Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Google Chrome 'AdCash' Redirect [Solved]


  • This topic is locked This topic is locked

#1
SheilaP

SheilaP

    Member

  • Member
  • PipPip
  • 11 posts
I have unwanted tabs opening in Google Chrome ONLY (I also use IE 8.0). By researching the symptoms, I thought it was the Google redirect issue. I followed the instructins here to address that, but I still have the problem. It happens only sometimes when I select a link (any link) during browsing. In the history, the same website comes up and then pushes to another link (sometimes offensive). Here is the URL of the main website that seems to be causing the problem:
http://www.adcash.co...=h&data=&subid=
I've pasted the OTL log that I created below. Any help would be appreciated!!

OTL logfile created on: 12/28/2012 3:35:41 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Owner\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

5.99 Gb Total Physical Memory | 3.82 Gb Available Physical Memory | 63.81% Memory free
11.98 Gb Paging File | 9.57 Gb Available in Paging File | 79.88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 581.48 Gb Total Space | 509.93 Gb Free Space | 87.70% Space Free | Partition Type: NTFS
Drive D: | 106.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

Computer Name: OWNER-PC | User Name: Owner | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - File not found --
PRC - [2012/12/28 15:35:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
PRC - [2012/12/11 19:59:43 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe
PRC - [2012/12/10 10:15:07 | 000,356,376 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
PRC - [2012/12/08 08:33:57 | 000,307,856 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
PRC - [2012/12/04 19:15:17 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012/08/17 21:38:34 | 000,128,440 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klwtblfs.exe
PRC - [2012/06/06 20:33:42 | 001,564,872 | ---- | M] (Ask) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
PRC - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2009/12/02 15:47:00 | 000,656,624 | ---- | M] (SoftThinks) -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
PRC - [2009/06/09 09:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) -- C:\Program Files\Dell\DellDock\DockLogin.exe
PRC - [2009/06/04 23:00:00 | 000,843,776 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
PRC - [2009/05/21 07:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
PRC - [2009/05/21 07:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/05/05 04:39:18 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
PRC - [2009/04/07 08:13:10 | 000,673,616 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
PRC - [2008/12/09 08:32:06 | 000,055,120 | ---- | M] (NewSoft Technology Corporation) -- C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\PMSpeed.exe
PRC - [2008/01/08 12:02:16 | 001,213,728 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files (x86)\Common Files\supportsoft\bin\sprtlisten.exe
PRC - [2006/12/19 17:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
PRC - [2003/03/12 11:14:10 | 000,184,320 | ---- | M] (Sierra Online) -- C:\Program Files (x86)\Sierra\Planner\PLNRnote.exe


========== Modules (No Company Name) ==========

MOD - [2012/12/04 19:15:15 | 012,456,040 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
MOD - [2012/12/04 19:15:15 | 000,460,904 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppgooglenaclpluginchrome.dll
MOD - [2012/12/04 19:15:14 | 004,008,040 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll
MOD - [2012/12/04 19:14:29 | 000,587,880 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libglesv2.dll
MOD - [2012/12/04 19:14:28 | 000,124,520 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libegl.dll
MOD - [2012/12/04 19:14:21 | 000,157,304 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avutil-51.dll
MOD - [2012/12/04 19:14:20 | 000,275,576 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avformat-54.dll
MOD - [2012/12/04 19:14:19 | 002,168,952 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avcodec-54.dll
MOD - [2012/11/17 03:35:02 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
MOD - [2012/11/17 03:34:49 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
MOD - [2012/11/17 03:34:20 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
MOD - [2012/08/17 21:38:56 | 000,479,160 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dblite.dll
MOD - [2009/03/12 14:45:32 | 000,135,168 | ---- | M] () -- C:\Program Files (x86)\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll
MOD - [2008/11/21 12:58:42 | 000,057,344 | ---- | M] () -- C:\Program Files (x86)\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll


========== Services (SafeList) ==========

SRV:64bit: - [2009/07/13 19:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2009/06/09 09:11:14 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Running] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV:64bit: - [2009/03/31 16:01:34 | 000,092,160 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe -- (AERTFilters)
SRV - [2012/12/11 19:59:46 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/12/10 10:15:07 | 000,356,376 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe -- (AVP)
SRV - [2011/02/28 17:44:14 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/25 09:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/03/30 06:53:52 | 000,016,680 | ---- | M] (Citrix Online, a division of Citrix Systems, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe -- (GoToAssist)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/12/02 15:47:00 | 000,656,624 | ---- | M] (SoftThinks) [Auto | Running] -- C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe -- (SftService)
SRV - [2009/06/10 15:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/05/21 07:59:08 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter)
SRV - [2009/05/05 04:39:18 | 000,206,064 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe -- (sprtsvc_DellComms)
SRV - [2008/01/08 12:02:16 | 001,213,728 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files (x86)\Common Files\supportsoft\bin\sprtlisten.exe -- (sprtlisten)
SRV - [2008/01/08 12:02:12 | 000,394,608 | ---- | M] (SupportSoft, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\supportsoft\bin\ssrc.exe -- (SupportSoft RemoteAssist)
SRV - [2006/12/19 17:23:20 | 000,094,208 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe -- (EpsonBidirectionalService)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/10 10:32:27 | 000,613,720 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\Windows\SysNative\drivers\klif.sys -- (KLIF)
DRV:64bit: - [2012/12/10 10:32:27 | 000,054,104 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kltdi.sys -- (kltdi)
DRV:64bit: - [2012/10/25 17:23:06 | 000,029,528 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klmouflt.sys -- (klmouflt)
DRV:64bit: - [2012/10/25 17:23:06 | 000,029,016 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\klkbdflt.sys -- (klkbdflt)
DRV:64bit: - [2012/08/13 16:49:40 | 000,178,008 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\kneps.sys -- (kneps)
DRV:64bit: - [2012/08/02 15:09:34 | 000,028,504 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\klim6.sys -- (KLIM6)
DRV:64bit: - [2012/06/19 17:28:12 | 000,458,584 | ---- | M] (Kaspersky Lab ZAO) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\kl1.sys -- (kl1)
DRV:64bit: - [2012/03/01 00:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/11 00:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 00:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010/11/20 07:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/20 05:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/04/29 12:40:54 | 000,028,528 | ---- | M] (MediaMall Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\povrtdev.sys -- (msvad_simple)
DRV:64bit: - [2010/03/04 12:43:00 | 000,346,144 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/09/23 18:23:02 | 006,180,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/07/13 19:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 19:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 19:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/07/09 02:00:00 | 000,055,280 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/06/10 14:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 14:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 14:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 14:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2007/04/09 09:09:46 | 000,012,288 | ---- | M] (Waytech Development, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\UsbFltr.sys -- (UsbFltr)
DRV:64bit: - [2006/11/01 10:51:00 | 000,151,656 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WimFltr.sys -- (WimFltr)
DRV - [2009/07/13 19:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0F848473-5E9E-4EAC-A813-B76DECB44E29}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{2708BF13-9C73-44C6-816C-1E055E60A45E}: "URL" = http://www.bing.com/...rc=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2976719

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
IE - HKCU\..\URLSearchHook: {f92a9fe4-2850-4198-b9d5-279880e49b16} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {36377DD7-B3EB-42f5-986F-680BAF59BA9D}
IE - HKCU\..\SearchScopes\{36377DD7-B3EB-42f5-986F-680BAF59BA9D}: "URL" = http://start.msn.ipl...q={searchTerms}
IE - HKCU\..\SearchScopes\{3FF0F851-2817-499A-A7B9-E67790C849E6}: "URL" = http://websearch.ask...E9-BA1D7766AFFF
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT2976719
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Windows\SysWOW64\npdeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@oberon-media.com/ONCAdapter: C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll (Oberon-Media )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\[email protected] [2012/12/20 15:31:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\[email protected] [2012/12/20 15:31:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\FFExt\[email protected] [2012/12/20 15:31:19 | 000,000,000 | ---D | M]


========== Chrome ==========

CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Oberon com adapter (Enabled) = C:\Program Files (x86)\Common Files\Oberon Media\NCAdapter\1.0.0.7\npapicomadapter.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Java™ Platform SE 7 U6 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.60.24 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - Extension: Bejeweled = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\adpkifcfcacgmnggcbpbjbkdijciiigm\2_0\
CHR - Extension: Angry Birds = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj\1.5.0.7_0\
CHR - Extension: Google Drive = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Facebook = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm\1.0.3_0\
CHR - Extension: Angry Birds Space = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbnapgaomnjbnbaimlgmolmcbmajaino\1.8_0\
CHR - Extension: Tetris = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfpkpcnigdggonhlcmbekffepnaflofk\13.2334.9140_0\
CHR - Extension: Google Search = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: Kaspersky URL Advisor = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0\
CHR - Extension: Bloxorz = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dfkaiemjhgblkkcanmhciiopcehlhnhi\2.0.0_0\
CHR - Extension: Word Search = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnjkggjhcbohgnikmegjkodmakmimlkj\1.0.0.1_0\
CHR - Extension: Word Search = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnjkggjhcbohgnikmegjkodmakmimlkj\1.0.0.1_0\~
CHR - Extension: Mahjongg = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\eegpopcingfghbompjfejakfeaolmbop\1.0.0.2_0\
CHR - Extension: Solitaire Games = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\eljmkmbmhmgmpmmbkagbobpmpocacdbo\1.0.0.3_0\
CHR - Extension: Pandora = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl\1.0_0\
CHR - Extension: Cut the Rope = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkddaofiamhgfjmaccfcfpfolpgbeomj\14_0\
CHR - Extension: Content Blocker = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0\
CHR - Extension: Angry Birds Seasons = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkecdmjkomgnadjomghnjjccpdlinajl\1.0_0\
CHR - Extension: Cloud Reader = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\icdipabjmbhpdkjaihfjoikhjjeneebd\1.4.0_0\
CHR - Extension: Virtual Keyboard = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4190_0\
CHR - Extension: Grepolis = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkgkognjknhcgbgbeijjondlikfkgnog\2.11.13_0\
CHR - Extension: Super Stacker 2 = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\klemmckdcnieolllgjgbniaeehggmano\3.0_0\
CHR - Extension: ButtonBeats Piano Player = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkmkonkgohgomnnkaclbiammkcjenfdi\2.0_0\
CHR - Extension: The Fancy Pants Adventure: World 2 = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\loamdenijebhollnjgehcfbnpeelfhlk\14_0\
CHR - Extension: Classic Pacman HD = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbbbkohndjmmhelibjnafhljbcjpgmod\1.0_0\
CHR - Extension: Plants vs Zombies = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmcegpfdgcoclcdfkjahiimlikdpnina\1.0.5_0\
CHR - Extension: FireBoy and WaterGirl 3 = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdelimhppimnnbejijenaejibnlcpgfj\1.0.1_0\
CHR - Extension: Gmail = C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2012/12/28 14:45:47 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2:64bit: - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg64.dll (Google Inc.)
O2:64bit: - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O2 - BHO: (Content Blocker Plugin) - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Virtual Keyboard Plugin) - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll (Google Inc.)
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (URL Advisor Plugin) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O3:64bit: - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe (NewSoft Technology Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] C:\Program Files (x86)\Ask.com\Updater\Updater.exe (Ask)
O4 - HKLM..\Run: [AVP] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe (Kaspersky Lab ZAO)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [EEventManager] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [FUFAXSTM] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe (SEIKO EPSON CORPORATION)
O4 - HKLM..\Run: [QwestTouchPointAgent] C:\Program Files (x86)\Qwest\Desktop\QwestTouchPointAgent.exe (Qwest Communications)
O4 - HKCU..\Run: [PMSpeed] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\PMSpeed.exe (NewSoft Technology Corporation)
O4 - HKCU..\Run: [WorkForce 610(Network)] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIFJA.EXE /FU "C:\Windows\TEMP\E_S78DD.tmp" /EF "HKCU" File not found
O4 - Startup: C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 28
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O9:64bit: - Extra Button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9:64bit: - Extra Button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O9 - Extra Button: Virtual Keyboard - {0C4CC089-D306-440D-9772-464E226F6539} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
O9 - Extra Button: URLs check - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.7.0_09)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.9.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.0.1 205.171.3.25
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{324D0243-E68B-4258-B939-F914EF5BE5A0}: DhcpNameServer = 192.168.1.1 192.168.0.1 205.171.3.25
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O20 - AppInit_DLLs: (C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd.dll) - File not found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\GoToAssist: DllName - (C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll) - File not found
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2003/09/09 10:39:43 | 000,000,028 | R--- | M] () - D:\autorun.inf -- [ CDFS ]
O33 - MountPoints2\{d3946fc9-3c0a-11df-9007-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{d3946fc9-3c0a-11df-9007-806e6f6e6963}\Shell\AutoRun\command - "" = D:\launch.exe -- [2004/07/14 09:28:33 | 000,360,448 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/12/28 15:34:57 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
[2012/12/28 15:28:45 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\tdsskiller
[2012/12/28 15:01:05 | 000,000,000 | ---D | C] -- C:\Users\Owner\Desktop\GooredFix Backups
[2012/12/28 15:00:29 | 000,071,398 | ---- | C] (jpshortstuff) -- C:\Users\Owner\Desktop\GooredFix.exe
[2012/12/28 14:45:46 | 000,000,000 | ---D | C] -- C:\_OTM
[2012/12/28 14:44:39 | 000,522,240 | ---- | C] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTM.exe
[2012/12/27 22:40:19 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{AD7E241F-4BEA-4041-805F-52070B40638C}
[2012/12/27 10:39:39 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{FE311ACC-DBE3-4357-A0FA-0D36A3BB9032}
[2012/12/23 10:35:06 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{7C009FD7-BF74-462E-8FF4-66A49F253379}
[2012/12/21 19:12:07 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{BD26D307-C261-4415-A686-433DB0F72FEF}
[2012/12/12 04:36:01 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{2792E714-B1DC-4F43-A949-93207DAB24AC}
[2012/12/10 14:29:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/12/10 10:11:51 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{359F21A6-462D-416B-90C6-C5983DEEB44A}
[2012/12/10 10:09:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus 2013
[2012/12/10 10:08:41 | 000,064,856 | ---- | C] (Kaspersky Lab) -- C:\Windows\SysNative\klfphc.dll
[2012/12/10 10:08:11 | 000,000,000 | ---D | C] -- C:\Windows\ELAMBKUP
[2012/12/08 08:35:30 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Roaming\Google
[2012/12/08 08:34:08 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012/12/08 08:33:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Google
[2012/12/08 08:29:33 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{82DF6F0B-E962-4C27-83EE-25EE3DAD1D1B}
[2012/12/07 09:35:14 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{885A24B9-3C12-4031-836D-DF21EEE807FF}
[2012/12/05 16:10:16 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{CE8F5D92-C6E2-4429-BD85-A6E1B24B6209}
[2012/12/01 23:49:17 | 000,000,000 | ---D | C] -- C:\Users\Owner\AppData\Local\{DDE148B5-79B4-4544-BCCF-8EFABA22CE7E}

========== Files - Modified Within 30 Days ==========

[2012/12/28 15:35:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTL.exe
[2012/12/28 15:28:03 | 002,195,061 | ---- | M] () -- C:\Users\Owner\Desktop\tdsskiller.zip
[2012/12/28 15:18:00 | 000,000,896 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/12/28 15:00:30 | 000,071,398 | ---- | M] (jpshortstuff) -- C:\Users\Owner\Desktop\GooredFix.exe
[2012/12/28 15:00:11 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/12/28 15:00:11 | 000,014,240 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/12/28 14:59:56 | 000,726,444 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012/12/28 14:59:56 | 000,624,162 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012/12/28 14:59:56 | 000,106,538 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012/12/28 14:59:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2012/12/28 14:53:12 | 000,000,892 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/12/28 14:52:56 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/12/28 14:52:51 | 528,355,327 | -HS- | M] () -- C:\hiberfil.sys
[2012/12/28 14:45:47 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2012/12/28 14:44:43 | 000,522,240 | ---- | M] (OldTimer Tools) -- C:\Users\Owner\Desktop\OTM.exe
[2012/12/21 11:21:45 | 000,384,568 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012/12/16 20:08:11 | 000,004,628 | ---- | M] () -- C:\Users\Owner\AppData\Roaming\wklnhst.dat
[2012/12/10 14:29:43 | 000,002,295 | ---- | M] () -- C:\Users\Owner\Desktop\Google Chrome.lnk
[2012/12/10 10:32:27 | 000,613,720 | ---- | M] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\klif.sys
[2012/12/10 10:32:27 | 000,054,104 | ---- | M] (Kaspersky Lab) -- C:\Windows\SysNative\drivers\kltdi.sys
[2012/12/10 10:08:42 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk
[2012/12/04 07:09:26 | 000,010,240 | ---- | M] () -- C:\Users\Owner\Documents\NaelElsewehy.wps

========== Files Created - No Company Name ==========

[2012/12/28 15:27:52 | 002,195,061 | ---- | C] () -- C:\Users\Owner\Desktop\tdsskiller.zip
[2012/12/10 14:29:42 | 000,002,295 | ---- | C] () -- C:\Users\Owner\Desktop\Google Chrome.lnk
[2012/12/10 10:09:44 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Kaspersky Anti-Virus 2013.lnk
[2011/11/21 19:12:09 | 000,002,649 | ---- | C] () -- C:\Users\Owner\Microsoft Works Word Processor.lnk
[2011/06/24 08:16:22 | 000,000,064 | ---- | C] () -- C:\Windows\GPlrLanc.dat
[2011/05/14 13:20:58 | 000,000,000 | ---- | C] () -- C:\Windows\PowerReg.dat
[2011/05/14 13:20:07 | 000,000,656 | ---- | C] () -- C:\Windows\hegames.ini
[2010/05/23 20:43:04 | 000,004,628 | ---- | C] () -- C:\Users\Owner\AppData\Roaming\wklnhst.dat

========== ZeroAccess Check ==========

[2009/07/13 22:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2012/06/08 23:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 22:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 19:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 06:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 19:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2012/12/28 14:55:19 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\.oit
[2011/02/10 19:45:16 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Epson
[2011/06/24 09:31:10 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\iWin
[2010/05/31 20:09:15 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Leadertech
[2011/06/24 09:29:49 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Oberon Media
[2010/12/13 21:54:01 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\PCDr
[2010/05/23 20:43:05 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Template
[2010/11/01 17:40:34 | 000,000,000 | ---D | M] -- C:\Users\Owner\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\ProgramData\TEMP:81C88EA7

< End of report >
  • 0

Advertisements


#2
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
  • 0

#3
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
I ran the 3 different programs successfully. Once you check the logs, I can try running Google Chrome again. I am currenlty using IE 8.0 for this response:

