfibto.sys [2012-11-26 14456]
    R0 MxEFUF;Matrox Extio Upper Function Filter;C:\Windows\System32\drivers\MxEFUF64.sys [2012-12-7 157696]
    R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2012-11-25 984144]
    R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2012-11-25 370288]
    R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
    R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672]
    R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2012-11-25 25232]
    R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2012-11-25 71600]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-11-27 44808]
    R2 BingDesktopUpdate;Bing Desktop Update service;C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2012-11-22 166424]
    R2 ftpsvc;Microsoft FTP Service;C:\Windows\System32\svchost.exe -k ftpsvc [2009-7-13 27136]
    R2 IHA_MessageCenter;IHA_MessageCenter;C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [2012-8-3 352248]
    R2 iprip;RIP Listener;C:\Windows\System32\svchost.exe -k ipripsvc [2009-7-13 27136]
    R2 SDScannerService;Spybot-S&D 2 Scanner Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-26 1103392]
    R2 SDUpdateService;Spybot-S&D 2 Updating Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-26 1369624]
    R2 SDWSCService;Spybot-S&D 2 Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-26 168384]
    R3 CAXHWAZL;CAXHWAZL;C:\Windows\System32\drivers\CAXHWAZL.sys [2012-12-5 299576]
    R3 ManyCam;ManyCam Virtual Webcam;C:\Windows\System32\drivers\mcvidrv_x64.sys [2012-10-10 44928]
    R3 mcaudrv_simple;ManyCam Virtual Microphone;C:\Windows\System32\drivers\mcaudrv_x64.sys [2012-10-10 29696]
    R3 O2MDRDR;O2MDRDR;C:\Windows\System32\drivers\o2mdx64.sys [2012-12-6 57376]
    R3 O2SDRDR;O2SDRDR;C:\Windows\System32\drivers\o2sdx64.sys [2012-12-6 56040]
    R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2012-12-4 398112]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S2 HsfXAudioService;HsfXAudioService;C:\Windows\System32\svchost.exe -k HsfXAudioService [2009-7-13 27136]
    S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-9 160944]
    S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
    S3 gfiark;gfiark;C:\Windows\System32\drivers\gfiark.sys [2012-11-26 35456]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-25 19456]
    S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\System32\drivers\RTL8192cu.sys [2010-8-12 748648]
    S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]
    S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]
    S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]
    S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-25 57856]
    S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2012-11-25 30208]
    S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-10-11 1255736]
    S3 WMSVC;Web Management Service;C:\Windows\System32\inetsrv\WMSvc.exe [2009-7-13 10752]
    .
    =============== File Associations ===============
    .
    FileExt: .txt: txtfile=C:\Windows\SysWow64\NOTEPAD.EXE %1
    FileExt: .ini: inifile=C:\Windows\SysWow64\NOTEPAD.EXE %1
    FileExt: .inf: inffile=C:\Windows\SysWow64\NOTEPAD.EXE %1
    FileExt: .js: JSFile=C:\Windows\SysWow64\WScript.exe "%1" %*
    .
    =============== Created Last 30 ================
    .
    2013-01-19 22:39:48 -------- d-----w- C:\ProgramData\APN
    2013-01-18 09:20:10 9161176 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpengine.dll
    2013-01-14 18:45:08 1081760 ----a-w- C:\Windows\System32\npDeployJava1.dll
    2013-01-14 18:44:38 108448 ----a-w- C:\Windows\System32\WindowsAccessBridge-64.dll
    2013-01-09 12:08:41 750592 ----a-w- C:\Windows\System32\win32spl.dll
    2013-01-09 12:08:40 492032 ----a-w- C:\Windows\SysWow64\win32spl.dll
    2013-01-09 12:08:05 2002432 ----a-w- C:\Windows\System32\msxml6.dll
    2013-01-09 12:08:03 1882624 ----a-w- C:\Windows\System32\msxml3.dll
    2013-01-09 12:08:02 1389568 ----a-w- C:\Windows\SysWow64\msxml6.dll
    2013-01-09 12:08:01 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
    2013-01-09 12:06:59 23552 ----a-w- C:\Windows\SysWow64\oflc.rs
    2013-01-09 12:05:06 68608 ----a-w- C:\Windows\System32\taskhost.exe
    2013-01-09 12:05:04 3149824 ----a-w- C:\Windows\System32\win32k.sys
    2013-01-08 01:28:28 -------- d-----w- C:\Users\mrr107i\AppData\Roaming\BatteryBar
    2013-01-08 01:28:27 -------- d-----w- C:\Program Files\BatteryBar
    2013-01-08 01:27:56 -------- d-----w- C:\Users\mrr107i\AppData\Local\Coupon Companion Plugin
    2013-01-08 01:27:41 -------- d-----w- C:\Users\mrr107i\AppData\Local\Wajam
    2012-12-28 21:58:30 -------- d-----w- C:\Program Files (x86)\Common Files\NSV
    2012-12-26 21:01:34 -------- d-----w- C:\Users\mrr107i\AppData\Local\ManyCam
    2012-12-26 21:01:34 -------- d-----w- C:\ProgramData\ManyCam
    2012-12-26 21:01:32 -------- d-----w- C:\Users\mrr107i\AppData\Roaming\ManyCam
    2012-12-26 21:01:03 -------- d-----w- C:\Program Files (x86)\ManyCam
    2012-12-22 21:02:59 74248 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-12-22 21:02:59 697864 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
    .
    ==================== Find3M ====================
    .
    2013-01-14 18:44:32 960416 ----a-w- C:\Windows\System32\deployJava1.dll
    2012-12-16 17:11:22 46080 ----a-w- C:\Windows\System32\atmlib.dll
    2012-12-16 14:45:03 367616 ----a-w- C:\Windows\System32\atmfd.dll
    2012-12-16 14:13:28 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
    2012-12-16 14:13:20 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
    2012-12-14 21:49:28 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys
    2012-12-07 13:20:16 441856 ----a-w- C:\Windows\System32\Wpc.dll
    2012-12-07 13:15:31 2746368 ----a-w- C:\Windows\System32\gameux.dll
    2012-12-07 12:26:17 308736 ----a-w- C:\Windows\SysWow64\Wpc.dll
    2012-12-07 12:20:43 2576384 ----a-w- C:\Windows\SysWow64\gameux.dll
    2012-12-07 11:20:04 30720 ----a-w- C:\Windows\System32\usk.rs
    2012-12-07 11:20:03 43520 ----a-w- C:\Windows\System32\csrr.rs
    2012-12-07 11:20:03 23552 ----a-w- C:\Windows\System32\oflc.rs
    2012-12-07 11:20:01 45568 ----a-w- C:\Windows\System32\oflc-nz.rs
    2012-12-07 11:20:01 44544 ----a-w- C:\Windows\System32\pegibbfc.rs
    2012-12-07 11:20:01 20480 ----a-w- C:\Windows\System32\pegi-fi.rs
    2012-12-07 11:20:00 20480 ----a-w- C:\Windows\System32\pegi-pt.rs
    2012-12-07 11:19:59 20480 ----a-w- C:\Windows\System32\pegi.rs
    2012-12-07 11:19:58 46592 ----a-w- C:\Windows\System32\fpb.rs
    2012-12-07 11:19:57 40960 ----a-w- C:\Windows\System32\cob-au.rs
    2012-12-07 11:19:57 21504 ----a-w- C:\Windows\System32\grb.rs
    2012-12-07 11:19:57 15360 ----a-w- C:\Windows\System32\djctq.rs
    2012-12-07 11:19:56 55296 ----a-w- C:\Windows\System32\cero.rs
    2012-12-07 11:19:55 51712 ----a-w- C:\Windows\System32\esrb.rs
    2012-11-30 05:45:35 362496 ----a-w- C:\Windows\System32\wow64win.dll
    2012-11-30 05:45:35 243200 ----a-w- C:\Windows\System32\wow64.dll
    2012-11-30 05:45:35 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
    2012-11-30 05:45:14 215040 ----a-w- C:\Windows\System32\winsrv.dll
    2012-11-30 05:43:12 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
    2012-11-30 05:41:07 424448 ----a-w- C:\Windows\System32\KernelBase.dll
    2012-11-30 04:54:00 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
    2012-11-30 04:53:59 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
    2012-11-30 03:23:48 338432 ----a-w- C:\Windows\System32\conhost.exe
    2012-11-30 02:44:06 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
    2012-11-30 02:44:04 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
    2012-11-30 02:44:04 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
    2012-11-30 02:44:03 2048 ----a-w- C:\Windows\SysWow64\user.exe
    2012-11-30 02:38:59 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
    2012-11-30 02:38:59 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
    2012-11-30 02:38:59 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
    2012-11-30 02:38:59 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
    2012-11-26 09:40:35 14456 ----a-w- C:\Windows\System32\drivers\gfibto.sys
    2012-11-25 23:09:40 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
    2012-11-25 23:09:40 746984 ----a-w- C:\Windows\SysWow64\deployJava1.dll
    2012-11-24 17:53:32 260 ----a-w- C:\Windows\SysWow64\cmdVBS.vbs
    2012-11-24 17:53:32 256 ----a-w- C:\Windows\SysWow64\MSIevent.bat
    2012-11-24 17:41:34 102248 ----a-w- C:\Users\mrr107i\GoToAssistDownloadHelper.exe
    2012-11-22 05:44:23 800768 ----a-w- C:\Windows\System32\usp10.dll
    2012-11-22 04:45:03 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
    2012-11-20 05:48:49 307200 ----a-w- C:\Windows\System32\ncrypt.dll
    2012-11-20 04:51:09 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
    2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll
    2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
    2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
    2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll
    2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
    2012-11-14 05:52:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
    2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
    2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
    2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
    2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
    2012-11-14 01:48:27 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
    2012-11-14 01:44:42 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
    2012-11-09 05:45:09 2048 ----a-w- C:\Windows\System32\tzres.dll
    2012-11-09 04:42:49 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
    2012-11-02 05:59:11 478208 ----a-w- C:\Windows\System32\dpnet.dll
    2012-11-02 05:11:31 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
    2012-10-30 23:51:55 984144 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
    2012-10-30 23:51:55 71600 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
    2012-10-30 23:51:07 41224 ----a-w- C:\Windows\avastSS.scr
    2012-10-24 14:32:15 35456 ----a-w- C:\Windows\System32\drivers\gfiark.sys
    .
    ============= FINISH: 18:22:16.42 ===============
    aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
    Run date: 2013-01-19 18:00:04
    -----------------------------
    18:00:04.293 OS Version: Windows x64 6.1.7601 Service Pack 1
    18:00:04.293 Number of processors: 2 586 0x6802
    18:00:04.293 ComputerName: MY-ACER UserName: mrr107i
    18:00:08.783 Initialize success
    18:00:10.433 AVAST engine defs: 13011900
    18:00:15.003 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
    18:00:15.013 Disk 0 Vendor: TOSHIBA_MK1637GSX DL050J Size: 152627MB BusType: 3
    18:00:15.043 Disk 0 MBR read successfully
    18:00:15.053 Disk 0 MBR scan
    18:00:15.053 Disk 0 Windows 7 default MBR code
    18:00:15.063 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 152625 MB offset 63
    18:00:15.093 Disk 0 scanning C:\Windows\system32\drivers
    18:00:29.043 Service scanning
    18:01:00.678 Modules scanning
    18:01:00.688 Disk 0 trace - called modules:
    18:01:00.718 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS amdide64.sys PCIIDEX.SYS hal.dll atapi.sys
    18:01:00.718 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024e02c0]
    18:01:00.718 3 CLASSPNP.SYS[fffff8800169643f] -> nt!IofCallDriver -> [0xfffffa8001fa6520]
    18:01:00.718 5 ACPI.sys[fffff88000f067a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8001fac060]
    18:01:01.728 AVAST engine scan C:\Windows
    18:01:03.918 AVAST engine scan C:\Windows\system32
    18:04:16.418 AVAST engine scan C:\Windows\system32\drivers
    18:04:29.748 AVAST engine scan C:\Users\mrr107i
    18:05:13.428 Disk 0 MBR has been saved successfully to "C:\Users\mrr107i\Desktop\MBR.dat"
    18:05:13.448 The log file has been saved successfully to "C:\Users\mrr107i\Desktop\aswMBR.txt"


    Thank You.
    Last edited by mrr107i; 01-19-2013 at 06:47 PM.

  4. #4
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    1.
    Please download the latest version of TDSSKiller from here and save it to your Desktop.
    • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    • Put a checkmark beside loaded modules.
    • A reboot will be needed to apply the changes. Do it.
    • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
    • Then click on Change parameters in TDSSKiller.
    • Check all boxes then click OK.
    • Click the Start Scan button.
    • The scan should take no longer than 2 minutes.
    • If a suspicious object is detected, the default action will be Skip, click on Continue.
    • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
      Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

      Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
    • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.


    2.
    Install Recovery Console and Run ComboFix

    This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

    Download Combofix from any of the links below, and save it to your desktop.

    Link 1
    Link 2
    • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
    • Close any open windows, including this one.
    • Double click on ComboFix.exe & follow the prompts.
    • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
    • If you did not have it installed, you will see the prompt below. Choose YES.
    • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

    **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

    Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
    should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

    • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    • Click on Yes, to continue scanning for malware.
    • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
    Leave your computer alone while ComboFix is running.
    ComboFix will restart your computer if malware is found; allow it to do so.


    Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


    Things to include in your next reply::
    TdssKiller log
    Combofix.txt
    How is your machine running now?
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  5. #5
    Member mrr107i's Avatar
    Join Date
    Sep 2003
    Location
    Pittsfield, MA
    Posts
    50
    Points
    0

    Default

    ComboFix 13-01-21.04 - mrr107i 01/21/2013 20:55:18.1.2 - x64
    Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.1790.552 [GMT -5:00]
    Running from: c:\users\mrr107i\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    * Created a new restore point
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    C:\data
    c:\users\mrr107i\GoToAssistDownloadHelper.exe
    .
    .
    ((((((((((((((((((((((((( Files Created from 2012-12-22 to 2013-01-22 )))))))))))))))))))))))))))))))
    .
    .
    2013-01-22 02:03 . 2013-01-22 02:03 -------- d-----w- c:\users\Default\AppData\Local\temp
    2013-01-22 02:03 . 2013-01-22 02:03 -------- d-----w- c:\users\Classic .NET AppPool\AppData\Local\temp
    2013-01-21 15:33 . 2013-01-21 15:33 -------- d-----w- c:\program files\Common Files\WebM Project
    2013-01-21 15:33 . 2013-01-21 15:33 -------- d-----w- c:\program files (x86)\Common Files\WebM Project
    2013-01-19 22:40 . 2013-01-19 22:40 -------- d-----w- c:\program files (x86)\7-Zip
    2013-01-19 22:39 . 2013-01-19 22:39 -------- d-----w- c:\programdata\APN
    2013-01-18 09:20 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpengine.dll
    2013-01-14 18:45 . 2013-01-14 18:44 308640 ----a-w- c:\windows\system32\javaws.exe
    2013-01-14 18:45 . 2013-01-14 18:44 1081760 ----a-w- c:\windows\system32\npDeployJava1.dll
    2013-01-14 18:44 . 2013-01-14 18:44 108448 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
    2013-01-14 18:44 . 2013-01-14 18:44 188832 ----a-w- c:\windows\system32\javaw.exe
    2013-01-14 18:44 . 2013-01-14 18:44 188832 ----a-w- c:\windows\system32\java.exe
    2013-01-14 18:43 . 2013-01-14 18:44 -------- d-----w- c:\program files\Java
    2013-01-09 12:08 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
    2013-01-09 12:08 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
    2013-01-09 12:08 . 2012-11-01 05:43 2002432 ----a-w- c:\windows\system32\msxml6.dll
    2013-01-09 12:08 . 2012-11-01 05:43 1882624 ----a-w- c:\windows\system32\msxml3.dll
    2013-01-09 12:08 . 2012-11-01 04:47 1389568 ----a-w- c:\windows\SysWow64\msxml6.dll
    2013-01-09 12:08 . 2012-11-01 04:47 1236992 ----a-w- c:\windows\SysWow64\msxml3.dll
    2013-01-09 12:06 . 2012-12-07 10:46 23552 ----a-w- c:\windows\SysWow64\oflc.rs
    2013-01-09 12:05 . 2012-11-23 03:13 68608 ----a-w- c:\windows\system32\taskhost.exe
    2013-01-09 12:05 . 2012-11-23 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
    2013-01-08 01:28 . 2013-01-08 01:29 -------- d-----w- c:\users\mrr107i\AppData\Roaming\BatteryBar
    2013-01-08 01:28 . 2013-01-08 01:28 -------- d-----w- c:\program files\BatteryBar
    2013-01-08 01:27 . 2013-01-14 18:38 -------- d-----w- c:\users\mrr107i\AppData\Local\Coupon Companion Plugin
    2013-01-08 01:27 . 2013-01-08 01:27 -------- d-----w- c:\users\mrr107i\AppData\Local\Wajam
    2013-01-06 22:17 . 2013-01-06 22:17 -------- d-----w- c:\users\DefaultAppPool
    2012-12-28 21:58 . 2012-12-28 21:58 -------- d-----w- c:\program files (x86)\Common Files\NSV
    2012-12-26 21:01 . 2012-12-26 21:02 -------- d-----w- c:\users\mrr107i\AppData\Local\ManyCam
    2012-12-26 21:01 . 2012-12-26 21:01 -------- d-----w- c:\programdata\ManyCam
    2012-12-26 21:01 . 2012-12-26 21:04 -------- d-----w- c:\users\mrr107i\AppData\Roaming\ManyCam
    2012-12-26 21:01 . 2012-12-26 21:02 -------- d-----w- c:\program files (x86)\ManyCam
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-01-22 01:06 . 2012-12-08 20:07 4194304 ----a-w- c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
    2013-01-14 18:44 . 2012-12-02 19:05 960416 ----a-w- c:\windows\system32\deployJava1.dll
    2013-01-09 12:39 . 2012-10-11 01:56 67599240 ----a-w- c:\windows\system32\MRT.exe
    2013-01-08 23:07 . 2012-12-22 21:02 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2013-01-08 23:07 . 2012-12-22 21:02 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-12-16 17:11 . 2012-12-20 20:50 46080 ----a-w- c:\windows\system32\atmlib.dll
    2012-12-16 14:45 . 2012-12-20 20:50 367616 ----a-w- c:\windows\system32\atmfd.dll
    2012-12-16 14:13 . 2012-12-20 20:50 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
    2012-12-16 14:13 . 2012-12-20 20:50 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
    2012-12-14 21:49 . 2012-11-27 11:40 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
    2012-12-10 03:44 . 2012-12-10 03:44 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
    2012-12-09 03:26 . 2012-12-09 03:26 2876528 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
    2012-12-09 03:26 . 2012-12-09 03:26 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
    2012-12-09 03:26 . 2012-12-09 03:26 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
    2012-11-30 04:45 . 2013-01-09 12:06 44032 ----a-w- c:\windows\apppatch\acwow64.dll
    2012-11-26 09:40 . 2012-11-26 09:40 14456 ----a-w- c:\windows\system32\drivers\gfibto.sys
    2012-11-25 23:09 . 2012-11-25 23:10 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
    2012-11-25 23:09 . 2012-11-25 23:10 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
    2012-11-24 17:53 . 2012-11-24 17:53 260 ----a-w- c:\windows\SysWow64\cmdVBS.vbs
    2012-11-24 17:53 . 2012-11-24 17:53 256 ----a-w- c:\windows\SysWow64\MSIevent.bat
    2012-11-14 07:06 . 2012-12-12 20:42 17811968 ----a-w- c:\windows\system32\mshtml.dll
    2012-11-14 06:32 . 2012-12-12 20:42 10925568 ----a-w- c:\windows\system32\ieframe.dll
    2012-11-14 06:11 . 2012-12-12 20:43 2312704 ----a-w- c:\windows\system32\jscript9.dll
    2012-11-14 06:04 . 2012-12-12 20:43 1346048 ----a-w- c:\windows\system32\urlmon.dll
    2012-11-14 06:04 . 2012-12-12 20:43 1392128 ----a-w- c:\windows\system32\wininet.dll
    2012-11-14 06:02 . 2012-12-12 20:43 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
    2012-11-14 06:02 . 2012-12-12 20:43 237056 ----a-w- c:\windows\system32\url.dll
    2012-11-14 05:59 . 2012-12-12 20:43 85504 ----a-w- c:\windows\system32\jsproxy.dll
    2012-11-14 05:58 . 2012-12-12 20:43 816640 ----a-w- c:\windows\system32\jscript.dll
    2012-11-14 05:57 . 2012-12-12 20:43 599040 ----a-w- c:\windows\system32\vbscript.dll
    2012-11-14 05:57 . 2012-12-12 20:43 173056 ----a-w- c:\windows\system32\ieUnatt.exe
    2012-11-14 05:55 . 2012-12-12 20:43 2144768 ----a-w- c:\windows\system32\iertutil.dll
    2012-11-14 05:55 . 2012-12-12 20:43 729088 ----a-w- c:\windows\system32\msfeeds.dll
    2012-11-14 05:53 . 2012-12-12 20:43 96768 ----a-w- c:\windows\system32\mshtmled.dll
    2012-11-14 05:52 . 2012-12-12 20:43 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-11-14 05:46 . 2012-12-12 20:43 248320 ----a-w- c:\windows\system32\ieui.dll
    2012-11-14 02:09 . 2012-12-12 20:43 1800704 ----a-w- c:\windows\SysWow64\jscript9.dll
    2012-11-14 01:58 . 2012-12-12 20:43 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
    2012-11-14 01:57 . 2012-12-12 20:43 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
    2012-11-14 01:49 . 2012-12-12 20:43 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
    2012-11-14 01:48 . 2012-12-12 20:43 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
    2012-11-14 01:44 . 2012-12-12 20:43 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2012-11-09 05:45 . 2012-12-12 20:09 2048 ----a-w- c:\windows\system32\tzres.dll
    2012-11-09 04:42 . 2012-12-12 20:09 2048 ----a-w- c:\windows\SysWow64\tzres.dll
    2012-11-02 05:59 . 2012-12-12 20:09 478208 ----a-w- c:\windows\system32\dpnet.dll
    2012-11-02 05:11 . 2012-12-12 20:09 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
    2012-10-30 23:51 . 2012-11-26 01:36 59728 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2012-10-30 23:51 . 2012-11-26 01:36 370288 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2012-10-30 23:51 . 2012-11-26 01:36 984144 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-10-30 23:51 . 2012-11-26 01:36 71600 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2012-10-30 23:51 . 2012-11-26 01:36 25232 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-10-30 23:51 . 2012-11-26 01:35 41224 ----a-w- c:\windows\avastSS.scr
    2012-10-30 23:50 . 2012-11-26 01:35 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
    2012-10-30 23:50 . 2012-10-10 18:36 285328 ----a-w- c:\windows\system32\aswBoot.exe
    2012-10-24 14:32 . 2012-11-26 23:01 35456 ----a-w- c:\windows\system32\drivers\gfiark.sys
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
    @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
    [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
    2012-10-11 05:11 220632 ----a-w- c:\users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
    @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
    [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
    2012-10-11 05:11 220632 ----a-w- c:\users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
    @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
    [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
    2012-10-11 05:11 220632 ----a-w- c:\users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "DriverMax_RESTART"="c:\program files (x86)\Innovative Solutions\DriverMax\drivermax.exe" [2012-12-20 11325456]
    "ShowBatteryBar"="c:\program files\BatteryBar\ShowBatteryBar.exe" [2009-05-28 89600]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
    "BingDesktop"="c:\program files (x86)\Microsoft\BingDesktop\BingDesktop.exe" [2012-11-22 2127896]
    "SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
    "adawarebp"="reg.exe delete HKCU\Software\AppDataLow\Software\adawarebp" [X]
    "adawarebp_XP"="reg.exe delete HKCU\Software\adawarebp" [X]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 0 (0x0)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableLUA"= 0 (0x0)
    "EnableUIADesktopToggle"= 0 (0x0)
    "PromptOnSecureDesktop"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
    BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
    @=""
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
    R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
    R3 gfiark;gfiark;c:\windows\system32\drivers\gfiark.sys [2012-10-24 35456]
    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
    R3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192cu.sys [2010-08-12 748648]
    R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
    R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
    R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-10-11 1255736]
    R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\BatteryCare\WinRing0x64.sys [x]
    R3 WMSVC;Web Management Service;c:\windows\system32\inetsrv\wmsvc.exe [2009-07-14 10752]
    S0 amdide64;amdide64;c:\windows\system32\DRIVERS\amdide64.sys [2011-12-17 11904]
    S0 gfibto;gfibto;c:\windows\system32\drivers\gfibto.sys [2012-11-26 14456]
    S0 MxEFUF;Matrox Extio Upper Function Filter;c:\windows\system32\DRIVERS\MxEFUF64.sys [2011-10-20 157696]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
    S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
    S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-10-30 71600]
    S2 BingDesktopUpdate;Bing Desktop Update service;c:\program files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [2012-11-22 166424]
    S2 ftpsvc;Microsoft FTP Service;c:\windows\system32\svchost.exe [2009-07-14 27136]
    S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 27136]
    S2 IHA_MessageCenter;IHA_MessageCenter;c:\program files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [2012-08-04 352248]
    S2 iprip;RIP Listener;c:\windows\System32\svchost.exe [2009-07-14 27136]
    S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
    S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
    S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
    S3 CAXHWAZL;CAXHWAZL;c:\windows\system32\DRIVERS\CAXHWAZL.sys [2010-02-10 299576]
    S3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys [2012-10-11 44928]
    S3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys [2012-10-11 29696]
    S3 O2MDRDR;O2MDRDR;c:\windows\system32\DRIVERS\o2mdx64.sys [2009-09-12 57376]
    S3 O2SDRDR;O2SDRDR;c:\windows\system32\DRIVERS\o2sdx64.sys [2010-04-27 56040]
    S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2012-03-27 398112]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - 12049678
    *NewlyCreated* - 99022229
    *Deregistered* - 12049678
    *Deregistered* - 99022229
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
    iissvcs REG_MULTI_SZ w3svc was
    apphost REG_MULTI_SZ apphostsvc
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2013-01-22 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-22 23:07]
    .
    2013-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-21 15:33]
    .
    2013-01-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-21 15:33]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
    @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
    [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
    2012-10-11 05:11 244696 ----a-w- c:\users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
    @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
    [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
    2012-10-11 05:11 244696 ----a-w- c:\users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
    @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
    [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
    2012-10-11 05:11 244696 ----a-w- c:\users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-10-30 23:50 133400 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-04-24 12480616]
    "MsmqIntCert"="mqrt.dll" [2010-11-21 247808]
    .
    ------- Supplementary Scan -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://msn.com/
    mStart Page = hxxp://www.safesearch.net/?utm_medium=ch&utm_campaign=21&utm_source=sm&utm_content=1&utm_term=5EDBBE5459F7448B
    mLocal Page = c:\windows\SysWOW64\blank.htm
    Trusted Zone: noctibusiness.com\testing
    Trusted Zone: whitenergroup.com
    TCP: DhcpNameServer = 192.168.1.1
    .
    .
    ------- File Associations -------
    .
    inifile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
    txtfile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1
    .
    - - - - ORPHANS REMOVED - - - -
    .
    Toolbar-Locked - (no file)
    Notify-SDWinLogon - SDWinLogon.dll
    SafeBoot-23250497.sys
    SafeBoot-99022229.sys
    Toolbar-Locked - (no file)
    .
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_USERS\S-1-5-21-2911081205-3221290127-895880306-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
    @Denied: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.VCard.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Completion time: 2013-01-21 21:07:59
    ComboFix-quarantined-files.txt 2013-01-22 02:07
    .
    Pre-Run: 129,855,049,728 bytes free
    Post-Run: 129,957,462,016 bytes free
    .
    - - End Of File - - 751160F069B38BDC0595B62815BC7334

  6. #6
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    Hello,

    How about the TdssKiller log? How is the machine running now?
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  7. #7
    Member mrr107i's Avatar
    Join Date
    Sep 2003
    Location
    Pittsfield, MA
    Posts
    50
    Points
    0

    Default

    I get error message when I copy & paste TDsskiller log. It states that file is too large.


    My laptop is working slightly better.

    Thank You.

