Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

System crashes, repeated deletion of Trojan.Win32.Generic!BT, email sending spam


  • Please log in to reply
12 replies to this topic

#1 rottsimba

rottsimba

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 10 March 2013 - 11:12 PM

Hey everybody,

 

So I have a bit of an issue with my computer...

 

About a month and a half ago, I started realizing one of my emails (Yahoo)  was sending out spam. I changed my password multiple times, but it kept sending out. The emails didn't appear in my sent box, but I had myself on my contacts list, and emails from myself kept popping up in my spam box. I checked the full headers, and it was in fact coming from my email, but from an IP somewhere in Massachusetts...

 

Yesterday, my Ad-Aware kept saying that it detected a malicious process, and after the following scan, would quarintine multiple instances of Trojan.Win32.Generic!BT. I restarted my computer, but it kept popping up.

 

When trying to watch a movie with my partner, Windows Media Player crashed, and when I tried to open a different .AVI file, it crashed again. (To my knowledge, my computer is fully updated)

 

Then, after all of this, when I was trying to weed through the files on here, my computer just crashes. Black screen, no response. I have to manually power down and reboot in safe mode w/ networking to be able to post on here.

 

I can't seem to figure out how whatever is in my system got through...

So, any help is greatly appreciated!

 

[Running Windows 7x64 SP1]



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:14 AM

Posted 10 March 2013 - 11:13 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


 



#3 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 08:03 PM

Kept getting the "post too long" error, so I have to break it up (At least the TDSS one). Also, my Kapersky found a trojan.win32.genome.ammya earlier today.

 

00:30:22.0937 4980  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
00:30:25.0215 4980  ============================================================
00:30:25.0215 4980  Current date / time: 2013/03/11 00:30:25.0215
00:30:25.0215 4980  SystemInfo:
00:30:25.0215 4980  
00:30:25.0215 4980  OS Version: 6.1.7601 ServicePack: 1.0
00:30:25.0215 4980  Product type: Workstation
00:30:25.0215 4980  ComputerName: ACCESS-DENIED
00:30:25.0215 4980  UserName: Kayleigh
00:30:25.0215 4980  Windows directory: C:\Windows
00:30:25.0215 4980  System windows directory: C:\Windows
00:30:25.0215 4980  Running under WOW64
00:30:25.0215 4980  Processor architecture: Intel x64
00:30:25.0215 4980  Number of processors: 2
00:30:25.0215 4980  Page size: 0x1000
00:30:25.0215 4980  Boot type: Normal boot
00:30:25.0215 4980  ============================================================
00:30:45.0994 4980  BG loaded
00:30:46.0805 4980  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:30:46.0821 4980  ============================================================
00:30:46.0821 4980  \Device\Harddisk0\DR0:
00:30:46.0821 4980  MBR partitions:
00:30:46.0821 4980  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
00:30:46.0821 4980  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x22EBA800
00:30:46.0821 4980  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x22F1E800, BlocksNum 0x1D20000
00:30:46.0821 4980  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x24C3E800, BlocksNum 0x7EFAB0
00:30:46.0821 4980  ============================================================
00:30:46.0899 4980  C: <-> \Device\Harddisk0\DR0\Partition2
00:30:47.0086 4980  D: <-> \Device\Harddisk0\DR0\Partition3
00:30:47.0164 4980  E: <-> \Device\Harddisk0\DR0\Partition4
00:30:47.0164 4980  ============================================================
00:30:47.0164 4980  Initialize success
00:30:47.0164 4980  ============================================================
00:31:05.0498 2964  ============================================================
00:31:05.0498 2964  Scan started
00:31:05.0498 2964  Mode: Manual; TDLFS;
00:31:05.0498 2964  ============================================================
00:33:03.0467 2964  ================ Scan system memory ========================
00:33:03.0467 2964  System memory - ok
00:33:03.0467 2964  ================ Scan services =============================
00:34:22.0921 2964  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
00:34:28.0742 2964  1394ohci - ok
00:34:29.0438 2964  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
00:34:29.0843 2964  ACPI - ok
00:34:30.0854 2964  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
00:34:32.0217 2964  AcpiPmi - ok
00:34:39.0462 2964  [ D22791FCF6AD10A5591C719C37457A24 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
00:34:39.0500 2964  Ad-Aware Service - ok
00:34:43.0949 2964  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:34:43.0961 2964  AdobeARMservice - ok
00:35:35.0047 2964  [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:35:35.0052 2964  AdobeFlashPlayerUpdateSvc - ok
00:35:36.0375 2964  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
00:35:37.0768 2964  adp94xx - ok
00:35:39.0378 2964  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
00:35:41.0451 2964  adpahci - ok
00:35:42.0775 2964  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
00:35:44.0695 2964  adpu320 - ok
00:35:45.0876 2964  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
00:35:45.0880 2964  AeLookupSvc - ok
00:35:49.0536 2964  [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
00:35:49.0934 2964  AERTFilters - ok
00:35:51.0004 2964  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
00:35:51.0011 2964  AFD - ok
00:35:51.0963 2964  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
00:35:52.0792 2964  agp440 - ok
00:35:53.0821 2964  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
00:35:54.0228 2964  ALG - ok
00:35:55.0591 2964  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
00:35:56.0229 2964  aliide - ok
00:35:57.0599 2964  [ 715B02B892C5BA46471EFC8DCD2AE934 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
00:35:57.0885 2964  AMD External Events Utility - ok
00:36:00.0497 2964  AMD FUEL Service - ok
00:36:01.0553 2964  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
00:36:02.0182 2964  amdide - ok
00:36:02.0679 2964  [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
00:36:03.0755 2964  amdiox64 - ok
00:36:05.0406 2964  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
00:36:06.0416 2964  AmdK8 - ok
00:36:10.0272 2964  [ 7054D5D028B6CA727D0575192D633FA9 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
00:36:10.0851 2964  amdkmdag - ok
00:36:12.0542 2964  [ 1CD2BC11467FD5FC7BE9827A9F3D8566 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
00:36:12.0878 2964  amdkmdap - ok
00:36:13.0669 2964  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
00:36:13.0671 2964  AmdPPM - ok
00:36:14.0676 2964  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
00:36:18.0292 2964  amdsata - ok
00:36:19.0253 2964  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
00:36:22.0261 2964  amdsbs - ok
00:36:23.0230 2964  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
00:36:23.0764 2964  amdxata - ok
00:36:24.0267 2964  [ F9D46B6B322708BD5AFCC8767EBDC901 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
00:36:24.0270 2964  amd_sata - ok
00:36:24.0542 2964  [ 329CC9C7E20DEEBCD4CD10816193EF14 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
00:36:25.0615 2964  amd_xata - ok
00:36:26.0555 2964  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
00:36:27.0166 2964  AppID - ok
00:36:27.0530 2964  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
00:36:27.0723 2964  AppIDSvc - ok
00:36:28.0675 2964  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
00:36:28.0994 2964  Appinfo - ok
00:36:32.0578 2964  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:36:32.0582 2964  Apple Mobile Device - ok
00:36:33.0302 2964  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
00:36:34.0218 2964  arc - ok
00:36:35.0220 2964  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
00:36:36.0119 2964  arcsas - ok
00:36:40.0882 2964  aspnet_state - ok
00:36:41.0806 2964  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
00:36:42.0468 2964  AsyncMac - ok
00:36:43.0056 2964  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
00:36:43.0477 2964  atapi - ok
00:36:44.0714 2964  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:36:44.0990 2964  AudioEndpointBuilder - ok
00:36:45.0147 2964  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
00:36:45.0156 2964  AudioSrv - ok
00:36:52.0370 2964  [ 587EFD6A3A30A35A27904D21AE1FB882 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
00:36:52.0376 2964  AVP - ok
00:36:53.0346 2964  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
00:36:53.0509 2964  AxInstSV - ok
00:36:53.0896 2964  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
00:36:54.0844 2964  b06bdrv - ok
00:36:55.0561 2964  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
00:36:56.0260 2964  b57nd60a - ok
00:36:57.0459 2964  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
00:37:00.0209 2964  BCM43XX - ok
00:37:00.0567 2964  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
00:37:00.0703 2964  BDESVC - ok
00:37:01.0126 2964  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
00:37:01.0261 2964  Beep - ok
00:37:02.0438 2964  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
00:37:02.0629 2964  BFE - ok
00:37:02.0910 2964  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
00:37:03.0832 2964  BITS - ok
00:37:09.0629 2964  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
00:37:09.0782 2964  blbdrive - ok
00:37:10.0545 2964  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
00:37:10.0631 2964  Bonjour Service - ok
00:37:10.0918 2964  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
00:37:11.0093 2964  bowser - ok
00:37:11.0489 2964  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
00:37:11.0615 2964  BrFiltLo - ok
00:37:11.0813 2964  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
00:37:12.0273 2964  BrFiltUp - ok
00:37:12.0371 2964  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
00:37:12.0448 2964  Browser - ok
00:37:12.0652 2964  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
00:37:13.0082 2964  Brserid - ok
00:37:13.0299 2964  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
00:37:13.0560 2964  BrSerWdm - ok
00:37:13.0716 2964  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
00:37:13.0834 2964  BrUsbMdm - ok
00:37:14.0046 2964  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
00:37:15.0993 2964  BrUsbSer - ok
00:37:16.0327 2964  [ FF7C57973EEAD140062238C5A0B7D455 ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
00:37:16.0624 2964  BTCFilterService - ok
00:37:17.0165 2964  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
00:37:17.0635 2964  BTHMODEM - ok
00:37:18.0477 2964  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
00:37:18.0755 2964  bthserv - ok
00:37:19.0041 2964  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
00:37:19.0097 2964  cdfs - ok
00:37:19.0785 2964  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
00:37:19.0896 2964  cdrom - ok
00:37:20.0444 2964  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
00:37:20.0535 2964  CertPropSvc - ok
00:37:20.0836 2964  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
00:37:20.0913 2964  circlass - ok
00:37:21.0000 2964  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
00:37:21.0136 2964  CLFS - ok
00:37:21.0311 2964  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:37:22.0219 2964  clr_optimization_v2.0.50727_32 - ok
00:37:23.0990 2964  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:37:24.0237 2964  clr_optimization_v2.0.50727_64 - ok
00:37:26.0703 2964  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:37:28.0539 2964  clr_optimization_v4.0.30319_32 - ok
00:37:30.0450 2964  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:37:30.0613 2964  clr_optimization_v4.0.30319_64 - ok
00:37:30.0800 2964  clwvd - ok
00:37:31.0025 2964  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
00:37:31.0104 2964  CmBatt - ok
00:37:31.0277 2964  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
00:37:31.0653 2964  cmdide - ok
00:37:31.0826 2964  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
00:37:31.0943 2964  CNG - ok
00:37:32.0216 2964  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
00:37:32.0632 2964  Compbatt - ok
00:37:32.0886 2964  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
00:37:32.0978 2964  CompositeBus - ok
00:37:33.0090 2964  COMSysApp - ok
00:37:47.0326 2964  [ F46FF007508C32788D8D5F32F27C25C7 ] CoordinatorServiceHost C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
00:37:48.0787 2964  CoordinatorServiceHost - ok
00:37:49.0021 2964  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
00:37:50.0541 2964  crcdisk - ok
00:37:51.0744 2964  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
00:37:52.0029 2964  CryptSvc - ok
00:37:53.0522 2964  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
00:37:54.0677 2964  cvhsvc - ok
00:37:54.0941 2964  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
00:37:55.0154 2964  DcomLaunch - ok
00:37:55.0678 2964  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
00:37:55.0963 2964  defragsvc - ok
00:37:56.0285 2964  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
00:37:56.0379 2964  DfsC - ok
00:37:56.0814 2964  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
00:37:57.0039 2964  Dhcp - ok
00:37:57.0132 2964  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
00:37:57.0240 2964  discache - ok
00:37:57.0927 2964  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
00:37:58.0193 2964  Disk - ok
00:37:58.0404 2964  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
00:37:58.0622 2964  Dnscache - ok
00:37:58.0860 2964  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
00:37:59.0150 2964  dot3svc - ok
00:38:00.0096 2964  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
00:38:02.0117 2964  Dot4 - ok
00:38:02.0690 2964  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
00:38:03.0560 2964  Dot4Print - ok
00:38:05.0445 2964  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
00:38:06.0418 2964  dot4usb - ok
00:38:07.0023 2964  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
00:38:07.0217 2964  DPS - ok
00:38:07.0870 2964  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
00:38:09.0363 2964  drmkaud - ok
00:38:10.0948 2964  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
00:38:13.0651 2964  dtsoftbus01 - ok
00:38:13.0932 2964  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
00:38:14.0208 2964  DXGKrnl - ok
00:38:14.0702 2964  EagleX64 - ok
00:38:15.0309 2964  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
00:38:15.0784 2964  EapHost - ok
00:38:16.0567 2964  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
00:38:19.0947 2964  ebdrv - ok
00:38:20.0238 2964  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
00:38:20.0247 2964  EFS - ok
00:38:22.0283 2964  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
00:38:23.0756 2964  ehRecvr - ok
00:38:23.0965 2964  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
00:38:24.0073 2964  ehSched - ok
00:38:24.0308 2964  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
00:38:26.0645 2964  elxstor - ok
00:38:26.0850 2964  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
00:38:27.0234 2964  ErrDev - ok
00:38:27.0555 2964  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
00:38:27.0808 2964  EventSystem - ok
00:38:28.0035 2964  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
00:38:28.0749 2964  exfat - ok
00:38:28.0866 2964  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
00:38:29.0204 2964  fastfat - ok
00:38:29.0558 2964  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
00:38:29.0572 2964  Fax - ok
00:38:29.0786 2964  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
00:38:30.0054 2964  fdc - ok
00:38:30.0300 2964  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
00:38:30.0352 2964  fdPHost - ok
00:38:30.0645 2964  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
00:38:30.0864 2964  FDResPub - ok
00:38:30.0986 2964  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
00:38:31.0065 2964  FileInfo - ok
00:38:31.0227 2964  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
00:38:31.0313 2964  Filetrace - ok
00:38:31.0621 2964  [ 73081CF28F0AE20A52CA4F67CEE6E6B0 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
00:38:33.0058 2964  FLEXnet Licensing Service - ok
00:38:34.0230 2964  [ 5CEE6CD43AE5844C49300EA0B1E557EE ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
00:38:41.0640 2964  FLEXnet Licensing Service 64 - ok
00:38:41.0799 2964  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
00:38:42.0644 2964  flpydisk - ok
00:38:42.0945 2964  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
00:38:43.0101 2964  FltMgr - ok
00:38:43.0380 2964  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
00:38:43.0503 2964  FontCache - ok
00:38:43.0841 2964  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:38:44.0228 2964  FontCache3.0.0.0 - ok
00:38:44.0282 2964  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
00:38:44.0357 2964  FsDepends - ok
00:38:44.0474 2964  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
00:38:44.0866 2964  Fs_Rec - ok
00:38:45.0023 2964  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
00:38:45.0063 2964  fvevol - ok
00:38:45.0149 2964  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
00:38:45.0300 2964  gagp30kx - ok
00:38:45.0740 2964  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
00:38:46.0463 2964  GamesAppService - ok
00:38:46.0520 2964  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
00:38:46.0560 2964  GEARAspiWDM - ok
00:38:46.0871 2964  [ BA5996C46AF098047A0337A540180B71 ] gfiark          C:\Windows\system32\drivers\gfiark.sys
00:38:47.0072 2964  gfiark - ok
00:38:47.0255 2964  [ 14908F4F9005C29DE8F5587E271390EE ] gfibto          C:\Windows\system32\drivers\gfibto.sys
00:38:47.0363 2964  gfibto - ok
00:38:47.0512 2964  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
00:38:47.0573 2964  gpsvc - ok
00:38:47.0698 2964  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
00:38:48.0133 2964  hcw85cir - ok
00:38:48.0321 2964  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:38:48.0827 2964  HdAudAddService - ok
00:38:49.0000 2964  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
00:38:49.0086 2964  HDAudBus - ok
00:38:49.0116 2964  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
00:38:49.0306 2964  HidBatt - ok
00:38:49.0390 2964  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
00:38:49.0662 2964  HidBth - ok
00:38:49.0748 2964  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
00:38:50.0053 2964  HidIr - ok
00:38:50.0138 2964  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
00:38:50.0211 2964  hidserv - ok
00:38:50.0451 2964  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
00:38:50.0509 2964  HidUsb - ok
00:38:50.0569 2964  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
00:38:50.0621 2964  hkmsvc - ok
00:38:50.0756 2964  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:38:51.0379 2964  HomeGroupListener - ok
00:38:51.0516 2964  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:38:51.0733 2964  HomeGroupProvider - ok
00:38:52.0737 2964  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
00:38:53.0225 2964  HP Support Assistant Service - ok
00:38:53.0438 2964  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
00:38:54.0101 2964  HPClientSvc - ok
00:38:54.0441 2964  [ B7382BEC806B7B00FC84B3E2061FF48E ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
00:38:54.0508 2964  HPDrvMntSvc.exe - ok
00:38:54.0994 2964  [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
00:38:55.0449 2964  hpqcxs08 - ok
00:38:55.0599 2964  [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
00:38:55.0612 2964  hpqddsvc - ok
00:38:55.0729 2964  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
00:38:56.0976 2964  hpqwmiex - ok
00:38:57.0104 2964  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
00:38:57.0332 2964  HpSAMD - ok
00:38:57.0923 2964  [ D4F91CF4DE215D6F14A06087D46725E4 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
00:38:58.0491 2964  HPSLPSVC - ok
00:38:58.0754 2964  [ 77C15D7E8F002A173EEBFF0B20CD697D ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
00:38:58.0776 2964  HPWMISVC - ok
00:38:58.0872 2964  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
00:38:58.0897 2964  HTTP - ok
00:38:59.0007 2964  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
00:38:59.0041 2964  hwpolicy - ok
00:38:59.0183 2964  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
00:38:59.0201 2964  i8042prt - ok
00:38:59.0287 2964  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
00:38:59.0566 2964  iaStorV - ok
00:39:00.0418 2964  [ E4693409D06785477A49FB34AFAE1B92 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
00:39:00.0673 2964  IconMan_R - ok
00:39:00.0869 2964  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:39:01.0055 2964  idsvc - ok
00:39:01.0131 2964  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
00:39:01.0206 2964  iirsp - ok
00:39:01.0321 2964  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
00:39:01.0436 2964  IKEEXT - ok
00:39:01.0679 2964  [ 336C3A6BF14D5A9AF35AF07C6B6B29CD ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
00:39:03.0066 2964  IntcAzAudAddService - ok
00:39:03.0105 2964  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
00:39:03.0218 2964  intelide - ok
00:39:03.0375 2964  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
00:39:03.0518 2964  intelppm - ok
00:39:03.0618 2964  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
00:39:03.0702 2964  IPBusEnum - ok
00:39:03.0844 2964  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:39:04.0079 2964  IpFilterDriver - ok
00:39:04.0186 2964  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
00:39:04.0262 2964  iphlpsvc - ok
00:39:04.0333 2964  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
00:39:04.0359 2964  IPMIDRV - ok
00:39:04.0492 2964  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
00:39:04.0577 2964  IPNAT - ok
00:39:04.0943 2964  [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
00:39:05.0015 2964  iPod Service - ok
00:39:05.0118 2964  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
00:39:05.0141 2964  IRENUM - ok
00:39:05.0298 2964  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
00:39:05.0541 2964  isapnp - ok
00:39:05.0593 2964  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
00:39:05.0799 2964  iScsiPrt - ok
00:39:05.0923 2964  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
00:39:05.0964 2964  kbdclass - ok
00:39:06.0168 2964  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
00:39:06.0303 2964  kbdhid - ok
00:39:06.0426 2964  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
00:39:06.0433 2964  KeyIso - ok
00:39:06.0970 2964  [ 8B5219318DF5895ABD230C373F2DF18A ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
00:39:07.0468 2964  kl1 - ok
00:39:08.0006 2964  [ 65F3B81FA285EAB641F5E6EF7AEB984D ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
00:39:08.0491 2964  KLIF - ok
00:39:08.0705 2964  [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
00:39:08.0745 2964  KLIM6 - ok
00:39:08.0991 2964  [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt        C:\Windows\system32\DRIVERS\klkbdflt.sys
00:39:09.0026 2964  klkbdflt - ok
00:39:09.0302 2964  [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
00:39:09.0348 2964  klmouflt - ok
00:39:09.0716 2964  [ A8081ED8D48FA611D11DB97F49A5343D ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
00:39:09.0866 2964  kltdi - ok
00:39:10.0193 2964  [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
00:39:10.0625 2964  kneps - ok
00:39:11.0288 2964  [ 162A5E3A691B903111526147C8D29E6D ] Kodak AiO Network Discovery Service C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
00:39:11.0343 2964  Kodak AiO Network Discovery Service - ok
00:39:11.0701 2964  [ B5E53FCA219A6491E9A1BA146A5D2452 ] Kodak AiO Status Monitor Service C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
00:39:13.0578 2964  Kodak AiO Status Monitor Service - ok
00:39:13.0688 2964  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
00:39:13.0756 2964  KSecDD - ok
00:39:13.0842 2964  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
00:39:13.0918 2964  KSecPkg - ok
00:39:14.0074 2964  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
00:39:14.0091 2964  ksthunk - ok
00:39:14.0169 2964  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
00:39:14.0706 2964  KtmRm - ok
00:39:14.0864 2964  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
00:39:14.0997 2964  LanmanServer - ok
00:39:15.0187 2964  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:39:15.0252 2964  LanmanWorkstation - ok
00:39:15.0309 2964  Lavasoft Kernexplorer - ok
00:39:15.0461 2964  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
00:39:15.0494 2964  lltdio - ok
00:39:15.0565 2964  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
00:39:15.0715 2964  lltdsvc - ok
00:39:15.0777 2964  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
00:39:15.0914 2964  lmhosts - ok
00:39:16.0237 2964  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
00:39:16.0766 2964  LSI_FC - ok
00:39:16.0991 2964  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
00:39:17.0501 2964  LSI_SAS - ok
00:39:17.0680 2964  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
00:39:18.0125 2964  LSI_SAS2 - ok
00:39:18.0331 2964  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
00:39:18.0833 2964  LSI_SCSI - ok
00:39:19.0359 2964  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
00:39:19.0424 2964  luafv - ok
00:39:19.0732 2964  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
00:39:20.0265 2964  Mcx2Svc - ok
00:39:20.0381 2964  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
00:39:20.0527 2964  megasas - ok
00:39:20.0800 2964  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
00:39:21.0147 2964  MegaSR - ok
00:39:21.0680 2964  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
00:39:21.0792 2964  MMCSS - ok
00:39:21.0950 2964  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
00:39:22.0145 2964  Modem - ok
00:39:22.0291 2964  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
00:39:22.0299 2964  monitor - ok
00:39:22.0725 2964  [ 43E754047C6DEE50666554D3C66D6279 ] motccgp         C:\Windows\system32\DRIVERS\motccgp.sys
00:39:23.0825 2964  motccgp - ok
00:39:24.0055 2964  [ 577399C75CF85AC68E7830EB150F45EF ] motccgpfl       C:\Windows\system32\DRIVERS\motccgpfl.sys
00:39:24.0907 2964  motccgpfl - ok
00:39:25.0561 2964  [ AC9D6E3629E4388A9EA9B4172493AAEE ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
00:39:25.0585 2964  Motorola Device Manager - ok
00:39:25.0915 2964  [ 19BC2161C3FCCED802F1BCD9B78C3466 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
00:39:26.0999 2964  MotoSwitchService - ok
00:39:27.0284 2964  [ C4F1495598C7E1FEF53BCFD84A5BD53E ] Motousbnet      C:\Windows\system32\DRIVERS\Motousbnet.sys
00:39:28.0283 2964  Motousbnet - ok
00:39:28.0478 2964  [ D075B1D964A314D240F5498773EE89DF ] motusbdevice    C:\Windows\system32\DRIVERS\motusbdevice.sys
00:39:29.0575 2964  motusbdevice - ok
00:39:29.0703 2964  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
00:39:29.0838 2964  mouclass - ok
00:39:30.0084 2964  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
00:39:30.0229 2964  mouhid - ok
00:39:30.0383 2964  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
00:39:30.0468 2964  mountmgr - ok
00:39:30.0657 2964  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
00:39:30.0929 2964  mpio - ok
00:39:31.0158 2964  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
00:39:31.0225 2964  mpsdrv - ok
00:39:31.0487 2964  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
00:39:31.0608 2964  MpsSvc - ok
00:39:31.0753 2964  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
00:39:32.0616 2964  MRxDAV - ok
00:39:33.0018 2964  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
00:39:33.0096 2964  mrxsmb - ok
00:39:33.0304 2964  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:39:33.0546 2964  mrxsmb10 - ok
00:39:33.0746 2964  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:39:33.0999 2964  mrxsmb20 - ok
00:39:34.0254 2964  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
00:39:35.0589 2964  msahci - ok
00:39:35.0744 2964  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
00:39:36.0210 2964  msdsm - ok
00:39:36.0250 2964  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
00:39:36.0511 2964  MSDTC - ok
00:39:36.0726 2964  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
00:39:37.0123 2964  Msfs - ok
00:39:37.0783 2964  [ 97A4A2A00B1FAD261E7DAC0136E7EE31 ] MsgPlusService  C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
00:39:38.0891 2964  MsgPlusService - ok
00:39:39.0188 2964  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
00:39:39.0282 2964  mshidkmdf - ok
00:39:39.0457 2964  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
00:39:39.0637 2964  msisadrv - ok
00:39:39.0976 2964  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
00:39:40.0707 2964  MSiSCSI - ok
00:39:40.0717 2964  msiserver - ok
00:39:41.0148 2964  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
00:39:41.0592 2964  MSKSSRV - ok
00:39:42.0139 2964  [ 103B3BBE23AB774B009D182276EC6786 ] msloop          C:\Windows\system32\DRIVERS\loop.sys
00:39:42.0546 2964  msloop - ok
00:39:42.0892 2964  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
00:39:43.0076 2964  MSPCLOCK - ok
00:39:43.0219 2964  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
00:39:43.0404 2964  MSPQM - ok
00:39:43.0517 2964  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
00:39:44.0610 2964  MsRPC - ok
00:39:44.0819 2964  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
00:39:44.0829 2964  mssmbios - ok
00:39:45.0111 2964  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
00:39:45.0517 2964  MSTEE - ok
00:39:45.0619 2964  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
00:39:45.0798 2964  MTConfig - ok
00:39:46.0037 2964  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
00:39:46.0156 2964  Mup - ok
00:39:46.0402 2964  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
00:39:46.0414 2964  napagent - ok
00:39:46.0772 2964  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
00:39:47.0179 2964  NativeWifiP - ok
00:39:47.0446 2964  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
00:39:47.0772 2964  NDIS - ok
00:39:48.0152 2964  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
00:39:48.0277 2964  NdisCap - ok
00:39:48.0575 2964  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
00:39:48.0743 2964  NdisTapi - ok
00:39:49.0034 2964  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
00:39:49.0164 2964  Ndisuio - ok
00:39:49.0504 2964  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
00:39:49.0733 2964  NdisWan - ok
00:39:51.0005 2964  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
00:39:51.0135 2964  NDProxy - ok
00:39:51.0704 2964  [ D4F51E88C71BF8F06EA1BE320B0BB75B ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
00:39:52.0825 2964  Net Driver HPZ12 - ok
00:39:53.0250 2964  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
00:39:53.0351 2964  NetBIOS - ok
00:39:53.0474 2964  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
00:39:53.0586 2964  NetBT - ok
00:39:53.0712 2964  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
00:39:53.0800 2964  Netlogon - ok
00:39:54.0789 2964  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
00:39:54.0881 2964  Netman - ok
00:39:55.0092 2964  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
00:39:55.0172 2964  netprofm - ok
00:39:55.0380 2964  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:39:55.0593 2964  NetTcpPortSharing - ok
00:39:55.0964 2964  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
00:39:56.0461 2964  nfrd960 - ok
00:39:57.0206 2964  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
00:39:57.0419 2964  NlaSvc - ok
00:39:57.0601 2964  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
00:39:57.0661 2964  Npfs - ok
00:39:57.0958 2964  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
00:39:58.0031 2964  nsi - ok
00:39:58.0093 2964  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
00:39:58.0159 2964  nsiproxy - ok
00:39:58.0422 2964  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
00:39:58.0565 2964  Ntfs - ok
00:39:58.0725 2964  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
00:39:58.0792 2964  Null - ok
00:39:59.0249 2964  [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
00:39:59.0595 2964  NVENETFD - ok
00:39:59.0757 2964  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
00:40:00.0118 2964  nvraid - ok
00:40:00.0280 2964  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
00:40:00.0485 2964  nvstor - ok
00:40:00.0539 2964  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
00:40:01.0099 2964  nv_agp - ok
00:40:01.0182 2964  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
00:40:01.0555 2964  ohci1394 - ok
00:40:01.0683 2964  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:40:02.0333 2964  ose - ok
00:40:03.0214 2964  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:40:04.0483 2964  osppsvc - ok
00:40:04.0622 2964  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
00:40:04.0751 2964  p2pimsvc - ok
00:40:04.0973 2964  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
00:40:05.0113 2964  p2psvc - ok
00:40:05.0232 2964  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
00:40:05.0376 2964  Parport - ok
00:40:05.0535 2964  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
00:40:05.0581 2964  partmgr - ok
00:40:05.0765 2964  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
00:40:05.0966 2964  PcaSvc - ok
00:40:06.0046 2964  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
00:40:06.0077 2964  pci - ok
00:40:06.0185 2964  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
00:40:06.0258 2964  pciide - ok
00:40:06.0425 2964  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
00:40:06.0890 2964  pcmcia - ok
00:40:07.0223 2964  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
00:40:07.0448 2964  pcw - ok
00:40:07.0579 2964  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
00:40:07.0688 2964  PEAUTH - ok
00:40:19.0242 2964  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
00:40:19.0357 2964  PerfHost - ok
00:40:21.0642 2964  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
00:40:21.0793 2964  pla - ok
00:40:22.0114 2964  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
00:40:22.0226 2964  PlugPlay - ok
00:40:22.0631 2964  [ 9A80707D8B6C1806531BFD7399B3CC76 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
00:40:22.0752 2964  Pml Driver HPZ12 - ok
00:40:22.0838 2964  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
00:40:22.0917 2964  PNRPAutoReg - ok
00:40:23.0031 2964  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
00:40:23.0045 2964  PNRPsvc - ok
00:40:23.0385 2964  [ 5BC4D480DD527EB0CF33A67A090A130E ] Point64         C:\Windows\system32\DRIVERS\point64.sys
00:40:23.0987 2964  Point64 - ok
00:40:24.0407 2964  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
00:40:24.0491 2964  PolicyAgent - ok
00:40:24.0680 2964  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
00:40:24.0774 2964  Power - ok
00:40:24.0983 2964  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
00:40:25.0031 2964  PptpMiniport - ok
00:40:25.0122 2964  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
00:40:25.0230 2964  Processor - ok
00:40:25.0406 2964  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
00:40:25.0481 2964  ProfSvc - ok
00:40:25.0511 2964  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:40:25.0517 2964  ProtectedStorage - ok
00:40:25.0747 2964  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
00:40:25.0894 2964  Psched - ok
00:40:26.0185 2964  [ EA735BF6DF13A857A83C99BF27A422AD ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
00:40:27.0959 2964  PST Service - ok
00:40:28.0155 2964  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
00:40:28.0515 2964  ql2300 - ok
00:40:28.0548 2964  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
00:40:28.0606 2964  ql40xx - ok
00:40:28.0673 2964  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
00:40:28.0724 2964  QWAVE - ok
00:40:28.0797 2964  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
00:40:28.0823 2964  QWAVEdrv - ok
00:40:28.0843 2964  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
00:40:28.0896 2964  RasAcd - ok
00:40:28.0951 2964  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
00:40:28.0971 2964  RasAgileVpn - ok
00:40:29.0011 2964  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
00:40:29.0038 2964  RasAuto - ok
00:40:29.0080 2964  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
00:40:29.0093 2964  Rasl2tp - ok
00:40:29.0132 2964  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
00:40:29.0148 2964  RasMan - ok
00:40:29.0194 2964  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
00:40:29.0202 2964  RasPppoe - ok
00:40:29.0242 2964  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
00:40:29.0261 2964  RasSstp - ok
00:40:29.0293 2964  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
00:40:29.0307 2964  rdbss - ok
00:40:29.0363 2964  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
00:40:29.0428 2964  rdpbus - ok
00:40:29.0482 2964  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
00:40:29.0512 2964  RDPCDD - ok
00:40:29.0590 2964  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
00:40:29.0681 2964  RDPENCDD - ok
00:40:29.0731 2964  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
00:40:29.0781 2964  RDPREFMP - ok
00:40:29.0871 2964  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
00:40:29.0953 2964  RDPWD - ok
00:40:30.0015 2964  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
00:40:30.0046 2964  rdyboost - ok
00:40:30.0087 2964  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
00:40:30.0103 2964  RemoteAccess - ok
00:40:30.0154 2964  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
00:40:30.0166 2964  RemoteRegistry - ok
00:40:30.0370 2964  [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
00:40:30.0449 2964  RoxioNow Service - ok
00:40:30.0514 2964  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
00:40:30.0613 2964  RpcEptMapper - ok
00:40:30.0657 2964  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
00:40:30.0707 2964  RpcLocator - ok
00:40:30.0785 2964  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
00:40:30.0795 2964  RpcSs - ok
00:40:30.0878 2964  [ 546D7F426776090B90EF5F195B6AE662 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
00:40:30.0993 2964  RSPCIESTOR - ok
00:40:31.0067 2964  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
00:40:31.0104 2964  rspndr - ok
00:40:31.0304 2964  [ 61A04C0C084D560BBEF1D09604608262 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
00:40:32.0873 2964  RTL8167 - ok
00:40:33.0328 2964  [ E8D91B9BEBDBC0BB6BA60849F511FAA8 ] RTL8192Ce       C:\Windows\system32\DRIVERS\rtl8192Ce.sys
00:40:36.0277 2964  RTL8192Ce - ok
00:40:36.0356 2964  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
00:40:36.0360 2964  SamSs - ok
00:40:36.0988 2964  [ 99FC1599F89A80216E41175B8CA44D89 ] SBAMSvc         C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
00:40:37.0034 2964  SBAMSvc - ok
00:40:37.0142 2964  [ 8F19D62B04081C0BFF1E8D6F26220A28 ] sbapifs         C:\Windows\system32\DRIVERS\sbapifs.sys
00:40:37.0191 2964  sbapifs - ok
00:40:37.0385 2964  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
00:40:37.0497 2964  sbp2port - ok
00:40:37.0617 2964  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
00:40:37.0729 2964  SCardSvr - ok
00:40:37.0848 2964  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
00:40:37.0880 2964  scfilter - ok
00:40:37.0986 2964  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
00:40:38.0074 2964  Schedule - ok
00:40:38.0207 2964  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
00:40:38.0214 2964  SCPolicySvc - ok
00:40:38.0358 2964  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
00:40:38.0452 2964  sdbus - ok
00:40:38.0573 2964  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
00:40:38.0600 2964  SDRSVC - ok
00:40:38.0690 2964  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
00:40:38.0800 2964  secdrv - ok
00:40:38.0866 2964  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
00:40:38.0937 2964  seclogon - ok
00:40:38.0993 2964  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
00:40:39.0164 2964  SENS - ok
00:40:39.0227 2964  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
00:40:39.0335 2964  SensrSvc - ok
00:40:39.0368 2964  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
00:40:39.0760 2964  Serenum - ok
00:40:39.0785 2964  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
00:40:40.0132 2964  Serial - ok
00:40:40.0169 2964  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
00:40:40.0323 2964  sermouse - ok
00:40:40.0383 2964  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
00:40:40.0518 2964  SessionEnv - ok
00:40:40.0541 2964  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
00:40:40.0822 2964  sffdisk - ok
00:40:40.0914 2964  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
00:40:41.0136 2964  sffp_mmc - ok
00:40:41.0163 2964  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
00:40:41.0264 2964  sffp_sd - ok
00:40:41.0287 2964  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
00:40:41.0414 2964  sfloppy - ok
00:40:41.0563 2964  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
00:40:42.0232 2964  Sftfs - ok
00:40:42.0554 2964  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
00:40:42.0647 2964  sftlist - ok
00:40:42.0818 2964  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
00:40:43.0215 2964  Sftplay - ok
00:40:43.0308 2964  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
00:40:43.0391 2964  Sftredir - ok
00:40:43.0510 2964  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
00:40:43.0614 2964  Sftvol - ok
00:40:43.0669 2964  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
00:40:43.0834 2964  sftvsa - ok
00:40:44.0150 2964  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
00:40:44.0225 2964  SharedAccess - ok
00:40:44.0378 2964  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:40:44.0531 2964  ShellHWDetection - ok
00:40:44.0792 2964  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
00:40:45.0030 2964  SiSRaid2 - ok
00:40:45.0158 2964  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
00:40:45.0314 2964  SiSRaid4 - ok
00:40:47.0122 2964  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:40:47.0276 2964  Skype C2C Service - ok
00:40:48.0081 2964  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
00:40:48.0509 2964  SkypeUpdate - ok
00:40:48.0625 2964  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
00:40:48.0930 2964  Smb - ok
00:40:49.0187 2964  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
00:40:49.0263 2964  SNMPTRAP - ok
00:40:49.0868 2964  [ 4945020BC094C322571184A6E8056B3A ] SolidWorks Licensing Service C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
00:40:50.0871 2964  SolidWorks Licensing Service - ok
00:40:50.0983 2964  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
00:40:51.0052 2964  spldr - ok
00:40:51.0214 2964  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
00:40:51.0274 2964  Spooler - ok
00:40:51.0641 2964  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
00:40:51.0680 2964  sppsvc - ok
00:40:51.0749 2964  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
00:40:51.0900 2964  sppuinotify - ok
00:40:52.0148 2964  [ 602884696850C86434530790B110E8EB ] sptd            C:\Windows\system32\Drivers\sptd.sys
00:40:52.0153 2964  Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB
00:40:52.0302 2964  sptd ( LockedFile.Multi.Generic ) - warning
00:40:52.0302 2964  sptd - detected LockedFile.Multi.Generic (1)
00:40:52.0374 2964  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
00:40:52.0404 2964  srv - ok
00:40:52.0487 2964  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
00:40:52.0536 2964  srv2 - ok
00:40:52.0764 2964  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
00:40:53.0013 2964  SrvHsfHDA - ok
00:40:53.0179 2964  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
00:40:53.0718 2964  SrvHsfV92 - ok
00:40:53.0784 2964  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
00:40:54.0051 2964  SrvHsfWinac - ok
00:40:54.0093 2964  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
00:40:54.0123 2964  srvnet - ok
00:40:54.0323 2964  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
00:40:54.0393 2964  SSDPSRV - ok
00:40:54.0426 2964  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
00:40:54.0451 2964  SstpSvc - ok
00:40:54.0496 2964  Steam Client Service - ok
00:40:54.0550 2964  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
00:40:54.0753 2964  stexstor - ok
00:40:54.0863 2964  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
00:40:55.0002 2964  StillCam - ok
00:40:55.0230 2964  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
00:40:55.0302 2964  stisvc - ok
00:40:55.0366 2964  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
00:40:55.0425 2964  swenum - ok
00:40:55.0478 2964  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
00:40:55.0800 2964  swprv - ok
00:40:56.0037 2964  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
00:40:56.0624 2964  SynTP - ok
00:40:56.0799 2964  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
00:40:57.0395 2964  SysMain - ok
00:40:57.0450 2964  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:40:57.0500 2964  TabletInputService - ok
00:40:57.0533 2964  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
00:40:57.0566 2964  TapiSrv - ok
00:40:57.0595 2964  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
00:40:57.0601 2964  TBS - ok
00:40:57.0759 2964  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
00:40:57.0859 2964  Tcpip - ok
00:40:58.0020 2964  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
00:40:58.0059 2964  TCPIP6 - ok
00:40:58.0158 2964  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
00:40:58.0169 2964  tcpipreg - ok
00:40:58.0208 2964  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
00:40:58.0330 2964  TDPIPE - ok
00:40:58.0434 2964  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
00:40:58.0465 2964  TDTCP - ok
00:40:58.0566 2964  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
00:40:58.0625 2964  tdx - ok
00:40:58.0704 2964  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
00:40:58.0718 2964  TermDD - ok
00:40:58.0853 2964  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
00:40:58.0890 2964  TermService - ok
00:40:58.0943 2964  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
00:40:58.0973 2964  Themes - ok
00:40:59.0065 2964  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
00:40:59.0069 2964  THREADORDER - ok
00:40:59.0209 2964  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
00:40:59.0272 2964  TrkWks - ok
00:40:59.0600 2964  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:41:00.0090 2964  TrustedInstaller - ok
00:41:00.0252 2964  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
00:41:00.0293 2964  tssecsrv - ok
00:41:00.0414 2964  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
00:41:00.0444 2964  TsUsbFlt - ok
00:41:00.0511 2964  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
00:41:00.0552 2964  TsUsbGD - ok
00:41:00.0689 2964  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
00:41:00.0715 2964  tunnel - ok
00:41:00.0837 2964  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
00:41:01.0287 2964  uagp35 - ok
00:41:01.0410 2964  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
00:41:02.0054 2964  udfs - ok
00:41:02.0159 2964  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
00:41:02.0207 2964  UI0Detect - ok
00:41:02.0301 2964  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
00:41:02.0354 2964  uliagpkx - ok
00:41:02.0461 2964  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
00:41:02.0489 2964  umbus - ok
00:41:02.0584 2964  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
00:41:02.0616 2964  UmPass - ok
00:41:02.0731 2964  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
00:41:02.0744 2964  upnphost - ok
00:41:03.0260 2964  [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
00:41:03.0567 2964  USBAAPL64 - ok
00:41:03.0653 2964  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
00:41:03.0689 2964  usbccgp - ok
00:41:03.0902 2964  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
00:41:04.0150 2964  usbcir - ok
00:41:04.0279 2964  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
00:41:04.0365 2964  usbehci - ok
00:41:04.0577 2964  [ 76E2FFAD301490BA27B947C6507752FB ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
00:41:04.0850 2964  usbfilter - ok
00:41:05.0009 2964  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
00:41:05.0091 2964  usbhub - ok
00:41:05.0297 2964  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
00:41:05.0380 2964  usbohci - ok
00:41:05.0446 2964  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
00:41:05.0543 2964  usbprint - ok
00:41:05.0627 2964  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
00:41:05.0695 2964  usbscan - ok
00:41:05.0736 2964  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:41:06.0089 2964  USBSTOR - ok
00:41:06.0210 2964  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
00:41:06.0503 2964  usbuhci - ok
00:41:06.0764 2964  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
00:41:06.0813 2964  usbvideo - ok
00:41:06.0921 2964  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
00:41:07.0006 2964  UxSms - ok
00:41:07.0066 2964  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
00:41:07.0070 2964  VaultSvc - ok
00:41:07.0119 2964  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
00:41:07.0167 2964  vdrvroot - ok
00:41:07.0270 2964  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
00:41:07.0337 2964  vds - ok
00:41:07.0402 2964  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
00:41:07.0498 2964  vga - ok
00:41:07.0583 2964  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
00:41:07.0606 2964  VgaSave - ok
00:41:07.0645 2964  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
00:41:07.0762 2964  vhdmp - ok
00:41:07.0834 2964  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
00:41:08.0155 2964  viaide - ok
00:41:08.0226 2964  VMnetAdapter - ok
00:41:08.0277 2964  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
00:41:08.0352 2964  volmgr - ok
00:41:08.0414 2964  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
00:41:08.0430 2964  volmgrx - ok
00:41:08.0493 2964  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
00:41:08.0509 2964  volsnap - ok
00:41:08.0574 2964  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
00:41:08.0691 2964  vsmraid - ok
00:41:08.0880 2964  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
00:41:08.0959 2964  VSS - ok
00:41:09.0005 2964  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
00:41:09.0020 2964  vwifibus - ok
00:41:09.0045 2964  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
00:41:09.0051 2964  vwififlt - ok
00:41:09.0106 2964  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
00:41:09.0126 2964  W32Time - ok
00:41:09.0181 2964  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
00:41:09.0295 2964  WacomPen - ok
00:41:09.0372 2964  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
00:41:09.0382 2964  WANARP - ok
00:41:09.0407 2964  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
00:41:09.0410 2964  Wanarpv6 - ok
00:41:09.0685 2964  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
00:41:10.0015 2964  WatAdminSvc - ok
00:41:10.0193 2964  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
00:41:10.0260 2964  wbengine - ok
00:41:10.0314 2964  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
00:41:10.0333 2964  WbioSrvc - ok
00:41:10.0369 2964  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
00:41:10.0387 2964  wcncsvc - ok
00:41:10.0417 2964  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:41:10.0472 2964  WcsPlugInService - ok
00:41:10.0533 2964  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
00:41:10.0577 2964  Wd - ok
00:41:10.0660 2964  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
00:41:10.0684 2964  Wdf01000 - ok
00:41:10.0727 2964  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
00:41:10.0744 2964  WdiServiceHost - ok
00:41:10.0753 2964  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
00:41:10.0759 2964  WdiSystemHost - ok
00:41:10.0839 2964  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
00:41:10.0855 2964  WebClient - ok
00:41:10.0883 2964  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
00:41:10.0908 2964  Wecsvc - ok
00:41:10.0933 2964  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
00:41:10.0946 2964  wercplsupport - ok
00:41:11.0032 2964  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
00:41:11.0122 2964  WerSvc - ok
00:41:11.0160 2964  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
00:41:11.0170 2964  WfpLwf - ok
00:41:11.0186 2964  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
00:41:11.0233 2964  WIMMount - ok
00:41:11.0271 2964  WinDefend - ok
00:41:11.0286 2964  WinHttpAutoProxySvc - ok
00:41:11.0401 2964  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
00:41:11.0414 2964  Winmgmt - ok
00:41:11.0519 2964  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
00:41:11.0913 2964  WinRM - ok
00:41:12.0066 2964  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
00:41:12.0236 2964  WinUsb - ok
00:41:12.0309 2964  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
00:41:12.0364 2964  Wlansvc - ok
00:41:12.0540 2964  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:41:12.0665 2964  wlcrasvc - ok
00:41:13.0002 2964  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:41:13.0262 2964  wlidsvc - ok
00:41:13.0361 2964  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
00:41:13.0368 2964  WmiAcpi - ok
00:41:13.0427 2964  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
00:41:13.0440 2964  wmiApSrv - ok
00:41:13.0506 2964  WMPNetworkSvc - ok
00:41:13.0568 2964  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
00:41:13.0623 2964  WPCSvc - ok
00:41:13.0685 2964  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
00:41:13.0731 2964  WPDBusEnum - ok
00:41:13.0857 2964  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
00:41:13.0942 2964  ws2ifsl - ok
00:41:14.0034 2964  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
00:41:14.0041 2964  wscsvc - ok
00:41:14.0050 2964  WSearch - ok
00:41:14.0558 2964  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
00:41:14.0587 2964  wuauserv - ok
00:41:14.0676 2964  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
00:41:14.0721 2964  WudfPf - ok
00:41:14.0799 2964  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
00:41:14.0844 2964  WUDFRd - ok
00:41:14.0950 2964  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
00:41:14.0997 2964  wudfsvc - ok
00:41:15.0086 2964  [ CE8CF9DE9CBFDAA318BD04D8BE3FCADA ] WwanSvc         C:\Windows\System32\wwansvc.dll
00:41:15.0150 2964  WwanSvc - ok
00:41:15.0311 2964  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
00:41:15.0335 2964  YahooAUService - ok