Security Check:
Results of screen317's Security Check version 0.99.56
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Kaspersky Anti-Virus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Java™ 6 Update 37
Java 7 Update 9
Adobe Reader 9 Adobe Reader out of Date!
Google Chrome 23.0.1271.95
Google Chrome 23.0.1271.97
````````Process Check: objlist.exe by Laurent````````
Kaspersky Lab Kaspersky Anti-Virus 2013 avp.exe
Kaspersky Lab Kaspersky Anti-Virus 2013 klwtblfs.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````


-AdwCleaner-

# AdwCleaner v2.103 - Logfile created 12/28/2012 at 17:28:13
# Updated 25/12/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Owner - OWNER-PC
# Boot Mode : Normal
# Running from : C:\Users\Owner\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Users\Owner\AppData\Local\Conduit
Folder Deleted : C:\Users\Owner\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Owner\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Owner\AppData\Roaming\iWin
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2976719
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\GamesBarSetup
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

[OK] Registry is clean.

-\\ Google Chrome v23.0.1271.97

File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [4542 octets] - [28/12/2012 17:28:13]

########## EOF - C:\AdwCleaner[S1].txt - [4602 octets] ##########


-RogueKiller-
RogueKiller V8.4.1 [Dec 28 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo...13-roguekiller/
Website : http://tigzy.geeksto...roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Owner [Admin rights]
Mode : Remove -- Date : 12/28/2012 17:37:30

¤¤¤ Bad processes : 1 ¤¤¤
[SUSP PATH] QwestTouchPointAgent.exe -- C:\Program Files (x86)\Qwest\Desktop\QwestTouchPointAgent.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 5 ¤¤¤
[RUN][SUSP PATH] HKLM\[...]\Wow6432Node\Run : QwestTouchPointAgent ("C:\Program Files (x86)\Qwest\Desktop\QwestTouchPointAgent.exe" /autostart) -> DELETED
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowSearch (0) -> REPLACED (1)
[HJ SMENU] HKCU\[...]\Advanced : Start_ShowSetProgramAccessAndDefaults (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts

˙ž1

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: WDC WD6400AAKS-75A7B2 ATA Device +++++
--- User ---
[MBR] 5eea1d8ccfb939eb16cc4ad62d31fb4a
[BSP] aeb3e64950a6ce5897c70e1d46501dea : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 81920 | Size: 15000 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 30801920 | Size: 595439 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_12282012_02d1737.txt >>
RKreport[1]_S_12282012_02d1735.txt ; RKreport[2]_D_12282012_02d1737.txt
  • 0

#4
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

#5
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
The ComboFix program ran fine(see log below) It never asked me to reboot at all. Unfortunately, I launched Google Chrome and started doing some searching in Amazon and am unwanted window popped up again. I forgot to tell you in the first post that this also is happening on our laptop.


ComboFix 12-12-29.02 - Owner 12/29/2012 9:41.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.6133.4544 [GMT -6:00]
Running from: c:\users\Owner\Desktop\ComboFix.exe
AV: Kaspersky Anti-Virus *Disabled/Updated* {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
SP: Kaspersky Anti-Virus *Disabled/Updated* {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\XSxS
.
.
((((((((((((((((((((((((( Files Created from 2012-11-28 to 2012-12-29 )))))))))))))))))))))))))))))))
.
.
2012-12-29 15:52 . 2012-12-29 15:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-12-29 15:30 . 2012-12-29 15:30 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\offreg.dll
2012-12-28 20:45 . 2012-12-28 20:45 -------- d-----w- C:\_OTM
2012-12-28 14:54 . 2012-11-08 17:24 9125352 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpengine.dll
2012-12-21 17:18 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-21 17:18 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-21 17:18 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-21 17:18 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-11 22:50 . 2012-11-12 14:20 9055744 ----a-w- c:\windows\system32\mshtml.dll
2012-12-10 16:08 . 2012-07-11 23:09 64856 ----a-w- c:\windows\system32\klfphc.dll
2012-12-10 16:08 . 2012-12-10 16:08 -------- d-----w- c:\windows\ELAMBKUP
2012-12-08 14:34 . 2012-12-08 14:34 -------- d-----w- c:\program files\Google
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-23 19:47 . 2011-01-02 23:29 2876528 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-12-23 19:47 . 2011-01-02 23:28 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-12-23 18:44 . 2011-01-02 23:30 737072 ----a-w- c:\programdata\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-12-23 18:42 . 2011-01-02 23:28 539984 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-12-12 09:01 . 2010-05-22 18:09 67413224 ----a-w- c:\windows\system32\MRT.exe
2012-12-12 01:59 . 2012-05-01 01:44 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-12 01:59 . 2011-06-18 15:24 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-12-10 16:32 . 2012-10-25 23:23 613720 ----a-w- c:\windows\system32\drivers\klif.sys
2012-12-10 16:32 . 2012-06-08 17:38 54104 ----a-w- c:\windows\system32\drivers\kltdi.sys
2012-10-25 23:23 . 2012-10-25 23:23 29528 ----a-w- c:\windows\system32\drivers\klmouflt.sys
2012-10-25 23:23 . 2012-10-25 23:23 29016 ----a-w- c:\windows\system32\drivers\klkbdflt.sys
2012-10-16 08:38 . 2012-11-27 21:25 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38 . 2012-11-27 21:25 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39 . 2012-11-27 21:25 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
2012-10-09 18:17 . 2012-11-16 20:59 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll
2012-10-09 18:17 . 2012-11-16 20:59 226816 ----a-w- c:\windows\system32\dhcpcore6.dll
2012-10-09 17:40 . 2012-11-16 20:59 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll
2012-10-09 17:40 . 2012-11-16 20:59 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll
2012-10-04 16:40 . 2012-12-11 22:51 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-10-03 17:56 . 2012-11-16 20:59 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-10-03 17:44 . 2012-11-16 20:59 70656 ----a-w- c:\windows\system32\nlaapi.dll
2012-10-03 17:44 . 2012-11-16 20:59 303104 ----a-w- c:\windows\system32\nlasvc.dll
2012-10-03 17:44 . 2012-11-16 20:59 246272 ----a-w- c:\windows\system32\netcorehc.dll
2012-10-03 17:44 . 2012-11-16 20:59 18944 ----a-w- c:\windows\system32\netevent.dll
2012-10-03 17:44 . 2012-11-16 20:59 216576 ----a-w- c:\windows\system32\ncsi.dll
2012-10-03 17:42 . 2012-11-16 20:59 569344 ----a-w- c:\windows\system32\iphlpsvc.dll
2012-10-03 16:42 . 2012-11-16 20:59 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll
2012-10-03 16:42 . 2012-11-16 20:59 18944 ----a-w- c:\windows\SysWow64\netevent.dll
2012-10-03 16:42 . 2012-11-16 20:59 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2012-10-03 16:07 . 2012-11-16 20:59 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PMSpeed"="c:\program files (x86)\NewSoft\Presto! PageManager 8 for EP\PMSpeed.EXE" [2008-12-09 55120]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"dellsupportcenter"="c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe" [2009-05-21 206064]
"EEventManager"="c:\progra~2\EPSONS~1\EVENTM~1\EEventManager.exe" [2009-04-07 673616]
"FUFAXSTM"="c:\program files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe" [2009-06-05 843776]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"AVP"="c:\program files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe" [2012-12-10 356376]
.
c:\users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-9-21 1316192]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Event Planner Reminders.lnk - c:\program files (x86)\Sierra\Planner\PLNRnote.exe [2003-3-12 184320]
.
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-9-21 1316192]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellComms]
2009-05-05 10:39 206064 ----a-w- c:\program files (x86)\Dell\DellComms\bin\sprtcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
2009-05-21 13:59 206064 ----a-w- c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Desktop Disc Tool]
2009-10-15 08:10 498160 ----a-w- c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Launcher]
2009-12-02 21:49 165104 ------w- c:\program files (x86)\Dell DataSafe Local Backup\Components\scheduler\Launcher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVDDXSrv]
2009-06-25 01:19 140520 ------w- c:\program files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\STToasterLauncher]
2009-12-02 21:48 120048 ------w- c:\program files (x86)\Dell DataSafe Local Backup\ToasterLauncher.exe
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 UsbFltr;WayTech USB Filter Driver;c:\windows\system32\Drivers\UsbFltr.sys [2007-04-09 12288]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-22 1255736]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
S1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\DRIVERS\klim6.sys [2012-08-02 28504]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys [2012-12-10 54104]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys [2012-08-13 178008]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-03-31 92160]
S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
S2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2009-12-02 656624]
S2 sprtlisten;SupportSoft Listener Service;c:\program files (x86)\Common Files\supportsoft\bin\sprtlisten.exe [2008-01-08 1213728]
S2 sprtsvc_DellComms;SupportSoft Sprocket Service (DellComms);c:\program files (x86)\Dell\DellComms\bin\sprtsvc.exe [2009-05-05 206064]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys [2012-10-25 29016]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys [2012-10-25 29528]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-12-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-01 01:59]
.
2012-12-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-12 01:08]
.
2012-12-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-12 01:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-06-03 7834656]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-24 165912]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-24 385560]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-24 363544]
"WrtMon.exe"="c:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2008-05-24 26448]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1 192.168.0.1 205.171.3.25
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{f92a9fe4-2850-4198-b9d5-279880e49b16} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
SafeBoot-mcmscsvc
SafeBoot-MCODS
Toolbar-Locked - (no file)
WebBrowser-{F92A9FE4-2850-4198-B9D5-279880E49B16} - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3110325996-2094934043-3585205354-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_USERS\S-1-5-21-3110325996-2094934043-3585205354-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-12-29 10:09:11
ComboFix-quarantined-files.txt 2012-12-29 16:09
.
Pre-Run: 547,681,349,632 bytes free
Post-Run: 547,757,453,312 bytes free
.
- - End Of File - - B8ED9ADCF1F66704B27F519D6E51E06E
  • 0

#6
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings

I want you to run these next,

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
  • 0

#7
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
I had no problems running either program. Here are the 2 reports:

TDSSKiller:

12:34:55.0560 3936 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:34:57.0573 3936 ============================================================
12:34:57.0573 3936 Current date / time: 2012/12/29 12:34:57.0573
12:34:57.0573 3936 SystemInfo:
12:34:57.0573 3936
12:34:57.0573 3936 OS Version: 6.1.7601 ServicePack: 1.0
12:34:57.0573 3936 Product type: Workstation
12:34:57.0573 3936 ComputerName: OWNER-PC
12:34:57.0573 3936 UserName: Owner
12:34:57.0573 3936 Windows directory: C:\Windows
12:34:57.0573 3936 System windows directory: C:\Windows
12:34:57.0573 3936 Running under WOW64
12:34:57.0573 3936 Processor architecture: Intel x64
12:34:57.0573 3936 Number of processors: 2
12:34:57.0573 3936 Page size: 0x1000
12:34:57.0573 3936 Boot type: Normal boot
12:34:57.0573 3936 ============================================================
12:35:01.0067 3936 BG loaded
12:35:01.0988 3936 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:35:02.0034 3936 ============================================================
12:35:02.0034 3936 \Device\Harddisk0\DR0:
12:35:02.0050 3936 MBR partitions:
12:35:02.0050 3936 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
12:35:02.0050 3936 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x48AF7AB0
12:35:02.0050 3936 ============================================================
12:35:02.0253 3936 C: <-> \Device\Harddisk0\DR0\Partition2
12:35:02.0253 3936 ============================================================
12:35:02.0253 3936 Initialize success
12:35:02.0253 3936 ============================================================
12:36:08.0143 0172 ============================================================
12:36:08.0143 0172 Scan started
12:36:08.0143 0172 Mode: Manual; SigCheck; TDLFS;
12:36:08.0143 0172 ============================================================
12:36:09.0687 0172 ================ Scan system memory ========================
12:36:09.0687 0172 System memory - ok
12:36:09.0687 0172 ================ Scan services =============================
12:36:09.0906 0172 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
12:36:10.0031 0172 1394ohci - ok
12:36:10.0093 0172 ACDaemon - ok
12:36:10.0155 0172 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
12:36:10.0187 0172 ACPI - ok
12:36:10.0218 0172 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
12:36:10.0296 0172 AcpiPmi - ok
12:36:10.0389 0172 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:36:10.0421 0172 AdobeFlashPlayerUpdateSvc - ok
12:36:10.0467 0172 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
12:36:10.0514 0172 adp94xx - ok
12:36:10.0545 0172 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
12:36:10.0561 0172 adpahci - ok
12:36:10.0577 0172 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
12:36:10.0592 0172 adpu320 - ok
12:36:10.0623 0172 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
12:36:10.0748 0172 AeLookupSvc - ok
12:36:10.0795 0172 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
12:36:10.0935 0172 AERTFilters - ok
12:36:10.0967 0172 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
12:36:11.0029 0172 AFD - ok
12:36:11.0076 0172 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
12:36:11.0107 0172 agp440 - ok
12:36:11.0138 0172 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
12:36:11.0216 0172 ALG - ok
12:36:11.0232 0172 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
12:36:11.0247 0172 aliide - ok
12:36:11.0263 0172 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
12:36:11.0279 0172 amdide - ok
12:36:11.0310 0172 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
12:36:11.0372 0172 AmdK8 - ok
12:36:11.0388 0172 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
12:36:11.0435 0172 AmdPPM - ok
12:36:11.0497 0172 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
12:36:11.0528 0172 amdsata - ok
12:36:11.0559 0172 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
12:36:11.0591 0172 amdsbs - ok
12:36:11.0606 0172 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
12:36:11.0622 0172 amdxata - ok
12:36:11.0669 0172 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
12:36:11.0809 0172 AppID - ok
12:36:11.0856 0172 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
12:36:11.0934 0172 AppIDSvc - ok
12:36:11.0996 0172 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
12:36:12.0059 0172 Appinfo - ok
12:36:12.0105 0172 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
12:36:12.0121 0172 arc - ok
12:36:12.0121 0172 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
12:36:12.0137 0172 arcsas - ok
12:36:12.0152 0172 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
12:36:12.0215 0172 AsyncMac - ok
12:36:12.0246 0172 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
12:36:12.0261 0172 atapi - ok
12:36:12.0308 0172 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:36:12.0433 0172 AudioEndpointBuilder - ok
12:36:12.0449 0172 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
12:36:12.0495 0172 AudioSrv - ok
12:36:12.0542 0172 AVP - ok
12:36:12.0589 0172 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
12:36:12.0683 0172 AxInstSV - ok
12:36:12.0714 0172 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
12:36:12.0792 0172 b06bdrv - ok
12:36:12.0807 0172 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
12:36:12.0885 0172 b57nd60a - ok
12:36:12.0979 0172 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
12:36:13.0026 0172 BBSvc - ok
12:36:13.0057 0172 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
12:36:13.0119 0172 BDESVC - ok
12:36:13.0135 0172 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
12:36:13.0229 0172 Beep - ok
12:36:13.0307 0172 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
12:36:13.0385 0172 BFE - ok
12:36:13.0431 0172 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
12:36:13.0509 0172 BITS - ok
12:36:13.0525 0172 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
12:36:13.0556 0172 blbdrive - ok
12:36:13.0587 0172 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
12:36:13.0634 0172 bowser - ok
12:36:13.0650 0172 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:36:13.0759 0172 BrFiltLo - ok
12:36:13.0775 0172 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:36:13.0821 0172 BrFiltUp - ok
12:36:13.0853 0172 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
12:36:13.0915 0172 BridgeMP - ok
12:36:13.0977 0172 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
12:36:13.0993 0172 Browser - ok
12:36:14.0009 0172 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
12:36:14.0071 0172 Brserid - ok
12:36:14.0087 0172 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
12:36:14.0118 0172 BrSerWdm - ok
12:36:14.0133 0172 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
12:36:14.0165 0172 BrUsbMdm - ok
12:36:14.0180 0172 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
12:36:14.0196 0172 BrUsbSer - ok
12:36:14.0211 0172 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
12:36:14.0258 0172 BTHMODEM - ok
12:36:14.0305 0172 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
12:36:14.0383 0172 bthserv - ok
12:36:14.0399 0172 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
12:36:14.0445 0172 cdfs - ok
12:36:14.0492 0172 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
12:36:14.0555 0172 cdrom - ok
12:36:14.0601 0172 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
12:36:14.0695 0172 CertPropSvc - ok
12:36:14.0711 0172 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
12:36:14.0773 0172 circlass - ok
12:36:14.0804 0172 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
12:36:14.0820 0172 CLFS - ok
12:36:14.0913 0172 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:36:14.0960 0172 clr_optimization_v2.0.50727_32 - ok
12:36:14.0991 0172 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:36:15.0023 0172 clr_optimization_v2.0.50727_64 - ok
12:36:15.0085 0172 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:36:15.0163 0172 clr_optimization_v4.0.30319_32 - ok
12:36:15.0194 0172 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:36:15.0225 0172 clr_optimization_v4.0.30319_64 - ok
12:36:15.0225 0172 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
12:36:15.0257 0172 CmBatt - ok
12:36:15.0288 0172 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
12:36:15.0303 0172 cmdide - ok
12:36:15.0350 0172 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
12:36:15.0381 0172 CNG - ok
12:36:15.0397 0172 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
12:36:15.0413 0172 Compbatt - ok
12:36:15.0428 0172 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
12:36:15.0475 0172 CompositeBus - ok
12:36:15.0491 0172 COMSysApp - ok
12:36:15.0506 0172 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
12:36:15.0522 0172 crcdisk - ok
12:36:15.0569 0172 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
12:36:15.0615 0172 CryptSvc - ok
12:36:15.0678 0172 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
12:36:15.0740 0172 DcomLaunch - ok
12:36:15.0771 0172 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
12:36:15.0803 0172 defragsvc - ok
12:36:15.0849 0172 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
12:36:15.0896 0172 DfsC - ok
12:36:15.0927 0172 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
12:36:16.0021 0172 Dhcp - ok
12:36:16.0037 0172 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
12:36:16.0099 0172 discache - ok
12:36:16.0146 0172 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
12:36:16.0177 0172 Disk - ok
12:36:16.0239 0172 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
12:36:16.0317 0172 Dnscache - ok
12:36:16.0395 0172 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
12:36:16.0411 0172 DockLoginService ( UnsignedFile.Multi.Generic ) - warning
12:36:16.0411 0172 DockLoginService - detected UnsignedFile.Multi.Generic (1)
12:36:16.0473 0172 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
12:36:16.0536 0172 dot3svc - ok
12:36:16.0598 0172 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
12:36:16.0661 0172 DPS - ok
12:36:16.0692 0172 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
12:36:16.0723 0172 drmkaud - ok
12:36:16.0785 0172 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
12:36:16.0817 0172 DXGKrnl - ok
12:36:16.0848 0172 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
12:36:16.0910 0172 EapHost - ok
12:36:16.0973 0172 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
12:36:17.0097 0172 ebdrv - ok
12:36:17.0144 0172 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
12:36:17.0207 0172 EFS - ok
12:36:17.0316 0172 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
12:36:17.0394 0172 ehRecvr - ok
12:36:17.0409 0172 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
12:36:17.0441 0172 ehSched - ok
12:36:17.0503 0172 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
12:36:17.0534 0172 elxstor - ok
12:36:17.0612 0172 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
12:36:17.0643 0172 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - warning
12:36:17.0643 0172 EpsonBidirectionalService - detected UnsignedFile.Multi.Generic (1)
12:36:17.0690 0172 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
12:36:17.0721 0172 ErrDev - ok
12:36:17.0768 0172 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
12:36:17.0831 0172 EventSystem - ok
12:36:17.0877 0172 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
12:36:17.0955 0172 exfat - ok
12:36:18.0002 0172 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
12:36:18.0080 0172 fastfat - ok
12:36:18.0221 0172 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
12:36:18.0299 0172 Fax - ok
12:36:18.0314 0172 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
12:36:18.0361 0172 fdc - ok
12:36:18.0408 0172 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
12:36:18.0439 0172 fdPHost - ok
12:36:18.0455 0172 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
12:36:18.0501 0172 FDResPub - ok
12:36:18.0533 0172 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
12:36:18.0548 0172 FileInfo - ok
12:36:18.0611 0172 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
12:36:18.0689 0172 Filetrace - ok
12:36:18.0689 0172 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
12:36:18.0720 0172 flpydisk - ok
12:36:18.0782 0172 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
12:36:18.0798 0172 FltMgr - ok
12:36:18.0860 0172 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
12:36:19.0016 0172 FontCache - ok
12:36:19.0079 0172 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:36:19.0094 0172 FontCache3.0.0.0 - ok
12:36:19.0110 0172 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
12:36:19.0125 0172 FsDepends - ok
12:36:19.0157 0172 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
12:36:19.0172 0172 Fs_Rec - ok
12:36:19.0219 0172 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
12:36:19.0250 0172 fvevol - ok
12:36:19.0266 0172 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
12:36:19.0281 0172 gagp30kx - ok
12:36:19.0313 0172 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
12:36:19.0328 0172 GoToAssist - ok
12:36:19.0391 0172 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
12:36:19.0453 0172 gpsvc - ok
12:36:19.0578 0172 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:36:19.0593 0172 gupdate - ok
12:36:19.0609 0172 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:36:19.0625 0172 gupdatem - ok
12:36:19.0656 0172 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
12:36:19.0671 0172 gusvc - ok
12:36:19.0687 0172 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
12:36:19.0749 0172 hcw85cir - ok
12:36:19.0781 0172 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
12:36:19.0827 0172 HDAudBus - ok
12:36:19.0859 0172 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
12:36:19.0921 0172 HidBatt - ok
12:36:19.0937 0172 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
12:36:19.0952 0172 HidBth - ok
12:36:19.0968 0172 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
12:36:19.0999 0172 HidIr - ok
12:36:20.0030 0172 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
12:36:20.0093 0172 hidserv - ok
12:36:20.0108 0172 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
12:36:20.0139 0172 HidUsb - ok
12:36:20.0171 0172 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
12:36:20.0264 0172 hkmsvc - ok
12:36:20.0358 0172 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:36:20.0420 0172 HomeGroupListener - ok
12:36:20.0451 0172 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:36:20.0498 0172 HomeGroupProvider - ok
12:36:20.0529 0172 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
12:36:20.0561 0172 HpSAMD - ok
12:36:20.0607 0172 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
12:36:20.0654 0172 HTTP - ok
12:36:20.0685 0172 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
12:36:20.0717 0172 hwpolicy - ok
12:36:20.0748 0172 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
12:36:20.0763 0172 i8042prt - ok
12:36:20.0795 0172 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
12:36:20.0810 0172 iaStorV - ok
12:36:20.0857 0172 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:36:20.0904 0172 idsvc - ok
12:36:21.0185 0172 [ 24CC43ECDEEFD4C19FBBEE4951B647F1 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
12:36:21.0278 0172 igfx - ok
12:36:21.0325 0172 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
12:36:21.0341 0172 iirsp - ok
12:36:21.0465 0172 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
12:36:21.0559 0172 IKEEXT - ok
12:36:21.0653 0172 [ F2B52C7B1C8E6A4FC4C4564F4A421F23 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:36:21.0684 0172 IntcAzAudAddService - ok
12:36:21.0715 0172 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
12:36:21.0731 0172 intelide - ok
12:36:21.0762 0172 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
12:36:21.0777 0172 intelppm - ok
12:36:21.0809 0172 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
12:36:21.0840 0172 IPBusEnum - ok
12:36:21.0871 0172 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:36:21.0949 0172 IpFilterDriver - ok
12:36:21.0996 0172 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
12:36:22.0074 0172 iphlpsvc - ok
12:36:22.0105 0172 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
12:36:22.0152 0172 IPMIDRV - ok
12:36:22.0183 0172 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
12:36:22.0261 0172 IPNAT - ok
12:36:22.0277 0172 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
12:36:22.0308 0172 IRENUM - ok
12:36:22.0323 0172 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
12:36:22.0339 0172 isapnp - ok
12:36:22.0370 0172 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
12:36:22.0386 0172 iScsiPrt - ok
12:36:22.0417 0172 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
12:36:22.0433 0172 kbdclass - ok
12:36:22.0479 0172 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
12:36:22.0526 0172 kbdhid - ok
12:36:22.0557 0172 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
12:36:22.0573 0172 KeyIso - ok
12:36:22.0635 0172 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
12:36:22.0667 0172 kl1 - ok
12:36:22.0713 0172 [ 65F3B81FA285EAB641F5E6EF7AEB984D ] KLIF C:\Windows\system32\DRIVERS\klif.sys
12:36:22.0729 0172 KLIF - ok
12:36:22.0760 0172 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
12:36:22.0776 0172 KLIM6 - ok
12:36:22.0807 0172 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:\Windows\system32\DRIVERS\klkbdflt.sys
12:36:22.0823 0172 klkbdflt - ok
12:36:22.0854 0172 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
12:36:22.0854 0172 klmouflt - ok
12:36:22.0885 0172 [ A8081ED8D48FA611D11DB97F49A5343D ] kltdi C:\Windows\system32\DRIVERS\kltdi.sys
12:36:22.0885 0172 kltdi - ok
12:36:22.0932 0172 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:\Windows\system32\DRIVERS\kneps.sys
12:36:22.0947 0172 kneps - ok
12:36:22.0979 0172 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
12:36:23.0010 0172 KSecDD - ok
12:36:23.0025 0172 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
12:36:23.0041 0172 KSecPkg - ok
12:36:23.0072 0172 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
12:36:23.0119 0172 ksthunk - ok
12:36:23.0150 0172 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
12:36:23.0228 0172 KtmRm - ok
12:36:23.0275 0172 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
12:36:23.0337 0172 LanmanServer - ok
12:36:23.0384 0172 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:36:23.0447 0172 LanmanWorkstation - ok
12:36:23.0493 0172 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
12:36:23.0540 0172 lltdio - ok
12:36:23.0665 0172 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
12:36:23.0727 0172 lltdsvc - ok
12:36:23.0774 0172 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
12:36:23.0821 0172 lmhosts - ok
12:36:23.0852 0172 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
12:36:23.0883 0172 LSI_FC - ok
12:36:23.0915 0172 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
12:36:23.0930 0172 LSI_SAS - ok
12:36:23.0946 0172 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:36:23.0961 0172 LSI_SAS2 - ok
12:36:23.0977 0172 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:36:23.0993 0172 LSI_SCSI - ok
12:36:24.0008 0172 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
12:36:24.0039 0172 luafv - ok
12:36:24.0071 0172 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
12:36:24.0102 0172 Mcx2Svc - ok
12:36:24.0133 0172 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
12:36:24.0149 0172 megasas - ok
12:36:24.0164 0172 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
12:36:24.0180 0172 MegaSR - ok
12:36:24.0211 0172 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
12:36:24.0273 0172 MMCSS - ok
12:36:24.0289 0172 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
12:36:24.0336 0172 Modem - ok
12:36:24.0367 0172 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
12:36:24.0398 0172 monitor - ok
12:36:24.0429 0172 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
12:36:24.0461 0172 mouclass - ok
12:36:24.0492 0172 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
12:36:24.0507 0172 mouhid - ok
12:36:24.0539 0172 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
12:36:24.0570 0172 mountmgr - ok
12:36:24.0632 0172 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
12:36:24.0663 0172 mpio - ok
12:36:24.0695 0172 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
12:36:24.0741 0172 mpsdrv - ok
12:36:24.0819 0172 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
12:36:24.0882 0172 MpsSvc - ok
12:36:24.0944 0172 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
12:36:24.0991 0172 MRxDAV - ok
12:36:25.0038 0172 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
12:36:25.0100 0172 mrxsmb - ok
12:36:25.0163 0172 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:36:25.0209 0172 mrxsmb10 - ok
12:36:25.0241 0172 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:36:25.0256 0172 mrxsmb20 - ok
12:36:25.0287 0172 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
12:36:25.0303 0172 msahci - ok
12:36:25.0319 0172 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
12:36:25.0334 0172 msdsm - ok
12:36:25.0365 0172 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
12:36:25.0412 0172 MSDTC - ok
12:36:25.0459 0172 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
12:36:25.0490 0172 Msfs - ok
12:36:25.0506 0172 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
12:36:25.0553 0172 mshidkmdf - ok
12:36:25.0584 0172 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
12:36:25.0599 0172 msisadrv - ok
12:36:25.0615 0172 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
12:36:25.0677 0172 MSiSCSI - ok
12:36:25.0677 0172 msiserver - ok
12:36:25.0709 0172 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
12:36:25.0755 0172 MSKSSRV - ok
12:36:25.0771 0172 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
12:36:25.0833 0172 MSPCLOCK - ok
12:36:25.0865 0172 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
12:36:25.0927 0172 MSPQM - ok
12:36:25.0958 0172 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
12:36:25.0974 0172 MsRPC - ok
12:36:25.0989 0172 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
12:36:26.0005 0172 mssmbios - ok
12:36:26.0021 0172 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
12:36:26.0099 0172 MSTEE - ok
12:36:26.0161 0172 [ C83829C280F0207677B7AAA151EF9C4D ] msvad_simple C:\Windows\system32\drivers\povrtdev.sys
12:36:26.0177 0172 msvad_simple - ok
12:36:26.0192 0172 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
12:36:26.0223 0172 MTConfig - ok
12:36:26.0239 0172 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
12:36:26.0255 0172 Mup - ok
12:36:26.0317 0172 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
12:36:26.0411 0172 napagent - ok
12:36:26.0442 0172 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
12:36:26.0473 0172 NativeWifiP - ok
12:36:26.0551 0172 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
12:36:26.0613 0172 NDIS - ok
12:36:26.0629 0172 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
12:36:26.0660 0172 NdisCap - ok
12:36:26.0676 0172 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
12:36:26.0723 0172 NdisTapi - ok
12:36:26.0738 0172 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
12:36:26.0801 0172 Ndisuio - ok
12:36:26.0863 0172 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
12:36:26.0925 0172 NdisWan - ok