  8. #8
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    I get error message when I copy & paste TDsskiller log. It states that file is too large.
    Put it into two different posts.
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  9. #9
    Member mrr107i's Avatar
    Join Date
    Sep 2003
    Location
    Pittsfield, MA
    Posts
    50
    Points
    0

    Default

    20:06:38.0348 3972 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    20:06:40.0360 3972 ============================================================
    20:06:40.0360 3972 Current date / time: 2013/01/21 20:06:40.0360
    20:06:40.0360 3972 SystemInfo:
    20:06:40.0360 3972
    20:06:40.0360 3972 OS Version: 6.1.7601 ServicePack: 1.0
    20:06:40.0360 3972 Product type: Workstation
    20:06:40.0360 3972 ComputerName: MY-ACER
    20:06:40.0360 3972 UserName: mrr107i
    20:06:40.0360 3972 Windows directory: C:\Windows
    20:06:40.0360 3972 System windows directory: C:\Windows
    20:06:40.0360 3972 Running under WOW64
    20:06:40.0360 3972 Processor architecture: Intel x64
    20:06:40.0360 3972 Number of processors: 2
    20:06:40.0360 3972 Page size: 0x1000
    20:06:40.0360 3972 Boot type: Normal boot
    20:06:40.0360 3972 ============================================================
    20:06:42.0996 3972 BG loaded
    20:06:43.0854 3972 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    20:06:43.0917 3972 ============================================================
    20:06:43.0917 3972 \Device\Harddisk0\DR0:
    20:06:43.0948 3972 MBR partitions:
    20:06:43.0948 3972 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A18A82
    20:06:43.0948 3972 ============================================================
    20:06:44.0104 3972 C: <-> \Device\Harddisk0\DR0\Partition1
    20:06:44.0104 3972 ============================================================
    20:06:44.0104 3972 Initialize success
    20:06:44.0104 3972 ============================================================
    20:10:23.0393 4060 ============================================================
    20:10:23.0393 4060 Scan started
    20:10:23.0393 4060 Mode: Manual; SigCheck; TDLFS;
    20:10:23.0393 4060 ============================================================
    20:10:26.0654 4060 ================ Scan system memory ========================
    20:10:26.0654 4060 System memory - ok
    20:10:26.0654 4060 ================ Scan services =============================
    20:10:26.0810 4060 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    20:10:26.0981 4060 !SASCORE - ok
    20:10:27.0200 4060 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
    20:10:27.0247 4060 1394ohci - ok
    20:10:27.0278 4060 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    20:10:27.0309 4060 ACPI - ok
    20:10:27.0340 4060 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    20:10:27.0387 4060 AcpiPmi - ok
    20:10:27.0512 4060 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    20:10:27.0527 4060 AdobeARMservice - ok
    20:10:27.0683 4060 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    20:10:27.0699 4060 AdobeFlashPlayerUpdateSvc - ok
    20:10:27.0886 4060 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
    20:10:27.0917 4060 adp94xx - ok
    20:10:27.0964 4060 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
    20:10:27.0995 4060 adpahci - ok
    20:10:28.0089 4060 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
    20:10:28.0120 4060 adpu320 - ok
    20:10:28.0151 4060 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    20:10:28.0229 4060 AeLookupSvc - ok
    20:10:28.0292 4060 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    20:10:28.0339 4060 AFD - ok
    20:10:28.0370 4060 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    20:10:28.0385 4060 agp440 - ok
    20:10:28.0417 4060 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    20:10:28.0479 4060 ALG - ok
    20:10:28.0495 4060 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    20:10:28.0510 4060 aliide - ok
    20:10:28.0541 4060 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    20:10:28.0557 4060 amdide - ok
    20:10:28.0604 4060 [ 0DB2DF2B692A3F70443FD14D7920F249 ] amdide64 C:\Windows\system32\DRIVERS\amdide64.sys
    20:10:28.0635 4060 amdide64 - ok
    20:10:28.0682 4060 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    20:10:28.0760 4060 AmdK8 - ok
    20:10:28.0791 4060 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
    20:10:28.0869 4060 AmdPPM - ok
    20:10:28.0916 4060 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    20:10:28.0963 4060 amdsata - ok
    20:10:29.0009 4060 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
    20:10:29.0041 4060 amdsbs - ok
    20:10:29.0072 4060 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    20:10:29.0087 4060 amdxata - ok
    20:10:29.0228 4060 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
    20:10:29.0275 4060 AppHostSvc - ok
    20:10:29.0321 4060 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    20:10:29.0399 4060 AppID - ok
    20:10:29.0431 4060 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    20:10:29.0493 4060 AppIDSvc - ok
    20:10:29.0524 4060 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    20:10:29.0587 4060 Appinfo - ok
    20:10:29.0680 4060 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
    20:10:29.0711 4060 AppMgmt - ok
    20:10:29.0774 4060 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
    20:10:29.0805 4060 arc - ok
    20:10:29.0836 4060 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
    20:10:29.0867 4060 arcsas - ok
    20:10:30.0195 4060 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
    20:10:30.0273 4060 aspnet_state - ok
    20:10:30.0335 4060 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
    20:10:30.0351 4060 aswFsBlk - ok
    20:10:30.0445 4060 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
    20:10:30.0460 4060 aswMonFlt - ok
    20:10:30.0507 4060 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
    20:10:30.0538 4060 aswRdr - ok
    20:10:30.0757 4060 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
    20:10:30.0803 4060 aswSnx - ok
    20:10:30.0881 4060 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
    20:10:30.0928 4060 aswSP - ok
    20:10:30.0991 4060 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
    20:10:31.0006 4060 aswTdi - ok
    20:10:31.0053 4060 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    20:10:31.0162 4060 AsyncMac - ok
    20:10:31.0178 4060 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    20:10:31.0193 4060 atapi - ok
    20:10:31.0349 4060 [ 2093F84EC032B2F59FF005D83F841144 ] athr C:\Windows\system32\DRIVERS\athrx.sys
    20:10:31.0537 4060 athr - ok
    20:10:31.0615 4060 [ BB7A2052EBB2E31080C0DA9FA3F4EA4A ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
    20:10:31.0708 4060 Ati External Event Utility - ok
    20:10:32.0067 4060 [ 428DDCB79F4377726501867EADA9C2D6 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    20:10:32.0395 4060 atikmdag - ok
    20:10:32.0519 4060 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    20:10:32.0597 4060 AudioEndpointBuilder - ok
    20:10:32.0644 4060 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    20:10:32.0722 4060 AudioSrv - ok
    20:10:32.0878 4060 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    20:10:32.0909 4060 avast! Antivirus - ok
    20:10:32.0956 4060 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    20:10:33.0019 4060 AxInstSV - ok
    20:10:33.0081 4060 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
    20:10:33.0175 4060 b06bdrv - ok
    20:10:33.0206 4060 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    20:10:33.0253 4060 b57nd60a - ok
    20:10:33.0315 4060 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    20:10:33.0362 4060 BDESVC - ok
    20:10:33.0409 4060 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    20:10:33.0487 4060 Beep - ok
    20:10:33.0565 4060 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    20:10:33.0643 4060 BFE - ok
    20:10:33.0736 4060 [ 8DC837789BBF0E1BEF252A8F7C101F7B ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
    20:10:33.0752 4060 BingDesktopUpdate - ok
    20:10:33.0814 4060 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
    20:10:33.0939 4060 BITS - ok
    20:10:33.0986 4060 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    20:10:34.0033 4060 blbdrive - ok
    20:10:34.0079 4060 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    20:10:34.0126 4060 bowser - ok
    20:10:34.0157 4060 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
    20:10:34.0204 4060 BrFiltLo - ok
    20:10:34.0235 4060 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
    20:10:34.0251 4060 BrFiltUp - ok
    20:10:34.0282 4060 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    20:10:34.0329 4060 Browser - ok
    20:10:34.0360 4060 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    20:10:34.0469 4060 Brserid - ok
    20:10:34.0501 4060 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    20:10:34.0547 4060 BrSerWdm - ok
    20:10:34.0563 4060 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    20:10:34.0610 4060 BrUsbMdm - ok
    20:10:34.0625 4060 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    20:10:34.0672 4060 BrUsbSer - ok
    20:10:34.0688 4060 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
    20:10:34.0750 4060 BTHMODEM - ok
    20:10:34.0797 4060 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    20:10:34.0859 4060 bthserv - ok
    20:10:34.0953 4060 [ 4B72EB550104BF39D0DCE572A0E8016A ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
    20:10:34.0984 4060 CAXHWAZL - ok
    20:10:35.0015 4060 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    20:10:35.0093 4060 cdfs - ok
    20:10:35.0156 4060 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    20:10:35.0203 4060 cdrom - ok
    20:10:35.0265 4060 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    20:10:35.0343 4060 CertPropSvc - ok
    20:10:35.0390 4060 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
    20:10:35.0437 4060 circlass - ok
    20:10:35.0483 4060 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:\Windows\system32\CISVC.EXE
    20:10:35.0515 4060 CISVC - ok
    20:10:35.0561 4060 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    20:10:35.0593 4060 CLFS - ok
    20:10:35.0671 4060 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    20:10:35.0702 4060 clr_optimization_v2.0.50727_32 - ok
    20:10:35.0733 4060 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    20:10:35.0764 4060 clr_optimization_v2.0.50727_64 - ok
    20:10:35.0827 4060 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    20:10:35.0967 4060 clr_optimization_v4.0.30319_32 - ok
    20:10:35.0983 4060 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    20:10:36.0076 4060 clr_optimization_v4.0.30319_64 - ok
    20:10:36.0107 4060 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    20:10:36.0170 4060 CmBatt - ok
    20:10:36.0201 4060 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    20:10:36.0217 4060 cmdide - ok
    20:10:36.0279 4060 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
    20:10:36.0326 4060 CNG - ok
    20:10:36.0404 4060 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    20:10:36.0419 4060 Compbatt - ok
    20:10:36.0451 4060 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
    20:10:36.0513 4060 CompositeBus - ok
    20:10:36.0529 4060 COMSysApp - ok
    20:10:36.0591 4060 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
    20:10:36.0638 4060 crcdisk - ok
    20:10:36.0700 4060 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    20:10:36.0763 4060 CryptSvc - ok
    20:10:36.0841 4060 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
    20:10:36.0950 4060 CSC - ok
    20:10:37.0028 4060 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
    20:10:37.0090 4060 CscService - ok
    20:10:37.0184 4060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    20:10:37.0324 4060 DcomLaunch - ok
    20:10:37.0387 4060 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    20:10:37.0496 4060 defragsvc - ok
    20:10:37.0543 4060 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    20:10:37.0636 4060 DfsC - ok
    20:10:37.0699 4060 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    20:10:37.0792 4060 Dhcp - ok
    20:10:37.0823 4060 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    20:10:37.0886 4060 discache - ok
    20:10:37.0948 4060 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
    20:10:37.0979 4060 Disk - ok
    20:10:38.0011 4060 [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys
    20:10:38.0073 4060 dmvsc - ok
    20:10:38.0135 4060 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    20:10:38.0213 4060 Dnscache - ok
    20:10:38.0307 4060 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    20:10:38.0401 4060 dot3svc - ok
    20:10:38.0416 4060 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    20:10:38.0494 4060 DPS - ok
    20:10:38.0541 4060 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    20:10:38.0572 4060 drmkaud - ok
    20:10:38.0650 4060 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    20:10:38.0713 4060 DXGKrnl - ok
    20:10:38.0759 4060 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    20:10:38.0822 4060 EapHost - ok
    20:10:38.0947 4060 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
    20:10:39.0087 4060 ebdrv - ok
    20:10:39.0134 4060 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    20:10:39.0181 4060 EFS - ok
    20:10:39.0274 4060 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    20:10:39.0415 4060 ehRecvr - ok
    20:10:39.0493 4060 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    20:10:39.0555 4060 ehSched - ok
    20:10:39.0649 4060 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
    20:10:39.0680 4060 elxstor - ok
    20:10:39.0695 4060 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    20:10:39.0727 4060 ErrDev - ok
    20:10:39.0805 4060 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    20:10:39.0883 4060 EventSystem - ok
    20:10:39.0914 4060 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    20:10:39.0976 4060 exfat - ok
    20:10:40.0007 4060 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    20:10:40.0070 4060 fastfat - ok
    20:10:40.0273 4060 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    20:10:40.0413 4060 Fax - ok
    20:10:40.0507 4060 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
    20:10:40.0585 4060 fdc - ok
    20:10:40.0663 4060 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    20:10:40.0741 4060 fdPHost - ok
    20:10:40.0756 4060 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    20:10:40.0819 4060 FDResPub - ok
    20:10:40.0834 4060 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    20:10:40.0865 4060 FileInfo - ok
    20:10:40.0897 4060 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    20:10:40.0959 4060 Filetrace - ok
    20:10:40.0990 4060 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
    20:10:41.0021 4060 flpydisk - ok
    20:10:41.0099 4060 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    20:10:41.0177 4060 FltMgr - ok
    20:10:41.0396 4060 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    20:10:41.0458 4060 FontCache - ok
    20:10:41.0521 4060 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    20:10:41.0567 4060 FontCache3.0.0.0 - ok
    20:10:41.0583 4060 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    20:10:41.0599 4060 FsDepends - ok
    20:10:41.0645 4060 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    20:10:41.0677 4060 Fs_Rec - ok
    20:10:41.0801 4060 [ D225864F6FD96575A303A20BD42383ED ] ftpsvc C:\Windows\system32\inetsrv\ftpsvc.dll
    20:10:41.0848 4060 ftpsvc - ok
    20:10:41.0911 4060 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    20:10:41.0942 4060 fvevol - ok
    20:10:41.0957 4060 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
    20:10:41.0989 4060 gagp30kx - ok
    20:10:42.0035 4060 [ E6460809993FA1A86899AB39D2B785B6 ] gfiark C:\Windows\system32\drivers\gfiark.sys
    20:10:42.0051 4060 gfiark - ok
    20:10:42.0098 4060 [ 14908F4F9005C29DE8F5587E271390EE ] gfibto C:\Windows\system32\drivers\gfibto.sys
    20:10:42.0113 4060 gfibto - ok
    20:10:42.0254 4060 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    20:10:42.0332 4060 gpsvc - ok
    20:10:42.0441 4060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    20:10:42.0472 4060 gupdate - ok
    20:10:42.0503 4060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    20:10:42.0519 4060 gupdatem - ok
    20:10:42.0566 4060 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    20:10:42.0613 4060 hcw85cir - ok
    20:10:42.0675 4060 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    20:10:42.0722 4060 HdAudAddService - ok
    20:10:42.0753 4060 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
    20:10:42.0784 4060 HDAudBus - ok
    20:10:42.0800 4060 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
    20:10:42.0847 4060 HidBatt - ok
    20:10:42.0909 4060 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
    20:10:42.0940 4060 HidBth - ok
    20:10:42.0956 4060 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
    20:10:42.0987 4060 HidIr - ok
    20:10:43.0003 4060 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
    20:10:43.0081 4060 hidserv - ok
    20:10:43.0127 4060 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
    20:10:43.0159 4060 HidUsb - ok
    20:10:43.0190 4060 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    20:10:43.0268 4060 hkmsvc - ok
    20:10:43.0315 4060 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    20:10:43.0393 4060 HomeGroupListener - ok
    20:10:43.0439 4060 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    20:10:43.0486 4060 HomeGroupProvider - ok
    20:10:43.0517 4060 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    20:10:43.0533 4060 HpSAMD - ok
    20:10:43.0658 4060 [ A71C84F2211BE716B4041E25F9060F8B ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
    20:10:43.0705 4060 HsfXAudioService - ok
    20:10:43.0985 4060 [ CD5B949378BE3B8963778CB8B4CD1395 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
    20:10:44.0079 4060 HSF_DPV - ok
    20:10:44.0173 4060 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    20:10:44.0251 4060 HTTP - ok
    20:10:44.0266 4060 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    20:10:44.0282 4060 hwpolicy - ok
    20:10:44.0313 4060 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
    20:10:44.0344 4060 i8042prt - ok
    20:10:44.0391 4060 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    20:10:44.0422 4060 iaStorV - ok
    20:10:44.0500 4060 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    20:10:44.0547 4060 idsvc - ok
    20:10:44.0625 4060 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    20:10:44.0672 4060 IHA_MessageCenter - ok
    20:10:44.0703 4060 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
    20:10:44.0719 4060 iirsp - ok
    20:10:44.0750 4060 [ AB55B8A9B13130F638546881CE4425F8 ] IISADMIN C:\Windows\system32\inetsrv\inetinfo.exe
    20:10:44.0812 4060 IISADMIN - ok
    20:10:44.0859 4060 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    20:10:44.0953 4060 IKEEXT - ok
    20:10:45.0155 4060 [ 02674201AD9FE19AC3376705077882C6 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    20:10:45.0358 4060 IntcAzAudAddService - ok
    20:10:45.0374 4060 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    20:10:45.0389 4060 intelide - ok
    20:10:45.0436 4060 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\drivers\intelppm.sys
    20:10:45.0483 4060 intelppm - ok
    20:10:45.0514 4060 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    20:10:45.0577 4060 IPBusEnum - ok
    20:10:45.0608 4060 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    20:10:45.0670 4060 IpFilterDriver - ok
    20:10:45.0717 4060 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    20:10:45.0764 4060 iphlpsvc - ok
    20:10:45.0779 4060 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    20:10:45.0826 4060 IPMIDRV - ok
    20:10:45.0857 4060 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    20:10:45.0920 4060 IPNAT - ok
    20:10:46.0013 4060 [ 11FE7637A49B67D9B1F895B2AD4D982F ] iprip C:\Windows\System32\iprip.dll
    20:10:46.0045 4060 iprip - ok
    20:10:46.0076 4060 [ 05360B1EA5A2ABF620D1D96EBD8BD8F1 ] irda C:\Windows\system32\DRIVERS\irda.sys
    20:10:46.0107 4060 irda - ok
    20:10:46.0138 4060 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    20:10:46.0169 4060 IRENUM - ok
    20:10:46.0201 4060 [ 3848384AB383F0A8F506C4370635C1F9 ] Irmon C:\Windows\System32\irmon.dll
    20:10:46.0247 4060 Irmon - ok
    20:10:46.0279 4060 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    20:10:46.0310 4060 isapnp - ok
    20:10:46.0341 4060 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    20:10:46.0357 4060 iScsiPrt - ok
    20:10:46.0388 4060 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
    20:10:46.0403 4060 kbdclass - ok
    20:10:46.0435 4060 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    20:10:46.0466 4060 kbdhid - ok
    20:10:46.0481 4060 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    20:10:46.0497 4060 KeyIso - ok
    20:10:46.0544 4060 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    20:10:46.0559 4060 KSecDD - ok
    20:10:46.0606 4060 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    20:10:46.0637 4060 KSecPkg - ok
    20:10:46.0669 4060 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    20:10:46.0731 4060 ksthunk - ok
    20:10:46.0778 4060 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    20:10:46.0856 4060 KtmRm - ok
    20:10:46.0918 4060 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    20:10:46.0981 4060 LanmanServer - ok
    20:10:47.0027 4060 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    20:10:47.0105 4060 LanmanWorkstation - ok
    20:10:47.0152 4060 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    20:10:47.0215 4060 lltdio - ok
    20:10:47.0261 4060 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    20:10:47.0339 4060 lltdsvc - ok
    20:10:47.0371 4060 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    20:10:47.0417 4060 lmhosts - ok
    20:10:47.0449 4060 [ 7F3014B726FE92DAAA199F35EC3A69D3 ] LPCFilter C:\Windows\system32\DRIVERS\LPCFilter.sys
    20:10:47.0464 4060 LPCFilter - ok
    20:10:47.0542 4060 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] LPDSVC C:\Windows\system32\lpdsvc.dll
    20:10:47.0573 4060 LPDSVC - ok
    20:10:47.0605 4060 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
    20:10:47.0636 4060 LSI_FC - ok
    20:10:47.0667 4060 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
    20:10:47.0698 4060 LSI_SAS - ok
    20:10:47.0714 4060 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
    20:10:47.0745 4060 LSI_SAS2 - ok
    20:10:47.0761 4060 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
    20:10:47.0807 4060 LSI_SCSI - ok
    20:10:47.0823 4060 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    20:10:47.0901 4060 luafv - ok
    20:10:47.0917 4060 [ DE585D1D266805E5EEDAE911FDD16F38 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
    20:10:47.0963 4060 ManyCam - ok
    20:10:48.0026 4060 [ 2E7FFDEF8BAFD04CBB517507B821E878 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
    20:10:48.0057 4060 mcaudrv_simple - ok
    20:10:48.0119 4060 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    20:10:48.0135 4060 Mcx2Svc - ok
    20:10:48.0182 4060 [ 302CCDB6EA92F7AE8881523647956630 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
    20:10:48.0197 4060 mdmxsdk - ok
    20:10:48.0229 4060 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
    20:10:48.0260 4060 megasas - ok
    20:10:48.0275 4060 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
    20:10:48.0307 4060 MegaSR - ok
    20:10:48.0353 4060 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    20:10:48.0416 4060 MMCSS - ok
    20:10:48.0431 4060 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    20:10:48.0494 4060 Modem - ok
    20:10:48.0541 4060 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    20:10:48.0572 4060 monitor - ok
    20:10:48.0603 4060 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    20:10:48.0634 4060 mouclass - ok
    20:10:48.0650 4060 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
    20:10:48.0697 4060 mouhid - ok
    20:10:48.0712 4060 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    20:10:48.0728 4060 mountmgr - ok
    20:10:48.0759 4060 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    20:10:48.0790 4060 mpio - ok
    20:10:48.0806 4060 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    20:10:48.0868 4060 mpsdrv - ok
    20:10:48.0946 4060 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    20:10:49.0024 4060 MpsSvc - ok
    20:10:49.0071 4060 [ CD22D2563039DDA6793F7624719363A7 ] MQAC C:\Windows\system32\drivers\mqac.sys
    20:10:49.0118 4060 MQAC - ok
    20:10:49.0149 4060 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    20:10:49.0196 4060 MRxDAV - ok
    20:10:49.0243 4060 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    20:10:49.0305 4060 mrxsmb - ok
    20:10:49.0321 4060 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    20:10:49.0352 4060 mrxsmb10 - ok
    20:10:49.0367 4060 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    20:10:49.0383 4060 mrxsmb20 - ok
    20:10:49.0414 4060 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    20:10:49.0430 4060 msahci - ok
    20:10:49.0461 4060 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    20:10:49.0477 4060 msdsm - ok
    20:10:49.0508 4060 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    20:10:49.0555 4060 MSDTC - ok
    20:10:49.0586 4060 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    20:10:49.0633 4060 Msfs - ok
    20:10:49.0664 4060 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    20:10:49.0711 4060 mshidkmdf - ok
    20:10:49.0726 4060 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    20:10:49.0757 4060 msisadrv - ok
    20:10:49.0804 4060 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    20:10:49.0867 4060 MSiSCSI - ok
    20:10:49.0882 4060 msiserver - ok
    20:10:49.0929 4060 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    20:10:49.0976 4060 MSKSSRV - ok
    20:10:50.0023 4060 [ FAAEAEF99E53561BEEE58F946CA56F0D ] MSMQ C:\Windows\system32\mqsvc.exe
    20:10:50.0038 4060 MSMQ - ok
    20:10:50.0085 4060 [ 59ED174FD4314B0218DC91F9BFA6CD3D ] MSMQTriggers C:\Windows\system32\mqtgsvc.exe
    20:10:50.0116 4060 MSMQTriggers - ok
    20:10:50.0147 4060 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    20:10:50.0210 4060 MSPCLOCK - ok
    20:10:50.0241 4060 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    20:10:50.0303 4060 MSPQM - ok
    20:10:50.0335 4060 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    20:10:50.0366 4060 MsRPC - ok
    20:10:50.0381 4060 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
    20:10:50.0413 4060 mssmbios - ok
    20:10:50.0428 4060 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    20:10:50.0491 4060 MSTEE - ok
    20:10:50.0506 4060 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
    20:10:50.0522 4060 MTConfig - ok
    20:10:50.0537 4060 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    20:10:50.0569 4060 Mup - ok
    20:10:50.0600 4060 [ 08835780CC6A5CFF5275101B5A9D17A4 ] MxEFUF C:\Windows\system32\DRIVERS\MxEFUF64.sys
    20:10:50.0647 4060 MxEFUF - ok
    20:10:50.0693 4060 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    20:10:50.0771 4060 napagent - ok
    20:10:50.0803 4060 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    20:10:50.0849 4060 NativeWifiP - ok
    20:10:50.0927 4060 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
    20:10:50.0974 4060 NDIS - ok
    20:10:50.0990 4060 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    20:10:51.0052 4060 NdisCap - ok
    20:10:51.0099 4060 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    20:10:51.0161 4060 NdisTapi - ok
    20:10:51.0193 4060 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    20:10:51.0239 4060 Ndisuio - ok
    20:10:51.0271 4060 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    20:10:51.0333 4060 NdisWan - ok
    20:10:51.0349 4060 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    20:10:51.0395 4060 NDProxy - ok
    20:10:51.0442 4060 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    20:10:51.0505 4060 NetBIOS - ok
    20:10:51.0551 4060 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    20:10:51.0598 4060 NetBT - ok
    20:10:51.0629 4060 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    20:10:51.0645 4060 Netlogon - ok
    20:10:51.0692 4060 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
    20:10:51.0770 4060 Netman - ok
    20:10:51.0801 4060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    20:10:51.0863 4060 NetMsmqActivator - ok
    20:10:51.0879 4060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    20:10:51.0895 4060 NetPipeActivator - ok
    20:10:51.0926 4060 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
    20:10:52.0004 4060 netprofm - ok
    20:10:52.0004 4060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    20:10:52.0035 4060 NetTcpActivator - ok
    20:10:52.0035 4060 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    20:10:52.0051 4060 NetTcpPortSharing - ok
    20:10:52.0097 4060 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
    20:10:52.0113 4060 nfrd960 - ok
    20:10:52.0144 4060 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
    20:10:52.0191 4060 NlaSvc - ok
    20:10:52.0207 4060 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    20:10:52.0269 4060 Npfs - ok
    20:10:52.0316 4060 [ 228C7CF50A584DD58E72FCEFAC7D8914 ] NSCIRDA C:\Windows\system32\DRIVERS\nscirda.sys
    20:10:52.0347 4060 NSCIRDA - ok
    20:10:52.0394 4060 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
    20:10:52.0472 4060 nsi - ok
    20:10:52.0503 4060 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    20:10:52.0565 4060 nsiproxy - ok
    20:10:52.0643 4060 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    20:10:52.0721 4060 Ntfs - ok
    20:10:52.0737 4060 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    20:10:52.0799 4060 Null - ok
    20:10:52.0831 4060 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
    20:10:52.0846 4060 nvraid - ok
    20:10:52.0877 4060 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
    20:10:52.0893 4060 nvstor - ok
    20:10:52.0955 4060 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    20:10:52.0971 4060 nv_agp - ok
    20:10:53.0018 4060 [ 47878AB5A4FDCC3BD6EEF9D230A43656 ] O2MDRDR C:\Windows\system32\DRIVERS\o2mdx64.sys
    20:10:53.0033 4060 O2MDRDR - ok
    20:10:53.0096 4060 [ 13DA8C888B75C7C52570AFA29D06A95F ] O2SDRDR C:\Windows\system32\DRIVERS\o2sdx64.sys
    20:10:53.0111 4060 O2SDRDR - ok
    20:10:53.0127 4060 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    20:10:53.0158 4060 ohci1394 - ok
    20:10:53.0221 4060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    20:10:53.0283 4060 p2pimsvc - ok
    20:10:53.0330 4060 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    20:10:53.0361 4060 p2psvc - ok
    20:10:53.0392 4060 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
    20:10:53.0423 4060 Parport - ok
    20:10:53.0455 4060 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    20:10:53.0486 4060 partmgr - ok
    20:10:53.0501 4060 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    20:10:53.0533 4060 PcaSvc - ok
    20:10:53.0564 4060 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    20:10:53.0595 4060 pci - ok
    20:10:53.0611 4060 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    20:10:53.0626 4060 pciide - ok
    20:10:53.0642 4060 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    20:10:53.0673 4060 pcmcia - ok
    20:10:53.0689 4060 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    20:10:53.0704 4060 pcw - ok
    20:10:53.0735 4060 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    20:10:53.0813 4060 PEAUTH - ok
    20:10:53.0891 4060 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
    20:10:53.0985 4060 PeerDistSvc - ok
    20:10:54.0016 4060 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    20:10:54.0063 4060 PerfHost - ok
    20:10:54.0141 4060 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    20:10:54.0250 4060 pla - ok
    20:10:54.0313 4060 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    20:10:54.0359 4060 PlugPlay - ok
    20:10:54.0406 4060 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    20:10:54.0437 4060 PNRPAutoReg - ok