#4 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 08:12 PM

00:41:15.0371 2964  ================ Scan global ===============================
00:41:15.0457 2964  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:41:15.0537 2964  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
00:41:15.0562 2964  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
00:41:15.0607 2964  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:41:15.0668 2964  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:41:15.0685 2964  [Global] - ok
00:41:15.0686 2964  ================ Scan MBR ==================================
00:41:15.0709 2964  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:41:21.0798 2964  \Device\Harddisk0\DR0 - ok
00:41:21.0806 2964  ================ Scan VBR ==================================
00:41:21.0868 2964  [ 442AF05140CA268CEA8332CE0E046A4B ] \Device\Harddisk0\DR0\Partition1
00:41:22.0006 2964  \Device\Harddisk0\DR0\Partition1 - ok
00:41:22.0035 2964  [ 3C7C11A7F13A8E18CA414BB298BE28B1 ] \Device\Harddisk0\DR0\Partition2
00:41:22.0064 2964  \Device\Harddisk0\DR0\Partition2 - ok
00:41:22.0131 2964  [ 5E1F1EB1AA07BC9BEC5EBB05904AFE51 ] \Device\Harddisk0\DR0\Partition3
00:41:22.0150 2964  \Device\Harddisk0\DR0\Partition3 - ok
00:41:22.0177 2964  [ 2C35B3A7007438E2FAC9F4D978CD9FC9 ] \Device\Harddisk0\DR0\Partition4
00:41:22.0179 2964  \Device\Harddisk0\DR0\Partition4 - ok
00:41:22.0180 2964  ================ Scan active images ========================
00:41:22.0186 2964  [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
00:41:22.0186 2964  C:\Windows\System32\drivers\crashdmp.sys - ok
00:41:22.0199 2964  [ F9D46B6B322708BD5AFCC8767EBDC901 ] C:\Windows\System32\drivers\amd_sata.sys
00:41:22.0199 2964  C:\Windows\System32\drivers\amd_sata.sys - ok
00:41:22.0211 2964  [ 9BBD8B5855BC6578957F82341F9CDE5A ] C:\Windows\System32\drivers\Diskdump.sys
00:41:22.0211 2964  C:\Windows\System32\drivers\Diskdump.sys - ok
00:41:22.0224 2964  [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
00:41:22.0224 2964  C:\Windows\System32\drivers\dumpfve.sys - ok
00:41:22.0232 2964  [ 46571ED73AE84469DCA53081D33CF3C8 ] C:\Windows\System32\drivers\dtsoftbus01.sys
00:41:22.0232 2964  C:\Windows\System32\drivers\dtsoftbus01.sys - ok
00:41:22.0245 2964  [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
00:41:22.0246 2964  C:\Windows\System32\drivers\cdrom.sys - ok
00:41:22.0259 2964  [ 2744EB4FEEF8760B908E9EABBBD5A6A7 ] C:\Windows\System32\drivers\klflt.sys
00:41:22.0259 2964  C:\Windows\System32\drivers\klflt.sys - ok
00:41:22.0275 2964  [ 65F3B81FA285EAB641F5E6EF7AEB984D ] C:\Windows\System32\drivers\klif.sys
00:41:22.0275 2964  C:\Windows\System32\drivers\klif.sys - ok
00:41:22.0289 2964  [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
00:41:22.0289 2964  C:\Windows\System32\drivers\beep.sys - ok
00:41:22.0302 2964  [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
00:41:22.0302 2964  C:\Windows\System32\drivers\null.sys - ok
00:41:22.0314 2964  [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
00:41:22.0314 2964  C:\Windows\System32\drivers\videoprt.sys - ok
00:41:22.0326 2964  [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
00:41:22.0326 2964  C:\Windows\System32\drivers\watchdog.sys - ok
00:41:22.0339 2964  [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
00:41:22.0339 2964  C:\Windows\System32\drivers\RDPCDD.sys - ok
00:41:22.0365 2964  [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
00:41:22.0365 2964  C:\Windows\System32\drivers\RDPENCDD.sys - ok
00:41:22.0378 2964  [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
00:41:22.0378 2964  C:\Windows\System32\drivers\vga.sys - ok
00:41:22.0391 2964  [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
00:41:22.0391 2964  C:\Windows\System32\drivers\RDPREFMP.sys - ok
00:41:22.0403 2964  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
00:41:22.0403 2964  C:\Windows\System32\drivers\msfs.sys - ok
00:41:22.0417 2964  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
00:41:22.0417 2964  C:\Windows\System32\drivers\npfs.sys - ok
00:41:22.0428 2964  [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
00:41:22.0428 2964  C:\Windows\System32\drivers\tdi.sys - ok
00:41:22.0443 2964  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
00:41:22.0443 2964  C:\Windows\System32\drivers\tdx.sys - ok
00:41:22.0456 2964  [ A8081ED8D48FA611D11DB97F49A5343D ] C:\Windows\System32\drivers\kltdi.sys
00:41:22.0456 2964  C:\Windows\System32\drivers\kltdi.sys - ok
00:41:22.0469 2964  [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
00:41:22.0469 2964  C:\Windows\System32\drivers\afd.sys - ok
00:41:22.0477 2964  [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
00:41:22.0477 2964  C:\Windows\System32\drivers\netbt.sys - ok
00:41:22.0490 2964  [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
00:41:22.0490 2964  C:\Windows\System32\drivers\wfplwf.sys - ok
00:41:22.0502 2964  [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
00:41:22.0502 2964  C:\Windows\System32\drivers\pacer.sys - ok
00:41:22.0514 2964  [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
00:41:22.0514 2964  C:\Windows\System32\drivers\vwififlt.sys - ok
00:41:22.0527 2964  [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] C:\Windows\System32\drivers\klim6.sys
00:41:22.0527 2964  C:\Windows\System32\drivers\klim6.sys - ok
00:41:22.0542 2964  [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
00:41:22.0542 2964  C:\Windows\System32\drivers\netbios.sys - ok
00:41:22.0558 2964  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
00:41:22.0558 2964  C:\Windows\System32\drivers\termdd.sys - ok
00:41:22.0571 2964  [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
00:41:22.0571 2964  C:\Windows\System32\drivers\wanarp.sys - ok
00:41:22.0586 2964  [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
00:41:22.0587 2964  C:\Windows\System32\drivers\rdbss.sys - ok
00:41:22.0600 2964  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
00:41:22.0600 2964  C:\Windows\System32\drivers\mssmbios.sys - ok
00:41:22.0613 2964  [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
00:41:22.0613 2964  C:\Windows\System32\drivers\nsiproxy.sys - ok
00:41:22.0625 2964  [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
00:41:22.0625 2964  C:\Windows\System32\drivers\discache.sys - ok
00:41:22.0638 2964  [ 185D21CB8F10CFB351FF65DA88C18BC9 ] C:\Windows\System32\drivers\kneps.sys
00:41:22.0638 2964  C:\Windows\System32\drivers\kneps.sys - ok
00:41:22.0651 2964  [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
00:41:22.0651 2964  C:\Windows\System32\drivers\blbdrive.sys - ok
00:41:22.0663 2964  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
00:41:22.0663 2964  C:\Windows\System32\drivers\dfsc.sys - ok
00:41:22.0676 2964  [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
00:41:22.0676 2964  C:\Windows\System32\drivers\tunnel.sys - ok
00:41:22.0687 2964  [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
00:41:22.0688 2964  C:\Windows\System32\drivers\amdppm.sys - ok
00:41:22.0703 2964  [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
00:41:22.0703 2964  C:\Windows\System32\smss.exe - ok
00:41:22.0723 2964  [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
00:41:22.0723 2964  C:\Windows\System32\ntdll.dll - ok
00:41:22.0742 2964  [ 1CD2BC11467FD5FC7BE9827A9F3D8566 ] C:\Windows\System32\drivers\atikmpag.sys
00:41:22.0742 2964  C:\Windows\System32\drivers\atikmpag.sys - ok
00:41:22.0752 2964  [ 7054D5D028B6CA727D0575192D633FA9 ] C:\Windows\System32\drivers\atikmdag.sys
00:41:22.0752 2964  C:\Windows\System32\drivers\atikmdag.sys - ok
00:41:22.0767 2964  [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
00:41:22.0767 2964  C:\Windows\System32\drivers\dxgkrnl.sys - ok
00:41:22.0786 2964  [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
00:41:22.0786 2964  C:\Windows\System32\drivers\dxgmms1.sys - ok
00:41:22.0793 2964  [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
00:41:22.0793 2964  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
00:41:22.0807 2964  [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
00:41:22.0807 2964  C:\Windows\System32\drivers\usbport.sys - ok
00:41:22.0821 2964  [ 76E2FFAD301490BA27B947C6507752FB ] C:\Windows\System32\drivers\usbfilter.sys
00:41:22.0821 2964  C:\Windows\System32\drivers\usbfilter.sys - ok
00:41:22.0835 2964  [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
00:41:22.0836 2964  C:\Windows\System32\drivers\usbohci.sys - ok
00:41:22.0850 2964  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
00:41:22.0850 2964  C:\Windows\System32\drivers\hdaudbus.sys - ok
00:41:22.0869 2964  [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
00:41:22.0869 2964  C:\Windows\System32\drivers\usbehci.sys - ok
00:41:22.0886 2964  [ 0840155D0BDDF1190F84A663C284BD33 ] C:\Windows\System32\drivers\CmBatt.sys
00:41:22.0886 2964  C:\Windows\System32\drivers\CmBatt.sys - ok
00:41:22.0900 2964  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] C:\Windows\System32\drivers\i8042prt.sys
00:41:22.0900 2964  C:\Windows\System32\drivers\i8042prt.sys - ok
00:41:22.0926 2964  [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
00:41:22.0926 2964  C:\Windows\System32\drivers\usbd.sys - ok
00:41:22.0938 2964  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] C:\Windows\System32\drivers\SynTP.sys
00:41:22.0939 2964  C:\Windows\System32\drivers\SynTP.sys - ok
00:41:22.0952 2964  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
00:41:22.0953 2964  C:\Windows\System32\drivers\kbdclass.sys - ok
00:41:22.0965 2964  [ 2C43FD500522EF3B8C283A5846B7FC41 ] C:\Windows\System32\drivers\klkbdflt.sys
00:41:22.0965 2964  C:\Windows\System32\drivers\klkbdflt.sys - ok
00:41:22.0980 2964  [ 70A6D2E292017EC47949696F51ABE18D ] C:\Windows\System32\drivers\klmouflt.sys
00:41:22.0980 2964  C:\Windows\System32\drivers\klmouflt.sys - ok
00:41:22.0996 2964  [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
00:41:22.0996 2964  C:\Windows\System32\drivers\mouclass.sys - ok
00:41:23.0094 2964  [ 546D7F426776090B90EF5F195B6AE662 ] C:\Windows\System32\drivers\RtsPStor.sys
00:41:23.0094 2964  C:\Windows\System32\drivers\RtsPStor.sys - ok
00:41:23.0167 2964  [ 61A04C0C084D560BBEF1D09604608262 ] C:\Windows\System32\drivers\Rt64win7.sys
00:41:23.0167 2964  C:\Windows\System32\drivers\Rt64win7.sys - ok
00:41:23.0215 2964  [ E8D91B9BEBDBC0BB6BA60849F511FAA8 ] C:\Windows\System32\drivers\rtl8192ce.sys
00:41:23.0215 2964  C:\Windows\System32\drivers\rtl8192ce.sys - ok
00:41:23.0234 2964  [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
00:41:23.0234 2964  C:\Windows\System32\drivers\CompositeBus.sys - ok
00:41:23.0292 2964  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
00:41:23.0292 2964  C:\Windows\System32\drivers\vwifibus.sys - ok
00:41:23.0308 2964  [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
00:41:23.0308 2964  C:\Windows\System32\drivers\wmiacpi.sys - ok
00:41:23.0325 2964  [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
00:41:23.0325 2964  C:\Windows\System32\drivers\agilevpn.sys - ok
00:41:23.0357 2964  [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
00:41:23.0357 2964  C:\Windows\System32\drivers\ndistapi.sys - ok
00:41:23.0365 2964  [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
00:41:23.0365 2964  C:\Windows\System32\drivers\rasl2tp.sys - ok
00:41:23.0392 2964  [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
00:41:23.0392 2964  C:\Windows\System32\drivers\ndiswan.sys - ok
00:41:23.0406 2964  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
00:41:23.0407 2964  C:\Windows\System32\drivers\raspppoe.sys - ok
00:41:23.0434 2964  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
00:41:23.0434 2964  C:\Windows\System32\drivers\raspptp.sys - ok
00:41:23.0452 2964  [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
00:41:23.0452 2964  C:\Windows\System32\drivers\rassstp.sys - ok
00:41:23.0470 2964  [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
00:41:23.0471 2964  C:\Windows\System32\drivers\ks.sys - ok
00:41:23.0487 2964  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
00:41:23.0487 2964  C:\Windows\System32\drivers\swenum.sys - ok
00:41:23.0498 2964  [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
00:41:23.0498 2964  C:\Windows\System32\drivers\umbus.sys - ok
00:41:23.0511 2964  [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
00:41:23.0511 2964  C:\Windows\System32\drivers\usbhub.sys - ok
00:41:23.0530 2964  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
00:41:23.0530 2964  C:\Windows\System32\drivers\ndproxy.sys - ok
00:41:23.0544 2964  [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
00:41:23.0544 2964  C:\Windows\System32\drivers\drmk.sys - ok
00:41:23.0575 2964  [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
00:41:23.0575 2964  C:\Windows\System32\drivers\portcls.sys - ok
00:41:23.0598 2964  [ 336C3A6BF14D5A9AF35AF07C6B6B29CD ] C:\Windows\System32\drivers\RTKVHD64.sys
00:41:23.0598 2964  C:\Windows\System32\drivers\RTKVHD64.sys - ok
00:41:23.0634 2964  [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
00:41:23.0634 2964  C:\Windows\System32\drivers\ksthunk.sys - ok
00:41:23.0643 2964  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
00:41:23.0643 2964  C:\Windows\System32\autochk.exe - ok
00:41:23.0661 2964  [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
00:41:23.0661 2964  C:\Windows\System32\drivers\usbccgp.sys - ok
00:41:23.0680 2964  [ 454800C2BC7F3927CE030141EE4F4C50 ] C:\Windows\System32\drivers\usbvideo.sys
00:41:23.0680 2964  C:\Windows\System32\drivers\usbvideo.sys - ok
00:41:23.0704 2964  [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
00:41:23.0704 2964  C:\Windows\System32\drivers\fastfat.sys - ok
00:41:23.0716 2964  [ E127AFF263BF62E6F3975EE35D3A5385 ] C:\Windows\System32\aswBoot.exe
00:41:23.0717 2964  C:\Windows\System32\aswBoot.exe - ok
00:41:23.0730 2964  [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
00:41:23.0730 2964  C:\Windows\System32\drivers\cdfs.sys - ok
00:41:23.0745 2964  [ 87BEA2616EFDEC6A1CB3BFCFB09D816A ] C:\Windows\System32\urlmon.dll
00:41:23.0745 2964  C:\Windows\System32\urlmon.dll - ok
00:41:23.0760 2964  [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
00:41:23.0761 2964  C:\Windows\System32\imagehlp.dll - ok
00:41:23.0774 2964  [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
00:41:23.0774 2964  C:\Windows\System32\ws2_32.dll - ok
00:41:23.0787 2964  [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
00:41:23.0787 2964  C:\Windows\System32\shell32.dll - ok
00:41:23.0806 2964  [ F431C3C86FCCC1C53814F043A6CAD825 ] C:\Windows\System32\iertutil.dll
00:41:23.0806 2964  C:\Windows\System32\iertutil.dll - ok
00:41:23.0910 2964  [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
00:41:23.0910 2964  C:\Windows\System32\gdi32.dll - ok
00:41:23.0920 2964  [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
00:41:23.0920 2964  C:\Windows\System32\rpcrt4.dll - ok
00:41:23.0944 2964  [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
00:41:23.0944 2964  C:\Windows\System32\msvcrt.dll - ok
00:41:23.0987 2964  [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
00:41:23.0987 2964  C:\Windows\System32\kernel32.dll - ok
00:41:24.0010 2964  [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
00:41:24.0010 2964  C:\Windows\System32\clbcatq.dll - ok
00:41:24.0025 2964  [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
00:41:24.0025 2964  C:\Windows\System32\imm32.dll - ok
00:41:24.0052 2964  [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
00:41:24.0052 2964  C:\Windows\System32\msctf.dll - ok
00:41:24.0100 2964  [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
00:41:24.0100 2964  C:\Windows\System32\Wldap32.dll - ok
00:41:24.0145 2964  [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
00:41:24.0145 2964  C:\Windows\System32\oleaut32.dll - ok
00:41:24.0187 2964  [ 435E9C764E1EF70058580996452BE6A2 ] C:\Windows\System32\wininet.dll
00:41:24.0187 2964  C:\Windows\System32\wininet.dll - ok
00:41:24.0211 2964  [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
00:41:24.0211 2964  C:\Windows\System32\normaliz.dll - ok
00:41:24.0227 2964  [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
00:41:24.0227 2964  C:\Windows\System32\ole32.dll - ok
00:41:24.0241 2964  [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
00:41:24.0241 2964  C:\Windows\System32\lpk.dll - ok
00:41:24.0253 2964  [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
00:41:24.0253 2964  C:\Windows\System32\usp10.dll - ok
00:41:24.0266 2964  [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
00:41:24.0266 2964  C:\Windows\System32\shlwapi.dll - ok
00:41:24.0279 2964  [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
00:41:24.0279 2964  C:\Windows\System32\advapi32.dll - ok
00:41:24.0292 2964  [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
00:41:24.0293 2964  C:\Windows\System32\nsi.dll - ok
00:41:24.0303 2964  [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
00:41:24.0303 2964  C:\Windows\System32\psapi.dll - ok
00:41:24.0316 2964  [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
00:41:24.0317 2964  C:\Windows\System32\user32.dll - ok
00:41:24.0336 2964  [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
00:41:24.0336 2964  C:\Windows\System32\comdlg32.dll - ok
00:41:24.0350 2964  [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
00:41:24.0350 2964  C:\Windows\System32\difxapi.dll - ok
00:41:24.0370 2964  [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
00:41:24.0370 2964  C:\Windows\System32\sechost.dll - ok
00:41:24.0383 2964  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
00:41:24.0383 2964  C:\Windows\System32\setupapi.dll - ok
00:41:24.0396 2964  [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
00:41:24.0396 2964  C:\Windows\System32\crypt32.dll - ok
00:41:24.0410 2964  [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
00:41:24.0410 2964  C:\Windows\System32\devobj.dll - ok
00:41:24.0424 2964  [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
00:41:24.0425 2964  C:\Windows\System32\KernelBase.dll - ok
00:41:24.0439 2964  [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
00:41:24.0439 2964  C:\Windows\System32\cfgmgr32.dll - ok
00:41:24.0452 2964  [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
00:41:24.0452 2964  C:\Windows\System32\wintrust.dll - ok
00:41:24.0467 2964  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
00:41:24.0467 2964  C:\Windows\System32\comctl32.dll - ok
00:41:24.0477 2964  [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
00:41:24.0477 2964  C:\Windows\System32\msasn1.dll - ok
00:41:24.0522 2964  [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
00:41:24.0522 2964  C:\Windows\SysWOW64\normaliz.dll - ok
00:41:24.0540 2964  [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
00:41:24.0540 2964  C:\Windows\System32\drivers\dxapi.sys - ok
00:41:24.0562 2964  [ 59E21156113E438D1D91AF4FC0C3B19F ] C:\Windows\System32\win32k.sys
00:41:24.0562 2964  C:\Windows\System32\win32k.sys - ok
00:41:24.0586 2964  [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
00:41:24.0586 2964  C:\Windows\System32\csrss.exe - ok
00:41:24.0601 2964  [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
00:41:24.0601 2964  C:\Windows\System32\csrsrv.dll - ok
00:41:24.0613 2964  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
00:41:24.0613 2964  C:\Windows\System32\basesrv.dll - ok
00:41:24.0625 2964  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
00:41:24.0625 2964  C:\Windows\System32\winsrv.dll - ok
00:41:24.0637 2964  [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
00:41:24.0637 2964  C:\Windows\System32\drivers\monitor.sys - ok
00:41:24.0652 2964  [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
00:41:24.0652 2964  C:\Windows\System32\tsddd.dll - ok
00:41:24.0668 2964  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
00:41:24.0668 2964  C:\Windows\System32\sxssrv.dll - ok
00:41:24.0681 2964  [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
00:41:24.0681 2964  C:\Windows\System32\cdd.dll - ok
00:41:24.0701 2964  [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
00:41:24.0701 2964  C:\Windows\System32\wininit.exe - ok
00:41:24.0710 2964  [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
00:41:24.0710 2964  C:\Windows\System32\profapi.dll - ok
00:41:24.0723 2964  [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
00:41:24.0723 2964  C:\Windows\System32\RpcRtRemote.dll - ok
00:41:24.0735 2964  [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
00:41:24.0735 2964  C:\Windows\System32\KBDUS.DLL - ok
00:41:24.0750 2964  [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
00:41:24.0750 2964  C:\Windows\System32\WlS0WndH.dll - ok
00:41:24.0764 2964  [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
00:41:24.0764 2964  C:\Windows\System32\sxs.dll - ok
00:41:24.0780 2964  [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
00:41:24.0780 2964  C:\Windows\System32\cryptbase.dll - ok
00:41:24.0793 2964  [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
00:41:24.0793 2964  C:\Windows\System32\apphelp.dll - ok
00:41:24.0804 2964  [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
00:41:24.0804 2964  C:\Windows\System32\lsass.exe - ok
00:41:24.0816 2964  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
00:41:24.0817 2964  C:\Windows\System32\services.exe - ok
00:41:24.0834 2964  [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
00:41:24.0834 2964  C:\Windows\System32\lsasrv.dll - ok
00:41:24.0846 2964  [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
00:41:24.0846 2964  C:\Windows\System32\lsm.exe - ok
00:41:24.0858 2964  [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
00:41:24.0858 2964  C:\Windows\System32\sspisrv.dll - ok
00:41:24.0870 2964  [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
00:41:24.0870 2964  C:\Windows\System32\sspicli.dll - ok
00:41:24.0883 2964  [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
00:41:24.0883 2964  C:\Windows\System32\sysntfy.dll - ok
00:41:24.0896 2964  [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
00:41:24.0896 2964  C:\Windows\System32\wmsgapi.dll - ok
00:41:24.0909 2964  [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
00:41:24.0909 2964  C:\Windows\System32\samsrv.dll - ok
00:41:24.0921 2964  [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
00:41:24.0921 2964  C:\Windows\System32\scext.dll - ok
00:41:24.0943 2964  [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
00:41:24.0943 2964  C:\Windows\System32\scesrv.dll - ok
00:41:24.0957 2964  [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
00:41:24.0957 2964  C:\Windows\System32\secur32.dll - ok
00:41:24.0966 2964  [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
00:41:24.0966 2964  C:\Windows\System32\winlogon.exe - ok
00:41:24.0983 2964  [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
00:41:24.0983 2964  C:\Windows\System32\cryptdll.dll - ok
00:41:24.0995 2964  [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
00:41:24.0995 2964  C:\Windows\System32\wevtapi.dll - ok
00:41:25.0010 2964  [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
00:41:25.0010 2964  C:\Windows\System32\winsta.dll - ok
00:41:25.0024 2964  [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
00:41:25.0024 2964  C:\Windows\System32\srvcli.dll - ok
00:41:25.0036 2964  [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
00:41:25.0036 2964  C:\Windows\System32\authz.dll - ok
00:41:25.0049 2964  [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
00:41:25.0050 2964  C:\Windows\System32\cngaudit.dll - ok
00:41:25.0071 2964  [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
00:41:25.0071 2964  C:\Windows\System32\ncrypt.dll - ok
00:41:25.0085 2964  [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
00:41:25.0085 2964  C:\Windows\System32\bcrypt.dll - ok
00:41:25.0099 2964  [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
00:41:25.0099 2964  C:\Windows\System32\msprivs.dll - ok
00:41:25.0111 2964  [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
00:41:25.0111 2964  C:\Windows\System32\netjoin.dll - ok
00:41:25.0124 2964  [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
00:41:25.0124 2964  C:\Windows\System32\negoexts.dll - ok
00:41:25.0140 2964  [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
00:41:25.0140 2964  C:\Windows\System32\kerberos.dll - ok
00:41:25.0156 2964  [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
00:41:25.0157 2964  C:\Windows\System32\cryptsp.dll - ok
00:41:25.0169 2964  [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
00:41:25.0169 2964  C:\Windows\System32\mswsock.dll - ok
00:41:25.0191 2964  [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
00:41:25.0191 2964  C:\Windows\System32\msv1_0.dll - ok
00:41:25.0207 2964  [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
00:41:25.0207 2964  C:\Windows\System32\wship6.dll - ok
00:41:25.0216 2964  [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
00:41:25.0216 2964  C:\Windows\System32\netlogon.dll - ok
00:41:25.0233 2964  [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
00:41:25.0233 2964  C:\Windows\System32\dnsapi.dll - ok
00:41:25.0256 2964  [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
00:41:25.0256 2964  C:\Windows\System32\logoncli.dll - ok
00:41:25.0266 2964  [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
00:41:25.0267 2964  C:\Windows\System32\schannel.dll - ok
00:41:25.0281 2964  [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
00:41:25.0281 2964  C:\Windows\System32\wdigest.dll - ok
00:41:25.0294 2964  [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
00:41:25.0294 2964  C:\Windows\System32\rsaenh.dll - ok
00:41:25.0306 2964  [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
00:41:25.0306 2964  C:\Windows\System32\TSpkg.dll - ok
00:41:25.0320 2964  [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
00:41:25.0320 2964  C:\Windows\System32\pku2u.dll - ok
00:41:25.0335 2964  [ 55C892560C1B42BC57FB61AEFCED2F22 ] C:\Windows\System32\LIVESSP.DLL
00:41:25.0335 2964  C:\Windows\System32\LIVESSP.DLL - ok
00:41:25.0348 2964  [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
00:41:25.0349 2964  C:\Windows\System32\bcryptprimitives.dll - ok
00:41:25.0375 2964  [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
00:41:25.0375 2964  C:\Windows\System32\credssp.dll - ok
00:41:25.0390 2964  [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
00:41:25.0390 2964  C:\Windows\System32\efslsaext.dll - ok