12:36:26.0957 0172 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
12:36:27.0019 0172 NDProxy - ok
12:36:27.0066 0172 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
12:36:27.0128 0172 NetBIOS - ok
12:36:27.0175 0172 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
12:36:27.0206 0172 NetBT - ok
12:36:27.0237 0172 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
12:36:27.0253 0172 Netlogon - ok
12:36:27.0284 0172 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
12:36:27.0331 0172 Netman - ok
12:36:27.0378 0172 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
12:36:27.0425 0172 netprofm - ok
12:36:27.0456 0172 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:36:27.0487 0172 NetTcpPortSharing - ok
12:36:27.0503 0172 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
12:36:27.0518 0172 nfrd960 - ok
12:36:27.0549 0172 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
12:36:27.0581 0172 NlaSvc - ok
12:36:27.0596 0172 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
12:36:27.0627 0172 Npfs - ok
12:36:27.0643 0172 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
12:36:27.0721 0172 nsi - ok
12:36:27.0752 0172 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
12:36:27.0815 0172 nsiproxy - ok
12:36:27.0908 0172 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
12:36:27.0971 0172 Ntfs - ok
12:36:27.0971 0172 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
12:36:28.0033 0172 Null - ok
12:36:28.0080 0172 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
12:36:28.0095 0172 nvraid - ok
12:36:28.0111 0172 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
12:36:28.0142 0172 nvstor - ok
12:36:28.0158 0172 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
12:36:28.0173 0172 nv_agp - ok
12:36:28.0205 0172 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
12:36:28.0236 0172 ohci1394 - ok
12:36:28.0251 0172 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
12:36:28.0283 0172 p2pimsvc - ok
12:36:28.0298 0172 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
12:36:28.0329 0172 p2psvc - ok
12:36:28.0345 0172 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
12:36:28.0361 0172 Parport - ok
12:36:28.0423 0172 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
12:36:28.0439 0172 partmgr - ok
12:36:28.0485 0172 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
12:36:28.0548 0172 PcaSvc - ok
12:36:28.0563 0172 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
12:36:28.0579 0172 pci - ok
12:36:28.0595 0172 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
12:36:28.0610 0172 pciide - ok
12:36:28.0641 0172 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
12:36:28.0657 0172 pcmcia - ok
12:36:28.0673 0172 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
12:36:28.0688 0172 pcw - ok
12:36:28.0719 0172 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
12:36:28.0766 0172 PEAUTH - ok
12:36:28.0907 0172 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
12:36:28.0938 0172 PerfHost - ok
12:36:29.0109 0172 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
12:36:29.0187 0172 pla - ok
12:36:29.0234 0172 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
12:36:29.0281 0172 PlugPlay - ok
12:36:29.0328 0172 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
12:36:29.0375 0172 PNRPAutoReg - ok
12:36:29.0390 0172 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
12:36:29.0406 0172 PNRPsvc - ok
12:36:29.0437 0172 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
12:36:29.0484 0172 PolicyAgent - ok
12:36:29.0515 0172 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
12:36:29.0562 0172 Power - ok
12:36:29.0609 0172 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
12:36:29.0687 0172 PptpMiniport - ok
12:36:29.0718 0172 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
12:36:29.0733 0172 Processor - ok
12:36:29.0780 0172 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
12:36:29.0874 0172 ProfSvc - ok
12:36:29.0874 0172 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:36:29.0889 0172 ProtectedStorage - ok
12:36:29.0936 0172 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
12:36:29.0983 0172 Psched - ok
12:36:30.0014 0172 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
12:36:30.0030 0172 PxHlpa64 - ok
12:36:30.0077 0172 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
12:36:30.0139 0172 ql2300 - ok
12:36:30.0170 0172 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
12:36:30.0170 0172 ql40xx - ok
12:36:30.0201 0172 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
12:36:30.0217 0172 QWAVE - ok
12:36:30.0233 0172 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
12:36:30.0279 0172 QWAVEdrv - ok
12:36:30.0326 0172 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
12:36:30.0389 0172 RasAcd - ok
12:36:30.0420 0172 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
12:36:30.0467 0172 RasAgileVpn - ok
12:36:30.0482 0172 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
12:36:30.0529 0172 RasAuto - ok
12:36:30.0560 0172 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
12:36:30.0623 0172 Rasl2tp - ok
12:36:30.0716 0172 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
12:36:30.0763 0172 RasMan - ok
12:36:30.0779 0172 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
12:36:30.0825 0172 RasPppoe - ok
12:36:30.0841 0172 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
12:36:30.0888 0172 RasSstp - ok
12:36:30.0919 0172 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
12:36:30.0966 0172 rdbss - ok
12:36:30.0981 0172 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
12:36:31.0013 0172 rdpbus - ok
12:36:31.0028 0172 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
12:36:31.0075 0172 RDPCDD - ok
12:36:31.0091 0172 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
12:36:31.0153 0172 RDPENCDD - ok
12:36:31.0184 0172 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
12:36:31.0215 0172 RDPREFMP - ok
12:36:31.0247 0172 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
12:36:31.0325 0172 RDPWD - ok
12:36:31.0371 0172 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
12:36:31.0403 0172 rdyboost - ok
12:36:31.0434 0172 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
12:36:31.0481 0172 RemoteAccess - ok
12:36:31.0527 0172 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
12:36:31.0590 0172 RemoteRegistry - ok
12:36:31.0605 0172 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
12:36:31.0683 0172 RpcEptMapper - ok
12:36:31.0715 0172 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
12:36:31.0761 0172 RpcLocator - ok
12:36:31.0824 0172 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
12:36:31.0871 0172 RpcSs - ok
12:36:31.0917 0172 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
12:36:31.0964 0172 rspndr - ok
12:36:31.0995 0172 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
12:36:32.0011 0172 RTL8167 - ok
12:36:32.0027 0172 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
12:36:32.0042 0172 SamSs - ok
12:36:32.0073 0172 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
12:36:32.0089 0172 sbp2port - ok
12:36:32.0120 0172 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
12:36:32.0214 0172 SCardSvr - ok
12:36:32.0245 0172 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
12:36:32.0323 0172 scfilter - ok
12:36:32.0510 0172 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
12:36:32.0604 0172 Schedule - ok
12:36:32.0651 0172 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
12:36:32.0697 0172 SCPolicySvc - ok
12:36:32.0744 0172 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
12:36:32.0791 0172 SDRSVC - ok
12:36:32.0853 0172 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
12:36:32.0885 0172 SeaPort - ok
12:36:32.0916 0172 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
12:36:32.0963 0172 secdrv - ok
12:36:33.0009 0172 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
12:36:33.0087 0172 seclogon - ok
12:36:33.0103 0172 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
12:36:33.0165 0172 SENS - ok
12:36:33.0197 0172 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
12:36:33.0275 0172 SensrSvc - ok
12:36:33.0290 0172 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
12:36:33.0306 0172 Serenum - ok
12:36:33.0321 0172 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
12:36:33.0337 0172 Serial - ok
12:36:33.0353 0172 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
12:36:33.0415 0172 sermouse - ok
12:36:33.0446 0172 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
12:36:33.0524 0172 SessionEnv - ok
12:36:33.0555 0172 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
12:36:33.0602 0172 sffdisk - ok
12:36:33.0618 0172 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
12:36:33.0649 0172 sffp_mmc - ok
12:36:33.0665 0172 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
12:36:33.0696 0172 sffp_sd - ok
12:36:33.0711 0172 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
12:36:33.0758 0172 sfloppy - ok
12:36:33.0836 0172 [ 16A5CC62F79A32A974B55110A898945C ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
12:36:33.0852 0172 SftService - ok
12:36:33.0883 0172 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
12:36:33.0930 0172 SharedAccess - ok
12:36:33.0977 0172 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:36:34.0023 0172 ShellHWDetection - ok
12:36:34.0039 0172 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:36:34.0055 0172 SiSRaid2 - ok
12:36:34.0070 0172 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
12:36:34.0086 0172 SiSRaid4 - ok
12:36:34.0101 0172 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
12:36:34.0148 0172 Smb - ok
12:36:34.0226 0172 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
12:36:34.0257 0172 SNMPTRAP - ok
12:36:34.0273 0172 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
12:36:34.0289 0172 spldr - ok
12:36:34.0351 0172 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
12:36:34.0398 0172 Spooler - ok
12:36:34.0601 0172 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
12:36:34.0663 0172 sppsvc - ok
12:36:34.0694 0172 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
12:36:34.0741 0172 sppuinotify - ok
12:36:34.0788 0172 sprtlisten - ok
12:36:34.0803 0172 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellComms C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
12:36:34.0819 0172 sprtsvc_DellComms - ok
12:36:34.0866 0172 [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
12:36:34.0881 0172 sprtsvc_DellSupportCenter - ok
12:36:34.0928 0172 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
12:36:34.0975 0172 srv - ok
12:36:35.0037 0172 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
12:36:35.0069 0172 srv2 - ok
12:36:35.0100 0172 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
12:36:35.0147 0172 srvnet - ok
12:36:35.0178 0172 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
12:36:35.0209 0172 SSDPSRV - ok
12:36:35.0225 0172 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
12:36:35.0256 0172 SstpSvc - ok
12:36:35.0287 0172 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
12:36:35.0303 0172 stexstor - ok
12:36:35.0349 0172 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
12:36:35.0381 0172 stisvc - ok
12:36:35.0443 0172 [ 2E5586392CDFBD1D73BADB20E9ED6386 ] SupportSoft RemoteAssist C:\Program Files (x86)\Common Files\supportsoft\bin\ssrc.exe
12:36:35.0490 0172 SupportSoft RemoteAssist - ok
12:36:35.0521 0172 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
12:36:35.0552 0172 swenum - ok
12:36:35.0568 0172 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
12:36:35.0615 0172 swprv - ok
12:36:35.0802 0172 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
12:36:35.0864 0172 SysMain - ok
12:36:35.0895 0172 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:36:35.0942 0172 TabletInputService - ok
12:36:35.0973 0172 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
12:36:36.0051 0172 TapiSrv - ok
12:36:36.0067 0172 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
12:36:36.0098 0172 TBS - ok
12:36:36.0176 0172 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
12:36:36.0254 0172 Tcpip - ok
12:36:36.0301 0172 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
12:36:36.0332 0172 TCPIP6 - ok
12:36:36.0379 0172 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
12:36:36.0457 0172 tcpipreg - ok
12:36:36.0519 0172 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
12:36:36.0551 0172 TDPIPE - ok
12:36:36.0582 0172 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
12:36:36.0613 0172 TDTCP - ok
12:36:36.0660 0172 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
12:36:36.0707 0172 tdx - ok
12:36:36.0722 0172 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
12:36:36.0769 0172 TermDD - ok
12:36:36.0847 0172 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
12:36:36.0909 0172 TermService - ok
12:36:36.0956 0172 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
12:36:37.0003 0172 Themes - ok
12:36:37.0019 0172 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
12:36:37.0050 0172 THREADORDER - ok
12:36:37.0065 0172 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
12:36:37.0128 0172 TrkWks - ok
12:36:37.0190 0172 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:36:37.0237 0172 TrustedInstaller - ok
12:36:37.0268 0172 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
12:36:37.0346 0172 tssecsrv - ok
12:36:37.0377 0172 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
12:36:37.0440 0172 TsUsbFlt - ok
12:36:37.0502 0172 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
12:36:37.0565 0172 tunnel - ok
12:36:37.0580 0172 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
12:36:37.0596 0172 uagp35 - ok
12:36:37.0627 0172 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
12:36:37.0689 0172 udfs - ok
12:36:37.0721 0172 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
12:36:37.0736 0172 UI0Detect - ok
12:36:37.0752 0172 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
12:36:37.0767 0172 uliagpkx - ok
12:36:37.0799 0172 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
12:36:37.0830 0172 umbus - ok
12:36:37.0845 0172 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
12:36:37.0908 0172 UmPass - ok
12:36:37.0939 0172 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
12:36:38.0001 0172 upnphost - ok
12:36:38.0033 0172 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
12:36:38.0095 0172 usbccgp - ok
12:36:38.0126 0172 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
12:36:38.0157 0172 usbcir - ok
12:36:38.0157 0172 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
12:36:38.0189 0172 usbehci - ok
12:36:38.0298 0172 [ 68BAD03835873D4BBBDE95CBB135A395 ] UsbFltr C:\Windows\system32\Drivers\UsbFltr.sys
12:36:38.0329 0172 UsbFltr - ok
12:36:38.0360 0172 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
12:36:38.0438 0172 usbhub - ok
12:36:38.0469 0172 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
12:36:38.0501 0172 usbohci - ok
12:36:38.0532 0172 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
12:36:38.0563 0172 usbprint - ok
12:36:38.0579 0172 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:36:38.0657 0172 USBSTOR - ok
12:36:38.0672 0172 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
12:36:38.0703 0172 usbuhci - ok
12:36:38.0735 0172 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
12:36:38.0781 0172 UxSms - ok
12:36:38.0813 0172 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
12:36:38.0828 0172 VaultSvc - ok
12:36:38.0859 0172 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
12:36:38.0875 0172 vdrvroot - ok
12:36:38.0906 0172 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
12:36:38.0953 0172 vds - ok
12:36:38.0969 0172 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
12:36:38.0984 0172 vga - ok
12:36:39.0000 0172 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
12:36:39.0047 0172 VgaSave - ok
12:36:39.0078 0172 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
12:36:39.0109 0172 vhdmp - ok
12:36:39.0140 0172 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
12:36:39.0156 0172 viaide - ok
12:36:39.0171 0172 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
12:36:39.0187 0172 volmgr - ok
12:36:39.0218 0172 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
12:36:39.0249 0172 volmgrx - ok
12:36:39.0265 0172 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
12:36:39.0281 0172 volsnap - ok
12:36:39.0312 0172 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
12:36:39.0327 0172 vsmraid - ok
12:36:39.0390 0172 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
12:36:39.0468 0172 VSS - ok
12:36:39.0483 0172 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
12:36:39.0515 0172 vwifibus - ok
12:36:39.0561 0172 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
12:36:39.0608 0172 W32Time - ok
12:36:39.0624 0172 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
12:36:39.0655 0172 WacomPen - ok
12:36:39.0686 0172 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
12:36:39.0733 0172 WANARP - ok
12:36:39.0749 0172 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
12:36:39.0780 0172 Wanarpv6 - ok
12:36:39.0873 0172 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
12:36:39.0920 0172 WatAdminSvc - ok
12:36:39.0983 0172 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
12:36:40.0045 0172 wbengine - ok
12:36:40.0092 0172 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
12:36:40.0154 0172 WbioSrvc - ok
12:36:40.0185 0172 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
12:36:40.0232 0172 wcncsvc - ok
12:36:40.0248 0172 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:36:40.0295 0172 WcsPlugInService - ok
12:36:40.0310 0172 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
12:36:40.0326 0172 Wd - ok
12:36:40.0373 0172 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
12:36:40.0419 0172 Wdf01000 - ok
12:36:40.0466 0172 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
12:36:40.0560 0172 WdiServiceHost - ok
12:36:40.0560 0172 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
12:36:40.0591 0172 WdiSystemHost - ok
12:36:40.0622 0172 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
12:36:40.0685 0172 WebClient - ok
12:36:40.0716 0172 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
12:36:40.0763 0172 Wecsvc - ok
12:36:40.0778 0172 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
12:36:40.0825 0172 wercplsupport - ok
12:36:40.0856 0172 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
12:36:40.0887 0172 WerSvc - ok
12:36:40.0903 0172 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
12:36:40.0934 0172 WfpLwf - ok
12:36:40.0965 0172 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
12:36:40.0981 0172 WimFltr - ok
12:36:40.0997 0172 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
12:36:41.0012 0172 WIMMount - ok
12:36:41.0028 0172 WinDefend - ok
12:36:41.0028 0172 WinHttpAutoProxySvc - ok
12:36:41.0075 0172 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
12:36:41.0137 0172 Winmgmt - ok
12:36:41.0199 0172 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
12:36:41.0324 0172 WinRM - ok
12:36:41.0387 0172 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
12:36:41.0402 0172 WinUsb - ok
12:36:41.0496 0172 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
12:36:41.0558 0172 Wlansvc - ok
12:36:41.0761 0172 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:36:41.0808 0172 wlidsvc - ok
12:36:41.0823 0172 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
12:36:41.0855 0172 WmiAcpi - ok
12:36:41.0917 0172 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
12:36:41.0964 0172 wmiApSrv - ok
12:36:41.0979 0172 WMPNetworkSvc - ok
12:36:42.0011 0172 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
12:36:42.0057 0172 WPCSvc - ok
12:36:42.0104 0172 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
12:36:42.0120 0172 WPDBusEnum - ok
12:36:42.0167 0172 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
12:36:42.0213 0172 ws2ifsl - ok
12:36:42.0229 0172 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
12:36:42.0291 0172 wscsvc - ok
12:36:42.0291 0172 WSearch - ok
12:36:42.0369 0172 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
12:36:42.0416 0172 wuauserv - ok
12:36:42.0447 0172 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
12:36:42.0525 0172 WudfPf - ok
12:36:42.0541 0172 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
12:36:42.0588 0172 WUDFRd - ok
12:36:42.0635 0172 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
12:36:42.0666 0172 wudfsvc - ok
12:36:42.0728 0172 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
12:36:42.0775 0172 WwanSvc - ok
12:36:42.0791 0172 ================ Scan global ===============================
12:36:42.0806 0172 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:36:42.0853 0172 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:36:42.0869 0172 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
12:36:42.0884 0172 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:36:42.0962 0172 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:36:42.0978 0172 [Global] - ok
12:36:42.0978 0172 ================ Scan MBR ==================================
12:36:42.0993 0172 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
12:36:43.0586 0172 \Device\Harddisk0\DR0 - ok
12:36:43.0586 0172 ================ Scan VBR ==================================
12:36:43.0633 0172 [ BD6A05EB50D6EBAF0C2BFC9AF18816BD ] \Device\Harddisk0\DR0\Partition1
12:36:43.0633 0172 \Device\Harddisk0\DR0\Partition1 - ok
12:36:43.0649 0172 [ 23BB4AD30D28BDFFB5F9590FBCC1CFE2 ] \Device\Harddisk0\DR0\Partition2
12:36:43.0649 0172 \Device\Harddisk0\DR0\Partition2 - ok
12:36:43.0649 0172 ================ Scan active images ========================
12:36:43.0649 0172 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
12:36:43.0649 0172 C:\Windows\System32\drivers\crashdmp.sys - ok
12:36:43.0664 0172 [ 839B5FE3D48E9F35B22C21A3D5103F6C ] C:\Windows\System32\drivers\Dumpata.sys
12:36:43.0664 0172 C:\Windows\System32\drivers\Dumpata.sys - ok
12:36:43.0664 0172 [ 02062C0B390B7729EDC9E69C680A6F3C ] C:\Windows\System32\drivers\atapi.sys
12:36:43.0664 0172 C:\Windows\System32\drivers\atapi.sys - ok
12:36:43.0664 0172 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
12:36:43.0664 0172 C:\Windows\System32\drivers\dumpfve.sys - ok
12:36:43.0680 0172 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
12:36:43.0680 0172 C:\Windows\System32\drivers\cdrom.sys - ok
12:36:43.0680 0172 [ 2744EB4FEEF8760B908E9EABBBD5A6A7 ] C:\Windows\System32\drivers\klflt.sys
12:36:43.0680 0172 C:\Windows\System32\drivers\klflt.sys - ok
12:36:43.0695 0172 [ 65F3B81FA285EAB641F5E6EF7AEB984D ] C:\Windows\System32\drivers\klif.sys
12:36:43.0695 0172 C:\Windows\System32\drivers\klif.sys - ok
12:36:43.0695 0172 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
12:36:43.0695 0172 C:\Windows\System32\drivers\beep.sys - ok
12:36:43.0695 0172 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
12:36:43.0695 0172 C:\Windows\System32\drivers\null.sys - ok
12:36:43.0711 0172 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
12:36:43.0711 0172 C:\Windows\System32\drivers\RDPCDD.sys - ok
12:36:43.0711 0172 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
12:36:43.0711 0172 C:\Windows\System32\drivers\RDPENCDD.sys - ok
12:36:43.0727 0172 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
12:36:43.0727 0172 C:\Windows\System32\drivers\RDPREFMP.sys - ok
12:36:43.0727 0172 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
12:36:43.0727 0172 C:\Windows\System32\drivers\vga.sys - ok
12:36:43.0727 0172 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
12:36:43.0727 0172 C:\Windows\System32\drivers\videoprt.sys - ok
12:36:43.0742 0172 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
12:36:43.0742 0172 C:\Windows\System32\drivers\watchdog.sys - ok
12:36:43.0742 0172 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
12:36:43.0742 0172 C:\Windows\System32\drivers\msfs.sys - ok
12:36:43.0742 0172 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
12:36:43.0742 0172 C:\Windows\System32\drivers\afd.sys - ok
12:36:43.0758 0172 [ A8081ED8D48FA611D11DB97F49A5343D ] C:\Windows\System32\drivers\kltdi.sys
12:36:43.0758 0172 C:\Windows\System32\drivers\kltdi.sys - ok
12:36:43.0758 0172 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
12:36:43.0758 0172 C:\Windows\System32\drivers\npfs.sys - ok
12:36:43.0773 0172 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
12:36:43.0773 0172 C:\Windows\System32\drivers\tdi.sys - ok
12:36:43.0773 0172 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
12:36:43.0773 0172 C:\Windows\System32\drivers\tdx.sys - ok
12:36:43.0773 0172 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
12:36:43.0773 0172 C:\Windows\System32\drivers\netbt.sys - ok
12:36:43.0789 0172 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
12:36:43.0789 0172 C:\Windows\System32\drivers\ws2ifsl.sys - ok
12:36:43.0789 0172 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
12:36:43.0789 0172 C:\Windows\System32\drivers\wfplwf.sys - ok
12:36:43.0789 0172 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
12:36:43.0789 0172 C:\Windows\System32\drivers\pacer.sys - ok
12:36:43.0805 0172 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] C:\Windows\System32\drivers\klim6.sys
12:36:43.0805 0172 C:\Windows\System32\drivers\klim6.sys - ok
12:36:43.0805 0172 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
12:36:43.0805 0172 C:\Windows\System32\drivers\netbios.sys - ok
12:36:43.0820 0172 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
12:36:43.0820 0172 C:\Windows\System32\drivers\wanarp.sys - ok
12:36:43.0820 0172 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
12:36:43.0820 0172 C:\Windows\System32\drivers\discache.sys - ok
12:36:43.0820 0172 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] C:\Windows\System32\drivers\kneps.sys
12:36:43.0820 0172 C:\Windows\System32\drivers\kneps.sys - ok
12:36:43.0836 0172 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
12:36:43.0836 0172 C:\Windows\System32\drivers\mssmbios.sys - ok
12:36:43.0836 0172 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
12:36:43.0836 0172 C:\Windows\System32\drivers\nsiproxy.sys - ok
12:36:43.0851 0172 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
12:36:43.0851 0172 C:\Windows\System32\drivers\rdbss.sys - ok
12:36:43.0851 0172 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
12:36:43.0851 0172 C:\Windows\System32\drivers\termdd.sys - ok
12:36:43.0851 0172 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
12:36:43.0851 0172 C:\Windows\System32\drivers\blbdrive.sys - ok
12:36:43.0867 0172 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
12:36:43.0867 0172 C:\Windows\System32\drivers\dfsc.sys - ok
12:36:43.0867 0172 [ ADA036632C664CAA754079041CF1F8C1 ] C:\Windows\System32\drivers\intelppm.sys
12:36:43.0867 0172 C:\Windows\System32\drivers\intelppm.sys - ok
12:36:43.0867 0172 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
12:36:43.0867 0172 C:\Windows\System32\drivers\tunnel.sys - ok
12:36:43.0883 0172 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
12:36:43.0883 0172 C:\Windows\System32\ntdll.dll - ok
12:36:43.0883 0172 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
12:36:43.0883 0172 C:\Windows\System32\smss.exe - ok
12:36:43.0883 0172 [ 24CC43ECDEEFD4C19FBBEE4951B647F1 ] C:\Windows\System32\drivers\igdkmd64.sys
12:36:43.0883 0172 C:\Windows\System32\drivers\igdkmd64.sys - ok
12:36:43.0898 0172 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
12:36:43.0898 0172 C:\Windows\System32\drivers\dxgkrnl.sys - ok
12:36:43.0898 0172 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
12:36:43.0898 0172 C:\Windows\System32\drivers\dxgmms1.sys - ok
12:36:43.0914 0172 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
12:36:43.0914 0172 C:\Windows\System32\drivers\usbport.sys - ok
12:36:43.0914 0172 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
12:36:43.0914 0172 C:\Windows\System32\drivers\hdaudbus.sys - ok
12:36:43.0914 0172 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
12:36:43.0914 0172 C:\Windows\System32\drivers\usbehci.sys - ok
12:36:43.0929 0172 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] C:\Windows\System32\drivers\usbuhci.sys
12:36:43.0929 0172 C:\Windows\System32\drivers\usbuhci.sys - ok
12:36:43.0929 0172 [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A ] C:\Windows\System32\drivers\Rt64win7.sys
12:36:43.0929 0172 C:\Windows\System32\drivers\Rt64win7.sys - ok
12:36:43.0929 0172 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
12:36:43.0929 0172 C:\Windows\System32\autochk.exe - ok
12:36:43.0945 0172 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
12:36:43.0945 0172 C:\Windows\System32\drivers\CompositeBus.sys - ok
12:36:43.0945 0172 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
12:36:43.0945 0172 C:\Windows\System32\drivers\drmk.sys - ok
12:36:43.0961 0172 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
12:36:43.0961 0172 C:\Windows\System32\drivers\ks.sys - ok
12:36:43.0961 0172 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
12:36:43.0961 0172 C:\Windows\System32\drivers\portcls.sys - ok
12:36:43.0961 0172 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
12:36:43.0961 0172 C:\Windows\System32\drivers\ksthunk.sys - ok
12:36:43.0976 0172 [ C83829C280F0207677B7AAA151EF9C4D ] C:\Windows\System32\drivers\povrtdev.sys
12:36:43.0976 0172 C:\Windows\System32\drivers\povrtdev.sys - ok
12:36:43.0976 0172 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
12:36:43.0976 0172 C:\Windows\System32\drivers\agilevpn.sys - ok
12:36:43.0976 0172 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
12:36:43.0976 0172 C:\Windows\System32\drivers\ndistapi.sys - ok
12:36:43.0992 0172 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
12:36:43.0992 0172 C:\Windows\System32\drivers\ndiswan.sys - ok
12:36:43.0992 0172 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
12:36:43.0992 0172 C:\Windows\System32\drivers\rasl2tp.sys - ok
12:36:44.0007 0172 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
12:36:44.0007 0172 C:\Windows\System32\drivers\raspppoe.sys - ok
12:36:44.0007 0172 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
12:36:44.0007 0172 C:\Windows\System32\drivers\raspptp.sys - ok
12:36:44.0007 0172 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
12:36:44.0007 0172 C:\Windows\System32\drivers\rassstp.sys - ok
12:36:44.0023 0172 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
12:36:44.0023 0172 C:\Windows\System32\drivers\kbdclass.sys - ok
12:36:44.0023 0172 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
12:36:44.0023 0172 C:\Windows\System32\drivers\mouclass.sys - ok
12:36:44.0023 0172 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
12:36:44.0023 0172 C:\Windows\System32\drivers\swenum.sys - ok
12:36:44.0039 0172 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
12:36:44.0039 0172 C:\Windows\System32\drivers\umbus.sys - ok
12:36:44.0039 0172 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
12:36:44.0039 0172 C:\Windows\System32\drivers\usbhub.sys - ok
12:36:44.0054 0172 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
12:36:44.0054 0172 C:\Windows\System32\gdi32.dll - ok
12:36:44.0054 0172 [ 74E96226CB92225E40AACC0E42D27AC0 ] C:\Windows\System32\urlmon.dll
12:36:44.0054 0172 C:\Windows\System32\urlmon.dll - ok
12:36:44.0054 0172 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
12:36:44.0054 0172 C:\Windows\System32\Wldap32.dll - ok
12:36:44.0070 0172 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
12:36:44.0070 0172 C:\Windows\System32\comdlg32.dll - ok
12:36:44.0070 0172 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
12:36:44.0070 0172 C:\Windows\System32\msvcrt.dll - ok
12:36:44.0070 0172 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
12:36:44.0070 0172 C:\Windows\System32\shell32.dll - ok
12:36:44.0085 0172 [ 7E04D13661FB771CA4FDBB836AD0BA49 ] C:\Windows\System32\wininet.dll
12:36:44.0085 0172 C:\Windows\System32\wininet.dll - ok
12:36:44.0085 0172 [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65 ] C:\Windows\System32\usp10.dll
12:36:44.0085 0172 C:\Windows\System32\usp10.dll - ok
12:36:44.0085 0172 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
12:36:44.0085 0172 C:\Windows\System32\clbcatq.dll - ok
12:36:44.0101 0172 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
12:36:44.0101 0172 C:\Windows\System32\oleaut32.dll - ok
12:36:44.0101 0172 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
12:36:44.0101 0172 C:\Windows\System32\sechost.dll - ok
12:36:44.0117 0172 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
12:36:44.0117 0172 C:\Windows\System32\setupapi.dll - ok
12:36:44.0117 0172 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
12:36:44.0117 0172 C:\Windows\System32\ws2_32.dll - ok
12:36:44.0117 0172 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
12:36:44.0117 0172 C:\Windows\System32\difxapi.dll - ok
12:36:44.0132 0172 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
12:36:44.0132 0172 C:\Windows\System32\normaliz.dll - ok
12:36:44.0132 0172 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
12:36:44.0132 0172 C:\Windows\System32\shlwapi.dll - ok
12:36:44.0148 0172 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
12:36:44.0148 0172 C:\Windows\System32\imm32.dll - ok
12:36:44.0148 0172 [ C41A504715F1BC09105D1FE8B46E9B2C ] C:\Windows\System32\iertutil.dll
12:36:44.0148 0172 C:\Windows\System32\iertutil.dll - ok
12:36:44.0148 0172 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
12:36:44.0148 0172 C:\Windows\System32\imagehlp.dll - ok
12:36:44.0163 0172 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
12:36:44.0163 0172 C:\Windows\System32\nsi.dll - ok
12:36:44.0163 0172 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
12:36:44.0163 0172 C:\Windows\System32\ole32.dll - ok
12:36:44.0163 0172 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
12:36:44.0163 0172 C:\Windows\System32\user32.dll - ok
12:36:44.0179 0172 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
12:36:44.0179 0172 C:\Windows\System32\advapi32.dll - ok
12:36:44.0179 0172 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
12:36:44.0179 0172 C:\Windows\System32\lpk.dll - ok
12:36:44.0179 0172 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
12:36:44.0179 0172 C:\Windows\System32\psapi.dll - ok
12:36:44.0195 0172 [ 1DC3504CA4C57900F1557E9A3F01D272 ] C:\Windows\System32\kernel32.dll
12:36:44.0195 0172 C:\Windows\System32\kernel32.dll - ok
12:36:44.0195 0172 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
12:36:44.0195 0172 C:\Windows\System32\rpcrt4.dll - ok
12:36:44.0210 0172 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
12:36:44.0210 0172 C:\Windows\System32\drivers\ndproxy.sys - ok
12:36:44.0210 0172 [ F2B52C7B1C8E6A4FC4C4564F4A421F23 ] C:\Windows\System32\drivers\RTKVHD64.sys
12:36:44.0210 0172 C:\Windows\System32\drivers\RTKVHD64.sys - ok