    20:10:54.0469 4060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    20:10:54.0500 4060 PNRPsvc - ok
    20:10:54.0547 4060 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    20:10:54.0625 4060 PolicyAgent - ok
    20:10:54.0687 4060 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    20:10:54.0781 4060 Power - ok
    20:10:54.0812 4060 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    20:10:54.0874 4060 PptpMiniport - ok
    20:10:54.0905 4060 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
    20:10:54.0937 4060 Processor - ok
    20:10:54.0983 4060 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    20:10:55.0046 4060 ProfSvc - ok
    20:10:55.0061 4060 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    20:10:55.0077 4060 ProtectedStorage - ok
    20:10:55.0124 4060 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    20:10:55.0202 4060 Psched - ok
    20:10:55.0264 4060 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
    20:10:55.0342 4060 ql2300 - ok
    20:10:55.0373 4060 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
    20:10:55.0405 4060 ql40xx - ok
    20:10:55.0451 4060 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    20:10:55.0483 4060 QWAVE - ok
    20:10:55.0498 4060 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    20:10:55.0545 4060 QWAVEdrv - ok
    20:10:55.0561 4060 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    20:10:55.0623 4060 RasAcd - ok
    20:10:55.0685 4060 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    20:10:55.0748 4060 RasAgileVpn - ok
    20:10:55.0763 4060 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    20:10:55.0841 4060 RasAuto - ok
    20:10:55.0857 4060 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    20:10:55.0919 4060 Rasl2tp - ok
    20:10:55.0951 4060 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    20:10:56.0013 4060 RasMan - ok
    20:10:56.0044 4060 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    20:10:56.0107 4060 RasPppoe - ok
    20:10:56.0122 4060 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    20:10:56.0200 4060 RasSstp - ok
    20:10:56.0247 4060 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    20:10:56.0309 4060 rdbss - ok
    20:10:56.0325 4060 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    20:10:56.0372 4060 rdpbus - ok
    20:10:56.0403 4060 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    20:10:56.0450 4060 RDPCDD - ok
    20:10:56.0481 4060 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
    20:10:56.0528 4060 RDPDR - ok
    20:10:56.0543 4060 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    20:10:56.0606 4060 RDPENCDD - ok
    20:10:56.0621 4060 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    20:10:56.0668 4060 RDPREFMP - ok
    20:10:56.0762 4060 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    20:10:56.0809 4060 RdpVideoMiniport - ok
    20:10:56.0840 4060 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    20:10:56.0871 4060 RDPWD - ok
    20:10:56.0918 4060 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    20:10:56.0949 4060 rdyboost - ok
    20:10:56.0980 4060 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    20:10:57.0058 4060 RemoteAccess - ok
    20:10:57.0105 4060 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    20:10:57.0167 4060 RemoteRegistry - ok
    20:10:57.0199 4060 [ CAF88D6573D21CD2AA27001DDBFDC74D ] RMCAST C:\Windows\system32\DRIVERS\RMCAST.sys
    20:10:57.0261 4060 RMCAST - ok
    20:10:57.0292 4060 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    20:10:57.0339 4060 RpcEptMapper - ok
    20:10:57.0386 4060 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    20:10:57.0401 4060 RpcLocator - ok
    20:10:57.0464 4060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
    20:10:57.0511 4060 RpcSs - ok
    20:10:57.0557 4060 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    20:10:57.0604 4060 rspndr - ok
    20:10:57.0713 4060 [ A4F7F9BB5576BF1D3A57F785C5DBEDB7 ] RTL8192cu C:\Windows\system32\DRIVERS\RTL8192cu.sys
    20:10:57.0776 4060 RTL8192cu - ok
    20:10:57.0807 4060 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
    20:10:57.0838 4060 s3cap - ok
    20:10:57.0854 4060 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    20:10:57.0885 4060 SamSs - ok
    20:10:57.0963 4060 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
    20:10:57.0979 4060 SASDIFSV - ok
    20:10:57.0979 4060 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
    20:10:57.0994 4060 SASKUTIL - ok
    20:10:58.0041 4060 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    20:10:58.0072 4060 sbp2port - ok
    20:10:58.0103 4060 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    20:10:58.0166 4060 SCardSvr - ok
    20:10:58.0181 4060 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    20:10:58.0244 4060 scfilter - ok
    20:10:58.0291 4060 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    20:10:58.0369 4060 Schedule - ok
    20:10:58.0400 4060 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    20:10:58.0447 4060 SCPolicySvc - ok
    20:10:58.0478 4060 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
    20:10:58.0525 4060 sdbus - ok
    20:10:58.0571 4060 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    20:10:58.0618 4060 SDRSVC - ok
    20:10:58.0743 4060 [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    20:10:58.0790 4060 SDScannerService - ok
    20:10:58.0852 4060 [ A529CFE32565C0B145578FFB2B32C9A5 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    20:10:58.0915 4060 SDUpdateService - ok
    20:10:58.0946 4060 [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    20:10:58.0961 4060 SDWSCService - ok
    20:10:59.0008 4060 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    20:10:59.0071 4060 secdrv - ok
    20:10:59.0117 4060 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    20:10:59.0164 4060 seclogon - ok
    20:10:59.0180 4060 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
    20:10:59.0258 4060 SENS - ok
    20:10:59.0273 4060 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    20:10:59.0320 4060 SensrSvc - ok
    20:10:59.0336 4060 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
    20:10:59.0398 4060 Serenum - ok
    20:10:59.0414 4060 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
    20:10:59.0461 4060 Serial - ok
    20:10:59.0476 4060 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
    20:10:59.0507 4060 sermouse - ok
    20:10:59.0570 4060 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    20:10:59.0632 4060 SessionEnv - ok
    20:10:59.0648 4060 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
    20:10:59.0679 4060 sffdisk - ok
    20:10:59.0726 4060 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    20:10:59.0757 4060 sffp_mmc - ok
    20:10:59.0773 4060 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
    20:10:59.0804 4060 sffp_sd - ok
    20:10:59.0819 4060 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
    20:10:59.0851 4060 sfloppy - ok
    20:10:59.0882 4060 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    20:10:59.0944 4060 SharedAccess - ok
    20:10:59.0991 4060 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    20:11:00.0069 4060 ShellHWDetection - ok
    20:11:00.0100 4060 [ E9E830D540EDEDED650F906628468548 ] simptcp C:\Windows\System32\tcpsvcs.exe
    20:11:00.0116 4060 simptcp - ok
    20:11:00.0163 4060 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
    20:11:00.0178 4060 SiSRaid2 - ok
    20:11:00.0225 4060 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
    20:11:00.0241 4060 SiSRaid4 - ok
    20:11:00.0287 4060 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
    20:11:00.0303 4060 SkypeUpdate - ok
    20:11:00.0334 4060 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    20:11:00.0397 4060 Smb - ok
    20:11:00.0459 4060 [ CA62AE004E98374BF7F082CD765EEA02 ] SNMP C:\Windows\System32\snmp.exe
    20:11:00.0490 4060 SNMP - ok
    20:11:00.0506 4060 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    20:11:00.0553 4060 SNMPTRAP - ok
    20:11:00.0599 4060 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    20:11:00.0615 4060 spldr - ok
    20:11:00.0740 4060 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    20:11:00.0771 4060 Spooler - ok
    20:11:00.0911 4060 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    20:11:01.0021 4060 sppsvc - ok
    20:11:01.0036 4060 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    20:11:01.0099 4060 sppuinotify - ok
    20:11:01.0145 4060 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    20:11:01.0192 4060 srv - ok
    20:11:01.0223 4060 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    20:11:01.0255 4060 srv2 - ok
    20:11:01.0301 4060 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
    20:11:01.0348 4060 SrvHsfHDA - ok
    20:11:01.0426 4060 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
    20:11:01.0489 4060 SrvHsfV92 - ok
    20:11:01.0551 4060 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
    20:11:01.0598 4060 SrvHsfWinac - ok
    20:11:01.0629 4060 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    20:11:01.0660 4060 srvnet - ok
    20:11:01.0723 4060 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    20:11:01.0801 4060 SSDPSRV - ok
    20:11:01.0816 4060 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    20:11:01.0863 4060 SstpSvc - ok
    20:11:01.0910 4060 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
    20:11:01.0925 4060 stexstor - ok
    20:11:01.0988 4060 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    20:11:02.0035 4060 stisvc - ok
    20:11:02.0081 4060 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
    20:11:02.0097 4060 storflt - ok
    20:11:02.0128 4060 [ C40841817EF57D491F22EB103DA587CC ] StorSvc C:\Windows\system32\storsvc.dll
    20:11:02.0191 4060 StorSvc - ok
    20:11:02.0206 4060 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
    20:11:02.0222 4060 storvsc - ok
    20:11:02.0253 4060 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
    20:11:02.0284 4060 swenum - ok
    20:11:02.0331 4060 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    20:11:02.0409 4060 swprv - ok
    20:11:02.0471 4060 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    20:11:02.0565 4060 SysMain - ok
    20:11:02.0596 4060 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    20:11:02.0643 4060 TabletInputService - ok
    20:11:02.0721 4060 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    20:11:02.0799 4060 TapiSrv - ok
    20:11:02.0815 4060 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    20:11:02.0877 4060 TBS - ok
    20:11:02.0955 4060 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    20:11:03.0033 4060 Tcpip - ok
    20:11:03.0080 4060 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    20:11:03.0142 4060 TCPIP6 - ok
    20:11:03.0158 4060 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    20:11:03.0189 4060 tcpipreg - ok
    20:11:03.0220 4060 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    20:11:03.0267 4060 TDPIPE - ok
    20:11:03.0298 4060 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    20:11:03.0329 4060 TDTCP - ok
    20:11:03.0376 4060 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    20:11:03.0423 4060 tdx - ok
    20:11:03.0439 4060 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
    20:11:03.0454 4060 TermDD - ok
    20:11:03.0501 4060 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    20:11:03.0579 4060 TermService - ok
    20:11:03.0610 4060 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    20:11:03.0641 4060 Themes - ok
    20:11:03.0641 4060 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    20:11:03.0719 4060 THREADORDER - ok
    20:11:03.0735 4060 [ 519CB7D7F697F4BA47DE05845C20F158 ] TlntSvr C:\Windows\System32\tlntsvr.exe
    20:11:03.0782 4060 TlntSvr - ok
    20:11:03.0813 4060 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    20:11:03.0875 4060 TrkWks - ok
    20:11:03.0953 4060 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    20:11:04.0000 4060 TrustedInstaller - ok
    20:11:04.0031 4060 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    20:11:04.0094 4060 tssecsrv - ok
    20:11:04.0141 4060 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    20:11:04.0187 4060 TsUsbFlt - ok
    20:11:04.0219 4060 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
    20:11:04.0234 4060 TsUsbGD - ok
    20:11:04.0297 4060 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    20:11:04.0343 4060 tunnel - ok
    20:11:04.0375 4060 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
    20:11:04.0390 4060 uagp35 - ok
    20:11:04.0421 4060 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    20:11:04.0484 4060 udfs - ok
    20:11:04.0531 4060 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    20:11:04.0562 4060 UI0Detect - ok
    20:11:04.0593 4060 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    20:11:04.0609 4060 uliagpkx - ok
    20:11:04.0640 4060 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
    20:11:04.0718 4060 umbus - ok
    20:11:04.0749 4060 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
    20:11:04.0780 4060 UmPass - ok
    20:11:04.0827 4060 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
    20:11:04.0874 4060 UmRdpService - ok
    20:11:04.0921 4060 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    20:11:04.0999 4060 upnphost - ok
    20:11:05.0030 4060 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    20:11:05.0061 4060 usbccgp - ok
    20:11:05.0092 4060 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    20:11:05.0123 4060 usbcir - ok
    20:11:05.0155 4060 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
    20:11:05.0186 4060 usbehci - ok
    20:11:05.0217 4060 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    20:11:05.0264 4060 usbhub - ok
    20:11:05.0279 4060 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
    20:11:05.0326 4060 usbohci - ok
    20:11:05.0357 4060 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
    20:11:05.0389 4060 usbprint - ok
    20:11:05.0420 4060 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    20:11:05.0467 4060 USBSTOR - ok
    20:11:05.0482 4060 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
    20:11:05.0513 4060 usbuhci - ok
    20:11:05.0560 4060 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
    20:11:05.0591 4060 usbvideo - ok
    20:11:05.0638 4060 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    20:11:05.0701 4060 UxSms - ok
    20:11:05.0732 4060 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    20:11:05.0747 4060 VaultSvc - ok
    20:11:05.0794 4060 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    20:11:05.0810 4060 vdrvroot - ok
    20:11:05.0841 4060 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    20:11:05.0919 4060 vds - ok
    20:11:05.0950 4060 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    20:11:05.0981 4060 vga - ok
    20:11:05.0997 4060 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    20:11:06.0044 4060 VgaSave - ok
    20:11:06.0075 4060 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    20:11:06.0106 4060 vhdmp - ok
    20:11:06.0122 4060 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    20:11:06.0137 4060 viaide - ok
    20:11:06.0184 4060 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
    20:11:06.0200 4060 vmbus - ok
    20:11:06.0215 4060 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
    20:11:06.0262 4060 VMBusHID - ok
    20:11:06.0309 4060 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    20:11:06.0325 4060 volmgr - ok
    20:11:06.0356 4060 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    20:11:06.0387 4060 volmgrx - ok
    20:11:06.0418 4060 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    20:11:06.0449 4060 volsnap - ok
    20:11:06.0496 4060 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
    20:11:06.0512 4060 vsmraid - ok
    20:11:06.0605 4060 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    20:11:06.0730 4060 VSS - ok
    20:11:06.0746 4060 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    20:11:06.0793 4060 vwifibus - ok
    20:11:06.0824 4060 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    20:11:06.0855 4060 vwififlt - ok
    20:11:06.0886 4060 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    20:11:06.0964 4060 W32Time - ok
    20:11:07.0042 4060 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
    20:11:07.0073 4060 W3SVC - ok
    20:11:07.0105 4060 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
    20:11:07.0151 4060 WacomPen - ok
    20:11:07.0167 4060 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    20:11:07.0229 4060 WANARP - ok
    20:11:07.0245 4060 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    20:11:07.0292 4060 Wanarpv6 - ok
    20:11:07.0323 4060 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
    20:11:07.0339 4060 WAS - ok
    20:11:07.0417 4060 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    20:11:07.0479 4060 WatAdminSvc - ok
    20:11:07.0557 4060 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    20:11:07.0666 4060 wbengine - ok
    20:11:07.0713 4060 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    20:11:07.0760 4060 WbioSrvc - ok
    20:11:07.0775 4060 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    20:11:07.0838 4060 wcncsvc - ok
    20:11:07.0885 4060 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    20:11:07.0916 4060 WcsPlugInService - ok
    20:11:07.0947 4060 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
    20:11:07.0978 4060 Wd - ok
    20:11:08.0041 4060 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    20:11:08.0087 4060 Wdf01000 - ok
    20:11:08.0103 4060 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    20:11:08.0212 4060 WdiServiceHost - ok
    20:11:08.0212 4060 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    20:11:08.0259 4060 WdiSystemHost - ok
    20:11:08.0306 4060 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    20:11:08.0353 4060 WebClient - ok
    20:11:08.0415 4060 [ D5BA7D43FA2EF656BF7E98A188391E40 ] Wecsvc C:\Windows\system32\wecsvc.dll
    20:11:08.0477 4060 Wecsvc - ok
    20:11:08.0493 4060 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    20:11:08.0555 4060 wercplsupport - ok
    20:11:08.0571 4060 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    20:11:08.0618 4060 WerSvc - ok
    20:11:08.0711 4060 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    20:11:08.0758 4060 WfpLwf - ok
    20:11:08.0789 4060 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    20:11:08.0821 4060 WIMMount - ok
    20:11:08.0867 4060 [ D3306A5B1D83B137906DAC283215E69E ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
    20:11:08.0914 4060 winachsf - ok
    20:11:08.0930 4060 WinDefend - ok
    20:11:08.0945 4060 WinHttpAutoProxySvc - ok
    20:11:09.0008 4060 [ 136760C1E9697BAF4ECDEAE5590A0806 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    20:11:09.0055 4060 Winmgmt - ok
    20:11:09.0101 4060 WinRing0_1_2_0 - ok
    20:11:09.0226 4060 [ 3BB6B401A780BF434C8F58137DE10BF7 ] WinRM C:\Windows\system32\WsmSvc.dll
    20:11:09.0320 4060 WinRM - ok
    20:11:09.0413 4060 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
    20:11:09.0476 4060 Wlansvc - ok
    20:11:09.0601 4060 [ 357CABBF155AFD1D3926E62539D2A3A7 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    20:11:09.0694 4060 wlidsvc - ok
    20:11:09.0725 4060 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
    20:11:09.0772 4060 WmiAcpi - ok
    20:11:09.0803 4060 [ 4DF841632B62A7CF19A79A05046A8AB1 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    20:11:09.0835 4060 wmiApSrv - ok
    20:11:09.0866 4060 WMPNetworkSvc - ok
    20:11:09.0913 4060 [ B5BD872122A2CE82D196ABF2D5D8D80A ] WMSVC C:\Windows\system32\inetsrv\wmsvc.exe
    20:11:09.0959 4060 WMSVC - ok
    20:11:09.0991 4060 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
    20:11:10.0022 4060 WPCSvc - ok
    20:11:10.0037 4060 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    20:11:10.0069 4060 WPDBusEnum - ok
    20:11:10.0100 4060 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    20:11:10.0162 4060 ws2ifsl - ok
    20:11:10.0178 4060 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
    20:11:10.0225 4060 wscsvc - ok
    20:11:10.0225 4060 WSearch - ok
    20:11:10.0349 4060 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    20:11:10.0412 4060 wuauserv - ok
    20:11:10.0459 4060 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    20:11:10.0505 4060 WudfPf - ok
    20:11:10.0537 4060 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    20:11:10.0568 4060 WUDFRd - ok
    20:11:10.0599 4060 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    20:11:10.0646 4060 wudfsvc - ok
    20:11:10.0677 4060 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
    20:11:10.0724 4060 WwanSvc - ok
    20:11:10.0771 4060 [ AF617F62B17F4E95E92BBED578691FA6 ] XAudio C:\Windows\system32\DRIVERS\xaudio64.sys
    20:11:10.0786 4060 XAudio - ok
    20:11:10.0849 4060 [ E1E858AEF2ED420CBB7605D3ECCEC69A ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
    20:11:10.0880 4060 yukonw7 - ok
    20:11:10.0895 4060 ================ Scan global ===============================
    20:11:10.0942 4060 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
    20:11:10.0973 4060 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
    20:11:10.0989 4060 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\system32\winsrv.dll
    20:11:11.0036 4060 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
    20:11:11.0067 4060 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
    20:11:11.0083 4060 [Global] - ok
    20:11:11.0083 4060 ================ Scan MBR ==================================
    20:11:11.0098 4060 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    20:11:11.0379 4060 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
    20:11:11.0379 4060 \Device\Harddisk0\DR0 - detected TDSS File System (1)
    20:11:11.0379 4060 ================ Scan VBR ==================================
    20:11:11.0379 4060 [ F07B5662542B3A141ABDDB6F2A97D1BC ] \Device\Harddisk0\DR0\Partition1
    20:11:11.0379 4060 \Device\Harddisk0\DR0\Partition1 - ok
    20:11:11.0379 4060 ================ Scan active images ========================
    20:11:11.0379 4060 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
    20:11:11.0379 4060 C:\Windows\System32\drivers\crashdmp.sys - ok
    20:11:11.0395 4060 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
    20:11:11.0395 4060 C:\Windows\System32\drivers\Dumpata.sys - ok
    20:11:11.0410 4060 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
    20:11:11.0410 4060 C:\Windows\System32\drivers\atapi.sys - ok
    20:11:11.0410 4060 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
    20:11:11.0410 4060 C:\Windows\System32\drivers\dumpfve.sys - ok
    20:11:11.0426 4060 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
    20:11:11.0426 4060 C:\Windows\System32\drivers\cdrom.sys - ok
    20:11:11.0426 4060 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] C:\Windows\System32\drivers\aswSnx.sys
    20:11:11.0426 4060 C:\Windows\System32\drivers\aswSnx.sys - ok
    20:11:11.0426 4060 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
    20:11:11.0426 4060 C:\Windows\System32\drivers\null.sys - ok
    20:11:11.0441 4060 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
    20:11:11.0441 4060 C:\Windows\System32\drivers\beep.sys - ok
    20:11:11.0441 4060 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
    20:11:11.0441 4060 C:\Windows\System32\drivers\videoprt.sys - ok
    20:11:11.0457 4060 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
    20:11:11.0457 4060 C:\Windows\System32\drivers\watchdog.sys - ok
    20:11:11.0473 4060 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
    20:11:11.0473 4060 C:\Windows\System32\drivers\RDPCDD.sys - ok
    20:11:11.0473 4060 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
    20:11:11.0473 4060 C:\Windows\System32\drivers\vga.sys - ok
    20:11:11.0488 4060 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
    20:11:11.0488 4060 C:\Windows\System32\drivers\RDPENCDD.sys - ok
    20:11:11.0488 4060 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
    20:11:11.0488 4060 C:\Windows\System32\drivers\RDPREFMP.sys - ok
    20:11:11.0504 4060 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
    20:11:11.0504 4060 C:\Windows\System32\drivers\msfs.sys - ok
    20:11:11.0504 4060 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
    20:11:11.0504 4060 C:\Windows\System32\drivers\npfs.sys - ok
    20:11:11.0519 4060 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
    20:11:11.0519 4060 C:\Windows\System32\drivers\tdi.sys - ok
    20:11:11.0519 4060 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
    20:11:11.0519 4060 C:\Windows\System32\drivers\tdx.sys - ok
    20:11:11.0535 4060 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] C:\Windows\System32\drivers\aswTdi.sys
    20:11:11.0535 4060 C:\Windows\System32\drivers\aswTdi.sys - ok
    20:11:11.0535 4060 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
    20:11:11.0535 4060 C:\Windows\System32\drivers\afd.sys - ok
    20:11:11.0551 4060 [ 57768C7DB4681F2510F247F82EF31D4F ] C:\Windows\System32\drivers\aswRdr2.sys
    20:11:11.0551 4060 C:\Windows\System32\drivers\aswRdr2.sys - ok
    20:11:11.0551 4060 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
    20:11:11.0551 4060 C:\Windows\System32\drivers\netbt.sys - ok
    20:11:11.0566 4060 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
    20:11:11.0566 4060 C:\Windows\System32\drivers\wfplwf.sys - ok
    20:11:11.0582 4060 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
    20:11:11.0582 4060 C:\Windows\System32\drivers\pacer.sys - ok
    20:11:11.0582 4060 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
    20:11:11.0582 4060 C:\Windows\System32\drivers\netbios.sys - ok
    20:11:11.0597 4060 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
    20:11:11.0597 4060 C:\Windows\System32\drivers\vwififlt.sys - ok
    20:11:11.0597 4060 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
    20:11:11.0597 4060 C:\Windows\System32\drivers\termdd.sys - ok
    20:11:11.0613 4060 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
    20:11:11.0613 4060 C:\Windows\System32\drivers\wanarp.sys - ok
    20:11:11.0613 4060 [ 3289766038DB2CB14D07DC84392138D5 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
    20:11:11.0613 4060 C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
    20:11:11.0629 4060 [ 58A38E75F3316A83C23DF6173D41F2B5 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
    20:11:11.0629 4060 C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
    20:11:11.0629 4060 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
    20:11:11.0629 4060 C:\Windows\System32\drivers\rdbss.sys - ok
    20:11:11.0644 4060 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
    20:11:11.0644 4060 C:\Windows\System32\drivers\nsiproxy.sys - ok
    20:11:11.0644 4060 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
    20:11:11.0644 4060 C:\Windows\System32\drivers\discache.sys - ok
    20:11:11.0660 4060 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
    20:11:11.0660 4060 C:\Windows\System32\drivers\mssmbios.sys - ok
    20:11:11.0660 4060 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] C:\Windows\System32\drivers\csc.sys
    20:11:11.0660 4060 C:\Windows\System32\drivers\csc.sys - ok
    20:11:11.0675 4060 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
    20:11:11.0675 4060 C:\Windows\System32\drivers\blbdrive.sys - ok
    20:11:11.0691 4060 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
    20:11:11.0691 4060 C:\Windows\System32\drivers\dfsc.sys - ok
    20:11:11.0691 4060 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] C:\Windows\System32\drivers\aswSP.sys
    20:11:11.0691 4060 C:\Windows\System32\drivers\aswSP.sys - ok
    20:11:11.0691 4060 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
    20:11:11.0691 4060 C:\Windows\System32\drivers\tunnel.sys - ok
    20:11:11.0707 4060 [ 7024F087CFF1833A806193EF9D22CDA9 ] C:\Windows\System32\drivers\amdk8.sys
    20:11:11.0707 4060 C:\Windows\System32\drivers\amdk8.sys - ok
    20:11:11.0707 4060 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
    20:11:11.0707 4060 C:\Windows\System32\drivers\wmiacpi.sys - ok
    20:11:11.0722 4060 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
    20:11:11.0722 4060 C:\Windows\System32\smss.exe - ok
    20:11:11.0722 4060 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
    20:11:11.0722 4060 C:\Windows\System32\ntdll.dll - ok
    20:11:11.0738 4060 [ 428DDCB79F4377726501867EADA9C2D6 ] C:\Windows\System32\drivers\atikmdag.sys
    20:11:11.0738 4060 C:\Windows\System32\drivers\atikmdag.sys - ok
    20:11:11.0753 4060 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
    20:11:11.0753 4060 C:\Windows\System32\drivers\dxgkrnl.sys - ok
    20:11:11.0753 4060 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
    20:11:11.0753 4060 C:\Windows\System32\drivers\dxgmms1.sys - ok
    20:11:11.0769 4060 [ E1E858AEF2ED420CBB7605D3ECCEC69A ] C:\Windows\System32\drivers\yk62x64.sys
    20:11:11.0769 4060 C:\Windows\System32\drivers\yk62x64.sys - ok
    20:11:11.0769 4060 [ 2093F84EC032B2F59FF005D83F841144 ] C:\Windows\System32\drivers\athrx.sys
    20:11:11.0769 4060 C:\Windows\System32\drivers\athrx.sys - ok
    20:11:11.0785 4060 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
    20:11:11.0785 4060 C:\Windows\System32\drivers\vwifibus.sys - ok
    20:11:11.0785 4060 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
    20:11:11.0785 4060 C:\Windows\System32\drivers\usbohci.sys - ok
    20:11:11.0800 4060 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
    20:11:11.0800 4060 C:\Windows\System32\drivers\usbport.sys - ok
    20:11:11.0800 4060 [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
    20:11:11.0800 4060 C:\Windows\System32\drivers\CmBatt.sys - ok
    20:11:11.0816 4060 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
    20:11:11.0816 4060 C:\Windows\System32\drivers\hdaudbus.sys - ok
    20:11:11.0816 4060 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
    20:11:11.0816 4060 C:\Windows\System32\drivers\usbehci.sys - ok
    20:11:11.0831 4060 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
    20:11:11.0831 4060 C:\Windows\System32\drivers\i8042prt.sys - ok
    20:11:11.0847 4060 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
    20:11:11.0847 4060 C:\Windows\System32\drivers\kbdclass.sys - ok
    20:11:11.0847 4060 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
    20:11:11.0847 4060 C:\Windows\System32\drivers\mouclass.sys - ok
    20:11:11.0863 4060 [ 228C7CF50A584DD58E72FCEFAC7D8914 ] C:\Windows\System32\drivers\nscirda.sys
    20:11:11.0863 4060 C:\Windows\System32\drivers\nscirda.sys - ok
    20:11:11.0863 4060 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] C:\Windows\System32\drivers\irenum.sys
    20:11:11.0863 4060 C:\Windows\System32\drivers\irenum.sys - ok
    20:11:11.0878 4060 [ 13DA8C888B75C7C52570AFA29D06A95F ] C:\Windows\System32\drivers\o2sdx64.sys
    20:11:11.0878 4060 C:\Windows\System32\drivers\o2sdx64.sys - ok
    20:11:11.0878 4060 [ 1B1E264203D4EF9D3DA1987AD70355AB ] C:\Windows\System32\drivers\scsiport.sys
    20:11:11.0878 4060 C:\Windows\System32\drivers\scsiport.sys - ok
    20:11:11.0894 4060 [ 47878AB5A4FDCC3BD6EEF9D230A43656 ] C:\Windows\System32\drivers\o2mdx64.sys
    20:11:11.0894 4060 C:\Windows\System32\drivers\o2mdx64.sys - ok
    20:11:11.0894 4060 [ A87D604AEA360176311474C87A63BB88 ] C:\Windows\System32\drivers\1394ohci.sys
    20:11:11.0894 4060 C:\Windows\System32\drivers\1394ohci.sys - ok
    20:11:11.0909 4060 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
    20:11:11.0909 4060 C:\Windows\System32\drivers\CompositeBus.sys - ok
    20:11:11.0909 4060 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
    20:11:11.0909 4060 C:\Windows\System32\drivers\ks.sys - ok
    20:11:11.0925 4060 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
    20:11:11.0925 4060 C:\Windows\System32\drivers\ksthunk.sys - ok
    20:11:11.0925 4060 [ DE585D1D266805E5EEDAE911FDD16F38 ] C:\Windows\System32\drivers\mcvidrv_x64.sys
    20:11:11.0925 4060 C:\Windows\System32\drivers\mcvidrv_x64.sys - ok
    20:11:11.0941 4060 [ 001CC10FA5E71AE1119115E126C8750D ] C:\Windows\System32\drivers\stream.sys
    20:11:11.0941 4060 C:\Windows\System32\drivers\stream.sys - ok
    20:11:11.0941 4060 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
    20:11:11.0941 4060 C:\Windows\System32\drivers\drmk.sys - ok
    20:11:11.0956 4060 [ 2E7FFDEF8BAFD04CBB517507B821E878 ] C:\Windows\System32\drivers\mcaudrv_x64.sys