00:41:25.0428 2964  [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
00:41:25.0428 2964  C:\Windows\System32\scecli.dll - ok
00:41:25.0445 2964  [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
00:41:25.0445 2964  C:\Windows\System32\ubpm.dll - ok
00:41:25.0459 2964  [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
00:41:25.0459 2964  C:\Windows\System32\svchost.exe - ok
00:41:25.0482 2964  [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
00:41:25.0483 2964  C:\Windows\System32\umpnpmgr.dll - ok
00:41:25.0499 2964  [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
00:41:25.0499 2964  C:\Windows\System32\SPInf.dll - ok
00:41:25.0512 2964  [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
00:41:25.0512 2964  C:\Windows\System32\devrtl.dll - ok
00:41:25.0525 2964  [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
00:41:25.0525 2964  C:\Windows\System32\userenv.dll - ok
00:41:25.0534 2964  [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
00:41:25.0534 2964  C:\Windows\System32\gpapi.dll - ok
00:41:25.0554 2964  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
00:41:25.0554 2964  C:\Windows\System32\umpo.dll - ok
00:41:25.0566 2964  [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
00:41:25.0566 2964  C:\Windows\System32\pcwum.dll - ok
00:41:25.0582 2964  [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
00:41:25.0582 2964  C:\Windows\System32\powrprof.dll - ok
00:41:25.0616 2964  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
00:41:25.0616 2964  C:\Windows\System32\drivers\luafv.sys - ok
00:41:25.0629 2964  [ 8F19D62B04081C0BFF1E8D6F26220A28 ] C:\Windows\System32\drivers\sbapifs.sys
00:41:25.0629 2964  C:\Windows\System32\drivers\sbapifs.sys - ok
00:41:25.0643 2964  [ 8F571F016FA1976F445147E9E6C8AE9B ] C:\Windows\System32\drivers\Sftvollh.sys
00:41:25.0643 2964  C:\Windows\System32\drivers\Sftvollh.sys - ok
00:41:25.0656 2964  [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
00:41:25.0656 2964  C:\Windows\System32\rpcss.dll - ok
00:41:25.0675 2964  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
00:41:25.0675 2964  C:\Windows\System32\RpcEpMap.dll - ok
00:41:25.0690 2964  [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
00:41:25.0690 2964  C:\Windows\System32\WSHTCPIP.DLL - ok
00:41:25.0710 2964  [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
00:41:25.0710 2964  C:\Windows\System32\wshqos.dll - ok
00:41:25.0718 2964  [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
00:41:25.0718 2964  C:\Windows\System32\FirewallAPI.dll - ok
00:41:25.0732 2964  [ 715B02B892C5BA46471EFC8DCD2AE934 ] C:\Windows\System32\atiesrxx.exe
00:41:25.0733 2964  C:\Windows\System32\atiesrxx.exe - ok
00:41:25.0745 2964  [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
00:41:25.0745 2964  C:\Windows\System32\LogonUI.exe - ok
00:41:25.0758 2964  [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
00:41:25.0758 2964  C:\Windows\System32\wtsapi32.dll - ok
00:41:25.0771 2964  [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
00:41:25.0771 2964  C:\Windows\System32\authui.dll - ok
00:41:25.0786 2964  [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
00:41:25.0786 2964  C:\Windows\System32\version.dll - ok
00:41:25.0797 2964  [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
00:41:25.0797 2964  C:\Windows\System32\cryptui.dll - ok
00:41:25.0812 2964  [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
00:41:25.0812 2964  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
00:41:25.0833 2964  [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
00:41:25.0833 2964  C:\Windows\System32\wevtsvc.dll - ok
00:41:25.0844 2964  [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
00:41:25.0845 2964  C:\Windows\System32\shacct.dll - ok
00:41:25.0870 2964  [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
00:41:25.0870 2964  C:\Windows\System32\samlib.dll - ok
00:41:25.0883 2964  [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
00:41:25.0884 2964  C:\Windows\System32\audiosrv.dll - ok
00:41:25.0897 2964  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
00:41:25.0898 2964  C:\Windows\System32\profsvc.dll - ok
00:41:25.0911 2964  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
00:41:25.0911 2964  C:\Windows\System32\adtschema.dll - ok
00:41:25.0925 2964  [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
00:41:25.0925 2964  C:\Windows\System32\FntCache.dll - ok
00:41:25.0938 2964  [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
00:41:25.0938 2964  C:\Windows\System32\MMDevAPI.dll - ok
00:41:25.0958 2964  [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
00:41:25.0958 2964  C:\Windows\System32\avrt.dll - ok
00:41:25.0966 2964  [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
00:41:25.0966 2964  C:\Windows\System32\mmcss.dll - ok
00:41:25.0983 2964  [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
00:41:25.0983 2964  C:\Windows\System32\propsys.dll - ok
00:41:25.0996 2964  [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
00:41:25.0996 2964  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
00:41:26.0010 2964  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
00:41:26.0010 2964  C:\Windows\System32\wlansvc.dll - ok
00:41:26.0024 2964  [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
00:41:26.0024 2964  C:\Windows\System32\uxtheme.dll - ok
00:41:26.0035 2964  [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
00:41:26.0035 2964  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
00:41:26.0049 2964  [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
00:41:26.0050 2964  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
00:41:26.0066 2964  [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
00:41:26.0066 2964  C:\Windows\System32\drivers\fltMgr.sys - ok
00:41:26.0079 2964  [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
00:41:26.0079 2964  C:\Windows\System32\PSHED.DLL - ok
00:41:26.0092 2964  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
00:41:26.0092 2964  C:\Windows\System32\netprofm.dll - ok
00:41:26.0123 2964  [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
00:41:26.0123 2964  C:\Windows\System32\audiodg.exe - ok
00:41:26.0143 2964  [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
00:41:26.0143 2964  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
00:41:26.0161 2964  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
00:41:26.0161 2964  C:\Windows\System32\MPSSVC.dll - ok
00:41:26.0175 2964  [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
00:41:26.0175 2964  C:\Windows\System32\dui70.dll - ok
00:41:26.0194 2964  [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
00:41:26.0194 2964  C:\Windows\System32\ntmarta.dll - ok
00:41:26.0214 2964  [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
00:41:26.0214 2964  C:\Windows\System32\duser.dll - ok
00:41:26.0228 2964  [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
00:41:26.0228 2964  C:\Windows\System32\SndVolSSO.dll - ok
00:41:26.0242 2964  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
00:41:26.0242 2964  C:\Windows\System32\gpsvc.dll - ok
00:41:26.0257 2964  [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
00:41:26.0257 2964  C:\Windows\System32\hid.dll - ok
00:41:26.0275 2964  [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
00:41:26.0275 2964  C:\Windows\System32\winmm.dll - ok
00:41:26.0295 2964  [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
00:41:26.0295 2964  C:\Windows\System32\wdmaud.drv - ok
00:41:26.0312 2964  [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
00:41:26.0312 2964  C:\Windows\System32\ksuser.dll - ok
00:41:26.0327 2964  [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
00:41:26.0327 2964  C:\Windows\System32\dwmapi.dll - ok
00:41:26.0341 2964  [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
00:41:26.0341 2964  C:\Windows\System32\xmllite.dll - ok
00:41:26.0357 2964  [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
00:41:26.0357 2964  C:\Windows\System32\nlaapi.dll - ok
00:41:26.0373 2964  [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
00:41:26.0373 2964  C:\Windows\System32\atl.dll - ok
00:41:26.0390 2964  [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
00:41:26.0390 2964  C:\Windows\System32\AudioSes.dll - ok
00:41:26.0404 2964  [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
00:41:26.0404 2964  C:\Windows\System32\themeservice.dll - ok
00:41:26.0420 2964  [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
00:41:26.0420 2964  C:\Windows\System32\dsrole.dll - ok
00:41:26.0437 2964  [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
00:41:26.0437 2964  C:\Windows\System32\slc.dll - ok
00:41:26.0451 2964  [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
00:41:26.0452 2964  C:\Windows\System32\es.dll - ok
00:41:26.0468 2964  [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
00:41:26.0468 2964  C:\Windows\System32\WindowsCodecs.dll - ok
00:41:26.0477 2964  [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
00:41:26.0477 2964  C:\Windows\System32\comres.dll - ok
00:41:26.0490 2964  [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
00:41:26.0490 2964  C:\Windows\System32\Sens.dll - ok
00:41:26.0507 2964  [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
00:41:26.0507 2964  C:\Windows\System32\midimap.dll - ok
00:41:26.0521 2964  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
00:41:26.0521 2964  C:\Windows\System32\msacm32.dll - ok
00:41:26.0540 2964  [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
00:41:26.0540 2964  C:\Windows\System32\msacm32.drv - ok
00:41:26.0550 2964  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
00:41:26.0550 2964  C:\Windows\System32\uxsms.dll - ok
00:41:26.0568 2964  [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
00:41:26.0568 2964  C:\Windows\System32\drivers\lltdio.sys - ok
00:41:26.0590 2964  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
00:41:26.0590 2964  C:\Windows\System32\drivers\nwifi.sys - ok
00:41:26.0604 2964  [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
00:41:26.0604 2964  C:\Windows\System32\drivers\ndisuio.sys - ok
00:41:26.0621 2964  [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
00:41:26.0621 2964  C:\Windows\System32\drivers\rspndr.sys - ok
00:41:26.0635 2964  [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
00:41:26.0635 2964  C:\Windows\System32\IPHLPAPI.DLL - ok
00:41:26.0654 2964  [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
00:41:26.0654 2964  C:\Windows\System32\lmhsvc.dll - ok
00:41:26.0673 2964  [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
00:41:26.0673 2964  C:\Windows\System32\nsisvc.dll - ok
00:41:26.0690 2964  [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
00:41:26.0690 2964  C:\Windows\System32\nrpsrv.dll - ok
00:41:26.0708 2964  [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
00:41:26.0708 2964  C:\Windows\System32\winnsi.dll - ok
00:41:26.0721 2964  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
00:41:26.0721 2964  C:\Windows\System32\dhcpcore.dll - ok
00:41:26.0732 2964  [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
00:41:26.0732 2964  C:\Windows\System32\AudioEng.dll - ok
00:41:26.0747 2964  [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
00:41:26.0747 2964  C:\Windows\System32\dhcpcore6.dll - ok
00:41:26.0765 2964  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
00:41:26.0766 2964  C:\Windows\System32\winbrand.dll - ok
00:41:26.0786 2964  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
00:41:26.0786 2964  C:\Windows\System32\dnsrslvr.dll - ok
00:41:26.0859 2964  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
00:41:26.0859 2964  C:\Windows\System32\eapsvc.dll - ok
00:41:26.0874 2964  [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
00:41:26.0874 2964  C:\Windows\System32\keyiso.dll - ok
00:41:26.0889 2964  [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
00:41:26.0889 2964  C:\Windows\System32\VaultCredProvider.dll - ok
00:41:26.0916 2964  [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
00:41:26.0916 2964  C:\Windows\System32\AUDIOKSE.dll - ok
00:41:26.0992 2964  [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
00:41:26.0993 2964  C:\Windows\System32\eapphost.dll - ok
00:41:27.0002 2964  [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
00:41:27.0002 2964  C:\Windows\System32\FWPUCLNT.DLL - ok
00:41:27.0035 2964  [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
00:41:27.0035 2964  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
00:41:27.0050 2964  [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
00:41:27.0050 2964  C:\Windows\System32\BioCredProv.dll - ok
00:41:27.0088 2964  [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
00:41:27.0088 2964  C:\Windows\System32\dnsext.dll - ok
00:41:27.0105 2964  [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
00:41:27.0105 2964  C:\Windows\System32\umb.dll - ok
00:41:27.0132 2964  [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
00:41:27.0132 2964  C:\Windows\System32\winbio.dll - ok
00:41:27.0146 2964  [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
00:41:27.0146 2964  C:\Windows\System32\credui.dll - ok
00:41:27.0175 2964  [ 3F6E2DFE01183B44DD298801CAB4FCF2 ] C:\Windows\System32\RtkAPO64.dll
00:41:27.0175 2964  C:\Windows\System32\RtkAPO64.dll - ok
00:41:27.0190 2964  [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
00:41:27.0190 2964  C:\Windows\System32\wlanmsm.dll - ok
00:41:27.0203 2964  [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
00:41:27.0203 2964  C:\Windows\System32\dhcpcsvc.dll - ok
00:41:27.0231 2964  [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
00:41:27.0232 2964  C:\Windows\System32\wlansec.dll - ok
00:41:27.0247 2964  [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
00:41:27.0247 2964  C:\Windows\System32\dhcpcsvc6.dll - ok
00:41:27.0258 2964  [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
00:41:27.0258 2964  C:\Windows\System32\netapi32.dll - ok
00:41:27.0286 2964  [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
00:41:27.0286 2964  C:\Windows\System32\onex.dll - ok
00:41:27.0301 2964  [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
00:41:27.0301 2964  C:\Windows\System32\vaultcli.dll - ok
00:41:27.0316 2964  [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
00:41:27.0316 2964  C:\Windows\System32\netutils.dll - ok
00:41:27.0349 2964  [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
00:41:27.0349 2964  C:\Windows\System32\wkscli.dll - ok
00:41:27.0360 2964  [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
00:41:27.0360 2964  C:\Windows\System32\eappprxy.dll - ok
00:41:27.0376 2964  [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
00:41:27.0376 2964  C:\Windows\System32\samcli.dll - ok
00:41:27.0406 2964  [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
00:41:27.0406 2964  C:\Windows\System32\eappcfg.dll - ok
00:41:27.0423 2964  [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
00:41:27.0423 2964  C:\Windows\System32\certCredProvider.dll - ok
00:41:27.0459 2964  [ 7097425051CE67B450EBF2B1390AE492 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
00:41:27.0459 2964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
00:41:27.0474 2964  [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
00:41:27.0474 2964  C:\Windows\System32\l2gpstore.dll - ok
00:41:27.0515 2964  [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
00:41:27.0515 2964  C:\Windows\System32\wlanutil.dll - ok
00:41:27.0532 2964  [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
00:41:27.0532 2964  C:\Windows\System32\wlgpclnt.dll - ok
00:41:27.0592 2964  [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
00:41:27.0592 2964  C:\Windows\System32\WinSCard.dll - ok
00:41:27.0630 2964  [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
00:41:27.0630 2964  C:\Windows\System32\rasplap.dll - ok
00:41:27.0652 2964  [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
00:41:27.0652 2964  C:\Windows\System32\msxml6.dll - ok
00:41:27.0667 2964  [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
00:41:27.0667 2964  C:\Windows\System32\rasapi32.dll - ok
00:41:27.0680 2964  [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
00:41:27.0682 2964  C:\Windows\System32\rasman.dll - ok
00:41:27.0712 2964  [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
00:41:27.0712 2964  C:\Windows\System32\rtutils.dll - ok
00:41:27.0743 2964  [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
00:41:27.0744 2964  C:\Windows\System32\UXInit.dll - ok
00:41:27.0757 2964  [ 4EB1B8344B0479B016DAC4DDE5A9B8AA ] C:\Windows\System32\atieclxx.exe
00:41:27.0757 2964  C:\Windows\System32\atieclxx.exe - ok
00:41:27.0783 2964  [ B09EF5B4696B24E6F2021CF46175138F ] C:\Windows\System32\atiadlxx.dll
00:41:27.0783 2964  C:\Windows\System32\atiadlxx.dll - ok
00:41:27.0795 2964  [ 973ADB6AD47AC047F900C0D760AB6BE2 ] C:\Windows\System32\AERTAR64.dll
00:41:27.0795 2964  C:\Windows\System32\AERTAR64.dll - ok
00:41:27.0809 2964  [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
00:41:27.0809 2964  C:\Windows\System32\shsvcs.dll - ok
00:41:27.0826 2964  [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
00:41:27.0826 2964  C:\Windows\System32\schedsvc.dll - ok
00:41:27.0839 2964  [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
00:41:27.0839 2964  C:\Windows\System32\WMALFXGFXDSP.dll - ok
00:41:27.0868 2964  [ 7BCB5130D3856522BC85528AD0EC6F10 ] C:\Windows\System32\atimuixx.dll
00:41:27.0868 2964  C:\Windows\System32\atimuixx.dll - ok
00:41:27.0882 2964  [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
00:41:27.0882 2964  C:\Windows\System32\ktmw32.dll - ok
00:41:27.0911 2964  [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
00:41:27.0911 2964  C:\Windows\System32\mfplat.dll - ok
00:41:27.0925 2964  [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
00:41:27.0925 2964  C:\Windows\System32\fveapi.dll - ok
00:41:27.0937 2964  [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
00:41:27.0938 2964  C:\Windows\System32\fvecerts.dll - ok
00:41:27.0973 2964  [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
00:41:27.0973 2964  C:\Windows\System32\tbs.dll - ok
00:41:27.0986 2964  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
00:41:27.0986 2964  C:\Windows\System32\taskcomp.dll - ok
00:41:28.0016 2964  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
00:41:28.0016 2964  C:\Windows\System32\drivers\http.sys - ok
00:41:28.0030 2964  [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
00:41:28.0030 2964  C:\Windows\System32\wiarpc.dll - ok
00:41:28.0043 2964  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
00:41:28.0044 2964  C:\Windows\System32\spoolsv.exe - ok
00:41:28.0074 2964  [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
00:41:28.0074 2964  C:\Windows\System32\BFE.DLL - ok
00:41:28.0087 2964  [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
00:41:28.0087 2964  C:\Windows\System32\drivers\bowser.sys - ok
00:41:28.0123 2964  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
00:41:28.0123 2964  C:\Windows\System32\drivers\mpsdrv.sys - ok
00:41:28.0135 2964  [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
00:41:28.0135 2964  C:\Windows\System32\drivers\mrxsmb.sys - ok
00:41:28.0150 2964  [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
00:41:28.0150 2964  C:\Windows\System32\drivers\mrxsmb10.sys - ok
00:41:28.0165 2964  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
00:41:28.0165 2964  C:\Windows\System32\drivers\mrxsmb20.sys - ok
00:41:28.0178 2964  [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
00:41:28.0178 2964  C:\Windows\System32\wkssvc.dll - ok
00:41:28.0209 2964  [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
00:41:28.0210 2964  C:\Windows\System32\wfapigp.dll - ok
00:41:28.0239 2964  [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
00:41:28.0239 2964  C:\Windows\System32\mscms.dll - ok
00:41:28.0255 2964  [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
00:41:28.0255 2964  C:\Windows\System32\pcasvc.dll - ok
00:41:28.0283 2964  [ D22791FCF6AD10A5591C719C37457A24 ] C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
00:41:28.0283 2964  C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe - ok
00:41:28.0296 2964  [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
00:41:28.0296 2964  C:\Windows\System32\snmptrap.exe - ok
00:41:28.0303 2964  [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
00:41:28.0303 2964  C:\Windows\SysWOW64\ntdll.dll - ok
00:41:28.0320 2964  [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
00:41:28.0320 2964  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
00:41:28.0333 2964  [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
00:41:28.0333 2964  C:\Windows\System32\oleacc.dll - ok
00:41:28.0362 2964  [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
00:41:28.0363 2964  C:\Windows\System32\wow64.dll - ok
00:41:28.0375 2964  [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
00:41:28.0375 2964  C:\Windows\System32\wow64win.dll - ok
00:41:28.0387 2964  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
00:41:28.0387 2964  C:\Windows\System32\sstpsvc.dll - ok
00:41:28.0416 2964  [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
00:41:28.0416 2964  C:\Windows\System32\UIAutomationCore.dll - ok
00:41:28.0428 2964  [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
00:41:28.0428 2964  C:\Windows\System32\wow64cpu.dll - ok
00:41:28.0441 2964  [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
00:41:28.0441 2964  C:\Windows\SysWOW64\kernel32.dll - ok
00:41:28.0465 2964  [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
00:41:28.0465 2964  C:\Windows\System32\provsvc.dll - ok
00:41:28.0478 2964  [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
00:41:28.0478 2964  C:\Windows\SysWOW64\KernelBase.dll - ok
00:41:28.0490 2964  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
00:41:28.0490 2964  C:\Windows\SysWOW64\user32.dll - ok
00:41:28.0510 2964  [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
00:41:28.0510 2964  C:\Windows\SysWOW64\gdi32.dll - ok
00:41:28.0524 2964  [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
00:41:28.0524 2964  C:\Windows\SysWOW64\lpk.dll - ok
00:41:28.0536 2964  [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
00:41:28.0536 2964  C:\Windows\SysWOW64\usp10.dll - ok
00:41:28.0556 2964  [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
00:41:28.0556 2964  C:\Windows\SysWOW64\msvcrt.dll - ok
00:41:28.0565 2964  [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
00:41:28.0565 2964  C:\Windows\SysWOW64\advapi32.dll - ok
00:41:28.0580 2964  [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
00:41:28.0580 2964  C:\Windows\System32\imageres.dll - ok
00:41:28.0613 2964  [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
00:41:28.0613 2964  C:\Windows\SysWOW64\sechost.dll - ok
00:41:28.0628 2964  [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
00:41:28.0628 2964  C:\Windows\SysWOW64\rpcrt4.dll - ok
00:41:28.0640 2964  [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
00:41:28.0640 2964  C:\Windows\SysWOW64\cryptbase.dll - ok
00:41:28.0653 2964  [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
00:41:28.0653 2964  C:\Windows\SysWOW64\shell32.dll - ok
00:41:28.0665 2964  [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
00:41:28.0665 2964  C:\Windows\SysWOW64\sspicli.dll - ok
00:41:28.0677 2964  [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
00:41:28.0677 2964  C:\Windows\SysWOW64\shlwapi.dll - ok
00:41:28.0690 2964  [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
00:41:28.0690 2964  C:\Windows\SysWOW64\ole32.dll - ok
00:41:28.0737 2964  [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
00:41:28.0737 2964  C:\Windows\SysWOW64\oleaut32.dll - ok
00:41:28.0750 2964  [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
00:41:28.0750 2964  C:\Windows\SysWOW64\userenv.dll - ok
00:41:28.0778 2964  [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
00:41:28.0778 2964  C:\Windows\SysWOW64\profapi.dll - ok
00:41:28.0790 2964  [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
00:41:28.0790 2964  C:\Windows\SysWOW64\imm32.dll - ok
00:41:28.0802 2964  [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
00:41:28.0802 2964  C:\Windows\SysWOW64\msctf.dll - ok
00:41:28.0810 2964  [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
00:41:28.0810 2964  C:\Windows\SysWOW64\clbcatq.dll - ok
00:41:28.0826 2964  [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
00:41:28.0826 2964  C:\Windows\SysWOW64\cryptsp.dll - ok
00:41:28.0832 2964  [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
00:41:28.0832 2964  C:\Windows\SysWOW64\rsaenh.dll - ok
00:41:28.0840 2964  [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
00:41:28.0841 2964  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
00:41:28.0858 2964  [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
00:41:28.0858 2964  C:\Windows\System32\msi.dll - ok
00:41:28.0874 2964  [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
00:41:28.0874 2964  C:\Windows\System32\msiltcfg.dll - ok
00:41:28.0904 2964  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:41:28.0904 2964  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
00:41:28.0945 2964  [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
00:41:28.0945 2964  C:\Windows\SysWOW64\crypt32.dll - ok
00:41:28.0965 2964  [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
00:41:28.0965 2964  C:\Windows\SysWOW64\msasn1.dll - ok
00:41:28.0978 2964  [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
00:41:28.0978 2964  C:\Windows\SysWOW64\wintrust.dll - ok
00:41:28.0991 2964  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
00:41:28.0992 2964  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
00:41:29.0024 2964  [ 43FAB56AE5F639AD59D7209693F4C4C2 ] C:\Windows\System32\wlanext.exe
00:41:29.0024 2964  C:\Windows\System32\wlanext.exe - ok
00:41:29.0038 2964  [ D1E343BC00136CE03C4D403194D06A80 ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
00:41:29.0038 2964  C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
00:41:29.0071 2964  [ A567B70468A04F4BA64339D1CAF78E58 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
00:41:29.0071 2964  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
00:41:29.0084 2964  [ 3D319A5F9B6A672E6BC3FE44E68A4570 ] C:\Windows\System32\msvcp100.dll
00:41:29.0084 2964  C:\Windows\System32\msvcp100.dll - ok
00:41:29.0124 2964  [ 23DDD075AC31D22F94CA2FD0D1C207B5 ] C:\Windows\System32\msvcr100.dll
00:41:29.0124 2964  C:\Windows\System32\msvcr100.dll - ok



#5 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 08:13 PM

225D64CF07A568A3E1BF8C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
00:41:29.0138 2964  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
00:41:29.0157 2964  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
00:41:29.0157 2964  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
00:41:29.0170 2964  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
00:41:29.0170 2964  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
00:41:29.0184 2964  [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
00:41:29.0184 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
00:41:29.0240 2964  [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
00:41:29.0240 2964  C:\Windows\SysWOW64\version.dll - ok
00:41:29.0255 2964  [ D339D7F6E52AECCA9C0898CB547B2902 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
00:41:29.0255 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
00:41:29.0287 2964  [ 5F3347EBA403EE64780980A5BAF10304 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
00:41:29.0287 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
00:41:29.0300 2964  [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
00:41:29.0300 2964  C:\Windows\SysWOW64\ws2_32.dll - ok
00:41:29.0315 2964  [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
00:41:29.0315 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
00:41:29.0322 2964  [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
00:41:29.0322 2964  C:\Windows\SysWOW64\nsi.dll - ok
00:41:29.0335 2964  [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
00:41:29.0335 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
00:41:29.0366 2964  [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
00:41:29.0366 2964  C:\Windows\SysWOW64\wsock32.dll - ok
00:41:29.0379 2964  [ 09B7E7CD6F202247B3CF2306108589C2 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
00:41:29.0379 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
00:41:29.0410 2964  [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
00:41:29.0410 2964  C:\Windows\SysWOW64\winmm.dll - ok
00:41:29.0424 2964  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
00:41:29.0425 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
00:41:29.0438 2964  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
00:41:29.0438 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
00:41:29.0470 2964  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
00:41:29.0470 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
00:41:29.0484 2964  [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
00:41:29.0484 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
00:41:29.0518 2964  [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
00:41:29.0518 2964  C:\Windows\System32\conhost.exe - ok
00:41:29.0531 2964  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
00:41:29.0532 2964  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
00:41:29.0546 2964  [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
00:41:29.0546 2964  C:\Windows\SysWOW64\setupapi.dll - ok
00:41:29.0578 2964  [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
00:41:29.0578 2964  C:\Windows\SysWOW64\cfgmgr32.dll - ok
00:41:29.0585 2964  [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
00:41:29.0585 2964  C:\Windows\SysWOW64\devobj.dll - ok
00:41:29.0626 2964  [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
00:41:29.0626 2964  C:\Windows\SysWOW64\wtsapi32.dll - ok
00:41:29.0654 2964  [ E645DE6CD838D0021835DC5179F459C5 ] C:\Windows\System32\Rtlihvs.dll
00:41:29.0655 2964  C:\Windows\System32\Rtlihvs.dll - ok
00:41:29.0667 2964  [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
00:41:29.0667 2964  C:\Windows\System32\wlanapi.dll - ok
00:41:29.0720 2964  [ 671A40A97B7105D802A61D05E5477748 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
00:41:29.0720 2964  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
00:41:29.0782 2964  [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
00:41:29.0785 2964  C:\Windows\System32\netcfgx.dll - ok
00:41:29.0801 2964  [ 6AF588B2525F7AF76BB8B1DD7D59C4BC ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
00:41:29.0801 2964  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
00:41:29.0821 2964  [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
00:41:29.0821 2964  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
00:41:29.0862 2964  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
00:41:29.0862 2964  C:\Windows\SysWOW64\dnssd.dll - ok
00:41:29.0879 2964  [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
00:41:29.0879 2964  C:\Windows\SysWOW64\ntmarta.dll - ok
00:41:29.0912 2964  [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
00:41:29.0912 2964  C:\Windows\SysWOW64\Wldap32.dll - ok
00:41:29.0932 2964  [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
00:41:29.0932 2964  C:\Windows\SysWOW64\mswsock.dll - ok
00:41:29.0972 2964  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
00:41:29.0972 2964  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
00:41:29.0988 2964  [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
00:41:29.0988 2964  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
00:41:30.0021 2964  [ 587EFD6A3A30A35A27904D21AE1FB882 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
00:41:30.0021 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe - ok
00:41:30.0035 2964  [ 5BF82F212967C8669AEC4CE8D082EDD0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ushata.dll
00:41:30.0035 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ushata.dll - ok
00:41:30.0067 2964  [ E36CB8B559C8FA3D296415AB5169116E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpinit.dll
00:41:30.0067 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpinit.dll - ok
00:41:30.0081 2964  [ B49B56B64F57699A1A663D2CF7D0A56F ] C:\Windows\SysWOW64\wininet.dll
00:41:30.0081 2964  C:\Windows\SysWOW64\wininet.dll - ok
00:41:30.0093 2964  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
00:41:30.0093 2964  C:\Windows\SysWOW64\fltLib.dll - ok
00:41:30.0131 2964  [ DA849AB6870AB975375E37A45CC0E330 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpservice.dll
00:41:30.0131 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpservice.dll - ok
00:41:30.0143 2964  [ D171EAA745A2C0C583CDDA13D9088EE4 ] C:\Windows\SysWOW64\iertutil.dll
00:41:30.0143 2964  C:\Windows\SysWOW64\iertutil.dll - ok
00:41:30.0156 2964  [ BE157C3800DA3010EFC48280ECF81C16 ] C:\Windows\SysWOW64\urlmon.dll
00:41:30.0156 2964  C:\Windows\SysWOW64\urlmon.dll - ok
00:41:30.0169 2964  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
00:41:30.0169 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
00:41:30.0181 2964  [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
00:41:30.0182 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
00:41:30.0208 2964  [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
00:41:30.0208 2964  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
00:41:30.0228 2964  [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
00:41:30.0228 2964  C:\Windows\SysWOW64\winnsi.dll - ok
00:41:30.0242 2964  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
00:41:30.0242 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
00:41:30.0257 2964  [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
00:41:30.0257 2964  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
00:41:30.0274 2964  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
00:41:30.0274 2964  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
00:41:30.0291 2964  [ BC83108B18756547013ED443B8CDB31B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcp100.dll
00:41:30.0291 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcp100.dll - ok
00:41:30.0308 2964  [ 0E059FCB8F61BFC50014537564A9B26A ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
00:41:30.0308 2964  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
00:41:30.0323 2964  [ 0D2B530F060C050265D67C191C8A89DE ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
00:41:30.0323 2964  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
00:41:30.0337 2964  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcr100.dll
00:41:30.0338 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcr100.dll - ok
00:41:30.0361 2964  [ 4FCA43B1327808B2542A40BA588BCA43 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpmain.dll
00:41:30.0361 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpmain.dll - ok
00:41:30.0375 2964  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] C:\Program Files\Bonjour\mDNSResponder.exe
00:41:30.0375 2964  C:\Program Files\Bonjour\mDNSResponder.exe - ok
00:41:30.0382 2964  [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
00:41:30.0383 2964  C:\Windows\SysWOW64\powrprof.dll - ok
00:41:30.0407 2964  [ C7EDF9020894938533A837C5E4B3189C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fssync.dll
00:41:30.0407 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fssync.dll - ok
00:41:30.0424 2964  [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
00:41:30.0424 2964  C:\Windows\SysWOW64\secur32.dll - ok
00:41:30.0438 2964  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
00:41:30.0439 2964  C:\Windows\System32\cryptsvc.dll - ok
00:41:30.0465 2964  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
00:41:30.0465 2964  C:\Windows\System32\dps.dll - ok
00:41:30.0478 2964  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
00:41:30.0478 2964  C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe - ok
00:41:30.0492 2964  [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
00:41:30.0492 2964  C:\Windows\System32\cryptnet.dll - ok
00:41:30.0518 2964  [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
00:41:30.0518 2964  C:\Windows\System32\winhttp.dll - ok
00:41:30.0534 2964  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
00:41:30.0534 2964  C:\Windows\System32\taskschd.dll - ok
00:41:30.0561 2964  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
00:41:30.0561 2964  C:\Windows\System32\vssapi.dll - ok
00:41:30.0577 2964  [ 34BEC2BCD77ECB238E00394483AA040D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dumpwriter.dll
00:41:30.0577 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dumpwriter.dll - ok
00:41:30.0590 2964  [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
00:41:30.0590 2964  C:\Windows\System32\webio.dll - ok
00:41:30.0619 2964  [ F02FE922D118427A8C45B6C6206AB652 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\service.dll
00:41:30.0619 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\service.dll - ok
00:41:30.0636 2964  [ C99FA2D11B120F6475FD6DFB9D6C2CC7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prremote.dll
00:41:30.0636 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prremote.dll - ok
00:41:30.0645 2964  [ D2D1132B2E62116533296025E7F42F4E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prloader.dll
00:41:30.0645 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prloader.dll - ok
00:41:30.0658 2964  [ C4B1EE61C1AC72E66E961DA4F183E49E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nfio.ppl
00:41:30.0658 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nfio.ppl - ok
00:41:30.0672 2964  [ 36ABB491B6B6A62ED82332FD5D5B7A5F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fsdrvplg.ppl
00:41:30.0672 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fsdrvplg.ppl - ok
00:41:30.0684 2964  [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
00:41:30.0684 2964  C:\Windows\SysWOW64\mpr.dll - ok
00:41:30.0718 2964  [ 4BD79D03984226DB22D19BBE79369E0E ] C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll
00:41:30.0718 2964  C:\Windows\winsxs\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_044aad0bab1eb146\mfc90u.dll - ok
00:41:30.0747 2964  [ 229E9AA2F80FB65F7B6BE72783D08382 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\winreg.ppl
00:41:30.0748 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\winreg.ppl - ok
00:41:30.0778 2964  [ 3CF38BA02F17C0A4EAFC9C082BD1F8C8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pxstub.ppl
00:41:30.0778 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pxstub.ppl - ok
00:41:30.0791 2964  [ BD5443206A191AED2DE17936998B8C07 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\params.ppl
00:41:30.0792 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\params.ppl - ok
00:41:30.0810 2964  [ D2C733C669A54F1EC29B05C4CE3A70D3 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_legacy.dll
00:41:30.0810 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_legacy.dll - ok
00:41:30.0833 2964  [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
00:41:30.0833 2964  C:\Windows\System32\vsstrace.dll - ok
00:41:30.0862 2964  [ 3747A53ADE8EF6E1719B8A4E7B51F99C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\key_value_storage.dll
00:41:30.0862 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\key_value_storage.dll - ok
00:41:30.0877 2964  [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
00:41:30.0877 2964  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
00:41:30.0907 2964  [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
00:41:30.0907 2964  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
00:41:30.0920 2964  [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
00:41:30.0920 2964  C:\Windows\System32\msimg32.dll - ok
00:41:30.0939 2964  [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
00:41:30.0939 2964  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
00:41:30.0968 2964  [ D918AF3EA07D248F911F7C6B801AA1E3 ] C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL
00:41:30.0968 2964  C:\Windows\winsxs\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_01c9581e60cbee58\MFC90ENU.DLL - ok
00:41:30.0986 2964  [ B7382BEC806B7B00FC84B3E2061FF48E ] C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
00:41:30.0986 2964  C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe - ok
00:41:31.0017 2964  [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
00:41:31.0018 2964  C:\Windows\SysWOW64\svchost.exe - ok
00:41:31.0031 2964  [ D86A39BF100069444D026D22D9A6E555 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
00:41:31.0032 2964  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
00:41:31.0063 2964  [ 77C15D7E8F002A173EEBFF0B20CD697D ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
00:41:31.0063 2964  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe - ok
00:41:31.0078 2964  [ 2A6B16AAD88A449B9E124FBF2D308E07 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
00:41:31.0078 2964  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
00:41:31.0093 2964  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\msvcr100.dll
00:41:31.0093 2964  C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\msvcr100.dll - ok
00:41:31.0128 2964  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
00:41:31.0128 2964  C:\Windows\SysWOW64\winspool.drv - ok
00:41:31.0142 2964  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
00:41:31.0142 2964  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
00:41:31.0158 2964  [ E4693409D06785477A49FB34AFAE1B92 ] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
00:41:31.0158 2964  C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe - ok
00:41:31.0167 2964  [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
00:41:31.0167 2964  C:\Windows\SysWOW64\comdlg32.dll - ok
00:41:31.0182 2964  [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
00:41:31.0182 2964  C:\Windows\SysWOW64\msimg32.dll - ok
00:41:31.0207 2964  [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
00:41:31.0207 2964  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
00:41:31.0230 2964  [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
00:41:31.0230 2964  C:\Windows\SysWOW64\oledlg.dll - ok
00:41:31.0301 2964  [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
00:41:31.0302 2964  C:\Windows\SysWOW64\oleacc.dll - ok
00:41:31.0318 2964  [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
00:41:31.0318 2964  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
00:41:31.0332 2964  [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
00:41:31.0332 2964  C:\Windows\SysWOW64\uxtheme.dll - ok
00:41:31.0361 2964  [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
00:41:31.0361 2964  C:\Windows\SysWOW64\dwmapi.dll - ok
00:41:31.0375 2964  [ 6601AF3F800D8AB08387618AAFA869DB ] C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll
00:41:31.0375 2964  C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RsCRLib.dll - ok
00:41:31.0389 2964  [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
00:41:31.0389 2964  C:\Windows\System32\IKEEXT.DLL - ok
00:41:31.0413 2964  [ 162A5E3A691B903111526147C8D29E6D ] C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
00:41:31.0414 2964  C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe - ok
00:41:31.0427 2964  [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
00:41:31.0427 2964  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
00:41:31.0458 2964  [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
00:41:31.0459 2964  C:\Windows\SysWOW64\psapi.dll - ok
00:41:31.0472 2964  [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
00:41:31.0472 2964  C:\Windows\SysWOW64\NapiNSP.dll - ok
00:41:31.0484 2964  [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
00:41:31.0484 2964  C:\Windows\SysWOW64\nlaapi.dll - ok
00:41:31.0515 2964  [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
00:41:31.0515 2964  C:\Windows\SysWOW64\dnsapi.dll - ok
00:41:31.0529 2964  [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
00:41:31.0529 2964  C:\Windows\SysWOW64\pnrpnsp.dll - ok
00:41:31.0541 2964  [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
00:41:31.0542 2964  C:\Windows\System32\vpnikeapi.dll - ok
00:41:31.0573 2964  [ 9D4A1690AF93F233E15380398BEC7431 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
00:41:31.0573 2964  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
00:41:31.0590 2964  [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
00:41:31.0590 2964  C:\Windows\SysWOW64\winrnr.dll - ok
00:41:31.0621 2964  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
00:41:31.0621 2964  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
00:41:31.0637 2964  [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
00:41:31.0637 2964  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
00:41:31.0650 2964  [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
00:41:31.0650 2964  C:\Windows\SysWOW64\rasadhlp.dll - ok
00:41:31.0664 2964  [ B5E53FCA219A6491E9A1BA146A5D2452 ] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
00:41:31.0664 2964  C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe - ok
00:41:31.0677 2964  [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
00:41:31.0677 2964  C:\Windows\SysWOW64\msxml6.dll - ok
00:41:31.0714 2964  [ AC9D6E3629E4388A9EA9B4172493AAEE ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
00:41:31.0714 2964  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe - ok
00:41:31.0746 2964  [ 74FD5CAEECD78EE880AE015FDE96A147 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
00:41:31.0746 2964  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll - ok
00:41:31.0780 2964  [ 28AD5E311996A34025CFB07E131058DD ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
00:41:31.0780 2964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
00:41:31.0792 2964  [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
00:41:31.0792 2964  C:\Program Files\Bonjour\mdnsNSP.dll - ok
00:41:31.0805 2964  [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
00:41:31.0806 2964  C:\Windows\System32\rasadhlp.dll - ok
00:41:31.0817 2964  [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
00:41:31.0818 2964  C:\Windows\SysWOW64\mfc42.dll - ok
00:41:31.0866 2964  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
00:41:31.0867 2964  C:\Windows\System32\localspl.dll - ok
00:41:31.0931 2964  [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
00:41:31.0931 2964  C:\Windows\SysWOW64\odbc32.dll - ok
00:41:31.0966 2964  [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
00:41:31.0966 2964  C:\Windows\System32\spoolss.dll - ok
00:41:31.0979 2964  [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
00:41:31.0981 2964  C:\Windows\System32\winspool.drv - ok
00:41:31.0993 2964  [ 1F5AFD468EB5E09E9ED75A087529EAB5 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
00:41:31.0993 2964  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
00:41:32.0023 2964  [ 9701ACE999CFBF4E0F806F03EA87635F ] C:\Windows\System32\CNMLMAR.DLL
00:41:32.0023 2964  C:\Windows\System32\CNMLMAR.DLL - ok
00:41:32.0036 2964  [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
00:41:32.0036 2964  C:\Windows\System32\PrintIsolationProxy.dll - ok
00:41:32.0066 2964  [ FEA3C4BA2C108106EFDE6D4BD55D05C3 ] C:\Windows\System32\CNMN6PPM.DLL
00:41:32.0066 2964  C:\Windows\System32\CNMN6PPM.DLL - ok
00:41:32.0079 2964  [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
00:41:32.0079 2964  C:\Windows\SysWOW64\odbcint.dll - ok
00:41:32.0091 2964  [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMGCA.DLL
00:41:32.0091 2964  C:\Windows\System32\E_ILMGCA.DLL - ok
00:41:32.0114 2964  [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
00:41:32.0114 2964  C:\Windows\System32\FXSMON.dll - ok
00:41:32.0131 2964  [ 0436CA4FDD9C776DD9F050E111B85A54 ] C:\Windows\System32\hpf3l101.dll
00:41:32.0131 2964  C:\Windows\System32\hpf3l101.dll - ok
00:41:32.0144 2964  [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
00:41:32.0144 2964  C:\Windows\System32\tcpmon.dll - ok
00:41:32.0159 2964  [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
00:41:32.0159 2964  C:\Windows\System32\snmpapi.dll - ok
00:41:32.0172 2964  [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
00:41:32.0172 2964  C:\Windows\System32\wsnmp32.dll - ok
00:41:32.0184 2964  [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
00:41:32.0184 2964  C:\Windows\System32\usbmon.dll - ok
00:41:32.0208 2964  [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
00:41:32.0208 2964  C:\Windows\System32\WSDMon.dll - ok
00:41:32.0229 2964  [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
00:41:32.0229 2964  C:\Windows\System32\WSDApi.dll - ok
00:41:32.0243 2964  [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
00:41:32.0243 2964  C:\Windows\System32\webservices.dll - ok
00:41:32.0260 2964  [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
00:41:32.0260 2964  C:\Windows\System32\fundisc.dll - ok
00:41:32.0276 2964  [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
00:41:32.0276 2964  C:\Windows\System32\fdPnp.dll - ok
00:41:32.0289 2964  [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
00:41:32.0290 2964  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
00:41:32.0304 2964  [ 7A8A8103C3C8BCCA405412AEE3B59B23 ] C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll
00:41:32.0304 2964  C:\Windows\System32\spool\prtprocs\x64\hpfpp101.dll - ok
00:41:32.0317 2964  [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
00:41:32.0317 2964  C:\Windows\System32\win32spl.dll - ok
00:41:32.0330 2964  [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
00:41:32.0331 2964  C:\Windows\System32\inetpp.dll - ok
00:41:32.0348 2964  [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
00:41:32.0348 2964  C:\Windows\System32\cscapi.dll - ok
00:41:32.0364 2964  [ 81E7E920312D372CF57A817049AC7C76 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
00:41:32.0364 2964  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
00:41:32.0377 2964  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
00:41:32.0377 2964  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
00:41:32.0395 2964  [ 97A4A2A00B1FAD261E7DAC0136E7EE31 ] C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
00:41:32.0395 2964  C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe - ok
00:41:32.0411 2964  [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
00:41:32.0411 2964  C:\Windows\SysWOW64\winsta.dll - ok
00:41:32.0426 2964  [ 2B92A88E329F4845D31941967A3BAA90 ] C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\msvcr100.dll
00:41:32.0426 2964  C:\Program Files (x86)\Yuna Software\Messenger Plus! for Skype\msvcr100.dll - ok
00:41:32.0451 2964  [ D4F51E88C71BF8F06EA1BE320B0BB75B ] C:\Windows\System32\HPZinw12.dll
00:41:32.0451 2964  C:\Windows\System32\HPZinw12.dll - ok
00:41:32.0460 2964  [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
00:41:32.0460 2964  C:\Windows\System32\aepic.dll - ok
00:41:32.0475 2964  [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
00:41:32.0475 2964  C:\Windows\System32\drivers\PEAuth.sys - ok
00:41:32.0489 2964  [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
00:41:32.0489 2964  C:\Windows\System32\nlasvc.dll - ok
00:41:32.0507 2964  [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
00:41:32.0507 2964  C:\Windows\System32\wsock32.dll - ok
00:41:32.0522 2964  [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
00:41:32.0522 2964  C:\Windows\System32\ncsi.dll - ok
00:41:32.0537 2964  [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
00:41:32.0537 2964  C:\Windows\System32\sfc.dll - ok
00:41:32.0556 2964  [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
00:41:32.0556 2964  C:\Windows\System32\sfc_os.dll - ok
00:41:32.0571 2964  [ EA735BF6DF13A857A83C99BF27A422AD ] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
00:41:32.0571 2964  C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe - ok
00:41:32.0588 2964  [ 9A80707D8B6C1806531BFD7399B3CC76 ] C:\Windows\System32\HPZipm12.dll
00:41:32.0589 2964  C:\Windows\System32\HPZipm12.dll - ok
00:41:32.0606 2964  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
00:41:32.0607 2964  C:\Windows\System32\ssdpapi.dll - ok
00:41:32.0620 2964  [ 085D18C71AB2611A3D61528132B6501E ] C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
00:41:32.0621 2964  C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe - ok
00:41:32.0636 2964  [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
00:41:32.0636 2964  C:\Windows\System32\drivers\secdrv.sys - ok
00:41:32.0650 2964  [ C6CC9297BD53E5229653303E556AA539 ] C:\Windows\System32\drivers\Sftfslh.sys
00:41:32.0650 2964  C:\Windows\System32\drivers\Sftfslh.sys - ok
00:41:32.0664 2964  [ 390AA7BC52CEE43F6790CDEA1E776703 ] C:\Windows\System32\drivers\Sftplaylh.sys
00:41:32.0664 2964  C:\Windows\System32\drivers\Sftplaylh.sys - ok
00:41:32.0676 2964  [ C3CDDD18F43D44AB713CF8C4916F7696 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
00:41:32.0676 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe - ok
00:41:32.0689 2964  [ 23E3C83DFF7B09A97B01A85ED8A44478 ] C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
00:41:32.0690 2964  C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe - ok
00:41:32.0717 2964  [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
00:41:32.0717 2964  C:\Windows\SysWOW64\credssp.dll - ok
00:41:32.0730 2964  [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
00:41:32.0731 2964  C:\Windows\SysWOW64\winhttp.dll - ok
00:41:32.0742 2964  [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
00:41:32.0742 2964  C:\Windows\SysWOW64\webio.dll - ok
00:41:32.0755 2964  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] C:\Program Files (x86)\Skype\Updater\Updater.exe
00:41:32.0755 2964  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
00:41:32.0770 2964  [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
00:41:32.0770 2964  C:\Windows\System32\drivers\srvnet.sys - ok
00:41:32.0784 2964  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
00:41:32.0784 2964  C:\Windows\System32\drivers\tcpipreg.sys - ok
00:41:32.0797 2964  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
00:41:32.0797 2964  C:\Windows\System32\sysmain.dll - ok
00:41:32.0817 2964  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
00:41:32.0818 2964  C:\Windows\System32\wiaservc.dll - ok
00:41:32.0832 2964  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
00:41:32.0832 2964  C:\Windows\System32\wiatrace.dll - ok
00:41:32.0849 2964  [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
00:41:32.0849 2964  C:\Windows\System32\trkwks.dll - ok
00:41:32.0872 2964  [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
00:41:32.0873 2964  C:\Windows\System32\wbem\WMIsvc.dll - ok
00:41:32.0895 2964  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:41:32.0895 2964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
00:41:32.0909 2964  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
00:41:32.0909 2964  C:\Windows\System32\wbemcomn.dll - ok
00:41:32.0924 2964  [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
00:41:32.0924 2964  C:\Windows\System32\wbem\WinMgmtR.dll - ok
00:41:32.0937 2964  [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
00:41:32.0937 2964  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
00:41:32.0960 2964  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
00:41:32.0961 2964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
00:41:32.0974 2964  [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
00:41:32.0974 2964  C:\Windows\System32\SensApi.dll - ok
00:41:32.0991 2964  [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
00:41:32.0991 2964  C:\Windows\System32\wbem\fastprox.dll - ok
00:41:33.0005 2964  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
00:41:33.0005 2964  C:\Windows\System32\wer.dll - ok
00:41:33.0020 2964  [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
00:41:33.0020 2964  C:\Windows\System32\ntdsapi.dll - ok
00:41:33.0037 2964  [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
00:41:33.0037 2964  C:\Windows\System32\wbem\wbemprox.dll - ok
00:41:33.0049 2964  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
00:41:33.0049 2964  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
00:41:33.0065 2964  [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
00:41:33.0065 2964  C:\Windows\System32\wbem\wbemcore.dll - ok
00:41:33.0080 2964  [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
00:41:33.0080 2964  C:\Windows\SysWOW64\imagehlp.dll - ok
00:41:33.0100 2964  [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
00:41:33.0100 2964  C:\Windows\System32\wbem\esscli.dll - ok
00:41:33.0114 2964  [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
00:41:33.0114 2964  C:\Windows\SysWOW64\apphelp.dll - ok
00:41:33.0126 2964  [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
00:41:33.0127 2964  C:\Windows\System32\wbem\wbemsvc.dll - ok
00:41:33.0142 2964  [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
00:41:33.0142 2964  C:\Windows\AppPatch\AcGenral.dll - ok
00:41:33.0155 2964  [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
00:41:33.0155 2964  C:\Windows\System32\wbem\wmiutils.dll - ok
00:41:33.0168 2964  [ 08F0BE836428436724EE15964AE8A2E1 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
00:41:33.0168 2964  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
00:41:33.0181 2964  [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
00:41:33.0182 2964  C:\Windows\System32\msxml3.dll - ok
00:41:33.0198 2964  [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
00:41:33.0198 2964  C:\Windows\System32\wbem\repdrvfs.dll - ok
00:41:33.0214 2964  [ 70A176BF2ED362862944C371838262F8 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
00:41:33.0214 2964  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
00:41:33.0224 2964  [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
00:41:33.0224 2964  C:\Windows\System32\aeevts.dll - ok
00:41:33.0239 2964  [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
00:41:33.0239 2964  C:\Windows\SysWOW64\msacm32.dll - ok
00:41:33.0258 2964  [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
00:41:33.0258 2964  C:\Windows\SysWOW64\samcli.dll - ok
00:41:33.0275 2964  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
00:41:33.0275 2964  C:\Windows\SysWOW64\sfc.dll - ok
00:41:33.0291 2964  [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
00:41:33.0291 2964  C:\Windows\SysWOW64\sfc_os.dll - ok
00:41:33.0307 2964  [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
00:41:33.0307 2964  C:\Windows\System32\iphlpsvc.dll - ok
00:41:33.0321 2964  [ 13693B6354DD6E72DC5131DA7D764B90 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
00:41:33.0321 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe - ok
00:41:33.0337 2964  [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
00:41:33.0337 2964  C:\Windows\System32\sqmapi.dll - ok
00:41:33.0353 2964  [ 6177E1A8F215576A56D437B48A00848B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll
00:41:33.0353 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftsync.dll - ok
00:41:33.0371 2964  [ 295E1F2BC1AFDAFD98FF426BCE524BA9 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll
00:41:33.0371 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftuser.dll - ok
00:41:33.0387 2964  [ A733CC986EB51F8FBF598B981DC19FBA ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll
00:41:33.0387 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcore.dll - ok
00:41:33.0403 2964  [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
00:41:33.0403 2964  C:\Windows\System32\wdscore.dll - ok
00:41:33.0420 2964  [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
00:41:33.0420 2964  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
00:41:33.0432 2964  [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
00:41:33.0433 2964  C:\Windows\SysWOW64\netapi32.dll - ok
00:41:33.0450 2964  [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
00:41:33.0450 2964  C:\Windows\System32\ncobjapi.dll - ok
00:41:33.0466 2964  [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
00:41:33.0466 2964  C:\Windows\SysWOW64\netutils.dll - ok
00:41:33.0476 2964  [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
00:41:33.0476 2964  C:\Windows\SysWOW64\srvcli.dll - ok
00:41:33.0491 2964  [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
00:41:33.0491 2964  C:\Windows\SysWOW64\wkscli.dll - ok
00:41:33.0508 2964  [ 32BFCF1CA719F2A3A31C721BD5F90303 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll
00:41:33.0508 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftpsr.dll - ok
00:41:33.0523 2964  [ 40EE4E67311F4019CCA2120D88C60576 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll
00:41:33.0523 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftfsi_wow64.dll - ok
00:41:33.0536 2964  [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
00:41:33.0536 2964  C:\Windows\System32\nci.dll - ok
00:41:33.0555 2964  [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
00:41:33.0555 2964  C:\Windows\System32\hnetcfg.dll - ok
00:41:33.0572 2964  [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
00:41:33.0572 2964  C:\Windows\System32\wbem\wbemess.dll - ok
00:41:33.0586 2964  [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
00:41:33.0586 2964  C:\Windows\SysWOW64\FirewallAPI.dll - ok
00:41:33.0602 2964  [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
00:41:33.0602 2964  C:\Windows\SysWOW64\SensApi.dll - ok
00:41:33.0618 2964  [ 09AB81CEE443569D9A3CC151DDF70444 ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll
00:41:33.0618 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftcomp.dll - ok
00:41:33.0632 2964  [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
00:41:33.0632 2964  C:\Windows\SysWOW64\logoncli.dll - ok
00:41:33.0651 2964  [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
00:41:33.0651 2964  C:\Windows\SysWOW64\msi.dll - ok
00:41:33.0663 2964  [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
00:41:33.0663 2964  C:\Windows\SysWOW64\mscoree.dll - ok
00:41:33.0677 2964  [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
00:41:33.0677 2964  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
00:41:33.0691 2964  [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
00:41:33.0691 2964  C:\Windows\SysWOW64\sxs.dll - ok
00:41:33.0716 2964  [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
00:41:33.0722 2964  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
00:41:33.0740 2964  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
00:41:33.0740 2964  C:\Windows\System32\drivers\srv2.sys - ok
00:41:33.0750 2964  [ 01E357643AC1596513DF13AF47FBBE7E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\eka_meta.dll
00:41:33.0750 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\eka_meta.dll - ok
00:41:33.0767 2964  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
00:41:33.0767 2964  C:\Windows\System32\drivers\srv.sys - ok
00:41:33.0780 2964  [ 617E29A0B0A2807466560D4C4E338D3E ] C:\Windows\System32\drivers\Sftredirlh.sys
00:41:33.0780 2964  C:\Windows\System32\drivers\Sftredirlh.sys - ok
00:41:33.0797 2964  [ 3D3CBD1847F980FB03343A63671E7886 ] C:\Windows\SysWOW64\schannel.dll
00:41:33.0797 2964  C:\Windows\SysWOW64\schannel.dll - ok
00:41:33.0810 2964  [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
00:41:33.0810 2964  C:\Windows\System32\dssenh.dll - ok
00:41:33.0823 2964  [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
00:41:33.0823 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
00:41:33.0836 2964  [ 3272AA3E7416C771A9B23EDFB57D8131 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Automation.dll
00:41:33.0836 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Automation.dll - ok
00:41:33.0853 2964  [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
00:41:33.0853 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
00:41:33.0867 2964  [ B69D736487050BBFE4113DF0BFF232EE ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Hardware.dll
00:41:33.0867 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Hardware.dll - ok
00:41:33.0880 2964  [ EA2A678B4128A804D49E840D061CA311 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.DeviceSettings.dll
00:41:33.0881 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.DeviceSettings.dll - ok
00:41:33.0897 2964  [ AC2F6BF0755C6CCE435CA049725C2FFD ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Localization.dll
00:41:33.0897 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Localization.dll - ok
00:41:33.0916 2964  [ CD387080C534B3DAC14B801B91578273 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Diagnostics.dll
00:41:33.0916 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Diagnostics.dll - ok
00:41:33.0928 2964  [ DBF5D9EC432F5B954BD5FE75ADBB7665 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Utilities.dll
00:41:33.0928 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Utilities.dll - ok
00:41:33.0956 2964  [ 2FC602C3A69FA6228BA2D889B596C22C ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Configuration.dll
00:41:33.0956 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Configuration.dll - ok
00:41:33.0987 2964  [ 7229463B59929059E01C75FBADF2ED93 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Statistics.dll
00:41:33.0987 2964  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Statistics.dll - ok
00:41:34.0002 2964  [ B98B086A1E68011FD2AB33F97060552D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\e92530a097644a367bce1ea7790837f9\Inkjet.Automation.ni.dll
00:41:34.0002 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Automation\e92530a097644a367bce1ea7790837f9\Inkjet.Automation.ni.dll - ok
00:41:34.0020 2964  [ 547AA7795F54452E5EF210E6B2EF2C97 ] C:\Program Files (x86)\Kodak\AiO\Center\Interop.WIA.dll
00:41:34.0020 2964  C:\Program Files (x86)\Kodak\AiO\Center\Interop.WIA.dll - ok
00:41:34.0040 2964  [ E68265B30A011C08FE8456FD33183731 ] C:\Program Files (x86)\Kodak\AiO\Center\ShellLib.dll
00:41:34.0041 2964  C:\Program Files (x86)\Kodak\AiO\Center\ShellLib.dll - ok
00:41:34.0054 2964  [ 16990F748F2EA55EFF24A84D847EC1DB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\d86aefb570ecc34697c9581cc50af67d\Inkjet.Utilities.ni.dll
00:41:34.0054 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Utilities\d86aefb570ecc34697c9581cc50af67d\Inkjet.Utilities.ni.dll - ok
00:41:34.0071 2964  [ 54D1D4A21542AE6EF562BF99560542EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\a3178bd89c522c1f85bb084599c31ad5\Inkjet.Configuration.ni.dll
00:41:34.0071 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Configuration\a3178bd89c522c1f85bb084599c31ad5\Inkjet.Configuration.ni.dll - ok
00:41:34.0085 2964  [ 871F7F32E3441580138E61A4AA072DF6 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll
00:41:34.0085 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll - ok
00:41:34.0101 2964  [ FE61390EDE6C42F804FF0C137CB598D2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\0097e2e3f1d7bc42669d5a929c8663ff\Inkjet.Localization.ni.dll
00:41:34.0101 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Localization\0097e2e3f1d7bc42669d5a929c8663ff\Inkjet.Localization.ni.dll - ok
00:41:34.0117 2964  [ 339A4A89B10C69C7712E2D042733796C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\9dba5957230d499154f9de5c93e88862\Inkjet.DeviceSettings.ni.dll
00:41:34.0117 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.DeviceSettin#\9dba5957230d499154f9de5c93e88862\Inkjet.DeviceSettings.ni.dll - ok
00:41:34.0132 2964  [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
00:41:34.0132 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
00:41:34.0156 2964  [ 19F363E8898D3E944BA30123601DA41C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\f54feaaaff0d5cbd738241f869f07f67\Inkjet.Diagnostics.ni.dll
00:41:34.0157 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Diagnostics\f54feaaaff0d5cbd738241f869f07f67\Inkjet.Diagnostics.ni.dll - ok
00:41:34.0170 2964  [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
00:41:34.0170 2964  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
00:41:34.0183 2964  [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
00:41:34.0183 2964  C:\Windows\SysWOW64\propsys.dll - ok
00:41:34.0202 2964  [ 45FD390D397A2EA84CDB0AA477C59919 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater_meta.dll
00:41:34.0202 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater_meta.dll - ok
00:41:34.0219 2964  [ E165B5A37371CDF59ECC24C52275EF4E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\content_filtering_meta.dll
00:41:34.0219 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\content_filtering_meta.dll - ok
00:41:34.0237 2964  [ 208881D39A2E0ACF68DCC560F4D778D9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_meta.dll
00:41:34.0237 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_meta.dll - ok
00:41:34.0252 2964  [ 29DD01CC4F0FD9A68E674EA7E7225692 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_meta.dll
00:41:34.0252 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_meta.dll - ok
00:41:34.0260 2964  [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
00:41:34.0260 2964  C:\Windows\SysWOW64\wship6.dll - ok
00:41:34.0275 2964  [ BCB0244F8F1D90B21CF519932E0E31EB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_meta.dll
00:41:34.0275 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_meta.dll - ok
00:41:34.0289 2964  [ 1E629D6189495F8D560B783B2DBC13F9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\product_metainfo.dll
00:41:34.0290 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\product_metainfo.dll - ok
00:41:34.0304 2964  [ F1D08B47C442015B0BFF688861E696B7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_meta.dll
00:41:34.0304 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_meta.dll - ok
00:41:34.0324 2964  [ 06096EF9878350320FD29416DA0B8E05 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_meta.dll
00:41:34.0324 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_meta.dll - ok
00:41:34.0338 2964  [ 609BAE4F11DC39A9B97FFEA42C8A42B5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_meta.dll
00:41:34.0338 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_meta.dll - ok
00:41:34.0356 2964  [ ED1B8267952CE1D3BF33EEF74F06E909 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp_meta.dll
00:41:34.0356 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp_meta.dll - ok
00:41:34.0368 2964  [ 877F3223B5061EA6684860184BA28C7C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\instrumental_meta.dll
00:41:34.0368 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\instrumental_meta.dll - ok
00:41:34.0386 2964  [ 84AE2D45E2AACF836BEA55EF19416AD0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\storage.dll
00:41:34.0386 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\storage.dll - ok
00:41:34.0397 2964  [ 0C500A5719E998DD9535625470AD33A7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ichecker.dll
00:41:34.0398 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ichecker.dll - ok
00:41:34.0413 2964  [ 106EA570168EC9BE573E69479729210C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp.dll
00:41:34.0413 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp.dll - ok
00:41:34.0430 2964  [ E076FE9C1DD7930B404B5B9D28532BEF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_facade.dll
00:41:34.0430 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_facade.dll - ok
00:41:34.0446 2964  [ 31700FF72B6F76A7A21F3CDE65F46DDE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\acassembler.dll
00:41:34.0447 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\acassembler.dll - ok
00:41:34.0461 2964  [ 1307377AC5238074C5F9169FEF7967B6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahum.dll
00:41:34.0461 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahum.dll - ok
00:41:34.0475 2964  [ D9C4814CAF57E178BC5D578EB9638638 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahcomm.dll
00:41:34.0475 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahcomm.dll - ok
00:41:34.0488 2964  [ 10010355D9EBD7C0718D1D84DF978539 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahrule.dll
00:41:34.0488 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahrule.dll - ok
00:41:34.0505 2964  [ A30A5F9CF87FBCDB48AD22C5FB956F14 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\thpimpl.ppl
00:41:34.0506 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\thpimpl.ppl - ok
00:41:34.0514 2964  [ 69BF00687AD5844FE370E5D8913CCC6C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\propmap.ppl
00:41:34.0514 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\propmap.ppl - ok
00:41:34.0531 2964  [ 7B46A076184B73AEDC1A66A71D9131E8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
00:41:34.0531 2964  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
00:41:34.0549 2964  [ BE08CC530285D07CB82C6C9F581641F7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\tm.ppl
00:41:34.0549 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\tm.ppl - ok
00:41:34.0563 2964  [ 0403B642D028217D374C2D2226223B26 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dtreg.ppl
00:41:34.0563 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dtreg.ppl - ok
00:41:34.0577 2964  [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
00:41:34.0577 2964  C:\Windows\SysWOW64\ncrypt.dll - ok
00:41:34.0593 2964  [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
00:41:34.0593 2964  C:\Windows\SysWOW64\bcrypt.dll - ok
00:41:34.0608 2964  [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
00:41:34.0608 2964  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
00:41:34.0621 2964  [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
00:41:34.0622 2964  C:\Windows\SysWOW64\gpapi.dll - ok
00:41:34.0634 2964  [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
00:41:34.0634 2964  C:\Windows\SysWOW64\shfolder.dll - ok
00:41:34.0650 2964  [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
00:41:34.0650 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
00:41:34.0664 2964  [ 8B1590C627138166C015A5680ABF6BB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
00:41:34.0665 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll - ok
00:41:34.0678 2964  [ 112BB5B6178EA6C77328859EB88762C6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\bl.ppl
00:41:34.0678 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\bl.ppl - ok
00:41:34.0694 2964  [ C3670CD073CAF4866F600CDA2E8CD0E5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll
00:41:34.0694 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll - ok
00:41:34.0710 2964  [ 6440E46B3F50FAC938361626D0512F85 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libcurl.dll
00:41:34.0710 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libcurl.dll - ok
00:41:34.0724 2964  [ B3E7454680097B5A5464C53A3B912FCA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libeay32.dll
00:41:34.0724 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libeay32.dll - ok
00:41:34.0737 2964  [ 8E6A5D97CFFAE47FD096B97DE2C6D0FF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ssleay32.dll
00:41:34.0738 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ssleay32.dll - ok
00:41:34.0751 2964  [ A00FA077D08FE1893B15B2AC61ADDDA7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wmihlpr.ppl
00:41:34.0751 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wmihlpr.ppl - ok
00:41:34.0766 2964  [ 4A533BBB6F84D7EDD6ACB01B0E17D536 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\vercheck.ppl
00:41:34.0766 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\vercheck.ppl - ok
00:41:34.0784 2964  [ 800E9F862C176ECEB57547D9C1B2E152 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\regmap.ppl
00:41:34.0784 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\regmap.ppl - ok
00:41:34.0797 2964  [ 35659F096711725887D1674395937917 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\localization_manager.dll
00:41:34.0798 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\localization_manager.dll - ok
00:41:34.0810 2964  [ 9912C252C5E4D3C338DF83D751DF99DA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threats_disinfection.dll
00:41:34.0811 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threats_disinfection.dll - ok
00:41:34.0828 2964  [ 9C3ED1FFBA35571AE606239386F08898 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_facade.dll
00:41:34.0828 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_facade.dll - ok
00:41:34.0843 2964  [ 0048BFA62725F0B85798BD05876BEE50 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ndetect.ppl
00:41:34.0843 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ndetect.ppl - ok
00:41:34.0858 2964  [ D1ED6EDC7C84EEC38FA3235B4E898AF9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\crpthlpr.ppl
00:41:34.0858 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\crpthlpr.ppl - ok
00:41:34.0872 2964  [ 2756E5754EFD53CA896AC79DA0C4BFBE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\report.ppl
00:41:34.0872 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\report.ppl - ok
00:41:34.0887 2964  [ 5BEC497CBFE08084C29516E00F4850EC ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_facade.dll
00:41:34.0887 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_facade.dll - ok
00:41:34.0904 2964  [ FD0033EFFC0D1715A9CB9FC26B811518 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kpcengine.2.2.dll
00:41:34.0904 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kpcengine.2.2.dll - ok
00:41:34.0915 2964  [ 1D3FF0ADFF08C3B0973DCCF410217953 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuin40.dll
00:41:34.0915 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuin40.dll - ok
00:41:34.0935 2964  [ ADA1971194495C3D0C42EE0DC8FA82F5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuuc40.dll
00:41:34.0935 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuuc40.dll - ok
00:41:34.0949 2964  [ 9D2695FDDD875009A50E231EBBECD694 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icudt40.dll
00:41:34.0949 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icudt40.dll - ok
00:41:34.0966 2964  [ 4180F793AFF75412907D8AD251B3BF39 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuio40.dll
00:41:34.0966 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuio40.dll - ok
00:41:34.0984 2964  [ 74B20D05BAF57B2F1CBED6BD8390D6C6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\schedule.ppl
00:41:34.0984 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\schedule.ppl - ok
00:41:35.0000 2964  [ C705355FE7496096EC784AC55C6D36A0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\timer.ppl
00:41:35.0000 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\timer.ppl - ok
00:41:35.0014 2964  [ 72794D112CBAFF3BC0C29BF7350D4741 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
00:41:35.0014 2964  C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE - ok
00:41:35.0023 2964  [ C797D1677BA81306AFBB9FA8A9A8F483 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL
00:41:35.0023 2964  C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSHARED.DLL - ok
00:41:35.0037 2964  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
00:41:35.0038 2964  C:\Windows\SysWOW64\dbghelp.dll - ok
00:41:35.0050 2964  [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
00:41:35.0050 2964  C:\Windows\SysWOW64\credui.dll - ok
00:41:35.0064 2964  [ 565A30B70BE8A9B171839003F2D69683 ] C:\Windows\SysWOW64\hlink.dll
00:41:35.0064 2964  C:\Windows\SysWOW64\hlink.dll - ok
00:41:35.0080 2964  [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
00:41:35.0080 2964  C:\Windows\System32\srvsvc.dll - ok
00:41:35.0090 2964  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
00:41:35.0090 2964  C:\Windows\System32\browser.dll - ok
00:41:35.0105 2964  [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
00:41:35.0105 2964  C:\Windows\System32\netmsg.dll - ok
00:41:35.0117 2964  [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
00:41:35.0117 2964  C:\Windows\System32\clusapi.dll - ok
00:41:35.0131 2964  [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
00:41:35.0131 2964  C:\Windows\System32\sscore.dll - ok
00:41:35.0149 2964  [ 74AF1FFCAFD60DA88A386AE161F56438 ] C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll
00:41:35.0149 2964  C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\en-us\CVHIntl.dll - ok
00:41:35.0164 2964  [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
00:41:35.0164 2964  C:\Windows\System32\resutils.dll - ok
00:41:35.0178 2964  [ B08E3476F0874DBAD672D0AC4FB2580B ] C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll
00:41:35.0180 2964  C:\Program Files (x86)\Microsoft Application Virtualization Client\sftintf.dll - ok
00:41:35.0194 2964  [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
00:41:35.0194 2964  C:\Windows\SysWOW64\msv1_0.dll - ok
00:41:35.0207 2964  [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
00:41:35.0207 2964  C:\Windows\SysWOW64\cryptdll.dll - ok
00:41:35.0222 2964  [ CCC44C1546F0C0B8EE50F7C20A4AC61D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\0f376914854eaa1bf89124edc18419d5\Inkjet.Statistics.ni.dll
00:41:35.0222 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Statistics\0f376914854eaa1bf89124edc18419d5\Inkjet.Statistics.ni.dll - ok
00:41:35.0237 2964  [ 6F4F55DE5B5C9396EB6E74EBAB8CC1EA ] C:\Program Files (x86)\Kodak\AiO\Center\Interop.EKAiO2SDKLib.dll
00:41:35.0237 2964  C:\Program Files (x86)\Kodak\AiO\Center\Interop.EKAiO2SDKLib.dll - ok
00:41:35.0251 2964  [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
00:41:35.0251 2964  C:\Windows\SysWOW64\msxml3.dll - ok
00:41:35.0265 2964  [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
00:41:35.0265 2964  C:\Windows\System32\qmgr.dll - ok
00:41:35.0273 2964  [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
00:41:35.0273 2964  C:\Windows\System32\bitsperf.dll - ok
00:41:35.0289 2964  [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
00:41:35.0289 2964  C:\Windows\System32\bitsigd.dll - ok
00:41:35.0301 2964  [ 5DA42D24712E00728CEA2342A65009B2 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
00:41:35.0301 2964  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
00:41:35.0314 2964  [ D4F91CF4DE215D6F14A06087D46725E4 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
00:41:35.0314 2964  C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL - ok
00:41:35.0328 2964  [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
00:41:35.0328 2964  C:\Windows\System32\upnp.dll - ok
00:41:35.0341 2964  [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
00:41:35.0341 2964  C:\Windows\System32\SearchIndexer.exe - ok
00:41:35.0367 2964  [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
00:41:35.0367 2964  C:\Windows\System32\tquery.dll - ok
00:41:35.0380 2964  [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
00:41:35.0381 2964  C:\Windows\System32\FXSRESM.dll - ok
00:41:35.0394 2964  [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
00:41:35.0394 2964  C:\Windows\System32\mssrch.dll - ok
00:41:35.0408 2964  [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
00:41:35.0409 2964  C:\Windows\System32\esent.dll - ok
00:41:35.0423 2964  [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
00:41:35.0423 2964  C:\Windows\System32\msidle.dll - ok
00:41:35.0434 2964  [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
00:41:35.0434 2964  C:\Windows\System32\aelupsvc.dll - ok
00:41:35.0450 2964  [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
00:41:35.0450 2964  C:\Windows\System32\wdi.dll - ok
00:41:35.0463 2964  [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
00:41:35.0463 2964  C:\Windows\System32\wpdbusenum.dll - ok
00:41:35.0476 2964  [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
00:41:35.0476 2964  C:\Windows\System32\mssprxy.dll - ok
00:41:35.0490 2964  [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
00:41:35.0490 2964  C:\Windows\System32\npmproxy.dll - ok
00:41:35.0503 2964  [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
00:41:35.0503 2964  C:\Windows\SysWOW64\mssprxy.dll - ok
00:41:35.0516 2964  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
00:41:35.0516 2964  C:\Windows\System32\IPSECSVC.DLL - ok
00:41:35.0534 2964  [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
00:41:35.0534 2964  C:\Windows\System32\PortableDeviceApi.dll - ok
00:41:35.0548 2964  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
00:41:35.0548 2964  C:\Windows\System32\ssdpsrv.dll - ok
00:41:35.0563 2964  [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
00:41:35.0563 2964  C:\Windows\System32\FwRemoteSvr.dll - ok
00:41:35.0578 2964  [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
00:41:35.0578 2964  C:\Windows\System32\wbem\NCProv.dll - ok
00:41:35.0592 2964  [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
00:41:35.0592 2964  C:\Windows\System32\Apphlpdm.dll - ok
00:41:35.0608 2964  [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
00:41:35.0608 2964  C:\Windows\System32\diagperf.dll - ok
00:41:35.0621 2964  [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
00:41:35.0621 2964  C:\Windows\System32\perftrack.dll - ok
00:41:35.0634 2964  [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
00:41:35.0634 2964  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
00:41:35.0652 2964  [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
00:41:35.0653 2964  C:\Windows\System32\en-US\tquery.dll.mui - ok
00:41:35.0665 2964  [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
00:41:35.0665 2964  C:\Windows\System32\pnpts.dll - ok
00:41:35.0680 2964  [ FF365358A01E77197C225521DD4B7F35 ] C:\Windows\System32\pots.dll
00:41:35.0680 2964  C:\Windows\System32\pots.dll - ok
00:41:35.0700 2964  [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
00:41:35.0700 2964  C:\Windows\System32\tdh.dll - ok
00:41:35.0716 2964  [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
00:41:35.0716 2964  C:\Windows\System32\radardt.dll - ok
00:41:35.0731 2964  [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
00:41:35.0731 2964  C:\Windows\System32\wdiasqmmodule.dll - ok
00:41:35.0746 2964  [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
00:41:35.0746 2964  C:\Windows\System32\taskhost.exe - ok
00:41:35.0760 2964  [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
00:41:35.0760 2964  C:\Windows\System32\NapiNSP.dll - ok
00:41:35.0776 2964  [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
00:41:35.0776 2964  C:\Windows\System32\qmgrprxy.dll - ok
00:41:35.0795 2964  [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
00:41:35.0795 2964  C:\Windows\SysWOW64\qmgrprxy.dll - ok
00:41:35.0803 2964  [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
00:41:35.0803 2964  C:\Windows\System32\pnrpnsp.dll - ok
00:41:35.0815 2964  [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
00:41:35.0815 2964  C:\Windows\System32\winrnr.dll - ok
00:41:35.0827 2964  [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
00:41:35.0828 2964  C:\Windows\System32\dimsjob.dll - ok
00:41:35.0840 2964  [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
00:41:35.0840 2964  C:\Windows\System32\pautoenr.dll - ok
00:41:35.0855 2964  [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
00:41:35.0855 2964  C:\Windows\System32\certcli.dll - ok
00:41:35.0869 2964  [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
00:41:35.0869 2964  C:\Windows\System32\CertEnroll.dll - ok
00:41:35.0883 2964  [ CD1D0431059C2FCB366FA5A5EA5F7C08 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\bc69750852e7ba712461992afd3a81bc\Inkjet.Hardware.ni.dll
00:41:35.0883 2964  C:\Windows\assembly\NativeImages_v2.0.50727_32\Inkjet.Hardware\bc69750852e7ba712461992afd3a81bc\Inkjet.Hardware.ni.dll - ok
00:41:35.0900 2964  [ 1A06BD406146AA8695BC68270FA84D23 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\reportdb.ppl
00:41:35.0900 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\reportdb.ppl - ok
00:41:35.0926 2964  [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
00:41:35.0926 2964  C:\Windows\System32\dllhost.exe - ok
00:41:35.0933 2964  [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
00:41:35.0933 2964  C:\Windows\System32\IDStore.dll - ok
00:41:35.0950 2964  [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
00:41:35.0950 2964  C:\Windows\System32\AtBroker.exe - ok
00:41:35.0968 2964  [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
00:41:35.0968 2964  C:\Windows\System32\mpr.dll - ok
00:41:35.0984 2964  [ 45DF0EA46A032EC6B09A69EAAF648CD7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksnhelper.dll
00:41:35.0984 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksnhelper.dll - ok
00:41:36.0002 2964  [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
00:41:36.0002 2964  C:\Windows\System32\userinit.exe - ok
00:41:36.0037 2964  [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
00:41:36.0037 2964  C:\Windows\System32\PlaySndSrv.dll - ok
00:41:36.0059 2964  [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
00:41:36.0059 2964  C:\Windows\System32\dwm.exe - ok
00:41:36.0067 2964  [ B729D7178BB4E5A8C6626EB028CF7DE8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\packed_io.dll
00:41:36.0067 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\packed_io.dll - ok
00:41:36.0127 2964  [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
00:41:36.0127 2964  C:\Windows\System32\dwmredir.dll - ok
00:41:36.0151 2964  [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
00:41:36.0151 2964  C:\Windows\System32\dwmcore.dll - ok
00:41:36.0169 2964  [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
00:41:36.0169 2964  C:\Windows\System32\HotStartUserAgent.dll - ok
00:41:36.0189 2964  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
00:41:36.0189 2964  C:\Windows\System32\MsCtfMonitor.dll - ok
00:41:36.0207 2964  [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
00:41:36.0207 2964  C:\Windows\System32\msutb.dll - ok
00:41:36.0220 2964  [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
00:41:36.0221 2964  C:\Windows\System32\d3d10_1.dll - ok
00:41:36.0238 2964  [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
00:41:36.0238 2964  C:\Windows\System32\d3d10_1core.dll - ok
00:41:36.0255 2964  [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
00:41:36.0255 2964  C:\Windows\System32\dxgi.dll - ok
00:41:36.0269 2964  [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
00:41:36.0269 2964  C:\Windows\System32\d3d11.dll - ok
00:41:36.0284 2964  [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
00:41:36.0285 2964  C:\Windows\explorer.exe - ok
00:41:36.0299 2964  [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
00:41:36.0299 2964  C:\Windows\System32\ExplorerFrame.dll - ok
00:41:36.0310 2964  [ C3B13FA62D6DE49CD92F199BAE0DD705 ] C:\Windows\System32\aticfx64.dll
00:41:36.0310 2964  C:\Windows\System32\aticfx64.dll - ok
00:41:36.0319 2964  [ 7858CF10C60975807E4AA61052963376 ] C:\Windows\System32\atiuxp64.dll
00:41:36.0319 2964  C:\Windows\System32\atiuxp64.dll - ok
00:41:36.0332 2964  [ 2BE635FF0DA686B368D93B5F06B9EB7B ] C:\Windows\System32\atidxx64.dll
00:41:36.0332 2964  C:\Windows\System32\atidxx64.dll - ok
00:41:36.0347 2964  [ DEFEFD7E02D5CDF42F4B4FE45B64C15B ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
00:41:36.0347 2964  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe - ok
00:41:36.0363 2964  [ 5877A3341AA7DF58789294CEBA38AE2B ] C:\Users\Kayleigh\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
00:41:36.0363 2964  C:\Users\Kayleigh\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll - ok
00:41:36.0379 2964  [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
00:41:36.0380 2964  C:\Windows\System32\dbghelp.dll - ok
00:41:36.0390 2964  [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
00:41:36.0390 2964  C:\Windows\System32\EhStorShell.dll - ok
00:41:36.0403 2964  [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
00:41:36.0403 2964  C:\Windows\System32\ntshrui.dll - ok
00:41:36.0421 2964  [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
00:41:36.0421 2964  C:\Windows\System32\IconCodecService.dll - ok
00:41:36.0432 2964  [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
00:41:36.0432 2964  C:\Windows\System32\runonce.exe - ok
00:41:36.0441 2964  [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
00:41:36.0441 2964  C:\Windows\System32\uDWM.dll - ok
00:41:36.0454 2964  [ E6B0D195113EBB83AF831A041D6168B8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\processmonitor.dll
00:41:36.0454 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\processmonitor.dll - ok
00:41:36.0466 2964  [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
00:41:36.0466 2964  C:\Windows\SysWOW64\runonce.exe - ok
00:41:36.0479 2964  [ 102D12912CE68C4535C196094D504CCB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\excludemanager.dll
00:41:36.0479 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\excludemanager.dll - ok
00:41:36.0492 2964  [ 31328123BF7581298BFC4E46188A58C6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sfdb.ppl
00:41:36.0492 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sfdb.ppl - ok
00:41:36.0505 2964  [ 7853D2AB445C10F97610B2B05FA4CF0A ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
00:41:36.0505 2964  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
00:41:36.0517 2964  [ 8624E0E2418413614EE1FECDB7B76B88 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
00:41:36.0517 2964  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
00:41:36.0529 2964  [ D4467A285C91752018F67CDBA8680BAB ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
00:41:36.0530 2964  C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
00:41:36.0541 2964  [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
00:41:36.0541 2964  C:\Windows\SysWOW64\cmd.exe - ok
00:41:36.0554 2964  [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
00:41:36.0554 2964  C:\Windows\SysWOW64\winbrand.dll - ok
00:41:36.0565 2964  [ 89231F82DE33B0B57B14BE21D231AF65 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\format_recognizer.dll
00:41:36.0565 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\format_recognizer.dll - ok
00:41:36.0580 2964  [ 0E816EA3C5DCE94C95099E8B38E75E67 ] C:\Windows\SysWOW64\ieframe.dll
00:41:36.0580 2964  C:\Windows\SysWOW64\ieframe.dll - ok
00:41:36.0593 2964  [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
00:41:36.0593 2964  C:\Windows\SysWOW64\shdocvw.dll - ok
00:41:36.0607 2964  [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Kayleigh\AppData\Local\Temp\82B34C4E-70D9-44C4-8F35-DF9E99EEDA23.exe
00:41:36.0607 2964  C:\Users\Kayleigh\AppData\Local\Temp\82B34C4E-70D9-44C4-8F35-DF9E99EEDA23.exe - ok
00:41:36.0622 2964  [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
00:41:36.0622 2964  C:\Windows\SysWOW64\cryptnet.dll - ok
00:41:36.0636 2964  [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
00:41:36.0637 2964  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
00:41:36.0651 2964  [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\Kayleigh\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
00:41:36.0651 2964  C:\Users\Kayleigh\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
00:41:36.0663 2964  [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
00:41:36.0663 2964  C:\Windows\SysWOW64\EhStorShell.dll - ok
00:41:36.0675 2964  [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
00:41:36.0675 2964  C:\Windows\SysWOW64\ntshrui.dll - ok
00:41:36.0688 2964  [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
00:41:36.0688 2964  C:\Windows\SysWOW64\cscapi.dll - ok
00:41:36.0711 2964  [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
00:41:36.0711 2964  C:\Windows\SysWOW64\imageres.dll - ok
00:41:36.0726 2964  [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
00:41:36.0726 2964  C:\Windows\SysWOW64\slc.dll - ok
00:41:36.0739 2964  [ 0F16777416E13F4C412019CEC3C3345C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lic.ppl
00:41:36.0739 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lic.ppl - ok
00:41:36.0754 2964  [ CCA8007ADB7270AAECB9D7F16AD18D24 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cbi.dll
00:41:36.0754 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cbi.dll - ok
00:41:36.0771 2964  [ 1A5CA707943EFBCACCB2652149B793F6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\hashmd5.ppl
00:41:36.0771 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\hashmd5.ppl - ok
00:41:36.0784 2964  [ 1A98C6BDE8E2FC093CFF2BE8DE6E9055 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threatsmanager.dll
00:41:36.0784 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threatsmanager.dll - ok
00:41:36.0799 2964  [ 0577C58AEBBA4B6C6AA9224F6581DF27 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qb.ppl
00:41:36.0799 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qb.ppl - ok
00:41:36.0812 2964  [ CDAB8C6721D39B7D1A1C89575F5999DA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avs.ppl
00:41:36.0813 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avs.ppl - ok
00:41:36.0822 2964  [ 7418FBCE0863D8ED7966E0364D586644 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dmap.ppl
00:41:36.0822 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dmap.ppl - ok
00:41:36.0836 2964  [ 5D8316954B2FBFCFDC534571BCAB17DD ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_client.dll
00:41:36.0836 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_client.dll - ok
00:41:36.0851 2964  [ 95C04EA043FDF5B055A02DB404EB2929 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\transport_provider.dll
00:41:36.0851 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\transport_provider.dll - ok
00:41:36.0872 2964  [ 012A22A626884CF63DC51792081DF46B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cryptostaticprovider.dll
00:41:36.0873 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cryptostaticprovider.dll - ok
00:41:36.0886 2964  [ 1A452F4C88C4A1A1CDF6DF6AA75D681E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_agent.dll
00:41:36.0886 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_agent.dll - ok
00:41:36.0905 2964  [ 473BAE7ED99FBB8E839B2BFA6B69F476 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\persistent_queue.dll
00:41:36.0905 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\persistent_queue.dll - ok
00:41:36.0926 2964  [ 1C97DD0CA24BB51133CEA8081EA95DA5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exe
00:41:36.0926 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exe - ok
00:41:36.0953 2964  [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcr100.dll
00:41:36.0953 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcr100.dll - ok
00:41:36.0960 2964  [ E773ED0C888BA4CD62C96A5EE02DEC93 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\filesystem_services.dll
00:41:36.0960 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\filesystem_services.dll - ok
00:41:36.0974 2964  [ 92DFF4EE3F31D4A8028788006D921D26 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\uds.dll.92dff4ee3f31d4a8028788006d921d26
00:41:36.0974 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\uds.dll.92dff4ee3f31d4a8028788006d921d26 - ok
00:41:36.0988 2964  [ 783CC949880CB3C036EB5A739D03D078 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmihlpr.ppl
00:41:36.0988 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmihlpr.ppl - ok
00:41:37.0004 2964  [ 0316A26929C49D72D100A11BA949F8B6 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\avengine.dll.0316a26929c49d72d100a11ba949f8b6
00:41:37.0004 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\avengine.dll.0316a26929c49d72d100a11ba949f8b6 - ok
00:41:37.0019 2964  [ 5E27E54F3B4175E0E6DFEE726B87A311 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavbase.kdl.5e27e54f3b4175e0e6dfee726b87a311
00:41:37.0020 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavbase.kdl.5e27e54f3b4175e0e6dfee726b87a311 - ok
00:41:37.0043 2964  [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcp100.dll
00:41:37.0043 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcp100.dll - ok
00:41:37.0065 2964  [ 6CB560907292A84CD0A6BA0E9E8B632C ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavemu.kdl.6cb560907292a84cd0a6ba0e9e8b632c
00:41:37.0065 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavemu.kdl.6cb560907292a84cd0a6ba0e9e8b632c - ok
00:41:37.0073 2964  [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
00:41:37.0073 2964  C:\Windows\System32\wscisvif.dll - ok
00:41:37.0087 2964  [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
00:41:37.0088 2964  C:\Windows\System32\wscapi.dll - ok
00:41:37.0104 2964  [ A918B448BE75F1E6825549DDB6692D7A ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kjim.kdl.a918b448be75f1e6825549ddb6692d7a
00:41:37.0104 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kjim.kdl.a918b448be75f1e6825549ddb6692d7a - ok
00:41:37.0119 2964  [ 432BE6CF7311062633459EEF6B242FB5 ] C:\Windows\SysWOW64\regsvr32.exe
00:41:37.0119 2964  C:\Windows\SysWOW64\regsvr32.exe - ok
00:41:37.0132 2964  [ FED411A74CC5C5DAC6AC7D81339FC781 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\mark.kdl.fed411a74cc5c5dac6ac7d81339fc781
00:41:37.0132 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\mark.kdl.fed411a74cc5c5dac6ac7d81339fc781 - ok
00:41:37.0146 2964  [ 59BCE9F07985F8A4204F4D6554CFF708 ] C:\Windows\System32\regsvr32.exe
00:41:37.0146 2964  C:\Windows\System32\regsvr32.exe - ok
00:41:37.0163 2964  [ 317DF7C0EFF0939E6289F5C72F65BA51 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\vlns.kdl.317df7c0eff0939e6289f5c72f65ba51
00:41:37.0163 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\vlns.kdl.317df7c0eff0939e6289f5c72f65ba51 - ok
00:41:37.0176 2964  [ FB1FEC251BAAA2AB4237FB3CFF510751 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\qscan.kdl.fb1fec251baaa2ab4237fb3cff510751
00:41:37.0176 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\qscan.kdl.fb1fec251baaa2ab4237fb3cff510751 - ok
00:41:37.0191 2964  [ C7E689F0E6BD4CFDC669B1BAD3CA3AE6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\scrchpg.dll
00:41:37.0191 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\scrchpg.dll - ok
00:41:37.0207 2964  [ 7FC520E215B0B2B41FA2E224FE8F6030 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pbs.kdl.7fc520e215b0b2b41fa2e224fe8f6030
00:41:37.0207 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pbs.kdl.7fc520e215b0b2b41fa2e224fe8f6030 - ok
00:41:37.0221 2964  [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
00:41:37.0221 2964  C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
00:41:37.0239 2964  [ 05FE0D9C89F7F749D13DDD52E07BF39F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\scrchpg.dll
00:41:37.0239 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\scrchpg.dll - ok
00:41:37.0252 2964  [ 331EAE0B28BFD9FCF0D2C2B7C8CCAD3F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dns_client.dll
00:41:37.0252 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dns_client.dll - ok
00:41:37.0272 2964  [ 15E9A31D0538E71B67C782508A43F542 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avzkrnl.dll
00:41:37.0272 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avzkrnl.dll - ok
00:41:37.0286 2964  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
00:41:37.0286 2964  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
00:41:37.0301 2964  [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
00:41:37.0301 2964  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
00:41:37.0315 2964  [ 7B53984BB934E599A4E3668B2F678D48 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavsys.kdl.7b53984bb934e599a4e3668b2f678d48
00:41:37.0315 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavsys.kdl.7b53984bb934e599a4e3668b2f678d48 - ok
00:41:37.0330 2964  [ 92BAA7DEBEDC6EBE803BC14BC5180AB3 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\arkmon.kdl.92baa7debedc6ebe803bc14bc5180ab3
00:41:37.0330 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\arkmon.kdl.92baa7debedc6ebe803bc14bc5180ab3 - ok
00:41:37.0338 2964  [ 52DD0E9815202E771059F1C00AEF2B13 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\stat.ppl
00:41:37.0338 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\stat.ppl - ok
00:41:37.0354 2964  [ 208CC0625B984EFC896A093C8852692B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_facade.dll
00:41:37.0354 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_facade.dll - ok
00:41:37.0370 2964  [ 1C18C63FDBA6D5A6F5C1F6D8611DF731 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\procmon.ppl
00:41:37.0370 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\procmon.ppl - ok
00:41:37.0384 2964  [ 250E75C744E3AF7D35C10A2C76DB0BFD ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\memmon.dll
00:41:37.0384 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\memmon.dll - ok
00:41:37.0399 2964  [ 5710F99DFD16D78E00742A0F6F49B5B1 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imc.ppl
00:41:37.0399 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imc.ppl - ok
00:41:37.0414 2964  [ 7BA04BB0037563B55D8D4AD5425FEAC2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpscan.ppl
00:41:37.0414 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpscan.ppl - ok
00:41:37.0436 2964  [ 776A9A2237047219E580DEBD8677A424 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ekasyswatch.dll
00:41:37.0436 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ekasyswatch.dll - ok
00:41:37.0454 2964  [ F8BBA5F4356FC0114D4C9EBFA780647E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sc.ppl
00:41:37.0454 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sc.ppl - ok
00:41:37.0469 2964  [ EF8C6D4B129CE6EDC78933B37EA21595 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_facade.dll
00:41:37.0470 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_facade.dll - ok
00:41:37.0482 2964  [ 2873B8A5FE2E30065C0DC38E55FA497B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\oas.ppl
00:41:37.0482 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\oas.ppl - ok
00:41:37.0496 2964  [ 27F6DDC6995A53663D5DBE3D03738408 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\webnetstat.ppl
00:41:37.0496 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\webnetstat.ppl - ok
00:41:37.0509 2964  [ 2365C553620CDFE937303722826AF8B9 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavasyswatch.dll.2365c553620cdfe937303722826af8b9
00:41:37.0509 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavasyswatch.dll.2365c553620cdfe937303722826af8b9 - ok
00:41:37.0522 2964  [ 69FF7F62698BAAF40E83EDDB75A1B24A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mc.ppl
00:41:37.0522 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mc.ppl - ok
00:41:37.0537 2964  [ E2F65916C9455544A897B9671DBE42F7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\volenum.ppl
00:41:37.0537 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\volenum.ppl - ok
00:41:37.0551 2964  [ 467950E0AC09B19221DA33CF36530653 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\extlprtc.ppl
00:41:37.0551 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\extlprtc.ppl - ok
00:41:37.0564 2964  [ D750E3AC0595549B37EBC6D019873F5B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icqprtc.dll
00:41:37.0565 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icqprtc.dll - ok
00:41:37.0578 2964  [ AC458E44089ABD7FCADAF66ED870252C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\trafmon2.ppl
00:41:37.0579 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\trafmon2.ppl - ok
00:41:37.0586 2964  [ 78413ED46210C1A16F0D5C1EA30FC588 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_anti_malware_facade.dll
00:41:37.0586 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_anti_malware_facade.dll - ok
00:41:37.0601 2964  [ 2FCCDF17371E6C4B8085E32AE1D842CB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msnprtc.dll
00:41:37.0601 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msnprtc.dll - ok
00:41:37.0614 2964  [ 9A9F9D2A7FF8BA975E6613E46017DC19 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\smtpprtc.ppl
00:41:37.0615 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\smtpprtc.ppl - ok
00:41:37.0627 2964  [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
00:41:37.0627 2964  C:\Windows\SysWOW64\wshqos.dll - ok
00:41:37.0639 2964  [ FD4226A989C3378EEBFC217DC98AF133 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\jbrprtc.dll
00:41:37.0640 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\jbrprtc.dll - ok
00:41:37.0656 2964  [ CED8CC7E9AC262C46ED8B66072C6FBBC ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pop3prtc.ppl
00:41:37.0656 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pop3prtc.ppl - ok
00:41:37.0671 2964  [ 93FDB0D9049B0B575A1C835664D7CD75 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ircprtc.dll
00:41:37.0671 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ircprtc.dll - ok
00:41:37.0684 2964  [ 58CB797C94BD07ABB1E309DE4DE505C5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imapprtc.ppl
00:41:37.0684 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imapprtc.ppl - ok
00:41:37.0703 2964  [ C4E34F094DED2432F04AB670F0F13A17 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_statistics.dll
00:41:37.0703 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_statistics.dll - ok
00:41:37.0716 2964  [ 9F0CFFD667F5FDD67A46731CE7597E8B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\yhoprtc.dll
00:41:37.0716 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\yhoprtc.dll - ok
00:41:37.0730 2964  [ 551315671EB76C685A4CB13F1837E8AA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mmpprtc.dll
00:41:37.0730 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mmpprtc.dll - ok
00:41:37.0753 2964  [ 3F39D46DAAC6316609F630C7BE5915BA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\appcat.ppl
00:41:37.0753 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\appcat.ppl - ok
00:41:37.0769 2964  [ 6DF1B9A5143CE44B2D19CA255F94692D ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\sys_critical_obj.dll
00:41:37.0769 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\sys_critical_obj.dll - ok
00:41:37.0783 2964  [ 7EDFDA27D9DBB338D06995788795BF9F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nntpprtc.ppl
00:41:37.0783 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nntpprtc.ppl - ok
00:41:37.0799 2964  [ 7E5447320423A77C168123F8277372AF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\uniarc.ppl
00:41:37.0799 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\uniarc.ppl - ok
00:41:37.0813 2964  [ 511AEA8DA75082728E52BBB012A8ACE7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\aphishex.ppl
00:41:37.0813 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\aphishex.ppl - ok
00:41:37.0827 2964  [ 6C5EAD61EB2A70A70B9D61977465591D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\network_services.dll
00:41:37.0827 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\network_services.dll - ok
00:41:37.0843 2964  [ 0691E79EB581DB367826FD8E23E6A877 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\minizip.ppl
00:41:37.0843 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\minizip.ppl - ok
00:41:37.0857 2964  [ 917CF3BFEC250EE36A1D2F6B4176F634 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cab.ppl
00:41:37.0857 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cab.ppl - ok
00:41:37.0870 2964  [ D88B83632EAF807E7C598597A2AB40EC ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\arj.ppl
00:41:37.0870 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\arj.ppl - ok
00:41:37.0883 2964  [ 0095B1EA8C9031761B12E1699D1159C2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\rar.ppl
00:41:37.0883 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\rar.ppl - ok
00:41:37.0902 2964  [ CCF7343CA7C0F0745096AA3ABD8DB04A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lha.ppl
00:41:37.0903 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lha.ppl - ok
00:41:37.0916 2964  [ 0FC9074C30B9838A4AF677F7DE8A9641 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mdb.ppl
00:41:37.0916 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mdb.ppl - ok
00:41:37.0935 2964  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
00:41:37.0935 2964  C:\Windows\SysWOW64\mapi32.dll - ok
00:41:37.0948 2964  [ BE99D2031EB3AA6699EECCE74DF88B01 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pdm.kdl.be99d2031eb3aa6699eecce74df88b01
00:41:37.0948 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pdm.kdl.be99d2031eb3aa6699eecce74df88b01 - ok
00:41:37.0960 2964  [ 2B37BF85F89DE45E6AC420F5DB5BFA5E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msoe.ppl
00:41:37.0960 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msoe.ppl - ok
00:41:37.0981 2964  [ D6A8DF0FE5FF5656D2FD436C3CB1D1D1 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\proxydet.ppl
00:41:37.0981 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\proxydet.ppl - ok
00:41:37.0989 2964  [ C2E80F0F0B97F67A5995CDB63D91BC24 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater.dll
00:41:37.0989 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater.dll - ok
00:41:38.0006 2964  [ 7DD5EE010FBF4088156A3F3D747FF0E2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\diffs.dll
00:41:38.0006 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\diffs.dll - ok
00:41:38.0020 2964  [ 9B812C9BF0DB58B5F4FA72781597C747 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mailmsg.ppl
00:41:38.0020 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mailmsg.ppl - ok
00:41:38.0032 2964  [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
00:41:38.0032 2964  C:\Windows\SysWOW64\devrtl.dll - ok
00:41:38.0045 2964  [ 5D36DC0BD740BC9D5C5AEA9E6B8E67FE ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\bsshlp2.kdl.5d36dc0bd740bc9d5c5aea9e6b8e67fe
00:41:38.0046 2964  C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\bsshlp2.kdl.5d36dc0bd740bc9d5c5aea9e6b8e67fe - ok
00:41:38.0058 2964  [ A87F26388E5A426823854E733F77FFCB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\office_antivirus_facade.dll
00:41:38.0058 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\office_antivirus_facade.dll - ok
00:41:38.0071 2964  [ A98C803229775DA4E17590FAB742E3AE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\swpragueplugin.dll
00:41:38.0072 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\swpragueplugin.dll - ok
00:41:38.0085 2964  [ 97ADBCD478DCB01FD7C15D50960F81E9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wdiskio.ppl
00:41:38.0085 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wdiskio.ppl - ok
00:41:38.0097 2964  [ B519848DFA30AE2B306576B51321D102 ] C:\Windows\System32\ie4uinit.exe
00:41:38.0097 2964  C:\Windows\System32\ie4uinit.exe - ok
00:41:38.0109 2964  [ C3E98C42EDF7EF237A4BAB91FEAC7426 ] C:\Windows\System32\iedkcs32.dll
00:41:38.0109 2964  C:\Windows\System32\iedkcs32.dll - ok
00:41:38.0122 2964  [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
00:41:38.0122 2964  C:\Windows\System32\timedate.cpl - ok
00:41:38.0134 2964  [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
00:41:38.0134 2964  C:\Windows\System32\actxprxy.dll - ok
00:41:38.0145 2964  [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
00:41:38.0146 2964  C:\Windows\System32\shdocvw.dll - ok
00:41:38.0160 2964  [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
00:41:38.0160 2964  C:\Windows\System32\linkinfo.dll - ok
00:41:38.0172 2964  [ 09F7401D56F2393C6CA534FF0241A590 ] C:\Windows\System32\taskmgr.exe
00:41:38.0173 2964  C:\Windows\System32\taskmgr.exe - ok
00:41:38.0200 2964  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
00:41:38.0200 2964  C:\Windows\System32\msftedit.dll - ok
00:41:38.0237 2964  [ 7FCAB194F01E3403C300EB034E480B36 ] C:\Windows\System32\msls31.dll
00:41:38.0237 2964  C:\Windows\System32\msls31.dll - ok
00:41:38.0250 2964  [ FA752544EE1EE59E8AD938CBB43CAC93 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
00:41:38.0250 2964  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
00:41:38.0271 2964  [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
00:41:38.0271 2964  C:\Windows\System32\DeviceCenter.dll - ok
00:41:38.0289 2964  [ E1DCEE9E3EC0522DF24397BE1A64E449 ] C:\Windows\System32\dfshim.dll
00:41:38.0289 2964  C:\Windows\System32\dfshim.dll - ok
00:41:38.0301 2964  [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
00:41:38.0301 2964  C:\Windows\System32\mscoree.dll - ok
00:41:38.0315 2964  [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
00:41:38.0315 2964  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
00:41:38.0329 2964  [ 20437681A7678D440BBEE38C0453B852 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll
00:41:38.0329 2964  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\dfdll.dll - ok
00:41:38.0347 2964  [ C307014C828006EB3A0BF6A74F1717D8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\traffic_processing_product_facade.dll
00:41:38.0347 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\traffic_processing_product_facade.dll - ok
00:41:38.0367 2964  [ 507DDF77D31E963536A748CE48D6E669 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpanlz.ppl
00:41:38.0367 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpanlz.ppl - ok
00:41:38.0375 2964  [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\42055331.sys
00:41:38.0375 2964  C:\Windows\System32\drivers\42055331.sys - ok
00:41:38.0387 2964  [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
00:41:38.0388 2964  C:\Windows\System32\stobject.dll - ok
00:41:38.0404 2964  [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
00:41:38.0404 2964  C:\Windows\System32\batmeter.dll - ok
00:41:38.0417 2964  [ 3DBEAEE8645FAF1232CE464C2CAC12EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
00:41:38.0417 2964  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
00:41:38.0431 2964  [ CB21CD39637AC13F3455454B2F648257 ] C:\Windows\System32\msvcr100_clr0400.dll
00:41:38.0431 2964  C:\Windows\System32\msvcr100_clr0400.dll - ok
00:41:38.0446 2964  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
00:41:38.0446 2964  C:\Windows\System32\prnfldr.dll - ok
00:41:38.0459 2964  [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
00:41:38.0459 2964  C:\Windows\SysWOW64\riched20.dll - ok
00:41:38.0472 2964  [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
00:41:38.0472 2964  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
00:41:38.0482 2964  [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
00:41:38.0482 2964  C:\Windows\System32\thumbcache.dll - ok
00:41:38.0498 2964  [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
00:41:38.0499 2964  C:\Windows\System32\DXP.dll - ok
00:41:38.0514 2964  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
00:41:38.0514 2964  C:\Windows\System32\Syncreg.dll - ok
00:41:38.0526 2964  [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
00:41:38.0526 2964  C:\Windows\ehome\ehSSO.dll - ok
00:41:38.0539 2964  [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
00:41:38.0539 2964  C:\Windows\SysWOW64\duser.dll - ok
00:41:38.0554 2964  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
00:41:38.0554 2964  C:\Windows\System32\netshell.dll - ok
00:41:38.0568 2964  [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
00:41:38.0568 2964  C:\Windows\SysWOW64\dui70.dll - ok
00:41:38.0585 2964  [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
00:41:38.0586 2964  C:\Windows\System32\networkexplorer.dll - ok
00:41:38.0600 2964  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
00:41:38.0600 2964  C:\Windows\System32\AltTab.dll - ok
00:41:38.0613 2964  [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
00:41:38.0613 2964  C:\Windows\System32\WPDShServiceObj.dll - ok
00:41:38.0621 2964  [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
00:41:38.0622 2964  C:\Windows\System32\PortableDeviceTypes.dll - ok
00:41:38.0636 2964  [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
00:41:38.0636 2964  C:\Windows\System32\pnidui.dll - ok
00:41:38.0648 2964  [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
00:41:38.0648 2964  C:\Windows\System32\QUTIL.DLL - ok
00:41:38.0665 2964  [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
00:41:38.0665 2964  C:\Windows\System32\srchadmin.dll - ok
00:41:38.0679 2964  [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
00:41:38.0679 2964  C:\Windows\System32\bthprops.cpl - ok
00:41:38.0698 2964  [ 35126DDDE8241C4C4A5F15F6CDDF4434 ] C:\Windows\System32\ieframe.dll
00:41:38.0698 2964  C:\Windows\System32\ieframe.dll - ok
00:41:38.0707 2964  [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
00:41:38.0707 2964  C:\Windows\System32\ActionCenter.dll - ok
00:41:38.0722 2964  [ D7CEAEDD5F75D2C8A2E80887D7C114CE ] C:\Windows\System32\webcheck.dll
00:41:38.0722 2964  C:\Windows\System32\webcheck.dll - ok
00:41:38.0737 2964  [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
00:41:38.0737 2964  C:\Windows\System32\mlang.dll - ok
00:41:38.0753 2964  [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
00:41:38.0753 2964  C:\Windows\System32\SyncCenter.dll - ok
00:41:38.0769 2964  [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
00:41:38.0770 2964  C:\Windows\System32\imapi2.dll - ok
00:41:38.0782 2964  [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
00:41:38.0782 2964  C:\Windows\System32\netman.dll - ok
00:41:38.0802 2964  [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
00:41:38.0802 2964  C:\Windows\System32\l3codeca.acm - ok
00:41:38.0817 2964  [ F2EAA9C72F228E19D37D0B57C179E545 ] C:\Windows\Installer\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}\iTunesIco.exe
00:41:38.0817 2964  C:\Windows\Installer\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}\iTunesIco.exe - ok
00:41:38.0830 2964  [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
00:41:38.0830 2964  C:\Windows\System32\rasdlg.dll - ok
00:41:38.0845 2964  [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
00:41:38.0845 2964  C:\Windows\System32\mprapi.dll - ok
00:41:38.0858 2964  [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
00:41:38.0858 2964  C:\Windows\System32\hgcpl.dll - ok
00:41:38.0870 2964  [ AE528EF45B2ACE8DEEF9F16AC880E557 ] C:\Program Files\Ventrilo\Ventrilo.exe
00:41:38.0870 2964  C:\Program Files\Ventrilo\Ventrilo.exe - ok
00:41:38.0885 2964  [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
00:41:38.0885 2964  C:\Windows\System32\fdPHost.dll - ok
00:41:38.0907 2964  [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
00:41:38.0907 2964  C:\Windows\System32\FDResPub.dll - ok
00:41:38.0920 2964  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
00:41:38.0920 2964  C:\Windows\System32\dot3api.dll - ok
00:41:38.0934 2964  [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
00:41:38.0934 2964  C:\Windows\System32\fdWSD.dll - ok
00:41:38.0946 2964  [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
00:41:38.0946 2964  C:\Windows\System32\wlanhlp.dll - ok
00:41:38.0961 2964  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
00:41:38.0962 2964  C:\Windows\System32\httpapi.dll - ok
00:41:38.0982 2964  [ 91A8F92D4F9C57820C294ED2E36127A2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_prague_adapter.ppl
00:41:38.0982 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_prague_adapter.ppl - ok
00:41:38.0998 2964  [ B3BCDF8DB13D529261745FD8DDCE8A5B ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
00:41:38.0998 2964  C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe - ok
00:41:39.0013 2964  [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
00:41:39.0013 2964  C:\Windows\System32\fdSSDP.dll - ok
00:41:39.0026 2964  [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
00:41:39.0026 2964  C:\Windows\System32\fdProxy.dll - ok
00:41:39.0038 2964  [ 66E4246FEF8C364611F9782AA0809F42 ] C:\Program Files\Internet Explorer\ieproxy.dll
00:41:39.0038 2964  C:\Program Files\Internet Explorer\ieproxy.dll - ok
00:41:39.0054 2964  [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
00:41:39.0054 2964  C:\Windows\System32\FXSST.dll - ok
00:41:39.0068 2964  [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
00:41:39.0068 2964  C:\Windows\System32\FXSAPI.dll - ok
00:41:39.0086 2964  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
00:41:39.0086 2964  C:\Windows\System32\FXSSVC.exe - ok
00:41:39.0101 2964  [ 585FED4CDB8034B8B58AEB8008255817 ] C:\Windows\System32\opengl32.dll
00:41:39.0101 2964  C:\Windows\System32\opengl32.dll - ok
00:41:39.0114 2964  [ 2809F6A69068C6C56860E6B8B8DB4AFB ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe
00:41:39.0115 2964  C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\xlicons.exe - ok
00:41:39.0128 2964  [ F2967C0A97C0EA67D79D7F557213950D ] C:\Windows\System32\glu32.dll
00:41:39.0129 2964  C:\Windows\System32\glu32.dll - ok
00:41:39.0136 2964  [ A6C09924C6730DE8DEED9890A12AA691 ] C:\Windows\System32\ddraw.dll
00:41:39.0136 2964  C:\Windows\System32\ddraw.dll - ok
00:41:39.0148 2964  [ 29C22748937F45C26590909E9F8E7137 ] C:\Windows\System32\dciman32.dll
00:41:39.0148 2964  C:\Windows\System32\dciman32.dll - ok
00:41:39.0163 2964  [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
00:41:39.0163 2964  C:\Windows\System32\dsound.dll - ok
00:41:39.0177 2964  [ 0805289E121F3E3C458C970B08314EB2 ] C:\Windows\System32\RtkCfg64.dll
00:41:39.0177 2964  C:\Windows\System32\RtkCfg64.dll - ok
00:41:39.0197 2964  [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
00:41:39.0197 2964  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
00:41:39.0212 2964  [ 393F021E2A9FA19AC94BA4482E32FC6C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
00:41:39.0212 2964  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
00:41:39.0227 2964  [ 0F77770991308CA1F58F18EED7EBE7B7 ] C:\Program Files\Eraser\Eraser.exe
00:41:39.0227 2964  C:\Program Files\Eraser\Eraser.exe - ok
00:41:39.0240 2964  [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
00:41:39.0240 2964  C:\Windows\System32\WWanAPI.dll - ok
00:41:39.0255 2964  [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
00:41:39.0255 2964  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
00:41:39.0270 2964  [ 5532BECA481B40DB38F2CA000086A7EB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_response_provider.dll
00:41:39.0270 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_response_provider.dll - ok
00:41:39.0284 2964  [ 9BDEEA2C0F801412D3AEA8A6F6BF8D42 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\anti_phishing_http_filter.dll
00:41:39.0284 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\anti_phishing_http_filter.dll - ok
00:41:39.0302 2964  [ A0EDB24A88A07263BF922F2939AAC065 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ftpprtc.dll
00:41:39.0303 2964  C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ftpprtc.dll - ok
00:41:39.0315 2964  [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
00:41:39.0315 2964  C:\Windows\System32\wwapi.dll - ok
00:41:39.0328 2964  [ 74BB6162D79CEDFCA1421DE2685C3139 ] C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
00:41:39.0329 2964  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe - ok
00:41:39.0346 2964  [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
00:41:39.0346 2964  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
00:41:39.0360 2964  [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
00:41:39.0360 2964  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
00:41:39.0373 2964  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
00:41:39.0373 2964  C:\Windows\SysWOW64\taskschd.dll - ok
00:41:39.0385 2964  [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
00:41:39.0385 2964  C:\Windows\System32\gameux.dll - ok
00:41:39.0402 2964  [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
00:41:39.0402 2964  C:\Windows\System32\wmdrmdev.dll - ok
00:41:39.0411 2964  [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
00:41:39.0413 2964  C:\Windows\System32\QAGENT.DLL - ok
00:41:39.0427 2964  [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
00:41:39.0427 2964  C:\Windows\System32\drmv2clt.dll - ok
00:41:39.0439 2964  [ 349B1D5D8D1B5A7B10BCD01470BD5F64 ] C:\Windows\System32\msvcp110.dll
00:41:39.0439 2964  C:\Windows\System32\msvcp110.dll - ok
00:41:39.0455 2964  [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
00:41:39.0455 2964  C:\Windows\System32\UIAnimation.dll - ok
00:41:39.0470 2964  [ F296A16807B11E1EDD3713CDDAB07485 ] C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
00:41:39.0470 2964  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe - ok
00:41:39.0484 2964  [ C72ABC6B7B90A61364B6DD889B5435F3 ] C:\Windows\System32\msvcr110.dll
00:41:39.0484 2964  C:\Windows\System32\msvcr110.dll - ok
00:41:39.0508 2964  [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
00:41:39.0508 2964  C:\Windows\System32\wmploc.DLL - ok
00:41:39.0524 2964  [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Microsoft Mouse and Keyboard Center\SQMAPI.dll
00:41:39.0524 2964  C:\Program Files\Microsoft Mouse and Keyboard Center\SQMAPI.dll - ok
00:41:39.0540 2964  [ 4076E418CD3EB0E09FFBCD828C35CE26 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
00:41:39.0540 2964  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
00:41:39.0557 2964  [ F02A533F517EB38333CB12A9E8963773 ] C:\Users\Kayleigh\AppData\Local\Google\Update\GoogleUpdate.exe
00:41:39.0557 2964  C:\Users\Kayleigh\AppData\Local\Google\Update\GoogleUpdate.exe - ok
00:41:39.0570 2964  [ E09EFDAE4A93765ECEA0D5A31FC242E3 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
00:41:39.0570 2964  C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe - ok
00:41:39.0593 2964  [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
00:41:39.0593 2964  C:\Windows\System32\blackbox.dll - ok
00:41:39.0609 2964  [ 66C87DB880052104808507D6FA84D68E ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
00:41:39.0610 2964  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
00:41:39.0624 2964  [ 7C74C407EEFE30A423B49E2D10850281 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll
00:41:39.0624 2964  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\msoshext.dll - ok
00:41:39.0638 2964  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Users\Kayleigh\AppData\Local\Google\Update\1.3.21.135\goopdate.dll
00:41:39.0638 2964  C:\Users\Kayleigh\AppData\Local\Google\Update\1.3.21.135\goopdate.dll - ok
00:41:39.0652 2964  [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
00:41:39.0652 2964  C:\Windows\System32\wmp.dll - ok
00:41:39.0669 2964  [ 1511A4E8FFACFF9CEBBB02E20E5054F1 ] C:\Program Files (x86)\DAEMON Tools Lite\DTCommonRes.dll
00:41:39.0669 2964  C:\Program Files (x86)\DAEMON Tools Lite\DTCommonRes.dll - ok
00:41:39.0680 2964  [ F40DA99A763D5584EC5D6F7B563FE5D6 ] C:\Program Files\Microsoft Mouse and Keyboard Center\dpgcmd.dll
00:41:39.0680 2964  C:\Program Files\Microsoft Mouse and Keyboard Center\dpgcmd.dll - ok
00:41:39.0696 2964  [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
00:41:39.0696 2964  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
00:41:39.0712 2964  [ 6F0DAB13529BCB7C0F8A3082A8B1CDE9 ] C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
00:41:39.0713 2964  C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe - ok
00:41:39.0724 2964  [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
00:41:39.0725 2964  C:\Windows\System32\wersvc.dll - ok
00:41:39.0738 2964  [ 88155D3D23CA8A1DFB1F45EE3E4C8DF8 ] C:\Program Files (x86)\uTorrent\uTorrent.exe
00:41:39.0738 2964  C:\Program Files (x86)\uTorrent\uTorrent.exe - ok
00:41:39.0751 2964  [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
00:41:39.0751 2964  C:\Windows\System32\riched20.dll - ok
00:41:39.0764 2964  [ DF48408BD8A76BC35FCC8514A89B55A9 ] C:\Windows\System32\SynCOM.dll
00:41:39.0764 2964  C:\Windows\System32\SynCOM.dll - ok
00:41:39.0776 2964  [ 8FEDBE7A5D3E5F91FD4B96DAFA4DD197 ] C:\Users\Kayleigh\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
00:41:39.0776 2964  C:\Users\Kayleigh\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe - ok
00:41:39.0789 2964  [ 497F27E279C0F921E2130BB89C1CB5CA ] C:\Program Files (x86)\Skype\Phone\Skype.exe
00:41:39.0789 2964  C:\Program Files (x86)\Skype\Phone\Skype.exe - ok
00:41:39.0802 2964  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:41:39.0802 2964  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
00:41:39.0815 2964  [ EAA666E9DD8DCDA6E075087091CB85EE ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
00:41:39.0815 2964  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe - ok
00:41:39.0828 2964  [ 773D7DC2BABC0C3DEFE910C44637F573 ] C:\Windows\System32\SynTPAPI.dll
00:41:39.0828 2964  C:\Windows\System32\SynTPAPI.dll - ok
00:41:39.0840 2964  [ B02F31E71CED3F905D43E7AC264380A3 ] C:\Program Files (x86)\Common Files\SolidWorks Installation Manager\BackgroundDownloading\sldBgDwld.exe
00:41:39.0840 2964  C:\Program Files (x86)\Common Files\SolidWorks Installation Manager\BackgroundDownloading\sldBgDwld.exe - ok
00:41:39.0856 2964  [ DD81D91FF3B0763C392422865C9AC12E ] C:\Windows\System32\rundll32.exe
00:41:39.0856 2964  C:\Windows\System32\rundll32.exe - ok
00:41:39.0869 2964  [ 4F73C6528397A014D5620AED041533CF ] C:\Program Files (x86)\DAEMON Tools Lite\Engine.dll
00:41:39.0869 2964  C:\Program Files (x86)\DAEMON Tools Lite\Engine.dll - ok
00:41:39.0882 2964  [ 97F4EEEEDCDBE88B99368BA5013B836A ] C:\Program Files\Microsoft Mouse and Keyboard Center\Components\Commands\DPGHnt\DPGHnt.dll
00:41:39.0882 2964  C:\Program Files\Microsoft Mouse and Keyboard Center\Components\Commands\DPGHnt\DPGHnt.dll - ok
00:41:39.0901 2964  [ E5F7C30EDF0892667933BE879F067D67 ] C:\Windows\SysWOW64\msvcr100_clr0400.dll
00:41:39.0901 2964  C:\Windows\SysWOW64\msvcr100_clr0400.dll - ok
00:41:39.0908 2964  [ 590D5C506044FE02FF7643E32FF9BDAC ] C:\Windows\SysWOW64\wer.dll
00:41:39.0908 2964  C:\Windows\SysWOW64\wer.dll - ok
00:41:39.0921 2964  [ F2C7BB8ACC97F92E987A2D4087D021B1 ] C:\Windows\System32\notepad.exe
00:41:39.0921 2964  C:\Windows\System32\notepad.exe - ok
00:41:39.0939 2964  [ DA579734B4375740EFEE86FFDFED57A7 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll
00:41:39.0940 2964  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\wlidcli.dll - ok
00:41:39.0955 2964  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:41:39.0955 2964  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
00:41:39.0968 2964  [ BBD351CB2E5455F0E96FE4460EC05F52 ] C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe
00:41:39.0968 2964  C:\Windows\Installer\{90140000-003D-0000-0000-0000000FF1CE}\wordicon.exe - ok
00:41:39.0984 2964  [ 9419ABF3163B6F0E3AD3DD2B381C879F ] C:\Windows\SysWOW64\WinSCard.dll
00:41:39.0984 2964  C:\Windows\SysWOW64\WinSCard.dll - ok
00:41:40.0002 2964  [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
00:41:40.0002 2964  C:\Windows\System32\wmpps.dll - ok
00:41:40.0015 2964  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
00:41:40.0015 2964  C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe - ok
00:41:40.0028 2964  [ 5276840FB5B0DFBEBC663275189DB949 ] C:\Program Files (x86)\Windows Live\Shared\wldlog.dll
00:41:40.0028 2964  C:\Program Files (x86)\Windows Live\Shared\wldlog.dll - ok
00:41:40.0040 2964  [ E08C81ABB98956BA1F571138BE8983FA ] C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll
00:41:40.0040 2964  C:\Program Files (x86)\Windows Live\Messenger\shareanything.dll - ok
00:41:40.0053 2964  [ E680A55E9488921FC487616F4EDE7797 ] C:\Program Files (x86)\Windows Live\Shared\uxcore.dll
00:41:40.0053 2964  C:\Program Files (x86)\Windows Live\Shared\uxcore.dll - ok
00:41:40.0066 2964  [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
00:41:40.0066 2964  C:\Windows\System32\wmpmde.dll - ok
00:41:40.0080 2964  [ 2C1BB3AD51826AA96C9802CBC123814F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll
00:41:40.0080 2964  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\51a23687fdafc32b697f5a719e364651\mscorlib.ni.dll - ok
00:41:40.0092 2964  [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
00:41:40.0092 2964  C:\Windows\SysWOW64\d3d9.dll - ok
00:41:40.0104 2964  [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
00:41:40.0105 2964  C:\Windows\SysWOW64\d3d8thk.dll - ok
00:41:40.0119 2964  [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
00:41:40.0119 2964  C:\Windows\SysWOW64\d2d1.dll - ok
00:41:40.0130 2964  [ 1B1431D9520C7578AD5633ED2A70625F ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
00:41:40.0130 2964  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
00:41:40.0142 2964  [ 3C1936A12C62254F914A01BBC6A8DC69 ] C:\Windows\SysWOW64\d3d10_1.dll
00:41:40.0143 2964  C:\Windows\SysWOW64\d3d10_1.dll - ok
00:41:40.0155 2964  [ D4212AB475A3B25EC4DF574536C3EDC5 ] C:\Windows\SysWOW64\d3d10_1core.dll
00:41:40.0155 2964  C:\Windows\SysWOW64\d3d10_1core.dll - ok
00:41:40.0165 2964  [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
00:41:40.0165 2964  C:\Windows\SysWOW64\dxgi.dll - ok
00:41:40.0177 2964  [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
00:41:40.0177 2964  C:\Windows\SysWOW64\d3d11.dll - ok
00:41:40.0189 2964  [ BD0EA5C8A4EF518C46E05F99908A56CE ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
00:41:40.0189 2964  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
00:41:40.0203 2964  [ 1AA571774936717EE776DBED51E9EDF4 ] C:\Windows\SysWOW64\d3dx10_41.dll
00:41:40.0203 2964  C:\Windows\SysWOW64\d3dx10_41.dll - ok
00:41:40.0216 2964  [ 715BFF236158F61C042928A53C0D5AA8 ] C:\Program Files\Windows NT\Accessories\wordpad.exe
00:41:40.0216 2964  C:\Program Files\Windows NT\Accessories\wordpad.exe - ok
00:41:40.0228 2964  [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\Windows\SysWOW64\DWrite.dll
00:41:40.0228 2964  C:\Windows\SysWOW64\DWrite.dll - ok
00:41:40.0240 2964  [ 99FC1599F89A80216E41175B8CA44D89 ] C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
00:41:40.0240 2964  C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe - ok
00:41:40.0253 2964  [ CC9E4D197143738BD868282E76FF6731 ] C:\Program Files (x86)\Windows Live\Shared\wldcore.dll
00:41:40.0253 2964  C:\Program Files (x86)\Windows Live\Shared\wldcore.dll - ok
00:41:40.0266 2964  [ 9CF432E0306BB75D4B772916D75422D2 ] C:\Program Files (x86)\Windows Live\Shared\uxctl.dll
00:41:40.0266 2964  C:\Program Files (x86)\Windows Live\Shared\uxctl.dll - ok
00:41:40.0293 2964  [ 9EBA2C513B44A87C1E4A2A4115FA5AB8 ] C:\Program Files (x86)\Ad-Aware Antivirus\SpursDownload.dll
00:41:40.0293 2964  C:\Program Files (x86)\Ad-Aware Antivirus\SpursDownload.dll - ok
00:41:40.0306 2964  [ E691826F57C814DECD85E143BB8F15C0 ] C:\Program Files (x86)\Ad-Aware Antivirus\SBTE.dll
00:41:40.0306 2964  C:\Program Files (x86)\Ad-Aware Antivirus\SBTE.dll - ok
00:41:40.0343 2964  [ F0D369B57B0B0B00D4E146F0F53FB86C ] C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll
00:41:40.0343 2964  C:\Program Files (x86)\Windows Live\Shared\uxcontacts.dll - ok
00:41:40.0363 2964  [ 3856E8ADD648BC2DFEB07406C7F25804 ] C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll
00:41:40.0363 2964  C:\Program Files (x86)\Windows Live\Shared\uxcalendar.dll - ok
00:41:40.0383 2964  [ DE3B32A87E7DB1B6EB008F4BEC4278D0 ] C:\Program Files (x86)\Windows Live\Shared\wlidux.dll
00:41:40.0384 2964  C:\Program Files (x86)\Windows Live\Shared\wlidux.dll - ok
00:41:40.0397 2964  [ 09289206C1FDDD64CA96E024D5C4B23E ] C:\Program Files (x86)\Ad-Aware Antivirus\sbap.dll
00:41:40.0397 2964  C:\Program Files (x86)\Ad-Aware Antivirus\sbap.dll - ok
00:41:40.0410 2964  [ 08AF0B15AC1696F1F9B58FAB6560372B ] C:\Program Files (x86)\Ad-Aware Antivirus\SBArva.dll
00:41:40.0410 2964  C:\Program Files (x86)\Ad-Aware Antivirus\SBArva.dll - ok
00:41:40.0423 2964  [ 9CE7BD04EDF43A81685030FF09E7F4D7 ] C:\Program Files (x86)\Ad-Aware Antivirus\mimepp.dll
00:41:40.0423 2964  C:\Program Files (x86)\Ad-Aware Antivirus\mimepp.dll - ok
00:41:40.0437 2964  [ 414F0C81BC69D2BF7216B0A5432DBA7F ] C:\Program Files (x86)\Ad-Aware Antivirus\SbHips.dll
00:41:40.0437 2964  C:\Program Files (x86)\Ad-Aware Antivirus\SbHips.dll - ok
00:41:40.0451 2964  [ ED27D1D75BF5E683AD3EDD9E3123520A ] C:\Windows\SysWOW64\inetcomm.dll
00:41:40.0452 2964  C:\Windows\SysWOW64\inetcomm.dll - ok
00:41:40.0464 2964  [ B7592E80772071D66336B3EC9B82101D ] C:\Windows\SysWOW64\msoert2.dll
00:41:40.0464 2964  C:\Windows\SysWOW64\msoert2.dll - ok
00:41:40.0477 2964  [ 9CB30A4E79BE55751312991DE827F6ED ] C:\Windows\SysWOW64\INETRES.dll
00:41:40.0477 2964  C:\Windows\SysWOW64\INETRES.dll - ok
00:41:40.0490 2964  [ F3A38E535DBC5238E24FE6C9ED3CECFA ] C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm
00:41:40.0490 2964  C:\Program Files (x86)\Windows Live\Messenger\msgrvsta.thm - ok
00:41:40.0503 2964  [ ED7B08A45646826AC70896D636A5D09C ] C:\Program Files (x86)\World of Warcraft\Wow-64.exe
00:41:40.0504 2964  C:\Program Files (x86)\World of Warcraft\Wow-64.exe - ok
00:41:40.0516 2964  [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
00:41:40.0516 2964  C:\Windows\SysWOW64\mlang.dll - ok
00:41:40.0529 2964  [ CA030ED1440B35260D2A9A2E8C32AA84 ] C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui
00:41:40.0529 2964  C:\Program Files (x86)\Windows Live\Messenger\en\msgslang.dll.mui - ok
00:41:40.0542 2964  [ 65AB1A3B45B933697F74B53116B46523 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
00:41:40.0542 2964  C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
00:41:40.0556 2964  [ 81252AA3B13743020BCF2089A5A0D911 ] C:\Windows\System32\wscinterop.dll
00:41:40.0556 2964  C:\Windows\System32\wscinterop.dll - ok
00:41:40.0568 2964  [ DF50DAE4C547285E4997A0C61063B632 ] C:\Windows\System32\wscui.cpl
00:41:40.0568 2964  C:\Windows\System32\wscui.cpl - ok
00:41:40.0580 2964  [ F9959237F106F2B2609E61A290C0652E ] C:\Windows\System32\werconcpl.dll
00:41:40.0580 2964  C:\Windows\System32\werconcpl.dll - ok
00:41:40.0591 2964  [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
00:41:40.0591 2964  C:\Windows\System32\framedynos.dll - ok
00:41:40.0606 2964  [ 7E591867422DC788B9E5BD337A669A08 ] C:\Windows\System32\wercplsupport.dll
00:41:40.0606 2964  C:\Windows\System32\wercplsupport.dll - ok
00:41:40.0619 2964  [ 809AE7D4ACE06BBCF621E5C504BF6FC8 ] C:\Windows\System32\hcproviders.dll
00:41:40.0619 2964  C:\Windows\System32\hcproviders.dll - ok
00:41:40.0632 2964  [ 703FFD301AB900B047337C5D40FD6F96 ] C:\Windows\SysWOW64\olepro32.dll
00:41:40.0632 2964  C:\Windows\SysWOW64\olepro32.dll - ok
00:41:40.0646 2964  [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
00:41:40.0646 2964  C:\Windows\System32\WinSATAPI.dll - ok
00:41:40.0659 2964  [ F1278B3514EA6FA9BC39B20D26139AAC ] C:\Windows\SysWOW64\msiltcfg.dll
00:41:40.0659 2964  C:\Windows\SysWOW64\msiltcfg.dll - ok
00:41:40.0674 2964  [ 3C6FA2F4D58611579B21798E0568F548 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
00:41:40.0674 2964  C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
00:41:40.0681 2964  ============================================================
00:41:40.0682 2964  Scan finished
00:41:40.0682 2964  ============================================================
00:41:40.0729 3096  Detected object count: 1
00:41:40.0729 3096  Actual detected object count: 1
00:43:53.0411 3096  sptd ( LockedFile.Multi.Generic ) - skipped by user
00:43:53.0411 3096  sptd ( LockedFile.Multi.Generic ) - User select action: Skip
00:46:39.0200 4948  Deinitialize success
 



#6 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 08:14 PM

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-11 00:45:45
-----------------------------
00:45:45.470    OS Version: Windows x64 6.1.7601 Service Pack 1
00:45:45.470    Number of processors: 2 586 0x100
00:45:45.473    ComputerName: ACCESS-DENIED  UserName: Kayleigh
00:46:02.145    Initialize success
00:54:02.301    AVAST engine defs: 13031001
00:54:16.989    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000072
00:54:16.993    Disk 0 Vendor: WDC_WD32 02.0 Size: 305245MB BusType: 11
00:54:17.017    Disk 0 MBR read successfully
00:54:17.022    Disk 0 MBR scan
00:54:17.033    Disk 0 Windows 7 default MBR code
00:54:17.040    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          199 MB offset 2048
00:54:17.066    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       286069 MB offset 409600
00:54:17.106    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS        14912 MB offset 586278912
00:54:17.130    Disk 0 Partition 4 00     0C    FAT32 LBA MSDOS5.0     4063 MB offset 616818688
00:54:17.192    Disk 0 scanning C:\Windows\system32\drivers
00:54:41.148    Service scanning
00:55:36.082    Modules scanning
00:55:36.116    Disk 0 trace - called modules:
00:55:36.493    ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0xfffffa8002cfd2c0]<<spht.sys amd_xata.sys ACPI.sys storport.sys hal.dll amd_sata.sys
00:55:36.509    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80031f2060]
00:55:36.524    3 CLASSPNP.SYS[fffff8800100143f] -> nt!IofCallDriver -> [0xfffffa8002e8c860]
00:55:36.538    \Driver\amd_xata[0xfffffa8002deb850] -> IRP_MJ_CREATE -> 0xfffffa8002cfd2c0
00:55:36.551    5 amd_xata.sys[fffff880011cda1d] -> nt!IofCallDriver -> [0xfffffa8002eac580]
00:55:36.563    7 ACPI.sys[fffff8800104d7a1] -> nt!IofCallDriver -> \Device\00000072[0xfffffa8002e334b0]
00:55:36.574    \Driver\amd_sata[0xfffffa8002de93d0] -> IRP_MJ_CREATE -> 0xfffffa8002cfb2c0
00:55:41.548    AVAST engine scan C:\Windows
00:55:48.143    AVAST engine scan C:\Windows\system32
01:07:43.542    AVAST engine scan C:\Windows\system32\drivers
01:08:58.061    AVAST engine scan C:\Users\Kayleigh
01:58:57.417    AVAST engine scan C:\ProgramData
02:18:49.997    Scan finished successfully
02:24:04.141    Disk 0 MBR has been saved successfully to "C:\Users\Kayleigh\Desktop\MBR.dat"
02:24:04.155    The log file has been saved successfully to "C:\Users\Kayleigh\Desktop\aswMBR.txt"

 

 

ESET Results:

C:\Users\Kayleigh\AppData\Local\Temp\0.21330917308676767    Win32/Kryptik.AWEK.Gen trojan    
C:\Users\Emergency\AppData\Roaming\Mozilla\Firefox\Profiles\wcdx2vcb.default\extensions\swjxeiyzzk@swjxeiyzzk.org.xpi    JS/Redirector.NCI trojan    deleted - quarantined
C:\Users\Kayleigh\AppData\Local\Temp\ApnIC.dll    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Users\Kayleigh\AppData\Local\Temp\ApnToolbarInstaller.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Users\Kayleigh\AppData\Local\Temp\AskSLib.dll    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Users\Kayleigh\AppData\Local\Temp\DTLite4454-0316.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Users\Kayleigh\AppData\Roaming\Mozilla\Firefox\Profiles\5har22j6.default\extensions\swjxeiyzzk@swjxeiyzzk.org.xpi    JS/Redirector.NCI trojan    deleted - quarantined
C:\Users\Kayleigh\Downloads\Setup-MsgPlus-600.exe    a variant of Win32/MessengerPlus.A application    deleted - quarantined


 



#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:14 AM

Posted 11 March 2013 - 08:20 PM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.


 

  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------



  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply

===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.
 

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

===================================================


AdwCleaner by Xplode - Search for Adware

-------------------
 

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well

===================================================


Junkware Removal Tooll by thisisu

-------------------
 

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply

===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:
 

  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.

===================================================


Autoruns

--------------------
 

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply

===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:
 

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log


#8 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 09:57 PM

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.03.12.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Kayleigh :: ACCESS-DENIED [administrator]

3/11/2013 9:41:19 PM
mbam-log-2013-03-11 (21-41-19).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 241938
Time elapsed: 11 minute(s),

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Kayleigh (administrator) on 11-03-2013 at 21:55:43
Running from "C:\Users\Kayleigh\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8188CE 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=10.0.0.3 metric=1 publish=Yes


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : access-denied
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : nc.rr.com

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : nc.rr.com
   Description . . . . . . . . . . . : Realtek RTL8188CE 802.11b/g/n WiFi Adapter
   Physical Address. . . . . . . . . : 68-A3-C4-76-15-4C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a8f3:43c6:a233:6e83%22(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.108(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, March 11, 2013 12:29:03 AM
   Lease Expires . . . . . . . . . . : Tuesday, March 12, 2013 3:16:25 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 191407044
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-DC-43-B5-68-A3-C4-76-15-4C
   DNS Servers . . . . . . . . . . . : 209.18.47.61
                                       209.18.47.62
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : nc.rr.com
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 3C-D9-2B-2E-92-B1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.nc.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : nc.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:10d2:11b9:519e:59f2(Preferred)
   Link-local IPv6 Address . . . . . : fe80::10d2:11b9:519e:59f2%16(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    google.com
Addresses:  2607:f8b0:4002:c03::66
      74.125.140.101
      74.125.140.102
      74.125.140.113
      74.125.140.138
      74.125.140.139
      74.125.140.100


Pinging google.com [74.125.140.102] with 32 bytes of data:
Reply from 74.125.140.102: bytes=32 time=33ms TTL=48
Reply from 74.125.140.102: bytes=32 time=66ms TTL=48

Ping statistics for 74.125.140.102:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 33ms, Maximum = 66ms, Average = 49ms
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=321ms TTL=49
Reply from 98.139.183.24: bytes=32 time=584ms TTL=49

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 321ms, Maximum = 584ms, Average = 452ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 22...68 a3 c4 76 15 4c ......Realtek RTL8188CE 802.11b/g/n WiFi Adapter
 11...3c d9 2b 2e 92 b1 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.108     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.108    281
    192.168.1.108  255.255.255.255         On-link     192.168.1.108    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.108    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.108    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.108    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0         10.0.0.3       1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 16     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 16     58 2001::/32                On-link
 16    306 2001:0:9d38:953c:10d2:11b9:519e:59f2/128
                                    On-link
 22    281 fe80::/64                On-link
 16    306 fe80::/64                On-link
 16    306 fe80::10d2:11b9:519e:59f2/128
                                    On-link
 22    281 fe80::a8f3:43c6:a233:6e83/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    306 ff00::/8                 On-link
 22    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [File Not found] ()
x64-Catalog9 12 C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/11/2013 02:08:18 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 78531

Error: (03/11/2013 02:08:18 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 78531

Error: (03/11/2013 02:08:18 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/11/2013 02:08:17 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 77517

Error: (03/11/2013 02:08:17 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 77517

Error: (03/11/2013 02:08:17 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/11/2013 02:08:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 76394

Error: (03/11/2013 02:08:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 76394

Error: (03/11/2013 02:08:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/11/2013 02:08:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 75162


System errors:
=============
Error: (03/11/2013 09:35:17 PM) (Source: Service Control Manager) (User: )
Description: The Sophos Virus Removal Tool service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/11/2013 09:07:50 PM) (Source: Service Control Manager) (User: )
Description: The Messenger Plus! Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/11/2013 00:42:41 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Windows 7 for x64-based Systems (KB2592687).

Error: (03/11/2013 00:41:10 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (03/11/2013 00:37:46 AM) (Source: Service Control Manager) (User: )
Description: The Ad-Aware service hung on starting.

Error: (03/11/2013 00:35:03 AM) (Source: DCOM) (User: )
Description: 1053iPod Service{063D34A4-BF84-4B8D-B699-E8CA06504DDE}

Error: (03/11/2013 00:35:03 AM) (Source: Service Control Manager) (User: )
Description: The iPod Service service failed to start due to the following error:
%%1053

Error: (03/11/2013 00:35:03 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the iPod Service service to connect.

Error: (03/11/2013 00:32:29 AM) (Source: Service Control Manager) (User: )
Description: The HP Support Assistant Service service failed to start due to the following error:
%%1053

Error: (03/11/2013 00:32:29 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the HP Support Assistant Service service to connect.


Microsoft Office Sessions:
=========================
Error: (03/11/2013 02:08:18 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 78531

Error: (03/11/2013 02:08:18 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 78531

Error: (03/11/2013 02:08:18 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/11/2013 02:08:17 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 77517

Error: (03/11/2013 02:08:17 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 77517

Error: (03/11/2013 02:08:17 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/11/2013 02:08:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 76394

Error: (03/11/2013 02:08:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 76394

Error: (03/11/2013 02:08:15 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (03/11/2013 02:08:14 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 75162


CodeIntegrity Errors:
===================================
  Date: 2013-02-21 19:13:42.094
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-21 19:13:42.090
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-21 19:13:42.083
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-21 19:13:42.036
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-21 19:13:42.033
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-21 19:13:42.023
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-17 14:48:03.115
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-17 14:48:03.111
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-17 14:48:03.104
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-02-17 14:48:03.029
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

µTorrent (Version: 3.1.3)
64 Bit HP CIO Components Installer (Version: 7.2.4)
Ad-Aware Antivirus (Version: 10.5.1.4369)
Ad-Aware Browsing Protection (Version: 1.0.1.94)
Adobe AIR (Version: 3.6.0.5970)
Adobe Community Help (Version: 3.4.980)
Adobe Dreamweaver CS5.5 (Version: 11.5)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Adobe Shockwave Player 12.0 (Version: 12.0.0.112)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Agatha Christie - Peril at End House (Version: 2.2.0.95)
Age of Empires® III: Complete Collection
AIM 7
aioprnt (Version: 5.3.1.0)
aioscnnr (Version: 6.2.3.10)
aioscnnr (Version: 7.3.4.0)
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2012.1219.1521.27485)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
AMD Steady Video Plug-In  (Version: 2.06.0000)
AMD VISION Engine Control Center (Version: 2012.1219.1521.27485)
Anathema (Version: 4.5.1)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Babylon
Bejeweled 3 (Version: 2.2.0.97)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blasterball 3 (Version: 2.2.0.97)
Blio (Version: 2.2.6699)
Bonjour (Version: 3.0.0.10)
Bounce Symphony (Version: 2.2.0.97)
BufferChm (Version: 140.0.212.000)
C4USelfUpdater (Version: 1.00.0000)
Cake Mania (Version: 2.2.0.95)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2012.1219.1521.27485)
Catalyst Control Center InstallProxy (Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (Version: 2012.1219.1520.27485)
CCC Help Czech (Version: 2012.1219.1520.27485)
CCC Help Danish (Version: 2012.1219.1520.27485)
CCC Help Dutch (Version: 2012.1219.1520.27485)
CCC Help English (Version: 2012.1219.1520.27485)
CCC Help Finnish (Version: 2012.1219.1520.27485)
CCC Help French (Version: 2012.1219.1520.27485)
CCC Help German (Version: 2012.1219.1520.27485)
CCC Help Greek (Version: 2012.1219.1520.27485)
CCC Help Hungarian (Version: 2012.1219.1520.27485)
CCC Help Italian (Version: 2012.1219.1520.27485)
CCC Help Japanese (Version: 2012.1219.1520.27485)
CCC Help Korean (Version: 2012.1219.1520.27485)
CCC Help Norwegian (Version: 2012.1219.1520.27485)
CCC Help Polish (Version: 2012.1219.1520.27485)
CCC Help Portuguese (Version: 2012.1219.1520.27485)
CCC Help Russian (Version: 2012.1219.1520.27485)
CCC Help Spanish (Version: 2012.1219.1520.27485)
CCC Help Swedish (Version: 2012.1219.1520.27485)
CCC Help Thai (Version: 2012.1219.1520.27485)
CCC Help Turkish (Version: 2012.1219.1520.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
center (Version: 6.2.5.0)
Chronicles of Albian (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Convergys Health Checker (Version: 1.0.4)
Coupon Printer for Windows (Version: 5.0.0.0)
Cradle of Rome 2 (Version: 2.2.0.95)
Curse Client (Version: 5.1.1.644)
D110 (Version: 140.0.283.000)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.45.4.0316)
DAEMON Tools Toolbar (Version: 1.1.0.0283)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
Download Updater (AOL LLC)
Dropbox (Version: 1.6.16)
Dungeons & Dragons Online®
EasyCapture 1.2.0.0
EPSON NX420 Series Printer Uninstall
Eraser 6.0.10.2620 (Version: 6.0.2620)
ESET Online Scanner v3
essentials (Version: 6.0.14.0)
ESU for Microsoft Windows 7 SP1 (Version: 2.1.1)
Evernote v. 4.2.3 (Version: 4.2.3.22)
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.97)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 25.0.1364.152)
Google Talk Plugin (Version: 3.15.2.12038)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
GPBaseService2 (Version: 140.0.211.000)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.5)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Launch Box (Version: 1.1.5)
HP MovieStore (Version: 1.0.057)
HP MovieStore (Version: 2.0)
HP On Screen Display (Version: 1.2.2)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Power Manager (Version: 1.4.4)
HP Quick Launch (Version: 2.6.3)
HP QuickWeb (Version: 3.1.0.9742)
HP Setup (Version: 8.7.4751.3798)
HP Setup Manager (Version: 1.1.13476.3753)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Software Framework (Version: 4.1.13.1)
HP Solution Center 14.0 (Version: 14.0)
HP Support Assistant (Version: 7.0.39.15)
HP Update (Version: 5.002.002.002)
HPAppStudio (Version: 140.0.95.000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
Insaniquarium Deluxe 1.1
iTunes (Version: 10.7.0.21)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 43 (Version: 6.0.430)
JavaFX 2.1.1 (Version: 2.1.1)
Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
Kaspersky Anti-Virus 2013 (Version: 13.0.1.4190)
Kodak AIO Printer (Version: 7.5.0.0)
KODAK AiO Software (Version: 7.5.9.60)
League of Legends (Version: 1.3)
LEGO Digital Designer
Mah Jong Medley (Version: 2.2.0.95)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MapleStory
MarketResearch (Version: 140.0.212.000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Plus! (Version: 1.5.0.122)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Mouse and Keyboard Center (Version: 2.0.162.0)
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5131.5000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (Version: 8.0.52572)
Microsoft Visual Studio 2005 Tools for Applications - ENU
Microsoft Visual Studio 2005 Tools for Applications - ENU (Version: 8.0.50727.146)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
mIRC (Version: 7.22)
Monopoly
Motorola Device Manager (Version: 2.3.4)
Motorola Device Software Update (Version: 12.10.3002)
Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0)
Mozilla Firefox 13.0 (x86 en-US) (Version: 13.0)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Maintenance Service (Version: 19.0.2)
Mozilla Thunderbird 17.0.3 (x86 en-US) (Version: 17.0.3)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
My Life Story: Adventures (Version: 32.0.0.0)
MyFreeCams 2.2011.11.04
Mystery of Mortlake Mansion (Version: 2.2.0.97)
Namco All-Stars: PAC-MAN (Version: 2.2.0.95)
Network Play System (Patching)
Network64 (Version: 140.0.215.000)
Nexon Game Manager
Oblivion (Version: 1.00.0000)
ocr (Version: 6.2.3.50)
Pando Media Booster (Version: 2.6.0.8)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.95)
PopCap Browser Plugin
Portal
PreReq (Version: 6.2.4.0)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
Puzzle Pirates
QuickTransfer (Version: 140.0.98.000)
Realtek Ethernet Controller Driver (Version: 7.67.1226.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6287)
Realtek PCIE Card Reader (Version: 6.1.7600.77)
REALTEK Wireless LAN Driver (Version: 1.00.0187)
Recovery Manager (Version: 2.0.0)
Red Light Center (Version: 1.9.4421)
Risk
RoxioNow Player (Version: 1.9.5.103)
RuneScape Launcher 1.2.2 (Version: 1.2.2)
Scan (Version: 140.0.80.000)
SecondLifeViewer (remove only)
Secunia PSI (3.0.0.6005) (Version: 3.0.0.6005)
Shop for HP Supplies (Version: 14.0)
Sid Meier's Civilization III: Complete
SIW version 2011.10.29 (Version: 2011.10.29)
Skype Click to Call (Version: 6.6.11664)
Skype™ 6.1 (Version: 6.1.129)
Slingo Supreme (Version: 2.2.0.97)
SmartWebPrinting (Version: 140.0.186.000)
SolidWorks 2011 x64 Edition SP0 (Version: 19.0.0.5019)
SolidWorks 2011 x64 Edition SP0 (Version: 19.100.5019)
SolidWorks eDrawings 2011 x64 Edition SP0 (Version: 11.0.720)
SolidWorks Explorer 2011 SP0 x64 Edition (Version: 19.00.5019)
SolutionCenter (Version: 140.0.214.000)
Sophos Virus Removal Tool (Version: 2.3)
SPORE™ (Version: 1.00.0000)
Spotify (Version: 0.8.5.1333.g822e0de8)
SR4CharGen 0.4.0.0 (Version: 0.4.0.0)
Star Wars: The Old Republic (Version: 1.00)
Status (Version: 140.0.256.000)
Steam (Version: 1.0.0.0)
swMSM (Version: 12.0.0.1)
Synaptics TouchPad Driver (Version: 15.3.29.0)
Team Fortress 2
The Game of Life
The Lord of the Rings Online™
The Sims 2 Family Fun Stuff
The Sims 2 Open For Business
The Sims Makin' Magic
The Sims™ 2 Deluxe
The Sims™ 2 Mansion and Garden Stuff
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Trillian
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Update Installer for WildTangent Games App
Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Virtual Villagers 5 - New Believers (Version: 2.2.0.97)
Web Games Player Plugin
WebReg (Version: 140.0.212.017)
WildTangent Games App (HP Games) (Version: 4.0.5.36)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 4.01 (64-bit) (Version: 4.01.0)
WinRAR 4.11 (32-bit) (Version: 4.11.0)
World of Warcraft (Version: 5.2.0.16669)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
Zuma Deluxe (Version: 2.2.0.95)

========================= Devices: ================================

Name: Officejet 4620 series
Description: Officejet 4620 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 2666.91 MB
Available physical RAM: 1371.95 MB
Total Pagefile: 5332 MB
Available Pagefile: 3162.37 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.52 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:279.36 GB) (Free:65.18 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:14.56 GB) (Free:1.62 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:1.08 GB) FAT32

========================= Users: ========================================

User accounts for \\ACCESS-DENIED

Administrator            ASPNET                   Emergency                
Guest                    Kayleigh                 


**** End of log ****
 



#9 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 09:58 PM

Farbar Service Scanner Version: 03-03-2013
Ran by Kayleigh (administrator) on 11-03-2013 at 22:01:56
Running from "C:\Users\Kayleigh\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

# AdwCleaner v2.114 - Logfile created 03/11/2013 at 22:06:17
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Kayleigh - ACCESS-DENIED
# Boot Mode : Normal
# Running from : C:\Users\Kayleigh\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Users\Kayleigh\AppData\Local\Temp\Zynga
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.xpt
Folder Deleted : C:\Program Files (x86)\adawaretb
Folder Deleted : C:\Program Files (x86)\Babylon
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\Program Files\Babylon
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon
Folder Deleted : C:\Users\Emergency\AppData\Roaming\Mozilla\Firefox\Profiles\wcdx2vcb.default\adawaretb
Folder Deleted : C:\Users\Kayleigh\AppData\Local\Babylon
Folder Deleted : C:\Users\Kayleigh\AppData\Local\Temp\Babylon
Folder Deleted : C:\Users\Kayleigh\AppData\LocalLow\adawaretb
Folder Deleted : C:\Users\Kayleigh\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Kayleigh\AppData\Roaming\Mozilla\Firefox\Profiles\5har22j6.default\adawaretb
Folder Deleted : C:\Users\Kayleigh\AppData\Roaming\Mozilla\Firefox\Profiles\5har22j6.default\extensions\DTToolbar@toolbarnet.com

***** [Registry] *****

Key Deleted : HKCU\Software\Babylon
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C0CEA572-2978-4DFC-A672-8100FF0E276A}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonTC.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\BabyDict
Key Deleted : HKLM\SOFTWARE\Classes\BabyGloss
Key Deleted : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Key Deleted : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Key Deleted : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Key Deleted : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Key Deleted : HKLM\SOFTWARE\Classes\BabylonTC.GingerApplication
Key Deleted : HKLM\SOFTWARE\Classes\BabylonTC.GingerApplication.1
Key Deleted : HKLM\SOFTWARE\Classes\BabyOptFile
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{0C2E529C-A82C-4AC6-8807-0B51F7AD7BB2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF390AA1-1E65-4825-B8E7-BE6B47BD56B8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{95734BDE-B702-45B9-86E5-27676729F904}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D0482C8E-BAEA-4943-911A-B661060F56A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95734BDE-B702-45B9-86E5-27676729F904}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D0482C8E-BAEA-4943-911A-B661060F56A7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0.2 (en-US)

File : C:\Users\Kayleigh\AppData\Roaming\Mozilla\Firefox\Profiles\5har22j6.default\prefs.js

C:\Users\Kayleigh\AppData\Roaming\Mozilla\Firefox\Profiles\5har22j6.default\user.js ... Deleted !

[OK] File is clean.

File : C:\Users\Emergency\AppData\Roaming\Mozilla\Firefox\Profiles\wcdx2vcb.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [331 octets] - [11/03/2013 22:03:35]
AdwCleaner[S2].txt - [10691 octets] - [11/03/2013 22:06:17]

########## EOF - C:\AdwCleaner[S2].txt - [10752 octets] ##########
 



#10 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 10:00 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.7.0 (03.11.2013:1)
OS: Windows 7 Home Premium x64
Ran by Kayleigh on Mon 03/11/2013 at 22:21:52.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{ef99bd32-c1fb-11d2-892f-0090271d4f88}



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_classes_root\yt.ytnavassistplugin
Successfully deleted: [Registry Key] hkey_classes_root\yt.ytnavassistplugin.1
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\office\powerpoint\addins\babylonofficeaddin.officeaddin
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\office\word\addins\babylonofficeaddin.officeaddin
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{ef99bd32-c1fb-11d2-892f-0090271d4f88}
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{b7fca997-d0fb-4fe0-8afd-255e89cf9671}



~~~ Files

Successfully deleted: [File] "C:\Program Files (x86)\adobe\reader 10.0\reader\plug_ins\babylon\babylonrpi.api"
Successfully deleted: [File] "C:\Users\Kayleigh\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\babylon.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\Users\Kayleigh\appdata\local\adawarebp"
Successfully deleted: [Folder] "C:\Program Files (x86)\coupons"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Kayleigh\AppData\Roaming\mozilla\firefox\profiles\5har22j6.default\extensions\jid1-yZwVFzbsyfMrqQ@jetpack
Successfully deleted the following from C:\Users\Kayleigh\AppData\Roaming\mozilla\firefox\profiles\5har22j6.default\prefs.js

user_pref("extensions.jid1-yZwVFzbsyfMrqQ@jetpack.install-event-fired", true);
Emptied folder: C:\Users\Kayleigh\AppData\Roaming\mozilla\firefox\profiles\5har22j6.default\minidumps [356 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 03/11/2013 at 22:47:37.93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/11/2013 10:19:06 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Users\Kayleigh\AppData\Local\Apps\2.0\1H161O16.TOY\HJMQ2P20.AOT\curs..tion_9e9e83ddf3ed3ead_0005.0001_f98d05d4713e76ec\CurseClient.exe (PID: 2604) [UP-HEUR]
 * C:\Users\Kayleigh\Downloads\JRT.exe (PID: 2740) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\Kayleigh\Desktop\rkill\rkill-03-11-2013-10-20-00.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
  * HKLM\Software\Classes\.exe\shell found and deleted!


Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

 * FontCache => %SystemRoot%\system32\svchost.exe -k LocalService [Incorrect ImagePath]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 03/11/2013 10:20:28 PM
Execution time: 0 hours(s), 1 minute(s), and 21 seconds(s)
 

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"    ""    ""    ""
+ "rdpclip"    ""    ""    "File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "AdobeAAMUpdater-1.0"    "Adobe Updater Startup Utility"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "Eraser"    "Eraser"    "The Eraser Project"    "c:\program files\eraser\eraser.exe"
+ "IntelliPoint"    "IPoint.exe"    "Microsoft Corporation"    "c:\program files\microsoft mouse and keyboard center\ipoint.exe"
+ "IntelliType Pro"    "IType.exe"    "Microsoft Corporation"    "c:\program files\microsoft mouse and keyboard center\itype.exe"
+ "RTHDVCPL"    "Realtek HD Audio Manager"    "Realtek Semiconductor"    "c:\program files\realtek\audio\hda\rtkngui64.exe"
+ "SynTPEnh"    "Synaptics TouchPad Enhancements"    "Synaptics Incorporated"    "c:\program files\synaptics\syntp\syntpenh.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Ad-Aware Antivirus"    "Ad-Aware Antivirus Launcher"    "Lavasoft Limited"    "c:\program files (x86)\ad-aware antivirus\adawarelauncher.exe"
+ "Ad-Aware Browsing Protection"    "Ad-Aware Browsing Protection and Anti-Phishing"    "Lavasoft"    "c:\programdata\ad-aware browsing protection\adawarebp.exe"
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher"    "Adobe Acrobat SpeedLauncher"    "Adobe Systems Incorporated"    "c:\program files (x86)\adobe\reader 10.0\reader\reader_sl.exe"
+ "AdobeCS5.5ServiceManager"    "Adobe CS5.5 Service Manager"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\cs5.5servicemanager\cs5.5servicemanager.exe"
+ "APSDaemon"    "Apple Push"    "Apple Inc."    "c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "AVP"    "Kaspersky Anti-Virus"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\avp.exe"
+ "Conime"    ""    ""    "File not found: C:\Windows\system32\conime.exe"
+ "HP Software Update"    "hpwuSchd Application"    "Hewlett-Packard"    "c:\program files (x86)\hp\hp software update\hpwuschd2.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files (x86)\itunes\ituneshelper.exe"
+ "MessengerPlusForSkypeService"    "Service - Messenger Plus! for Skype"    "Yuna Software"    "c:\program files (x86)\yuna software\messenger plus! for skype\msgplusforskypeservice.exe"
+ "StartCCC"    "Catalyst® Control Center Launcher"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe"
"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "HP Digital Imaging Monitor.lnk"    "HP Digital Imaging Monitor"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe"
+ "Secunia PSI Tray.lnk"    "Secunia PSI Tray"    "Secunia"    "c:\program files (x86)\secunia\psi\psi_tray.exe"
+ "SolidWorks Background Downloader.lnk"    "sldBgDwldresu"    "Dassault Systèmes SolidWorks Corp."    "c:\program files (x86)\common files\solidworks installation manager\backgrounddownloading\sldbgdwld.exe"
"C:\Users\Kayleigh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup"    ""    ""    ""
+ "CurseClientStartup.ccip"    ""    ""    "c:\users\kayleigh\appdata\roaming\microsoft\windows\start menu\programs\startup\curseclientstartup.ccip"
+ "Dropbox.lnk"    "Dropbox"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropbox.exe"
+ "OneNote 2010 Screen Clipper and Launcher.lnk"    "Microsoft OneNote Quick Launcher"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onenotem.exe"
+ "OpenOffice.org 3.3.lnk"    ""    ""    "File not found: C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "DAEMON Tools Lite"    "DAEMON Tools Lite"    "DT Soft Ltd"    "c:\program files (x86)\daemon tools lite\dtlite.exe"
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\users\kayleigh\appdata\local\google\update\googleupdate.exe"
+ "msnmsgr"    "Windows Live Messenger"    "Microsoft Corporation"    "c:\program files (x86)\windows live\messenger\msnmsgr.exe"
+ "Skype"    "Skype "    "Skype Technologies S.A."    "c:\program files (x86)\skype\phone\skype.exe"
+ "Spotify Web Helper"    "SpotifyWebHelper"    "Spotify Ltd"    "c:\users\kayleigh\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "uTorrent"    "µTorrent"    "BitTorrent, Inc."    "c:\program files (x86)\utorrent\utorrent.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office14\msoxmlmf.dll"
+ "video/mp4"    "MIME Video Detector for IE"    "Advanced Micro Devices"    "c:\program files\amd\steadyvideo\videomimefilter.dll"
+ "video/x-flv"    "MIME Video Detector for IE"    "Advanced Micro Devices"    "c:\program files\amd\steadyvideo\videomimefilter.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "skype-ie-addon-data"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Eraser"    "Eraser Shell Extension"    "The Eraser Project"    "c:\program files\eraser\eraser.shell.dll"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "LavasoftShellExt"    ""    ""    "File not found: C:\Program Files (x86)\Lavasoft\Ad-Aware\ShellExt_64.dll"
+ "WinRAR"    ""    ""    "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32"    ""    ""    "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "AdAwareContextMenu64"    "Ad-Aware Antivirus Shell Extension x64"    "Lavasoft Limited"    "c:\program files (x86)\ad-aware antivirus\adawareshellextension64.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "AdAwareContextMenu"    "Ad-Aware Antivirus Shell Extension"    "Lavasoft Limited"    "c:\program files (x86)\ad-aware antivirus\adawareshellextension.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Eraser"    "Eraser Shell Extension"    "The Eraser Project"    "c:\program files\eraser\eraser.shell.dll"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "WinRAR"    ""    ""    "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32"    ""    ""    "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "Eraser"    "Eraser Shell Extension"    "The Eraser Project"    "c:\program files\eraser\eraser.shell.dll"
+ "WinRAR"    ""    ""    "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "WinRAR32"    ""    ""    "c:\program files (x86)\winrar\rarext.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "ACE"    "AMD Desktop Control Panel"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Eraser"    "Eraser Shell Extension"    "The Eraser Project"    "c:\program files\eraser\eraser.shell.dll"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "LavasoftShellExt"    ""    ""    "File not found: C:\Program Files (x86)\Lavasoft\Ad-Aware\ShellExt_64.dll"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR"    ""    ""    "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32"    ""    ""    "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "Eraser"    "Eraser Shell Extension"    "The Eraser Project"    "c:\program files\eraser\eraser.shell.dll"
+ "WinRAR"    ""    ""    "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "WinRAR32"    ""    ""    "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
+ "DropboxExt4"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext64.17.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext.17.dll"
+ "DropboxExt4"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\users\kayleigh\appdata\roaming\dropbox\bin\dropboxext.17.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Content Blocker Plugin"    "Content Blocker Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\urlredir.dll"
+ "Skype add-on for Internet Explorer"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "SteadyVideoBHO Class"    "This plugin allows the user to turn AMD SteadyVideo on or off when video is detected on the web."    "Advanced Micro Devices"    "c:\program files\amd\steadyvideo\steadyvideo.dll"
+ "URL Advisor Plugin"    "URL Advisor Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin"    "Virtual Keyboard Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Content Blocker Plugin"    "Content Blocker Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "HP Network Check Helper"    "HP Network Check IE Plug-in"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\hpnetworkcheckplugin.dll"
+ "HP Print Enhancer"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll"
+ "HP Smart BHO Class"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\oracle\javafx 2.1 runtime\bin\ssv.dll"
+ "Office Document Cache Handler"    "Microsoft Office Document Cache Handler"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\urlredir.dll"
+ "SingleInstance Class"    "Yahoo! Single Instance for Mail"    "Yahoo! Inc"    "c:\program files (x86)\yahoo!\companion\installs\cpn0\ytsingleinstance.dll"
+ "Skype Browser Helper"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "SteadyVideoBHO Class"    "This plugin allows the user to turn AMD SteadyVideo on or off when video is detected on the web."    "Advanced Micro Devices"    "c:\program files (x86)\amd\steadyvideo\steadyvideo.dll"
+ "URL Advisor Plugin"    "URL Advisor Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin"    "Virtual Keyboard Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files\microsoft office\office14\onbttnie.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "URLs check"    "URL Advisor Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard"    "Virtual Keyboard Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    "Microsoft Corporation"    "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Add to Evernote 4"    ""    ""    "File not found: C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204"
+ "HP Network Check"    "NCLauncherFromIE"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpnetworkcheck\nclauncherfromie.exe"
+ "OneNote Lin&ked Notes"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll"
+ "Se&nd to OneNote"    "Microsoft OneNote Internet Explorer Add-in"    "Microsoft Corporation"    "c:\program files (x86)\microsoft office\office14\onbttnie.dll"
+ "Show or hide HP Smart Web Printing"    "HP Smart Web Printing add-on for Internet Explorer"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll"
+ "Skype Click to Call"    "Skype Click to Call for Internet Explorer"    "Skype Technologies S.A."    "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URLs check"    "URL Advisor Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard"    "Virtual Keyboard Plugin"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
"Task Scheduler"    ""    ""    ""
+ "\Ad-Aware Antivirus Scheduled Scan"    "Ad-Aware Antivirus Launcher"    "Lavasoft Limited"    "c:\program files (x86)\ad-aware antivirus\adawarelauncher.exe"
+ "\Ad-Aware Scan (Daily Scan)"    ""    ""    "File not found: C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe"
+ "\Ad-Aware Scan (Full scan)"    ""    ""    "File not found: C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe"
+ "\Ad-Aware Update (Weekly)"    ""    ""    "File not found: C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe"
+ "\Adobe Flash Player Updater"    "Adobe® Flash® Player Update Service 11.6 r602"    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "\AdobeAAMUpdater-1.0-access-denied-Kayleigh"    "Adobe Updater Startup Utility"    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3345565368-738649587-3048816360-1001Core"    "Google Installer"    "Google Inc."    "c:\users\kayleigh\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-3345565368-738649587-3048816360-1001UA"    "Google Installer"    "Google Inc."    "c:\users\kayleigh\appdata\local\google\update\googleupdate.exe"
+ "\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start"    "HP Support Assistant"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\PC Health Analysis"    "HP Support Assistant"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp support framework\hpsf.exe"
+ "\Hewlett-Packard\HP Support Assistant\Update Check"    "HPSFUpdater"    "Hewlett-Packard Company"    "c:\programdata\hewlett-packard\hp support framework\resources\updater7\hpsfupdater.exe"
+ "\Hewlett-Packard\HP Support Assistant\WarrantyChecker"    "HPWarrantyChecker"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpwarrantycheck\hpwarrantychecker.exe"
+ "\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan"    "HPWarrantyChecker"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp support framework\resources\hpwarrantycheck\hpwarrantychecker.exe"
+ "\HPCeeScheduleForKayleigh"    "HP Ceement"    "Hewlett-Packard"    "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft_Hardware_Launch_ipoint_exe"    "IPoint.exe"    "Microsoft Corporation"    "c:\program files\microsoft mouse and keyboard center\ipoint.exe"
+ "\Microsoft_Hardware_Launch_itype_exe"    "IType.exe"    "Microsoft Corporation"    "c:\program files\microsoft mouse and keyboard center\itype.exe"
+ "\Microsoft_Hardware_Launch_mousekeyboardcenter_exe"    "Microsoft Mouse and Keyboard Center"    "Microsoft"    "c:\program files\microsoft mouse and keyboard center\mousekeyboardcenter.exe"
+ "\Motorola Device Manager Engine"    "Motorola Device Management Update"    ""    "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\Motorola Device Manager Update"    "Motorola Device Management Update"    ""    "c:\program files (x86)\motorola mobility\motorola device manager\motoroladevicemanagerupdate.exe"
+ "\SidebarExecute"    "Windows Desktop Gadgets"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sidebar.exe"
+ "\{D9E7C9DE-421C-4D32-933C-B9838CFFB473}"    ""    ""    "File not found: C:\Users\Kayleigh\Downloads\SetupLDD-PC-4_1_8.exe"
+ "\{EAFA03ED-EE69-4830-A80B-FF09805BC7CC}"    ""    ""    "File not found: C:\Users\Kayleigh\Downloads\SetupLDD-PC-4_1_8.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "Ad-Aware Service"    "Ad-Aware Service"    "Lavasoft Limited"    "c:\program files (x86)\ad-aware antivirus\adawareservice.exe"
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "AERTFilters"    "Andrea filters APO access service (64-bit)"    "Andrea Electronics Corporation"    "c:\program files\realtek\audio\hda\aertsr64.exe"
+ "AMD External Events Utility"    "AMD External Events Service Module"    "AMD"    "c:\windows\system32\atiesrxx.exe"
+ "AMD FUEL Service"    "Provides FUEL Functionality"    "Advanced Micro Devices, Inc."    "c:\program files\ati technologies\ati.ace\fuel\fuel.service.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "aspnet_state"    "Provides support for out-of-process session states for ASP.NET. If this service is stopped, out-of-process requests will not be processed. If this service is disabled, any services that explicitly depend on it will fail to start."    ""    "File not found: C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe"
+ "AVP"    "Provides computer protection against viruses, dangerous software, network attacks, internet fraud and spam."    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\avp.exe"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "CoordinatorServiceHost"    "SW Distributive TS Coordinator Service"    "Dassault Systèmes SolidWorks Corp."    "c:\program files\solidworks corp\solidworks\swscheduler\dtscoordinatorservice.exe"
+ "cvhsvc"    "Client Virtualization Handler Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\virtualization handler\cvhsvc.exe"
+ "FLEXnet Licensing Service"    "This service performs licensing functions on behalf of FLEXnet enabled products."    "Flexera Software, Inc."    "c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "FLEXnet Licensing Service 64"    "This service performs licensing functions on behalf of FLEXnet enabled products."    "Flexera Software, Inc."    "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice64.exe"
+ "GamesAppService"    "WT Games App Services"    "WildTangent, Inc."    "c:\program files (x86)\wildtangent games\app\gamesappservice.exe"
+ "HP Support Assistant Service"    "HP Support Assistant Service"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe"
+ "HPClientSvc"    "HP Client Services"    "Hewlett-Packard Company"    "c:\program files\hewlett-packard\hp client services\hpclientservices.exe"
+ "HPDrvMntSvc.exe"    "HP Quick Synchronization Service"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe"
+ "hpqcxs08"    "HP CUE Context Manager Objects"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll"
+ "hpqddsvc"    "This service detects and monitors CUE devices on the system."    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll"
+ "hpqwmiex"    "HP Software Framework WMI Service"    "Hewlett-Packard Company"    "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe"
+ "HPSLPSVC"    "Discovers and monitors the state and the configuration of the HP devices attached to your network. If the service is stopped, and your network devices change IP addresses, they might become unavailable"    "Hewlett-Packard Co."    "c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll"
+ "HPWMISVC"    "HP Quick Launch WMI Service"    "Hewlett-Packard Development Company, L.P."    "c:\program files (x86)\hewlett-packard\hp quick launch\hpwmisvc.exe"
+ "IconMan_R"    "Realtek Card Reader Icon Tool."    "Realsil Microelectronics Inc."    "c:\program files (x86)\realtek\realtek pcie card reader\riconman.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "Kodak AiO Network Discovery Service"    "Kodak mDNS Network Discovery Service"    "Eastman Kodak Company"    "c:\program files (x86)\kodak\aio\center\ekaiohostservice.exe"
+ "Kodak AiO Status Monitor Service"    "Kodak Status Monitor SDK Service"    "Eastman Kodak Company"    "c:\program files (x86)\kodak\aio\statusmonitor\ekprintersdk.exe"
+ "Motorola Device Manager"    "MotoHelper Service"    ""    "c:\program files (x86)\motorola mobility\motorola device manager\motohelperservice.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"
+ "MsgPlusService"    "Service - Messenger Plus! for Skype"    "Yuna Software"    "c:\program files (x86)\yuna software\messenger plus! for skype\msgplusforskypeservice.exe"
+ "Net Driver HPZ12"    "Dot4Net Module"    "Hewlett-Packard"    "c:\windows\system32\hpzinw12.dll"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "osppsvc"    "Office Software Protection Platform Service (unlocalized description)"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe"
+ "Pml Driver HPZ12"    "PmlDrv Module"    "Hewlett-Packard"    "c:\windows\system32\hpzipm12.dll"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"
+ "amd_sata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amd_sata.sys"
+ "amd_xata"    "Stor Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amd_xata.sys"
+ "amdiox64"    "AMD IO Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdiox64.sys"
+ "amdkmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap"    "AMD multi-vendor Miniport Driver"    "Advanced Micro Devices, Inc."    "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM43XX"    "Broadcom 802.11 Network Adapter wireless driver"    "Broadcom Corporation"    "c:\windows\system32\drivers\bcmwl664.sys"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"
+ "BTCFilterService"    "Motorola Unsafe Removal Filter Driver"    "Motorola Inc"    "c:\windows\system32\drivers\motfilt.sys"
+ "clwvd"    ""    ""    "File not found: system32\DRIVERS\clwvd.sys"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"
+ "dtsoftbus01"    "DAEMON Tools Virtual Bus Driver"    "DT Soft Ltd"    "c:\windows\system32\drivers\dtsoftbus01.sys"
+ "EagleX64"    ""    ""    "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "gfiark"    "gfiark64.sys"    "GFI Software"    "c:\windows\system32\drivers\gfiark.sys"
+ "gfibto"    "GFI Boot Time Operations Driver"    "GFI Software"    "c:\windows\system32\drivers\gfibto.sys"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rtkvhd64.sys"
+ "kl1"    "Kaspersky Unified Driver"    "Kaspersky Lab ZAO"    "c:\windows\system32\drivers\kl1.sys"
+ "KLIF"    "Kaspersky Lab Interceptor and Filter"    "Kaspersky Lab"    "c:\windows\system32\drivers\klif.sys"
+ "KLIM6"    "Kaspersky Anti-Virus NDIS 6 Filter"    "Kaspersky Lab ZAO"    "c:\windows\system32\drivers\klim6.sys"
+ "klkbdflt"    "Kaspersky Lab Keyboard Class Filter"    "Kaspersky Lab"    "c:\windows\system32\drivers\klkbdflt.sys"
+ "klmouflt"    "Kaspersky Lab Mouse Class Filter"    "Kaspersky Lab"    "c:\windows\system32\drivers\klmouflt.sys"
+ "kltdi"    "Network filtering component"    "Kaspersky Lab"    "c:\windows\system32\drivers\kltdi.sys"
+ "kneps"    "KNEPS Power"    "Kaspersky Lab"    "c:\windows\system32\drivers\kneps.sys"
+ "Lavasoft Kernexplorer"    ""    ""    "File not found: C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"
+ "motccgp"    "Motorola USB Composite Device Driver"    "Motorola Mobility Inc"    "c:\windows\system32\drivers\motccgp.sys"
+ "motccgpfl"    "Motorola USB Composite Filter Driver"    "Motorola Mobility Inc"    "c:\windows\system32\drivers\motccgpfl.sys"
+ "MotoSwitchService"    ""    "Motorola"    "c:\windows\system32\drivers\motswch.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"
+ "vidc.VP60"    "VP6 VIDEO FOR WINDOWS CODEC "    "On2.com"    "c:\windows\syswow64\vp6vfw.dll"
+ "vidc.VP61"    "VP6 VIDEO FOR WINDOWS CODEC "    "On2.com"    "c:\windows\syswow64\vp6vfw.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "AMD MJPEG Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Audio Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG File Writer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Multiplexer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI MPEG Video Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Rotation Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
+ "ATI Video Scaler Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "AMD MJPEG Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Audio Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG File Writer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Multiplexer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI MPEG Video Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Ticker"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax"
+ "ATI Video Rotation Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "ATI Video Scaler Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files (x86)\common files\ati technologies\multimedia\atimpenc.dll"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "DivX for Blizzard Decoder Filter"    ""    ""    "File not found: c:\program files (x86)\warcraft iii reign of chaos & the frozen throne\blizzard.ax"
+ "MMACE Deinterlace"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE ProcAmp"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MMACE SoftEmu"    ""    ""    "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll"
+ "MS PR Source Filter"    "PlayReady DirectShow Source Filter DLL"    "Microsoft Corporation"    "c:\program files (x86)\playready\prsource.dll"
+ "PlayReady DMO Wrapper"    "PlayReady DirectShow DMO Wrapper Filter DLL"    "Microsoft Corporation"    "c:\program files (x86)\playready\prdmowrapper.dll"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "VCam Renderer"    "VCam filters"    "e2eSoft"    "c:\program files (x86)\yuna software\messenger plus! for skype\vcamfilter.ax"
+ "VD Effects"    "Video effects"    "Kimahri Software"    "c:\program files (x86)\yuna software\messenger plus! for skype\vdeffects.ax"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute"    ""    ""    ""
+ "aswBoot.exe /A:"*" /L:"1033" /heur:80 /RA:ask /pup /archives /IA:0 /KBD:2 /wow /dir:"C:\Program Files\AVAST Software\Avast""    "avast! start-up scanner"    "AVAST Software"    "c:\windows\system32\aswboot.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64"    ""    ""    ""
+ "VMCI sockets DGRAM"    ""    ""    "File not found: C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll"
+ "VMCI sockets STREAM"    ""    ""    "File not found: C:\Program Files (x86)\VMware\VMware Workstation\x64\vsocklib.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corp."    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "Canon BJ Language Monitor MG3100 series"    "IJ Language Monitor"    "CANON INC."    "c:\windows\system32\cnmlmar.dll"
+ "Canon BJNP Port"    "Canon IJ Network 64bit comm Module"    "CANON INC."    "c:\windows\system32\cnmn6ppm.dll"
+ "EPSON NX420 Series 64MonitorBA"    "EPSON Bi-directional Monitor AMD64"    "SEIKO EPSON CORPORATION"    "c:\windows\system32\e_ilmgca.dll"
+ "hpf3l101.dll"    "LanguageMonitor"    "Hewlett-Packard Company"    "c:\windows\system32\hpf3l101.dll"
 



#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:14 AM

Posted 11 March 2013 - 10:17 PM

Current issues?



#12 rottsimba

rottsimba
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 11 March 2013 - 10:28 PM

None at the moment, but I just restarted my AV. I will let you guys know if anything new pops up in the next few days.

 

Thank you!



#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:14 AM

Posted 11 March 2013 - 10:51 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users