12:36:44.0210 0172 [ B8BD2BB284668C84865658C77574381A ] C:\Windows\System32\drivers\cdfs.sys
12:36:44.0210 0172 C:\Windows\System32\drivers\cdfs.sys - ok
12:36:44.0226 0172 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
12:36:44.0226 0172 C:\Windows\System32\msctf.dll - ok
12:36:44.0226 0172 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
12:36:44.0226 0172 C:\Windows\System32\wintrust.dll - ok
12:36:44.0241 0172 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
12:36:44.0241 0172 C:\Windows\System32\comctl32.dll - ok
12:36:44.0241 0172 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
12:36:44.0241 0172 C:\Windows\System32\devobj.dll - ok
12:36:44.0241 0172 [ 6F2E324703E6D22B9934C33DA48F1F01 ] C:\Windows\System32\KernelBase.dll
12:36:44.0257 0172 C:\Windows\System32\KernelBase.dll - ok
12:36:44.0257 0172 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
12:36:44.0257 0172 C:\Windows\System32\cfgmgr32.dll - ok
12:36:44.0257 0172 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
12:36:44.0257 0172 C:\Windows\System32\crypt32.dll - ok
12:36:44.0273 0172 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
12:36:44.0273 0172 C:\Windows\System32\msasn1.dll - ok
12:36:44.0273 0172 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
12:36:44.0273 0172 C:\Windows\SysWOW64\normaliz.dll - ok
12:36:44.0273 0172 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
12:36:44.0273 0172 C:\Windows\System32\drivers\dxapi.sys - ok
12:36:44.0288 0172 [ C58923115CDE6071C3BF2FF063546E9F ] C:\Windows\System32\win32k.sys
12:36:44.0288 0172 C:\Windows\System32\win32k.sys - ok
12:36:44.0288 0172 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
12:36:44.0288 0172 C:\Windows\System32\csrsrv.dll - ok
12:36:44.0304 0172 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
12:36:44.0304 0172 C:\Windows\System32\csrss.exe - ok
12:36:44.0304 0172 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
12:36:44.0304 0172 C:\Windows\System32\basesrv.dll - ok
12:36:44.0304 0172 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\System32\winsrv.dll
12:36:44.0304 0172 C:\Windows\System32\winsrv.dll - ok
12:36:44.0319 0172 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
12:36:44.0319 0172 C:\Windows\System32\drivers\monitor.sys - ok
12:36:44.0319 0172 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
12:36:44.0319 0172 C:\Windows\System32\sxssrv.dll - ok
12:36:44.0335 0172 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
12:36:44.0335 0172 C:\Windows\System32\tsddd.dll - ok
12:36:44.0335 0172 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
12:36:44.0335 0172 C:\Windows\System32\wininit.exe - ok
12:36:44.0335 0172 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
12:36:44.0335 0172 C:\Windows\System32\profapi.dll - ok
12:36:44.0351 0172 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
12:36:44.0351 0172 C:\Windows\System32\cdd.dll - ok
12:36:44.0351 0172 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
12:36:44.0351 0172 C:\Windows\System32\KBDUS.DLL - ok
12:36:44.0351 0172 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
12:36:44.0351 0172 C:\Windows\System32\RpcRtRemote.dll - ok
12:36:44.0366 0172 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
12:36:44.0366 0172 C:\Windows\System32\winlogon.exe - ok
12:36:44.0366 0172 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
12:36:44.0366 0172 C:\Windows\System32\winsta.dll - ok
12:36:44.0382 0172 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
12:36:44.0382 0172 C:\Windows\System32\WlS0WndH.dll - ok
12:36:44.0382 0172 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
12:36:44.0382 0172 C:\Windows\System32\drivers\hidparse.sys - ok
12:36:44.0382 0172 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
12:36:44.0382 0172 C:\Windows\System32\drivers\hidclass.sys - ok
12:36:44.0397 0172 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
12:36:44.0397 0172 C:\Windows\System32\drivers\hidusb.sys - ok
12:36:44.0397 0172 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
12:36:44.0397 0172 C:\Windows\System32\drivers\usbd.sys - ok
12:36:44.0413 0172 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
12:36:44.0413 0172 C:\Windows\System32\drivers\kbdhid.sys - ok
12:36:44.0413 0172 [ 2C43FD500522EF3B8C283A5846B7FC41 ] C:\Windows\System32\drivers\klkbdflt.sys
12:36:44.0413 0172 C:\Windows\System32\drivers\klkbdflt.sys - ok
12:36:44.0413 0172 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
12:36:44.0413 0172 C:\Windows\System32\sxs.dll - ok
12:36:44.0429 0172 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
12:36:44.0429 0172 C:\Windows\System32\cryptbase.dll - ok
12:36:44.0429 0172 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
12:36:44.0429 0172 C:\Windows\System32\drivers\USBSTOR.SYS - ok
12:36:44.0429 0172 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
12:36:44.0429 0172 C:\Windows\System32\apphelp.dll - ok
12:36:44.0444 0172 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
12:36:44.0444 0172 C:\Windows\System32\lsass.exe - ok
12:36:44.0444 0172 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
12:36:44.0444 0172 C:\Windows\System32\lsm.exe - ok
12:36:44.0460 0172 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
12:36:44.0460 0172 C:\Windows\System32\scext.dll - ok
12:36:44.0460 0172 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
12:36:44.0460 0172 C:\Windows\System32\services.exe - ok
12:36:44.0460 0172 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
12:36:44.0460 0172 C:\Windows\System32\sspicli.dll - ok
12:36:44.0475 0172 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
12:36:44.0475 0172 C:\Windows\System32\sspisrv.dll - ok
12:36:44.0475 0172 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
12:36:44.0475 0172 C:\Windows\System32\sysntfy.dll - ok
12:36:44.0475 0172 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
12:36:44.0475 0172 C:\Windows\System32\wmsgapi.dll - ok
12:36:44.0491 0172 [ 66A6063D0BAAD3F7B2B9868859E0743B ] C:\Windows\System32\lsasrv.dll
12:36:44.0491 0172 C:\Windows\System32\lsasrv.dll - ok
12:36:44.0507 0172 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
12:36:44.0507 0172 C:\Windows\System32\samsrv.dll - ok
12:36:44.0507 0172 [ 70A6D2E292017EC47949696F51ABE18D ] C:\Windows\System32\drivers\klmouflt.sys
12:36:44.0507 0172 C:\Windows\System32\drivers\klmouflt.sys - ok
12:36:44.0522 0172 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
12:36:44.0522 0172 C:\Windows\System32\drivers\mouhid.sys - ok
12:36:44.0522 0172 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
12:36:44.0522 0172 C:\Windows\System32\scesrv.dll - ok
12:36:44.0538 0172 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
12:36:44.0538 0172 C:\Windows\System32\secur32.dll - ok
12:36:44.0538 0172 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
12:36:44.0538 0172 C:\Windows\System32\cryptdll.dll - ok
12:36:44.0553 0172 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
12:36:44.0553 0172 C:\Windows\System32\srvcli.dll - ok
12:36:44.0553 0172 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
12:36:44.0553 0172 C:\Windows\System32\wevtapi.dll - ok
12:36:44.0569 0172 [ 2D066FBE63F7026C43C662C094B98076 ] C:\Windows\System32\bridgeres.dll
12:36:44.0569 0172 C:\Windows\System32\bridgeres.dll - ok
12:36:44.0569 0172 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
12:36:44.0569 0172 C:\Windows\System32\cngaudit.dll - ok
12:36:44.0585 0172 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
12:36:44.0585 0172 C:\Windows\System32\authz.dll - ok
12:36:44.0585 0172 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
12:36:44.0585 0172 C:\Windows\System32\bcrypt.dll - ok
12:36:44.0585 0172 [ 400645085A91BF3EB0271329B95AE0BE ] C:\Windows\System32\ncrypt.dll
12:36:44.0585 0172 C:\Windows\System32\ncrypt.dll - ok
12:36:44.0600 0172 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
12:36:44.0600 0172 C:\Windows\System32\msprivs.dll - ok
12:36:44.0600 0172 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
12:36:44.0600 0172 C:\Windows\System32\netjoin.dll - ok
12:36:44.0600 0172 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
12:36:44.0600 0172 C:\Windows\System32\kerberos.dll - ok
12:36:44.0616 0172 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
12:36:44.0616 0172 C:\Windows\System32\negoexts.dll - ok
12:36:44.0616 0172 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
12:36:44.0616 0172 C:\Windows\System32\cryptsp.dll - ok
12:36:44.0616 0172 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
12:36:44.0616 0172 C:\Windows\System32\mswsock.dll - ok
12:36:44.0631 0172 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
12:36:44.0631 0172 C:\Windows\System32\msv1_0.dll - ok
12:36:44.0631 0172 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
12:36:44.0631 0172 C:\Windows\System32\wship6.dll - ok
12:36:44.0647 0172 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
12:36:44.0647 0172 C:\Windows\System32\netlogon.dll - ok
12:36:44.0647 0172 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
12:36:44.0647 0172 C:\Windows\System32\dnsapi.dll - ok
12:36:44.0647 0172 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
12:36:44.0647 0172 C:\Windows\System32\logoncli.dll - ok
12:36:44.0663 0172 [ 1573C45E65DE32B1BC3572634F8F1E8E ] C:\Windows\System32\schannel.dll
12:36:44.0663 0172 C:\Windows\System32\schannel.dll - ok
12:36:44.0663 0172 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
12:36:44.0663 0172 C:\Windows\System32\wdigest.dll - ok
12:36:44.0663 0172 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
12:36:44.0663 0172 C:\Windows\System32\rsaenh.dll - ok
12:36:44.0678 0172 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
12:36:44.0678 0172 C:\Windows\System32\TSpkg.dll - ok
12:36:44.0678 0172 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
12:36:44.0678 0172 C:\Windows\System32\pku2u.dll - ok
12:36:44.0694 0172 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
12:36:44.0694 0172 C:\Windows\System32\LIVESSP.DLL - ok
12:36:44.0694 0172 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
12:36:44.0694 0172 C:\Windows\System32\bcryptprimitives.dll - ok
12:36:44.0694 0172 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
12:36:44.0694 0172 C:\Windows\System32\efslsaext.dll - ok
12:36:44.0709 0172 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
12:36:44.0709 0172 C:\Windows\System32\credssp.dll - ok
12:36:44.0709 0172 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
12:36:44.0709 0172 C:\Windows\System32\scecli.dll - ok
12:36:44.0709 0172 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
12:36:44.0709 0172 C:\Windows\System32\ubpm.dll - ok
12:36:44.0725 0172 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
12:36:44.0725 0172 C:\Windows\System32\svchost.exe - ok
12:36:44.0725 0172 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
12:36:44.0725 0172 C:\Windows\System32\umpnpmgr.dll - ok
12:36:44.0741 0172 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
12:36:44.0741 0172 C:\Windows\System32\devrtl.dll - ok
12:36:44.0741 0172 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
12:36:44.0741 0172 C:\Windows\System32\SPInf.dll - ok
12:36:44.0741 0172 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
12:36:44.0741 0172 C:\Windows\System32\userenv.dll - ok
12:36:44.0756 0172 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
12:36:44.0756 0172 C:\Windows\System32\gpapi.dll - ok
12:36:44.0756 0172 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
12:36:44.0756 0172 C:\Windows\System32\umpo.dll - ok
12:36:44.0772 0172 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
12:36:44.0772 0172 C:\Windows\System32\pcwum.dll - ok
12:36:44.0772 0172 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
12:36:44.0772 0172 C:\Windows\System32\powrprof.dll - ok
12:36:44.0787 0172 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
12:36:44.0787 0172 C:\Windows\System32\drivers\luafv.sys - ok
12:36:44.0787 0172 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
12:36:44.0787 0172 C:\Windows\System32\drivers\WUDFPf.sys - ok
12:36:44.0787 0172 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
12:36:44.0787 0172 C:\Windows\System32\rpcss.dll - ok
12:36:44.0803 0172 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
12:36:44.0803 0172 C:\Windows\System32\RpcEpMap.dll - ok
12:36:44.0803 0172 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
12:36:44.0803 0172 C:\Windows\System32\WSHTCPIP.DLL - ok
12:36:44.0819 0172 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
12:36:44.0819 0172 C:\Windows\System32\wshqos.dll - ok
12:36:44.0819 0172 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
12:36:44.0819 0172 C:\Windows\System32\FirewallAPI.dll - ok
12:36:44.0819 0172 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
12:36:44.0819 0172 C:\Windows\System32\LogonUI.exe - ok
12:36:44.0834 0172 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
12:36:44.0834 0172 C:\Windows\System32\version.dll - ok
12:36:44.0834 0172 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
12:36:44.0834 0172 C:\Windows\System32\authui.dll - ok
12:36:44.0850 0172 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
12:36:44.0850 0172 C:\Windows\System32\wevtsvc.dll - ok
12:36:44.0850 0172 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
12:36:44.0850 0172 C:\Windows\System32\netprofm.dll - ok
12:36:44.0865 0172 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
12:36:44.0865 0172 C:\Windows\System32\avrt.dll - ok
12:36:44.0865 0172 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
12:36:44.0865 0172 C:\Windows\System32\mmcss.dll - ok
12:36:44.0881 0172 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
12:36:44.0881 0172 C:\Windows\System32\audiosrv.dll - ok
12:36:44.0881 0172 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
12:36:44.0881 0172 C:\Windows\System32\MMDevAPI.dll - ok
12:36:44.0881 0172 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
12:36:44.0881 0172 C:\Windows\System32\propsys.dll - ok
12:36:44.0897 0172 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
12:36:44.0897 0172 C:\Windows\System32\cryptui.dll - ok
12:36:44.0897 0172 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
12:36:44.0897 0172 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
12:36:44.0912 0172 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
12:36:44.0912 0172 C:\Windows\System32\shacct.dll - ok
12:36:44.0912 0172 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
12:36:44.0912 0172 C:\Windows\System32\samlib.dll - ok
12:36:44.0928 0172 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
12:36:44.0928 0172 C:\Windows\System32\uxtheme.dll - ok
12:36:44.0928 0172 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
12:36:44.0928 0172 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
12:36:44.0928 0172 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
12:36:44.0928 0172 C:\Windows\System32\dui70.dll - ok
12:36:44.0943 0172 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
12:36:44.0943 0172 C:\Windows\System32\duser.dll - ok
12:36:44.0943 0172 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
12:36:44.0943 0172 C:\Windows\System32\SndVolSSO.dll - ok
12:36:44.0943 0172 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
12:36:44.0943 0172 C:\Windows\System32\dwmapi.dll - ok
12:36:44.0959 0172 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
12:36:44.0959 0172 C:\Windows\System32\hid.dll - ok
12:36:44.0959 0172 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
12:36:44.0959 0172 C:\Windows\System32\xmllite.dll - ok
12:36:44.0975 0172 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
12:36:44.0975 0172 C:\Windows\System32\audiodg.exe - ok
12:36:44.0975 0172 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
12:36:44.0975 0172 C:\Windows\System32\ntmarta.dll - ok
12:36:44.0975 0172 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
12:36:44.0975 0172 C:\Windows\System32\gpsvc.dll - ok
12:36:44.0990 0172 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
12:36:44.0990 0172 C:\Windows\System32\nlaapi.dll - ok
12:36:44.0990 0172 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
12:36:44.0990 0172 C:\Windows\System32\profsvc.dll - ok
12:36:44.0990 0172 [ 26B73A85855681500BCC25C7CD9FF5B1 ] C:\Windows\System32\WindowsCodecs.dll
12:36:44.0990 0172 C:\Windows\System32\WindowsCodecs.dll - ok
12:36:45.0006 0172 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
12:36:45.0006 0172 C:\Windows\System32\winbrand.dll - ok
12:36:45.0006 0172 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
12:36:45.0006 0172 C:\Windows\System32\VaultCredProvider.dll - ok
12:36:45.0006 0172 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
12:36:45.0006 0172 C:\Windows\System32\atl.dll - ok
12:36:45.0021 0172 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
12:36:45.0021 0172 C:\Windows\System32\dsrole.dll - ok
12:36:45.0021 0172 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
12:36:45.0021 0172 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
12:36:45.0037 0172 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
12:36:45.0037 0172 C:\Windows\System32\themeservice.dll - ok
12:36:45.0037 0172 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
12:36:45.0037 0172 C:\Windows\System32\wtsapi32.dll - ok
12:36:45.0053 0172 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
12:36:45.0053 0172 C:\Windows\System32\BioCredProv.dll - ok
12:36:45.0053 0172 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
12:36:45.0053 0172 C:\Windows\System32\slc.dll - ok
12:36:45.0053 0172 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
12:36:45.0053 0172 C:\Windows\System32\winbio.dll - ok
12:36:45.0068 0172 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
12:36:45.0068 0172 C:\Windows\System32\credui.dll - ok
12:36:45.0068 0172 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
12:36:45.0068 0172 C:\Windows\System32\netapi32.dll - ok
12:36:45.0084 0172 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
12:36:45.0084 0172 C:\Windows\System32\netutils.dll - ok
12:36:45.0084 0172 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
12:36:45.0084 0172 C:\Windows\System32\vaultcli.dll - ok
12:36:45.0099 0172 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
12:36:45.0099 0172 C:\Windows\System32\wkscli.dll - ok
12:36:45.0099 0172 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
12:36:45.0099 0172 C:\Windows\System32\samcli.dll - ok
12:36:45.0115 0172 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
12:36:45.0115 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
12:36:45.0115 0172 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
12:36:45.0115 0172 C:\Windows\System32\certCredProvider.dll - ok
12:36:45.0115 0172 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
12:36:45.0115 0172 C:\Windows\System32\es.dll - ok
12:36:45.0131 0172 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
12:36:45.0131 0172 C:\Windows\System32\Sens.dll - ok
12:36:45.0131 0172 [ 0840ABBBDF438691EE65A20040635CBE ] C:\Program Files\Dell\DellDock\DockLogin.exe
12:36:45.0131 0172 C:\Program Files\Dell\DellDock\DockLogin.exe - ok
12:36:45.0131 0172 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
12:36:45.0146 0172 C:\Windows\System32\adtschema.dll - ok
12:36:45.0146 0172 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
12:36:45.0146 0172 C:\Windows\SysWOW64\ntdll.dll - ok
12:36:45.0146 0172 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
12:36:45.0146 0172 C:\Windows\System32\comres.dll - ok
12:36:45.0162 0172 [ 50544D04AD845C43130B70212EC05CCD ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
12:36:45.0162 0172 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
12:36:45.0162 0172 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
12:36:45.0162 0172 C:\Windows\System32\WUDFPlatform.dll - ok
12:36:45.0162 0172 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
12:36:45.0162 0172 C:\Windows\System32\drivers\fltMgr.sys - ok
12:36:45.0177 0172 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
12:36:45.0177 0172 C:\Windows\System32\PSHED.DLL - ok
12:36:45.0177 0172 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
12:36:45.0177 0172 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
12:36:45.0193 0172 [ 15B30F15BD13640B337A0FC37BD48CDE ] C:\Windows\System32\wow64.dll
12:36:45.0193 0172 C:\Windows\System32\wow64.dll - ok
12:36:45.0193 0172 [ 2970785A72054740E1A5DCEB32485486 ] C:\Windows\System32\wow64win.dll
12:36:45.0193 0172 C:\Windows\System32\wow64win.dll - ok
12:36:45.0209 0172 [ 98168B9B0656A01A321FF1BECB2C03E1 ] C:\Windows\System32\wow64cpu.dll
12:36:45.0209 0172 C:\Windows\System32\wow64cpu.dll - ok
12:36:45.0209 0172 [ D4F3176082566CEFA633B4945802D4C4 ] C:\Windows\SysWOW64\kernel32.dll
12:36:45.0209 0172 C:\Windows\SysWOW64\kernel32.dll - ok
12:36:45.0224 0172 [ 0978C2B33BDD0A7E6C563AA337DC8BA0 ] C:\Windows\SysWOW64\KernelBase.dll
12:36:45.0224 0172 C:\Windows\SysWOW64\KernelBase.dll - ok
12:36:45.0224 0172 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
12:36:45.0224 0172 C:\Windows\SysWOW64\msvcrt.dll - ok
12:36:45.0224 0172 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
12:36:45.0224 0172 C:\Windows\SysWOW64\wtsapi32.dll - ok
12:36:45.0240 0172 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
12:36:45.0240 0172 C:\Windows\SysWOW64\advapi32.dll - ok
12:36:45.0240 0172 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
12:36:45.0240 0172 C:\Windows\SysWOW64\sechost.dll - ok
12:36:45.0255 0172 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
12:36:45.0255 0172 C:\Windows\SysWOW64\rpcrt4.dll - ok
12:36:45.0255 0172 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
12:36:45.0255 0172 C:\Windows\SysWOW64\cryptbase.dll - ok
12:36:45.0271 0172 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
12:36:45.0271 0172 C:\Windows\SysWOW64\gdi32.dll - ok
12:36:45.0271 0172 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
12:36:45.0271 0172 C:\Windows\SysWOW64\shlwapi.dll - ok
12:36:45.0271 0172 [ EDA7AD21DF8945528F01F0A86D69E524 ] C:\Windows\SysWOW64\sspicli.dll
12:36:45.0271 0172 C:\Windows\SysWOW64\sspicli.dll - ok
12:36:45.0287 0172 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
12:36:45.0287 0172 C:\Windows\SysWOW64\user32.dll - ok
12:36:45.0287 0172 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
12:36:45.0287 0172 C:\Windows\SysWOW64\lpk.dll - ok
12:36:45.0302 0172 [ 804AAAFEBB3AD5F49334DD906BCB1DE5 ] C:\Windows\SysWOW64\usp10.dll
12:36:45.0302 0172 C:\Windows\SysWOW64\usp10.dll - ok
12:36:45.0302 0172 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
12:36:45.0302 0172 C:\Windows\SysWOW64\imm32.dll - ok
12:36:45.0318 0172 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
12:36:45.0318 0172 C:\Windows\SysWOW64\msctf.dll - ok
12:36:45.0318 0172 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
12:36:45.0318 0172 C:\Windows\System32\uxsms.dll - ok
12:36:45.0333 0172 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
12:36:45.0333 0172 C:\Windows\System32\WUDFSvc.dll - ok
12:36:45.0333 0172 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
12:36:45.0333 0172 C:\Windows\System32\drivers\lltdio.sys - ok
12:36:45.0333 0172 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
12:36:45.0333 0172 C:\Windows\System32\drivers\rspndr.sys - ok
12:36:45.0349 0172 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
12:36:45.0349 0172 C:\Windows\System32\IPHLPAPI.DLL - ok
12:36:45.0349 0172 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
12:36:45.0349 0172 C:\Windows\System32\lmhsvc.dll - ok
12:36:45.0365 0172 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
12:36:45.0365 0172 C:\Windows\System32\nsisvc.dll - ok
12:36:45.0365 0172 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
12:36:45.0365 0172 C:\Windows\System32\dhcpcore.dll - ok
12:36:45.0365 0172 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
12:36:45.0365 0172 C:\Windows\System32\nrpsrv.dll - ok
12:36:45.0380 0172 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
12:36:45.0380 0172 C:\Windows\System32\winnsi.dll - ok
12:36:45.0380 0172 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
12:36:45.0380 0172 C:\Windows\System32\dhcpcore6.dll - ok
12:36:45.0396 0172 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
12:36:45.0396 0172 C:\Windows\System32\rasplap.dll - ok
12:36:45.0396 0172 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
12:36:45.0396 0172 C:\Windows\System32\rasapi32.dll - ok
12:36:45.0396 0172 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
12:36:45.0396 0172 C:\Windows\System32\rasman.dll - ok
12:36:45.0411 0172 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
12:36:45.0411 0172 C:\Windows\System32\rtutils.dll - ok
12:36:45.0411 0172 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
12:36:45.0411 0172 C:\Windows\System32\UXInit.dll - ok
12:36:45.0427 0172 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
12:36:45.0427 0172 C:\Windows\System32\MPSSVC.dll - ok
12:36:45.0427 0172 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
12:36:45.0427 0172 C:\Windows\System32\dnsrslvr.dll - ok
12:36:45.0427 0172 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
12:36:45.0427 0172 C:\Windows\System32\FWPUCLNT.DLL - ok
12:36:45.0443 0172 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
12:36:45.0443 0172 C:\Windows\System32\dnsext.dll - ok
12:36:45.0443 0172 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
12:36:45.0443 0172 C:\Windows\System32\dhcpcsvc6.dll - ok
12:36:45.0458 0172 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
12:36:45.0458 0172 C:\Windows\System32\dhcpcsvc.dll - ok
12:36:45.0458 0172 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
12:36:45.0458 0172 C:\Windows\System32\schedsvc.dll - ok
12:36:45.0474 0172 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
12:36:45.0474 0172 C:\Windows\System32\shsvcs.dll - ok
12:36:45.0474 0172 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
12:36:45.0474 0172 C:\Windows\System32\ktmw32.dll - ok
12:36:45.0474 0172 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
12:36:45.0474 0172 C:\Windows\System32\fveapi.dll - ok
12:36:45.0489 0172 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
12:36:45.0489 0172 C:\Windows\System32\tbs.dll - ok
12:36:45.0489 0172 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
12:36:45.0489 0172 C:\Windows\System32\fvecerts.dll - ok
12:36:45.0505 0172 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
12:36:45.0505 0172 C:\Windows\System32\imageres.dll - ok
12:36:45.0505 0172 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
12:36:45.0505 0172 C:\Windows\System32\taskcomp.dll - ok
12:36:45.0505 0172 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
12:36:45.0521 0172 C:\Windows\System32\drivers\http.sys - ok
12:36:45.0521 0172 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
12:36:45.0521 0172 C:\Windows\System32\spoolsv.exe - ok
12:36:45.0521 0172 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
12:36:45.0521 0172 C:\Windows\System32\wiarpc.dll - ok
12:36:45.0536 0172 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
12:36:45.0536 0172 C:\Windows\System32\BFE.DLL - ok
12:36:45.0536 0172 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
12:36:45.0536 0172 C:\Windows\System32\drivers\bowser.sys - ok
12:36:45.0536 0172 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
12:36:45.0536 0172 C:\Windows\System32\drivers\mpsdrv.sys - ok
12:36:45.0552 0172 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
12:36:45.0552 0172 C:\Windows\System32\drivers\mrxsmb.sys - ok
12:36:45.0552 0172 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
12:36:45.0552 0172 C:\Windows\System32\drivers\mrxsmb10.sys - ok
12:36:45.0567 0172 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
12:36:45.0567 0172 C:\Windows\System32\drivers\mrxsmb20.sys - ok
12:36:45.0567 0172 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
12:36:45.0567 0172 C:\Windows\System32\wkssvc.dll - ok
12:36:45.0567 0172 [ ABDD5AD016AFFD34AD40E944CE94BF59 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
12:36:45.0567 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe - ok
12:36:45.0583 0172 [ 78E3A1BE942B6CA69C01BAD7263D888C ] C:\Windows\SysWOW64\EEBUtil.dll
12:36:45.0583 0172 C:\Windows\SysWOW64\EEBUtil.dll - ok
12:36:45.0583 0172 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
12:36:45.0583 0172 C:\Windows\System32\wfapigp.dll - ok
12:36:45.0599 0172 [ 8D6D80315A238D049AE8A33C1EE632F8 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBRsvc.dll
12:36:45.0599 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBRsvc.dll - ok
12:36:45.0599 0172 [ 65BB5D319081E4EC2880A78A0091A84B ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBIPDev.DLL
12:36:45.0599 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBIPDev.DLL - ok
12:36:45.0599 0172 [ 7E70D0B6A85502C5D3A1DB062B72E78C ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBLPBidiDev.DLL
12:36:45.0599 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBLPBidiDev.DLL - ok
12:36:45.0614 0172 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
12:36:45.0614 0172 C:\Windows\SysWOW64\ws2_32.dll - ok
12:36:45.0614 0172 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
12:36:45.0614 0172 C:\Windows\SysWOW64\nsi.dll - ok
12:36:45.0614 0172 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
12:36:45.0614 0172 C:\Windows\SysWOW64\winspool.drv - ok
12:36:45.0630 0172 [ 2510150D2BB54115141E83F3205B6013 ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBMSDev.dll
12:36:45.0630 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBMSDev.dll - ok
12:36:45.0630 0172 [ 59CDF93DFA24264E6D75E1E3C00CD27F ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBNWDev.dll
12:36:45.0630 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBNWDev.dll - ok
12:36:45.0645 0172 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
12:36:45.0645 0172 C:\Windows\SysWOW64\wsock32.dll - ok
12:36:45.0645 0172 [ 93DEB6C3A52996F1D76731BBA856983A ] C:\Program Files (x86)\Common Files\EPSON\EBAPI\epLocalBidi.DLL
12:36:45.0645 0172 C:\Program Files (x86)\Common Files\EPSON\EBAPI\epLocalBidi.DLL - ok
12:36:45.0645 0172 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
12:36:45.0645 0172 C:\Windows\SysWOW64\mpr.dll - ok
12:36:45.0661 0172 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
12:36:45.0661 0172 C:\Windows\SysWOW64\ole32.dll - ok
12:36:45.0661 0172 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
12:36:45.0661 0172 C:\Windows\SysWOW64\mswsock.dll - ok
12:36:45.0661 0172 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
12:36:45.0661 0172 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
12:36:45.0677 0172 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
12:36:45.0677 0172 C:\Windows\System32\mscms.dll - ok
12:36:45.0677 0172 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
12:36:45.0677 0172 C:\Windows\System32\pcasvc.dll - ok
12:36:45.0692 0172 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
12:36:45.0692 0172 C:\Windows\System32\snmptrap.exe - ok
12:36:45.0692 0172 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
12:36:45.0692 0172 C:\Windows\System32\provsvc.dll - ok
12:36:45.0692 0172 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
12:36:45.0692 0172 C:\Windows\System32\sstpsvc.dll - ok
12:36:45.0708 0172 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
12:36:45.0708 0172 C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
12:36:45.0708 0172 [ 587EFD6A3A30A35A27904D21AE1FB882 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
12:36:45.0708 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe - ok
12:36:45.0708 0172 [ 5BF82F212967C8669AEC4CE8D082EDD0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ushata.dll
12:36:45.0708 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ushata.dll - ok
12:36:45.0723 0172 [ E36CB8B559C8FA3D296415AB5169116E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpinit.dll
12:36:45.0723 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpinit.dll - ok
12:36:45.0723 0172 [ DA849AB6870AB975375E37A45CC0E330 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpservice.dll
12:36:45.0723 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpservice.dll - ok
12:36:45.0739 0172 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
12:36:45.0739 0172 C:\Windows\SysWOW64\fltLib.dll - ok
12:36:45.0739 0172 [ BC83108B18756547013ED443B8CDB31B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcp100.dll
12:36:45.0739 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcp100.dll - ok
12:36:45.0755 0172 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcr100.dll
12:36:45.0755 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msvcr100.dll - ok
12:36:45.0755 0172 [ 6392B48639671B70A7AA0F620C8653C4 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpmain.dll
12:36:45.0755 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpmain.dll - ok
12:36:45.0755 0172 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
12:36:45.0755 0172 C:\Windows\System32\cryptsvc.dll - ok
12:36:45.0770 0172 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
12:36:45.0770 0172 C:\Windows\System32\dps.dll - ok
12:36:45.0770 0172 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
12:36:45.0770 0172 C:\Windows\System32\cryptnet.dll - ok
12:36:45.0770 0172 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
12:36:45.0770 0172 C:\Windows\System32\FDResPub.dll - ok
12:36:45.0786 0172 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
12:36:45.0786 0172 C:\Windows\System32\netman.dll - ok
12:36:45.0786 0172 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
12:36:45.0786 0172 C:\Windows\System32\taskschd.dll - ok
12:36:45.0801 0172 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
12:36:45.0801 0172 C:\Windows\SysWOW64\powrprof.dll - ok
12:36:45.0801 0172 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
12:36:45.0801 0172 C:\Windows\SysWOW64\setupapi.dll - ok
12:36:45.0817 0172 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
12:36:45.0817 0172 C:\Windows\System32\aepic.dll - ok
12:36:45.0817 0172 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
12:36:45.0817 0172 C:\Windows\System32\sfc.dll - ok
12:36:45.0817 0172 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
12:36:45.0817 0172 C:\Windows\System32\sfc_os.dll - ok
12:36:45.0833 0172 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
12:36:45.0833 0172 C:\Windows\SysWOW64\cfgmgr32.dll - ok
12:36:45.0833 0172 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
12:36:45.0833 0172 C:\Windows\SysWOW64\oleaut32.dll - ok
12:36:45.0833 0172 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
12:36:45.0833 0172 C:\Windows\SysWOW64\crypt32.dll - ok
12:36:45.0848 0172 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
12:36:45.0848 0172 C:\Windows\SysWOW64\devobj.dll - ok
12:36:45.0848 0172 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
12:36:45.0848 0172 C:\Windows\SysWOW64\msasn1.dll - ok
12:36:45.0864 0172 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
12:36:45.0864 0172 C:\Windows\System32\drivers\PEAuth.sys - ok
12:36:45.0864 0172 [ CC781378E7EDA615D2CDCA3B17829FA4 ] C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