    20:11:11.0956 4060 C:\Windows\System32\drivers\mcaudrv_x64.sys - ok
    20:11:11.0972 4060 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
    20:11:11.0972 4060 C:\Windows\System32\drivers\portcls.sys - ok
    20:11:11.0972 4060 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
    20:11:11.0972 4060 C:\Windows\System32\drivers\agilevpn.sys - ok
    20:11:11.0987 4060 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
    20:11:11.0987 4060 C:\Windows\System32\drivers\rasl2tp.sys - ok
    20:11:11.0987 4060 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
    20:11:11.0987 4060 C:\Windows\System32\drivers\ndistapi.sys - ok
    20:11:12.0003 4060 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
    20:11:12.0003 4060 C:\Windows\System32\drivers\ndiswan.sys - ok
    20:11:12.0003 4060 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
    20:11:12.0003 4060 C:\Windows\System32\drivers\raspppoe.sys - ok
    20:11:12.0019 4060 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
    20:11:12.0019 4060 C:\Windows\System32\drivers\raspptp.sys - ok
    20:11:12.0019 4060 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
    20:11:12.0019 4060 C:\Windows\System32\drivers\rassstp.sys - ok
    20:11:12.0034 4060 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] C:\Windows\System32\drivers\rdpbus.sys
    20:11:12.0034 4060 C:\Windows\System32\drivers\rdpbus.sys - ok
    20:11:12.0034 4060 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
    20:11:12.0034 4060 C:\Windows\System32\drivers\swenum.sys - ok
    20:11:12.0050 4060 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
    20:11:12.0050 4060 C:\Windows\System32\drivers\umbus.sys - ok
    20:11:12.0050 4060 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
    20:11:12.0050 4060 C:\Windows\System32\drivers\usbhub.sys - ok
    20:11:12.0065 4060 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
    20:11:12.0065 4060 C:\Windows\System32\drivers\ndproxy.sys - ok
    20:11:12.0081 4060 [ 02674201AD9FE19AC3376705077882C6 ] C:\Windows\System32\drivers\RTKVHD64.sys
    20:11:12.0081 4060 C:\Windows\System32\drivers\RTKVHD64.sys - ok
    20:11:12.0081 4060 [ 4B72EB550104BF39D0DCE572A0E8016A ] C:\Windows\System32\drivers\CAXHWAZL.sys
    20:11:12.0081 4060 C:\Windows\System32\drivers\CAXHWAZL.sys - ok
    20:11:12.0097 4060 [ CD5B949378BE3B8963778CB8B4CD1395 ] C:\Windows\System32\drivers\CAX_DPV.sys
    20:11:12.0097 4060 C:\Windows\System32\drivers\CAX_DPV.sys - ok
    20:11:12.0097 4060 [ D3306A5B1D83B137906DAC283215E69E ] C:\Windows\System32\drivers\CAX_CNXT.sys
    20:11:12.0097 4060 C:\Windows\System32\drivers\CAX_CNXT.sys - ok
    20:11:12.0112 4060 [ 800BA92F7010378B09F9ED9270F07137 ] C:\Windows\System32\drivers\modem.sys
    20:11:12.0112 4060 C:\Windows\System32\drivers\modem.sys - ok
    20:11:12.0112 4060 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
    20:11:12.0112 4060 C:\Windows\System32\autochk.exe - ok
    20:11:12.0128 4060 [ 23948829C6D049B8ADE0E0FB87305AC3 ] C:\Windows\System32\sdnclean64.exe
    20:11:12.0128 4060 C:\Windows\System32\sdnclean64.exe - ok
    20:11:12.0143 4060 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
    20:11:12.0143 4060 C:\Windows\System32\drivers\usbd.sys - ok
    20:11:12.0143 4060 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
    20:11:12.0143 4060 C:\Windows\System32\drivers\usbccgp.sys - ok
    20:11:12.0159 4060 [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
    20:11:12.0159 4060 C:\Windows\System32\drivers\usbvideo.sys - ok
    20:11:12.0159 4060 [ 5121DB613E10A46A3C5085B479026AA7 ] C:\Windows\System32\wininet.dll
    20:11:12.0159 4060 C:\Windows\System32\wininet.dll - ok
    20:11:12.0175 4060 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
    20:11:12.0175 4060 C:\Windows\System32\difxapi.dll - ok
    20:11:12.0175 4060 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
    20:11:12.0175 4060 C:\Windows\System32\psapi.dll - ok
    20:11:12.0190 4060 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
    20:11:12.0190 4060 C:\Windows\System32\kernel32.dll - ok
    20:11:12.0190 4060 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
    20:11:12.0190 4060 C:\Windows\System32\shlwapi.dll - ok
    20:11:12.0206 4060 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
    20:11:12.0206 4060 C:\Windows\System32\rpcrt4.dll - ok
    20:11:12.0206 4060 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
    20:11:12.0206 4060 C:\Windows\System32\imagehlp.dll - ok
    20:11:12.0221 4060 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
    20:11:12.0221 4060 C:\Windows\System32\lpk.dll - ok
    20:11:12.0221 4060 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
    20:11:12.0221 4060 C:\Windows\System32\oleaut32.dll - ok
    20:11:12.0237 4060 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
    20:11:12.0237 4060 C:\Windows\System32\user32.dll - ok
    20:11:12.0237 4060 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
    20:11:12.0237 4060 C:\Windows\System32\comdlg32.dll - ok
    20:11:12.0253 4060 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
    20:11:12.0253 4060 C:\Windows\System32\ws2_32.dll - ok
    20:11:12.0253 4060 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
    20:11:12.0253 4060 C:\Windows\System32\shell32.dll - ok
    20:11:12.0268 4060 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
    20:11:12.0268 4060 C:\Windows\System32\ole32.dll - ok
    20:11:12.0268 4060 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
    20:11:12.0268 4060 C:\Windows\System32\msvcrt.dll - ok
    20:11:12.0284 4060 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
    20:11:12.0284 4060 C:\Windows\System32\usp10.dll - ok
    20:11:12.0284 4060 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
    20:11:12.0284 4060 C:\Windows\System32\setupapi.dll - ok
    20:11:12.0299 4060 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
    20:11:12.0299 4060 C:\Windows\System32\clbcatq.dll - ok
    20:11:12.0315 4060 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
    20:11:12.0315 4060 C:\Windows\System32\imm32.dll - ok
    20:11:12.0315 4060 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
    20:11:12.0315 4060 C:\Windows\System32\normaliz.dll - ok
    20:11:12.0331 4060 [ 1DBA462CF92D890D8F8E6472E7E8B4B4 ] C:\Windows\System32\urlmon.dll
    20:11:12.0331 4060 C:\Windows\System32\urlmon.dll - ok
    20:11:12.0331 4060 [ A0F52880DDD164F968BE903C1FECD27E ] C:\Windows\System32\iertutil.dll
    20:11:12.0331 4060 C:\Windows\System32\iertutil.dll - ok
    20:11:12.0346 4060 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
    20:11:12.0346 4060 C:\Windows\System32\nsi.dll - ok
    20:11:12.0346 4060 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
    20:11:12.0346 4060 C:\Windows\System32\Wldap32.dll - ok
    20:11:12.0362 4060 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
    20:11:12.0362 4060 C:\Windows\System32\sechost.dll - ok
    20:11:12.0362 4060 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
    20:11:12.0362 4060 C:\Windows\System32\gdi32.dll - ok
    20:11:12.0377 4060 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
    20:11:12.0377 4060 C:\Windows\System32\advapi32.dll - ok
    20:11:12.0377 4060 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
    20:11:12.0377 4060 C:\Windows\System32\msctf.dll - ok
    20:11:12.0393 4060 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
    20:11:12.0393 4060 C:\Windows\System32\cfgmgr32.dll - ok
    20:11:12.0393 4060 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
    20:11:12.0393 4060 C:\Windows\System32\wintrust.dll - ok
    20:11:12.0409 4060 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
    20:11:12.0409 4060 C:\Windows\System32\comctl32.dll - ok
    20:11:12.0409 4060 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
    20:11:12.0409 4060 C:\Windows\System32\crypt32.dll - ok
    20:11:12.0424 4060 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
    20:11:12.0424 4060 C:\Windows\System32\devobj.dll - ok
    20:11:12.0424 4060 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
    20:11:12.0424 4060 C:\Windows\System32\KernelBase.dll - ok
    20:11:12.0440 4060 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
    20:11:12.0440 4060 C:\Windows\System32\msasn1.dll - ok
    20:11:12.0440 4060 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
    20:11:12.0440 4060 C:\Windows\SysWOW64\normaliz.dll - ok
    20:11:12.0455 4060 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
    20:11:12.0455 4060 C:\Windows\System32\drivers\dxapi.sys - ok
    20:11:12.0471 4060 [ 523B9B64F2B6C630A2E0A87116C05F12 ] C:\Windows\System32\win32k.sys
    20:11:12.0471 4060 C:\Windows\System32\win32k.sys - ok
    20:11:12.0471 4060 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
    20:11:12.0471 4060 C:\Windows\System32\csrss.exe - ok
    20:11:12.0487 4060 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
    20:11:12.0487 4060 C:\Windows\System32\csrsrv.dll - ok
    20:11:12.0487 4060 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
    20:11:12.0487 4060 C:\Windows\System32\basesrv.dll - ok
    20:11:12.0487 4060 [ 9E479C2B605C25DA4971ABA36250FAEF ] C:\Windows\System32\winsrv.dll
    20:11:12.0487 4060 C:\Windows\System32\winsrv.dll - ok
    20:11:12.0502 4060 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
    20:11:12.0502 4060 C:\Windows\System32\drivers\monitor.sys - ok
    20:11:12.0502 4060 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
    20:11:12.0518 4060 C:\Windows\System32\tsddd.dll - ok
    20:11:12.0518 4060 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
    20:11:12.0518 4060 C:\Windows\System32\sxssrv.dll - ok
    20:11:12.0533 4060 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
    20:11:12.0533 4060 C:\Windows\System32\wininit.exe - ok
    20:11:12.0533 4060 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
    20:11:12.0533 4060 C:\Windows\System32\profapi.dll - ok
    20:11:12.0549 4060 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
    20:11:12.0549 4060 C:\Windows\System32\KBDUS.DLL - ok
    20:11:12.0549 4060 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
    20:11:12.0549 4060 C:\Windows\System32\RpcRtRemote.dll - ok
    20:11:12.0565 4060 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
    20:11:12.0565 4060 C:\Windows\System32\cdd.dll - ok
    20:11:12.0565 4060 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
    20:11:12.0565 4060 C:\Windows\System32\WlS0WndH.dll - ok
    20:11:12.0580 4060 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
    20:11:12.0580 4060 C:\Windows\System32\sxs.dll - ok
    20:11:12.0580 4060 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
    20:11:12.0580 4060 C:\Windows\System32\cryptbase.dll - ok
    20:11:12.0596 4060 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
    20:11:12.0596 4060 C:\Windows\System32\winlogon.exe - ok
    20:11:12.0596 4060 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
    20:11:12.0596 4060 C:\Windows\System32\winsta.dll - ok
    20:11:12.0611 4060 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
    20:11:12.0611 4060 C:\Windows\System32\apphelp.dll - ok
    20:11:12.0611 4060 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
    20:11:12.0611 4060 C:\Windows\System32\lsass.exe - ok
    20:11:12.0627 4060 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
    20:11:12.0627 4060 C:\Windows\System32\lsm.exe - ok
    20:11:12.0627 4060 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
    20:11:12.0627 4060 C:\Windows\System32\services.exe - ok
    20:11:12.0643 4060 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
    20:11:12.0643 4060 C:\Windows\System32\lsasrv.dll - ok
    20:11:12.0643 4060 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
    20:11:12.0643 4060 C:\Windows\System32\sspisrv.dll - ok
    20:11:12.0658 4060 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
    20:11:12.0658 4060 C:\Windows\System32\sysntfy.dll - ok
    20:11:12.0658 4060 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
    20:11:12.0658 4060 C:\Windows\System32\wmsgapi.dll - ok
    20:11:12.0674 4060 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
    20:11:12.0674 4060 C:\Windows\System32\scext.dll - ok
    20:11:12.0674 4060 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
    20:11:12.0674 4060 C:\Windows\System32\sspicli.dll - ok
    20:11:12.0689 4060 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
    20:11:12.0689 4060 C:\Windows\System32\samsrv.dll - ok
    20:11:12.0689 4060 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
    20:11:12.0689 4060 C:\Windows\System32\scesrv.dll - ok
    20:11:12.0705 4060 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
    20:11:12.0705 4060 C:\Windows\System32\secur32.dll - ok
    20:11:12.0721 4060 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
    20:11:12.0721 4060 C:\Windows\System32\srvcli.dll - ok
    20:11:12.0721 4060 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
    20:11:12.0721 4060 C:\Windows\System32\cryptdll.dll - ok
    20:11:12.0736 4060 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
    20:11:12.0736 4060 C:\Windows\System32\wevtapi.dll - ok
    20:11:12.0736 4060 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
    20:11:12.0736 4060 C:\Windows\System32\authz.dll - ok
    20:11:12.0752 4060 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
    20:11:12.0752 4060 C:\Windows\System32\cngaudit.dll - ok
    20:11:12.0752 4060 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
    20:11:12.0752 4060 C:\Windows\System32\ncrypt.dll - ok
    20:11:12.0767 4060 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
    20:11:12.0767 4060 C:\Windows\System32\bcrypt.dll - ok
    20:11:12.0767 4060 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
    20:11:12.0767 4060 C:\Windows\System32\msprivs.dll - ok
    20:11:12.0783 4060 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
    20:11:12.0783 4060 C:\Windows\System32\netjoin.dll - ok
    20:11:12.0783 4060 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
    20:11:12.0783 4060 C:\Windows\System32\negoexts.dll - ok
    20:11:12.0799 4060 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
    20:11:12.0799 4060 C:\Windows\System32\kerberos.dll - ok
    20:11:12.0799 4060 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
    20:11:12.0799 4060 C:\Windows\System32\cryptsp.dll - ok
    20:11:12.0814 4060 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
    20:11:12.0814 4060 C:\Windows\System32\mswsock.dll - ok
    20:11:12.0814 4060 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
    20:11:12.0814 4060 C:\Windows\System32\wship6.dll - ok
    20:11:12.0830 4060 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
    20:11:12.0830 4060 C:\Windows\System32\msv1_0.dll - ok
    20:11:12.0830 4060 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
    20:11:12.0830 4060 C:\Windows\System32\netlogon.dll - ok
    20:11:12.0845 4060 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
    20:11:12.0845 4060 C:\Windows\System32\dnsapi.dll - ok
    20:11:12.0845 4060 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
    20:11:12.0845 4060 C:\Windows\System32\logoncli.dll - ok
    20:11:12.0861 4060 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
    20:11:12.0861 4060 C:\Windows\System32\schannel.dll - ok
    20:11:12.0861 4060 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
    20:11:12.0877 4060 C:\Windows\System32\wdigest.dll - ok
    20:11:12.0877 4060 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
    20:11:12.0877 4060 C:\Windows\System32\rsaenh.dll - ok
    20:11:12.0892 4060 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
    20:11:12.0892 4060 C:\Windows\System32\TSpkg.dll - ok
    20:11:12.0892 4060 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
    20:11:12.0892 4060 C:\Windows\System32\pku2u.dll - ok
    20:11:12.0908 4060 [ 94AA2DFFF94DF789AAA0081333A6CADA ] C:\Windows\System32\LIVESSP.DLL
    20:11:12.0908 4060 C:\Windows\System32\LIVESSP.DLL - ok
    20:11:12.0908 4060 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
    20:11:12.0908 4060 C:\Windows\System32\bcryptprimitives.dll - ok
    20:11:12.0923 4060 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
    20:11:12.0923 4060 C:\Windows\System32\credssp.dll - ok
    20:11:12.0923 4060 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
    20:11:12.0923 4060 C:\Windows\System32\efslsaext.dll - ok
    20:11:12.0939 4060 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
    20:11:12.0939 4060 C:\Windows\System32\scecli.dll - ok
    20:11:12.0939 4060 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
    20:11:12.0939 4060 C:\Windows\System32\ubpm.dll - ok
    20:11:12.0955 4060 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
    20:11:12.0955 4060 C:\Windows\System32\svchost.exe - ok
    20:11:12.0955 4060 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
    20:11:12.0955 4060 C:\Windows\System32\umpnpmgr.dll - ok
    20:11:12.0970 4060 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
    20:11:12.0970 4060 C:\Windows\System32\SPInf.dll - ok
    20:11:12.0970 4060 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
    20:11:12.0970 4060 C:\Windows\System32\devrtl.dll - ok
    20:11:12.0986 4060 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
    20:11:12.0986 4060 C:\Windows\System32\gpapi.dll - ok
    20:11:12.0986 4060 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
    20:11:12.0986 4060 C:\Windows\System32\userenv.dll - ok
    20:11:13.0001 4060 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
    20:11:13.0001 4060 C:\Windows\System32\umpo.dll - ok
    20:11:13.0001 4060 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
    20:11:13.0001 4060 C:\Windows\System32\pcwum.dll - ok
    20:11:13.0017 4060 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
    20:11:13.0017 4060 C:\Windows\System32\powrprof.dll - ok
    20:11:13.0017 4060 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
    20:11:13.0017 4060 C:\Windows\System32\drivers\luafv.sys - ok
    20:11:13.0033 4060 [ B50CDD87772D6A11CB90924AAD399DF8 ] C:\Windows\System32\drivers\aswMonFlt.sys
    20:11:13.0033 4060 C:\Windows\System32\drivers\aswMonFlt.sys - ok
    20:11:13.0033 4060 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] C:\Windows\System32\drivers\aswFsBlk.sys
    20:11:13.0033 4060 C:\Windows\System32\drivers\aswFsBlk.sys - ok
    20:11:13.0048 4060 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
    20:11:13.0048 4060 C:\Windows\System32\rpcss.dll - ok
    20:11:13.0048 4060 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
    20:11:13.0048 4060 C:\Windows\System32\RpcEpMap.dll - ok
    20:11:13.0064 4060 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
    20:11:13.0064 4060 C:\Windows\System32\WSHTCPIP.DLL - ok
    20:11:13.0079 4060 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
    20:11:13.0079 4060 C:\Windows\System32\wshqos.dll - ok
    20:11:13.0079 4060 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
    20:11:13.0079 4060 C:\Windows\System32\FirewallAPI.dll - ok
    20:11:13.0095 4060 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
    20:11:13.0095 4060 C:\Windows\System32\LogonUI.exe - ok
    20:11:13.0095 4060 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
    20:11:13.0095 4060 C:\Windows\System32\version.dll - ok
    20:11:13.0111 4060 [ BB7A2052EBB2E31080C0DA9FA3F4EA4A ] C:\Windows\System32\Ati2evxx.exe
    20:11:13.0111 4060 C:\Windows\System32\Ati2evxx.exe - ok
    20:11:13.0111 4060 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
    20:11:13.0111 4060 C:\Windows\System32\wtsapi32.dll - ok
    20:11:13.0126 4060 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
    20:11:13.0126 4060 C:\Windows\System32\authui.dll - ok
    20:11:13.0126 4060 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
    20:11:13.0126 4060 C:\Windows\System32\wevtsvc.dll - ok
    20:11:13.0142 4060 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
    20:11:13.0142 4060 C:\Windows\System32\audiosrv.dll - ok
    20:11:13.0142 4060 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
    20:11:13.0142 4060 C:\Windows\System32\avrt.dll - ok
    20:11:13.0157 4060 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
    20:11:13.0157 4060 C:\Windows\System32\mmcss.dll - ok
    20:11:13.0157 4060 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
    20:11:13.0157 4060 C:\Windows\System32\netprofm.dll - ok
    20:11:13.0173 4060 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
    20:11:13.0173 4060 C:\Windows\System32\MMDevAPI.dll - ok
    20:11:13.0173 4060 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
    20:11:13.0173 4060 C:\Windows\System32\propsys.dll - ok
    20:11:13.0189 4060 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
    20:11:13.0189 4060 C:\Windows\System32\adtschema.dll - ok
    20:11:13.0204 4060 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
    20:11:13.0204 4060 C:\Windows\System32\audiodg.exe - ok
    20:11:13.0204 4060 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
    20:11:13.0204 4060 C:\Windows\System32\ntmarta.dll - ok
    20:11:13.0220 4060 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
    20:11:13.0220 4060 C:\Windows\System32\cryptui.dll - ok
    20:11:13.0220 4060 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
    20:11:13.0220 4060 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
    20:11:13.0235 4060 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
    20:11:13.0235 4060 C:\Windows\System32\samlib.dll - ok
    20:11:13.0235 4060 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
    20:11:13.0235 4060 C:\Windows\System32\shacct.dll - ok
    20:11:13.0251 4060 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
    20:11:13.0251 4060 C:\Windows\System32\uxtheme.dll - ok
    20:11:13.0251 4060 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
    20:11:13.0251 4060 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
    20:11:13.0267 4060 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
    20:11:13.0267 4060 C:\Windows\System32\dui70.dll - ok
    20:11:13.0267 4060 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
    20:11:13.0267 4060 C:\Windows\System32\duser.dll - ok
    20:11:13.0282 4060 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
    20:11:13.0282 4060 C:\Windows\System32\SndVolSSO.dll - ok
    20:11:13.0282 4060 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
    20:11:13.0282 4060 C:\Windows\System32\dwmapi.dll - ok
    20:11:13.0298 4060 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
    20:11:13.0298 4060 C:\Windows\System32\hid.dll - ok
    20:11:13.0298 4060 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
    20:11:13.0298 4060 C:\Windows\System32\xmllite.dll - ok
    20:11:13.0313 4060 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] C:\Windows\System32\cscsvc.dll
    20:11:13.0313 4060 C:\Windows\System32\cscsvc.dll - ok
    20:11:13.0329 4060 [ 29910D50542B1AA0F162EF3339C61B6D ] C:\Windows\System32\PeerDist.dll
    20:11:13.0329 4060 C:\Windows\System32\PeerDist.dll - ok
    20:11:13.0329 4060 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
    20:11:13.0329 4060 C:\Windows\System32\profsvc.dll - ok
    20:11:13.0345 4060 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
    20:11:13.0345 4060 C:\Windows\System32\atl.dll - ok
    20:11:13.0345 4060 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
    20:11:13.0345 4060 C:\Windows\System32\gpsvc.dll - ok
    20:11:13.0360 4060 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
    20:11:13.0360 4060 C:\Windows\System32\WindowsCodecs.dll - ok
    20:11:13.0360 4060 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
    20:11:13.0360 4060 C:\Windows\System32\dsrole.dll - ok
    20:11:13.0376 4060 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
    20:11:13.0376 4060 C:\Windows\System32\nlaapi.dll - ok
    20:11:13.0376 4060 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
    20:11:13.0376 4060 C:\Windows\System32\slc.dll - ok
    20:11:13.0391 4060 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
    20:11:13.0391 4060 C:\Windows\System32\themeservice.dll - ok
    20:11:13.0391 4060 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
    20:11:13.0391 4060 C:\Windows\System32\taskschd.dll - ok
    20:11:13.0407 4060 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
    20:11:13.0407 4060 C:\Windows\System32\es.dll - ok
    20:11:13.0407 4060 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
    20:11:13.0407 4060 C:\Windows\System32\winbrand.dll - ok
    20:11:13.0423 4060 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
    20:11:13.0423 4060 C:\Windows\System32\MPSSVC.dll - ok
    20:11:13.0423 4060 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
    20:11:13.0423 4060 C:\Windows\System32\comres.dll - ok
    20:11:13.0438 4060 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
    20:11:13.0438 4060 C:\Windows\System32\Sens.dll - ok
    20:11:13.0438 4060 [ 862596399AAFD2A21DB2AF9270CD4F70 ] C:\Windows\System32\mstask.dll
    20:11:13.0438 4060 C:\Windows\System32\mstask.dll - ok
    20:11:13.0454 4060 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
    20:11:13.0454 4060 C:\Windows\System32\uxsms.dll - ok
    20:11:13.0469 4060 [ 05360B1EA5A2ABF620D1D96EBD8BD8F1 ] C:\Windows\System32\drivers\irda.sys
    20:11:13.0469 4060 C:\Windows\System32\drivers\irda.sys - ok
    20:11:13.0469 4060 [ CAF88D6573D21CD2AA27001DDBFDC74D ] C:\Windows\System32\drivers\rmcast.sys
    20:11:13.0469 4060 C:\Windows\System32\drivers\rmcast.sys - ok
    20:11:13.0469 4060 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
    20:11:13.0469 4060 C:\Windows\System32\VaultCredProvider.dll - ok
    20:11:13.0485 4060 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
    20:11:13.0485 4060 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
    20:11:13.0501 4060 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
    20:11:13.0501 4060 C:\Windows\System32\BioCredProv.dll - ok
    20:11:13.0501 4060 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
    20:11:13.0501 4060 C:\Windows\System32\drivers\lltdio.sys - ok
    20:11:13.0516 4060 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
    20:11:13.0516 4060 C:\Windows\System32\drivers\nwifi.sys - ok
    20:11:13.0516 4060 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
    20:11:13.0516 4060 C:\Windows\System32\winbio.dll - ok
    20:11:13.0532 4060 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
    20:11:13.0532 4060 C:\Windows\System32\credui.dll - ok
    20:11:13.0532 4060 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
    20:11:13.0532 4060 C:\Windows\System32\netapi32.dll - ok
    20:11:13.0547 4060 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
    20:11:13.0547 4060 C:\Windows\System32\vaultcli.dll - ok
    20:11:13.0547 4060 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
    20:11:13.0547 4060 C:\Windows\System32\netutils.dll - ok
    20:11:13.0563 4060 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
    20:11:13.0563 4060 C:\Windows\System32\wkscli.dll - ok
    20:11:13.0563 4060 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
    20:11:13.0563 4060 C:\Windows\System32\samcli.dll - ok
    20:11:13.0579 4060 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
    20:11:13.0579 4060 C:\Windows\System32\certCredProvider.dll - ok
    20:11:13.0579 4060 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
    20:11:13.0579 4060 C:\Windows\System32\drivers\ndisuio.sys - ok
    20:11:13.0594 4060 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
    20:11:13.0594 4060 C:\Windows\System32\wlansvc.dll - ok
    20:11:13.0594 4060 [ 1ECB3FFBF22B8A7C958CCF8F96119FC0 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
    20:11:13.0594 4060 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
    20:11:13.0610 4060 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
    20:11:13.0610 4060 C:\Windows\System32\rasplap.dll - ok
    20:11:13.0610 4060 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
    20:11:13.0610 4060 C:\Windows\System32\rasapi32.dll - ok
    20:11:13.0625 4060 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
    20:11:13.0625 4060 C:\Windows\System32\rasman.dll - ok
    20:11:13.0625 4060 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
    20:11:13.0625 4060 C:\Windows\System32\rtutils.dll - ok
    20:11:13.0641 4060 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
    20:11:13.0641 4060 C:\Windows\System32\drivers\rspndr.sys - ok
    20:11:13.0657 4060 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
    20:11:13.0657 4060 C:\Windows\System32\UXInit.dll - ok
    20:11:13.0657 4060 [ 3848384AB383F0A8F506C4370635C1F9 ] C:\Windows\System32\irmon.dll
    20:11:13.0657 4060 C:\Windows\System32\irmon.dll - ok
    20:11:13.0672 4060 [ 11A087ED1D82FF01F74CEA03CF25E348 ] C:\Windows\System32\wshirda.dll
    20:11:13.0672 4060 C:\Windows\System32\wshirda.dll - ok
    20:11:13.0672 4060 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
    20:11:13.0672 4060 C:\Windows\System32\lmhsvc.dll - ok
    20:11:13.0688 4060 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
    20:11:13.0688 4060 C:\Windows\System32\eapsvc.dll - ok
    20:11:13.0688 4060 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
    20:11:13.0688 4060 C:\Windows\System32\IPHLPAPI.DLL - ok
    20:11:13.0703 4060 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
    20:11:13.0703 4060 C:\Windows\System32\keyiso.dll - ok
    20:11:13.0703 4060 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
    20:11:13.0703 4060 C:\Windows\System32\nsisvc.dll - ok
    20:11:13.0719 4060 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
    20:11:13.0719 4060 C:\Windows\System32\eapphost.dll - ok
    20:11:13.0719 4060 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
    20:11:13.0719 4060 C:\Windows\System32\dhcpcore.dll - ok
    20:11:13.0735 4060 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
    20:11:13.0735 4060 C:\Windows\System32\nrpsrv.dll - ok
    20:11:13.0735 4060 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
    20:11:13.0735 4060 C:\Windows\System32\winnsi.dll - ok
    20:11:13.0750 4060 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
    20:11:13.0750 4060 C:\Windows\System32\dnsrslvr.dll - ok
    20:11:13.0766 4060 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
    20:11:13.0766 4060 C:\Windows\System32\drivers\fltMgr.sys - ok
    20:11:13.0766 4060 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
    20:11:13.0766 4060 C:\Windows\System32\FWPUCLNT.DLL - ok
    20:11:13.0781 4060 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
    20:11:13.0781 4060 C:\Windows\System32\umb.dll - ok
    20:11:13.0781 4060 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
    20:11:13.0781 4060 C:\Windows\System32\wlanmsm.dll - ok
    20:11:13.0797 4060 [ 0C95FD1AF4BD0D8A65FB67B7788DE04E ] C:\Windows\System32\atiedu64.dll
    20:11:13.0797 4060 C:\Windows\System32\atiedu64.dll - ok
    20:11:13.0797 4060 [ 39764222747B66FCBC55FB43570F92FD ] C:\Windows\System32\atipdl64.dll
    20:11:13.0797 4060 C:\Windows\System32\atipdl64.dll - ok
    20:11:13.0813 4060 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
    20:11:13.0813 4060 C:\Windows\System32\wlansec.dll - ok
    20:11:13.0813 4060 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
    20:11:13.0813 4060 C:\Windows\System32\onex.dll - ok
    20:11:13.0828 4060 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
    20:11:13.0828 4060 C:\Windows\System32\dhcpcore6.dll - ok
    20:11:13.0828 4060 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
    20:11:13.0828 4060 C:\Windows\System32\dhcpcsvc.dll - ok
    20:11:13.0844 4060 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
    20:11:13.0844 4060 C:\Windows\System32\dnsext.dll - ok
    20:11:13.0844 4060 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
    20:11:13.0844 4060 C:\Windows\System32\eappprxy.dll - ok
    20:11:13.0859 4060 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
    20:11:13.0859 4060 C:\Windows\System32\PSHED.DLL - ok
    20:11:13.0859 4060 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
    20:11:13.0859 4060 C:\Windows\System32\dhcpcsvc6.dll - ok
    20:11:13.0875 4060 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
    20:11:13.0875 4060 C:\Windows\System32\eappcfg.dll - ok
    20:11:13.0875 4060 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
    20:11:13.0875 4060 C:\Windows\System32\l2gpstore.dll - ok
    20:11:13.0891 4060 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
    20:11:13.0891 4060 C:\Windows\System32\WinSCard.dll - ok
    20:11:13.0891 4060 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
    20:11:13.0891 4060 C:\Windows\System32\wlanutil.dll - ok
    20:11:13.0906 4060 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
    20:11:13.0906 4060 C:\Windows\System32\wlgpclnt.dll - ok

    Here's 1/2 of TDSSKiller....

  10. #10
    Member mrr107i's Avatar
    Join Date
    Sep 2003
    Location
    Pittsfield, MA
    Posts
    50
    Points
    0

    Default

    .....and here's the other 1/2 od TDSSKiller...

    20:11:13.0922 4060 [ B48397C6C8B8C7A273189A8265364E47 ] C:\Windows\System32\Ati2evxx.dll
    20:11:13.0922 4060 C:\Windows\System32\Ati2evxx.dll - ok
    20:11:13.0922 4060 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
    20:11:13.0922 4060 C:\Windows\System32\msxml6.dll - ok
    20:11:13.0937 4060 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
    20:11:13.0937 4060 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
    20:11:13.0937 4060 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
    20:11:13.0937 4060 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
    20:11:13.0953 4060 [ 8FA553E9AE69808D99C164733A0F9590 ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    20:11:13.0953 4060 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
    20:11:13.0953 4060 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
    20:11:13.0953 4060 C:\Windows\SysWOW64\ntdll.dll - ok
    20:11:13.0969 4060 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
    20:11:13.0969 4060 C:\Windows\System32\netcfgx.dll - ok
    20:11:13.0969 4060 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
    20:11:13.0969 4060 C:\Windows\System32\imageres.dll - ok
    20:11:13.0984 4060 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
    20:11:13.0984 4060 C:\Windows\System32\wow64.dll - ok
    20:11:13.0984 4060 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
    20:11:13.0984 4060 C:\Windows\System32\wow64win.dll - ok
    20:11:14.0000 4060 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
    20:11:14.0000 4060 C:\Windows\System32\wow64cpu.dll - ok
    20:11:14.0015 4060 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
    20:11:14.0015 4060 C:\Windows\SysWOW64\kernel32.dll - ok
    20:11:14.0015 4060 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
    20:11:14.0015 4060 C:\Windows\SysWOW64\KernelBase.dll - ok
    20:11:14.0031 4060 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
    20:11:14.0031 4060 C:\Windows\SysWOW64\ws2_32.dll - ok
    20:11:14.0031 4060 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
    20:11:14.0031 4060 C:\Windows\SysWOW64\msvcrt.dll - ok
    20:11:14.0047 4060 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
    20:11:14.0047 4060 C:\Windows\SysWOW64\rpcrt4.dll - ok
    20:11:14.0047 4060 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
    20:11:14.0047 4060 C:\Windows\SysWOW64\cryptbase.dll - ok
    20:11:14.0062 4060 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
    20:11:14.0062 4060 C:\Windows\SysWOW64\nsi.dll - ok
    20:11:14.0062 4060 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
    20:11:14.0062 4060 C:\Windows\SysWOW64\sechost.dll - ok
    20:11:14.0078 4060 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
    20:11:14.0078 4060 C:\Windows\SysWOW64\sspicli.dll - ok
    20:11:14.0078 4060 [ EB398DED91CFF2F425610EAA2CCF2A23 ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
    20:11:14.0078 4060 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
    20:11:14.0093 4060 [ BABE99A18A382A5E2F99B48E0BC3E0D4 ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
    20:11:14.0093 4060 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
    20:11:14.0093 4060 [ 178B51198B7B46CD3C5E744474459A63 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
    20:11:14.0093 4060 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
    20:11:14.0109 4060 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
    20:11:14.0109 4060 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
    20:11:14.0109 4060 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
    20:11:14.0109 4060 C:\Windows\System32\dllhost.exe - ok
    20:11:14.0125 4060 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
    20:11:14.0125 4060 C:\Windows\SysWOW64\user32.dll - ok
    20:11:14.0125 4060 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
    20:11:14.0125 4060 C:\Windows\SysWOW64\gdi32.dll - ok
    20:11:14.0140 4060 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
    20:11:14.0140 4060 C:\Windows\SysWOW64\lpk.dll - ok
    20:11:14.0140 4060 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
    20:11:14.0140 4060 C:\Windows\SysWOW64\usp10.dll - ok
    20:11:14.0156 4060 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
    20:11:14.0156 4060 C:\Windows\SysWOW64\advapi32.dll - ok
    20:11:14.0156 4060 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
    20:11:14.0156 4060 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
    20:11:14.0171 4060 [ 55AFA63F5F2A6CED0C09E2AFE57ECA8D ] C:\Program Files\AVAST Software\Avast\ashBase.dll
    20:11:14.0171 4060 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
    20:11:14.0171 4060 [ C515CAEC6B3C6970007954C0250A124C ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
    20:11:14.0171 4060 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
    20:11:14.0187 4060 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
    20:11:14.0187 4060 C:\Windows\SysWOW64\version.dll - ok
    20:11:14.0203 4060 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
    20:11:14.0203 4060 C:\Windows\SysWOW64\wsock32.dll - ok
    20:11:14.0203 4060 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
    20:11:14.0203 4060 C:\Windows\SysWOW64\psapi.dll - ok
    20:11:14.0218 4060 [ 7FA3A810F383588D46220967DE8B64FF ] C:\Windows\SysWOW64\wininet.dll
    20:11:14.0218 4060 C:\Windows\SysWOW64\wininet.dll - ok
    20:11:14.0218 4060 [ 780E80E5502015EDAEC91DC0A0C96A79 ] C:\Windows\SysWOW64\iertutil.dll
    20:11:14.0218 4060 C:\Windows\SysWOW64\iertutil.dll - ok
    20:11:14.0234 4060 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
    20:11:14.0234 4060 C:\Windows\SysWOW64\shlwapi.dll - ok
    20:11:14.0234 4060 [ 4266A3230981DD4434C55957F6DD497D ] C:\Windows\SysWOW64\urlmon.dll
    20:11:14.0234 4060 C:\Windows\SysWOW64\urlmon.dll - ok
    20:11:14.0249 4060 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
    20:11:14.0249 4060 C:\Windows\SysWOW64\ole32.dll - ok
    20:11:14.0249 4060 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
    20:11:14.0249 4060 C:\Windows\SysWOW64\oleaut32.dll - ok
    20:11:14.0265 4060 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
    20:11:14.0265 4060 C:\Windows\SysWOW64\imm32.dll - ok
    20:11:14.0265 4060 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
    20:11:14.0265 4060 C:\Windows\SysWOW64\msctf.dll - ok
    20:11:14.0281 4060 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
    20:11:14.0281 4060 C:\Windows\SysWOW64\dbghelp.dll - ok
    20:11:14.0281 4060 [ B316906B4A04DD39985350D29DE31068 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
    20:11:14.0281 4060 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
    20:11:14.0296 4060 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
    20:11:14.0296 4060 C:\Windows\SysWOW64\netapi32.dll - ok
    20:11:14.0296 4060 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
    20:11:14.0296 4060 C:\Windows\SysWOW64\netutils.dll - ok
    20:11:14.0312 4060 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
    20:11:14.0312 4060 C:\Windows\SysWOW64\cscapi.dll - ok
    20:11:14.0312 4060 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
    20:11:14.0312 4060 C:\Windows\SysWOW64\srvcli.dll - ok
    20:11:14.0327 4060 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
    20:11:14.0327 4060 C:\Windows\SysWOW64\wkscli.dll - ok
    20:11:14.0343 4060 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
    20:11:14.0343 4060 C:\Windows\System32\shsvcs.dll - ok
    20:11:14.0343 4060 [ 977C54291BFA6FEE7FF865630E51757B ] C:\Program Files\AVAST Software\Avast\ashServ.dll
    20:11:14.0343 4060 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
    20:11:14.0343 4060 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
    20:11:14.0343 4060 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
    20:11:14.0359 4060 [ 045EE3DC56B12B404DC07848D8597C66 ] C:\Program Files\AVAST Software\Avast\aswAux.dll
    20:11:14.0359 4060 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
    20:11:14.0374 4060 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
    20:11:14.0374 4060 C:\Windows\System32\fveapi.dll - ok
    20:11:14.0374 4060 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
    20:11:14.0374 4060 C:\Windows\System32\fvecerts.dll - ok
    20:11:14.0390 4060 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
    20:11:14.0390 4060 C:\Windows\System32\tbs.dll - ok
    20:11:14.0390 4060 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
    20:11:14.0390 4060 C:\Windows\System32\wiarpc.dll - ok
    20:11:14.0405 4060 [ 16CE3ED063923253905341C9AF850FE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
    20:11:14.0405 4060 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
    20:11:14.0405 4060 [ 4FF19AC422B7709D786DE58B385C9647 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
    20:11:14.0405 4060 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
    20:11:14.0421 4060 [ FCA9CC8611654B790DD6242BF862B7F5 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
    20:11:14.0421 4060 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
    20:11:14.0421 4060 [ 12B9869E74F9E698F550F04F8989C591 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
    20:11:14.0421 4060 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
    20:11:14.0437 4060 [ F186897E0A3B9D0784041221D0265069 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
    20:11:14.0437 4060 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
    20:11:14.0437 4060 [ 6F367A9B88CFDD46F42C1D11E5CB7964 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
    20:11:14.0437 4060 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
    20:11:14.0452 4060 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
    20:11:14.0452 4060 C:\Windows\System32\IDStore.dll - ok
    20:11:14.0468 4060 [ C2434DEA392826C1687D9BD7FA4845BC ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
    20:11:14.0468 4060 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
    20:11:14.0468 4060 [ 264B5D8F4C70A26749FF2CEDDE06BA30 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
    20:11:14.0468 4060 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
    20:11:14.0483 4060 [ 902F670F58193A2BC30AA342B11B2C7B ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
    20:11:14.0483 4060 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
    20:11:14.0483 4060 [ 273FD83FC8C4E12F8C55381674F92A44 ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
    20:11:14.0483 4060 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
    20:11:14.0499 4060 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
    20:11:14.0499 4060 C:\Windows\System32\mpr.dll - ok
    20:11:14.0499 4060 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
    20:11:14.0499 4060 C:\Windows\SysWOW64\wtsapi32.dll - ok
    20:11:14.0515 4060 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
    20:11:14.0515 4060 C:\Windows\SysWOW64\cfgmgr32.dll - ok
    20:11:14.0515 4060 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
    20:11:14.0515 4060 C:\Windows\System32\schedsvc.dll - ok
    20:11:14.0530 4060 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
    20:11:14.0530 4060 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
    20:11:14.0530 4060 [ A8CDF3768604FF95B54669E20053D569 ] C:\Windows\SysWOW64\wscapi.dll
    20:11:14.0530 4060 C:\Windows\SysWOW64\wscapi.dll - ok
    20:11:14.0546 4060 [ 8258362DDB18B644A82D8B5061AD9426 ] C:\Windows\SysWOW64\wscisvif.dll
    20:11:14.0546 4060 C:\Windows\SysWOW64\wscisvif.dll - ok
    20:11:14.0546 4060 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
    20:11:14.0546 4060 C:\Windows\System32\ktmw32.dll - ok
    20:11:14.0561 4060 [ 0A907E7EDC0A0C0750E1626B126A2F5C ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswEngin.dll
    20:11:14.0561 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswEngin.dll - ok
    20:11:14.0561 4060 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
    20:11:14.0561 4060 C:\Windows\System32\taskcomp.dll - ok
    20:11:14.0577 4060 [ E895E417F04339B583A90A1959054BEA ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswCmnOS.dll
    20:11:14.0577 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswCmnOS.dll - ok
    20:11:14.0593 4060 [ 3AE814769FD59498E9AF30A1B86417DF ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswCmnIS.dll
    20:11:14.0593 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswCmnIS.dll - ok
    20:11:14.0593 4060 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
    20:11:14.0593 4060 C:\Windows\System32\drivers\http.sys - ok
    20:11:14.0608 4060 [ BBC1BF4FEE6C7558CD54CF5F5AF17D00 ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswCmnBS.dll
    20:11:14.0608 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswCmnBS.dll - ok
    20:11:14.0608 4060 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
    20:11:14.0608 4060 C:\Windows\System32\spoolsv.exe - ok
    20:11:14.0624 4060 [ C3D4295E1A00A814200B58410FE9E2C0 ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswScan.dll
    20:11:14.0624 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswScan.dll - ok
    20:11:14.0624 4060 [ FAD306DD70634B3168CB025C8432CE7E ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswRep.dll
    20:11:14.0624 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswRep.dll - ok
    20:11:14.0639 4060 [ C1F048B33A1BD8F5B05AF76469252F55 ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswFiDb.dll
    20:11:14.0639 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswFiDb.dll - ok
    20:11:14.0639 4060 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
    20:11:14.0639 4060 C:\Windows\System32\BFE.DLL - ok
    20:11:14.0655 4060 [ 5EC17C5F33CE9ECB35135EF34AF2953F ] C:\Program Files\AVAST Software\Avast\defs\13012101\algo.dll
    20:11:14.0655 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\algo.dll - ok
    20:11:14.0671 4060 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
    20:11:14.0671 4060 C:\Windows\System32\userinit.exe - ok
    20:11:14.0671 4060 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
    20:11:14.0671 4060 C:\Windows\System32\dwm.exe - ok
    20:11:14.0686 4060 [ C07D5582F2107ACAB4564E1DAE977C64 ] C:\Windows\ehome\ehprivjob.exe
    20:11:14.0686 4060 C:\Windows\ehome\ehprivjob.exe - ok
    20:11:14.0686 4060 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
    20:11:14.0686 4060 C:\Windows\System32\conhost.exe - ok
    20:11:14.0702 4060 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
    20:11:14.0702 4060 C:\Windows\System32\taskhost.exe - ok
    20:11:14.0717 4060 [ D025E95247353BA8ADB53CFF3A4E5BBB ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
    20:11:14.0717 4060 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
    20:11:14.0717 4060 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
    20:11:14.0717 4060 C:\Windows\SysWOW64\shell32.dll - ok
    20:11:14.0733 4060 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
    20:11:14.0733 4060 C:\Windows\System32\sppc.dll - ok
    20:11:14.0733 4060 [ 9E0FF5DDD8B908DA5611445C35D6CD24 ] C:\Windows\System32\slcext.dll
    20:11:14.0733 4060 C:\Windows\System32\slcext.dll - ok
    20:11:14.0749 4060 [ 6F5BE3F67D7F66FFA861ABBFC6A8C973 ] C:\Windows\System32\sppcext.dll
    20:11:14.0749 4060 C:\Windows\System32\sppcext.dll - ok
    20:11:14.0749 4060 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
    20:11:14.0749 4060 C:\Windows\System32\winhttp.dll - ok
    20:11:14.0764 4060 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
    20:11:14.0764 4060 C:\Windows\System32\webio.dll - ok
    20:11:14.0764 4060 [ 3BDCBB29D727C49DC3E3256253467281 ] C:\Windows\System32\wmdrmsdk.dll
    20:11:14.0764 4060 C:\Windows\System32\wmdrmsdk.dll - ok
    20:11:14.0780 4060 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
    20:11:14.0780 4060 C:\Windows\System32\mfplat.dll - ok
    20:11:14.0780 4060 [ 4D842C5081F06E61BFF461CF87D13525 ] C:\Windows\ehome\ehtrace.dll
    20:11:14.0780 4060 C:\Windows\ehome\ehtrace.dll - ok
    20:11:14.0795 4060 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
    20:11:14.0795 4060 C:\Windows\System32\dwmredir.dll - ok
    20:11:14.0795 4060 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
    20:11:14.0795 4060 C:\Windows\System32\PlaySndSrv.dll - ok
    20:11:14.0811 4060 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
    20:11:14.0811 4060 C:\Windows\System32\HotStartUserAgent.dll - ok
    20:11:14.0827 4060 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
    20:11:14.0827 4060 C:\Windows\System32\MsCtfMonitor.dll - ok
    20:11:14.0827 4060 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
    20:11:14.0827 4060 C:\Windows\System32\msutb.dll - ok
    20:11:14.0842 4060 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
    20:11:14.0842 4060 C:\Windows\System32\dwmcore.dll - ok
    20:11:14.0842 4060 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
    20:11:14.0842 4060 C:\Windows\System32\d3d10_1.dll - ok
    20:11:14.0858 4060 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
    20:11:14.0858 4060 C:\Windows\System32\drivers\bowser.sys - ok
    20:11:14.0858 4060 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
    20:11:14.0858 4060 C:\Windows\System32\drivers\mpsdrv.sys - ok
    20:11:14.0873 4060 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
    20:11:14.0873 4060 C:\Windows\System32\drivers\mrxsmb.sys - ok
    20:11:14.0873 4060 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
    20:11:14.0873 4060 C:\Windows\System32\drivers\mrxsmb10.sys - ok
    20:11:14.0889 4060 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
    20:11:14.0889 4060 C:\Windows\System32\drivers\mrxsmb20.sys - ok
    20:11:14.0889 4060 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
    20:11:14.0889 4060 C:\Windows\System32\wkssvc.dll - ok
    20:11:14.0905 4060 [ 581D88B25C4D4121824FED2CA38E562F ] C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    20:11:14.0905 4060 C:\Program Files\SUPERAntiSpyware\SASCore64.exe - ok
    20:11:14.0905 4060 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
    20:11:14.0905 4060 C:\Windows\System32\wfapigp.dll - ok
    20:11:14.0920 4060 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    20:11:14.0920 4060 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
    20:11:14.0920 4060 [ CA62AE004E98374BF7F082CD765EEA02 ] C:\Windows\System32\snmp.exe
    20:11:14.0920 4060 C:\Windows\System32\snmp.exe - ok
    20:11:14.0936 4060 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
    20:11:14.0936 4060 C:\Windows\System32\mscms.dll - ok
    20:11:14.0936 4060 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
    20:11:14.0936 4060 C:\Windows\System32\pcasvc.dll - ok
    20:11:14.0951 4060 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
    20:11:14.0951 4060 C:\Windows\System32\snmptrap.exe - ok
    20:11:14.0951 4060 [ 11FE7637A49B67D9B1F895B2AD4D982F ] C:\Windows\System32\iprip.dll
    20:11:14.0951 4060 C:\Windows\System32\iprip.dll - ok
    20:11:14.0967 4060 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
    20:11:14.0967 4060 C:\Windows\explorer.exe - ok
    20:11:14.0967 4060 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
    20:11:14.0967 4060 C:\Windows\SysWOW64\crypt32.dll - ok
    20:11:14.0983 4060 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
    20:11:14.0983 4060 C:\Windows\SysWOW64\secur32.dll - ok
    20:11:14.0998 4060 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
    20:11:14.0998 4060 C:\Windows\SysWOW64\msasn1.dll - ok
    20:11:14.0998 4060 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
    20:11:14.0998 4060 C:\Windows\SysWOW64\wintrust.dll - ok
    20:11:15.0014 4060 [ 8DC837789BBF0E1BEF252A8F7C101F7B ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
    20:11:15.0014 4060 C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe - ok
    20:11:15.0014 4060 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] C:\Windows\System32\inetsrv\apphostsvc.dll
    20:11:15.0014 4060 C:\Windows\System32\inetsrv\apphostsvc.dll - ok
    20:11:15.0029 4060 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
    20:11:15.0029 4060 C:\Windows\SysWOW64\winhttp.dll - ok
    20:11:15.0029 4060 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
    20:11:15.0029 4060 C:\Windows\System32\d3d10_1core.dll - ok
    20:11:15.0045 4060 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
    20:11:15.0045 4060 C:\Windows\System32\ExplorerFrame.dll - ok
    20:11:15.0045 4060 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
    20:11:15.0045 4060 C:\Windows\SysWOW64\fltLib.dll - ok
    20:11:15.0061 4060 [ C99C5AD6E5412A8D37D40E780113D7B5 ] C:\Windows\System32\inetsrv\iisutil.dll
    20:11:15.0061 4060 C:\Windows\System32\inetsrv\iisutil.dll - ok
    20:11:15.0061 4060 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
    20:11:15.0061 4060 C:\Windows\System32\dxgi.dll - ok
    20:11:15.0076 4060 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
    20:11:15.0076 4060 C:\Windows\System32\winmm.dll - ok
    20:11:15.0076 4060 [ AD976778C4B92F9EC4842295974E9BD9 ] C:\Windows\System32\d3d10level9.dll
    20:11:15.0076 4060 C:\Windows\System32\d3d10level9.dll - ok
    20:11:15.0092 4060 [ 2EBCB5F356F3E34EAF17EC531828F482 ] C:\Windows\System32\SMCNative.dll
    20:11:15.0092 4060 C:\Windows\System32\SMCNative.dll - ok
    20:11:15.0092 4060 [ 6AD7B72BC49C29348D2668CCAAEC87FE ] C:\Windows\System32\mqutil.dll
    20:11:15.0092 4060 C:\Windows\System32\mqutil.dll - ok
    20:11:15.0107 4060 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
    20:11:15.0107 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
    20:11:15.0107 4060 [ B1A8D4A2974CA902148F0B0FC00D877E ] C:\Windows\System32\inetsrv\iisres.dll
    20:11:15.0107 4060 C:\Windows\System32\inetsrv\iisres.dll - ok
    20:11:15.0123 4060 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
    20:11:15.0123 4060 C:\Windows\SysWOW64\webio.dll - ok
    20:11:15.0123 4060 [ 519CB7D7F697F4BA47DE05845C20F158 ] C:\Windows\System32\tlntsvr.exe
    20:11:15.0123 4060 C:\Windows\System32\tlntsvr.exe - ok
    20:11:15.0139 4060 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
    20:11:15.0139 4060 C:\Windows\SysWOW64\cabinet.dll - ok
    20:11:15.0139 4060 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
    20:11:15.0139 4060 C:\Windows\SysWOW64\SensApi.dll - ok
    20:11:15.0154 4060 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
    20:11:15.0154 4060 C:\Windows\SysWOW64\clbcatq.dll - ok
    20:11:15.0154 4060 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] C:\Windows\System32\lpdsvc.dll
    20:11:15.0154 4060 C:\Windows\System32\lpdsvc.dll - ok
    20:11:15.0170 4060 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
    20:11:15.0170 4060 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
    20:11:15.0170 4060 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
    20:11:15.0170 4060 C:\Windows\System32\sstpsvc.dll - ok
    20:11:15.0185 4060 [ A77EA0AF89B0147A9B38211E3096A2E0 ] C:\Windows\System32\inetsrv\nativerd.dll
    20:11:15.0185 4060 C:\Windows\System32\inetsrv\nativerd.dll - ok
    20:11:15.0201 4060 [ 83FE0B72086724E8F0F9B45478F5F039 ] C:\Windows\System32\atiumd64.dll
    20:11:15.0201 4060 C:\Windows\System32\atiumd64.dll - ok
    20:11:15.0201 4060 [ 91A8E32B00BF7899EDAB6783287DDDA6 ] C:\Windows\System32\PeerDistSh.dll
    20:11:15.0201 4060 C:\Windows\System32\PeerDistSh.dll - ok
    20:11:15.0217 4060 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
    20:11:15.0217 4060 C:\Windows\System32\provsvc.dll - ok
    20:11:15.0217 4060 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
    20:11:15.0217 4060 C:\Windows\System32\vssapi.dll - ok
    20:11:15.0232 4060 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
    20:11:15.0232 4060 C:\Windows\System32\vsstrace.dll - ok
    20:11:15.0232 4060 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
    20:11:15.0232 4060 C:\Windows\System32\mlang.dll - ok
    20:11:15.0248 4060 [ ADBA8A211DEB8EE1B2AC332F05378B1C ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    20:11:15.0248 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll - ok
    20:11:15.0248 4060 [ 349B1D5D8D1B5A7B10BCD01470BD5F64 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcp110.dll
    20:11:15.0248 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcp110.dll - ok
    20:11:15.0263 4060 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
    20:11:15.0263 4060 C:\Windows\SysWOW64\msxml3.dll - ok
    20:11:15.0263 4060 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
    20:11:15.0263 4060 C:\Windows\SysWOW64\msxml6.dll - ok
    20:11:15.0279 4060 [ C72ABC6B7B90A61364B6DD889B5435F3 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcr110.dll
    20:11:15.0279 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcr110.dll - ok
    20:11:15.0279 4060 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
    20:11:15.0279 4060 C:\Windows\SysWOW64\credssp.dll - ok
    20:11:15.0295 4060 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
    20:11:15.0295 4060 C:\Windows\SysWOW64\cryptsp.dll - ok
    20:11:15.0295 4060 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] C:\Windows\System32\CISVC.EXE
    20:11:15.0295 4060 C:\Windows\System32\CISVC.EXE - ok
    20:11:15.0310 4060 [ FF2B106909EED48C536DA04742C0324A ] C:\Windows\System32\Query.dll
    20:11:15.0310 4060 C:\Windows\System32\Query.dll - ok
    20:11:15.0326 4060 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
    20:11:15.0326 4060 C:\Windows\System32\cryptsvc.dll - ok
    20:11:15.0326 4060 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
    20:11:15.0326 4060 C:\Windows\System32\cryptnet.dll - ok
    20:11:15.0341 4060 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
    20:11:15.0341 4060 C:\Windows\System32\dps.dll - ok
    20:11:15.0341 4060 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
    20:11:15.0341 4060 C:\Windows\System32\FDResPub.dll - ok
    20:11:15.0357 4060 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
    20:11:15.0357 4060 C:\Windows\System32\WSDApi.dll - ok
    20:11:15.0357 4060 [ A71C84F2211BE716B4041E25F9060F8B ] C:\Windows\SysWOW64\XAudio64.dll
    20:11:15.0357 4060 C:\Windows\SysWOW64\XAudio64.dll - ok
    20:11:15.0373 4060 [ D225864F6FD96575A303A20BD42383ED ] C:\Windows\System32\inetsrv\ftpsvc.dll
    20:11:15.0373 4060 C:\Windows\System32\inetsrv\ftpsvc.dll - ok
    20:11:15.0373 4060 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
    20:11:15.0373 4060 C:\Windows\System32\webservices.dll - ok
    20:11:15.0388 4060 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
    20:11:15.0388 4060 C:\Windows\System32\NapiNSP.dll - ok
    20:11:15.0388 4060 [ AF528B4ECA925F63D437F76E87D8971D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
    20:11:15.0388 4060 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
    20:11:15.0404 4060 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
    20:11:15.0404 4060 C:\Windows\System32\pnrpnsp.dll - ok
    20:11:15.0404 4060 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
    20:11:15.0404 4060 C:\Windows\System32\winrnr.dll - ok
    20:11:15.0419 4060 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
    20:11:15.0419 4060 C:\Windows\System32\rasadhlp.dll - ok
    20:11:15.0419 4060 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
    20:11:15.0419 4060 C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe - ok
    20:11:15.0435 4060 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
    20:11:15.0435 4060 C:\Windows\System32\mscoree.dll - ok
    20:11:15.0435 4060 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
    20:11:15.0435 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
    20:11:15.0451 4060 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
    20:11:15.0451 4060 C:\Windows\System32\taskeng.exe - ok
    20:11:15.0451 4060 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
    20:11:15.0451 4060 C:\Windows\System32\TSChannel.dll - ok
    20:11:15.0466 4060 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    20:11:15.0466 4060 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
    20:11:15.0466 4060 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
    20:11:15.0466 4060 C:\Windows\SysWOW64\winsta.dll - ok
    20:11:15.0482 4060 [ 07F7AE68602448F4B6D5A9A40BBA977C ] C:\Program Files (x86)\Google\Update\1.3.21.124\goopdate.dll
    20:11:15.0482 4060 C:\Program Files (x86)\Google\Update\1.3.21.124\goopdate.dll - ok
    20:11:15.0497 4060 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
    20:11:15.0497 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
    20:11:15.0497 4060 [ 9C09AF87AC7351985AB5FFBA3FC52575 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
    20:11:15.0497 4060 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
    20:11:15.0513 4060 [ E844C96552989FA1ECA95778583A904C ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
    20:11:15.0513 4060 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
    20:11:15.0513 4060 [ 17F5861A03516864A5F4CC04C7324278 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
    20:11:15.0513 4060 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
    20:11:15.0529 4060 [ 8BEC10C53E927CD5E442FE332804F1AC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
    20:11:15.0529 4060 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
    20:11:15.0529 4060 [ 9B2F20ECF609EDF54FEC43E792028261 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
    20:11:15.0529 4060 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
    20:11:15.0544 4060 [ 857661F2E5A677CFB6D3B2CF6E428227 ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
    20:11:15.0544 4060 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
    20:11:15.0544 4060 [ 2466ED58B8EFB3320BCA73ACF8179D24 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
    20:11:15.0544 4060 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
    20:11:15.0560 4060 [ 5D9550E02D981B92B133E5F8F7BDF8D2 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
    20:11:15.0560 4060 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
    20:11:15.0560 4060 [ EFC03638BF395CE1903FE6414296D95D ] C:\Program Files\AVAST Software\Avast\defs\13012101\ArPot.dll
    20:11:15.0560 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\ArPot.dll - ok
    20:11:15.0575 4060 [ 1ABFFB6ABE8B70EDA4206F0F3D3D72F4 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
    20:11:15.0575 4060 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