12:36:45.0864 0172 C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE - ok
12:36:45.0864 0172 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
12:36:45.0864 0172 C:\Windows\System32\WSDApi.dll - ok
12:36:45.0879 0172 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
12:36:45.0879 0172 C:\Windows\System32\webservices.dll - ok
12:36:45.0879 0172 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
12:36:45.0879 0172 C:\Windows\System32\fundisc.dll - ok
12:36:45.0895 0172 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
12:36:45.0895 0172 C:\Windows\System32\nlasvc.dll - ok
12:36:45.0895 0172 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
12:36:45.0895 0172 C:\Windows\System32\ncsi.dll - ok
12:36:45.0895 0172 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
12:36:45.0895 0172 C:\Windows\System32\winhttp.dll - ok
12:36:45.0911 0172 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
12:36:45.0911 0172 C:\Windows\System32\vssapi.dll - ok
12:36:45.0911 0172 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
12:36:45.0911 0172 C:\Windows\System32\webio.dll - ok
12:36:45.0911 0172 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
12:36:45.0911 0172 C:\Windows\System32\httpapi.dll - ok
12:36:45.0926 0172 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
12:36:45.0926 0172 C:\Windows\System32\vsstrace.dll - ok
12:36:45.0926 0172 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
12:36:45.0926 0172 C:\Windows\System32\ssdpapi.dll - ok
12:36:45.0942 0172 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
12:36:45.0942 0172 C:\Windows\System32\IKEEXT.DLL - ok
12:36:45.0942 0172 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
12:36:45.0942 0172 C:\Windows\System32\dllhost.exe - ok
12:36:45.0942 0172 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
12:36:45.0942 0172 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
12:36:45.0957 0172 [ 4FFDE68C4B7C9993FA551E7E36DDB34D ] C:\Windows\System32\msxml6.dll
12:36:45.0957 0172 C:\Windows\System32\msxml6.dll - ok
12:36:45.0957 0172 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
12:36:45.0957 0172 C:\Windows\SysWOW64\shell32.dll - ok
12:36:45.0973 0172 [ F93674263F6B07C77956E966953242D9 ] C:\Windows\SysWOW64\secur32.dll
12:36:45.0973 0172 C:\Windows\SysWOW64\secur32.dll - ok
12:36:45.0973 0172 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
12:36:45.0973 0172 C:\Windows\SysWOW64\winhttp.dll - ok
12:36:45.0973 0172 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
12:36:45.0973 0172 C:\Windows\SysWOW64\SensApi.dll - ok
12:36:45.0989 0172 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
12:36:45.0989 0172 C:\Windows\SysWOW64\webio.dll - ok
12:36:45.0989 0172 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
12:36:45.0989 0172 C:\Windows\SysWOW64\wintrust.dll - ok
12:36:45.0989 0172 [ C7EDF9020894938533A837C5E4B3189C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fssync.dll
12:36:45.0989 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fssync.dll - ok
12:36:46.0004 0172 [ 34BEC2BCD77ECB238E00394483AA040D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dumpwriter.dll
12:36:46.0004 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dumpwriter.dll - ok
12:36:46.0004 0172 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
12:36:46.0004 0172 C:\Windows\SysWOW64\clbcatq.dll - ok
12:36:46.0020 0172 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
12:36:46.0020 0172 C:\Windows\SysWOW64\profapi.dll - ok
12:36:46.0020 0172 [ D9A9702E43A5859896F34898D5FD3FEC ] C:\Windows\SysWOW64\msxml6.dll
12:36:46.0020 0172 C:\Windows\SysWOW64\msxml6.dll - ok
12:36:46.0020 0172 [ F02FE922D118427A8C45B6C6206AB652 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\service.dll
12:36:46.0020 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\service.dll - ok
12:36:46.0035 0172 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
12:36:46.0035 0172 C:\Windows\System32\drivers\secdrv.sys - ok
12:36:46.0035 0172 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
12:36:46.0035 0172 C:\Windows\SysWOW64\cryptsp.dll - ok
12:36:46.0035 0172 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
12:36:46.0035 0172 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
12:36:46.0051 0172 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
12:36:46.0051 0172 C:\Windows\SysWOW64\rsaenh.dll - ok
12:36:46.0051 0172 [ C99FA2D11B120F6475FD6DFB9D6C2CC7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prremote.dll
12:36:46.0051 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prremote.dll - ok
12:36:46.0067 0172 [ D2D1132B2E62116533296025E7F42F4E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prloader.dll
12:36:46.0067 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\prloader.dll - ok
12:36:46.0067 0172 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
12:36:46.0067 0172 C:\Windows\SysWOW64\userenv.dll - ok
12:36:46.0067 0172 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
12:36:46.0067 0172 C:\Windows\SysWOW64\version.dll - ok
12:36:46.0082 0172 [ C4B1EE61C1AC72E66E961DA4F183E49E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nfio.ppl
12:36:46.0082 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nfio.ppl - ok
12:36:46.0082 0172 [ 36ABB491B6B6A62ED82332FD5D5B7A5F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fsdrvplg.ppl
12:36:46.0082 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\fsdrvplg.ppl - ok
12:36:46.0082 0172 [ 229E9AA2F80FB65F7B6BE72783D08382 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\winreg.ppl
12:36:46.0082 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\winreg.ppl - ok
12:36:46.0098 0172 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
12:36:46.0098 0172 C:\Windows\System32\seclogon.dll - ok
12:36:46.0098 0172 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
12:36:46.0098 0172 C:\Windows\System32\vpnikeapi.dll - ok
12:36:46.0113 0172 [ 3CF38BA02F17C0A4EAFC9C082BD1F8C8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pxstub.ppl
12:36:46.0113 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pxstub.ppl - ok
12:36:46.0113 0172 [ EE688874AD5473E7A5C55A8AB2260272 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\params.ppl
12:36:46.0113 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\params.ppl - ok
12:36:46.0129 0172 [ D2C733C669A54F1EC29B05C4CE3A70D3 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_legacy.dll
12:36:46.0129 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_legacy.dll - ok
12:36:46.0129 0172 [ 3747A53ADE8EF6E1719B8A4E7B51F99C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\key_value_storage.dll
12:36:46.0129 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\key_value_storage.dll - ok
12:36:46.0129 0172 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
12:36:46.0129 0172 C:\Windows\System32\aeevts.dll - ok
12:36:46.0145 0172 [ 01E357643AC1596513DF13AF47FBBE7E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\eka_meta.dll
12:36:46.0145 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\eka_meta.dll - ok
12:36:46.0145 0172 [ 45FD390D397A2EA84CDB0AA477C59919 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater_meta.dll
12:36:46.0145 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater_meta.dll - ok
12:36:46.0160 0172 [ E165B5A37371CDF59ECC24C52275EF4E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\content_filtering_meta.dll
12:36:46.0160 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\content_filtering_meta.dll - ok
12:36:46.0160 0172 [ 208881D39A2E0ACF68DCC560F4D778D9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_meta.dll
12:36:46.0160 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_meta.dll - ok
12:36:46.0160 0172 [ 29DD01CC4F0FD9A68E674EA7E7225692 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_meta.dll
12:36:46.0160 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_meta.dll - ok
12:36:46.0176 0172 [ BCB0244F8F1D90B21CF519932E0E31EB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_meta.dll
12:36:46.0176 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\app_core_meta.dll - ok
12:36:46.0176 0172 [ 1E629D6189495F8D560B783B2DBC13F9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\product_metainfo.dll
12:36:46.0176 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\product_metainfo.dll - ok
12:36:46.0191 0172 [ 06096EF9878350320FD29416DA0B8E05 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_meta.dll
12:36:46.0191 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_meta.dll - ok
12:36:46.0191 0172 [ F1D08B47C442015B0BFF688861E696B7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_meta.dll
12:36:46.0191 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_meta.dll - ok
12:36:46.0191 0172 [ 609BAE4F11DC39A9B97FFEA42C8A42B5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_meta.dll
12:36:46.0191 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_meta.dll - ok
12:36:46.0207 0172 [ ED1B8267952CE1D3BF33EEF74F06E909 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp_meta.dll
12:36:46.0207 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp_meta.dll - ok
12:36:46.0207 0172 [ 877F3223B5061EA6684860184BA28C7C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\instrumental_meta.dll
12:36:46.0207 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\instrumental_meta.dll - ok
12:36:46.0223 0172 [ 84AE2D45E2AACF836BEA55EF19416AD0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\storage.dll
12:36:46.0223 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\storage.dll - ok
12:36:46.0223 0172 [ 0C500A5719E998DD9535625470AD33A7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ichecker.dll
12:36:46.0223 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ichecker.dll - ok
12:36:46.0223 0172 [ 16A5CC62F79A32A974B55110A898945C ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
12:36:46.0223 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
12:36:46.0238 0172 [ 1210635FE7BB2DCDB87163DD4436D3FC ] C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll
12:36:46.0238 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\STDisks.dll - ok
12:36:46.0238 0172 [ E2D9D08FE16AD85EBB9B09016B8BCDA2 ] C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll
12:36:46.0238 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\CSTError.dll - ok
12:36:46.0254 0172 [ 41A2BD933772A423D76FC47103506D49 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll
12:36:46.0254 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\STString.dll - ok
12:36:46.0254 0172 [ E4913D50B902E69814DAB9921D4A3283 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll
12:36:46.0254 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\STSystems.dll - ok
12:36:46.0254 0172 [ 2B18B181DB588112BF2C53667892C918 ] C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
12:36:46.0254 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll - ok
12:36:46.0269 0172 [ 634C04EB2A7F58B65D0F5DBF9FD5F784 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
12:36:46.0269 0172 C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll - ok
12:36:46.0269 0172 [ 6BD79C3EF6B8AC9BB0B83E0F15478572 ] C:\Program Files (x86)\Common Files\supportsoft\bin\sprtlisten.exe
12:36:46.0269 0172 C:\Program Files (x86)\Common Files\supportsoft\bin\sprtlisten.exe - ok
12:36:46.0285 0172 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
12:36:46.0285 0172 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
12:36:46.0285 0172 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
12:36:46.0285 0172 C:\Windows\SysWOW64\netapi32.dll - ok
12:36:46.0301 0172 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
12:36:46.0301 0172 C:\Windows\SysWOW64\netutils.dll - ok
12:36:46.0301 0172 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
12:36:46.0301 0172 C:\Windows\SysWOW64\srvcli.dll - ok
12:36:46.0301 0172 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
12:36:46.0301 0172 C:\Windows\SysWOW64\wkscli.dll - ok
12:36:46.0316 0172 [ 557A086A4659799D63A9CE474ADFEBE8 ] C:\Windows\SysWOW64\urlmon.dll
12:36:46.0316 0172 C:\Windows\SysWOW64\urlmon.dll - ok
12:36:46.0316 0172 [ 42C671E0525618E23371D0E68282F37C ] C:\Windows\SysWOW64\wininet.dll
12:36:46.0316 0172 C:\Windows\SysWOW64\wininet.dll - ok
12:36:46.0316 0172 [ C5D48985BADF6CFEDCBCCDD5D92F526D ] C:\Windows\SysWOW64\iertutil.dll
12:36:46.0316 0172 C:\Windows\SysWOW64\iertutil.dll - ok
12:36:46.0332 0172 [ E75EEEB7C0164A4E1F59FC2FB5AB2A40 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp.dll
12:36:46.0332 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klifpp.dll - ok
12:36:46.0332 0172 [ E076FE9C1DD7930B404B5B9D28532BEF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_facade.dll
12:36:46.0332 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_facade.dll - ok
12:36:46.0332 0172 [ 5F0AB451A5CE9C898B92BEBA30C32AD9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\acassembler.dll
12:36:46.0332 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\acassembler.dll - ok
12:36:46.0347 0172 [ 1307377AC5238074C5F9169FEF7967B6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahum.dll
12:36:46.0347 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahum.dll - ok
12:36:46.0347 0172 [ D9C4814CAF57E178BC5D578EB9638638 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahcomm.dll
12:36:46.0347 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahcomm.dll - ok
12:36:46.0363 0172 [ 10010355D9EBD7C0718D1D84DF978539 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahrule.dll
12:36:46.0363 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ckahrule.dll - ok
12:36:46.0363 0172 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
12:36:46.0363 0172 C:\Windows\System32\IDStore.dll - ok
12:36:46.0363 0172 [ 517110BD83835338C037269E603DB55D ] C:\Windows\System32\taskhost.exe
12:36:46.0363 0172 C:\Windows\System32\taskhost.exe - ok
12:36:46.0379 0172 [ D630B6F2E8379B6F10DC16E82A426552 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
12:36:46.0379 0172 C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe - ok
12:36:46.0379 0172 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
12:36:46.0379 0172 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
12:36:46.0379 0172 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
12:36:46.0379 0172 C:\Windows\SysWOW64\wbemcomn.dll - ok
12:36:46.0394 0172 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
12:36:46.0394 0172 C:\Windows\SysWOW64\winnsi.dll - ok
12:36:46.0394 0172 [ 2650E684B396F5067DA3550985B8AB4D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\thpimpl.ppl
12:36:46.0394 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\thpimpl.ppl - ok
12:36:46.0410 0172 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
12:36:46.0410 0172 C:\Windows\System32\AtBroker.exe - ok
12:36:46.0410 0172 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
12:36:46.0410 0172 C:\Windows\System32\drivers\srvnet.sys - ok
12:36:46.0410 0172 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
12:36:46.0410 0172 C:\Windows\System32\drprov.dll - ok
12:36:46.0425 0172 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
12:36:46.0425 0172 C:\Windows\System32\mpr.dll - ok
12:36:46.0425 0172 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtsched.dll
12:36:46.0425 0172 C:\Program Files (x86)\Dell\DellComms\bin\sprtsched.dll - ok
12:36:46.0425 0172 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
12:36:46.0425 0172 C:\Windows\System32\ntlanman.dll - ok
12:36:46.0441 0172 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
12:36:46.0441 0172 C:\Windows\System32\PlaySndSrv.dll - ok
12:36:46.0441 0172 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
12:36:46.0441 0172 C:\Windows\SysWOW64\winsta.dll - ok
12:36:46.0457 0172 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
12:36:46.0457 0172 C:\Windows\System32\davclnt.dll - ok
12:36:46.0457 0172 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
12:36:46.0457 0172 C:\Windows\System32\drivers\tcpipreg.sys - ok
12:36:46.0457 0172 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
12:36:46.0457 0172 C:\Windows\System32\sysmain.dll - ok
12:36:46.0472 0172 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
12:36:46.0472 0172 C:\Windows\System32\davhlpr.dll - ok
12:36:46.0472 0172 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
12:36:46.0472 0172 C:\Windows\System32\tapisrv.dll - ok
12:36:46.0472 0172 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
12:36:46.0472 0172 C:\Windows\System32\cscapi.dll - ok
12:36:46.0488 0172 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
12:36:46.0488 0172 C:\Windows\System32\MsCtfMonitor.dll - ok
12:36:46.0488 0172 [ 2E648163254233755035B46DD7B89123 ] C:\Windows\System32\termsrv.dll
12:36:46.0488 0172 C:\Windows\System32\termsrv.dll - ok
12:36:46.0503 0172 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
12:36:46.0503 0172 C:\Windows\System32\msutb.dll - ok
12:36:46.0503 0172 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
12:36:46.0503 0172 C:\Windows\System32\HotStartUserAgent.dll - ok
12:36:46.0519 0172 [ 7E236CC26FF0C2513819FA453E2C5371 ] C:\Windows\System32\icaapi.dll
12:36:46.0519 0172 C:\Windows\System32\icaapi.dll - ok
12:36:46.0519 0172 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
12:36:46.0519 0172 C:\Windows\System32\trkwks.dll - ok
12:36:46.0535 0172 [ CF318F60A84F15AF352439465A8D05F4 ] C:\Program Files\Windows Defender\MpSvc.dll
12:36:46.0535 0172 C:\Program Files\Windows Defender\MpSvc.dll - ok
12:36:46.0535 0172 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
12:36:46.0535 0172 C:\Windows\System32\wbem\WMIsvc.dll - ok
12:36:46.0535 0172 [ ADF3E771F429940E762AC097F5A54EAF ] C:\Program Files\Windows Defender\MpClient.dll
12:36:46.0535 0172 C:\Program Files\Windows Defender\MpClient.dll - ok
12:36:46.0550 0172 [ 69BF00687AD5844FE370E5D8913CCC6C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\propmap.ppl
12:36:46.0550 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\propmap.ppl - ok
12:36:46.0550 0172 [ BDED0A1B4FDEC26B2B5A8D7D443094E4 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\tm.ppl
12:36:46.0550 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\tm.ppl - ok
12:36:46.0566 0172 [ 0403B642D028217D374C2D2226223B26 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dtreg.ppl
12:36:46.0566 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dtreg.ppl - ok
12:36:46.0566 0172 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
12:36:46.0566 0172 C:\Windows\System32\wiaservc.dll - ok
12:36:46.0566 0172 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell\DellComms\bin\sprtfod.dll
12:36:46.0566 0172 C:\Program Files (x86)\Dell\DellComms\bin\sprtfod.dll - ok
12:36:46.0581 0172 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
12:36:46.0581 0172 C:\Windows\System32\wbemcomn.dll - ok
12:36:46.0581 0172 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
12:36:46.0581 0172 C:\Windows\System32\taskeng.exe - ok
12:36:46.0581 0172 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
12:36:46.0581 0172 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
12:36:46.0597 0172 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
12:36:46.0597 0172 C:\Windows\System32\wbem\WinMgmtR.dll - ok
12:36:46.0597 0172 [ 7CA84845429BE37659390949CDD732C0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\bl.ppl
12:36:46.0597 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\bl.ppl - ok
12:36:46.0613 0172 [ 6440E46B3F50FAC938361626D0512F85 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libcurl.dll
12:36:46.0613 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libcurl.dll - ok
12:36:46.0613 0172 [ B3E7454680097B5A5464C53A3B912FCA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libeay32.dll
12:36:46.0613 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\libeay32.dll - ok
12:36:46.0628 0172 [ 8E6A5D97CFFAE47FD096B97DE2C6D0FF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ssleay32.dll
12:36:46.0628 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ssleay32.dll - ok
12:36:46.0628 0172 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
12:36:46.0628 0172 C:\Windows\SysWOW64\Wldap32.dll - ok
12:36:46.0644 0172 [ A00FA077D08FE1893B15B2AC61ADDDA7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wmihlpr.ppl
12:36:46.0644 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wmihlpr.ppl - ok
12:36:46.0644 0172 [ 800E9F862C176ECEB57547D9C1B2E152 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\regmap.ppl
12:36:46.0644 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\regmap.ppl - ok
12:36:46.0659 0172 [ 4A533BBB6F84D7EDD6ACB01B0E17D536 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\vercheck.ppl
12:36:46.0659 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\vercheck.ppl - ok
12:36:46.0659 0172 [ 35659F096711725887D1674395937917 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\localization_manager.dll
12:36:46.0659 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\localization_manager.dll - ok
12:36:46.0659 0172 [ 9912C252C5E4D3C338DF83D751DF99DA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threats_disinfection.dll
12:36:46.0659 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threats_disinfection.dll - ok
12:36:46.0675 0172 [ CDBE531B2DCBBFBBEEEE4A8D4E9F4744 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_facade.dll
12:36:46.0675 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\am_facade.dll - ok
12:36:46.0675 0172 [ D1ED6EDC7C84EEC38FA3235B4E898AF9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\crpthlpr.ppl
12:36:46.0675 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\crpthlpr.ppl - ok
12:36:46.0691 0172 [ 0048BFA62725F0B85798BD05876BEE50 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ndetect.ppl
12:36:46.0691 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ndetect.ppl - ok
12:36:46.0691 0172 [ 2756E5754EFD53CA896AC79DA0C4BFBE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\report.ppl
12:36:46.0691 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\report.ppl - ok
12:36:46.0706 0172 [ 5BEC497CBFE08084C29516E00F4850EC ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_facade.dll
12:36:46.0706 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_facade.dll - ok
12:36:46.0706 0172 [ FD0033EFFC0D1715A9CB9FC26B811518 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kpcengine.2.2.dll
12:36:46.0706 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kpcengine.2.2.dll - ok
12:36:46.0722 0172 [ 1D3FF0ADFF08C3B0973DCCF410217953 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuin40.dll
12:36:46.0722 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuin40.dll - ok
12:36:46.0722 0172 [ ADA1971194495C3D0C42EE0DC8FA82F5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuuc40.dll
12:36:46.0722 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuuc40.dll - ok
12:36:46.0737 0172 [ 9D2695FDDD875009A50E231EBBECD694 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icudt40.dll
12:36:46.0737 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icudt40.dll - ok
12:36:46.0737 0172 [ 4180F793AFF75412907D8AD251B3BF39 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuio40.dll
12:36:46.0737 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icuio40.dll - ok
12:36:46.0753 0172 [ 74B20D05BAF57B2F1CBED6BD8390D6C6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\schedule.ppl
12:36:46.0753 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\schedule.ppl - ok
12:36:46.0753 0172 [ C705355FE7496096EC784AC55C6D36A0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\timer.ppl
12:36:46.0753 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\timer.ppl - ok
12:36:46.0753 0172 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
12:36:46.0753 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
12:36:46.0769 0172 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:36:46.0769 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
12:36:46.0769 0172 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
12:36:46.0769 0172 C:\Windows\System32\rasadhlp.dll - ok
12:36:46.0769 0172 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
12:36:46.0769 0172 C:\Windows\System32\umb.dll - ok
12:36:46.0784 0172 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
12:36:46.0784 0172 C:\Windows\System32\localspl.dll - ok
12:36:46.0784 0172 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
12:36:46.0784 0172 C:\Windows\System32\spoolss.dll - ok
12:36:46.0800 0172 [ 059B16DB7FD14D38B7F4E312D793B972 ] C:\Windows\System32\E_ILMFJA.DLL
12:36:46.0800 0172 C:\Windows\System32\E_ILMFJA.DLL - ok
12:36:46.0800 0172 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
12:36:46.0800 0172 C:\Windows\System32\PrintIsolationProxy.dll - ok
12:36:46.0800 0172 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
12:36:46.0800 0172 C:\Windows\System32\SensApi.dll - ok
12:36:46.0815 0172 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
12:36:46.0815 0172 C:\Windows\System32\winspool.drv - ok
12:36:46.0815 0172 [ 45EACD644454E1005F9CF9483A3E989E ] C:\Windows\System32\enppmon.dll
12:36:46.0815 0172 C:\Windows\System32\enppmon.dll - ok
12:36:46.0815 0172 [ 1658E808E4D4889C66DE47EC87F1DED1 ] C:\Windows\System32\msvcp60.dll
12:36:46.0815 0172 C:\Windows\System32\msvcp60.dll - ok
12:36:46.0831 0172 [ 544482D396F1A0C0337879847032FBB3 ] C:\Windows\System32\enpres.dll
12:36:46.0831 0172 C:\Windows\System32\enpres.dll - ok
12:36:46.0831 0172 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
12:36:46.0831 0172 C:\Windows\System32\FXSMON.dll - ok
12:36:46.0831 0172 [ 1A06BD406146AA8695BC68270FA84D23 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\reportdb.ppl
12:36:46.0831 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\reportdb.ppl - ok
12:36:46.0847 0172 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell\DellComms\bin\sprtsync.dll
12:36:46.0847 0172 C:\Program Files (x86)\Dell\DellComms\bin\sprtsync.dll - ok
12:36:46.0847 0172 [ 16A37E6E522EE1F2B1BDBD6A0BAF7C23 ] C:\Program Files (x86)\Dell\DellComms\bin\sprtupdate.dll
12:36:46.0847 0172 C:\Program Files (x86)\Dell\DellComms\bin\sprtupdate.dll - ok
12:36:46.0862 0172 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell\DellComms\bin\libeay32.dll
12:36:46.0862 0172 C:\Program Files (x86)\Dell\DellComms\bin\libeay32.dll - ok
12:36:46.0862 0172 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
12:36:46.0862 0172 C:\Windows\SysWOW64\msi.dll - ok
12:36:46.0878 0172 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
12:36:46.0878 0172 C:\Windows\System32\wbem\fastprox.dll - ok
12:36:46.0878 0172 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
12:36:46.0878 0172 C:\Windows\System32\ntdsapi.dll - ok
12:36:46.0893 0172 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
12:36:46.0893 0172 C:\Windows\System32\wbem\wbemprox.dll - ok
12:36:46.0893 0172 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
12:36:46.0893 0172 C:\Windows\System32\wbem\wbemcore.dll - ok
12:36:46.0893 0172 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
12:36:46.0893 0172 C:\Windows\System32\wbem\esscli.dll - ok
12:36:46.0909 0172 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
12:36:46.0909 0172 C:\Windows\System32\wbem\wbemsvc.dll - ok
12:36:46.0909 0172 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
12:36:46.0909 0172 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
12:36:46.0925 0172 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
12:36:46.0925 0172 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
12:36:46.0925 0172 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
12:36:46.0925 0172 C:\Windows\SysWOW64\ntdsapi.dll - ok
12:36:46.0925 0172 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
12:36:46.0925 0172 C:\Windows\System32\wbem\wmiutils.dll - ok
12:36:46.0940 0172 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
12:36:46.0940 0172 C:\Windows\System32\wiatrace.dll - ok
12:36:46.0940 0172 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
12:36:46.0940 0172 C:\Windows\System32\wbem\repdrvfs.dll - ok
12:36:46.0956 0172 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
12:36:46.0956 0172 C:\Windows\SysWOW64\NapiNSP.dll - ok
12:36:46.0956 0172 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
12:36:46.0956 0172 C:\Windows\SysWOW64\nlaapi.dll - ok
12:36:46.0956 0172 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
12:36:46.0956 0172 C:\Windows\SysWOW64\pnrpnsp.dll - ok
12:36:46.0971 0172 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
12:36:46.0971 0172 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
12:36:46.0971 0172 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
12:36:46.0971 0172 C:\Windows\SysWOW64\dnsapi.dll - ok
12:36:46.0971 0172 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
12:36:46.0971 0172 C:\Windows\SysWOW64\winrnr.dll - ok
12:36:46.0987 0172 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
12:36:46.0987 0172 C:\Windows\SysWOW64\psapi.dll - ok
12:36:46.0987 0172 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
12:36:46.0987 0172 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
12:36:47.0003 0172 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
12:36:47.0003 0172 C:\Windows\System32\esent.dll - ok
12:36:47.0003 0172 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
12:36:47.0003 0172 C:\Windows\SysWOW64\rasadhlp.dll - ok
12:36:47.0003 0172 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
12:36:47.0003 0172 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
12:36:47.0018 0172 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
12:36:47.0018 0172 C:\Windows\System32\ncobjapi.dll - ok
12:36:47.0018 0172 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
12:36:47.0018 0172 C:\Windows\System32\wbem\wbemess.dll - ok
12:36:47.0018 0172 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
12:36:47.0018 0172 C:\Windows\System32\TSChannel.dll - ok
12:36:47.0034 0172 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
12:36:47.0034 0172 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
12:36:47.0034 0172 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
12:36:47.0034 0172 C:\Windows\System32\wbem\cimwin32.dll - ok
12:36:47.0049 0172 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
12:36:47.0049 0172 C:\Windows\System32\framedynos.dll - ok
12:36:47.0049 0172 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
12:36:47.0049 0172 C:\Windows\System32\wmi.dll - ok
12:36:47.0065 0172 [ 5225207BDE8C090CE92A18C61180650C ] C:\Windows\System32\vdsldr.exe
12:36:47.0065 0172 C:\Windows\System32\vdsldr.exe - ok
12:36:47.0065 0172 [ B6F9B45112E56992EF3EFA369FB7F047 ] C:\Windows\System32\vdsutil.dll
12:36:47.0065 0172 C:\Windows\System32\vdsutil.dll - ok
12:36:47.0065 0172 [ 94082E1E52D8BC63F4D6F57E8CD4E4F9 ] C:\Windows\System32\vds_ps.dll
12:36:47.0065 0172 C:\Windows\System32\vds_ps.dll - ok
12:36:47.0081 0172 [ F509B44D94DB9C832CA26297BE0CC04D ] C:\Windows\SysWOW64\vds_ps.dll
12:36:47.0081 0172 C:\Windows\SysWOW64\vds_ps.dll - ok
12:36:47.0081 0172 [ FE05D03B73000CFF476E1D29109F3A84 ] C:\Program Files\Windows Defender\MpEvMsg.dll
12:36:47.0081 0172 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
12:36:47.0096 0172 [ 4FDFA3F219692D17011BF1B428857C1E ] C:\Program Files\Windows Defender\MpRTP.dll
12:36:47.0096 0172 C:\Program Files\Windows Defender\MpRTP.dll - ok
12:36:47.0096 0172 [ FBD879D17B26D49DD7A48FF58062FAE6 ] C:\Windows\System32\tdh.dll
12:36:47.0096 0172 C:\Windows\System32\tdh.dll - ok
12:36:47.0112 0172 [ D527EF4364D2D00443470940B177EAD4 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpengine.dll
12:36:47.0112 0172 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpengine.dll - ok
12:36:47.0112 0172 [ B144A2223EF11ED42310124A7839258E ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpasbase.vdm
12:36:47.0112 0172 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpasbase.vdm - ok
12:36:47.0127 0172 [ 9092F57AFC5328F9F98F0936CB4AD391 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpasdlta.vdm
12:36:47.0127 0172 C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{B7F045CF-3FC7-4832-B2E4-72C8EB7C8836}\mpasdlta.vdm - ok
12:36:47.0127 0172 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
12:36:47.0127 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
12:36:47.0127 0172 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
12:36:47.0127 0172 C:\Windows\System32\NapiNSP.dll - ok
12:36:47.0143 0172 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
12:36:47.0143 0172 C:\Windows\System32\tcpmon.dll - ok
12:36:47.0143 0172 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
12:36:47.0143 0172 C:\Windows\System32\pnrpnsp.dll - ok
12:36:47.0159 0172 [ 4C83116AAD8F84B1F97E9EFAF8BF3BCF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksnhelper.dll
12:36:47.0159 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksnhelper.dll - ok
12:36:47.0159 0172 [ B729D7178BB4E5A8C6626EB028CF7DE8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\packed_io.dll
12:36:47.0159 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\packed_io.dll - ok
12:36:47.0174 0172 [ E6B0D195113EBB83AF831A041D6168B8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\processmonitor.dll
12:36:47.0174 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\processmonitor.dll - ok
12:36:47.0174 0172 [ 102D12912CE68C4535C196094D504CCB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\excludemanager.dll
12:36:47.0174 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\excludemanager.dll - ok
12:36:47.0174 0172 [ 31328123BF7581298BFC4E46188A58C6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sfdb.ppl
12:36:47.0174 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sfdb.ppl - ok
12:36:47.0190 0172 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
12:36:47.0190 0172 C:\Windows\System32\snmpapi.dll - ok
12:36:47.0190 0172 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
12:36:47.0190 0172 C:\Windows\System32\usbmon.dll - ok
12:36:47.0205 0172 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
12:36:47.0205 0172 C:\Windows\System32\wsnmp32.dll - ok
12:36:47.0205 0172 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
12:36:47.0205 0172 C:\Windows\System32\WSDMon.dll - ok
12:36:47.0221 0172 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
12:36:47.0221 0172 C:\Windows\System32\fdPnp.dll - ok
12:36:47.0221 0172 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
12:36:47.0221 0172 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
12:36:47.0221 0172 [ 548CB980D7876E207CC9F8B60C1587A3 ] C:\Windows\System32\win32spl.dll
12:36:47.0221 0172 C:\Windows\System32\win32spl.dll - ok
12:36:47.0237 0172 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
12:36:47.0237 0172 C:\Windows\System32\inetpp.dll - ok
12:36:47.0237 0172 [ 89231F82DE33B0B57B14BE21D231AF65 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\format_recognizer.dll
12:36:47.0237 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\format_recognizer.dll - ok
12:36:47.0252 0172 [ 93BB66044FA76734E882C6F3E8EE1900 ] C:\Program Files\Windows Defender\MsMpLics.dll