    20:11:15.0591 4060 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
    20:11:15.0591 4060 C:\Windows\SysWOW64\rsaenh.dll - ok
    20:11:15.0591 4060 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
    20:11:15.0591 4060 C:\Windows\SysWOW64\mswsock.dll - ok
    20:11:15.0607 4060 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
    20:11:15.0607 4060 C:\Windows\SysWOW64\NapiNSP.dll - ok
    20:11:15.0607 4060 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
    20:11:15.0607 4060 C:\Windows\SysWOW64\nlaapi.dll - ok
    20:11:15.0622 4060 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
    20:11:15.0622 4060 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
    20:11:15.0622 4060 [ 6CF93FC44E346AE4D117C7A1F340BE2F ] C:\Program Files\AVAST Software\Avast\defs\13012101\exts.dll
    20:11:15.0622 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\exts.dll - ok
    20:11:15.0638 4060 [ 867C93CE4B4CCFCDE65CE48A769CD227 ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
    20:11:15.0638 4060 C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
    20:11:15.0638 4060 [ E4F7DB3442762BD0AEB8E07CB54D4302 ] C:\Windows\System32\atiumd6a.dll
    20:11:15.0638 4060 C:\Windows\System32\atiumd6a.dll - ok
    20:11:15.0653 4060 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
    20:11:15.0653 4060 C:\Windows\System32\msi.dll - ok
    20:11:15.0653 4060 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
    20:11:15.0653 4060 C:\Windows\SysWOW64\pnrpnsp.dll - ok
    20:11:15.0669 4060 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
    20:11:15.0669 4060 C:\Windows\SysWOW64\dnsapi.dll - ok
    20:11:15.0669 4060 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
    20:11:15.0669 4060 C:\Windows\SysWOW64\winrnr.dll - ok
    20:11:15.0685 4060 [ 4355CF8BD07B0E48C111FC3D2F36D313 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
    20:11:15.0685 4060 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
    20:11:15.0700 4060 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
    20:11:15.0700 4060 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
    20:11:15.0700 4060 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
    20:11:15.0700 4060 C:\Windows\SysWOW64\winnsi.dll - ok
    20:11:15.0716 4060 [ 39EADCAA61372C038BCFED96DF5323DA ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
    20:11:15.0716 4060 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
    20:11:15.0716 4060 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
    20:11:15.0716 4060 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
    20:11:15.0731 4060 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
    20:11:15.0731 4060 C:\Windows\SysWOW64\imagehlp.dll - ok
    20:11:15.0731 4060 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
    20:11:15.0731 4060 C:\Windows\SysWOW64\msi.dll - ok
    20:11:15.0747 4060 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
    20:11:15.0747 4060 C:\Windows\SysWOW64\ntmarta.dll - ok
    20:11:15.0747 4060 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
    20:11:15.0747 4060 C:\Windows\SysWOW64\Wldap32.dll - ok
    20:11:15.0763 4060 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.124\GoogleCrashHandler.exe
    20:11:15.0763 4060 C:\Program Files (x86)\Google\Update\1.3.21.124\GoogleCrashHandler.exe - ok
    20:11:15.0763 4060 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
    20:11:15.0763 4060 C:\Windows\SysWOW64\apphelp.dll - ok
    20:11:15.0778 4060 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.124\GoogleCrashHandler64.exe
    20:11:15.0778 4060 C:\Program Files (x86)\Google\Update\1.3.21.124\GoogleCrashHandler64.exe - ok
    20:11:15.0794 4060 [ D79D3EABD4730970770EFA530D094E0F ] C:\Program Files\AVAST Software\Avast\snxhk.dll
    20:11:15.0794 4060 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
    20:11:15.0794 4060 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
    20:11:15.0794 4060 C:\Windows\SysWOW64\mstask.dll - ok
    20:11:15.0809 4060 [ 9392C25DEEDA9A79FDBF6559D47EAB1F ] C:\Program Files\AVAST Software\Avast\snxhk64.dll
    20:11:15.0809 4060 C:\Program Files\AVAST Software\Avast\snxhk64.dll - ok
    20:11:15.0809 4060 [ 1683774D357D5CFFCDC871493E19F58F ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswAR.dll
    20:11:15.0809 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswAR.dll - ok
    20:11:15.0825 4060 [ BFBFAFFC60EBB5754F37868CAA876BF1 ] C:\Program Files\AVAST Software\Avast\defs\13012101\aswRawFS.dll
    20:11:15.0825 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aswRawFS.dll - ok
    20:11:15.0825 4060 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
    20:11:15.0825 4060 C:\Windows\SysWOW64\wship6.dll - ok
    20:11:15.0841 4060 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
    20:11:15.0841 4060 C:\Windows\SysWOW64\rasadhlp.dll - ok
    20:11:15.0841 4060 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
    20:11:15.0841 4060 C:\Windows\System32\fundisc.dll - ok
    20:11:15.0856 4060 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
    20:11:15.0856 4060 C:\Windows\System32\EhStorShell.dll - ok
    20:11:15.0856 4060 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
    20:11:15.0856 4060 C:\Windows\System32\httpapi.dll - ok
    20:11:15.0872 4060 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
    20:11:15.0872 4060 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
    20:11:15.0887 4060 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
    20:11:15.0887 4060 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
    20:11:15.0887 4060 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
    20:11:15.0887 4060 C:\Windows\SysWOW64\security.dll - ok
    20:11:15.0903 4060 [ 96386E75BCFED6F339BE01359D6CBFAF ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
    20:11:15.0903 4060 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
    20:11:15.0903 4060 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
    20:11:15.0903 4060 C:\Windows\System32\cscapi.dll - ok
    20:11:15.0919 4060 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
    20:11:15.0919 4060 C:\Windows\SysWOW64\profapi.dll - ok
    20:11:15.0919 4060 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
    20:11:15.0919 4060 C:\Windows\SysWOW64\userenv.dll - ok
    20:11:15.0934 4060 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
    20:11:15.0934 4060 C:\Windows\System32\dbghelp.dll - ok
    20:11:15.0934 4060 [ 893F8E81D1117C48CB9D6E9E5F64BAB1 ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
    20:11:15.0934 4060 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
    20:11:15.0950 4060 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
    20:11:15.0950 4060 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
    20:11:15.0950 4060 [ 32802C0F6FC7C8F561B9D91F52A46421 ] C:\Windows\System32\cscui.dll
    20:11:15.0950 4060 C:\Windows\System32\cscui.dll - ok
    20:11:15.0965 4060 [ 7EE5F17A21D9A9101207DF4BC37B085D ] C:\Windows\System32\cscdll.dll
    20:11:15.0965 4060 C:\Windows\System32\cscdll.dll - ok
    20:11:15.0965 4060 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
    20:11:15.0965 4060 C:\Windows\System32\ntshrui.dll - ok
    20:11:15.0981 4060 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
    20:11:15.0981 4060 C:\Windows\SysWOW64\setupapi.dll - ok
    20:11:15.0997 4060 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
    20:11:15.0997 4060 C:\Windows\System32\IconCodecService.dll - ok
    20:11:15.0997 4060 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
    20:11:15.0997 4060 C:\Windows\SysWOW64\comdlg32.dll - ok
    20:11:16.0012 4060 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
    20:11:16.0012 4060 C:\Windows\SysWOW64\devobj.dll - ok
    20:11:16.0012 4060 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
    20:11:16.0012 4060 C:\Windows\SysWOW64\winspool.drv - ok
    20:11:16.0028 4060 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
    20:11:16.0028 4060 C:\Windows\System32\runonce.exe - ok
    20:11:16.0028 4060 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
    20:11:16.0028 4060 C:\Windows\SysWOW64\msimg32.dll - ok
    20:11:16.0043 4060 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
    20:11:16.0043 4060 C:\Windows\SysWOW64\oledlg.dll - ok
    20:11:16.0043 4060 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
    20:11:16.0043 4060 C:\Windows\SysWOW64\powrprof.dll - ok
    20:11:16.0059 4060 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
    20:11:16.0059 4060 C:\Windows\SysWOW64\winmm.dll - ok
    20:11:16.0059 4060 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
    20:11:16.0059 4060 C:\Windows\AppPatch\AcGenral.dll - ok
    20:11:16.0075 4060 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
    20:11:16.0075 4060 C:\Windows\SysWOW64\runonce.exe - ok
    20:11:16.0075 4060 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
    20:11:16.0075 4060 C:\Windows\System32\uDWM.dll - ok
    20:11:16.0090 4060 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
    20:11:16.0090 4060 C:\Windows\SysWOW64\uxtheme.dll - ok
    20:11:16.0106 4060 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
    20:11:16.0106 4060 C:\Windows\SysWOW64\propsys.dll - ok
    20:11:16.0106 4060 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
    20:11:16.0106 4060 C:\Windows\SysWOW64\msacm32.dll - ok
    20:11:16.0121 4060 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
    20:11:16.0121 4060 C:\Windows\SysWOW64\samcli.dll - ok
    20:11:16.0121 4060 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
    20:11:16.0121 4060 C:\Windows\SysWOW64\dwmapi.dll - ok
    20:11:16.0137 4060 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
    20:11:16.0137 4060 C:\Windows\SysWOW64\sfc.dll - ok
    20:11:16.0137 4060 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
    20:11:16.0137 4060 C:\Windows\SysWOW64\sfc_os.dll - ok
    20:11:16.0153 4060 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
    20:11:16.0153 4060 C:\Windows\SysWOW64\mpr.dll - ok
    20:11:16.0153 4060 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
    20:11:16.0153 4060 C:\Windows\SysWOW64\cmd.exe - ok
    20:11:16.0168 4060 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
    20:11:16.0168 4060 C:\Windows\SysWOW64\winbrand.dll - ok
    20:11:16.0168 4060 [ 5466DCAEF5A648E04D1B6580F2C901B5 ] C:\Windows\SysWOW64\ieframe.dll
    20:11:16.0168 4060 C:\Windows\SysWOW64\ieframe.dll - ok
    20:11:16.0184 4060 [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
    20:11:16.0184 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
    20:11:16.0184 4060 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
    20:11:16.0184 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
    20:11:16.0199 4060 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
    20:11:16.0199 4060 C:\Windows\System32\riched20.dll - ok
    20:11:16.0199 4060 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
    20:11:16.0199 4060 C:\Windows\SysWOW64\oleacc.dll - ok
    20:11:16.0215 4060 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
    20:11:16.0215 4060 C:\Windows\System32\SensApi.dll - ok
    20:11:16.0215 4060 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
    20:11:16.0215 4060 C:\Windows\SysWOW64\shdocvw.dll - ok
    20:11:16.0231 4060 [ 9682D5B9D9309377C1A7E08C3E6B7B3D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll
    20:11:16.0231 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\6be6efa1e2ffc9d46e99839edac5c5a8\System.ni.dll - ok
    20:11:16.0231 4060 [ 4BCAC176BE9F87E0A85A4C9A5EB63B3E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll
    20:11:16.0231 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\c48041d72e78f31f231c42309328779b\System.ServiceProcess.ni.dll - ok
    20:11:16.0246 4060 [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
    20:11:16.0246 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
    20:11:16.0262 4060 [ 8323B32A6FC3FCD7E5C8BA94B36CE162 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll
    20:11:16.0262 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\3762e80651ff8d0bbcdb0ccebfb3b3f7\System.Configuration.ni.dll - ok
    20:11:16.0262 4060 [ 5CCD5B62076D4432D4728BB6CB3DEBFD ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll
    20:11:16.0262 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\7a560781987776298120763de1df8f77\System.Xml.ni.dll - ok
    20:11:16.0277 4060 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\mrr107i\AppData\Local\Temp\EEB130F4-CDBC-4A2E-B632-44ABFAC6593D.exe
    20:11:16.0277 4060 C:\Users\mrr107i\AppData\Local\Temp\EEB130F4-CDBC-4A2E-B632-44ABFAC6593D.exe - ok
    20:11:16.0277 4060 [ AB55B8A9B13130F638546881CE4425F8 ] C:\Windows\System32\inetsrv\inetinfo.exe
    20:11:16.0277 4060 C:\Windows\System32\inetsrv\inetinfo.exe - ok
    20:11:16.0293 4060 [ 54CB2D6909E6CCDC3177E1D2B68D7610 ] C:\Windows\System32\iisRtl.dll
    20:11:16.0293 4060 C:\Windows\System32\iisRtl.dll - ok
    20:11:16.0293 4060 [ 89273F3971C98AD42929DEA4785D8289 ] C:\Windows\System32\inetsrv\rpcref.dll
    20:11:16.0293 4060 C:\Windows\System32\inetsrv\rpcref.dll - ok
    20:11:16.0309 4060 [ 39C12223C665E8407563B61629DE13B0 ] C:\Windows\System32\inetsrv\iisadmin.dll
    20:11:16.0309 4060 C:\Windows\System32\inetsrv\iisadmin.dll - ok
    20:11:16.0324 4060 [ 922605664B97C050370AC19AB923D6BD ] C:\Windows\System32\inetsrv\coadmin.dll
    20:11:16.0324 4060 C:\Windows\System32\inetsrv\coadmin.dll - ok
    20:11:16.0324 4060 [ EDC5E337D2CCD95150E89AD9E777778F ] C:\Windows\System32\admwprox.dll
    20:11:16.0324 4060 C:\Windows\System32\admwprox.dll - ok
    20:11:16.0340 4060 [ 302CCDB6EA92F7AE8881523647956630 ] C:\Windows\System32\drivers\mdmxsdk.sys
    20:11:16.0340 4060 C:\Windows\System32\drivers\mdmxsdk.sys - ok
    20:11:16.0340 4060 [ DE5F830C97B791258179D784907D0192 ] C:\Windows\System32\inetsrv\iiscfg.dll
    20:11:16.0340 4060 C:\Windows\System32\inetsrv\iiscfg.dll - ok
    20:11:16.0355 4060 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
    20:11:16.0355 4060 C:\Windows\SysWOW64\ncrypt.dll - ok
    20:11:16.0355 4060 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
    20:11:16.0355 4060 C:\Windows\System32\winspool.drv - ok
    20:11:16.0371 4060 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
    20:11:16.0371 4060 C:\Windows\SysWOW64\bcrypt.dll - ok
    20:11:16.0371 4060 [ CD22D2563039DDA6793F7624719363A7 ] C:\Windows\System32\drivers\mqac.sys
    20:11:16.0371 4060 C:\Windows\System32\drivers\mqac.sys - ok
    20:11:16.0387 4060 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
    20:11:16.0387 4060 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
    20:11:16.0387 4060 [ FAAEAEF99E53561BEEE58F946CA56F0D ] C:\Windows\System32\mqsvc.exe
    20:11:16.0387 4060 C:\Windows\System32\mqsvc.exe - ok
    20:11:16.0402 4060 [ 9470D074D49F353D3A151676EAFF8367 ] C:\Windows\System32\mqqm.dll
    20:11:16.0402 4060 C:\Windows\System32\mqqm.dll - ok
    20:11:16.0402 4060 [ F241C6AA7FA86C46E249C6C1ECF28B8A ] C:\Windows\System32\inetsrv\abocomp.dll
    20:11:16.0402 4060 C:\Windows\System32\inetsrv\abocomp.dll - ok
    20:11:16.0418 4060 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
    20:11:16.0418 4060 C:\Windows\System32\wsock32.dll - ok
    20:11:16.0433 4060 [ 011F0B067E47612F57C4ECE377D9C9DF ] C:\Windows\System32\activeds.dll
    20:11:16.0433 4060 C:\Windows\System32\activeds.dll - ok
    20:11:16.0433 4060 [ 9576E890099A08BFADB8612B96FA8A13 ] C:\Windows\System32\inetsrv\metadata.dll
    20:11:16.0433 4060 C:\Windows\System32\inetsrv\metadata.dll - ok
    20:11:16.0449 4060 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
    20:11:16.0449 4060 C:\Windows\SysWOW64\gpapi.dll - ok
    20:11:16.0449 4060 [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4 ] C:\Windows\System32\adsldpc.dll
    20:11:16.0449 4060 C:\Windows\System32\adsldpc.dll - ok
    20:11:16.0465 4060 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
    20:11:16.0465 4060 C:\Windows\System32\ntdsapi.dll - ok
    20:11:16.0465 4060 [ B6E94E5F902FE19E72992711C93F64C5 ] C:\Windows\System32\mqsec.dll
    20:11:16.0465 4060 C:\Windows\System32\mqsec.dll - ok
    20:11:16.0480 4060 [ D22CD77D4F0D63D1169BB35911BFF12D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    20:11:16.0480 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe - ok
    20:11:16.0480 4060 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
    20:11:16.0480 4060 C:\Windows\System32\clusapi.dll - ok
    20:11:16.0496 4060 [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
    20:11:16.0496 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
    20:11:16.0496 4060 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
    20:11:16.0496 4060 C:\Windows\System32\msxml3.dll - ok
    20:11:16.0511 4060 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
    20:11:16.0511 4060 C:\Windows\SysWOW64\cryptnet.dll - ok
    20:11:16.0511 4060 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
    20:11:16.0511 4060 C:\Windows\System32\dssenh.dll - ok
    20:11:16.0527 4060 [ 203AFD760D58EF377716A88716B329A3 ] C:\Windows\System32\mqlogmgr.dll
    20:11:16.0527 4060 C:\Windows\System32\mqlogmgr.dll - ok
    20:11:16.0527 4060 [ 74F0CFE12AB2EA1CC0FC3951F2934B87 ] C:\Windows\System32\inetsrv\svcext.dll
    20:11:16.0527 4060 C:\Windows\System32\inetsrv\svcext.dll - ok
    20:11:16.0543 4060 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
    20:11:16.0543 4060 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
    20:11:16.0543 4060 [ E69AC84672B5F7947ADB1A78B4C259CC ] C:\Windows\System32\inetsrv\wamreg.dll
    20:11:16.0543 4060 C:\Windows\System32\inetsrv\wamreg.dll - ok
    20:11:16.0558 4060 [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
    20:11:16.0558 4060 C:\Windows\System32\msvcr100_clr0400.dll - ok
    20:11:16.0558 4060 [ FE4D9C36122778C9C2A84ACA08D54321 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\4f52500ab48877b85e71430f4f46670f\mscorlib.ni.dll
    20:11:16.0558 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\4f52500ab48877b85e71430f4f46670f\mscorlib.ni.dll - ok
    20:11:16.0574 4060 [ 4374B2528BCBB8F95FB12CC6C8FF0773 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
    20:11:16.0574 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok
    20:11:16.0589 4060 [ 3E9FC80F084589CDA4AE3322EEECFFC0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\a91f32875cb3ba779f1b3ceff1690251\System.ni.dll
    20:11:16.0589 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\a91f32875cb3ba779f1b3ceff1690251\System.ni.dll - ok
    20:11:16.0589 4060 [ 0AD3E45CF2DC7B136F05DCE523028E90 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\SMSvcHost\b22341a364e193c7159c266841076ea0\SMSvcHost.ni.exe
    20:11:16.0589 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\SMSvcHost\b22341a364e193c7159c266841076ea0\SMSvcHost.ni.exe - ok
    20:11:16.0605 4060 [ 8481890EB7A25A48DB214FCEDFFACB8F ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\93864146d7ce552dabb2e9d07fa3a926\System.Core.ni.dll
    20:11:16.0605 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\93864146d7ce552dabb2e9d07fa3a926\System.Core.ni.dll - ok
    20:11:16.0605 4060 [ CC5DE40894A56FFA1A799B7F22517340 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceModel\1b9ddb69849ec82975da1c9d7b9340eb\System.ServiceModel.ni.dll
    20:11:16.0605 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceModel\1b9ddb69849ec82975da1c9d7b9340eb\System.ServiceModel.ni.dll - ok
    20:11:16.0621 4060 [ 535DADC7E96326A99FFE0C3979EE50DA ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceProce#\1282626f6d0d8c3d8b4aea6a99d25db0\System.ServiceProcess.ni.dll
    20:11:16.0621 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.ServiceProce#\1282626f6d0d8c3d8b4aea6a99d25db0\System.ServiceProcess.ni.dll - ok
    20:11:16.0621 4060 [ A09DCDCD8BA498B338DD26E4359D3F4A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\SMDiagnostics\31f93b6be386908ff2727bcd825de0ca\SMDiagnostics.ni.dll
    20:11:16.0621 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\SMDiagnostics\31f93b6be386908ff2727bcd825de0ca\SMDiagnostics.ni.dll - ok
    20:11:16.0636 4060 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
    20:11:16.0636 4060 C:\Windows\System32\aepic.dll - ok
    20:11:16.0652 4060 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
    20:11:16.0652 4060 C:\Windows\System32\sfc.dll - ok
    20:11:16.0652 4060 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
    20:11:16.0652 4060 C:\Windows\System32\sfc_os.dll - ok
    20:11:16.0667 4060 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
    20:11:16.0667 4060 C:\Windows\System32\nlasvc.dll - ok
    20:11:16.0667 4060 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
    20:11:16.0667 4060 C:\Windows\System32\ncsi.dll - ok
    20:11:16.0683 4060 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
    20:11:16.0683 4060 C:\Windows\System32\ssdpapi.dll - ok
    20:11:16.0683 4060 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
    20:11:16.0683 4060 C:\Windows\System32\drivers\PEAuth.sys - ok
    20:11:16.0699 4060 [ 425782D2B3B6F1507D5E99E663CE3F4A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Dura#\d48b73b3132801d7054b6014d3664470\System.Runtime.DurableInstancing.ni.dll
    20:11:16.0699 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Dura#\d48b73b3132801d7054b6014d3664470\System.Runtime.DurableInstancing.ni.dll - ok
    20:11:16.0699 4060 [ EC08F157BE40C5ACD5337ABF5B24C9C5 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    20:11:16.0699 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll - ok
    20:11:16.0714 4060 [ 4BCB1FFD7FA292557F63DDC1770CEC88 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\a43bf29e6d6c959640c70eded05dad1a\System.Configuration.ni.dll
    20:11:16.0714 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\a43bf29e6d6c959640c70eded05dad1a\System.Configuration.ni.dll - ok
    20:11:16.0730 4060 [ AB09CE954C647F3C2B4328B57D519996 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcp110.dll
    20:11:16.0730 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcp110.dll - ok
    20:11:16.0730 4060 [ 80E987DBE08677E2EC09615CD4358607 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcr110.dll
    20:11:16.0730 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\msvcr110.dll - ok
    20:11:16.0730 4060 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
    20:11:16.0730 4060 C:\Windows\System32\aeevts.dll - ok
    20:11:16.0745 4060 [ 3EBA393EC3A8F53D8D08A15E357125C1 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\Telemetry.dll
    20:11:16.0745 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\Telemetry.dll - ok
    20:11:16.0761 4060 [ E0A9DDAC0B57312C8010495193B920E3 ] C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\logging.dll
    20:11:16.0761 4060 C:\Users\mrr107i\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\logging.dll - ok
    20:11:16.0761 4060 [ D85E50C36D2AF4B9F69873E4A31FB1F8 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\f4afb233f160b8e55aad4660e45b374c\System.Xml.ni.dll
    20:11:16.0761 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\f4afb233f160b8e55aad4660e45b374c\System.Xml.ni.dll - ok
    20:11:16.0777 4060 [ 1E8D06AAE74FED674C1156B3FEA911C2 ] C:\Windows\SysWOW64\Faultrep.dll
    20:11:16.0777 4060 C:\Windows\SysWOW64\Faultrep.dll - ok
    20:11:16.0777 4060 [ 206387AB881E93A1A6EB89966C8651F1 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    20:11:16.0777 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe - ok
    20:11:16.0792 4060 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
    20:11:16.0792 4060 C:\Windows\SysWOW64\xmllite.dll - ok
    20:11:16.0792 4060 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
    20:11:16.0792 4060 C:\Windows\SysWOW64\EhStorShell.dll - ok
    20:11:16.0808 4060 [ 2A4659EF91E22EDF93FF34E29199C4FB ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\a3a3ccd41789ba4eb01f51db6c508222\System.Runtime.Serialization.ni.dll
    20:11:16.0808 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runtime.Seri#\a3a3ccd41789ba4eb01f51db6c508222\System.Runtime.Serialization.ni.dll - ok
    20:11:16.0808 4060 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
    20:11:16.0808 4060 C:\Windows\SysWOW64\ntshrui.dll - ok
    20:11:16.0823 4060 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
    20:11:16.0823 4060 C:\Windows\SysWOW64\slc.dll - ok
    20:11:16.0823 4060 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
    20:11:16.0823 4060 C:\Windows\SysWOW64\imageres.dll - ok
    20:11:16.0839 4060 [ 84D7BB2A7796AEC164A16ADBF4F2F7D4 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.IdentityModel\a86ec9d380a283007c8690257ded7017\System.IdentityModel.ni.dll
    20:11:16.0839 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.IdentityModel\a86ec9d380a283007c8690257ded7017\System.IdentityModel.ni.dll - ok
    20:11:16.0855 4060 [ C9729DE2AD256E51566FCDA8684E7E85 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\9ae2351f8a6cec0be0f3730d8efaccfb\System.Xaml.ni.dll
    20:11:16.0855 4060 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\9ae2351f8a6cec0be0f3730d8efaccfb\System.Xaml.ni.dll - ok
    20:11:16.0855 4060 [ 51621E4B29575A8CF429E6F6DA58A577 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
    20:11:16.0855 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
    20:11:16.0870 4060 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
    20:11:16.0870 4060 C:\Windows\SysWOW64\IconCodecService.dll - ok
    20:11:16.0870 4060 [ 4C867B62F6100C107A3A8F5E7A10461D ] C:\Program Files (x86)\Spybot - Search & Destroy 2\rtl150.bpl
    20:11:16.0870 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\rtl150.bpl - ok
    20:11:16.0886 4060 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
    20:11:16.0886 4060 C:\Windows\SysWOW64\shfolder.dll - ok
    20:11:16.0886 4060 [ D9AF104F7E21FA859EFA3C67E5522E88 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\vcl150.bpl
    20:11:16.0886 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\vcl150.bpl - ok
    20:11:16.0901 4060 [ 105ED75F4CEE9E58152061520DAA4ABD ] C:\Program Files (x86)\Spybot - Search & Destroy 2\Jcl150.bpl
    20:11:16.0901 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\Jcl150.bpl - ok
    20:11:16.0917 4060 [ 0FDABB1FD68CBC557084E16B0EA2F731 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\snlBase150.bpl
    20:11:16.0917 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\snlBase150.bpl - ok
    20:11:16.0917 4060 [ FA27F4DF4015B22F04B5D18044A24322 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
    20:11:16.0917 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl - ok
    20:11:16.0933 4060 [ 86E99E1222E671408ED5E8618521AEEB ] C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
    20:11:16.0933 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl - ok
    20:11:16.0948 4060 [ 9244E0240A1D150581C3BAA89D8AA154 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
    20:11:16.0948 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl - ok
    20:11:16.0948 4060 [ 14361FB2FD630988816A4F46AEAF0684 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
    20:11:16.0948 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll - ok
    20:11:16.0964 4060 [ 8E38CE628D4817D949DD31D77A7F21CD ] C:\Windows\SysWOW64\jsproxy.dll
    20:11:16.0964 4060 C:\Windows\SysWOW64\jsproxy.dll - ok
    20:11:16.0964 4060 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
    20:11:16.0964 4060 C:\Windows\System32\drivers\secdrv.sys - ok
    20:11:16.0979 4060 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
    20:11:16.0979 4060 C:\Windows\System32\seclogon.dll - ok
    20:11:16.0979 4060 [ E9E830D540EDEDED650F906628468548 ] C:\Windows\System32\TCPSVCS.EXE
    20:11:16.0979 4060 C:\Windows\System32\TCPSVCS.EXE - ok
    20:11:16.0995 4060 [ 4E5FB7AE0C82B65BDA97BE1774F56B31 ] C:\Windows\System32\simptcp.dll
    20:11:16.0995 4060 C:\Windows\System32\simptcp.dll - ok
    20:11:16.0995 4060 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
    20:11:16.0995 4060 C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
    20:11:17.0011 4060 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
    20:11:17.0011 4060 C:\Windows\System32\drivers\srvnet.sys - ok
    20:11:17.0011 4060 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
    20:11:17.0011 4060 C:\Windows\System32\snmpapi.dll - ok
    20:11:17.0026 4060 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
    20:11:17.0026 4060 C:\Windows\System32\drivers\tcpipreg.sys - ok
    20:11:17.0026 4060 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
    20:11:17.0026 4060 C:\Windows\System32\sysmain.dll - ok
    20:11:17.0042 4060 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
    20:11:17.0042 4060 C:\Windows\System32\wiaservc.dll - ok
    20:11:17.0042 4060 [ F1C26CC556A39A1CAC86CB7B493CE2EB ] C:\Windows\System32\inetsrv\ftpmib.dll
    20:11:17.0042 4060 C:\Windows\System32\inetsrv\ftpmib.dll - ok
    20:11:17.0057 4060 [ 94B0B1A2635004267C14301270C8CE37 ] C:\Windows\System32\inetsrv\httpmib.dll
    20:11:17.0057 4060 C:\Windows\System32\inetsrv\httpmib.dll - ok
    20:11:17.0057 4060 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
    20:11:17.0057 4060 C:\Windows\System32\pdh.dll - ok
    20:11:17.0073 4060 [ C68646093AB79AC5D794E5CED965BAE7 ] C:\Windows\System32\wow64mib.dll
    20:11:17.0073 4060 C:\Windows\System32\wow64mib.dll - ok
    20:11:17.0073 4060 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
    20:11:17.0073 4060 C:\Windows\System32\wiatrace.dll - ok
    20:11:17.0089 4060 [ 8F5171C837E64FF0AC48F0A29DD9E180 ] C:\Windows\SysWOW64\snmp.exe
    20:11:17.0089 4060 C:\Windows\SysWOW64\snmp.exe - ok
    20:11:17.0104 4060 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
    20:11:17.0104 4060 C:\Windows\System32\trkwks.dll - ok
    20:11:17.0104 4060 [ 136760C1E9697BAF4ECDEAE5590A0806 ] C:\Windows\System32\wbem\WMIsvc.dll
    20:11:17.0104 4060 C:\Windows\System32\wbem\WMIsvc.dll - ok
    20:11:17.0120 4060 [ 1220595CABA75AB91A6B3FA3B89483CC ] C:\Windows\SysWOW64\snmpapi.dll
    20:11:17.0120 4060 C:\Windows\SysWOW64\snmpapi.dll - ok
    20:11:17.0120 4060 [ B32009DB1972E7F2C227499289C4384A ] C:\Windows\System32\inetsrv\iisw3adm.dll
    20:11:17.0120 4060 C:\Windows\System32\inetsrv\iisw3adm.dll - ok
    20:11:17.0135 4060 [ 357CABBF155AFD1D3926E62539D2A3A7 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    20:11:17.0135 4060 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
    20:11:17.0135 4060 [ A5ACADEE1EC8F9105CBD683A4D722CFE ] C:\Windows\System32\wbemcomn2.dll
    20:11:17.0135 4060 C:\Windows\System32\wbemcomn2.dll - ok
    20:11:17.0151 4060 [ 49F9AF60349A514C1BCF14DB9C843C5A ] C:\Windows\System32\inetsrv\w3tp.dll
    20:11:17.0151 4060 C:\Windows\System32\inetsrv\w3tp.dll - ok
    20:11:17.0151 4060 [ 636681CA4ECC169E763A611991E7A0C7 ] C:\Windows\System32\wbem\WmiDcPrv.dll
    20:11:17.0151 4060 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
    20:11:17.0167 4060 [ FCEABD99844A035DB8D96E6E8BCCBA5E ] C:\Windows\System32\wbem\fastprox.dll
    20:11:17.0167 4060 C:\Windows\System32\wbem\fastprox.dll - ok
    20:11:17.0167 4060 [ 997714A70C11ED43A771AE5A95F0D026 ] C:\Windows\System32\wbem\WinMgmtR.dll
    20:11:17.0167 4060 C:\Windows\System32\wbem\WinMgmtR.dll - ok
    20:11:17.0182 4060 [ 4D485945E7589FC64E4D6E59ECD483B7 ] C:\Windows\System32\wbem\wbemprox.dll
    20:11:17.0182 4060 C:\Windows\System32\wbem\wbemprox.dll - ok
    20:11:17.0182 4060 [ 0C212FA537F003B8F8C90A85D0F8DF27 ] C:\Windows\System32\wbem\wbemcore.dll
    20:11:17.0182 4060 C:\Windows\System32\wbem\wbemcore.dll - ok
    20:11:17.0198 4060 [ A67E03E39172459935C591F6E0534569 ] C:\Windows\System32\wbem\esscli.dll
    20:11:17.0198 4060 C:\Windows\System32\wbem\esscli.dll - ok
    20:11:17.0213 4060 [ BA5CA827B50D8FE46478BA867B08D020 ] C:\Windows\System32\wbem\wbemsvc.dll
    20:11:17.0213 4060 C:\Windows\System32\wbem\wbemsvc.dll - ok
    20:11:17.0213 4060 [ F37BCA66EA95079C806D80B23E041876 ] C:\Windows\System32\wbem\wmiutils.dll
    20:11:17.0213 4060 C:\Windows\System32\wbem\wmiutils.dll - ok
    20:11:17.0229 4060 [ 56C9C92B854E6AB6ECDA5C531B6ACF5A ] C:\Windows\System32\wbem\repdrvfs.dll
    20:11:17.0229 4060 C:\Windows\System32\wbem\repdrvfs.dll - ok
    20:11:17.0229 4060 [ 6C399566C1E3E7D475C3698297221A20 ] C:\Windows\System32\wbem\WmiPrvSD.dll
    20:11:17.0229 4060 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
    20:11:17.0245 4060 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
    20:11:17.0245 4060 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
    20:11:17.0245 4060 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
    20:11:17.0245 4060 C:\Windows\System32\wer.dll - ok
    20:11:17.0260 4060 [ AF617F62B17F4E95E92BBED578691FA6 ] C:\Windows\System32\drivers\XAudio64.sys
    20:11:17.0260 4060 C:\Windows\System32\drivers\XAudio64.sys - ok
    20:11:17.0260 4060 [ E8B1FE6669397D1772D8196DF0E57A9E ] C:\Windows\System32\wscsvc.dll
    20:11:17.0260 4060 C:\Windows\System32\wscsvc.dll - ok
    20:11:17.0276 4060 [ FFDAE493D48DEFE7936C735A175ACB6D ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    20:11:17.0276 4060 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
    20:11:17.0276 4060 [ D790CAFEFF0291D0AF8C76F5A1EE2E4E ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    20:11:17.0276 4060 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
    20:11:17.0291 4060 [ 59ED174FD4314B0218DC91F9BFA6CD3D ] C:\Windows\System32\mqtgsvc.exe
    20:11:17.0291 4060 C:\Windows\System32\mqtgsvc.exe - ok
    20:11:17.0291 4060 [ F1C09EE3A594B19DD1F4B4AEA9E353C9 ] C:\Windows\System32\comsvcs.dll
    20:11:17.0291 4060 C:\Windows\System32\comsvcs.dll - ok
    20:11:17.0307 4060 [ 7DF186D86CF8C571A12AAB788C777F84 ] C:\Windows\SysWOW64\wscproxystub.dll
    20:11:17.0307 4060 C:\Windows\SysWOW64\wscproxystub.dll - ok
    20:11:17.0307 4060 [ EE4F7DF5CB15114E2478C8FEC07B9654 ] C:\Windows\System32\mqrt.dll
    20:11:17.0307 4060 C:\Windows\System32\mqrt.dll - ok
    20:11:17.0323 4060 [ 2DF40C4521561164DE739F10545C98F1 ] C:\Windows\System32\mqtrig.dll
    20:11:17.0323 4060 C:\Windows\System32\mqtrig.dll - ok
    20:11:17.0323 4060 [ 6A3A5E566D792BA30AFF5EC949FF9F49 ] C:\Windows\System32\inetsrv\wbhstipm.dll
    20:11:17.0338 4060 C:\Windows\System32\inetsrv\wbhstipm.dll - ok
    20:11:17.0338 4060 [ CF2C95D5FF3E37A535D0C9F2E7A1E0A2 ] C:\Windows\System32\evntagnt.dll
    20:11:17.0338 4060 C:\Windows\System32\evntagnt.dll - ok
    20:11:17.0354 4060 [ 90CC31E54E79E9E5800FFF3CCF2FC5DB ] C:\Windows\System32\inetmib1.dll
    20:11:17.0354 4060 C:\Windows\System32\inetmib1.dll - ok
    20:11:17.0354 4060 [ 2693448F9BE4CE1809188495D1D711E1 ] C:\Windows\System32\lmmib2.dll
    20:11:17.0354 4060 C:\Windows\System32\lmmib2.dll - ok
    20:11:17.0369 4060 [ C55A9A7FDDDD58347F320E08BBA76FD3 ] C:\Windows\System32\snmpmib.dll
    20:11:17.0369 4060 C:\Windows\System32\snmpmib.dll - ok
    20:11:17.0369 4060 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
    20:11:17.0369 4060 C:\Windows\System32\browcli.dll - ok
    20:11:17.0385 4060 [ 85C81F2367126BAD531C86998CB4418A ] C:\Windows\System32\hostmib.dll
    20:11:17.0385 4060 C:\Windows\System32\hostmib.dll - ok
    20:11:17.0385 4060 [ A529CFE32565C0B145578FFB2B32C9A5 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    20:11:17.0385 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe - ok
    20:11:17.0401 4060 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
    20:11:17.0401 4060 C:\Windows\System32\localspl.dll - ok
    20:11:17.0401 4060 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
    20:11:17.0401 4060 C:\Windows\System32\spoolss.dll - ok
    20:11:17.0416 4060 [ B90C159F334A30CB9ACE41917020B0D3 ] C:\Windows\System32\lprhelp.dll
    20:11:17.0416 4060 C:\Windows\System32\lprhelp.dll - ok
    20:11:17.0416 4060 [ 1DECC6EC725EA002C2C1AF73CD47C6FF ] C:\Windows\System32\lprmon.dll
    20:11:17.0416 4060 C:\Windows\System32\lprmon.dll - ok
    20:11:17.0432 4060 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
    20:11:17.0432 4060 C:\Windows\System32\PrintIsolationProxy.dll - ok
    20:11:17.0432 4060 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
    20:11:17.0432 4060 C:\Windows\System32\FXSMON.dll - ok
    20:11:17.0447 4060 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
    20:11:17.0447 4060 C:\Windows\System32\tcpmon.dll - ok
    20:11:17.0447 4060 [ D21AB32F16E8DE67D45E5A383B5E52BA ] C:\Program Files (x86)\Spybot - Search & Destroy 2\ssleay32.dll
    20:11:17.0447 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\ssleay32.dll - ok
    20:11:17.0463 4060 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
    20:11:17.0463 4060 C:\Windows\System32\wsnmp32.dll - ok
    20:11:17.0479 4060 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
    20:11:17.0479 4060 C:\Windows\System32\usbmon.dll - ok
    20:11:17.0479 4060 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
    20:11:17.0479 4060 C:\Windows\System32\WSDMon.dll - ok
    20:11:17.0494 4060 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
    20:11:17.0494 4060 C:\Windows\System32\fdPnp.dll - ok
    20:11:17.0494 4060 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
    20:11:17.0494 4060 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
    20:11:17.0510 4060 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
    20:11:17.0510 4060 C:\Windows\System32\win32spl.dll - ok
    20:11:17.0510 4060 [ B009D6171147BE129636A49C4178E487 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\libeay32.dll
    20:11:17.0510 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\libeay32.dll - ok
    20:11:17.0525 4060 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
    20:11:17.0525 4060 C:\Windows\System32\inetpp.dll - ok
    20:11:17.0525 4060 [ 0281DDC918760773F676CE924B153AAF ] C:\Windows\System32\ncobjapi.dll
    20:11:17.0525 4060 C:\Windows\System32\ncobjapi.dll - ok
    20:11:17.0541 4060 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
    20:11:17.0541 4060 C:\Windows\System32\iphlpsvc.dll - ok
    20:11:17.0541 4060 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
    20:11:17.0541 4060 C:\Windows\System32\sqmapi.dll - ok
    20:11:17.0557 4060 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
    20:11:17.0557 4060 C:\Windows\System32\wdscore.dll - ok
    20:11:17.0557 4060 [ 5935C3E7DCDA36AA0E4D9284C8AC319B ] C:\Windows\System32\wbem\wbemess.dll
    20:11:17.0557 4060 C:\Windows\System32\wbem\wbemess.dll - ok
    20:11:17.0572 4060 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
    20:11:17.0572 4060 C:\Windows\System32\hnetcfg.dll - ok
    20:11:17.0572 4060 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
    20:11:17.0572 4060 C:\Windows\System32\nci.dll - ok
    20:11:17.0588 4060 [ CB63BDB77BB86549FC3303C2F11EDC18 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    20:11:17.0588 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe - ok
    20:11:17.0588 4060 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
    20:11:17.0588 4060 C:\Windows\SysWOW64\devrtl.dll - ok
    20:11:17.0603 4060 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
    20:11:17.0603 4060 C:\Windows\System32\drivers\srv2.sys - ok
    20:11:17.0603 4060 [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
    20:11:17.0603 4060 C:\Windows\System32\ie4uinit.exe - ok
    20:11:17.0619 4060 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
    20:11:17.0619 4060 C:\Windows\System32\timedate.cpl - ok
    20:11:17.0619 4060 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
    20:11:17.0619 4060 C:\Windows\System32\p2pcollab.dll - ok
    20:11:17.0635 4060 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
    20:11:17.0635 4060 C:\Windows\System32\actxprxy.dll - ok
    20:11:17.0650 4060 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
    20:11:17.0650 4060 C:\Windows\System32\shdocvw.dll - ok
    20:11:17.0650 4060 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
    20:11:17.0650 4060 C:\Windows\System32\drivers\srv.sys - ok
    20:11:17.0666 4060 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
    20:11:17.0666 4060 C:\Windows\System32\QAGENTRT.DLL - ok
    20:11:17.0666 4060 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
    20:11:17.0666 4060 C:\Windows\System32\linkinfo.dll - ok
    20:11:17.0681 4060 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
    20:11:17.0681 4060 C:\Windows\System32\srvsvc.dll - ok
    20:11:17.0681 4060 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
    20:11:17.0681 4060 C:\Windows\System32\browser.dll - ok
    20:11:17.0697 4060 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
    20:11:17.0697 4060 C:\Windows\System32\netmsg.dll - ok
    20:11:17.0697 4060 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
    20:11:17.0697 4060 C:\Windows\System32\sscore.dll - ok
    20:11:17.0713 4060 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
    20:11:17.0713 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
    20:11:17.0713 4060 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
    20:11:17.0713 4060 C:\Windows\System32\resutils.dll - ok
    20:11:17.0728 4060 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
    20:11:17.0728 4060 C:\Windows\System32\fveui.dll - ok
    20:11:17.0728 4060 [ 612D62566C617682782FCFDD27D70EAB ] C:\Windows\System32\wbem\NCProv.dll
    20:11:17.0728 4060 C:\Windows\System32\wbem\NCProv.dll - ok
    20:11:17.0744 4060 [ C47F35CC6FA4F1BDBEF8F87AC1A46537 ] C:\Windows\System32\wuapi.dll
    20:11:17.0744 4060 C:\Windows\System32\wuapi.dll - ok
    20:11:17.0744 4060 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
    20:11:17.0744 4060 C:\Windows\System32\cabinet.dll - ok
    20:11:17.0759 4060 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
    20:11:17.0759 4060 C:\Windows\System32\wdi.dll - ok
    20:11:17.0775 4060 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
    20:11:17.0775 4060 C:\Windows\System32\wups.dll - ok
    20:11:17.0775 4060 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
    20:11:17.0775 4060 C:\Windows\System32\wpdbusenum.dll - ok
    20:11:17.0791 4060 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
    20:11:17.0791 4060 C:\Windows\System32\Apphlpdm.dll - ok
    20:11:17.0791 4060 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
    20:11:17.0791 4060 C:\Windows\System32\PortableDeviceApi.dll - ok
    20:11:17.0806 4060 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
    20:11:17.0806 4060 C:\Windows\System32\diagperf.dll - ok
    20:11:17.0806 4060 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
    20:11:17.0806 4060 C:\Windows\System32\perftrack.dll - ok
    20:11:17.0822 4060 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
    20:11:17.0822 4060 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
    20:11:17.0822 4060 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
    20:11:17.0822 4060 C:\Windows\System32\npmproxy.dll - ok
    20:11:17.0837 4060 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
    20:11:17.0837 4060 C:\Windows\System32\ndiscapCfg.dll - ok
    20:11:17.0837 4060 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
    20:11:17.0837 4060 C:\Windows\System32\rascfg.dll - ok
    20:11:17.0853 4060 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
    20:11:17.0853 4060 C:\Windows\System32\mprapi.dll - ok
    20:11:17.0853 4060 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
    20:11:17.0853 4060 C:\Windows\System32\pnpts.dll - ok
    20:11:17.0869 4060 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
    20:11:17.0869 4060 C:\Windows\System32\mprmsg.dll - ok
    20:11:17.0869 4060 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
    20:11:17.0869 4060 C:\Windows\System32\radardt.dll - ok
    20:11:17.0884 4060 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
    20:11:17.0884 4060 C:\Windows\System32\aelupsvc.dll - ok
    20:11:17.0884 4060 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
    20:11:17.0884 4060 C:\Windows\System32\wdiasqmmodule.dll - ok
    20:11:17.0900 4060 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
    20:11:17.0900 4060 C:\Windows\System32\tcpipcfg.dll - ok
    20:11:17.0915 4060 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
    20:11:17.0915 4060 C:\Windows\System32\dimsjob.dll - ok
    20:11:17.0915 4060 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
    20:11:17.0915 4060 C:\Windows\System32\pautoenr.dll - ok
    20:11:17.0931 4060 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
    20:11:17.0931 4060 C:\Windows\System32\certcli.dll - ok
    20:11:17.0931 4060 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
    20:11:17.0931 4060 C:\Windows\System32\CertEnroll.dll - ok
    20:11:17.0947 4060 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
    20:11:17.0947 4060 C:\Windows\System32\IPSECSVC.DLL - ok
    20:11:17.0947 4060 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
    20:11:17.0947 4060 C:\Windows\System32\FwRemoteSvr.dll - ok
    20:11:17.0962 4060 [ D0908B03B38D31CC0C19ED4A83E512ED ] C:\Windows\System32\wshrm.dll
    20:11:17.0962 4060 C:\Windows\System32\wshrm.dll - ok
    20:11:17.0962 4060 [ AC0C9CEA1218DAB1994AF8B28E680BD9 ] C:\Windows\System32\wlaninst.dll
    20:11:17.0962 4060 C:\Windows\System32\wlaninst.dll - ok
    20:11:17.0978 4060 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE ] C:\Windows\System32\wwaninst.dll
    20:11:17.0978 4060 C:\Windows\System32\wwaninst.dll - ok
    20:11:17.0978 4060 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
    20:11:17.0978 4060 C:\Windows\System32\SyncCenter.dll - ok
    20:11:17.0993 4060 [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
    20:11:17.0993 4060 C:\Windows\System32\rundll32.exe - ok
    20:11:17.0993 4060 [ 198803E5E93E29967DFB0BCFD0186151 ] C:\Windows\System32\spfileq.dll
    20:11:17.0993 4060 C:\Windows\System32\spfileq.dll - ok
    20:11:18.0009 4060 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\97224411.sys
    20:11:18.0009 4060 C:\Windows\System32\drivers\97224411.sys - ok
    20:11:18.0009 4060 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
    20:11:18.0009 4060 C:\Windows\SysWOW64\riched20.dll - ok
    20:11:18.0025 4060 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
    20:11:18.0025 4060 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
    20:11:18.0025 4060 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
    20:11:18.0025 4060 C:\Windows\SysWOW64\duser.dll - ok
    20:11:18.0040 4060 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
    20:11:18.0040 4060 C:\Windows\SysWOW64\dui70.dll - ok
    20:11:18.0056 4060 [ 28638660E651578C354BF43CD646EF6D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll
    20:11:18.0056 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\672fc9526d8954656bcb46e42082e09c\System.Drawing.ni.dll - ok
    20:11:18.0056 4060 [ 107243179484027540978F075F6941D4 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\24a22e5e6d47c2509aae62c7e9da0500\System.Windows.Forms.ni.dll
    20:11:18.0056 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\24a22e5e6d47c2509aae62c7e9da0500\System.Windows.Forms.ni.dll - ok
    20:11:18.0056 4060 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
    20:11:18.0056 4060 C:\Windows\System32\shfolder.dll - ok
    20:11:18.0071 4060 [ 0017163E0D5985168792BEE5CF70D5DF ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll
    20:11:18.0071 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\diasymreader.dll - ok
    20:11:18.0087 4060 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
    20:11:18.0087 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
    20:11:18.0087 4060 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
    20:11:18.0087 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
    20:11:18.0103 4060 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
    20:11:18.0103 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
    20:11:18.0103 4060 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
    20:11:18.0103 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
    20:11:18.0118 4060 [ 0671A791C292F46423CFE37B53D598D0 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFileScanLibrary.dll
    20:11:18.0118 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFileScanLibrary.dll - ok
    20:11:18.0118 4060 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
    20:11:18.0118 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
    20:11:18.0134 4060 [ 9C2543A7AC524CAA63B26A16D4E3AD39 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl
    20:11:18.0134 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\JSDialogPack150.bpl - ok
    20:11:18.0134 4060 [ 5422CB64444C33F029483552A8FACE37 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\vclx150.bpl
    20:11:18.0134 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\vclx150.bpl - ok
    20:11:18.0149 4060 [ F4B233C49ABD64B98272E4273B1D78B8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\8856f5a897356823c4afd49a886f7c5c\Accessibility.ni.dll
    20:11:18.0149 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\8856f5a897356823c4afd49a886f7c5c\Accessibility.ni.dll - ok
    20:11:18.0165 4060 [ AEB9DD47B76075B05E27874384544F39 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\vclie150.bpl
    20:11:18.0165 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\vclie150.bpl - ok
    20:11:18.0165 4060 [ 459F120CEFB7E41FBFE3668C0234B0A5 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
    20:11:18.0165 4060 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
    20:11:18.0181 4060 [ FAD9807ACDE89A34D2EB4743D57016D7 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDAdvancedCheckLibrary.dll
    20:11:18.0181 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDAdvancedCheckLibrary.dll - ok
    20:11:18.0181 4060 [ 049695887E5B63F2807E7F49E8C5D208 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web.Services\f78eedad64cd97dcdb75617895996778\System.Web.Services.ni.dll
    20:11:18.0181 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web.Services\f78eedad64cd97dcdb75617895996778\System.Web.Services.ni.dll - ok
    20:11:18.0196 4060 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
    20:11:18.0196 4060 C:\Windows\System32\gameux.dll - ok
    20:11:18.0196 4060 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
    20:11:18.0196 4060 C:\Windows\System32\msftedit.dll - ok
    20:11:18.0212 4060 [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
    20:11:18.0212 4060 C:\Windows\System32\msls31.dll - ok
    20:11:18.0212 4060 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
    20:11:18.0212 4060 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
    20:11:18.0227 4060 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
    20:11:18.0227 4060 C:\Windows\System32\msiltcfg.dll - ok
    20:11:18.0243 4060 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
    20:11:18.0243 4060 C:\Windows\System32\SearchFolder.dll - ok
    20:11:18.0243 4060 [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
    20:11:18.0243 4060 C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
    20:11:18.0259 4060 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
    20:11:18.0259 4060 C:\Windows\System32\UIAnimation.dll - ok
    20:11:18.0259 4060 [ 4E81439902079C348B61D7FF027FE147 ] C:\Windows\System32\StructuredQuery.dll
    20:11:18.0259 4060 C:\Windows\System32\StructuredQuery.dll - ok
    20:11:18.0274 4060 [ E6C60E153524E8C18E06C643B11D5AD3 ] C:\Program Files\CCleaner\CCleaner64.exe
    20:11:18.0274 4060 C:\Program Files\CCleaner\CCleaner64.exe - ok
    20:11:18.0274 4060 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
    20:11:18.0274 4060 C:\Windows\System32\DeviceCenter.dll - ok
    20:11:18.0290 4060 [ 6C12BD722FFC94584348DD34F4059FC5 ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    20:11:18.0290 4060 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
    20:11:18.0290 4060 [ 0181B4C10F409299E0D8EE130EF87353 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll
    20:11:18.0290 4060 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\c54fc0cac648a174c5e35bd6589c9390\System.Management.ni.dll - ok
    20:11:18.0305 4060 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
    20:11:18.0305 4060 C:\Windows\System32\thumbcache.dll - ok
    20:11:18.0305 4060 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
    20:11:18.0305 4060 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
    20:11:18.0321 4060 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
    20:11:18.0321 4060 C:\Windows\System32\networkexplorer.dll - ok
    20:11:18.0321 4060 [ 10E4A1D2132CCB5C6759F038CDB6F3C9 ] C:\Windows\System32\calc.exe
    20:11:18.0321 4060 C:\Windows\System32\calc.exe - ok
    20:11:18.0337 4060 [ 241CBD0F099F3D68892D19879E53722D ] C:\Windows\System32\wbem\WmiPrvSE.exe
    20:11:18.0337 4060 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
    20:11:18.0337 4060 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
    20:11:18.0337 4060 C:\Windows\System32\wbem\cimwin32.dll - ok
    20:11:18.0352 4060 [ 90FDC54CE951C93D541925D7486F1314 ] C:\Windows\System32\framedynos.dll
    20:11:18.0352 4060 C:\Windows\System32\framedynos.dll - ok
    20:11:18.0352 4060 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
    20:11:18.0352 4060 C:\Windows\System32\wmi.dll - ok
    20:11:18.0368 4060 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
    20:11:18.0368 4060 C:\Windows\System32\wdmaud.drv - ok
    20:11:18.0368 4060 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
    20:11:18.0368 4060 C:\Windows\System32\ksuser.dll - ok
    20:11:18.0383 4060 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
    20:11:18.0383 4060 C:\Windows\System32\AudioSes.dll - ok
    20:11:18.0383 4060 [ 424877CB9D5517F980FF7BACA2EB379D ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    20:11:18.0383 4060 C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
    20:11:18.0399 4060 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
    20:11:18.0399 4060 C:\Windows\System32\stobject.dll - ok
    20:11:18.0399 4060 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
    20:11:18.0399 4060 C:\Windows\System32\batmeter.dll - ok
    20:11:18.0415 4060 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
    20:11:18.0415 4060 C:\Windows\System32\msacm32.dll - ok
    20:11:18.0415 4060 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
    20:11:18.0415 4060 C:\Windows\System32\msacm32.drv - ok
    20:11:18.0430 4060 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
    20:11:18.0430 4060 C:\Windows\System32\midimap.dll - ok
    20:11:18.0446 4060 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
    20:11:18.0446 4060 C:\Windows\System32\esent.dll - ok
    20:11:18.0446 4060 [ BF5ECAC9B15AF1424EC4E7B3280537EB ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    20:11:18.0446 4060 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
    20:11:18.0461 4060 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
    20:11:18.0461 4060 C:\Windows\System32\AudioEng.dll - ok
    20:11:18.0461 4060 [ 59BCE9F07985F8A4204F4D6554CFF708 ] C:\Windows\System32\regsvr32.exe
    20:11:18.0461 4060 C:\Windows\System32\regsvr32.exe - ok
    20:11:18.0477 4060 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
    20:11:18.0477 4060 C:\Windows\System32\dsound.dll - ok
    20:11:18.0477 4060 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
    20:11:18.0477 4060 C:\Windows\System32\prnfldr.dll - ok
    20:11:18.0493 4060 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
    20:11:18.0493 4060 C:\Windows\System32\AUDIOKSE.dll - ok
    20:11:18.0493 4060 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
    20:11:18.0493 4060 C:\Windows\System32\msimg32.dll - ok
    20:11:18.0508 4060 [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
    20:11:18.0508 4060 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
    20:11:18.0508 4060 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
    20:11:18.0508 4060 C:\Windows\System32\oledlg.dll - ok
    20:11:18.0524 4060 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
    20:11:18.0524 4060 C:\Windows\System32\DXP.dll - ok
    20:11:18.0524 4060 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
    20:11:18.0524 4060 C:\Windows\System32\Syncreg.dll - ok
    20:11:18.0539 4060 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
    20:11:18.0539 4060 C:\Windows\ehome\ehSSO.dll - ok
    20:11:18.0555 4060 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
    20:11:18.0555 4060 C:\Windows\System32\netshell.dll - ok
    20:11:18.0555 4060 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
    20:11:18.0555 4060 C:\Windows\System32\AltTab.dll - ok
    20:11:18.0571 4060 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
    20:11:18.0571 4060 C:\Windows\System32\WPDShServiceObj.dll - ok
    20:11:18.0571 4060 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
    20:11:18.0571 4060 C:\Windows\System32\PortableDeviceTypes.dll - ok
    20:11:18.0586 4060 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
    20:11:18.0586 4060 C:\Windows\System32\pnidui.dll - ok
    20:11:18.0586 4060 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
    20:11:18.0586 4060 C:\Windows\System32\QUTIL.DLL - ok
    20:11:18.0602 4060 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
    20:11:18.0602 4060 C:\Windows\System32\ActionCenter.dll - ok
    20:11:18.0602 4060 [ 234AFA322624B3203A2E720F08292B03 ] C:\Windows\System32\cscobj.dll
    20:11:18.0602 4060 C:\Windows\System32\cscobj.dll - ok
    20:11:18.0617 4060 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
    20:11:18.0617 4060 C:\Windows\System32\bthprops.cpl - ok
    20:11:18.0617 4060 [ C71E7ABB1A34E56CE73AE117C8DD566F ] C:\Windows\System32\ieframe.dll
    20:11:18.0617 4060 C:\Windows\System32\ieframe.dll - ok
    20:11:18.0633 4060 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
    20:11:18.0633 4060 C:\Windows\System32\oleacc.dll - ok
    20:11:18.0633 4060 [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
    20:11:18.0633 4060 C:\Windows\System32\RtkCfg64.dll - ok
    20:11:18.0649 4060 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
    20:11:18.0649 4060 C:\Windows\System32\srchadmin.dll - ok
    20:11:18.0649 4060 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
    20:11:18.0649 4060 C:\Windows\System32\FXSST.dll - ok
    20:11:18.0664 4060 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
    20:11:18.0664 4060 C:\Windows\System32\FXSAPI.dll - ok
    20:11:18.0664 4060 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
    20:11:18.0664 4060 C:\Windows\System32\FXSRESM.dll - ok
    20:11:18.0680 4060 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
    20:11:18.0680 4060 C:\Windows\System32\FXSSVC.exe - ok
    20:11:18.0680 4060 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
    20:11:18.0680 4060 C:\Windows\System32\SearchIndexer.exe - ok
    20:11:18.0695 4060 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
    20:11:18.0695 4060 C:\Windows\System32\tquery.dll - ok
    20:11:18.0695 4060 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
    20:11:18.0695 4060 C:\Windows\System32\mssrch.dll - ok
    20:11:18.0711 4060 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
    20:11:18.0711 4060 C:\Windows\System32\netman.dll - ok
    20:11:18.0727 4060 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
    20:11:18.0727 4060 C:\Windows\System32\msidle.dll - ok
    20:11:18.0727 4060 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
    20:11:18.0727 4060 C:\Windows\System32\mssprxy.dll - ok
    20:11:18.0742 4060 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
    20:11:18.0742 4060 C:\Windows\System32\rasdlg.dll - ok
    20:11:18.0742 4060 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
    20:11:18.0742 4060 C:\Windows\System32\en-US\tquery.dll.mui - ok
    20:11:18.0758 4060 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
    20:11:18.0758 4060 C:\Windows\System32\dot3api.dll - ok
    20:11:18.0758 4060 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
    20:11:18.0758 4060 C:\Windows\System32\wlanapi.dll - ok
    20:11:18.0773 4060 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
    20:11:18.0773 4060 C:\Windows\System32\wlanhlp.dll - ok
    20:11:18.0773 4060 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
    20:11:18.0773 4060 C:\Windows\System32\WWanAPI.dll - ok
    20:11:18.0789 4060 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
    20:11:18.0789 4060 C:\Windows\System32\wwapi.dll - ok
    20:11:18.0789 4060 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
    20:11:18.0789 4060 C:\Windows\System32\QAGENT.DLL - ok
    20:11:18.0805 4060 [ 3C3043E5BE7D5CE9BF0E88B5653C83AA ] C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe
    20:11:18.0805 4060 C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe - ok
    20:11:18.0805 4060 [ 2D898676A5CA5905E80829C1C43D388F ] C:\Windows\System32\RtkAPO64.dll
    20:11:18.0805 4060 C:\Windows\System32\RtkAPO64.dll - ok
    20:11:18.0820 4060 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
    20:11:18.0820 4060 C:\Windows\System32\WMALFXGFXDSP.dll - ok
    20:11:18.0820 4060 [ B3FEA295978FF112888A5582AA77F51E ] C:\Program Files (x86)\Innovative Solutions\DriverMax\sync.dll
    20:11:18.0820 4060 C:\Program Files (x86)\Innovative Solutions\DriverMax\sync.dll - ok
    20:11:18.0836 4060 [ 198552AEFECA69D646867EC8D792DE95 ] C:\Windows\SysWOW64\ddraw.dll
    20:11:18.0836 4060 C:\Windows\SysWOW64\ddraw.dll - ok
    20:11:18.0836 4060 [ 55E5B32AE8D1F51A63C82919656FD275 ] C:\Windows\SysWOW64\dciman32.dll
    20:11:18.0836 4060 C:\Windows\SysWOW64\dciman32.dll - ok
    20:11:18.0851 4060 [ BA32509D9B340162327B341013DE6522 ] C:\Windows\SysWOW64\tapi32.dll
    20:11:18.0851 4060 C:\Windows\SysWOW64\tapi32.dll - ok
    20:11:18.0851 4060 [ A81331D7EB6C5D1F7B1E4E4FC15F3EC0 ] C:\Windows\SysWOW64\srclient.dll
    20:11:18.0851 4060 C:\Windows\SysWOW64\srclient.dll - ok
    20:11:18.0867 4060 [ 971A36C4827AD1AE2A54E6407478921A ] C:\Windows\SysWOW64\spp.dll
    20:11:18.0867 4060 C:\Windows\SysWOW64\spp.dll - ok
    20:11:18.0883 4060 [ 13337A3FB17F2242487FD45488ED0485 ] C:\Windows\SysWOW64\vssapi.dll
    20:11:18.0883 4060 C:\Windows\SysWOW64\vssapi.dll - ok
    20:11:18.0883 4060 [ 1B2B3215F4B6B735813844AC1769E239 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe
    20:11:18.0883 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe - ok
    20:11:18.0898 4060 [ EB00A4E988042F2CB4855ED1ABB5B5BA ] C:\Program Files\BatteryBar\ShowBatteryBar.exe
    20:11:18.0898 4060 C:\Program Files\BatteryBar\ShowBatteryBar.exe - ok
    20:11:18.0898 4060 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
    20:11:18.0898 4060 C:\Windows\SysWOW64\atl.dll - ok
    20:11:18.0914 4060 [ B940289C83121046BD6A60ACC6028593 ] C:\Windows\SysWOW64\vsstrace.dll
    20:11:18.0914 4060 C:\Windows\SysWOW64\vsstrace.dll - ok
    20:11:18.0914 4060 [ 0E64DB250CAA69E2EF717696BCE651AA ] C:\Program Files\BatteryBar\BarExplorerHook.dll
    20:11:18.0914 4060 C:\Program Files\BatteryBar\BarExplorerHook.dll - ok
    20:11:18.0929 4060 [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
    20:11:18.0929 4060 C:\Windows\SysWOW64\olepro32.dll - ok
    20:11:18.0929 4060 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
    20:11:18.0929 4060 C:\Windows\SysWOW64\sxs.dll - ok
    20:11:18.0945 4060 [ 244C6722289F4869068992FD7D8A8832 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
    20:11:18.0945 4060 C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
    20:11:18.0945 4060 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
    20:11:18.0945 4060 C:\Windows\SysWOW64\wbemcomn.dll - ok
    20:11:18.0961 4060 [ 4AA01BD5CC7DA9888AF33C5FAB5BF1DD ] C:\Program Files (x86)\Spybot - Search & Destroy 2\vclimg150.bpl
    20:11:18.0961 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\vclimg150.bpl - ok
    20:11:18.0976 4060 [ D639B766AEBC5CCDA75447D4BCFB952E ] C:\Windows\SysWOW64\wbem\wbemprox.dll
    20:11:18.0976 4060 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
    20:11:18.0976 4060 [ 164EA9CDBA6B4CDD7731A23E7FD933FA ] C:\Windows\SysWOW64\wbemcomn2.dll
    20:11:18.0976 4060 C:\Windows\SysWOW64\wbemcomn2.dll - ok
    20:11:18.0992 4060 [ 8F220DCB4AA4B2A12ECE5B87C701170D ] C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl
    20:11:18.0992 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\VirtualTreesDXE150.bpl - ok
    20:11:19.0007 4060 [ 3E2EA277D6F5A437AE2D042EC76AB267 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
    20:11:19.0007 4060 C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
    20:11:19.0007 4060 [ 083649EF692A066880C9326020915AFE ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
    20:11:19.0007 4060 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
    20:11:19.0023 4060 [ 18F421D42906BDFFB4AA430834D368BE ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
    20:11:19.0023 4060 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
    20:11:19.0023 4060 [ 8C27C245FAF58E5EE4F94A0F9422DCD2 ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
    20:11:19.0023 4060 C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe - ok
    20:11:19.0039 4060 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
    20:11:19.0039 4060 C:\Windows\System32\SearchProtocolHost.exe - ok
    20:11:19.0039 4060 [ BB50B21FEE2A6F3E5FC92B330ECCF050 ] C:\Windows\SysWOW64\hhctrl.ocx
    20:11:19.0039 4060 C:\Windows\SysWOW64\hhctrl.ocx - ok
    20:11:19.0054 4060 [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
    20:11:19.0054 4060 C:\Windows\System32\webcheck.dll - ok
    20:11:19.0054 4060 [ 5A74597CC9007A25458F5F388A539B9D ] C:\Windows\SysWOW64\wbem\fastprox.dll
    20:11:19.0054 4060 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
    20:11:19.0070 4060 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
    20:11:19.0070 4060 C:\Windows\System32\imapi2.dll - ok
    20:11:19.0070 4060 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
    20:11:19.0070 4060 C:\Windows\System32\msshooks.dll - ok
    20:11:19.0085 4060 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
    20:11:19.0085 4060 C:\Windows\System32\SearchFilterHost.exe - ok
    20:11:19.0101 4060 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
    20:11:19.0101 4060 C:\Windows\SysWOW64\ntdsapi.dll - ok
    20:11:19.0101 4060 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
    20:11:19.0101 4060 C:\Windows\System32\hgcpl.dll - ok
    20:11:19.0117 4060 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
    20:11:19.0117 4060 C:\Windows\System32\mssph.dll - ok
    20:11:19.0117 4060 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
    20:11:19.0117 4060 C:\Windows\System32\security.dll - ok
    20:11:19.0132 4060 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
    20:11:19.0132 4060 C:\Windows\System32\schedcli.dll - ok
    20:11:19.0132 4060 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
    20:11:19.0132 4060 C:\Windows\System32\mapi32.dll - ok
    20:11:19.0148 4060 [ B5A4EBA9487F08BECC843A87422B8052 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    20:11:19.0148 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe - ok
    20:11:19.0148 4060 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    20:11:19.0148 4060 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
    20:11:19.0163 4060 [ FD049C25A168D3DE310D9207B7B6367B ] C:\Windows\SysWOW64\UIAutomationCore.dll
    20:11:19.0163 4060 C:\Windows\SysWOW64\UIAutomationCore.dll - ok
    20:11:19.0163 4060 [ 179EED57FED3C7422A559633641032BA ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
    20:11:19.0163 4060 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
    20:11:19.0179 4060 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
    20:11:19.0179 4060 C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
    20:11:19.0179 4060 [ 4CB25D0504423D7BCCB9C547E253A67F ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
    20:11:19.0179 4060 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
    20:11:19.0195 4060 [ A0E86BA4B3E56C1DC277BD7CCEC555DA ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDResources.dll
    20:11:19.0195 4060 C:\Program Files (x86)\Spybot - Search & Destroy 2\SDResources.dll - ok
    20:11:19.0210 4060 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
    20:11:19.0210 4060 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
    20:11:19.0210 4060 [ 5FDCAD2AD3F43E5FEE2BB730997FD48F ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop_Res.dll
    20:11:19.0210 4060 C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop_Res.dll - ok
    20:11:19.0226 4060 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
    20:11:19.0226 4060 C:\Windows\SysWOW64\rasapi32.dll - ok
    20:11:19.0226 4060 [ 64E211E0FDFCE4D186DF58BB7D0503BC ] C:\Windows\SysWOW64\gameux.dll
    20:11:19.0226 4060 C:\Windows\SysWOW64\gameux.dll - ok
    20:11:19.0241 4060 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
    20:11:19.0241 4060 C:\Windows\SysWOW64\rasman.dll - ok
    20:11:19.0241 4060 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
    20:11:19.0241 4060 C:\Windows\SysWOW64\rtutils.dll - ok
    20:11:19.0257 4060 [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
    20:11:19.0257 4060 C:\Windows\SysWOW64\wer.dll - ok
    20:11:19.0257 4060 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
    20:11:19.0257 4060 C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
    20:11:19.0273 4060 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
    20:11:19.0273 4060 C:\Windows\SysWOW64\linkinfo.dll - ok
    20:11:19.0273 4060 [ 13790C4FB6311ECE6D6763A7EC2313FB ] C:\Program Files\AVAST Software\Avast\aswAra.dll
    20:11:19.0273 4060 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
    20:11:19.0288 4060 [ F0E7DEC6F7A3610949BDED0CA8CCB3EA ] C:\Program Files\AVAST Software\Avast\aswData.dll
    20:11:19.0288 4060 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
    20:11:19.0304 4060 [ AB6E3DF509C6BD59062F685A40395C23 ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
    20:11:19.0304 4060 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
    20:11:19.0304 4060 [ AB04C6CE5DF23819B914F822E9AA0EDF ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
    20:11:19.0304 4060 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
    20:11:19.0319 4060 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
    20:11:19.0319 4060 C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
    20:11:19.0319 4060 [ 7E57B6D3D74CB9EF3055BA4E89F038D4 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx
    20:11:19.0319 4060 C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_5_502_146.ocx - ok
    20:11:19.0335 4060 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
    20:11:19.0335 4060 C:\Windows\System32\fdPHost.dll - ok
    20:11:19.0335 4060 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\Windows\SysWOW64\msvcp100.dll
    20:11:19.0335 4060 C:\Windows\SysWOW64\msvcp100.dll - ok
    20:11:19.0351 4060 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
    20:11:19.0351 4060 C:\Windows\System32\fdWSD.dll - ok
    20:11:19.0351 4060 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
    20:11:19.0351 4060 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
    20:11:19.0366 4060 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
    20:11:19.0366 4060 C:\Windows\System32\fdSSDP.dll - ok
    20:11:19.0382 4060 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\Windows\SysWOW64\msvcr100.dll
    20:11:19.0382 4060 C:\Windows\SysWOW64\msvcr100.dll - ok
    20:11:19.0382 4060 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
    20:11:19.0382 4060 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
    20:11:19.0397 4060 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
    20:11:19.0397 4060 C:\Windows\System32\fdProxy.dll - ok
    20:11:19.0397 4060 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
    20:11:19.0397 4060 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
    20:11:19.0413 4060 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
    20:11:19.0413 4060 C:\Windows\System32\P2P.dll - ok
    20:11:19.0413 4060 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
    20:11:19.0413 4060 C:\Windows\System32\ListSvc.dll - ok
    20:11:19.0429 4060 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
    20:11:19.0429 4060 C:\Windows\System32\pnrpsvc.dll - ok
    20:11:19.0429 4060 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
    20:11:19.0429 4060 C:\Windows\System32\wmdrmdev.dll - ok
    20:11:19.0444 4060 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
    20:11:19.0444 4060 C:\Windows\System32\IdListen.dll - ok
    20:11:19.0444 4060 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
    20:11:19.0444 4060 C:\Windows\System32\hgprint.dll - ok
    20:11:19.0460 4060 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
    20:11:19.0460 4060 C:\Windows\System32\drmv2clt.dll - ok
    20:11:19.0460 4060 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
    20:11:19.0460 4060 C:\Windows\System32\blackbox.dll - ok
    20:11:19.0475 4060 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
    20:11:19.0475 4060 C:\Windows\System32\p2psvc.dll - ok
    20:11:19.0475 4060 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
    20:11:19.0475 4060 C:\Windows\System32\upnp.dll - ok
    20:11:19.0491 4060 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
    20:11:19.0491 4060 C:\Windows\System32\P2PGraph.dll - ok
    20:11:19.0491 4060 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
    20:11:19.0491 4060 C:\Windows\System32\ssdpsrv.dll - ok
    20:11:19.0507 4060 [ C1D0691BE5DDB0C230D8370BD96BBE8B ] C:\Program Files\Internet Explorer\ieproxy.dll
    20:11:19.0507 4060 C:\Program Files\Internet Explorer\ieproxy.dll - ok
    20:11:19.0522 4060 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
    20:11:19.0522 4060 C:\Windows\System32\wmp.dll - ok
    20:11:19.0522 4060 [ 0E85C11F8850D524B02181C6E02BA9AE ] C:\Windows\SysWOW64\dsound.dll
    20:11:19.0522 4060 C:\Windows\SysWOW64\dsound.dll - ok
    20:11:19.0538 4060 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
    20:11:19.0538 4060 C:\Windows\SysWOW64\mscms.dll - ok
    20:11:19.0538 4060 [ 35A75C922D5827944CBD0F013186F0EF ] C:\Program Files\AVAST Software\Avast\defs\13012101\uiext.dll
    20:11:19.0538 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\uiext.dll - ok
    20:11:19.0553 4060 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
    20:11:19.0553 4060 C:\Windows\System32\wmploc.DLL - ok
    20:11:19.0553 4060 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
    20:11:19.0553 4060 C:\Windows\System32\wmpps.dll - ok
    20:11:19.0569 4060 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
    20:11:19.0569 4060 C:\Windows\System32\wmpmde.dll - ok
    20:11:19.0569 4060 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
    20:11:19.0569 4060 C:\Windows\System32\WinSATAPI.dll - ok
    20:11:19.0585 4060 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
    20:11:19.0585 4060 C:\Windows\System32\MSMPEG2ENC.DLL - ok
    20:11:19.0600 4060 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
    20:11:19.0600 4060 C:\Windows\System32\devenum.dll - ok
    20:11:19.0600 4060 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
    20:11:19.0600 4060 C:\Windows\System32\msdmo.dll - ok
    20:11:19.0616 4060 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
    20:11:19.0616 4060 C:\Windows\System32\upnphost.dll - ok
    20:11:19.0616 4060 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
    20:11:19.0616 4060 C:\Windows\System32\wbem\wmiprov.dll - ok
    20:11:19.0631 4060 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
    20:11:19.0631 4060 C:\Windows\System32\wbemcomn.dll - ok
    20:11:19.0631 4060 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
    20:11:19.0631 4060 C:\Windows\System32\udhisapi.dll - ok
    20:11:19.0647 4060 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
    20:11:19.0647 4060 C:\Windows\System32\drprov.dll - ok
    20:11:19.0647 4060 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
    20:11:19.0647 4060 C:\Windows\System32\ntlanman.dll - ok
    20:11:19.0663 4060 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
    20:11:19.0663 4060 C:\Windows\System32\davclnt.dll - ok
    20:11:19.0663 4060 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
    20:11:19.0663 4060 C:\Windows\System32\davhlpr.dll - ok
    20:11:19.0678 4060 [ 7F19838AC317C34FCED020BE529AF71E ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
    20:11:19.0678 4060 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
    20:11:19.0678 4060 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
    20:11:19.0678 4060 C:\Windows\SysWOW64\netprofm.dll - ok
    20:11:19.0694 4060 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
    20:11:19.0694 4060 C:\Windows\SysWOW64\npmproxy.dll - ok
    20:11:19.0694 4060 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
    20:11:19.0694 4060 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
    20:11:19.0709 4060 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
    20:11:19.0709 4060 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
    20:11:19.0709 4060 [ 0D286C0FE561D1A7EB30E83A0FF305B2 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
    20:11:19.0709 4060 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
    20:11:19.0725 4060 [ 62CBF36E3E10BAA74224BC7A6DD998B5 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
    20:11:19.0725 4060 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
    20:11:19.0725 4060 [ F9D038A8C2BDC3AE2548150A7AED0F8A ] C:\Windows\SysWOW64\ieui.dll
    20:11:19.0725 4060 C:\Windows\SysWOW64\ieui.dll - ok
    20:11:19.0741 4060 [ 1D4127FE151165C5FB9C0EED8701A3D1 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
    20:11:19.0741 4060 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
    20:11:19.0741 4060 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
    20:11:19.0741 4060 C:\Windows\SysWOW64\mssprxy.dll - ok
    20:11:19.0756 4060 [ 07F649CD36F266BBE33B814FA678AA43 ] C:\Windows\SysWOW64\mshtml.dll
    20:11:19.0756 4060 C:\Windows\SysWOW64\mshtml.dll - ok
    20:11:19.0756 4060 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
    20:11:19.0756 4060 C:\Windows\SysWOW64\mlang.dll - ok
    20:11:19.0772 4060 [ 5C4CB4086FB83115B153E47ADD961A0C ] C:\Windows\System32\FntCache.dll
    20:11:19.0772 4060 C:\Windows\System32\FntCache.dll - ok
    20:11:19.0787 4060 [ A3FA99A16F10D44EDB7A8C340FA2EE1B ] C:\Windows\SysWOW64\jscript9.dll
    20:11:19.0787 4060 C:\Windows\SysWOW64\jscript9.dll - ok
    20:11:19.0787 4060 [ 124715CD10C62A78404F1A3B1048D062 ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
    20:11:19.0787 4060 C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
    20:11:19.0803 4060 [ EE9D715AF1B928982F417238B9914484 ] C:\Windows\SysWOW64\ieapfltr.dll
    20:11:19.0803 4060 C:\Windows\SysWOW64\ieapfltr.dll - ok
    20:11:19.0803 4060 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
    20:11:19.0803 4060 C:\Windows\SysWOW64\msimtf.dll - ok
    20:11:19.0819 4060 [ 9013599B12923A45C029C34E8D2211AC ] C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll
    20:11:19.0819 4060 C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll - ok
    20:11:19.0819 4060 [ 50AC7EB20A827C51DC4788E422483247 ] C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\agcore.dll
    20:11:19.0819 4060 C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\agcore.dll - ok
    20:11:19.0834 4060 [ 39E9AACC4C5FB3C3C0B12DE6D491553D ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
    20:11:19.0834 4060 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
    20:11:19.0834 4060 [ 0411B7958C524BB2E91EE1B3035FE321 ] C:\Windows\SysWOW64\dxgi.dll
    20:11:19.0834 4060 C:\Windows\SysWOW64\dxgi.dll - ok
    20:11:19.0850 4060 [ 35CEDE6439FF0D8903223A0817FFE46C ] C:\Windows\SysWOW64\d2d1.dll
    20:11:19.0850 4060 C:\Windows\SysWOW64\d2d1.dll - ok
    20:11:19.0850 4060 [ A29D734F650F958424743BE3BAA052C8 ] C:\Windows\SysWOW64\DWrite.dll
    20:11:19.0850 4060 C:\Windows\SysWOW64\DWrite.dll - ok
    20:11:19.0865 4060 [ 2DE90400A63818FA38C4C5C9ADB166BF ] C:\Windows\SysWOW64\d3d10_1.dll
    20:11:19.0865 4060 C:\Windows\SysWOW64\d3d10_1.dll - ok
    20:11:19.0865 4060 [ 9C36A3CA80F9B204C670336D344F5DF8 ] C:\Windows\SysWOW64\d3d10_1core.dll
    20:11:19.0865 4060 C:\Windows\SysWOW64\d3d10_1core.dll - ok
    20:11:19.0881 4060 [ 78B7A3BDA25C90DAA50D36A56A8D1351 ] C:\Windows\SysWOW64\d3d10warp.dll
    20:11:19.0881 4060 C:\Windows\SysWOW64\d3d10warp.dll - ok
    20:11:19.0897 4060 [ 7AFE4B4CCCF2DE579404842D9EB815F5 ] C:\Windows\SysWOW64\atiumdag.dll
    20:11:19.0897 4060 C:\Windows\SysWOW64\atiumdag.dll - ok
    20:11:19.0897 4060 [ 35AAE2E841AA1A949775168E119482C9 ] C:\Windows\SysWOW64\msls31.dll
    20:11:19.0897 4060 C:\Windows\SysWOW64\msls31.dll - ok
    20:11:19.0912 4060 [ 2572E1F0254E2267E97DE1B15D099EC4 ] C:\Windows\SysWOW64\d3d10.dll
    20:11:19.0912 4060 C:\Windows\SysWOW64\d3d10.dll - ok
    20:11:19.0912 4060 [ 547F78746F20901C770E8653B242217C ] C:\Windows\SysWOW64\d3d10core.dll
    20:11:19.0912 4060 C:\Windows\SysWOW64\d3d10core.dll - ok
    20:11:19.0928 4060 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
    20:11:19.0928 4060 C:\Windows\SysWOW64\schannel.dll - ok
    20:11:19.0928 4060 [ 243974EC02F7AE49E4179C54624143AB ] C:\Windows\SysWOW64\MMDevAPI.dll
    20:11:19.0928 4060 C:\Windows\SysWOW64\MMDevAPI.dll - ok
    20:11:19.0943 4060 [ C940F2F5C60B3727C5F18840735B229C ] C:\Windows\SysWOW64\AudioSes.dll
    20:11:19.0943 4060 C:\Windows\SysWOW64\AudioSes.dll - ok
    20:11:19.0943 4060 [ CA493A92DA9880B6F1A89C3DBD54BA5B ] C:\Windows\SysWOW64\dxtrans.dll
    20:11:19.0943 4060 C:\Windows\SysWOW64\dxtrans.dll - ok
    20:11:19.0959 4060 [ BAB9EF9A340113666F678AA2474904B6 ] C:\Windows\SysWOW64\ddrawex.dll
    20:11:19.0959 4060 C:\Windows\SysWOW64\ddrawex.dll - ok
    20:11:19.0959 4060 [ 4312DEBDACBE338F0B90E7F08E7672BE ] C:\Windows\SysWOW64\dxtmsft.dll
    20:11:19.0959 4060 C:\Windows\SysWOW64\dxtmsft.dll - ok
    20:11:19.0975 4060 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
    20:11:19.0975 4060 C:\Windows\System32\qmgr.dll - ok
    20:11:19.0975 4060 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
    20:11:19.0975 4060 C:\Windows\System32\bitsperf.dll - ok
    20:11:19.0990 4060 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
    20:11:19.0990 4060 C:\Windows\System32\bitsigd.dll - ok
    20:11:19.0990 4060 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    20:11:19.0990 4060 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
    20:11:20.0006 4060 [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
    20:11:20.0006 4060 C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
    20:11:20.0006 4060 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
    20:11:20.0006 4060 C:\Windows\SysWOW64\mscoree.dll - ok
    20:11:20.0021 4060 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    20:11:20.0021 4060 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
    20:11:20.0037 4060 [ 2368136FF8B2EDDADD5D81EE04693A36 ] C:\Program Files (x86)\Google\Update\1.3.21.124\goopdateres_en.dll
    20:11:20.0037 4060 C:\Program Files (x86)\Google\Update\1.3.21.124\goopdateres_en.dll - ok
    20:11:20.0037 4060 [ E17E0188BB90FAE42D83E98707EFA59C ] C:\Windows\System32\sppsvc.exe
    20:11:20.0037 4060 C:\Windows\System32\sppsvc.exe - ok
    20:11:20.0053 4060 [ 31B0448CC0694378106582F46D0D07E4 ] C:\Windows\SysWOW64\url.dll
    20:11:20.0053 4060 C:\Windows\SysWOW64\url.dll - ok
    20:11:20.0053 4060 [ 2898035F522BA2989BBA8B9CFB020FD2 ] C:\Program Files\AVAST Software\Avast\defs\13012101\aspColl.dll
    20:11:20.0053 4060 C:\Program Files\AVAST Software\Avast\defs\13012101\aspColl.dll - ok
    20:11:20.0068 4060 [ FFF95479C7AB1550F0750A5D01744211 ] C:\Windows\System32\drivers\spsys.sys
    20:11:20.0068 4060 C:\Windows\System32\drivers\spsys.sys - ok
    20:11:20.0068 4060 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
    20:11:20.0068 4060 C:\Program Files\Windows Defender\MpSvc.dll - ok
    20:11:20.0084 4060 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
    20:11:20.0084 4060 C:\Program Files\Windows Defender\MpClient.dll - ok
    20:11:20.0084 4060 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
    20:11:20.0084 4060 C:\Windows\System32\wuaueng.dll - ok
    20:11:20.0099 4060 [ F6F22291024906E43D135A4B1705FEAC ] C:\Windows\System32\sppwinob.dll
    20:11:20.0099 4060 C:\Windows\System32\sppwinob.dll - ok
    20:11:20.0099 4060 [ B24450E38722F69F338533A36ECFFC29 ] C:\Windows\System32\RacEngn.dll
    20:11:20.0099 4060 C:\Windows\System32\RacEngn.dll - ok
    20:11:20.0115 4060 [ AA61A7047E854A9E914FDD17C2F35675 ] C:\Windows\System32\sqlceoledb30.dll
    20:11:20.0115 4060 C:\Windows\System32\sqlceoledb30.dll - ok
    20:11:20.0115 4060 [ 9C75CB8B98610F0CD85D99BB5876308B ] C:\Windows\System32\sqlcese30.dll
    20:11:20.0115 4060 C:\Windows\System32\sqlcese30.dll - ok
    20:11:20.0131 4060 [ E5744D18C88737C6356D0A8D6D49D512 ] C:\Windows\System32\sqlceqp30.dll
    20:11:20.0131 4060 C:\Windows\System32\sqlceqp30.dll - ok
    20:11:20.0146 4060 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
    20:11:20.0146 4060 C:\Windows\System32\mspatcha.dll - ok
    20:11:20.0146 4060 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
    20:11:20.0146 4060 C:\Windows\System32\wups2.dll - ok
    20:11:20.0162 4060 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
    20:11:20.0162 4060 C:\Program Files\Windows Defender\MpRTP.dll - ok
    20:11:20.0162 4060 [ 2B373B5F7E36B5ED5DA176D4400EF091 ] C:\Windows\System32\sppobjs.dll
    20:11:20.0162 4060 C:\Windows\System32\sppobjs.dll - ok
    20:11:20.0177 4060 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
    20:11:20.0177 4060 C:\Windows\System32\tdh.dll - ok
    20:11:20.0177 4060 [ 30042487E83BF3B518DD9B92A2F52F42 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpengine.dll
    20:11:20.0177 4060 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpengine.dll - ok
    20:11:20.0193 4060 [ 4C1A82E9362DF1282355FBA3037DF0C4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpasbase.vdm
    20:11:20.0193 4060 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpasbase.vdm - ok
    20:11:20.0193 4060 [ 769765CE2CC62867468CEA93969B2242 ] C:\Windows\System32\drivers\asyncmac.sys
    20:11:20.0193 4060 C:\Windows\System32\drivers\asyncmac.sys - ok
    20:11:20.0209 4060 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
    20:11:20.0209 4060 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
    20:11:20.0209 4060 [ 40B82688907A7DBA4DB3B5ADDE3EAB3B ] C:\Windows\SysWOW64\mfplat.dll
    20:11:20.0209 4060 C:\Windows\SysWOW64\mfplat.dll - ok
    20:11:20.0224 4060 [ 139D3AB6AA920C34C50CBFFB9EB7D222 ] C:\Windows\SysWOW64\avrt.dll
    20:11:20.0224 4060 C:\Windows\SysWOW64\avrt.dll - ok
    20:11:20.0224 4060 [ D45037FE4F25DC9B60B9757655A61E15 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpasdlta.vdm
    20:11:20.0224 4060 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2B45CB54-3DAB-4DEE-A59E-8C2D026E5F5B}\mpasdlta.vdm - ok
    20:11:20.0240 4060 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
    20:11:20.0240 4060 C:\Program Files\Windows Defender\MsMpLics.dll - ok
    20:11:20.0255 4060 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
    20:11:20.0255 4060 C:\Windows\System32\wscapi.dll - ok
    20:11:20.0255 4060 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
    20:11:20.0255 4060 C:\Windows\System32\wscisvif.dll - ok
    20:11:20.0271 4060 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
    20:11:20.0271 4060 C:\Windows\System32\wscproxystub.dll - ok
    20:11:20.0271 4060 [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
    20:11:20.0271 4060 C:\Windows\System32\wscinterop.dll - ok
    20:11:20.0287 4060 [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
    20:11:20.0287 4060 C:\Windows\System32\wscui.cpl - ok
    20:11:20.0287 4060 [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
    20:11:20.0287 4060 C:\Windows\System32\werconcpl.dll - ok
    20:11:20.0302 4060 [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
    20:11:20.0302 4060 C:\Windows\System32\wercplsupport.dll - ok
    20:11:20.0302 4060 [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
    20:11:20.0302 4060 C:\Windows\System32\hcproviders.dll - ok
    20:11:20.0318 4060 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
    20:11:20.0318 4060 C:\Windows\System32\wbem\wmipcima.dll - ok
    20:11:20.0318 4060 [ 01E2855FB06C422E721D890AF201C2D7 ] C:\Windows\System32\NaturalLanguage6.dll
    20:11:20.0318 4060 C:\Windows\System32\NaturalLanguage6.dll - ok
    20:11:20.0333 4060 [ 701D9F5F3F21580936638D5C5F86B460 ] C:\Windows\System32\NlsData0009.dll
    20:11:20.0333 4060 C:\Windows\System32\NlsData0009.dll - ok
    20:11:20.0333 4060 [ 148A733B93A2AC104280495DA09D3CC2 ] C:\Windows\System32\NlsLexicons0009.dll
    20:11:20.0333 4060 C:\Windows\System32\NlsLexicons0009.dll - ok
    20:11:20.0349 4060 [ 76D86E65FF7D10292886A1F2DB93A911 ] C:\Windows\System32\ELSCore.dll
    20:11:20.0349 4060 C:\Windows\System32\ELSCore.dll - ok
    20:11:20.0349 4060 [ 12929BDE96189F4E968AD035573424F0 ] C:\Windows\System32\elsTrans.dll
    20:11:20.0349 4060 C:\Windows\System32\elsTrans.dll - ok
    20:11:20.0365 4060 [ AEE087CF7423BA44CC2DE03CC565E399 ] C:\Windows\System32\elslad.dll
    20:11:20.0365 4060 C:\Windows\System32\elslad.dll - ok
    20:11:20.0380 4060 [ 51272A935F4F482A70F2A7D1C3A67AEE ] C:\Windows\System32\NlsData000c.dll
    20:11:20.0380 4060 C:\Windows\System32\NlsData000c.dll - ok
    20:11:20.0380 4060 [ C2142407A2BE3462247500849B3FF8C7 ] C:\Windows\System32\NlsLexicons000c.dll
    20:11:20.0380 4060 C:\Windows\System32\NlsLexicons000c.dll - ok
    20:11:20.0396 4060 [ 11542EC1F1C53EDB3CCF5AADF4C9972F ] C:\Windows\System32\NlsData0000.dll
    20:11:20.0396 4060 C:\Windows\System32\NlsData0000.dll - ok
    20:11:20.0396 4060 [ E503E15C88B4BBDA3F6345E34FED3E92 ] C:\Windows\System32\mssvp.dll
    20:11:20.0396 4060 C:\Windows\System32\mssvp.dll - ok
    20:11:20.0411 4060 [ A42FBC61385A5F5F444209EE94D89F27 ] C:\Windows\System32\NlsData0021.dll
    20:11:20.0411 4060 C:\Windows\System32\NlsData0021.dll - ok
    20:11:20.0411 4060 [ E5283AFD7590ECC37F8D62C4D6F1FB48 ] C:\Windows\System32\NlsLexicons0021.dll
    20:11:20.0411 4060 C:\Windows\System32\NlsLexicons0021.dll - ok
    20:11:20.0427 4060 [ 0C11E5C76C48B4AD33B91F6FEEAFF51F ] C:\Windows\System32\chtbrkr.dll
    20:11:20.0427 4060 C:\Windows\System32\chtbrkr.dll - ok
    20:11:20.0427 4060 [ 97BCD420B06B28B1B99CF14FD705FC74 ] C:\Windows\System32\NlsData0011.dll
    20:11:20.0427 4060 C:\Windows\System32\NlsData0011.dll - ok
    20:11:20.0443 4060 [ F95BEF6D4AFB35CACB8DAF5FF1DF8769 ] C:\Windows\System32\NlsLexicons0011.dll
    20:11:20.0443 4060 C:\Windows\System32\NlsLexicons0011.dll - ok
    20:11:20.0443 4060 [ 6D6E4767F73E9F489F4D643A95C1D5D8 ] C:\Windows\System32\NlsModels0011.dll
    20:11:20.0443 4060 C:\Windows\System32\NlsModels0011.dll - ok
    20:11:20.0458 4060 [ 5B5EEF93F8136A8DA20D71731F6518EE ] C:\Windows\System32\korwbrkr.dll
    20:11:20.0458 4060 C:\Windows\System32\korwbrkr.dll - ok
    20:11:20.0458 4060 [ 80AD0F52B0ED60373DB6C9F485A22564 ] C:\Windows\System32\wbem\WMIADAP.exe
    20:11:20.0458 4060 C:\Windows\System32\wbem\WMIADAP.exe - ok
    20:11:20.0474 4060 [ A39138C1FEF0D5C401BF7FE8488A1F0F ] C:\Windows\System32\chsbrkr.dll
    20:11:20.0474 4060 C:\Windows\System32\chsbrkr.dll - ok
    20:11:20.0489 4060 [ 9FE3ED67345F0FF829A4A53B90E09672 ] C:\Windows\System32\loadperf.dll
    20:11:20.0489 4060 C:\Windows\System32\loadperf.dll - ok
    20:11:20.0489 4060 ============================================================
    20:11:20.0489 4060 Scan finished
    20:11:20.0489 4060 ============================================================
    20:11:20.0505 4528 Detected object count: 1
    20:11:20.0505 4528 Actual detected object count: 1
    20:11:37.0322 4528 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
    20:11:37.0322 4528 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
    20:48:01.0232 3484 Deinitialize success

    .Thank You

Page 1 of 3 123 LastLast