12:36:47.0252 0172 C:\Program Files\Windows Defender\MsMpLics.dll - ok
12:36:47.0252 0172 [ 0F16777416E13F4C412019CEC3C3345C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lic.ppl
12:36:47.0252 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lic.ppl - ok
12:36:47.0252 0172 [ 218A400108F280428FA22282D3268BBC ] C:\Windows\System32\wscapi.dll
12:36:47.0252 0172 C:\Windows\System32\wscapi.dll - ok
12:36:47.0268 0172 [ 97B3203F623B863926CE5F4D3057AE9E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cbi.dll
12:36:47.0268 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cbi.dll - ok
12:36:47.0268 0172 [ 1A5CA707943EFBCACCB2652149B793F6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\hashmd5.ppl
12:36:47.0268 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\hashmd5.ppl - ok
12:36:47.0283 0172 [ B84E2D174DC84916A536572BB8F691A8 ] C:\Windows\System32\wscisvif.dll
12:36:47.0283 0172 C:\Windows\System32\wscisvif.dll - ok
12:36:47.0283 0172 [ 6C1E3C43B35268C17833244C8ED96430 ] C:\Windows\System32\wscproxystub.dll
12:36:47.0283 0172 C:\Windows\System32\wscproxystub.dll - ok
12:36:47.0299 0172 [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:36:47.0299 0172 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
12:36:47.0299 0172 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll
12:36:47.0299 0172 C:\Program Files (x86)\Google\Update\1.3.21.123\goopdate.dll - ok
12:36:47.0315 0172 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
12:36:47.0315 0172 C:\Windows\System32\wer.dll - ok
12:36:47.0315 0172 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
12:36:47.0315 0172 C:\Windows\System32\WinSCard.dll - ok
12:36:47.0330 0172 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
12:36:47.0330 0172 C:\Windows\System32\iphlpsvc.dll - ok
12:36:47.0330 0172 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
12:36:47.0330 0172 C:\Windows\System32\sqmapi.dll - ok
12:36:47.0346 0172 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
12:36:47.0346 0172 C:\Windows\System32\wdscore.dll - ok
12:36:47.0346 0172 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
12:36:47.0346 0172 C:\Windows\System32\eappprxy.dll - ok
12:36:47.0346 0172 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
12:36:47.0346 0172 C:\Windows\System32\rasmans.dll - ok
12:36:47.0361 0172 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
12:36:47.0361 0172 C:\Windows\System32\rastapi.dll - ok
12:36:47.0361 0172 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
12:36:47.0361 0172 C:\Windows\System32\tapi32.dll - ok
12:36:47.0377 0172 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
12:36:47.0377 0172 C:\Windows\System32\netcfgx.dll - ok
12:36:47.0377 0172 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
12:36:47.0377 0172 C:\Windows\System32\hnetcfg.dll - ok
12:36:47.0377 0172 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
12:36:47.0377 0172 C:\Windows\System32\nci.dll - ok
12:36:47.0393 0172 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
12:36:47.0393 0172 C:\Windows\System32\unimdm.tsp - ok
12:36:47.0393 0172 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
12:36:47.0393 0172 C:\Windows\System32\uniplat.dll - ok
12:36:47.0408 0172 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
12:36:47.0408 0172 C:\Windows\System32\kmddsp.tsp - ok
12:36:47.0408 0172 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
12:36:47.0408 0172 C:\Windows\System32\ndptsp.tsp - ok
12:36:47.0424 0172 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
12:36:47.0424 0172 C:\Windows\System32\hidphone.tsp - ok
12:36:47.0424 0172 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
12:36:47.0424 0172 C:\Windows\System32\winmm.dll - ok
12:36:47.0439 0172 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
12:36:47.0439 0172 C:\Windows\System32\rasppp.dll - ok
12:36:47.0439 0172 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
12:36:47.0439 0172 C:\Windows\System32\eappcfg.dll - ok
12:36:47.0439 0172 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
12:36:47.0439 0172 C:\Windows\System32\vpnike.dll - ok
12:36:47.0455 0172 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
12:36:47.0455 0172 C:\Windows\System32\raschap.dll - ok
12:36:47.0455 0172 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
12:36:47.0455 0172 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
12:36:47.0471 0172 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
12:36:47.0471 0172 C:\Windows\SysWOW64\imagehlp.dll - ok
12:36:47.0471 0172 [ 591FE0A6CEB19BF886CEB1331F591940 ] C:\Windows\SysWOW64\ncrypt.dll
12:36:47.0471 0172 C:\Windows\SysWOW64\ncrypt.dll - ok
12:36:47.0486 0172 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
12:36:47.0486 0172 C:\Windows\SysWOW64\bcrypt.dll - ok
12:36:47.0486 0172 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
12:36:47.0486 0172 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
12:36:47.0486 0172 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
12:36:47.0486 0172 C:\Windows\SysWOW64\gpapi.dll - ok
12:36:47.0502 0172 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
12:36:47.0502 0172 C:\Windows\SysWOW64\cryptnet.dll - ok
12:36:47.0502 0172 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
12:36:47.0502 0172 C:\Windows\SysWOW64\credssp.dll - ok
12:36:47.0517 0172 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
12:36:47.0517 0172 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
12:36:47.0517 0172 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
12:36:47.0517 0172 C:\Windows\SysWOW64\wship6.dll - ok
12:36:47.0517 0172 [ 08F0BE836428436724EE15964AE8A2E1 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
12:36:47.0517 0172 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
12:36:47.0533 0172 [ 0B2D65FDDE31069299AA6330F359FF9C ] C:\Windows\System32\msxml3.dll
12:36:47.0533 0172 C:\Windows\System32\msxml3.dll - ok
12:36:47.0533 0172 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
12:36:47.0533 0172 C:\Windows\System32\dssenh.dll - ok
12:36:47.0549 0172 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
12:36:47.0549 0172 C:\Windows\System32\drivers\srv2.sys - ok
12:36:47.0549 0172 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
12:36:47.0549 0172 C:\Windows\System32\drivers\srv.sys - ok
12:36:47.0549 0172 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
12:36:47.0549 0172 C:\Windows\System32\ipnathlp.dll - ok
12:36:47.0564 0172 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
12:36:47.0564 0172 C:\Windows\System32\mprapi.dll - ok
12:36:47.0580 0172 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
12:36:47.0580 0172 C:\Windows\System32\netshell.dll - ok
12:36:47.0580 0172 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
12:36:47.0580 0172 C:\Windows\System32\srvsvc.dll - ok
12:36:47.0595 0172 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
12:36:47.0595 0172 C:\Windows\System32\browser.dll - ok
12:36:47.0595 0172 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
12:36:47.0595 0172 C:\Windows\System32\clusapi.dll - ok
12:36:47.0611 0172 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
12:36:47.0611 0172 C:\Windows\System32\netmsg.dll - ok
12:36:47.0611 0172 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
12:36:47.0611 0172 C:\Windows\System32\sscore.dll - ok
12:36:47.0611 0172 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
12:36:47.0611 0172 C:\Windows\System32\resutils.dll - ok
12:36:47.0627 0172 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
12:36:47.0627 0172 C:\Windows\System32\winrnr.dll - ok
12:36:47.0627 0172 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
12:36:47.0627 0172 C:\Windows\SysWOW64\cscapi.dll - ok
12:36:47.0627 0172 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
12:36:47.0627 0172 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
12:36:47.0642 0172 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
12:36:47.0642 0172 C:\Windows\SysWOW64\ntmarta.dll - ok
12:36:47.0642 0172 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
12:36:47.0642 0172 C:\Windows\SysWOW64\rasapi32.dll - ok
12:36:47.0658 0172 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
12:36:47.0658 0172 C:\Windows\SysWOW64\rasman.dll - ok
12:36:47.0658 0172 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
12:36:47.0658 0172 C:\Windows\SysWOW64\rtutils.dll - ok
12:36:47.0673 0172 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
12:36:47.0673 0172 C:\Windows\SysWOW64\netprofm.dll - ok
12:36:47.0673 0172 [ 8D6B481601D01A456E75C3210F1830BE ] C:\Windows\System32\vds.exe
12:36:47.0673 0172 C:\Windows\System32\vds.exe - ok
12:36:47.0673 0172 [ 020DDBA420E020F84BDEDCC8C65B3A56 ] C:\Windows\System32\osuninst.dll
12:36:47.0673 0172 C:\Windows\System32\osuninst.dll - ok
12:36:47.0689 0172 [ 3D1AE0543DD9FBA55409BF0A5103CA3D ] C:\Windows\System32\uexfat.dll
12:36:47.0689 0172 C:\Windows\System32\uexfat.dll - ok
12:36:47.0689 0172 [ 1EA7969E3271CBC59E1730697DC74682 ] C:\Windows\System32\qmgr.dll
12:36:47.0689 0172 C:\Windows\System32\qmgr.dll - ok
12:36:47.0689 0172 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
12:36:47.0689 0172 C:\Windows\System32\wdi.dll - ok
12:36:47.0705 0172 [ EE11A3F03D8B801B721BC6D0089BDD9C ] C:\Windows\System32\ulib.dll
12:36:47.0705 0172 C:\Windows\System32\ulib.dll - ok
12:36:47.0705 0172 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
12:36:47.0705 0172 C:\Windows\System32\diagperf.dll - ok
12:36:47.0720 0172 [ E060CAF6D6C303A2C9BC13435F7F81A1 ] C:\Windows\System32\ifsutil.dll
12:36:47.0720 0172 C:\Windows\System32\ifsutil.dll - ok
12:36:47.0720 0172 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
12:36:47.0720 0172 C:\Windows\System32\perftrack.dll - ok
12:36:47.0736 0172 [ C3804346CDF9A8744084EEBA6BA739AF ] C:\Windows\System32\uudf.dll
12:36:47.0736 0172 C:\Windows\System32\uudf.dll - ok
12:36:47.0736 0172 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
12:36:47.0736 0172 C:\Windows\System32\wpdbusenum.dll - ok
12:36:47.0751 0172 [ D9431DCF90B0253773F51FDEFE7FD42F ] C:\Windows\System32\bitsigd.dll
12:36:47.0751 0172 C:\Windows\System32\bitsigd.dll - ok
12:36:47.0751 0172 [ 29409ED7400CA5BCCC30C0EE5147A60D ] C:\Windows\System32\bitsperf.dll
12:36:47.0751 0172 C:\Windows\System32\bitsperf.dll - ok
12:36:47.0751 0172 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
12:36:47.0751 0172 C:\Windows\System32\upnp.dll - ok
12:36:47.0767 0172 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
12:36:47.0767 0172 C:\Windows\System32\PortableDeviceApi.dll - ok
12:36:47.0767 0172 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
12:36:47.0767 0172 C:\Windows\System32\ssdpsrv.dll - ok
12:36:47.0783 0172 [ B4CE0CAB186EBF4DF54BD34B4F0C0A06 ] C:\Windows\System32\untfs.dll
12:36:47.0783 0172 C:\Windows\System32\untfs.dll - ok
12:36:47.0783 0172 [ CC37D9A25FF8D8CF12FC2F512C100F45 ] C:\Windows\System32\ufat.dll
12:36:47.0783 0172 C:\Windows\System32\ufat.dll - ok
12:36:47.0798 0172 [ 491DA8248209835532DAABF18B0215DA ] C:\Windows\System32\fmifs.dll
12:36:47.0798 0172 C:\Windows\System32\fmifs.dll - ok
12:36:47.0798 0172 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
12:36:47.0798 0172 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
12:36:47.0814 0172 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
12:36:47.0814 0172 C:\Windows\System32\Apphlpdm.dll - ok
12:36:47.0814 0172 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
12:36:47.0814 0172 C:\Windows\System32\pnpts.dll - ok
12:36:47.0829 0172 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
12:36:47.0829 0172 C:\Windows\System32\npmproxy.dll - ok
12:36:47.0829 0172 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
12:36:47.0829 0172 C:\Windows\System32\radardt.dll - ok
12:36:47.0829 0172 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
12:36:47.0829 0172 C:\Windows\SysWOW64\npmproxy.dll - ok
12:36:47.0845 0172 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
12:36:47.0845 0172 C:\Windows\System32\drivers\WUDFRd.sys - ok
12:36:47.0845 0172 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
12:36:47.0845 0172 C:\Windows\System32\wdiasqmmodule.dll - ok
12:36:47.0845 0172 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
12:36:47.0845 0172 C:\Windows\System32\WUDFHost.exe - ok
12:36:47.0861 0172 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
12:36:47.0861 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
12:36:47.0861 0172 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
12:36:47.0861 0172 C:\Windows\System32\WUDFx.dll - ok
12:36:47.0861 0172 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
12:36:47.0861 0172 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
12:36:47.0876 0172 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
12:36:47.0876 0172 C:\Windows\System32\WMVCORE.DLL - ok
12:36:47.0876 0172 [ AC5DF873913B00E554D8F553459BC431 ] C:\Windows\System32\qmgrprxy.dll
12:36:47.0876 0172 C:\Windows\System32\qmgrprxy.dll - ok
12:36:47.0892 0172 [ 85B45B4B285B159ACDB355FC8C1E8925 ] C:\Windows\SysWOW64\qmgrprxy.dll
12:36:47.0892 0172 C:\Windows\SysWOW64\qmgrprxy.dll - ok
12:36:47.0892 0172 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
12:36:47.0892 0172 C:\Windows\System32\WMASF.DLL - ok
12:36:47.0892 0172 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
12:36:47.0892 0172 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
12:36:47.0907 0172 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
12:36:47.0907 0172 C:\Windows\System32\PortableDeviceTypes.dll - ok
12:36:47.0907 0172 [ 86F8145F5FD182F8C36337A351889F92 ] C:\Windows\System32\vdsdyn.dll
12:36:47.0907 0172 C:\Windows\System32\vdsdyn.dll - ok
12:36:47.0907 0172 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
12:36:47.0923 0172 C:\Windows\System32\IPSECSVC.DLL - ok
12:36:47.0923 0172 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
12:36:47.0923 0172 C:\Windows\System32\dimsjob.dll - ok
12:36:47.0939 0172 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
12:36:47.0939 0172 C:\Windows\System32\FwRemoteSvr.dll - ok
12:36:47.0939 0172 [ AC3D7EE5F9EC2AB4BE0CDDE362D026A4 ] C:\Windows\System32\vdsbas.dll
12:36:47.0939 0172 C:\Windows\System32\vdsbas.dll - ok
12:36:47.0939 0172 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
12:36:47.0939 0172 C:\Windows\System32\pautoenr.dll - ok
12:36:47.0954 0172 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
12:36:47.0954 0172 C:\Windows\SysWOW64\dbghelp.dll - ok
12:36:47.0954 0172 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
12:36:47.0954 0172 C:\Windows\System32\certcli.dll - ok
12:36:47.0970 0172 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
12:36:47.0970 0172 C:\Windows\System32\CertEnroll.dll - ok
12:36:47.0970 0172 [ F3D202F53A222D5F6944D459B73CF967 ] C:\Windows\System32\fltLib.dll
12:36:47.0970 0172 C:\Windows\System32\fltLib.dll - ok
12:36:47.0985 0172 [ D2D154D1842219A0620459C3C34EFD9D ] C:\Windows\System32\vdsvd.dll
12:36:47.0985 0172 C:\Windows\System32\vdsvd.dll - ok
12:36:47.0985 0172 [ BBB44E9207E7F5A8D931AA6C74962C77 ] C:\Windows\System32\virtdisk.dll
12:36:47.0985 0172 C:\Windows\System32\virtdisk.dll - ok
12:36:47.0985 0172 [ C418F8085C61D3B6911EE82157CA3775 ] C:\Windows\System32\hbaapi.dll
12:36:47.0985 0172 C:\Windows\System32\hbaapi.dll - ok
12:36:48.0001 0172 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
12:36:48.0001 0172 C:\Windows\System32\wbem\wmiprov.dll - ok
12:36:48.0001 0172 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
12:36:48.0001 0172 C:\Windows\SysWOW64\apphelp.dll - ok
12:36:48.0017 0172 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
12:36:48.0017 0172 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
12:36:48.0017 0172 [ 41938F2C1642459CBBA691B5DBD6395A ] C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
12:36:48.0017 0172 C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe - ok
12:36:48.0032 0172 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
12:36:48.0032 0172 C:\Windows\SysWOW64\mstask.dll - ok
12:36:48.0032 0172 [ E11E3F3BBEFDC5C0C160BE13B65E25E4 ] C:\Windows\System32\iscsidsc.dll
12:36:48.0032 0172 C:\Windows\System32\iscsidsc.dll - ok
12:36:48.0048 0172 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
12:36:48.0048 0172 C:\Windows\System32\dbghelp.dll - ok
12:36:48.0048 0172 [ 22D98BF27F3DAE2B3E9559B9C40D49A1 ] C:\Windows\System32\iscsium.dll
12:36:48.0048 0172 C:\Windows\System32\iscsium.dll - ok
12:36:48.0048 0172 [ 0577C58AEBBA4B6C6AA9224F6581DF27 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qb.ppl
12:36:48.0048 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qb.ppl - ok
12:36:48.0063 0172 [ 1A98C6BDE8E2FC093CFF2BE8DE6E9055 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threatsmanager.dll
12:36:48.0063 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\threatsmanager.dll - ok
12:36:48.0063 0172 [ CDAB8C6721D39B7D1A1C89575F5999DA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avs.ppl
12:36:48.0063 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avs.ppl - ok
12:36:48.0079 0172 [ 7418FBCE0863D8ED7966E0364D586644 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dmap.ppl
12:36:48.0079 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dmap.ppl - ok
12:36:48.0079 0172 [ AF8CAE18210E8ADF99AC346926EBEC0F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_client.dll
12:36:48.0079 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_client.dll - ok
12:36:48.0095 0172 [ 95C04EA043FDF5B055A02DB404EB2929 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\transport_provider.dll
12:36:48.0095 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\transport_provider.dll - ok
12:36:48.0095 0172 [ 1A452F4C88C4A1A1CDF6DF6AA75D681E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_agent.dll
12:36:48.0095 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ucp_agent.dll - ok
12:36:48.0110 0172 [ 473BAE7ED99FBB8E839B2BFA6B69F476 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\persistent_queue.dll
12:36:48.0110 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\persistent_queue.dll - ok
12:36:48.0110 0172 [ 012A22A626884CF63DC51792081DF46B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cryptostaticprovider.dll
12:36:48.0110 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cryptostaticprovider.dll - ok
12:36:48.0126 0172 [ 0A473BEFD39B78EDD82C2BDA84529ADA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
12:36:48.0126 0172 C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
12:36:48.0126 0172 [ 92DFF4EE3F31D4A8028788006D921D26 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\uds.dll.92dff4ee3f31d4a8028788006d921d26
12:36:48.0126 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\uds.dll.92dff4ee3f31d4a8028788006d921d26 - ok
12:36:48.0141 0172 [ C7E81BEE01AF0A4599865C8685990873 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\avengine.dll.c7e81bee01af0a4599865c8685990873
12:36:48.0141 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\avengine.dll.c7e81bee01af0a4599865c8685990873 - ok
12:36:48.0141 0172 [ E773ED0C888BA4CD62C96A5EE02DEC93 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\filesystem_services.dll
12:36:48.0141 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\filesystem_services.dll - ok
12:36:48.0157 0172 [ 5CAF4078292BFA90C1EAE266409C3F33 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavbase.kdl.5caf4078292bfa90c1eae266409c3f33
12:36:48.0157 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavbase.kdl.5caf4078292bfa90c1eae266409c3f33 - ok
12:36:48.0157 0172 [ 8633AB4B8B35E22D6268ED2381F99F5F ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavemu.kdl.8633ab4b8b35e22d6268ed2381f99f5f
12:36:48.0157 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavemu.kdl.8633ab4b8b35e22d6268ed2381f99f5f - ok
12:36:48.0173 0172 [ B8B315EA2256758159824D6FD35DF921 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kjim.kdl.b8b315ea2256758159824d6fd35df921
12:36:48.0173 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kjim.kdl.b8b315ea2256758159824d6fd35df921 - ok
12:36:48.0173 0172 [ 6B4C6ECEE30E9F6D4DB704D6CF13A8C0 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\mark.kdl.6b4c6ecee30e9f6d4db704d6cf13a8c0
12:36:48.0173 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\mark.kdl.6b4c6ecee30e9f6d4db704d6cf13a8c0 - ok
12:36:48.0188 0172 [ 317DF7C0EFF0939E6289F5C72F65BA51 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\vlns.kdl.317df7c0eff0939e6289f5c72f65ba51
12:36:48.0188 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\vlns.kdl.317df7c0eff0939e6289f5c72f65ba51 - ok
12:36:48.0188 0172 [ D8FB3E87A423BA9A64303A8AB742D96C ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\qscan.kdl.d8fb3e87a423ba9a64303a8ab742d96c
12:36:48.0188 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\qscan.kdl.d8fb3e87a423ba9a64303a8ab742d96c - ok
12:36:48.0204 0172 [ 7FC520E215B0B2B41FA2E224FE8F6030 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pbs.kdl.7fc520e215b0b2b41fa2e224fe8f6030
12:36:48.0204 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pbs.kdl.7fc520e215b0b2b41fa2e224fe8f6030 - ok
12:36:48.0204 0172 [ 15E9A31D0538E71B67C782508A43F542 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avzkrnl.dll
12:36:48.0204 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avzkrnl.dll - ok
12:36:48.0204 0172 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
12:36:48.0204 0172 C:\Windows\SysWOW64\comdlg32.dll - ok
12:36:48.0219 0172 [ 7B53984BB934E599A4E3668B2F678D48 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavsys.kdl.7b53984bb934e599a4e3668b2f678d48
12:36:48.0219 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\kavsys.kdl.7b53984bb934e599a4e3668b2f678d48 - ok
12:36:48.0219 0172 [ 92BAA7DEBEDC6EBE803BC14BC5180AB3 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\arkmon.kdl.92baa7debedc6ebe803bc14bc5180ab3
12:36:48.0219 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\arkmon.kdl.92baa7debedc6ebe803bc14bc5180ab3 - ok
12:36:48.0235 0172 [ 52DD0E9815202E771059F1C00AEF2B13 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\stat.ppl
12:36:48.0235 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\stat.ppl - ok
12:36:48.0235 0172 [ 208CC0625B984EFC896A093C8852692B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_facade.dll
12:36:48.0235 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ac_facade.dll - ok
12:36:48.0235 0172 [ 1C18C63FDBA6D5A6F5C1F6D8611DF731 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\procmon.ppl
12:36:48.0235 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\procmon.ppl - ok
12:36:48.0251 0172 [ 250E75C744E3AF7D35C10A2C76DB0BFD ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\memmon.dll
12:36:48.0251 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\memmon.dll - ok
12:36:48.0251 0172 [ 0030BD5DDB627ADDDF5C6D89506BD391 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\oas.ppl
12:36:48.0251 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\oas.ppl - ok
12:36:48.0266 0172 [ E2F65916C9455544A897B9671DBE42F7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\volenum.ppl
12:36:48.0266 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\volenum.ppl - ok
12:36:48.0266 0172 [ 5710F99DFD16D78E00742A0F6F49B5B1 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imc.ppl
12:36:48.0266 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imc.ppl - ok
12:36:48.0266 0172 [ 69FF7F62698BAAF40E83EDDB75A1B24A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mc.ppl
12:36:48.0266 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mc.ppl - ok
12:36:48.0282 0172 [ 776A9A2237047219E580DEBD8677A424 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ekasyswatch.dll
12:36:48.0282 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ekasyswatch.dll - ok
12:36:48.0282 0172 [ 7BA04BB0037563B55D8D4AD5425FEAC2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpscan.ppl
12:36:48.0282 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpscan.ppl - ok
12:36:48.0297 0172 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll
12:36:48.0297 0172 C:\Windows\System32\CertPolEng.dll - ok
12:36:48.0297 0172 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
12:36:48.0297 0172 C:\Windows\System32\userinit.exe - ok
12:36:48.0297 0172 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
12:36:48.0297 0172 C:\Windows\System32\dwm.exe - ok
12:36:48.0313 0172 [ 27F6DDC6995A53663D5DBE3D03738408 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\webnetstat.ppl
12:36:48.0313 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\webnetstat.ppl - ok
12:36:48.0313 0172 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
12:36:48.0313 0172 C:\Windows\System32\dwmcore.dll - ok
12:36:48.0313 0172 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
12:36:48.0313 0172 C:\Windows\System32\dwmredir.dll - ok
12:36:48.0329 0172 [ 467950E0AC09B19221DA33CF36530653 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\extlprtc.ppl
12:36:48.0329 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\extlprtc.ppl - ok
12:36:48.0329 0172 [ ADA3B055411DCE56062B97586745B394 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavasyswatch.dll.ada3b055411dce56062b97586745b394
12:36:48.0329 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\klavasyswatch.dll.ada3b055411dce56062b97586745b394 - ok
12:36:48.0344 0172 [ D750E3AC0595549B37EBC6D019873F5B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icqprtc.dll
12:36:48.0344 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\icqprtc.dll - ok
12:36:48.0344 0172 [ E1374D37477322D4956604711008C69D ] C:\Windows\System32\d3d10_1.dll
12:36:48.0344 0172 C:\Windows\System32\d3d10_1.dll - ok
12:36:48.0360 0172 [ 7E5447320423A77C168123F8277372AF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\uniarc.ppl
12:36:48.0360 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\uniarc.ppl - ok
12:36:48.0360 0172 [ 426BA4E737A7988FD1202AF2F2B2F4A6 ] C:\Windows\System32\d3d10_1core.dll
12:36:48.0360 0172 C:\Windows\System32\d3d10_1core.dll - ok
12:36:48.0375 0172 [ 0691E79EB581DB367826FD8E23E6A877 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\minizip.ppl
12:36:48.0375 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\minizip.ppl - ok
12:36:48.0375 0172 [ F404E59DB6A0F122AB26BF4F3E2FD0FA ] C:\Windows\System32\dxgi.dll
12:36:48.0375 0172 C:\Windows\System32\dxgi.dll - ok
12:36:48.0375 0172 [ 917CF3BFEC250EE36A1D2F6B4176F634 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cab.ppl
12:36:48.0375 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cab.ppl - ok
12:36:48.0391 0172 [ D88B83632EAF807E7C598597A2AB40EC ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\arj.ppl
12:36:48.0391 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\arj.ppl - ok
12:36:48.0391 0172 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
12:36:48.0391 0172 C:\Windows\explorer.exe - ok
12:36:48.0391 0172 [ AD976778C4B92F9EC4842295974E9BD9 ] C:\Windows\System32\d3d10level9.dll
12:36:48.0407 0172 C:\Windows\System32\d3d10level9.dll - ok
12:36:48.0407 0172 [ 0095B1EA8C9031761B12E1699D1159C2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\rar.ppl
12:36:48.0407 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\rar.ppl - ok
12:36:48.0407 0172 [ BB66D5BC3FCA2BAC155FD5AE95EFD209 ] C:\Windows\System32\igdumd64.dll
12:36:48.0407 0172 C:\Windows\System32\igdumd64.dll - ok
12:36:48.0422 0172 [ CCF7343CA7C0F0745096AA3ABD8DB04A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lha.ppl
12:36:48.0422 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\lha.ppl - ok
12:36:48.0422 0172 [ 0FC9074C30B9838A4AF677F7DE8A9641 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mdb.ppl
12:36:48.0422 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mdb.ppl - ok
12:36:48.0422 0172 [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6 ] C:\Windows\SysWOW64\mapi32.dll
12:36:48.0422 0172 C:\Windows\SysWOW64\mapi32.dll - ok
12:36:48.0438 0172 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
12:36:48.0438 0172 C:\Windows\SysWOW64\winmm.dll - ok
12:36:48.0438 0172 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
12:36:48.0438 0172 C:\Windows\System32\ExplorerFrame.dll - ok
12:36:48.0453 0172 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
12:36:48.0453 0172 C:\Windows\System32\uDWM.dll - ok
12:36:48.0453 0172 [ 2B37BF85F89DE45E6AC420F5DB5BFA5E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msoe.ppl
12:36:48.0453 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msoe.ppl - ok
12:36:48.0453 0172 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
12:36:48.0453 0172 C:\Windows\System32\EhStorShell.dll - ok
12:36:48.0469 0172 [ 9A9F9D2A7FF8BA975E6613E46017DC19 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\smtpprtc.ppl
12:36:48.0469 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\smtpprtc.ppl - ok
12:36:48.0469 0172 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
12:36:48.0469 0172 C:\Windows\System32\ntshrui.dll - ok
12:36:48.0485 0172 [ 9B812C9BF0DB58B5F4FA72781597C747 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mailmsg.ppl
12:36:48.0485 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mailmsg.ppl - ok
12:36:48.0485 0172 [ C4E34F094DED2432F04AB670F0F13A17 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_statistics.dll
12:36:48.0485 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ksn_statistics.dll - ok
12:36:48.0485 0172 [ 5D36DC0BD740BC9D5C5AEA9E6B8E67FE ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\bsshlp2.kdl.5d36dc0bd740bc9d5c5aea9e6b8e67fe
12:36:48.0485 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\bsshlp2.kdl.5d36dc0bd740bc9d5c5aea9e6b8e67fe - ok
12:36:48.0500 0172 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
12:36:48.0500 0172 C:\Windows\System32\IconCodecService.dll - ok
12:36:48.0500 0172 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
12:36:48.0500 0172 C:\Windows\System32\appinfo.dll - ok
12:36:48.0500 0172 [ 19CBE8982C18369A2AB10A1B6A6B3251 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\sys_critical_obj.dll
12:36:48.0500 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\sys_critical_obj.dll - ok
12:36:48.0516 0172 [ 2FCCDF17371E6C4B8085E32AE1D842CB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msnprtc.dll
12:36:48.0516 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\msnprtc.dll - ok
12:36:48.0516 0172 [ AC458E44089ABD7FCADAF66ED870252C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\trafmon2.ppl
12:36:48.0516 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\trafmon2.ppl - ok
12:36:48.0531 0172 [ CED8CC7E9AC262C46ED8B66072C6FBBC ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pop3prtc.ppl
12:36:48.0531 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\pop3prtc.ppl - ok
12:36:48.0531 0172 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
12:36:48.0531 0172 C:\Windows\SysWOW64\wshqos.dll - ok
12:36:48.0547 0172 [ F8BBA5F4356FC0114D4C9EBFA780647E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sc.ppl
12:36:48.0547 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\sc.ppl - ok
12:36:48.0547 0172 [ EF8C6D4B129CE6EDC78933B37EA21595 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_facade.dll
12:36:48.0547 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\plugins_facade.dll - ok
12:36:48.0547 0172 [ 78413ED46210C1A16F0D5C1EA30FC588 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_anti_malware_facade.dll
12:36:48.0547 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_anti_malware_facade.dll - ok
12:36:48.0563 0172 [ FD4226A989C3378EEBFC217DC98AF133 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\jbrprtc.dll
12:36:48.0563 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\jbrprtc.dll - ok
12:36:48.0563 0172 [ BE99D2031EB3AA6699EECCE74DF88B01 ] C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pdm.kdl.be99d2031eb3aa6699eecce74df88b01
12:36:48.0563 0172 C:\ProgramData\Kaspersky Lab\AVP13\Bases\Cache\pdm.kdl.be99d2031eb3aa6699eecce74df88b01 - ok
12:36:48.0578 0172 [ 58CB797C94BD07ABB1E309DE4DE505C5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imapprtc.ppl
12:36:48.0578 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imapprtc.ppl - ok
12:36:48.0578 0172 [ 3F39D46DAAC6316609F630C7BE5915BA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\appcat.ppl
12:36:48.0578 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\appcat.ppl - ok
12:36:48.0594 0172 [ 6C5EAD61EB2A70A70B9D61977465591D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\network_services.dll
12:36:48.0594 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\network_services.dll - ok
12:36:48.0594 0172 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
12:36:48.0594 0172 C:\Windows\System32\runonce.exe - ok
12:36:48.0594 0172 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
12:36:48.0594 0172 C:\Windows\SysWOW64\runonce.exe - ok
12:36:48.0609 0172 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
12:36:48.0609 0172 C:\Windows\SysWOW64\uxtheme.dll - ok
12:36:48.0609 0172 [ 93FDB0D9049B0B575A1C835664D7CD75 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ircprtc.dll
12:36:48.0609 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ircprtc.dll - ok
12:36:48.0625 0172 [ 7EDFDA27D9DBB338D06995788795BF9F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nntpprtc.ppl
12:36:48.0625 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\nntpprtc.ppl - ok
12:36:48.0625 0172 [ 507DDF77D31E963536A748CE48D6E669 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpanlz.ppl
12:36:48.0625 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\httpanlz.ppl - ok
12:36:48.0625 0172 [ 9F0CFFD667F5FDD67A46731CE7597E8B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\yhoprtc.dll
12:36:48.0625 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\yhoprtc.dll - ok
12:36:48.0641 0172 [ C307014C828006EB3A0BF6A74F1717D8 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\traffic_processing_product_facade.dll
12:36:48.0641 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\traffic_processing_product_facade.dll - ok
12:36:48.0641 0172 [ 551315671EB76C685A4CB13F1837E8AA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mmpprtc.dll
12:36:48.0641 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\mmpprtc.dll - ok
12:36:48.0656 0172 [ 91A8F92D4F9C57820C294ED2E36127A2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_prague_adapter.ppl
12:36:48.0656 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_prague_adapter.ppl - ok
12:36:48.0656 0172 [ 511AEA8DA75082728E52BBB012A8ACE7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\aphishex.ppl
12:36:48.0656 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\aphishex.ppl - ok
12:36:48.0672 0172 [ A87F26388E5A426823854E733F77FFCB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\office_antivirus_facade.dll
12:36:48.0672 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\office_antivirus_facade.dll - ok
12:36:48.0672 0172 [ A98C803229775DA4E17590FAB742E3AE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\swpragueplugin.dll
12:36:48.0672 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\swpragueplugin.dll - ok
12:36:48.0687 0172 [ A0EDB24A88A07263BF922F2939AAC065 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ftpprtc.dll
12:36:48.0687 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\ftpprtc.dll - ok
12:36:48.0687 0172 [ 5532BECA481B40DB38F2CA000086A7EB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_response_provider.dll
12:36:48.0687 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\cf_response_provider.dll - ok
12:36:48.0703 0172 [ 9BDEEA2C0F801412D3AEA8A6F6BF8D42 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\anti_phishing_http_filter.dll
12:36:48.0703 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\anti_phishing_http_filter.dll - ok
12:36:48.0703 0172 [ 331EAE0B28BFD9FCF0D2C2B7C8CCAD3F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dns_client.dll
12:36:48.0703 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dns_client.dll - ok
12:36:48.0719 0172 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
12:36:48.0719 0172 C:\Windows\SysWOW64\propsys.dll - ok
12:36:48.0719 0172 [ D6A8DF0FE5FF5656D2FD436C3CB1D1D1 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\proxydet.ppl
12:36:48.0719 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\proxydet.ppl - ok
12:36:48.0734 0172 [ C2E80F0F0B97F67A5995CDB63D91BC24 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater.dll
12:36:48.0734 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\updater.dll - ok
12:36:48.0734 0172 [ 7DD5EE010FBF4088156A3F3D747FF0E2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\diffs.dll
12:36:48.0734 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\diffs.dll - ok
12:36:48.0750 0172 [ 97ADBCD478DCB01FD7C15D50960F81E9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wdiskio.ppl
12:36:48.0750 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\wdiskio.ppl - ok
12:36:48.0750 0172 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
12:36:48.0750 0172 C:\Windows\SysWOW64\cmd.exe - ok
12:36:48.0765 0172 [ 3326166011C9BC13D6A8EFD856E9921C ] C:\Windows\System32\conhost.exe
12:36:48.0765 0172 C:\Windows\System32\conhost.exe - ok
12:36:48.0765 0172 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
12:36:48.0765 0172 C:\Windows\SysWOW64\winbrand.dll - ok
12:36:48.0781 0172 [ 37F358CBD2A1D82C56A542325DA6D368 ] C:\Windows\SysWOW64\ieframe.dll
12:36:48.0781 0172 C:\Windows\SysWOW64\ieframe.dll - ok
12:36:48.0781 0172 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
12:36:48.0781 0172 C:\Windows\SysWOW64\oleacc.dll - ok
12:36:48.0797 0172 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
12:36:48.0797 0172 C:\Windows\SysWOW64\shdocvw.dll - ok
12:36:48.0797 0172 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Users\Owner\AppData\Local\Temp\95EC9484-0CEA-4235-825C-52EFC73BC6CA.exe
12:36:48.0797 0172 C:\Users\Owner\AppData\Local\Temp\95EC9484-0CEA-4235-825C-52EFC73BC6CA.exe - ok
12:36:48.0812 0172 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
12:36:48.0812 0172 C:\Windows\SysWOW64\dwmapi.dll - ok
12:36:48.0812 0172 [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5 ] C:\Windows\SysWOW64\WindowsCodecs.dll
12:36:48.0812 0172 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
12:36:48.0812 0172 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
12:36:48.0812 0172 C:\Windows\SysWOW64\EhStorShell.dll - ok
12:36:48.0828 0172 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
12:36:48.0828 0172 C:\Windows\System32\aelupsvc.dll - ok
12:36:48.0828 0172 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
12:36:48.0828 0172 C:\Windows\SysWOW64\ntshrui.dll - ok
12:36:48.0843 0172 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
12:36:48.0843 0172 C:\Windows\SysWOW64\slc.dll - ok
12:36:48.0843 0172 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
12:36:48.0843 0172 C:\Windows\SysWOW64\imageres.dll - ok
12:36:48.0843 0172 [ 523CF74A52C9A1762DA8B83AEE734498 ] C:\Windows\SysWOW64\IconCodecService.dll
12:36:48.0843 0172 C:\Windows\SysWOW64\IconCodecService.dll - ok
12:36:48.0859 0172 [ 0ADC83218B66A6DB380C330836F3E36D ] C:\Windows\System32\drivers\fastfat.sys
12:36:48.0859 0172 C:\Windows\System32\drivers\fastfat.sys - ok
12:36:48.0859 0172 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
12:36:48.0859 0172 C:\Windows\SysWOW64\sfc.dll - ok
12:36:48.0875 0172 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
12:36:48.0875 0172 C:\Windows\SysWOW64\sfc_os.dll - ok
12:36:48.0875 0172 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
12:36:48.0875 0172 C:\Windows\SysWOW64\devrtl.dll - ok
12:36:48.0875 0172 [ D56C13F26ADCB3BC0455DB42883F6E7D ] C:\Windows\System32\iedkcs32.dll
12:36:48.0875 0172 C:\Windows\System32\iedkcs32.dll - ok
12:36:48.0890 0172 [ 6D220604AA4240303DD8DEAEAB428377 ] C:\Windows\System32\ie4uinit.exe
12:36:48.0890 0172 C:\Windows\System32\ie4uinit.exe - ok
12:36:48.0890 0172 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
12:36:48.0890 0172 C:\Windows\System32\timedate.cpl - ok
12:36:48.0906 0172 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
12:36:48.0906 0172 C:\Windows\System32\actxprxy.dll - ok
12:36:48.0906 0172 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
12:36:48.0906 0172 C:\Windows\System32\shdocvw.dll - ok
12:36:48.0906 0172 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
12:36:48.0906 0172 C:\Windows\System32\linkinfo.dll - ok
12:36:48.0921 0172 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
12:36:48.0921 0172 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
12:36:48.0921 0172 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
12:36:48.0921 0172 C:\Windows\System32\msftedit.dll - ok
12:36:48.0921 0172 [ 7CB3ACB163DE051169095DC6507B8977 ] C:\Windows\System32\msls31.dll
12:36:48.0921 0172 C:\Windows\System32\msls31.dll - ok
12:36:48.0937 0172 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
12:36:48.0937 0172 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
12:36:48.0937 0172 [ A24AE157953BBC8DC856BA96E9A0D82E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\buffer.ppl
12:36:48.0937 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\buffer.ppl - ok
12:36:48.0953 0172 [ 3504B34CD2DE00BA3CC1A195F1B739BD ] C:\Windows\System32\gameux.dll
12:36:48.0953 0172 C:\Windows\System32\gameux.dll - ok
12:36:48.0953 0172 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\72172547.sys
12:36:48.0953 0172 C:\Windows\System32\drivers\72172547.sys - ok
12:36:48.0968 0172 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
12:36:48.0968 0172 C:\Windows\System32\wersvc.dll - ok
12:36:48.0968 0172 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
12:36:48.0968 0172 C:\Windows\SysWOW64\riched20.dll - ok
12:36:48.0984 0172 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
12:36:48.0984 0172 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
12:36:48.0984 0172 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
12:36:48.0984 0172 C:\Windows\SysWOW64\duser.dll - ok
12:36:48.0999 0172 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
12:36:48.0999 0172 C:\Windows\SysWOW64\dui70.dll - ok
12:36:48.0999 0172 [ 55E3C4F4D953D8518EBDC5EA9AD786CE ] C:\Windows\System32\ieframe.dll
12:36:48.0999 0172 C:\Windows\System32\ieframe.dll - ok
12:36:48.0999 0172 [ D6262DE2093155699C6B52D7E3BBE73C ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\url_processing.dll
12:36:48.0999 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\url_processing.dll - ok
12:36:49.0015 0172 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
12:36:49.0015 0172 C:\Windows\System32\oleacc.dll - ok
12:36:49.0015 0172 [ 45EEB1076FA2D7CF8B719015DAD60C19 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
12:36:49.0015 0172 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
12:36:49.0031 0172 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
12:36:49.0031 0172 C:\Windows\System32\thumbcache.dll - ok
12:36:49.0031 0172 [ 92FDB0658CA16974B4AE80E248A5B118 ] C:\Windows\System32\igfxtray.exe
12:36:49.0031 0172 C:\Windows\System32\igfxtray.exe - ok
12:36:49.0031 0172 [ 23A6AE66AA4BEF792649736385BB51BA ] C:\Windows\System32\hkcmd.exe
12:36:49.0031 0172 C:\Windows\System32\hkcmd.exe - ok
12:36:49.0046 0172 [ D6DDC49D977920C32A2EF1A5DDF15E02 ] C:\Windows\System32\hccutils.dll
12:36:49.0046 0172 C:\Windows\System32\hccutils.dll - ok
12:36:49.0046 0172 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
12:36:49.0046 0172 C:\Windows\System32\stobject.dll - ok
12:36:49.0062 0172 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
12:36:49.0062 0172 C:\Windows\System32\batmeter.dll - ok
12:36:49.0062 0172 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
12:36:49.0062 0172 C:\Windows\System32\msiltcfg.dll - ok
12:36:49.0077 0172 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
12:36:49.0077 0172 C:\Windows\System32\DeviceCenter.dll - ok
12:36:49.0077 0172 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
12:36:49.0077 0172 C:\Windows\System32\msi.dll - ok
12:36:49.0077 0172 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
12:36:49.0077 0172 C:\Windows\System32\prnfldr.dll - ok
12:36:49.0093 0172 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
12:36:49.0093 0172 C:\Windows\System32\networkexplorer.dll - ok
12:36:49.0093 0172 [ 9110FFAD124283F37D38771BB60556AF ] C:\Windows\System32\dsound.dll
12:36:49.0093 0172 C:\Windows\System32\dsound.dll - ok
12:36:49.0109 0172 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
12:36:49.0109 0172 C:\Windows\System32\fdProxy.dll - ok
12:36:49.0109 0172 [ 6C0587F59A3CF4C4D17295A0E3B62B15 ] C:\Windows\System32\igfxsrvc.exe
12:36:49.0109 0172 C:\Windows\System32\igfxsrvc.exe - ok
12:36:49.0109 0172 [ F6FA1865978214FB7FCD80149BBF1C13 ] C:\Windows\System32\igfxpers.exe
12:36:49.0109 0172 C:\Windows\System32\igfxpers.exe - ok
12:36:49.0124 0172 [ B2ACAFF0B872C6D347847D7572FF667C ] C:\Windows\System32\igfxsrvc.dll
12:36:49.0124 0172 C:\Windows\System32\igfxsrvc.dll - ok
12:36:49.0124 0172 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
12:36:49.0124 0172 C:\Windows\System32\DXP.dll - ok
12:36:49.0140 0172 [ E788B5D0224A9A1499428CBD08EB22B7 ] C:\Windows\System32\igfxdev.dll
12:36:49.0140 0172 C:\Windows\System32\igfxdev.dll - ok
12:36:49.0140 0172 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
12:36:49.0140 0172 C:\Windows\System32\AudioSes.dll - ok
12:36:49.0140 0172 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
12:36:49.0140 0172 C:\Windows\System32\msimg32.dll - ok
12:36:49.0155 0172 [ B8B1A3F5EFA0DBE88EAB41A7110B9A31 ] C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe
12:36:49.0155 0172 C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe - ok
12:36:49.0155 0172 [ 7C09882A4FCFEF07887BAED8612F3E7C ] C:\Windows\System32\igfxrenu.lrc
12:36:49.0155 0172 C:\Windows\System32\igfxrenu.lrc - ok
12:36:49.0171 0172 [ 263E9A047D17CD50BAA9D3C02910D18D ] C:\Windows\System32\oledlg.dll
12:36:49.0171 0172 C:\Windows\System32\oledlg.dll - ok
12:36:49.0171 0172 [ DC6612A9EE015A36BA2A27BC9CC12537 ] C:\Windows\SysWOW64\mfc42.dll
12:36:49.0171 0172 C:\Windows\SysWOW64\mfc42.dll - ok
12:36:49.0171 0172 [ C8D7195AB1521340005CB47BFA560BB1 ] C:\Windows\System32\igfxress.dll
12:36:49.0171 0172 C:\Windows\System32\igfxress.dll - ok
12:36:49.0187 0172 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
12:36:49.0187 0172 C:\Windows\System32\Syncreg.dll - ok
12:36:49.0187 0172 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
12:36:49.0187 0172 C:\Windows\ehome\ehSSO.dll - ok
12:36:49.0187 0172 [ C2777B1D50151C7BA206008864B1D8E8 ] C:\Windows\System32\RtkCfg64.dll
12:36:49.0187 0172 C:\Windows\System32\RtkCfg64.dll - ok
12:36:49.0202 0172 [ 7D34AF98A706230CC2DEDFE0CABF87AB ] C:\Windows\SysWOW64\odbc32.dll
12:36:49.0202 0172 C:\Windows\SysWOW64\odbc32.dll - ok
12:36:49.0202 0172 [ B53B2F2165F2671775CC8DBA5C969C35 ] C:\Windows\System32\RtkAPO64.dll
12:36:49.0202 0172 C:\Windows\System32\RtkAPO64.dll - ok
12:36:49.0202 0172 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
12:36:49.0218 0172 C:\Windows\System32\AltTab.dll - ok
12:36:49.0218 0172 [ ABA457BFC7EC0B5E130B2F1E0F549DFF ] C:\Windows\SysWOW64\odbcint.dll
12:36:49.0218 0172 C:\Windows\SysWOW64\odbcint.dll - ok
12:36:49.0218 0172 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
12:36:49.0218 0172 C:\Windows\System32\WPDShServiceObj.dll - ok
12:36:49.0233 0172 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
12:36:49.0233 0172 C:\Windows\System32\WMALFXGFXDSP.dll - ok
12:36:49.0233 0172 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
12:36:49.0233 0172 C:\Windows\System32\pnidui.dll - ok
12:36:49.0233 0172 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
12:36:49.0233 0172 C:\Windows\System32\mfplat.dll - ok
12:36:49.0249 0172 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
12:36:49.0249 0172 C:\Windows\System32\QUTIL.DLL - ok
12:36:49.0249 0172 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
12:36:49.0249 0172 C:\Windows\System32\srchadmin.dll - ok
12:36:49.0249 0172 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
12:36:49.0249 0172 C:\Windows\System32\wdmaud.drv - ok
12:36:49.0265 0172 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
12:36:49.0265 0172 C:\Windows\System32\ksuser.dll - ok
12:36:49.0265 0172 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
12:36:49.0265 0172 C:\Windows\System32\bthprops.cpl - ok
12:36:49.0265 0172 [ 3819AD4329303EAC88480CA16A650735 ] C:\Windows\System32\UIAnimation.dll
12:36:49.0265 0172 C:\Windows\System32\UIAnimation.dll - ok
12:36:49.0280 0172 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
12:36:49.0280 0172 C:\Windows\System32\ActionCenter.dll - ok
12:36:49.0280 0172 [ 76D96A29DC13CCFDD8A49415725410E2 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\PMSpeed.exe
12:36:49.0280 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\PMSpeed.exe - ok
12:36:49.0280 0172 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
12:36:49.0296 0172 C:\Windows\System32\SearchIndexer.exe - ok
12:36:49.0296 0172 [ C71861E53447055D4291F532A0DFA3FE ] C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe
12:36:49.0296 0172 C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe - ok
12:36:49.0296 0172 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
12:36:49.0296 0172 C:\Windows\System32\msacm32.drv - ok
12:36:49.0311 0172 [ E3BF29CED96790CDAAFA981FFDDF53A3 ] C:\Program Files\Windows Sidebar\sidebar.exe
12:36:49.0311 0172 C:\Program Files\Windows Sidebar\sidebar.exe - ok
12:36:49.0311 0172 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
12:36:49.0311 0172 C:\Windows\System32\msacm32.dll - ok
12:36:49.0311 0172 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
12:36:49.0311 0172 C:\Windows\System32\tquery.dll - ok
12:36:49.0327 0172 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
12:36:49.0327 0172 C:\Windows\System32\midimap.dll - ok
12:36:49.0327 0172 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
12:36:49.0327 0172 C:\Windows\System32\AudioEng.dll - ok
12:36:49.0343 0172 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
12:36:49.0343 0172 C:\Windows\System32\rasdlg.dll - ok
12:36:49.0343 0172 [ AE18DCD6934D657EA0995E919FB0F4DD ] C:\Windows\System32\mshtml.dll
12:36:49.0343 0172 C:\Windows\System32\mshtml.dll - ok
12:36:49.0343 0172 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
12:36:49.0343 0172 C:\Windows\System32\AUDIOKSE.dll - ok
12:36:49.0358 0172 [ E877D921A20E311F0627A48EEFAB1849 ] C:\Windows\System32\MBWrp64.dll
12:36:49.0358 0172 C:\Windows\System32\MBWrp64.dll - ok
12:36:49.0358 0172 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
12:36:49.0358 0172 C:\Windows\System32\dot3api.dll - ok
12:36:49.0358 0172 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
12:36:49.0358 0172 C:\Windows\System32\mssrch.dll - ok
12:36:49.0374 0172 [ F0681E28F3D59AB20A0A585A1CDC5690 ] C:\Windows\System32\MBAPO64.dll
12:36:49.0374 0172 C:\Windows\System32\MBAPO64.dll - ok
12:36:49.0374 0172 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
12:36:49.0374 0172 C:\Windows\System32\wlanhlp.dll - ok
12:36:49.0389 0172 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
12:36:49.0389 0172 C:\Windows\System32\wlanapi.dll - ok
12:36:49.0389 0172 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
12:36:49.0389 0172 C:\Windows\System32\wlanutil.dll - ok
12:36:49.0405 0172 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
12:36:49.0405 0172 C:\Windows\System32\onex.dll - ok
12:36:49.0405 0172 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
12:36:49.0405 0172 C:\Windows\System32\msidle.dll - ok
12:36:49.0421 0172 [ C9B8E081B4D02108930CB3D9D537B9C4 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccvw.dll
12:36:49.0421 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccvw.dll - ok
12:36:49.0421 0172 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
12:36:49.0421 0172 C:\Windows\System32\mssprxy.dll - ok
12:36:49.0436 0172 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
12:36:49.0436 0172 C:\Windows\System32\FXSST.dll - ok
12:36:49.0436 0172 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
12:36:49.0436 0172 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
12:36:49.0436 0172 [ D432E38C5244824E68CD74D23531D41D ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfi.dll
12:36:49.0436 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfi.dll - ok
12:36:49.0452 0172 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
12:36:49.0452 0172 C:\Windows\System32\FXSAPI.dll - ok
12:36:49.0452 0172 [ 5836C34A6600B13C80F9A6B8D037DDD1 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\wvcore.dll
12:36:49.0452 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\wvcore.dll - ok
12:36:49.0467 0172 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
12:36:49.0467 0172 C:\Windows\System32\en-US\tquery.dll.mui - ok
12:36:49.0467 0172 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
12:36:49.0467 0172 C:\Windows\System32\FXSRESM.dll - ok
12:36:49.0467 0172 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
12:36:49.0467 0172 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
12:36:49.0483 0172 [ 823DE3A097C735FAA1608A7AD9E27A43 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfut.dll
12:36:49.0483 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfut.dll - ok
12:36:49.0483 0172 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
12:36:49.0483 0172 C:\Windows\System32\FXSSVC.exe - ok
12:36:49.0499 0172 [ E169BFF3DC78C07443779CDB2DFCB248 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\SCCUT.DLL
12:36:49.0499 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\SCCUT.DLL - ok
12:36:49.0499 0172 [ EE0553C07A85536090B5E2651F98AA1D ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccca.dll
12:36:49.0499 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccca.dll - ok
12:36:49.0514 0172 [ B3CE0951E3C1EA3C733573C472EE85F9 ] C:\Windows\System32\msimtf.dll
12:36:49.0514 0172 C:\Windows\System32\msimtf.dll - ok
12:36:49.0514 0172 [ A48093ABF41F121651F390C58050FCF4 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccda.dll
12:36:49.0514 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccda.dll - ok
12:36:49.0530 0172 [ C3995D7510C68B6D6C3B69C7B591BCFD ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfa.dll
12:36:49.0530 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfa.dll - ok
12:36:49.0530 0172 [ 6B6C47244AA9AA4F6AC10146432D3321 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccch.dll
12:36:49.0530 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccch.dll - ok
12:36:49.0530 0172 [ 3F97C93871C360C4493D80ADE627E09A ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccind.dll
12:36:49.0530 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccind.dll - ok
12:36:49.0545 0172 [ 8DEA23054C3C2E32BA1D652004EC7DC6 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfmt.dll
12:36:49.0545 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccfmt.dll - ok
12:36:49.0545 0172 [ B4C07F51DA6B614FDA4443062D16F526 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccdu.dll
12:36:49.0545 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccdu.dll - ok
12:36:49.0561 0172 [ 1A9C1FC1415474029F02074D19CEE6BF ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccanno.dll
12:36:49.0561 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccanno.dll - ok
12:36:49.0561 0172 [ 05FE0D9C89F7F749D13DDD52E07BF39F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\scrchpg.dll
12:36:49.0561 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\scrchpg.dll - ok
12:36:49.0561 0172 [ 25B50D384D3B6EBC782DC544502AB373 ] C:\Windows\System32\jscript.dll
12:36:49.0561 0172 C:\Windows\System32\jscript.dll - ok
12:36:49.0577 0172 [ F02D9C3F07ECC887B4CB4F9EE0845D53 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\klscav.dll
12:36:49.0577 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\klscav.dll - ok
12:36:49.0577 0172 [ 63D4A6596B1CEA96B6C9985657FB1FD7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\remote_eka_prague_loader.dll
12:36:49.0577 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\remote_eka_prague_loader.dll - ok
12:36:49.0592 0172 [ B5348047FDF0371F17F23FB5A238E894 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\prremote.dll
12:36:49.0592 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\prremote.dll - ok
12:36:49.0592 0172 [ D029339C0F59CF662094EDDF8C42B2B5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcp100.dll
12:36:49.0592 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcp100.dll - ok
12:36:49.0592 0172 [ 366FD6F3A451351B5DF2D7C4ECF4C73A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcr100.dll
12:36:49.0592 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\msvcr100.dll - ok
12:36:49.0608 0172 [ 882B7EFB839F965BA41A1431D0AF6A51 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\prloader.dll
12:36:49.0608 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\prloader.dll - ok
12:36:49.0608 0172 [ 91011AAA6ACD20211625F4496CA9BAA7 ] C:\Program Files (x86)\Sierra\Planner\PLNRnote.exe
12:36:49.0608 0172 C:\Program Files (x86)\Sierra\Planner\PLNRnote.exe - ok
12:36:49.0623 0172 [ 6E996E0A236BE7308DC67152E3227846 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\service.dll
12:36:49.0623 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\service.dll - ok
12:36:49.0623 0172 [ 00D1FB0073B4A8BD2989EA8FF4CC792B ] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
12:36:49.0623 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe - ok
12:36:49.0639 0172 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
12:36:49.0639 0172 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
12:36:49.0639 0172 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
12:36:49.0639 0172 C:\Windows\System32\WWanAPI.dll - ok
12:36:49.0639 0172 [ 127AA81343A7C6F665C22CB1293B0A90 ] C:\Windows\splwow64.exe
12:36:49.0639 0172 C:\Windows\splwow64.exe - ok
12:36:49.0655 0172 [ 1344D63A117525C4CFEA45E6DB41A6E3 ] C:\Windows\System32\spool\drivers\x64\3\E_IMAIFJA.DLL
12:36:49.0655 0172 C:\Windows\System32\spool\drivers\x64\3\E_IMAIFJA.DLL - ok
12:36:49.0655 0172 [ 4BCB55FE7FB555CF4365F1D643C91DDF ] C:\Program Files (x86)\Sierra\Planner\PLANNER.exe
12:36:49.0655 0172 C:\Program Files (x86)\Sierra\Planner\PLANNER.exe - ok
12:36:49.0670 0172 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
12:36:49.0670 0172 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
12:36:49.0670 0172 [ 2EEEF8544DCAFE322301B68AA7F1D989 ] C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll
12:36:49.0670 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtmessage.dll - ok
12:36:49.0670 0172 [ 11456E7C78A6C3D43E5D81CE8A899FA6 ] C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll
12:36:49.0670 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtsched.dll - ok
12:36:49.0686 0172 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
12:36:49.0686 0172 C:\Windows\System32\wwapi.dll - ok
12:36:49.0686 0172 [ BDB2FE5AF3F0FF12B1DCE16A9608E0A7 ] C:\Windows\System32\spool\drivers\x64\3\E_IUICFJA.DLL
12:36:49.0686 0172 C:\Windows\System32\spool\drivers\x64\3\E_IUICFJA.DLL - ok
12:36:49.0701 0172 [ 7B8C89CB2085A2E75A166077E4AF8562 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\eka_meta.dll
12:36:49.0701 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\eka_meta.dll - ok
12:36:49.0701 0172 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
12:36:49.0701 0172 C:\Windows\System32\QAGENT.DLL - ok
12:36:49.0701 0172 [ 6CF3079C23A9A96F7C1DC33EE982FBA6 ] C:\Program Files\Dell\DellDock\DellDock.exe
12:36:49.0701 0172 C:\Program Files\Dell\DellDock\DellDock.exe - ok
12:36:49.0717 0172 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
12:36:49.0717 0172 C:\Windows\System32\mscoree.dll - ok
12:36:49.0717 0172 [ 5467AD6C31A82728C3864E82ED292D17 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\pxstub.ppl
12:36:49.0717 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\pxstub.ppl - ok
12:36:49.0733 0172 [ DAE3A96FC008A44B01A70CFCB7781DBA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\params.ppl
12:36:49.0733 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\params.ppl - ok
12:36:49.0733 0172 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
12:36:49.0733 0172 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
12:36:49.0748 0172 [ AF9B7F55AAB8229241E29FB82177DB30 ] C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll
12:36:49.0748 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtevent.dll - ok
12:36:49.0748 0172 [ 9A95D747564222F9DEAA57A09CB6714F ] C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll
12:36:49.0748 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtfod.dll - ok
12:36:49.0764 0172 [ 02CD5B2C3B017122CAC00BDB520CD7AC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
12:36:49.0764 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
12:36:49.0764 0172 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll
12:36:49.0764 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtsync.dll - ok
12:36:49.0764 0172 [ 75181032B9A519A5FD8E08F824951EBD ] C:\Windows\System32\spool\drivers\x64\3\E_IAUDFJA.DLL
12:36:49.0764 0172 C:\Windows\System32\spool\drivers\x64\3\E_IAUDFJA.DLL - ok
12:36:49.0779 0172 [ 344E1FD5060D642B86F197259544CA7B ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\oswin32.dll
12:36:49.0779 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\oswin32.dll - ok
12:36:49.0779 0172 [ A395ABC175604A4F863A0ECF9EE794CA ] C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll
12:36:49.0779 0172 C:\Program Files (x86)\Dell Support Center\bin\sprtui.dll - ok
12:36:49.0795 0172 [ 47B8DEBEC68FACCD026F99CAE8698C93 ] C:\Windows\System32\webcheck.dll
12:36:49.0795 0172 C:\Windows\System32\webcheck.dll - ok
12:36:49.0795 0172 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
12:36:49.0795 0172 C:\Windows\System32\mlang.dll - ok
12:36:49.0795 0172 [ 206C68F6ADD89A774741CBDEE715233E ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\scclo.dll
12:36:49.0795 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\scclo.dll - ok
12:36:49.0811 0172 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
12:36:49.0811 0172 C:\Windows\SysWOW64\mscoree.dll - ok
12:36:49.0811 0172 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
12:36:49.0811 0172 C:\Windows\System32\SyncCenter.dll - ok
12:36:49.0811 0172 [ 43600D39FA6DF51D90DF04D905BE4142 ] C:\Windows\System32\vbscript.dll
12:36:49.0811 0172 C:\Windows\System32\vbscript.dll - ok
12:36:49.0826 0172 [ C259EF2AD7D254BED18B0A9FCE3417A3 ] C:\Windows\System32\spool\drivers\x64\3\E_ILMWFJA.DLL
12:36:49.0826 0172 C:\Windows\System32\spool\drivers\x64\3\E_ILMWFJA.DLL - ok
12:36:49.0826 0172 [ 350CF195E7F74994000921D5ACFE0499 ] C:\Program Files (x86)\Sierra\Planner\PLNRevnt.dll
12:36:49.0826 0172 C:\Program Files (x86)\Sierra\Planner\PLNRevnt.dll - ok
12:36:49.0842 0172 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
12:36:49.0842 0172 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
12:36:49.0842 0172 [ 90A3525C7399B7784D28F99EA1A51C4C ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
12:36:49.0842 0172 C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe - ok
12:36:49.0842 0172 [ 7F2E16251303BA1B839376ACA063280A ] C:\Windows\System32\spool\drivers\x64\3\E_IEPEFJA.DLL
12:36:49.0842 0172 C:\Windows\System32\spool\drivers\x64\3\E_IEPEFJA.DLL - ok
12:36:49.0857 0172 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
12:36:49.0857 0172 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
12:36:49.0857 0172 [ F60B6FA0D353DD31A59E86D3D3FD8066 ] C:\Windows\System32\imgutil.dll
12:36:49.0857 0172 C:\Windows\System32\imgutil.dll - ok
12:36:49.0873 0172 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
12:36:49.0873 0172 C:\Windows\System32\SearchProtocolHost.exe - ok
12:36:49.0873 0172 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
12:36:49.0873 0172 C:\Windows\System32\wsock32.dll - ok
12:36:49.0873 0172 [ 36252646F86F2C937D4067A37DA45B31 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\gadget.dll
12:36:49.0873 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\gadget.dll - ok
12:36:49.0889 0172 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
12:36:49.0889 0172 C:\Windows\System32\imapi2.dll - ok
12:36:49.0889 0172 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
12:36:49.0889 0172 C:\Windows\SysWOW64\mscms.dll - ok
12:36:49.0904 0172 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
12:36:49.0904 0172 C:\Windows\SysWOW64\sti.dll - ok
12:36:49.0904 0172 [ B05763CD99EB4CA9F8D0A95BD182736B ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
12:36:49.0904 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe - ok
12:36:49.0920 0172 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
12:36:49.0920 0172 C:\Windows\System32\wmdrmdev.dll - ok
12:36:49.0920 0172 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
12:36:49.0920 0172 C:\Windows\System32\msshooks.dll - ok
12:36:49.0920 0172 [ 098E01788DB0A151FFE47BCDBD30469D ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXLDB.dll
12:36:49.0920 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXLDB.dll - ok
12:36:49.0935 0172 [ 0728937194E98613051F4A72C7F1D4BF ] C:\Windows\System32\pngfilt.dll
12:36:49.0935 0172 C:\Windows\System32\pngfilt.dll - ok
12:36:49.0935 0172 [ 0600CB2613BEA0C6C0987B58D56D77B9 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
12:36:49.0935 0172 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
12:36:49.0951 0172 [ 4A1D15F39B8D2260438428FBF7BA1271 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\nfio.ppl
12:36:49.0951 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\nfio.ppl - ok
12:36:49.0951 0172 [ 1C97DD0CA24BB51133CEA8081EA95DA5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exe
12:36:49.0951 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmi64.exe - ok
12:36:49.0967 0172 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
12:36:49.0967 0172 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
12:36:49.0967 0172 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
12:36:49.0967 0172 C:\Windows\System32\wmp.dll - ok
12:36:49.0982 0172 [ 783CC949880CB3C036EB5A739D03D078 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmihlpr.ppl
12:36:49.0982 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\wmihlpr.ppl - ok
12:36:49.0982 0172 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
12:36:49.0982 0172 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
12:36:49.0982 0172 [ D790CBB83F552D4A6F6E2192242A27FD ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\winreg.ppl
12:36:49.0982 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\winreg.ppl - ok
12:36:49.0998 0172 [ 88E703C2B2B046D9594B4AC33BC8E496 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCFG.dll
12:36:49.0998 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCFG.dll - ok
12:36:50.0013 0172 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
12:36:50.0013 0172 C:\Windows\System32\SearchFilterHost.exe - ok
12:36:50.0013 0172 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
12:36:50.0013 0172 C:\Windows\System32\hgcpl.dll - ok
12:36:50.0013 0172 [ 2952275A0E30C8BD872CE4B4C9117AC4 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\thpimpl.ppl
12:36:50.0013 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\x64\thpimpl.ppl - ok
12:36:50.0029 0172 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
12:36:50.0029 0172 C:\Windows\System32\drmv2clt.dll - ok
12:36:50.0029 0172 [ B456ECB177782A07919D9FDB32DF32FA ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCSR.dll
12:36:50.0029 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXCSR.dll - ok
12:36:50.0045 0172 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
12:36:50.0045 0172 C:\Windows\System32\mssph.dll - ok
12:36:50.0045 0172 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
12:36:50.0045 0172 C:\Windows\System32\fdPHost.dll - ok
12:36:50.0045 0172 [ 8771BEDEAD950014EEDF6EEFE4A68066 ] C:\Windows\System32\scrrun.dll
12:36:50.0045 0172 C:\Windows\System32\scrrun.dll - ok
12:36:50.0060 0172 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
12:36:50.0060 0172 C:\Windows\System32\fdWSD.dll - ok
12:36:50.0060 0172 [ 543194E2595EE689D13750F4B77042A8 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUIMGCDC.dll
12:36:50.0060 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUIMGCDC.dll - ok
12:36:50.0076 0172 [ 80117DBE266DE563C7C661562530B556 ] C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\SCANEN~1.DLL
12:36:50.0076 0172 C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\SCANEN~1.DLL - ok
12:36:50.0076 0172 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
12:36:50.0076 0172 C:\Windows\System32\fdSSDP.dll - ok
12:36:50.0091 0172 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
12:36:50.0091 0172 C:\Windows\System32\mapi32.dll - ok
12:36:50.0091 0172 [ 0BF1785D199B5DA3CB6C61D7AEECE654 ] C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\Ism.dll
12:36:50.0091 0172 C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\Ism.dll - ok
12:36:50.0107 0172 [ D64BDBC80B4BE2119CBDD4592232CF4E ] C:\Program Files (x86)\Epson Software\FAX Utility\FUSVCCLT.dll
12:36:50.0107 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUSVCCLT.dll - ok
12:36:50.0107 0172 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
12:36:50.0107 0172 C:\Windows\SysWOW64\shfolder.dll - ok
12:36:50.0107 0172 [ 7741F775060E84319198A7A67F1FE664 ] C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\Tcm.dll
12:36:50.0107 0172 C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\Tcm.dll - ok
12:36:50.0123 0172 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
12:36:50.0123 0172 C:\Windows\System32\P2P.dll - ok
12:36:50.0123 0172 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
12:36:50.0123 0172 C:\Windows\System32\ListSvc.dll - ok
12:36:50.0123 0172 [ D3F8A00D598090BFB18E70E02C12E38E ] C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\Satwain.dll
12:36:50.0123 0172 C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\Satwain.dll - ok
12:36:50.0138 0172 [ 24602821914632EA9616DC3BFA65A9A6 ] C:\Program Files (x86)\Epson Software\FAX Utility\EbpD4Fax.dll
12:36:50.0138 0172 C:\Program Files (x86)\Epson Software\FAX Utility\EbpD4Fax.dll - ok
12:36:50.0138 0172 [ DFD0D26D2056F1D01ADCDBB1E851119F ] C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\fioall32.dll
12:36:50.0138 0172 C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\fioall32.dll - ok
12:36:50.0154 0172 [ B63E5C7807334A3A8F731062F15462CC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
12:36:50.0154 0172 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
12:36:50.0154 0172 [ 454B4597CCAB2A9C1AC56AB4A7627FD4 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUADRFIL.dll
12:36:50.0154 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUADRFIL.dll - ok
12:36:50.0169 0172 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
12:36:50.0169 0172 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
12:36:50.0169 0172 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
12:36:50.0169 0172 C:\Windows\System32\p2pcollab.dll - ok
12:36:50.0169 0172 [ 0B81540A7A179F2C3A4ABF904E0B5B21 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
12:36:50.0169 0172 C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe - ok
12:36:50.0185 0172 [ B14D5AC2F7F5583D9945AFE911734E8B ] C:\Program Files (x86)\Epson Software\FAX Utility\FUSTMMSG.dll
12:36:50.0185 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUSTMMSG.dll - ok
12:36:50.0185 0172 [ 06A754FE28A06F780A099703CFCAAA22 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
12:36:50.0185 0172 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
12:36:50.0185 0172 [ 5F725D2B7428BA815126F9EFA21A1DB9 ] C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\SASM.dll
12:36:50.0185 0172 C:\PROGRA~2\EPSONS~1\EVENTM~1\ASSIST~1\SCANAS~1\SASM.dll - ok
12:36:50.0201 0172 [ 53D22EAA51C503DC92B37218D0BEF981 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUVERDLG.dll
12:36:50.0201 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUVERDLG.dll - ok
12:36:50.0201 0172 [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
12:36:50.0201 0172 C:\Windows\twain_32.dll - ok
12:36:50.0216 0172 [ 936F728E04ACCF3F38801CFFCF1E3F40 ] C:\Windows\SysWOW64\oledlg.dll
12:36:50.0216 0172 C:\Windows\SysWOW64\oledlg.dll - ok
12:36:50.0216 0172 [ DCFF1D3FA1ABA1E701BFC321E3FB0B13 ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll
12:36:50.0216 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXCFGRes.dll - ok
12:36:50.0216 0172 [ B0F69B9DE0AEBFD7E4CEADE6758DF627 ] C:\Windows\System32\SearchFolder.dll
12:36:50.0216 0172 C:\Windows\System32\SearchFolder.dll - ok
12:36:50.0232 0172 [ 29F477570FDD796D979BB5A781BD07F3 ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll
12:36:50.0232 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll - ok
12:36:50.0232 0172 [ 0747433908A47C49E3B7DB6D51D7447C ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXTIF.dll
12:36:50.0232 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXTIF.dll - ok
12:36:50.0232 0172 [ BACC136DA74D87338A1D7D34B62D1925 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUPRBDEV.dll
12:36:50.0232 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUPRBDEV.dll - ok
12:36:50.0247 0172 [ B74FF2DF6CF0C0210582676EDBEDA79D ] C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
12:36:50.0247 0172 C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key - ok
12:36:50.0247 0172 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
12:36:50.0247 0172 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
12:36:50.0263 0172 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
12:36:50.0263 0172 C:\Windows\System32\IdListen.dll - ok
12:36:50.0263 0172 [ 609C3367541635188EDC9AFB99BAE631 ] C:\Windows\twain_32\escndv\wor610.ds
12:36:50.0263 0172 C:\Windows\twain_32\escndv\wor610.ds - ok
12:36:50.0263 0172 [ C1D9E25FC988516DF703D6E12ACA915F ] C:\Program Files\Internet Explorer\ieproxy.dll
12:36:50.0263 0172 C:\Program Files\Internet Explorer\ieproxy.dll - ok
12:36:50.0279 0172 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
12:36:50.0279 0172 C:\Windows\System32\pnrpsvc.dll - ok
12:36:50.0279 0172 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
12:36:50.0279 0172 C:\Windows\System32\wmploc.DLL - ok
12:36:50.0279 0172 [ 684F88B5B258464C75ACF9F3B80DD601 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENCM.dll
12:36:50.0294 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENCM.dll - ok
12:36:50.0294 0172 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
12:36:50.0294 0172 C:\Windows\twain_32\wiatwain.ds - ok
12:36:50.0294 0172 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
12:36:50.0294 0172 C:\Windows\System32\hgprint.dll - ok
12:36:50.0310 0172 [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
12:36:50.0310 0172 C:\Windows\SysWOW64\wiadss.dll - ok
12:36:50.0310 0172 [ 01AEA2F16FE0C522DDFD7FAFFC959C6A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll
12:36:50.0310 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\74a5f0c2bc0d0e6e3c4ec4886b9be891\mscorlib.ni.dll - ok
12:36:50.0325 0172 [ FEC316B4F870807BDB7AA5829EBF4918 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENUTIL.dll
12:36:50.0325 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENUTIL.dll - ok
12:36:50.0325 0172 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
12:36:50.0325 0172 C:\Windows\System32\sti.dll - ok
12:36:50.0341 0172 [ 86EF02941B66A97001165113D44762CB ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENNW.dll
12:36:50.0341 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENNW.dll - ok
12:36:50.0341 0172 [ 1311EE72DA75652EE4259182FEF9ABFE ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDEVCOM.dll
12:36:50.0341 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDEVCOM.dll - ok
12:36:50.0357 0172 [ 5E9D825913A97B934B9F73F4851D1FA9 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUSNMPUT.dll
12:36:50.0357 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUSNMPUT.dll - ok
12:36:50.0357 0172 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
12:36:50.0357 0172 C:\Windows\SysWOW64\wiatrace.dll - ok
12:36:50.0357 0172 [ 6357E2B68753A1F5CF4A68A25C4FD14A ] C:\Windows\SysWOW64\wsnmp32.dll
12:36:50.0357 0172 C:\Windows\SysWOW64\wsnmp32.dll - ok
12:36:50.0372 0172 [ 1A969BC3E4216D21816BF85677C96C2D ] C:\Program Files (x86)\Epson Software\FAX Utility\FUUSBHLP.dll
12:36:50.0372 0172 C:\Program Files (x86)\Epson Software\FAX Utility\FUUSBHLP.dll - ok
12:36:50.0372 0172 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
12:36:50.0372 0172 C:\Windows\System32\QAGENTRT.DLL - ok
12:36:50.0388 0172 [ 2FD5FE04C8301FF3372D2771641CFD71 ] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDRVUTL.dll
12:36:50.0388 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDRVUTL.dll - ok
12:36:50.0388 0172 [ BAF7BDD5A1EB63ACD6EEA20D4F731CB0 ] C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll
12:36:50.0388 0172 C:\Program Files (x86)\Epson Software\Event Manager\EPNSM.dll - ok
12:36:50.0403 0172 [ 31D59387099070963EAD4CE14C5B5F04 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll
12:36:50.0403 0172 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\187d7c66735c533de851c76384f86912\mscorlib.ni.dll - ok
12:36:50.0403 0172 [ 637124CDBFF5819CB8A8478838A33048 ] C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll
12:36:50.0403 0172 C:\Program Files (x86)\Epson Software\Event Manager\ESPSUTL.dll - ok
12:36:50.0403 0172 [ 3CBDE730E43F5CEC3B5886CA0688324D ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll
12:36:50.0403 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll - ok
12:36:50.0419 0172 [ 7BEB1DF81373E7327A01A5EF4DDCE42E ] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll
12:36:50.0419 0172 C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXSTM.dll - ok
12:36:50.0419 0172 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
12:36:50.0419 0172 C:\Windows\System32\fveui.dll - ok
12:36:50.0419 0172 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
12:36:50.0419 0172 C:\Windows\SysWOW64\sxs.dll - ok
12:36:50.0435 0172 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
12:36:50.0435 0172 C:\Windows\System32\p2psvc.dll - ok
12:36:50.0435 0172 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
12:36:50.0435 0172 C:\Windows\System32\P2PGraph.dll - ok
12:36:50.0450 0172 [ 390FAE90E077DF0577E0ABF1F884AE19 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpgui.ppl
12:36:50.0450 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avpgui.ppl - ok
12:36:50.0450 0172 [ DEC1426BF15A07E4B26DC7F479EDAA60 ] C:\Program Files (x86)\Common Files\System\ado\msado15.dll
12:36:50.0450 0172 C:\Program Files (x86)\Common Files\System\ado\msado15.dll - ok
12:36:50.0466 0172 [ A99C4D1B5E7E794EC5779CF14F431932 ] C:\Windows\SysWOW64\msdart.dll
12:36:50.0466 0172 C:\Windows\SysWOW64\msdart.dll - ok
12:36:50.0466 0172 [ E2095C5CBE19CB17F8C6B07A5805B784 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
12:36:50.0466 0172 C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll - ok
12:36:50.0481 0172 [ 8859C0357D3C1499BEF65C7D5BBF7A40 ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll
12:36:50.0481 0172 C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll - ok
12:36:50.0481 0172 [ ED12110CD5BFE686F645E145A7DD28C5 ] C:\Windows\SysWOW64\comsvcs.dll
12:36:50.0481 0172 C:\Windows\SysWOW64\comsvcs.dll - ok
12:36:50.0481 0172 [ F10E5311E5093FA3C00FF88C54C32FCA ] C:\Windows\SysWOW64\atl.dll
12:36:50.0481 0172 C:\Windows\SysWOW64\atl.dll - ok
12:36:50.0497 0172 [ 5A72F87F75A5EA7B46DC3AD87302FE00 ] C:\Windows\SysWOW64\msjetoledb40.dll
12:36:50.0497 0172 C:\Windows\SysWOW64\msjetoledb40.dll - ok
12:36:50.0497 0172 [ B5BD0D5792E8C6195312275D335F50E1 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtcore4.dll
12:36:50.0497 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtcore4.dll - ok
12:36:50.0513 0172 [ C9380B96A0D51B8109D19D13467ADA0B ] C:\Windows\SysWOW64\msjet40.dll
12:36:50.0513 0172 C:\Windows\SysWOW64\msjet40.dll - ok
12:36:50.0513 0172 [ 1F55C7C1E338047DC5E329011A781FB3 ] C:\Windows\SysWOW64\mswstr10.dll
12:36:50.0513 0172 C:\Windows\SysWOW64\mswstr10.dll - ok
12:36:50.0513 0172 [ 870285A6C2429CFC47FF95DA49313664 ] C:\Windows\SysWOW64\msjter40.dll
12:36:50.0513 0172 C:\Windows\SysWOW64\msjter40.dll - ok
12:36:50.0528 0172 [ 99BE216125AAB5A73AFCBA094453E5F0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtdeclarative4.dll
12:36:50.0528 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtdeclarative4.dll - ok
12:36:50.0528 0172 [ 0219B6F2329F4C1BC24580C83D0F3645 ] C:\Windows\SysWOW64\msjint40.dll
12:36:50.0528 0172 C:\Windows\SysWOW64\msjint40.dll - ok
12:36:50.0528 0172 [ FC877611E178FA17E23F99D9694590A0 ] C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll
12:36:50.0528 0172 C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll - ok
12:36:50.0544 0172 [ 73D1680C94C1B57F6D8E49B2AE8122ED ] C:\Windows\SysWOW64\vbajet32.dll
12:36:50.0544 0172 C:\Windows\SysWOW64\vbajet32.dll - ok
12:36:50.0544 0172 [ EFF10B20A6F094BC75385791C526546D ] C:\Windows\SysWOW64\expsrv.dll
12:36:50.0544 0172 C:\Windows\SysWOW64\expsrv.dll - ok
12:36:50.0559 0172 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
12:36:50.0559 0172 C:\Windows\System32\wmpps.dll - ok
12:36:50.0559 0172 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
12:36:50.0559 0172 C:\Windows\System32\wmpmde.dll - ok
12:36:50.0559 0172 [ 75BCC4043512E41D83C8F224B168039C ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
12:36:50.0559 0172 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
12:36:50.0575 0172 [ F774DB03213C2014363DE8D22DD6BBEF ] C:\Windows\SysWOW64\msjtes40.dll
12:36:50.0575 0172 C:\Windows\SysWOW64\msjtes40.dll - ok
12:36:50.0575 0172 [ 25D986A4DA38668E2AA89955A790E578 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtscript4.dll
12:36:50.0575 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtscript4.dll - ok
12:36:50.0591 0172 [ 17AD6A5E8A3E68D3F77894B02B88BF92 ] C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll
12:36:50.0591 0172 C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll - ok
12:36:50.0591 0172 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll
12:36:50.0591 0172 C:\Program Files (x86)\Dell Support Center\bin\libeay32.dll - ok
12:36:50.0591 0172 [ 723E7574A94C54664E4C8D0A4AAE4F97 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtsql4.dll
12:36:50.0591 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtsql4.dll - ok
12:36:50.0606 0172 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
12:36:50.0606 0172 C:\Windows\System32\WinSATAPI.dll - ok
12:36:50.0606 0172 [ 0A94DE4AA9864D312E60D747FD249ABE ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
12:36:50.0606 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
12:36:50.0606 0172 [ A151EF45E062C71B0CA34054C40BC6E4 ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll
12:36:50.0606 0172 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.SupportMessage.dll - ok
12:36:50.0622 0172 [ 0032BA043475CFA6701C774A24A454D1 ] C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccole.dll
12:36:50.0622 0172 C:\Program Files (x86)\NewSoft\Presto! PageManager 8 for EP\Inso\sccole.dll - ok
12:36:50.0622 0172 [ 6E9E439517D89EDC9A6CB1E94489620A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
12:36:50.0622 0172 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
12:36:50.0637 0172 [ 850BD2D2D9CB5894935C3B6333CAD6FD ] C:\Windows\System32\riched20.dll
12:36:50.0637 0172 C:\Windows\System32\riched20.dll - ok
12:36:50.0637 0172 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
12:36:50.0637 0172 C:\Windows\System32\MSMPEG2ENC.DLL - ok
12:36:50.0653 0172 [ D8DB8523C1585589411277AE5DC91555 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtgui4.dll
12:36:50.0653 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtgui4.dll - ok
12:36:50.0653 0172 [ 98947A11E0EB117C8E503DE3EBD3955D ] C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll
12:36:50.0653 0172 C:\Program Files (x86)\Dell Support Center\bin\SupportSoft.Agent.Sprocket.dll - ok
12:36:50.0669 0172 [ 8BE887F1743FBB39ED2C9CA2937742D6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll
12:36:50.0669 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\f3888a2c7b096d416ca0cfc5405219b4\System.ni.dll - ok
12:36:50.0669 0172 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
12:36:50.0669 0172 C:\Windows\System32\devenum.dll - ok
12:36:50.0684 0172 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
12:36:50.0684 0172 C:\Windows\System32\msdmo.dll - ok
12:36:50.0684 0172 [ 6D6596E046CA6A61DE250AD3A281A1AF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll
12:36:50.0684 0172 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9dd758ac0bf7358ac6e4720610fcc63c\System.ni.dll - ok
12:36:50.0684 0172 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
12:36:50.0684 0172 C:\Windows\System32\upnphost.dll - ok
12:36:50.0700 0172 [ F75EB0078259C7F9A5F09A00355725DD ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtnetwork4.dll
12:36:50.0700 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\qtnetwork4.dll - ok
12:36:50.0700 0172 [ 43104328E99680FCF282E71CC45CB5D2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll
12:36:50.0700 0172 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\25e672ea505e50ab058258ac72a54f02\System.Xml.ni.dll - ok
12:36:50.0715 0172 [ 976BE04BFDC7DCCCECFC8476115D1317 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\62c4b5026d50e565b62b3918d7929cb4\MyDock.Util.ni.dll
12:36:50.0715 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\MyDock.Util\62c4b5026d50e565b62b3918d7929cb4\MyDock.Util.ni.dll - ok
12:36:50.0715 0172 [ 6F1A9885F93ABAE192A5F7EEA214ECEB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\18daa6a00e037de289c34da5868dbc1c\DellDock.ni.exe
12:36:50.0715 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\DellDock\18daa6a00e037de289c34da5868dbc1c\DellDock.ni.exe - ok
12:36:50.0731 0172 [ 094181F49114D2D41845D03E3B86A56A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\4bb3c6ffb2aa73162595b84e3ddc7d20\VistaBridgeLibrary.ni.dll
12:36:50.0731 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\4bb3c6ffb2aa73162595b84e3ddc7d20\VistaBridgeLibrary.ni.dll - ok
12:36:50.0731 0172 [ A8910645BA015D05180C78F9C6ACD14D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\51113d34d331404a333d0f37658a5141\MenuSkinning.ni.dll
12:36:50.0731 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\MenuSkinning\51113d34d331404a333d0f37658a5141\MenuSkinning.ni.dll - ok
12:36:50.0747 0172 [ EE8E76761A4AEE5685D92A770A3B4B1F ] C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe
12:36:50.0747 0172 C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe - ok
12:36:50.0747 0172 [ 2AE206C2AB6FA06C56FB4297433F2EBA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dblite.dll
12:36:50.0747 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\dblite.dll - ok
12:36:50.0762 0172 [ 653E156FDB4F4B76DAFC165750A62610 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\basegui.ppl
12:36:50.0762 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\basegui.ppl - ok
12:36:50.0762 0172 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
12:36:50.0762 0172 C:\Windows\SysWOW64\samcli.dll - ok
12:36:50.0778 0172 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
12:36:50.0778 0172 C:\Windows\SysWOW64\msimg32.dll - ok
12:36:50.0778 0172 [ D79D19EC66106119DCD45D042C6B5170 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll
12:36:50.0778 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\88f8a6436dc95497fce0dae347646e53\System.Drawing.ni.dll - ok
12:36:50.0778 0172 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
12:36:50.0778 0172 C:\Windows\System32\drttransport.dll - ok
12:36:50.0793 0172 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
12:36:50.0793 0172 C:\Windows\System32\drt.dll - ok
12:36:50.0793 0172 [ EADFC95980BC24DF3C7EE5B2CD38F043 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll
12:36:50.0793 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\d6af7216038720b1adeca71e81c14bd6\System.Windows.Forms.ni.dll - ok
12:36:50.0809 0172 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
12:36:50.0809 0172 C:\Windows\System32\udhisapi.dll - ok
12:36:50.0809 0172 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
12:36:50.0809 0172 C:\Windows\System32\wbem\NCProv.dll - ok
12:36:50.0825 0172 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8 ] C:\Windows\System32\shfolder.dll
12:36:50.0825 0172 C:\Windows\System32\shfolder.dll - ok
12:36:50.0825 0172 [ 5D0E28A22860E487148B2820309C0063 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll
12:36:50.0825 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\ac14913a11af4bfae0b8eb913a46a161\System.Configuration.ni.dll - ok
12:36:50.0825 0172 [ A4B3A9FFA483F8CB36E56C19448DDE36 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll
12:36:50.0825 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\52e2da35b160dbd254683f72a0f1b937\System.Xml.ni.dll - ok
12:36:50.0840 0172 [ D611F46C2A564BAA38319982960B95B0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\parental_control_gui.dll
12:36:50.0840 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\parental_control_gui.dll - ok
12:36:50.0840 0172 [ 59BCE9F07985F8A4204F4D6554CFF708 ] C:\Windows\System32\regsvr32.exe
12:36:50.0840 0172 C:\Windows\System32\regsvr32.exe - ok
12:36:50.0856 0172 [ 432BE6CF7311062633459EEF6B242FB5 ] C:\Windows\SysWOW64\regsvr32.exe
12:36:50.0856 0172 C:\Windows\SysWOW64\regsvr32.exe - ok
12:36:50.0856 0172 [ DB16A7C0A453F7E220A5F29E42572FD8 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
12:36:50.0856 0172 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
12:36:50.0871 0172 [ 81D3E9BACEE3580DDE88E325592D0224 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kav.bav
12:36:50.0871 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\kav.bav - ok
12:36:50.0871 0172 [ 9C17DCD6DDFEB1A012544FAF4F2789F6 ] C:\Windows\AppPatch\AcGenral.dll
12:36:50.0871 0172 C:\Windows\AppPatch\AcGenral.dll - ok
12:36:50.0887 0172 [ 625D390D5CBA512166571019E5EFECFB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\98059f32b988a3e2d869e9b3bf56db17\System.Management.ni.dll
12:36:50.0887 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\98059f32b988a3e2d869e9b3bf56db17\System.Management.ni.dll - ok
12:36:50.0887 0172 [ 48892C6C23E99FE5E4DF1909CE96FEC9 ] C:\Windows\SysWOW64\mshtml.dll
12:36:50.0887 0172 C:\Windows\SysWOW64\mshtml.dll - ok
12:36:50.0903 0172 [ 45375DF47ED4D0535739465105AAABE3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
12:36:50.0903 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll - ok
12:36:50.0903 0172 [ 3ABB7ADB9CCBCD24D6C55201A3842A94 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
12:36:50.0903 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
12:36:50.0903 0172 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
12:36:50.0903 0172 C:\Windows\SysWOW64\msacm32.dll - ok
12:36:50.0918 0172 [ C7E689F0E6BD4CFDC669B1BAD3CA3AE6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\scrchpg.dll
12:36:50.0918 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\scrchpg.dll - ok
12:36:50.0918 0172 [ 260747104FAD3343F382E4746D0D72FF ] C:\Program Files\Dell\DellDock\MyDockLib.dll
12:36:50.0918 0172 C:\Program Files\Dell\DellDock\MyDockLib.dll - ok
12:36:50.0934 0172 [ D64D99EC088B54FFE8EE67A480386C20 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
12:36:50.0934 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
12:36:50.0934 0172 [ E2107F227E1C174C20BEB7A51404BBAC ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe
12:36:50.0934 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe - ok
12:36:50.0934 0172 [ 26025A46FB3FDB40FF06BBF1834093B5 ] C:\Windows\SysWOW64\msls31.dll
12:36:50.0934 0172 C:\Windows\SysWOW64\msls31.dll - ok
12:36:50.0949 0172 [ 17ED2224666F6F65F8054D84A3839E71 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll
12:36:50.0949 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cscomp.dll - ok
12:36:50.0949 0172 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
12:36:50.0949 0172 C:\Windows\SysWOW64\msimtf.dll - ok
12:36:50.0965 0172 [ DE77619A32EB97C9ED6BE61A2AB18B07 ] C:\Windows\SysWOW64\jscript.dll
12:36:50.0965 0172 C:\Windows\SysWOW64\jscript.dll - ok
12:36:50.0965 0172 [ A0FBB47158ED75A90114D9A3B5DB9567 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klscav.dll
12:36:50.0965 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\klscav.dll - ok
12:36:50.0981 0172 [ 1A1DE1E34F681C0D3D052AFD481AD7E4 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\remote_eka_prague_loader.dll
12:36:50.0981 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\remote_eka_prague_loader.dll - ok
12:36:50.0981 0172 [ EE338F7673C339D5497C97E86D1011A3 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll
12:36:50.0981 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\alink.dll - ok
12:36:50.0981 0172 [ E3A4D59ED585226D381225521BF2A36D ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll
12:36:50.0981 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorpe.dll - ok
12:36:50.0996 0172 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
12:36:50.0996 0172 C:\Windows\System32\keyiso.dll - ok
12:36:50.0996 0172 [ 449F7C92A14B7F50B898FC67202A326C ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe
12:36:50.0996 0172 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\cvtres.exe - ok
12:36:51.0012 0172 [ 3381678371EBEF98C104C19762E7B13F ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\bee015173ba31ca15216efd65c5e48f0\Accessibility.ni.dll
12:36:51.0012 0172 C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\bee015173ba31ca15216efd65c5e48f0\Accessibility.ni.dll - ok
12:36:51.0012 0172 [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
12:36:51.0012 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
12:36:51.0027 0172 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
12:36:51.0027 0172 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
12:36:51.0027 0172 [ 01073F2BA36792C9BFD1BD622A6247B3 ] C:\Windows\System32\wpccpl.dll
12:36:51.0027 0172 C:\Windows\System32\wpccpl.dll - ok
12:36:51.0027 0172 [ FC3001B4B9DF50B61F3CCA615759EFE7 ] C:\Windows\System32\PhotoMetadataHandler.dll
12:36:51.0027 0172 C:\Windows\System32\PhotoMetadataHandler.dll - ok
12:36:51.0043 0172 [ 80C834BA6B844C4B717F2465C4E8EC0F ] C:\Windows\System32\WindowsCodecsExt.dll
12:36:51.0043 0172 C:\Windows\System32\WindowsCodecsExt.dll - ok
12:36:51.0043 0172 [ 1D296F090ED401967B30BD2B970DC306 ] C:\Windows\System32\icm32.dll
12:36:51.0043 0172 C:\Windows\System32\icm32.dll - ok
12:36:51.0059 0172 [ 870BB92CBE2B2D516A78AB011DB0FA8A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\safe_banking.dll
12:36:51.0059 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\safe_banking.dll - ok
12:36:51.0059 0172 [ B0BF37F2DD076FE7B8AE0A7B6396EF06 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imageformats\qgif4.dll
12:36:51.0059 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imageformats\qgif4.dll - ok
12:36:51.0074 0172 [ B7F5824B020F89351AC1FB28FCEB6D29 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imageformats\qico4.dll
12:36:51.0074 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imageformats\qico4.dll - ok
12:36:51.0074 0172 [ AB1B9A2E2A9BE141988E2800F2052971 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imageformats\qjpeg4.dll
12:36:51.0074 0172 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\imageformats\qjpeg4.dll - ok
12:36:51.0074 0172 [ 52A3DF9E3C34B1AD9E68141B52B5C2F0 ] C:\Windows\System32\jusched.exe
12:36:51.0074 0172 C:\Windows\System32\jusched.exe - ok
12:36:51.0090 0172 ============================================================
12:36:51.0090 0172 Scan finished
12:36:51.0090 0172 ============================================================
12:36:51.0090 3320 Detected object count: 2
12:36:51.0090 3320 Actual detected object count: 2
12:37:15.0535 3320 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user
12:37:15.0535 3320 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:37:15.0535 3320 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - skipped by user
12:37:15.0535 3320 EpsonBidirectionalService ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:37:41.0960 3916 Deinitialize succeass

aswMBR:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-12-29 12:41:54
-----------------------------
12:41:54.866 OS Version: Windows x64 6.1.7601 Service Pack 1
12:41:54.866 Number of processors: 2 586 0x170A
12:41:54.866 ComputerName: OWNER-PC UserName: Owner
12:41:56.098 Initialize success
12:44:36.020 AVAST engine defs: 12122900
12:46:35.064 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
12:46:35.064 Disk 0 Vendor: WDC_WD6400AAKS-75A7B2 01.03B01 Size: 610480MB BusType: 3
12:46:35.080 Disk 0 MBR read successfully
12:46:35.080 Disk 0 MBR scan
12:46:35.095 Disk 0 Windows VISTA default MBR code
12:46:35.095 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
12:46:35.111 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 81920
12:46:35.126 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 595439 MB offset 30801920
12:46:35.142 Disk 0 scanning C:\Windows\system32\drivers
12:46:43.472 Service scanning
12:47:00.196 Modules scanning
12:47:00.211 Disk 0 trace - called modules:
12:47:00.227 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
12:47:00.227 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006179410]
12:47:00.227 3 CLASSPNP.SYS[fffff8800215743f] -> nt!IofCallDriver -> [0xfffffa8006014810]
12:47:00.243 5 ACPI.sys[fffff88000f5d7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8005ca8060]
12:47:01.569 AVAST engine scan C:\Windows
12:47:10.944 AVAST engine scan C:\Windows\system32
12:50:08.145 AVAST engine scan C:\Windows\system32\drivers
12:50:18.722 AVAST engine scan C:\Users\Owner
13:09:38.194 AVAST engine scan C:\ProgramData
13:11:20.124 Scan finished successfully
13:14:26.342 Disk 0 MBR has been saved successfully to "C:\Users\Owner\Documents\Geeks to go info\MBR.dat"
13:14:26.357 The log file has been saved successfully to "C:\Users\Owner\Documents\Geeks to go info\aswMBR.txt"
  • 0

#8
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Create and Run Batch File
Open Notepad and copy/paste the entire contents of the codebox below, into Notepad:
@echo off
>Log1.txt (
ipconfig /all
nslookup google.com
nslookup yahoo.com
ping -n 2 google.com
ping -n 2 yahoo.com
route print
)
start Log1.txt
del %0
Save this as router.bat Choose to Save type as - All Files and where to save - Desktop - then close the Notepad file.

It should look like this: Posted Image <--XP
Double-click on router.bat to run it. it will open notepad when done please post back the results
gringo
  • 0

#9
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
Here are results for router.bat:


Windows IP Configuration

Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.actdsltmp

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : domain.actdsltmp
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-24-E8-1B-94-D7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ac5e:41d:b3be:2579%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, December 29, 2012 12:34:00 PM
Lease Expires . . . . . . . . . . : Sunday, December 30, 2012 12:33:59 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234890472
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-43-C7-30-00-24-E8-1B-94-D7
DNS Servers . . . . . . . . . . . : 192.168.1.1
192.168.0.1
205.171.3.25
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.domain.actdsltmp:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : domain.actdsltmp
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:8b1:2c0d:b8dd:de85(Preferred)
Link-local IPv6 Address . . . . . : fe80::8b1:2c0d:b8dd:de85%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 2607:f8b0:400f:801::1007
74.125.225.198
74.125.225.199
74.125.225.200
74.125.225.201
74.125.225.206
74.125.225.192
74.125.225.193
74.125.225.194
74.125.225.195
74.125.225.196
74.125.225.197

Server: UnKnown
Address: 192.168.1.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24


Pinging google.com [74.125.225.198] with 32 bytes of data:
Reply from 74.125.225.198: bytes=32 time=69ms TTL=56
Reply from 74.125.225.198: bytes=32 time=68ms TTL=56

Ping statistics for 74.125.225.198:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 68ms, Maximum = 69ms, Average = 68ms

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=105ms TTL=52
Reply from 98.138.253.109: bytes=32 time=87ms TTL=52

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 87ms, Maximum = 105ms, Average = 96ms
===========================================================================
Interface List
10...00 24 e8 1b 94 d7 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.100 276
192.168.1.100 255.255.255.255 On-link 192.168.1.100 276
192.168.1.255 255.255.255.255 On-link 192.168.1.100 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.100 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.100 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:9d38:6ab8:8b1:2c0d:b8dd:de85/128
On-link
10 276 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::8b1:2c0d:b8dd:de85/128
On-link
10 276 fe80::ac5e:41d:b3be:2579/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
  • 0

#10
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
After you have run these steps - you need to let me know how the computer is doing

Resetting Router


  • This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router.
  • Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds).
  • If you don’t know the router's default password, you can look it up. Here
  • You also need to reconfigure any security settings you had in place prior to the reset.
  • You may also need to consult with your Internet service provider to find out which DNS servers your network should be using or you can use OpenDNS
Note: After resetting your router, it is important to set a non-default password, and if possible, username, on the router. This will assist in eliminating the possibility of the router being hijacked again.

flush the DNS:

Now lets flush the DNS on the computer:

  • click on Start
  • select run
  • enter cmd and hit enter
  • a black window will open.
  • please enter the following text into that window and hit enter:


    ipconfig /flushdns

Now lets check the router again

Create and Run Batch File
Open Notepad and copy/paste the entire contents of the codebox below, into Notepad:
@echo off
>Log1.txt (
ipconfig /all
nslookup google.com
nslookup yahoo.com
ping -n 2 google.com
ping -n 2 yahoo.com
route print
)
start Log1.txt
del %0
Save this as router.bat Choose to Save type as - All Files and where to save - Desktop - then close the Notepad file.

It should look like this: Posted Image <--XP
Double-click on router.bat to run it. it will open notepad when done please post back the results

gringo
  • 0

Advertisements


#11
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
The issue still exists. I launch Google Chrome and do a search or click on a link and it launches an unwanted site. Before I reset the router which concerns me, did the last post confirm the router was hijacked? I've had the router setup for quite awhile and I remember having issues getting it all setup with the right security. I do have a non-default password setup for the router (I saved it when I set it up).

I'm afraid if I do this, I will be unable get reconnected to the internet. I am assuming if I do this, I have to reset a password and reset all devices that are currently connected. Is that correct?

I appreciate you help and patience!
  • 0

#12
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello


There are two passwords when working on a router - one is for the network and this is the one everybody changes the other is to access the router to change internal settings, this is the one nobody changes


I am concerned about you telling me that it is happening to two computers - there are things to try to see if it is the router one is to connect to a different network and see if you get redirected


lets try changing the DNS on the computer and see if it clears up - https://store.opendn...ystem/windows-7

use the settings listed on the webpage
  • 0

#13
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
Hello -

I wanted to get back to you and let you know that the issue appears to be linked to my google account only. I uninstalled Google Chrome and reinstalled but didn't log in with my email and password. I can now go to any website and search and click on links without any issues using Google Chrome.

Do you suggest I create a brand new Google account? I was thinking of just changing my password and trying that first.

Thank you!
  • 0

#14
gringo_pr

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
see if there is a way to reset the account or clear it



Gringo
  • 0

#15
SheilaP

SheilaP

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts
I was able to delete all of my user information from the PC in Google Chrome. I re-signed in and so far, everything seems to be working fine! I will do the same thing on the laptop (the Google accounts are synched on both PCs).

Thank you for your help!
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP