Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Trojan:DOS/Alureon.A -- desktop infected and can only partially remove

Started by lady2sylvia , Apr 10 2013 11:53 AM

  • This topic is locked This topic is locked

#16
lady2sylvia
Posted 10 April 2013 - 04:30 PM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Page 2:

18:21:08.0637 5836 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:21:09.0119 5836 ============================================================
18:21:09.0119 5836 Current date / time: 2013/04/10 18:21:09.0119
18:21:09.0119 5836 SystemInfo:
18:21:09.0119 5836
18:21:09.0119 5836 OS Version: 6.1.7601 ServicePack: 1.0
18:21:09.0119 5836 Product type: Workstation
18:21:09.0119 5836 ComputerName: SHILSTONE-HP
18:21:09.0119 5836 UserName: Shilstone
18:21:09.0119 5836 Windows directory: C:\Windows
18:21:09.0119 5836 System windows directory: C:\Windows
18:21:09.0119 5836 Running under WOW64
18:21:09.0119 5836 Processor architecture: Intel x64
18:21:09.0119 5836 Number of processors: 4
18:21:09.0119 5836 Page size: 0x1000
18:21:09.0119 5836 Boot type: Normal boot
18:21:09.0119 5836 ============================================================
18:21:12.0267 5836 BG loaded
18:21:12.0761 5836 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:21:12.0808 5836 ============================================================
18:21:12.0808 5836 \Device\Harddisk0\DR0:
18:21:12.0809 5836 MBR partitions:
18:21:12.0809 5836 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:21:12.0809 5836 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x55CEB000
18:21:12.0809 5836 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55D1D800, BlocksNum 0x1828000
18:21:12.0809 5836 ============================================================
18:21:12.0839 5836 C: <-> \Device\Harddisk0\DR0\Partition2
18:21:12.0940 5836 D: <-> \Device\Harddisk0\DR0\Partition3
18:21:12.0941 5836 ============================================================
18:21:12.0941 5836 Initialize success
18:21:12.0941 5836 ============================================================
18:21:25.0536 1916 ============================================================
18:21:25.0537 1916 Scan started
18:21:25.0537 1916 Mode: Manual; SigCheck; TDLFS;
18:21:25.0537 1916 ============================================================
18:21:28.0513 1916 ================ Scan system memory ========================
18:21:28.0513 1916 System memory - ok
18:21:28.0513 1916 ================ Scan services =============================
18:21:28.0825 1916 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
18:21:29.0230 1916 1394ohci - ok
18:21:29.0258 1916 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
18:21:29.0273 1916 ACPI - ok
18:21:29.0292 1916 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
18:21:29.0383 1916 AcpiPmi - ok
18:21:29.0460 1916 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:21:29.0469 1916 AdobeARMservice - ok
18:21:29.0603 1916 [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:21:29.0649 1916 AdobeFlashPlayerUpdateSvc - ok
18:21:29.0692 1916 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:21:29.0722 1916 adp94xx - ok
18:21:29.0749 1916 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:21:29.0763 1916 adpahci - ok
18:21:29.0776 1916 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:21:29.0789 1916 adpu320 - ok
18:21:29.0814 1916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:21:29.0939 1916 AeLookupSvc - ok
18:21:29.0998 1916 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
18:21:30.0084 1916 AFD - ok
18:21:30.0115 1916 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
18:21:30.0133 1916 agp440 - ok
18:21:30.0778 1916 [ C7074BD8D4B8F564859ED373433030AE ] Akamai c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll
18:21:30.0778 1916 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_ca0e279.dll. md5: C7074BD8D4B8F564859ED373433030AE
18:21:30.0786 1916 Akamai ( HiddenFile.Multi.Generic ) - warning
18:21:30.0786 1916 Akamai - detected HiddenFile.Multi.Generic (1)
18:21:30.0828 1916 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:21:30.0885 1916 ALG - ok
18:21:30.0918 1916 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
18:21:30.0929 1916 aliide - ok
18:21:30.0974 1916 [ 2FDCB3E855076CE97CCB58E2CF8F2A09 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:21:31.0048 1916 AMD External Events Utility - ok
18:21:31.0127 1916 AMD FUEL Service - ok
18:21:31.0166 1916 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
18:21:31.0189 1916 amdide - ok
18:21:31.0215 1916 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:\Windows\system32\DRIVERS\amdiox64.sys
18:21:31.0227 1916 amdiox64 - ok
18:21:31.0257 1916 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:21:31.0379 1916 AmdK8 - ok
18:21:32.0690 1916 [ 9920704BF815A5B42DA5264F013AAEB7 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:21:32.0818 1916 amdkmdag - ok
18:21:32.0894 1916 [ 0D1055A47A8F5DC1CAA2701831293EBB ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
18:21:32.0943 1916 amdkmdap - ok
18:21:32.0967 1916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:21:32.0999 1916 AmdPPM - ok
18:21:33.0020 1916 [ F747497A0EE5498F79B207F215B3D2D8 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
18:21:33.0028 1916 amdsata - ok
18:21:33.0067 1916 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:21:33.0080 1916 amdsbs - ok
18:21:33.0104 1916 [ 2946D695E158615BAAA16248E63C7ADB ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
18:21:33.0122 1916 amdxata - ok
18:21:33.0155 1916 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] AODDriver4.1 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:21:33.0164 1916 AODDriver4.1 - ok
18:21:33.0207 1916 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
18:21:33.0362 1916 AppID - ok
18:21:33.0377 1916 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:21:33.0424 1916 AppIDSvc - ok
18:21:33.0478 1916 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
18:21:33.0529 1916 Appinfo - ok
18:21:33.0636 1916 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:21:33.0657 1916 Apple Mobile Device - ok
18:21:33.0692 1916 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:21:33.0703 1916 arc - ok
18:21:33.0715 1916 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:21:33.0727 1916 arcsas - ok
18:21:34.0242 1916 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:21:34.0325 1916 aspnet_state - ok
18:21:34.0358 1916 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:21:34.0412 1916 AsyncMac - ok
18:21:34.0468 1916 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
18:21:34.0486 1916 atapi - ok
18:21:34.0527 1916 [ E82E61F46D1336447F4DEFF8C074F13E ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie64.sys
18:21:34.0537 1916 AtiPcie - ok
18:21:34.0583 1916 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:21:34.0646 1916 AudioEndpointBuilder - ok
18:21:34.0654 1916 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:21:34.0686 1916 AudioSrv - ok
18:21:34.0743 1916 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:21:34.0851 1916 AxInstSV - ok
18:21:34.0882 1916 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:21:34.0937 1916 b06bdrv - ok
18:21:34.0956 1916 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:21:34.0993 1916 b57nd60a - ok
18:21:35.0067 1916 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.exe
18:21:35.0080 1916 BBSvc - ok
18:21:35.0107 1916 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\SeaPort.exe
18:21:35.0133 1916 BBUpdate - ok
18:21:35.0199 1916 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:21:35.0233 1916 BDESVC - ok
18:21:35.0252 1916 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:21:35.0304 1916 Beep - ok
18:21:35.0373 1916 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
18:21:35.0409 1916 BFE - ok
18:21:35.0801 1916 [ E92A3DA47BED7CC65D264235617ED46E ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20130322.001_24\BHDrvx64.sys
18:21:35.0833 1916 BHDrvx64 - ok
18:21:35.0890 1916 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
18:21:36.0132 1916 BITS - ok
18:21:36.0171 1916 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:21:36.0199 1916 blbdrive - ok
18:21:36.0233 1916 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:21:36.0270 1916 Bonjour Service - ok
18:21:36.0307 1916 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:21:36.0413 1916 bowser - ok
18:21:36.0429 1916 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:21:36.0506 1916 BrFiltLo - ok
18:21:36.0518 1916 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:21:36.0572 1916 BrFiltUp - ok
18:21:36.0608 1916 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
18:21:36.0688 1916 BridgeMP - ok
18:21:36.0747 1916 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
18:21:36.0812 1916 Browser - ok
18:21:36.0862 1916 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:21:36.0936 1916 Brserid - ok
18:21:36.0963 1916 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:21:37.0020 1916 BrSerWdm - ok
18:21:37.0046 1916 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:21:37.0103 1916 BrUsbMdm - ok
18:21:37.0128 1916 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:21:37.0160 1916 BrUsbSer - ok
18:21:37.0189 1916 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:21:37.0229 1916 BTHMODEM - ok
18:21:37.0268 1916 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:21:37.0332 1916 bthserv - ok
18:21:38.0038 1916 [ 4D1B31AA1CD11122E9ABCA04708A1B1C ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
18:21:38.0126 1916 CarboniteService - ok
18:21:38.0168 1916 catchme - ok
18:21:38.0251 1916 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys
18:21:38.0280 1916 ccSet_NIS - ok
18:21:38.0322 1916 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:21:38.0399 1916 cdfs - ok
18:21:38.0430 1916 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:21:38.0462 1916 cdrom - ok
18:21:38.0491 1916 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
18:21:38.0568 1916 CertPropSvc - ok
18:21:38.0747 1916 [ EA3333DB9AB03106EEC0D6D9D487ED01 ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
18:21:38.0822 1916 CinemaNow Service - ok
18:21:38.0849 1916 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:21:38.0876 1916 circlass - ok
18:21:38.0908 1916 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:21:38.0943 1916 CLFS - ok
18:21:39.0152 1916 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:21:39.0210 1916 clr_optimization_v2.0.50727_32 - ok
18:21:39.0243 1916 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:21:39.0278 1916 clr_optimization_v2.0.50727_64 - ok
18:21:39.0366 1916 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:21:39.0557 1916 clr_optimization_v4.0.30319_32 - ok
18:21:39.0584 1916 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:21:39.0661 1916 clr_optimization_v4.0.30319_64 - ok
18:21:39.0703 1916 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:21:39.0750 1916 CmBatt - ok
18:21:39.0795 1916 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
18:21:39.0818 1916 cmdide - ok
18:21:39.0872 1916 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
18:21:39.0909 1916 CNG - ok
18:21:39.0926 1916 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:21:39.0936 1916 Compbatt - ok
18:21:39.0949 1916 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
18:21:39.0979 1916 CompositeBus - ok
18:21:40.0000 1916 COMSysApp - ok
18:21:40.0009 1916 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:21:40.0020 1916 crcdisk - ok
18:21:40.0051 1916 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:21:40.0117 1916 CryptSvc - ok
18:21:40.0163 1916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:21:40.0241 1916 DcomLaunch - ok
18:21:40.0349 1916 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:21:40.0467 1916 defragsvc - ok
18:21:40.0508 1916 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:21:40.0576 1916 DfsC - ok
18:21:40.0677 1916 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
18:21:40.0760 1916 Dhcp - ok
18:21:40.0776 1916 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:21:40.0837 1916 discache - ok
18:21:40.0877 1916 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:21:40.0896 1916 Disk - ok
18:21:40.0925 1916 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:21:41.0029 1916 Dnscache - ok
18:21:41.0089 1916 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
18:21:41.0173 1916 dot3svc - ok
18:21:41.0199 1916 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
18:21:41.0267 1916 DPS - ok
18:21:41.0303 1916 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:21:41.0393 1916 drmkaud - ok
18:21:41.0454 1916 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:21:41.0505 1916 DXGKrnl - ok
18:21:41.0533 1916 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:21:41.0610 1916 EapHost - ok
18:21:42.0099 1916 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:21:42.0294 1916 ebdrv - ok
18:21:42.0427 1916 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:21:42.0457 1916 eeCtrl - ok
18:21:42.0495 1916 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
18:21:42.0660 1916 EFS - ok
18:21:42.0819 1916 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:21:42.0960 1916 ehRecvr - ok
18:21:42.0995 1916 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:21:43.0095 1916 ehSched - ok
18:21:43.0140 1916 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:21:43.0179 1916 elxstor - ok
18:21:43.0204 1916 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
18:21:43.0235 1916 ErrDev - ok
18:21:43.0308 1916 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:21:43.0359 1916 EventSystem - ok
18:21:43.0394 1916 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:21:43.0442 1916 exfat - ok
18:21:43.0454 1916 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:21:43.0507 1916 fastfat - ok
18:21:43.0538 1916 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
18:21:43.0619 1916 Fax - ok
18:21:43.0632 1916 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:21:43.0679 1916 fdc - ok
18:21:43.0698 1916 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:21:43.0743 1916 fdPHost - ok
18:21:43.0777 1916 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:21:43.0877 1916 FDResPub - ok
18:21:43.0890 1916 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:21:43.0900 1916 FileInfo - ok
18:21:43.0909 1916 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:21:43.0959 1916 Filetrace - ok
18:21:43.0981 1916 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:21:43.0991 1916 flpydisk - ok
18:21:44.0007 1916 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:21:44.0020 1916 FltMgr - ok
18:21:44.0075 1916 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
18:21:44.0150 1916 FontCache - ok
18:21:44.0180 1916 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:21:44.0211 1916 FontCache3.0.0.0 - ok
18:21:44.0230 1916 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:21:44.0260 1916 FsDepends - ok
18:21:44.0303 1916 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
18:21:44.0341 1916 fssfltr - ok
18:21:44.0620 1916 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:21:44.0716 1916 fsssvc - ok
18:21:44.0743 1916 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:21:44.0790 1916 Fs_Rec - ok
18:21:44.0826 1916 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:21:44.0845 1916 fvevol - ok
18:21:44.0881 1916 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:21:44.0911 1916 gagp30kx - ok
18:21:44.0961 1916 [ CE16683CFD11FE70BDE435DDA5EA1FCA ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
18:21:45.0007 1916 GameConsoleService - ok
18:21:45.0056 1916 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:21:45.0066 1916 GEARAspiWDM - ok
18:21:45.0160 1916 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
18:21:45.0259 1916 gpsvc - ok
18:21:45.0312 1916 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:21:45.0335 1916 gupdate - ok
18:21:45.0358 1916 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:21:45.0373 1916 gupdatem - ok
18:21:45.0421 1916 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:21:45.0470 1916 gusvc - ok
18:21:45.0490 1916 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:21:45.0580 1916 hcw85cir - ok
18:21:45.0626 1916 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:21:45.0710 1916 HdAudAddService - ok
18:21:45.0747 1916 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
18:21:45.0782 1916 HDAudBus - ok
18:21:45.0806 1916 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:21:45.0823 1916 HidBatt - ok
18:21:45.0835 1916 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:21:45.0869 1916 HidBth - ok
18:21:45.0885 1916 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:21:45.0898 1916 HidIr - ok
18:21:45.0918 1916 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
18:21:46.0003 1916 hidserv - ok
18:21:46.0038 1916 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:21:46.0048 1916 HidUsb - ok
18:21:46.0079 1916 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:21:46.0181 1916 hkmsvc - ok
18:21:46.0243 1916 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:21:46.0308 1916 HomeGroupListener - ok
18:21:46.0354 1916 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:21:46.0387 1916 HomeGroupProvider - ok
18:21:46.0461 1916 [ BE78357FB49759B79CCC01894BCFDDDB ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
18:21:46.0523 1916 HP Health Check Service - ok
18:21:46.0553 1916 [ 2DFB151FD34DF104DAC0ADF070EDA83C ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
18:21:46.0592 1916 HPDrvMntSvc.exe - ok
18:21:46.0630 1916 [ 184C500CB9F69585F3FE85E1D2667CD8 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
18:21:46.0656 1916 hpqwmiex - ok
18:21:46.0695 1916 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
18:21:46.0714 1916 HpSAMD - ok
18:21:46.0779 1916 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:21:46.0849 1916 HTTP - ok
18:21:46.0882 1916 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:21:46.0891 1916 hwpolicy - ok
18:21:46.0926 1916 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
18:21:46.0955 1916 i8042prt - ok
18:21:46.0991 1916 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
18:21:47.0027 1916 iaStorV - ok
18:21:47.0102 1916 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:21:47.0171 1916 idsvc - ok
18:21:47.0386 1916 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IDSvia64.sys
18:21:47.0430 1916 IDSVia64 - ok
18:21:47.0456 1916 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:21:47.0469 1916 iirsp - ok
18:21:47.0492 1916 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
18:21:47.0558 1916 IKEEXT - ok
18:21:47.0765 1916 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
18:21:47.0811 1916 IntcAzAudAddService - ok
18:21:47.0830 1916 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
18:21:47.0840 1916 intelide - ok
18:21:47.0875 1916 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:21:47.0933 1916 intelppm - ok
18:21:47.0981 1916 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:21:48.0123 1916 IPBusEnum - ok
18:21:48.0165 1916 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:21:48.0216 1916 IpFilterDriver - ok
18:21:48.0287 1916 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:21:48.0359 1916 iphlpsvc - ok
18:21:48.0380 1916 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
18:21:48.0417 1916 IPMIDRV - ok
18:21:48.0437 1916 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:21:48.0491 1916 IPNAT - ok
18:21:48.0557 1916 [ 44886233135241F3990724082EB104EE ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
18:21:48.0587 1916 iPod Service - ok
18:21:48.0615 1916 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:21:48.0695 1916 IRENUM - ok
18:21:48.0720 1916 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
18:21:48.0745 1916 isapnp - ok
18:21:48.0768 1916 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
18:21:48.0812 1916 iScsiPrt - ok
18:21:48.0841 1916 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:21:48.0871 1916 kbdclass - ok
18:21:48.0892 1916 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:21:48.0905 1916 kbdhid - ok
18:21:48.0913 1916 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
18:21:48.0926 1916 KeyIso - ok
18:21:48.0974 1916 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:21:49.0022 1916 KSecDD - ok
18:21:49.0062 1916 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:21:49.0089 1916 KSecPkg - ok
18:21:49.0258 1916 [ E47FFCA0909871AC1BFF0D446FF63CA9 ] KSS C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
18:21:49.0291 1916 KSS - ok
18:21:49.0341 1916 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:21:49.0423 1916 ksthunk - ok
18:21:49.0509 1916 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:21:49.0609 1916 KtmRm - ok
18:21:49.0656 1916 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
18:21:49.0732 1916 LanmanServer - ok
18:21:49.0767 1916 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:21:49.0845 1916 LanmanWorkstation - ok
18:21:49.0890 1916 [ 7550D101BF49FDB1F92666A233EE36C4 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
18:21:49.0963 1916 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
18:21:49.0963 1916 LightScribeService - detected UnsignedFile.Multi.Generic (1)
18:21:50.0012 1916 [ 06DC2FDC6282F0D68910417B1150C848 ] LinksysUpdater C:\Program Files (x86)\Linksys\Linksys Updater\bin\LinksysUpdater.exe
18:21:50.0084 1916 LinksysUpdater ( UnsignedFile.Multi.Generic ) - warning
18:21:50.0084 1916 LinksysUpdater - detected UnsignedFile.Multi.Generic (1)
18:21:50.0123 1916 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:21:50.0190 1916 lltdio - ok
18:21:50.0289 1916 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:21:50.0408 1916 lltdsvc - ok
18:21:50.0430 1916 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:21:50.0471 1916 lmhosts - ok
18:21:50.0508 1916 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:21:50.0533 1916 LSI_FC - ok
18:21:50.0542 1916 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:21:50.0557 1916 LSI_SAS - ok
18:21:50.0571 1916 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:21:50.0583 1916 LSI_SAS2 - ok
18:21:50.0599 1916 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:21:50.0626 1916 LSI_SCSI - ok
18:21:50.0647 1916 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:21:50.0715 1916 luafv - ok
18:21:50.0810 1916 [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
18:21:50.0891 1916 McComponentHostService - ok
18:21:50.0925 1916 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:21:50.0993 1916 Mcx2Svc - ok
18:21:51.0015 1916 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:21:51.0028 1916 megasas - ok
18:21:51.0048 1916 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:21:51.0075 1916 MegaSR - ok
18:21:51.0090 1916 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:21:51.0126 1916 MMCSS - ok
18:21:51.0139 1916 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:21:51.0187 1916 Modem - ok
18:21:51.0215 1916 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:21:51.0242 1916 monitor - ok
18:21:51.0266 1916 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:21:51.0276 1916 mouclass - ok
18:21:51.0293 1916 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:21:51.0378 1916 mouhid - ok
18:21:51.0424 1916 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:21:51.0453 1916 mountmgr - ok
18:21:51.0500 1916 [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:21:51.0553 1916 MozillaMaintenance - ok
18:21:51.0591 1916 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
18:21:51.0624 1916 mpio - ok
18:21:51.0663 1916 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:21:51.0715 1916 mpsdrv - ok
18:21:51.0874 1916 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:21:51.0963 1916 MpsSvc - ok
18:21:51.0983 1916 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:21:52.0016 1916 MRxDAV - ok
18:21:52.0044 1916 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:21:52.0121 1916 mrxsmb - ok
18:21:52.0207 1916 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:21:52.0236 1916 mrxsmb10 - ok
18:21:52.0295 1916 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:21:52.0314 1916 mrxsmb20 - ok
18:21:52.0357 1916 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
18:21:52.0408 1916 msahci - ok
18:21:52.0444 1916 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
18:21:52.0477 1916 msdsm - ok
18:21:52.0495 1916 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:21:52.0535 1916 MSDTC - ok
18:21:52.0570 1916 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:21:52.0617 1916 Msfs - ok
18:21:52.0654 1916 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:21:52.0769 1916 mshidkmdf - ok
18:21:52.0840 1916 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
18:21:52.0889 1916 msisadrv - ok
18:21:52.0922 1916 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:21:53.0026 1916 MSiSCSI - ok
18:21:53.0030 1916 msiserver - ok
18:21:53.0055 1916 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:21:53.0129 1916 MSKSSRV - ok
18:21:53.0148 1916 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:21:53.0195 1916 MSPCLOCK - ok
18:21:53.0198 1916 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:21:53.0237 1916 MSPQM - ok
18:21:53.0278 1916 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:21:53.0330 1916 MsRPC - ok
18:21:53.0376 1916 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
18:21:53.0392 1916 mssmbios - ok
18:21:53.0428 1916 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:21:53.0509 1916 MSTEE - ok
18:21:53.0529 1916 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:21:53.0540 1916 MTConfig - ok
18:21:53.0558 1916 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:21:53.0569 1916 Mup - ok
18:21:53.0581 1916 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
18:21:53.0630 1916 napagent - ok
18:21:53.0674 1916 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:21:53.0723 1916 NativeWifiP - ok
18:21:53.0840 1916 [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\ENG64.SYS
18:21:53.0872 1916 NAVENG - ok
18:21:53.0942 1916 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\EX64.SYS
18:21:53.0985 1916 NAVEX15 - ok
18:21:54.0184 1916 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
18:21:54.0246 1916 NDIS - ok
18:21:54.0262 1916 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:21:54.0291 1916 NdisCap - ok
18:21:54.0310 1916 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:21:54.0338 1916 NdisTapi - ok
18:21:54.0372 1916 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:21:54.0463 1916 Ndisuio - ok
18:21:54.0536 1916 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:21:54.0651 1916 NdisWan - ok
18:21:54.0693 1916 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:21:54.0794 1916 NDProxy - ok
18:21:54.0805 1916 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:21:54.0890 1916 NetBIOS - ok
18:21:54.0957 1916 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:21:55.0039 1916 NetBT - ok
18:21:55.0065 1916 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
18:21:55.0075 1916 Netlogon - ok
18:21:55.0122 1916 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:21:55.0201 1916 Netman - ok
18:21:55.0233 1916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:55.0287 1916 NetMsmqActivator - ok
18:21:55.0300 1916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:55.0312 1916 NetPipeActivator - ok
18:21:55.0330 1916 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:21:55.0383 1916 netprofm - ok
18:21:55.0460 1916 [ 1982B291DF9833FB3ADC397EBD310A18 ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys
18:21:55.0495 1916 netr28x - ok
18:21:55.0524 1916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:55.0533 1916 NetTcpActivator - ok
18:21:55.0537 1916 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:55.0546 1916 NetTcpPortSharing - ok
18:21:55.0565 1916 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:21:55.0576 1916 nfrd960 - ok
18:21:55.0706 1916 [ F2840DBFE9322F35557219AE82CC4597 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe
18:21:55.0736 1916 NIS - ok
18:21:55.0772 1916 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:21:55.0837 1916 NlaSvc - ok
18:21:55.0884 1916 [ 82C5A813E8EA7E94DC1AFA24CD803B80 ] nmservice C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
18:21:55.0903 1916 nmservice - ok
18:21:56.0314 1916 [ 5839A8027D6D324A7CD494051A96628C ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
18:21:56.0363 1916 NOBU - ok
18:21:56.0387 1916 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:21:56.0415 1916 Npfs - ok
18:21:56.0449 1916 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:21:56.0542 1916 nsi - ok
18:21:56.0606 1916 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:21:56.0670 1916 nsiproxy - ok
18:21:56.0934 1916 [ B8965FB53551B5455630A4B804D0791F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:21:57.0021 1916 Ntfs - ok
18:21:57.0037 1916 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:21:57.0108 1916 Null - ok
18:21:57.0158 1916 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
18:21:57.0214 1916 nvraid - ok
18:21:57.0259 1916 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
18:21:57.0313 1916 nvstor - ok
18:21:57.0331 1916 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
18:21:57.0354 1916 nv_agp - ok
18:21:57.0485 1916 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:21:57.0569 1916 odserv - ok
18:21:57.0608 1916 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
18:21:57.0664 1916 ohci1394 - ok
18:21:57.0705 1916 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:21:57.0839 1916 ose - ok
18:21:57.0862 1916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:21:57.0985 1916 p2pimsvc - ok
18:21:58.0005 1916 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:21:58.0023 1916 p2psvc - ok
18:21:58.0057 1916 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:21:58.0076 1916 Parport - ok
18:21:58.0096 1916 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:21:58.0140 1916 partmgr - ok
18:21:58.0163 1916 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:21:58.0199 1916 PcaSvc - ok
18:21:58.0240 1916 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
18:21:58.0255 1916 pci - ok
18:21:58.0284 1916 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
18:21:58.0297 1916 pciide - ok
18:21:58.0314 1916 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:21:58.0332 1916 pcmcia - ok
18:21:58.0344 1916 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:21:58.0355 1916 pcw - ok
18:21:58.0374 1916 pdfcDispatcher - ok
18:21:58.0479 1916 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:21:58.0532 1916 PEAUTH - ok
18:21:59.0312 1916 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:21:59.0394 1916 PerfHost - ok
18:21:59.0544 1916 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
18:21:59.0672 1916 pla - ok
18:21:59.0695 1916 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:21:59.0772 1916 PlugPlay - ok
18:21:59.0832 1916 [ 328B99E25901D314FDFB31F18A7E302E ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
18:21:59.0855 1916 pnarp - ok
18:21:59.0877 1916 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:21:59.0925 1916 PNRPAutoReg - ok
18:21:59.0962 1916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:21:59.0983 1916 PNRPsvc - ok
18:22:00.0069 1916 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:22:00.0144 1916 PolicyAgent - ok
18:22:00.0181 1916 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:22:00.0262 1916 Power - ok
18:22:00.0292 1916 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:22:00.0321 1916 PptpMiniport - ok
18:22:00.0346 1916 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:22:00.0405 1916 Processor - ok
18:22:00.0461 1916 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
18:22:00.0542 1916 ProfSvc - ok
18:22:00.0560 1916 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:22:00.0592 1916 ProtectedStorage - ok
18:22:00.0634 1916 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:22:00.0715 1916 Psched - ok
18:22:00.0743 1916 [ E33AE01D03EBE68CD6A934BF52702BFD ] purendis C:\Windows\system32\DRIVERS\purendis.sys
18:22:00.0750 1916 purendis - ok
18:22:00.0962 1916 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:22:01.0064 1916 ql2300 - ok
18:22:01.0083 1916 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:22:01.0095 1916 ql40xx - ok
18:22:01.0146 1916 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:22:01.0213 1916 QWAVE - ok
18:22:01.0239 1916 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:22:01.0295 1916 QWAVEdrv - ok
18:22:01.0314 1916 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:22:01.0362 1916 RasAcd - ok
18:22:01.0393 1916 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:22:01.0421 1916 RasAgileVpn - ok
18:22:01.0432 1916 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:22:01.0475 1916 RasAuto - ok
18:22:01.0507 1916 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:22:01.0594 1916 Rasl2tp - ok
18:22:01.0643 1916 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
18:22:01.0694 1916 RasMan - ok
18:22:01.0706 1916 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:22:01.0787 1916 RasPppoe - ok
18:22:01.0803 1916 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:22:01.0831 1916 RasSstp - ok
18:22:01.0879 1916 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:22:01.0911 1916 rdbss - ok
18:22:01.0924 1916 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:22:01.0937 1916 rdpbus - ok
18:22:01.0952 1916 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:22:01.0986 1916 RDPCDD - ok
18:22:02.0004 1916 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:22:02.0051 1916 RDPENCDD - ok
18:22:02.0082 1916 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:22:02.0110 1916 RDPREFMP - ok
18:22:02.0145 1916 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:22:02.0213 1916 RdpVideoMiniport - ok
18:22:02.0260 1916 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:22:02.0379 1916 RDPWD - ok
18:22:02.0417 1916 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:22:02.0466 1916 rdyboost - ok
18:22:02.0525 1916 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:22:02.0600 1916 RemoteAccess - ok
18:22:02.0624 1916 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:22:02.0716 1916 RemoteRegistry - ok
18:22:02.0759 1916 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:22:02.0815 1916 RpcEptMapper - ok
18:22:02.0831 1916 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:22:02.0891 1916 RpcLocator - ok
18:22:02.0981 1916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\System32\rpcss.dll
18:22:03.0037 1916 RpcSs - ok
18:22:03.0077 1916 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:22:03.0149 1916 rspndr - ok
18:22:03.0212 1916 [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:22:03.0245 1916 RTL8167 - ok
18:22:03.0274 1916 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
18:22:03.0286 1916 SamSs - ok
18:22:03.0339 1916 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
18:22:03.0364 1916 sbp2port - ok
18:22:03.0386 1916 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:22:03.0450 1916 SCardSvr - ok
18:22:03.0481 1916 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:22:03.0568 1916 scfilter - ok
18:22:03.0781 1916 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
18:22:03.0911 1916 Schedule - ok
18:22:03.0940 1916 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:22:03.0968 1916 SCPolicySvc - ok
18:22:04.0054 1916 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:22:04.0182 1916 SDRSVC - ok
18:22:04.0201 1916 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:22:04.0240 1916 secdrv - ok
18:22:04.0268 1916 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
18:22:04.0306 1916 seclogon - ok
18:22:04.0353 1916 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
18:22:04.0406 1916 SENS - ok
18:22:04.0428 1916 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:22:04.0467 1916 SensrSvc - ok
18:22:04.0503 1916 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:22:04.0551 1916 Serenum - ok
18:22:04.0574 1916 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:22:04.0620 1916 Serial - ok
18:22:04.0659 1916 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:22:04.0715 1916 sermouse - ok
18:22:04.0773 1916 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
18:22:04.0868 1916 SessionEnv - ok
18:22:04.0893 1916 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
18:22:04.0971 1916 sffdisk - ok
18:22:05.0004 1916 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
18:22:05.0033 1916 sffp_mmc - ok
18:22:05.0082 1916 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
18:22:05.0162 1916 sffp_sd - ok
18:22:05.0192 1916 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:22:05.0224 1916 sfloppy - ok
18:22:05.0258 1916 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:22:05.0323 1916 SharedAccess - ok
18:22:05.0393 1916 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:22:05.0465 1916 ShellHWDetection - ok
18:22:05.0495 1916 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:22:05.0524 1916 SiSRaid2 - ok
18:22:05.0539 1916 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:22:05.0558 1916 SiSRaid4 - ok
18:22:05.0582 1916 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:22:05.0622 1916 Smb - ok
18:22:05.0676 1916 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:22:05.0730 1916 SNMPTRAP - ok
18:22:05.0751 1916 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:22:05.0777 1916 spldr - ok
18:22:05.0859 1916 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
18:22:05.0961 1916 Spooler - ok
18:22:06.0153 1916 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
18:22:06.0246 1916 sppsvc - ok
18:22:06.0268 1916 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:22:06.0350 1916 sppuinotify - ok
18:22:06.0593 1916 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS
18:22:06.0636 1916 SRTSP - ok
18:22:06.0649 1916 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS
18:22:06.0671 1916 SRTSPX - ok
18:22:06.0772 1916 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
18:22:06.0869 1916 srv - ok
18:22:06.0928 1916 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:22:07.0019 1916 srv2 - ok
18:22:07.0045 1916 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:22:07.0086 1916 srvnet - ok
18:22:07.0130 1916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:22:07.0233 1916 SSDPSRV - ok
18:22:07.0248 1916 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:22:07.0291 1916 SstpSvc - ok
18:22:07.0371 1916 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:22:07.0439 1916 stexstor - ok
18:22:07.0498 1916 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
18:22:07.0547 1916 stisvc - ok
18:22:07.0562 1916 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
18:22:07.0572 1916 swenum - ok
18:22:07.0637 1916 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:22:07.0757 1916 swprv - ok
18:22:07.0855 1916 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NISx64\1309010.00E\SYMDS64.SYS
18:22:07.0951 1916 SymDS - ok
18:22:07.0999 1916 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\NISx64\1309010.00E\SYMEFA64.SYS
18:22:08.0040 1916 SymEFA - ok
18:22:08.0075 1916 [ 898BB48C797483420DF523B2BBC1ECDB ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:22:08.0102 1916 SymEvent - ok
18:22:08.0168 1916 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS
18:22:08.0220 1916 SymIRON - ok
18:22:08.0306 1916 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS
18:22:08.0342 1916 SymNetS - ok
18:22:08.0540 1916 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
18:22:08.0605 1916 SysMain - ok
18:22:08.0635 1916 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:22:08.0736 1916 TabletInputService - ok
18:22:08.0777 1916 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
18:22:08.0831 1916 TapiSrv - ok
18:22:08.0861 1916 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:22:08.0890 1916 TBS - ok
18:22:08.0983 1916 [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:22:09.0066 1916 Tcpip - ok
18:22:09.0179 1916 [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:22:09.0237 1916 TCPIP6 - ok
18:22:09.0274 1916 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:22:09.0303 1916 tcpipreg - ok
18:22:09.0342 1916 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:22:09.0446 1916 TDPIPE - ok
18:22:09.0478 1916 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:22:09.0539 1916 TDTCP - ok
18:22:09.0591 1916 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:22:09.0626 1916 tdx - ok
18:22:09.0669 1916 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
18:22:09.0695 1916 TermDD - ok
18:22:09.0781 1916 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
18:22:09.0876 1916 TermService - ok
18:22:09.0925 1916 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:22:09.0987 1916 Themes - ok
18:22:09.0992 1916 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:22:10.0027 1916 THREADORDER - ok
18:22:10.0038 1916 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:22:10.0070 1916 TrkWks - ok
18:22:10.0143 1916 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:22:10.0229 1916 TrustedInstaller - ok
18:22:10.0279 1916 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:22:10.0393 1916 tssecsrv - ok
18:22:10.0495 1916 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
18:22:10.0614 1916 TsUsbFlt - ok
18:22:10.0663 1916 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:22:10.0739 1916 tunnel - ok
18:22:10.0765 1916 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:22:10.0776 1916 uagp35 - ok
18:22:10.0799 1916 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:22:10.0845 1916 udfs - ok
18:22:10.0868 1916 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:22:10.0887 1916 UI0Detect - ok
18:22:10.0916 1916 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
18:22:10.0956 1916 uliagpkx - ok
18:22:10.0985 1916 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
18:22:11.0018 1916 umbus - ok
18:22:11.0037 1916 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:22:11.0067 1916 UmPass - ok
18:22:11.0093 1916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:22:11.0160 1916 upnphost - ok
18:22:11.0168 1916 usbbus - ok
18:22:11.0200 1916 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:22:11.0250 1916 usbccgp - ok
18:22:11.0273 1916 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
18:22:11.0300 1916 usbcir - ok
18:22:11.0319 1916 UsbDiag - ok
18:22:11.0337 1916 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:22:11.0349 1916 usbehci - ok
18:22:11.0376 1916 [ 2C780746DC44A28FE67004DC58173F05 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:22:11.0387 1916 usbfilter - ok
18:22:11.0434 1916 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:22:11.0469 1916 usbhub - ok
18:22:11.0472 1916 USBModem - ok
18:22:11.0501 1916 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:22:11.0552 1916 usbohci - ok
18:22:11.0573 1916 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:22:11.0616 1916 usbprint - ok
18:22:11.0655 1916 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
18:22:11.0703 1916 usbscan - ok
18:22:11.0735 1916 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:22:11.0778 1916 USBSTOR - ok
18:22:11.0791 1916 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:22:11.0866 1916 usbuhci - ok
18:22:11.0883 1916 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:22:11.0926 1916 UxSms - ok
18:22:11.0929 1916 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
18:22:11.0938 1916 VaultSvc - ok
18:22:11.0984 1916 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
18:22:12.0028 1916 vdrvroot - ok
18:22:12.0148 1916 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
18:22:12.0235 1916 vds - ok
18:22:12.0253 1916 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:22:12.0266 1916 vga - ok
18:22:12.0276 1916 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:22:12.0321 1916 VgaSave - ok
18:22:12.0352 1916 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
18:22:12.0393 1916 vhdmp - ok
18:22:12.0411 1916 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
18:22:12.0434 1916 viaide - ok
18:22:12.0453 1916 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
18:22:12.0481 1916 volmgr - ok
18:22:12.0552 1916 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:22:12.0585 1916 volmgrx - ok
18:22:12.0616 1916 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
18:22:12.0646 1916 volsnap - ok
18:22:12.0681 1916 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:22:12.0693 1916 vsmraid - ok
18:22:12.0776 1916 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
18:22:12.0931 1916 VSS - ok
18:22:12.0944 1916 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:22:12.0976 1916 vwifibus - ok
18:22:13.0016 1916 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:22:13.0047 1916 vwififlt - ok
18:22:13.0074 1916 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
18:22:13.0130 1916 vwifimp - ok
18:22:13.0191 1916 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:22:13.0320 1916 W32Time - ok
18:22:13.0346 1916 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:22:13.0381 1916 WacomPen - ok
18:22:13.0433 1916 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:22:13.0514 1916 WANARP - ok
18:22:13.0517 1916 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:22:13.0547 1916 Wanarpv6 - ok
18:22:13.0612 1916 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
18:22:13.0675 1916 WatAdminSvc - ok
18:22:13.0767 1916 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
18:22:13.0864 1916 wbengine - ok
18:22:13.0885 1916 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:22:13.0948 1916 WbioSrvc - ok
18:22:13.0983 1916 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:22:14.0045 1916 wcncsvc - ok
18:22:14.0077 1916 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:22:14.0153 1916 WcsPlugInService - ok
18:22:14.0172 1916 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:22:14.0212 1916 Wd - ok
18:22:14.0301 1916 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:22:14.0376 1916 Wdf01000 - ok
18:22:14.0411 1916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:22:14.0543 1916 WdiServiceHost - ok
18:22:14.0551 1916 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:22:14.0570 1916 WdiSystemHost - ok
18:22:14.0637 1916 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
18:22:14.0723 1916 WebClient - ok
18:22:14.0752 1916 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:22:14.0835 1916 Wecsvc - ok
18:22:14.0854 1916 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:22:14.0900 1916 wercplsupport - ok
18:22:14.0921 1916 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:22:14.0951 1916 WerSvc - ok
18:22:14.0964 1916 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:22:14.0991 1916 WfpLwf - ok
18:22:15.0000 1916 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:22:15.0010 1916 WIMMount - ok
18:22:15.0023 1916 WinDefend - ok
18:22:15.0035 1916 WinHttpAutoProxySvc - ok
18:22:15.0071 1916 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:22:15.0166 1916 Winmgmt - ok
18:22:15.0406 1916 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
18:22:15.0581 1916 WinRM - ok
18:22:15.0625 1916 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
18:22:15.0678 1916 WinUsb - ok
18:22:15.0784 1916 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:22:15.0859 1916 Wlansvc - ok
18:22:15.0927 1916 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:22:15.0967 1916 wlcrasvc - ok
18:22:16.0322 1916 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:22:16.0366 1916 wlidsvc - ok
18:22:16.0396 1916 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
18:22:16.0406 1916 WmiAcpi - ok
18:22:16.0423 1916 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:22:16.0454 1916 wmiApSrv - ok
18:22:16.0488 1916 WMPNetworkSvc - ok
18:22:16.0497 1916 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:22:16.0548 1916 WPCSvc - ok
18:22:16.0589 1916 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:22:16.0622 1916 WPDBusEnum - ok
18:22:16.0650 1916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:22:16.0704 1916 ws2ifsl - ok
18:22:16.0744 1916 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
18:22:16.0780 1916 wscsvc - ok
18:22:16.0783 1916 WSearch - ok
18:22:17.0230 1916 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
18:22:17.0287 1916 wuauserv - ok
18:22:17.0336 1916 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:22:17.0401 1916 WudfPf - ok
18:22:17.0432 1916 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:22:17.0462 1916 WUDFRd - ok
18:22:17.0514 1916 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:22:17.0559 1916 wudfsvc - ok
18:22:17.0595 1916 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:22:17.0646 1916 WwanSvc - ok
18:22:17.0671 1916 ================ Scan global ===============================
18:22:17.0689 1916 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:22:17.0735 1916 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:22:17.0748 1916 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:22:17.0794 1916 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:22:17.0866 1916 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:22:17.0874 1916 [Global] - ok
18:22:17.0875 1916 ================ Scan MBR ==================================
18:22:17.0895 1916 [ A0DD7F0985D16AC11DEF224BF41E9586 ] \Device\Harddisk0\DR0
18:22:18.0908 1916 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:22:18.0908 1916 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:22:18.0909 1916 ================ Scan VBR ==================================
18:22:18.0939 1916 [ 70245AAA6CEE0298E0501027E931249B ] \Device\Harddisk0\DR0\Partition1
18:22:18.0969 1916 \Device\Harddisk0\DR0\Partition1 - ok
18:22:18.0993 1916 [ 06388D94B2E6F9E16511E58704D83B81 ] \Device\Harddisk0\DR0\Partition2
18:22:19.0044 1916 \Device\Harddisk0\DR0\Partition2 - ok
18:22:19.0086 1916 [ 247D8EF94C7E836A871BD3D824626763 ] \Device\Harddisk0\DR0\Partition3
18:22:19.0149 1916 \Device\Harddisk0\DR0\Partition3 - ok
18:22:19.0150 1916 ================ Scan active images ========================
18:22:19.0155 1916 [ F747497A0EE5498F79B207F215B3D2D8 ] C:\Windows\System32\drivers\amdsata.sys
18:22:19.0155 1916 C:\Windows\System32\drivers\amdsata.sys - ok
18:22:19.0165 1916 [ 3E588B60EC061686BA05D33574A344C6 ] C:\Windows\System32\drivers\crashdmp.sys
18:22:19.0165 1916 C:\Windows\System32\drivers\crashdmp.sys - ok
18:22:19.0172 1916 [ 9BBD8B5855BC6578957F82341F9CDE5A ] C:\Windows\System32\drivers\Diskdump.sys
18:22:19.0172 1916 C:\Windows\System32\drivers\Diskdump.sys - ok
18:22:19.0178 1916 [ 814DB88F2641691575A455CF25354098 ] C:\Windows\System32\drivers\dumpfve.sys
18:22:19.0178 1916 C:\Windows\System32\drivers\dumpfve.sys - ok
18:22:19.0183 1916 [ F036CE71586E93D94DAB220D7BDF4416 ] C:\Windows\System32\drivers\cdrom.sys
18:22:19.0183 1916 C:\Windows\System32\drivers\cdrom.sys - ok
18:22:19.0189 1916 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] C:\Windows\System32\drivers\NISx64\1309010.00E\ccsetx64.sys
18:22:19.0189 1916 C:\Windows\System32\drivers\NISx64\1309010.00E\ccsetx64.sys - ok
18:22:19.0195 1916 [ 891793E00432FA055CF040605C260E49 ] C:\Windows\System32\drivers\NISx64\1309010.00E\srtsp64.sys
18:22:19.0195 1916 C:\Windows\System32\drivers\NISx64\1309010.00E\srtsp64.sys - ok
18:22:19.0200 1916 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] C:\Windows\System32\drivers\NISx64\1309010.00E\ironx64.sys
18:22:19.0200 1916 C:\Windows\System32\drivers\NISx64\1309010.00E\ironx64.sys - ok
18:22:19.0203 1916 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] C:\Windows\System32\drivers\NISx64\1309010.00E\srtspx64.sys
18:22:19.0203 1916 C:\Windows\System32\drivers\NISx64\1309010.00E\srtspx64.sys - ok
18:22:19.0207 1916 [ 898BB48C797483420DF523B2BBC1ECDB ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
18:22:19.0207 1916 C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
18:22:19.0211 1916 [ D2A545DA3A90BBFA40E020C23F1B7A48 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\ex64.sys
18:22:19.0211 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\ex64.sys - ok
18:22:19.0215 1916 [ 88A2F45CE66B904285978D6BB13AFEB2 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\eng64.sys
18:22:19.0215 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\eng64.sys - ok
18:22:19.0219 1916 [ 9899284589F75FA8724FF3D16AED75C1 ] C:\Windows\System32\drivers\null.sys
18:22:19.0219 1916 C:\Windows\System32\drivers\null.sys - ok
18:22:19.0222 1916 [ 16A47CE2DECC9B099349A5F840654746 ] C:\Windows\System32\drivers\beep.sys
18:22:19.0222 1916 C:\Windows\System32\drivers\beep.sys - ok
18:22:19.0225 1916 [ E7353D59C9842BC7299FAEB7E7E09340 ] C:\Windows\System32\drivers\videoprt.sys
18:22:19.0225 1916 C:\Windows\System32\drivers\videoprt.sys - ok
18:22:19.0229 1916 [ FC438D1430B28618E2D0C7C332A710AD ] C:\Windows\System32\drivers\watchdog.sys
18:22:19.0229 1916 C:\Windows\System32\drivers\watchdog.sys - ok
18:22:19.0233 1916 [ 53E92A310193CB3C03BEA963DE7D9CFC ] C:\Windows\System32\drivers\vga.sys
18:22:19.0233 1916 C:\Windows\System32\drivers\vga.sys - ok
18:22:19.0236 1916 [ CEA6CC257FC9B7715F1C2B4849286D24 ] C:\Windows\System32\drivers\RDPCDD.sys
18:22:19.0236 1916 C:\Windows\System32\drivers\RDPCDD.sys - ok
18:22:19.0240 1916 [ BB5971A4F00659529A5C44831AF22365 ] C:\Windows\System32\drivers\RDPENCDD.sys
18:22:19.0240 1916 C:\Windows\System32\drivers\RDPENCDD.sys - ok
18:22:19.0243 1916 [ 216F3FA57533D98E1F74DED70113177A ] C:\Windows\System32\drivers\RDPREFMP.sys
18:22:19.0243 1916 C:\Windows\System32\drivers\RDPREFMP.sys - ok
18:22:19.0247 1916 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] C:\Windows\System32\drivers\msfs.sys
18:22:19.0247 1916 C:\Windows\System32\drivers\msfs.sys - ok
18:22:19.0250 1916 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] C:\Windows\System32\drivers\npfs.sys
18:22:19.0250 1916 C:\Windows\System32\drivers\npfs.sys - ok
18:22:19.0254 1916 [ 6F020A220388ECA0AB6062DC27BD16B6 ] C:\Windows\System32\drivers\tdi.sys
18:22:19.0254 1916 C:\Windows\System32\drivers\tdi.sys - ok
18:22:19.0257 1916 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] C:\Windows\System32\drivers\tdx.sys
18:22:19.0257 1916 C:\Windows\System32\drivers\tdx.sys - ok
18:22:19.0260 1916 [ 1C7857B62DE5994A75B054A9FD4C3825 ] C:\Windows\System32\drivers\afd.sys
18:22:19.0260 1916 C:\Windows\System32\drivers\afd.sys - ok
18:22:19.0264 1916 [ 09594D1089C523423B32A4229263F068 ] C:\Windows\System32\drivers\netbt.sys
18:22:19.0264 1916 C:\Windows\System32\drivers\netbt.sys - ok
18:22:19.0267 1916 [ 6BCC1D7D2FD2453957C5479A32364E52 ] C:\Windows\System32\drivers\ws2ifsl.sys
18:22:19.0267 1916 C:\Windows\System32\drivers\ws2ifsl.sys - ok
18:22:19.0271 1916 [ 611B23304BF067451A9FDEE01FBDD725 ] C:\Windows\System32\drivers\wfplwf.sys
18:22:19.0271 1916 C:\Windows\System32\drivers\wfplwf.sys - ok
18:22:19.0274 1916 [ 0557CF5A2556BD58E26384169D72438D ] C:\Windows\System32\drivers\pacer.sys
18:22:19.0274 1916 C:\Windows\System32\drivers\pacer.sys - ok
18:22:19.0278 1916 [ 6A3D66263414FF0D6FA754C646612F3F ] C:\Windows\System32\drivers\vwififlt.sys
18:22:19.0278 1916 C:\Windows\System32\drivers\vwififlt.sys - ok
18:22:19.0282 1916 [ 86743D9F5D2B1048062B14B1D84501C4 ] C:\Windows\System32\drivers\netbios.sys
18:22:19.0282 1916 C:\Windows\System32\drivers\netbios.sys - ok
18:22:19.0285 1916 [ 356AFD78A6ED4457169241AC3965230C ] C:\Windows\System32\drivers\wanarp.sys
18:22:19.0285 1916 C:\Windows\System32\drivers\wanarp.sys - ok
18:22:19.0289 1916 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] C:\Windows\System32\drivers\termdd.sys
18:22:19.0289 1916 C:\Windows\System32\drivers\termdd.sys - ok
18:22:19.0292 1916 [ 3911BD0E68C010E5438A87706ABBE9AB ] C:\Windows\System32\drivers\NISx64\1309010.00E\symnets.sys
18:22:19.0292 1916 C:\Windows\System32\drivers\NISx64\1309010.00E\symnets.sys - ok
18:22:19.0295 1916 [ 77F665941019A1594D887A74F301FA2F ] C:\Windows\System32\drivers\rdbss.sys
18:22:19.0295 1916 C:\Windows\System32\drivers\rdbss.sys - ok
18:22:19.0298 1916 [ E7F5AE18AF4168178A642A9247C63001 ] C:\Windows\System32\drivers\nsiproxy.sys
18:22:19.0298 1916 C:\Windows\System32\drivers\nsiproxy.sys - ok
18:22:19.0302 1916 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] C:\Windows\System32\drivers\mssmbios.sys
18:22:19.0302 1916 C:\Windows\System32\drivers\mssmbios.sys - ok
18:22:19.0306 1916 [ A48928D4CCA6F8B731989DB08CF2C0AB ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IDSviA64.sys
18:22:19.0306 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IDSviA64.sys - ok
18:22:19.0309 1916 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:22:19.0309 1916 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
18:22:19.0313 1916 [ 13096B05847EC78F0977F2C0F79E9AB3 ] C:\Windows\System32\drivers\discache.sys
18:22:19.0313 1916 C:\Windows\System32\drivers\discache.sys - ok
18:22:19.0317 1916 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] C:\Windows\System32\drivers\dfsc.sys
18:22:19.0317 1916 C:\Windows\System32\drivers\dfsc.sys - ok
18:22:19.0320 1916 [ 61583EE3C3A17003C4ACD0475646B4D3 ] C:\Windows\System32\drivers\blbdrive.sys
18:22:19.0320 1916 C:\Windows\System32\drivers\blbdrive.sys - ok
18:22:19.0324 1916 [ E92A3DA47BED7CC65D264235617ED46E ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20130322.001_24\BHDrvx64.sys
18:22:19.0324 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20130322.001_24\BHDrvx64.sys - ok
18:22:19.0327 1916 [ 3566A8DAAFA27AF944F5D705EAA64894 ] C:\Windows\System32\drivers\tunnel.sys
18:22:19.0327 1916 C:\Windows\System32\drivers\tunnel.sys - ok
18:22:19.0331 1916 [ 1E56388B3FE0D031C44144EB8C4D6217 ] C:\Windows\System32\drivers\amdppm.sys
18:22:19.0331 1916 C:\Windows\System32\drivers\amdppm.sys - ok
18:22:19.0334 1916 [ 1911A3356FA3F77CCC825CCBAC038C2A ] C:\Windows\System32\smss.exe
18:22:19.0334 1916 C:\Windows\System32\smss.exe - ok
18:22:19.0338 1916 [ CF95B85FF8D128385ABD411C8CA74DED ] C:\Windows\System32\ntdll.dll
18:22:19.0338 1916 C:\Windows\System32\ntdll.dll - ok
18:22:19.0341 1916 [ 0D1055A47A8F5DC1CAA2701831293EBB ] C:\Windows\System32\drivers\atikmpag.sys
18:22:19.0341 1916 C:\Windows\System32\drivers\atikmpag.sys - ok
18:22:19.0345 1916 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93 ] C:\Windows\System32\autochk.exe
18:22:19.0345 1916 C:\Windows\System32\autochk.exe - ok
18:22:19.0348 1916 [ 28C0B5024F5C5A438E78B188CFC81B7F ] C:\Windows\System32\normaliz.dll
18:22:19.0348 1916 C:\Windows\System32\normaliz.dll - ok
18:22:19.0352 1916 [ AA2C08CE85653B1A0D2E4AB407FA176C ] C:\Windows\System32\imm32.dll
18:22:19.0352 1916 C:\Windows\System32\imm32.dll - ok
18:22:19.0355 1916 [ 6C60B5ACA7442EFB794082CDACFC001C ] C:\Windows\System32\ole32.dll
18:22:19.0355 1916 C:\Windows\System32\ole32.dll - ok
18:22:19.0358 1916 [ C6689007B3A749C49A5438DCF36E0CE4 ] C:\Windows\System32\shell32.dll
18:22:19.0358 1916 C:\Windows\System32\shell32.dll - ok
18:22:19.0362 1916 [ 9920704BF815A5B42DA5264F013AAEB7 ] C:\Windows\System32\drivers\atikmdag.sys
18:22:19.0362 1916 C:\Windows\System32\drivers\atikmdag.sys - ok
18:22:19.0365 1916 [ F5BEE30450E18E6B83A5012C100616FD ] C:\Windows\System32\drivers\dxgkrnl.sys
18:22:19.0365 1916 C:\Windows\System32\drivers\dxgkrnl.sys - ok
18:22:19.0369 1916 [ 6DF46D2BD74E3DA1B45F08F10D172732 ] C:\Windows\System32\advapi32.dll
18:22:19.0369 1916 C:\Windows\System32\advapi32.dll - ok
18:22:19.0372 1916 [ 9CD68BDDF322535C02ADC8331013D13D ] C:\Windows\System32\drivers\dxgmms1.sys
18:22:19.0372 1916 C:\Windows\System32\drivers\dxgmms1.sys - ok
18:22:19.0376 1916 [ 0611473C1AD9E2D991CD9482068417F7 ] C:\Windows\System32\rpcrt4.dll
18:22:19.0376 1916 C:\Windows\System32\rpcrt4.dll - ok
18:22:19.0379 1916 [ 1982B291DF9833FB3ADC397EBD310A18 ] C:\Windows\System32\drivers\netr28x.sys
18:22:19.0379 1916 C:\Windows\System32\drivers\netr28x.sys - ok
18:22:19.0382 1916 [ 29812E9971077BE3F8B9DC225CF9D454 ] C:\Windows\System32\urlmon.dll
18:22:19.0382 1916 C:\Windows\System32\urlmon.dll - ok
18:22:19.0386 1916 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] C:\Windows\System32\drivers\vwifibus.sys
18:22:19.0386 1916 C:\Windows\System32\drivers\vwifibus.sys - ok
18:22:19.0389 1916 [ F4C374B1C46DE294B573BB43723AC3F6 ] C:\Windows\System32\drivers\Rt64win7.sys
18:22:19.0389 1916 C:\Windows\System32\drivers\Rt64win7.sys - ok
18:22:19.0393 1916 [ 8E98D21EE06192492A5671A6144D092F ] C:\Windows\System32\drivers\GEARAspiWDM.sys
18:22:19.0393 1916 C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
18:22:19.0396 1916 [ 4BBFA57F594F7E8A8EDC8F377184C3F0 ] C:\Windows\System32\ws2_32.dll
18:22:19.0396 1916 C:\Windows\System32\ws2_32.dll - ok
18:22:19.0400 1916 [ 4E4FFB09D895AA000DD56D1404F69A7E ] C:\Windows\System32\Wldap32.dll
18:22:19.0400 1916 C:\Windows\System32\Wldap32.dll - ok
18:22:19.0403 1916 [ F7CE0C81C545364020ED8203CF0A633E ] C:\Windows\System32\difxapi.dll
18:22:19.0403 1916 C:\Windows\System32\difxapi.dll - ok
18:22:19.0407 1916 [ 9840FC418B4CBD632D3D0A667A725C31 ] C:\Windows\System32\drivers\usbohci.sys
18:22:19.0407 1916 C:\Windows\System32\drivers\usbohci.sys - ok
18:22:19.0410 1916 [ AE259C75F9A0B057B6BF9E9695632B09 ] C:\Windows\System32\drivers\usbport.sys
18:22:19.0410 1916 C:\Windows\System32\drivers\usbport.sys - ok
18:22:19.0414 1916 [ 1084AA52CCC324EA54C7121FA24C2221 ] C:\Windows\System32\gdi32.dll
18:22:19.0414 1916 C:\Windows\System32\gdi32.dll - ok
18:22:19.0417 1916 [ 2C780746DC44A28FE67004DC58173F05 ] C:\Windows\System32\drivers\usbfilter.sys
18:22:19.0417 1916 C:\Windows\System32\drivers\usbfilter.sys - ok
18:22:19.0420 1916 [ C025055FE7B87701EB042095DF1A2D7B ] C:\Windows\System32\drivers\usbehci.sys
18:22:19.0420 1916 C:\Windows\System32\drivers\usbehci.sys - ok
18:22:19.0424 1916 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5 ] C:\Windows\System32\setupapi.dll
18:22:19.0424 1916 C:\Windows\System32\setupapi.dll - ok
18:22:19.0427 1916 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] C:\Windows\System32\drivers\hdaudbus.sys
18:22:19.0427 1916 C:\Windows\System32\drivers\hdaudbus.sys - ok
18:22:19.0431 1916 [ F6FF8944478594D0E414D3F048F0D778 ] C:\Windows\System32\drivers\wmiacpi.sys
18:22:19.0431 1916 C:\Windows\System32\drivers\wmiacpi.sys - ok
18:22:19.0434 1916 [ 03EDB043586CCEBA243D689BDDA370A8 ] C:\Windows\System32\drivers\CompositeBus.sys
18:22:19.0434 1916 C:\Windows\System32\drivers\CompositeBus.sys - ok
18:22:19.0438 1916 [ A1BE6A720D02E37F72E9CD89AE9CB3CF ] C:\Windows\System32\imagehlp.dll
18:22:19.0438 1916 C:\Windows\System32\imagehlp.dll - ok
18:22:19.0441 1916 [ 7ECFF9B22276B73F43A99A15A6094E90 ] C:\Windows\System32\drivers\agilevpn.sys
18:22:19.0442 1916 C:\Windows\System32\drivers\agilevpn.sys - ok
18:22:19.0445 1916 [ C391FC68282A000CDF953F8B6B55D2EF ] C:\Windows\System32\msvcrt.dll
18:22:19.0445 1916 C:\Windows\System32\msvcrt.dll - ok
18:22:19.0448 1916 [ 471815800AE33E6F1C32FB1B97C490CA ] C:\Windows\System32\drivers\rasl2tp.sys
18:22:19.0448 1916 C:\Windows\System32\drivers\rasl2tp.sys - ok
18:22:19.0452 1916 [ 30639C932D9FEF22B31268FE25A1B6E5 ] C:\Windows\System32\drivers\ndistapi.sys
18:22:19.0452 1916 C:\Windows\System32\drivers\ndistapi.sys - ok
18:22:19.0455 1916 [ D87E1E59C73C1F98D5DED5B3850C40F5 ] C:\Windows\System32\psapi.dll
18:22:19.0455 1916 C:\Windows\System32\psapi.dll - ok
18:22:19.0459 1916 [ FE70103391A64039A921DBFFF9C7AB1B ] C:\Windows\System32\user32.dll
18:22:19.0459 1916 C:\Windows\System32\user32.dll - ok
18:22:19.0462 1916 [ 53F7305169863F0A2BDDC49E116C2E11 ] C:\Windows\System32\drivers\ndiswan.sys
18:22:19.0462 1916 C:\Windows\System32\drivers\ndiswan.sys - ok
18:22:19.0466 1916 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] C:\Windows\System32\drivers\raspppoe.sys
18:22:19.0466 1916 C:\Windows\System32\drivers\raspppoe.sys - ok
18:22:19.0469 1916 [ 753C0848AE7872A3F59663078A517293 ] C:\Windows\System32\wininet.dll
18:22:19.0469 1916 C:\Windows\System32\wininet.dll - ok
18:22:19.0473 1916 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] C:\Windows\System32\drivers\raspptp.sys
18:22:19.0473 1916 C:\Windows\System32\drivers\raspptp.sys - ok
18:22:19.0476 1916 [ E8B1E447B008D07FF47D016C2B0EEECB ] C:\Windows\System32\drivers\rassstp.sys
18:22:19.0476 1916 C:\Windows\System32\drivers\rassstp.sys - ok
18:22:19.0480 1916 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] C:\Windows\System32\drivers\kbdclass.sys
18:22:19.0480 1916 C:\Windows\System32\drivers\kbdclass.sys - ok
18:22:19.0483 1916 [ 83404DCBCE4925B6A5A77C5170F46D86 ] C:\Windows\System32\sechost.dll
18:22:19.0483 1916 C:\Windows\System32\sechost.dll - ok
18:22:19.0486 1916 [ 7D27EA49F3C1F687D357E77A470AEA99 ] C:\Windows\System32\drivers\mouclass.sys
18:22:19.0486 1916 C:\Windows\System32\drivers\mouclass.sys - ok
18:22:19.0490 1916 [ 044FE45FFD6AD40E3BBBE60B7F41BABE ] C:\Windows\System32\nsi.dll
18:22:19.0490 1916 C:\Windows\System32\nsi.dll - ok
18:22:19.0493 1916 [ C431EAF5CAA1C82CAC2534A2EAB348A3 ] C:\Windows\System32\msctf.dll
18:22:19.0493 1916 C:\Windows\System32\msctf.dll - ok
18:22:19.0497 1916 [ 24FBF5CC5C04150073C315A7C83521EE ] C:\Windows\System32\drivers\ks.sys
18:22:19.0497 1916 C:\Windows\System32\drivers\ks.sys - ok
18:22:19.0500 1916 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] C:\Windows\System32\drivers\swenum.sys
18:22:19.0500 1916 C:\Windows\System32\drivers\swenum.sys - ok
18:22:19.0504 1916 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] C:\Windows\System32\drivers\amdiox64.sys
18:22:19.0504 1916 C:\Windows\System32\drivers\amdiox64.sys - ok
18:22:19.0507 1916 [ 65C113214F7B05820F6D8A65B1485196 ] C:\Windows\System32\kernel32.dll
18:22:19.0507 1916 C:\Windows\System32\kernel32.dll - ok
18:22:19.0511 1916 [ DC54A574663A895C8763AF0FA1FF7561 ] C:\Windows\System32\drivers\umbus.sys
18:22:19.0511 1916 C:\Windows\System32\drivers\umbus.sys - ok
18:22:19.0514 1916 [ 25983DE69B57142039AC8D95E71CD9C9 ] C:\Windows\System32\clbcatq.dll
18:22:19.0514 1916 C:\Windows\System32\clbcatq.dll - ok
18:22:19.0518 1916 [ EAF32CB8C1F810E4715B4DFBE785C7FF ] C:\Windows\System32\shlwapi.dll
18:22:19.0518 1916 C:\Windows\System32\shlwapi.dll - ok
18:22:19.0521 1916 [ 85F1FE2D5EDBFD26066F5ABB9504A69C ] C:\Windows\System32\iertutil.dll
18:22:19.0521 1916 C:\Windows\System32\iertutil.dll - ok
18:22:19.0524 1916 [ 9835E63E09F824D22B689D2BB789BAB9 ] C:\Windows\System32\comdlg32.dll
18:22:19.0524 1916 C:\Windows\System32\comdlg32.dll - ok
18:22:19.0528 1916 [ DBF99FD9CAF75CA66D042BD8D050FF71 ] C:\Windows\System32\usp10.dll
18:22:19.0528 1916 C:\Windows\System32\usp10.dll - ok
18:22:19.0531 1916 [ C06B32165E23A72A898B7A89679AD754 ] C:\Windows\System32\oleaut32.dll
18:22:19.0531 1916 C:\Windows\System32\oleaut32.dll - ok
18:22:19.0535 1916 [ D202223587518B13D72D68937B7E3F70 ] C:\Windows\System32\lpk.dll
18:22:19.0535 1916 C:\Windows\System32\lpk.dll - ok
18:22:19.0538 1916 [ F49E92B50CED5C9F1725D3C0329FD933 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
18:22:19.0538 1916 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
18:22:19.0542 1916 [ AA06902362B1422D7A7DA7061E07C624 ] C:\Windows\System32\wintrust.dll
18:22:19.0542 1916 C:\Windows\System32\wintrust.dll - ok
18:22:19.0545 1916 [ 2477A28081BDAEE622CF045ACF8EE124 ] C:\Windows\System32\cfgmgr32.dll
18:22:19.0545 1916 C:\Windows\System32\cfgmgr32.dll - ok
18:22:19.0547 1916 [ 64A4AB126E24FD3F58EBE64852773DB5 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
18:22:19.0548 1916 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
18:22:19.0551 1916 [ 06FEC9E8117103BB1141A560E98077DA ] C:\Windows\System32\devobj.dll
18:22:19.0551 1916 C:\Windows\System32\devobj.dll - ok
18:22:19.0554 1916 [ 9094039A00485F71C4DE64BF51F64C46 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
18:22:19.0554 1916 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
18:22:19.0558 1916 [ 12EE6FE9268CEE6D90FDCCBF89236C65 ] C:\Windows\System32\crypt32.dll
18:22:19.0558 1916 C:\Windows\System32\crypt32.dll - ok
18:22:19.0561 1916 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\System32\comctl32.dll
18:22:19.0561 1916 C:\Windows\System32\comctl32.dll - ok
18:22:19.0565 1916 [ 72723D3E4781BADC62C3180C137E7B23 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
18:22:19.0565 1916 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
18:22:19.0568 1916 [ 1F56F209585F350A5666E3CC7931FD67 ] C:\Windows\System32\KernelBase.dll
18:22:19.0568 1916 C:\Windows\System32\KernelBase.dll - ok
18:22:19.0572 1916 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
18:22:19.0572 1916 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
18:22:19.0576 1916 [ 0E6FBF19D9DFBB77316C23DF91F8A101 ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
18:22:19.0576 1916 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
18:22:19.0579 1916 [ 884415BD4269C02EAF8E2613BF85500D ] C:\Windows\System32\msasn1.dll
18:22:19.0579 1916 C:\Windows\System32\msasn1.dll - ok
18:22:19.0583 1916 [ 287C6C9410B111B68B52CA298F7B8C24 ] C:\Windows\System32\drivers\usbhub.sys
18:22:19.0583 1916 C:\Windows\System32\drivers\usbhub.sys - ok
18:22:19.0586 1916 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] C:\Windows\System32\drivers\ndproxy.sys
18:22:19.0586 1916 C:\Windows\System32\drivers\ndproxy.sys - ok
18:22:19.0589 1916 [ 9C278785347BCC991F8EA2999D90F58D ] C:\Windows\SysWOW64\normaliz.dll
18:22:19.0589 1916 C:\Windows\SysWOW64\normaliz.dll - ok
18:22:19.0593 1916 [ 21D26064AEDB4988F785BB4A3A2C051E ] C:\Windows\System32\drivers\drmk.sys
18:22:19.0593 1916 C:\Windows\System32\drivers\drmk.sys - ok
18:22:19.0597 1916 [ 32E11315B5126921FFD9074840EF13D3 ] C:\Windows\System32\drivers\portcls.sys
18:22:19.0597 1916 C:\Windows\System32\drivers\portcls.sys - ok
18:22:19.0600 1916 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] C:\Windows\System32\drivers\RTKVHD64.sys
18:22:19.0600 1916 C:\Windows\System32\drivers\RTKVHD64.sys - ok
18:22:19.0604 1916 [ 6869281E78CB31A43E969F06B57347C4 ] C:\Windows\System32\drivers\ksthunk.sys
18:22:19.0604 1916 C:\Windows\System32\drivers\ksthunk.sys - ok
18:22:19.0607 1916 [ BF24D6F2ED97FE830BFD52B246F98E67 ] C:\Windows\System32\drivers\dxapi.sys
18:22:19.0607 1916 C:\Windows\System32\drivers\dxapi.sys - ok
18:22:19.0610 1916 [ 86F96630D28523F1C402C783F046DEF1 ] C:\Windows\System32\win32k.sys
18:22:19.0610 1916 C:\Windows\System32\win32k.sys - ok
18:22:19.0614 1916 [ 60C2862B4BF0FD9F582EF344C2B1EC72 ] C:\Windows\System32\csrss.exe
18:22:19.0614 1916 C:\Windows\System32\csrss.exe - ok
18:22:19.0617 1916 [ 6F1A3157A1C89435352CEB543CDB359C ] C:\Windows\System32\drivers\usbccgp.sys
18:22:19.0617 1916 C:\Windows\System32\drivers\usbccgp.sys - ok
18:22:19.0621 1916 [ CCA2AB1752A61F29C3C941CD79D78CEA ] C:\Windows\System32\drivers\usbd.sys
18:22:19.0621 1916 C:\Windows\System32\drivers\usbd.sys - ok
18:22:19.0624 1916 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] C:\Windows\System32\drivers\usbscan.sys
18:22:19.0624 1916 C:\Windows\System32\drivers\usbscan.sys - ok
18:22:19.0628 1916 [ 73188F58FB384E75C4063D29413CEE3D ] C:\Windows\System32\drivers\usbprint.sys
18:22:19.0628 1916 C:\Windows\System32\drivers\usbprint.sys - ok
18:22:19.0631 1916 [ 49EE2E52E6CD03947DAD72F65367BE06 ] C:\Windows\System32\drivers\hidparse.sys
18:22:19.0631 1916 C:\Windows\System32\drivers\hidparse.sys - ok
18:22:19.0635 1916 [ 8B0E40E7E8BBF5ACF390465609D89FF1 ] C:\Windows\System32\drivers\hidclass.sys
18:22:19.0635 1916 C:\Windows\System32\drivers\hidclass.sys - ok
18:22:19.0638 1916 [ 9592090A7E2B61CD582B612B6DF70536 ] C:\Windows\System32\drivers\hidusb.sys
18:22:19.0638 1916 C:\Windows\System32\drivers\hidusb.sys - ok
18:22:19.0641 1916 [ FED648B01349A3C8395A5169DB5FB7D6 ] C:\Windows\System32\drivers\USBSTOR.SYS
18:22:19.0642 1916 C:\Windows\System32\drivers\USBSTOR.SYS - ok
18:22:19.0645 1916 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] C:\Windows\System32\drivers\mouhid.sys
18:22:19.0645 1916 C:\Windows\System32\drivers\mouhid.sys - ok
18:22:19.0648 1916 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] C:\Windows\System32\drivers\kbdhid.sys
18:22:19.0648 1916 C:\Windows\System32\drivers\kbdhid.sys - ok
18:22:19.0652 1916 [ 96F587CA26A6AA894BD8CACE4540CFFC ] C:\Windows\System32\csrsrv.dll
18:22:19.0652 1916 C:\Windows\System32\csrsrv.dll - ok
18:22:19.0655 1916 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\System32\basesrv.dll
18:22:19.0655 1916 C:\Windows\System32\basesrv.dll - ok
18:22:19.0658 1916 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\System32\winsrv.dll
18:22:19.0658 1916 C:\Windows\System32\winsrv.dll - ok
18:22:19.0662 1916 [ B03D591DC7DA45ECE20B3B467E6AADAA ] C:\Windows\System32\drivers\monitor.sys
18:22:19.0662 1916 C:\Windows\System32\drivers\monitor.sys - ok
18:22:19.0665 1916 [ F29FE765E1448EF371CFE05BFAC74ADB ] C:\Windows\System32\tsddd.dll
18:22:19.0665 1916 C:\Windows\System32\tsddd.dll - ok
18:22:19.0669 1916 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\System32\sxssrv.dll
18:22:19.0669 1916 C:\Windows\System32\sxssrv.dll - ok
18:22:19.0672 1916 [ 94355C28C1970635A31B3FE52EB7CEBA ] C:\Windows\System32\wininit.exe
18:22:19.0672 1916 C:\Windows\System32\wininit.exe - ok
18:22:19.0675 1916 [ 2C942733A5983DD4502219FF37C7EBC7 ] C:\Windows\System32\profapi.dll
18:22:19.0676 1916 C:\Windows\System32\profapi.dll - ok
18:22:19.0679 1916 [ 05569A79BF4693670B709144382D02D4 ] C:\Windows\System32\cdd.dll
18:22:19.0679 1916 C:\Windows\System32\cdd.dll - ok
18:22:19.0682 1916 [ C2A8CB1275ECB85D246A9ECC02A728E3 ] C:\Windows\System32\RpcRtRemote.dll
18:22:19.0682 1916 C:\Windows\System32\RpcRtRemote.dll - ok
18:22:19.0686 1916 [ 78523A26F5604C0568FE9D1CE86E36F4 ] C:\Windows\System32\KBDUS.DLL
18:22:19.0686 1916 C:\Windows\System32\KBDUS.DLL - ok
18:22:19.0689 1916 [ 1151B1BAA6F350B1DB6598E0FEA7C457 ] C:\Windows\System32\winlogon.exe
18:22:19.0689 1916 C:\Windows\System32\winlogon.exe - ok
18:22:19.0692 1916 [ B26B1801356760841C3BC69F9F91537F ] C:\Windows\System32\WlS0WndH.dll
18:22:19.0692 1916 C:\Windows\System32\WlS0WndH.dll - ok
18:22:19.0696 1916 [ 9CEAD32E79A62150FE9F8557E58E008B ] C:\Windows\System32\sxs.dll
18:22:19.0696 1916 C:\Windows\System32\sxs.dll - ok
18:22:19.0699 1916 [ 0D9764D58C5EFD672B7184854B152E5E ] C:\Windows\System32\winsta.dll
18:22:19.0699 1916 C:\Windows\System32\winsta.dll - ok
18:22:19.0703 1916 [ 784FA3DF338E2E8F5F0389D6FAC428AF ] C:\Windows\System32\cryptbase.dll
18:22:19.0703 1916 C:\Windows\System32\cryptbase.dll - ok
18:22:19.0706 1916 [ 90499F3163A9F815CF196A205EA3CD5D ] C:\Windows\System32\apphelp.dll
18:22:19.0706 1916 C:\Windows\System32\apphelp.dll - ok
18:22:19.0710 1916 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\System32\services.exe
18:22:19.0710 1916 C:\Windows\System32\services.exe - ok
18:22:19.0713 1916 [ C118A82CD78818C29AB228366EBF81C3 ] C:\Windows\System32\lsass.exe
18:22:19.0713 1916 C:\Windows\System32\lsass.exe - ok
18:22:19.0717 1916 [ 3A0CE5FE781708CD6ABD55313607EC8B ] C:\Windows\System32\sspisrv.dll
18:22:19.0717 1916 C:\Windows\System32\sspisrv.dll - ok
18:22:19.0720 1916 [ B66BC8B20B7F33975865B1DF99783FD8 ] C:\Windows\System32\sspicli.dll
18:22:19.0720 1916 C:\Windows\System32\sspicli.dll - ok
18:22:19.0723 1916 [ 685527DA09EBFB681E98C515978BDEE2 ] C:\Windows\System32\lsasrv.dll
18:22:19.0723 1916 C:\Windows\System32\lsasrv.dll - ok
18:22:19.0727 1916 [ A744BA6E04C8AA4592818178DBF89521 ] C:\Windows\System32\samsrv.dll
18:22:19.0727 1916 C:\Windows\System32\samsrv.dll - ok
18:22:19.0730 1916 [ E914A50A151DFFE63D3935226DB5E2C1 ] C:\Windows\System32\scext.dll
18:22:19.0730 1916 C:\Windows\System32\scext.dll - ok
18:22:19.0733 1916 [ 0144D8D75A0B12938AEEE859E3310A46 ] C:\Windows\System32\secur32.dll
18:22:19.0733 1916 C:\Windows\System32\secur32.dll - ok
18:22:19.0737 1916 [ BBCDF350817BA86416C0F06B6981BE8D ] C:\Windows\System32\scesrv.dll
18:22:19.0737 1916 C:\Windows\System32\scesrv.dll - ok
18:22:19.0740 1916 [ 3A061472B38233BAFF9CFEFF2E49C46B ] C:\Windows\System32\cryptdll.dll
18:22:19.0740 1916 C:\Windows\System32\cryptdll.dll - ok
18:22:19.0743 1916 [ 3A9C9BAF610B0DD4967086040B3B62A9 ] C:\Windows\System32\srvcli.dll
18:22:19.0743 1916 C:\Windows\System32\srvcli.dll - ok
18:22:19.0747 1916 [ 3C073B0C596A0AF84933E7406766B040 ] C:\Windows\System32\wevtapi.dll
18:22:19.0747 1916 C:\Windows\System32\wevtapi.dll - ok
18:22:19.0750 1916 [ 7FBEBD2229EA5FD48D41B199EC2D541C ] C:\Windows\System32\authz.dll
18:22:19.0750 1916 C:\Windows\System32\authz.dll - ok
18:22:19.0753 1916 [ 86FE1B1F8FD42CD0DB641AB1CDB13093 ] C:\Windows\System32\cngaudit.dll
18:22:19.0753 1916 C:\Windows\System32\cngaudit.dll - ok
18:22:19.0757 1916 [ 5F3307352216618221A17CFEF273EEE2 ] C:\Windows\System32\ncrypt.dll
18:22:19.0757 1916 C:\Windows\System32\ncrypt.dll - ok
18:22:19.0760 1916 [ B9A95365E52F421A20E1501935FADDA5 ] C:\Windows\System32\bcrypt.dll
18:22:19.0760 1916 C:\Windows\System32\bcrypt.dll - ok
18:22:19.0764 1916 [ 02B64609F865A39365FF88580DF11738 ] C:\Windows\System32\msprivs.dll
18:22:19.0764 1916 C:\Windows\System32\msprivs.dll - ok
18:22:19.0767 1916 [ 50532FCD7ECF02DD169CE5C485F02534 ] C:\Windows\System32\negoexts.dll
18:22:19.0767 1916 C:\Windows\System32\negoexts.dll - ok
18:22:19.0770 1916 [ C6505DE3561537BA1004D638C2F93F2F ] C:\Windows\System32\netjoin.dll
18:22:19.0770 1916 C:\Windows\System32\netjoin.dll - ok
18:22:19.0774 1916 [ 44E1A196DFCB53B01FE4B855C3B56A15 ] C:\Windows\System32\kerberos.dll
18:22:19.0774 1916 C:\Windows\System32\kerberos.dll - ok
18:22:19.0777 1916 [ D0C2FBB6D97416B0166478FC7AE2B212 ] C:\Windows\System32\cryptsp.dll
18:22:19.0777 1916 C:\Windows\System32\cryptsp.dll - ok
18:22:19.0781 1916 [ 1D5185A4C7E6695431AE4B55C3D7D333 ] C:\Windows\System32\mswsock.dll
18:22:19.0781 1916 C:\Windows\System32\mswsock.dll - ok
18:22:19.0784 1916 [ EF12B8385AA2849999008A977918F96B ] C:\Windows\System32\msv1_0.dll
18:22:19.0784 1916 C:\Windows\System32\msv1_0.dll - ok
18:22:19.0788 1916 [ EC7CBFF96B05ECF3D366355B3C64ADCF ] C:\Windows\System32\wship6.dll
18:22:19.0788 1916 C:\Windows\System32\wship6.dll - ok
18:22:19.0791 1916 [ AA339DD8BB128EF66660DFBBB59043D3 ] C:\Windows\System32\netlogon.dll
18:22:19.0791 1916 C:\Windows\System32\netlogon.dll - ok
18:22:19.0795 1916 [ 492D07D79E7024CA310867B526D9636D ] C:\Windows\System32\dnsapi.dll
18:22:19.0795 1916 C:\Windows\System32\dnsapi.dll - ok
18:22:19.0797 1916 [ 8FFE297B8449386E7B6851458B6E474E ] C:\Windows\System32\logoncli.dll
18:22:19.0797 1916 C:\Windows\System32\logoncli.dll - ok
18:22:19.0800 1916 [ B7D42CB36C08FA017E73FF2433CD7287 ] C:\Windows\System32\schannel.dll
18:22:19.0801 1916 C:\Windows\System32\schannel.dll - ok
18:22:19.0804 1916 [ 95FB6CA4374E343DDD653FCC43F9D26B ] C:\Windows\System32\wdigest.dll
18:22:19.0804 1916 C:\Windows\System32\wdigest.dll - ok
18:22:19.0807 1916 [ 5D8874A8C11DDDDE29E12DE0E2013493 ] C:\Windows\System32\rsaenh.dll
18:22:19.0807 1916 C:\Windows\System32\rsaenh.dll - ok
18:22:19.0811 1916 [ 9662EE182644511439F1C53745DC1C88 ] C:\Windows\System32\lsm.exe
18:22:19.0811 1916 C:\Windows\System32\lsm.exe - ok
18:22:19.0814 1916 [ 68083118797CAF30FB2EA3E71494D67E ] C:\Windows\System32\sysntfy.dll
18:22:19.0814 1916 C:\Windows\System32\sysntfy.dll - ok
18:22:19.0817 1916 [ 8A25506B6948EFBD5A7F37E53CCD36D9 ] C:\Windows\System32\TSpkg.dll
18:22:19.0817 1916 C:\Windows\System32\TSpkg.dll - ok
18:22:19.0821 1916 [ DEE7267C5D232A3B816866872CE199E6 ] C:\Windows\System32\wmsgapi.dll
18:22:19.0821 1916 C:\Windows\System32\wmsgapi.dll - ok
18:22:19.0824 1916 [ E08088A97F95345E181C3DFCE2C615EF ] C:\Windows\System32\pku2u.dll
18:22:19.0824 1916 C:\Windows\System32\pku2u.dll - ok
18:22:19.0828 1916 [ 7DBA64AD70C2E2481C68D9E0F7CD7840 ] C:\Windows\System32\LIVESSP.DLL
18:22:19.0828 1916 C:\Windows\System32\LIVESSP.DLL - ok
18:22:19.0831 1916 [ D6C7780A364C6BBACFA796BAB9F1B374 ] C:\Windows\System32\bcryptprimitives.dll
18:22:19.0831 1916 C:\Windows\System32\bcryptprimitives.dll - ok
18:22:19.0835 1916 [ 90BDEFC5DF334E5100EAA781D798DE1A ] C:\Windows\System32\efslsaext.dll
18:22:19.0835 1916 C:\Windows\System32\efslsaext.dll - ok
18:22:19.0838 1916 [ 52D3D5E3586988D4D9E34ACAAC33105C ] C:\Windows\System32\credssp.dll
18:22:19.0838 1916 C:\Windows\System32\credssp.dll - ok
18:22:19.0842 1916 [ 7CC7DF5B654DA579613F811D8C637E29 ] C:\Windows\System32\ubpm.dll
18:22:19.0842 1916 C:\Windows\System32\ubpm.dll - ok
18:22:19.0845 1916 [ ED78427259134C63ED69804D2132B86C ] C:\Windows\System32\scecli.dll
18:22:19.0845 1916 C:\Windows\System32\scecli.dll - ok
18:22:19.0848 1916 [ C78655BC80301D76ED4FEF1C1EA40A7D ] C:\Windows\System32\svchost.exe
18:22:19.0848 1916 C:\Windows\System32\svchost.exe - ok
18:22:19.0852 1916 [ 25FBDEF06C4D92815B353F6E792C8129 ] C:\Windows\System32\umpnpmgr.dll
18:22:19.0852 1916 C:\Windows\System32\umpnpmgr.dll - ok
18:22:19.0855 1916 [ CD1B5AD07E5F7FEF30E055DCC9E96180 ] C:\Windows\System32\devrtl.dll
18:22:19.0855 1916 C:\Windows\System32\devrtl.dll - ok
18:22:19.0858 1916 [ E6EB44ABAAF1F330119F854856C53EBE ] C:\Windows\System32\SPInf.dll
18:22:19.0858 1916 C:\Windows\System32\SPInf.dll - ok
18:22:19.0862 1916 [ 7A17485DC7D8A7AC81321A42CD034519 ] C:\Windows\System32\userenv.dll
18:22:19.0862 1916 C:\Windows\System32\userenv.dll - ok
18:22:19.0865 1916 [ 9C9307C95671AC962F3D6EB3A4A89BAE ] C:\Windows\System32\gpapi.dll
18:22:19.0865 1916 C:\Windows\System32\gpapi.dll - ok
18:22:19.0869 1916 [ F6C011B46FAEEF33536B2E80F48B5CBE ] C:\Windows\System32\pcwum.dll
18:22:19.0869 1916 C:\Windows\System32\pcwum.dll - ok
18:22:19.0872 1916 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] C:\Windows\System32\umpo.dll
18:22:19.0872 1916 C:\Windows\System32\umpo.dll - ok
18:22:19.0875 1916 [ 716175021BDA290504CE434273F666BC ] C:\Windows\System32\powrprof.dll
18:22:19.0875 1916 C:\Windows\System32\powrprof.dll - ok
18:22:19.0879 1916 [ CB2ABB2DA1E9C977302A78D86D4AE3B0 ] C:\Windows\System32\atmfd.dll
18:22:19.0879 1916 C:\Windows\System32\atmfd.dll - ok
18:22:19.0882 1916 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] C:\Windows\System32\drivers\luafv.sys
18:22:19.0882 1916 C:\Windows\System32\drivers\luafv.sys - ok
18:22:19.0885 1916 [ 5C627D1B1138676C0A7AB2C2C190D123 ] C:\Windows\System32\rpcss.dll
18:22:19.0885 1916 C:\Windows\System32\rpcss.dll - ok
18:22:19.0889 1916 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] C:\Windows\System32\RpcEpMap.dll
18:22:19.0889 1916 C:\Windows\System32\RpcEpMap.dll - ok
18:22:19.0892 1916 [ 16E964ABF6D1E0F0CC7822FCA9BA754D ] C:\Windows\System32\wshqos.dll
18:22:19.0892 1916 C:\Windows\System32\wshqos.dll - ok
18:22:19.0896 1916 [ 31559F3244C6BC00A52030CAA83B6B91 ] C:\Windows\System32\WSHTCPIP.DLL
18:22:19.0896 1916 C:\Windows\System32\WSHTCPIP.DLL - ok
18:22:19.0902 1916 [ 2FDCB3E855076CE97CCB58E2CF8F2A09 ] C:\Windows\System32\atiesrxx.exe
18:22:19.0902 1916 C:\Windows\System32\atiesrxx.exe - ok
18:22:19.0904 1916 [ 9AD9E06F8656F296D91FAE8EE5B95A27 ] C:\Windows\System32\FirewallAPI.dll
18:22:19.0904 1916 C:\Windows\System32\FirewallAPI.dll - ok
18:22:19.0908 1916 [ BD3674BE7FC9D8D3732C83E8499576ED ] C:\Windows\System32\wtsapi32.dll
18:22:19.0908 1916 C:\Windows\System32\wtsapi32.dll - ok
18:22:19.0912 1916 [ 94E026870A55AAEAFF7853C1754091E9 ] C:\Windows\System32\version.dll
18:22:19.0912 1916 C:\Windows\System32\version.dll - ok
18:22:19.0915 1916 [ 715F03B4C7223349768013EA95D9E5B7 ] C:\Windows\System32\LogonUI.exe
18:22:19.0915 1916 C:\Windows\System32\LogonUI.exe - ok
18:22:19.0919 1916 [ 0BEE002C68E28CE6DA161DCF1376D7D7 ] C:\Windows\System32\authui.dll
18:22:19.0919 1916 C:\Windows\System32\authui.dll - ok
18:22:19.0922 1916 [ 6011714C8C5C55CBFFAD24D61E879FBD ] C:\Windows\System32\wevtsvc.dll
18:22:19.0922 1916 C:\Windows\System32\wevtsvc.dll - ok
18:22:19.0926 1916 [ 78A1E65207484B7F8D3217507745F47C ] C:\Windows\System32\avrt.dll
18:22:19.0926 1916 C:\Windows\System32\avrt.dll - ok
18:22:19.0929 1916 [ E40E80D0304A73E8D269F7141D77250B ] C:\Windows\System32\mmcss.dll
18:22:19.0929 1916 C:\Windows\System32\mmcss.dll - ok
18:22:19.0933 1916 [ B3BFBD758506ECB50C5804AAA76318F9 ] C:\Windows\System32\cryptui.dll
18:22:19.0933 1916 C:\Windows\System32\cryptui.dll - ok
18:22:19.0937 1916 [ 7FA8FDC2C2A27817FD0F624E78D3B50C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
18:22:19.0937 1916 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
18:22:19.0940 1916 [ F06BB4E336EA57511FDBAFAFCC47DE62 ] C:\Windows\System32\propsys.dll
18:22:19.0940 1916 C:\Windows\System32\propsys.dll - ok
18:22:19.0944 1916 [ 5B3EBFC3DA142324B388DDCC4465E1FF ] C:\Windows\System32\samlib.dll
18:22:19.0944 1916 C:\Windows\System32\samlib.dll - ok
18:22:19.0947 1916 [ 4E9C2DB10F7E6AE91BF761139D4B745B ] C:\Windows\System32\shacct.dll
18:22:19.0947 1916 C:\Windows\System32\shacct.dll - ok
18:22:19.0951 1916 [ D29E998E8277666982B4F0303BF4E7AF ] C:\Windows\System32\uxtheme.dll
18:22:19.0951 1916 C:\Windows\System32\uxtheme.dll - ok
18:22:19.0955 1916 [ 179E8401224D557ECFF3695F2016EA5B ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll
18:22:19.0955 1916 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_2b253c8271ec7765\GdiPlus.dll - ok
18:22:19.0958 1916 [ 3CB6A7286422C72C34DAB54A5DFF1A34 ] C:\Windows\System32\dui70.dll
18:22:19.0958 1916 C:\Windows\System32\dui70.dll - ok
18:22:19.0962 1916 [ 8CCDE014A4CDF84564E03ACE064CA753 ] C:\Windows\System32\duser.dll
18:22:19.0962 1916 C:\Windows\System32\duser.dll - ok
18:22:19.0966 1916 [ D7F1EF374A90709B31591823B002F918 ] C:\Windows\System32\SndVolSSO.dll
18:22:19.0966 1916 C:\Windows\System32\SndVolSSO.dll - ok
18:22:19.0969 1916 [ DA1B7075260F3872585BFCDD668C648B ] C:\Windows\System32\dwmapi.dll
18:22:19.0969 1916 C:\Windows\System32\dwmapi.dll - ok
18:22:19.0972 1916 [ 896F15A6434D93EDB42519D5E18E6B50 ] C:\Windows\System32\hid.dll
18:22:19.0972 1916 C:\Windows\System32\hid.dll - ok
18:22:19.0976 1916 [ 227E2C382A1E02F8D4965E664D3BBE43 ] C:\Windows\System32\MMDevAPI.dll
18:22:19.0976 1916 C:\Windows\System32\MMDevAPI.dll - ok
18:22:19.0980 1916 [ 6F8B48F3D343E4B186AB6A9E302B7E16 ] C:\Windows\System32\xmllite.dll
18:22:19.0980 1916 C:\Windows\System32\xmllite.dll - ok
18:22:19.0983 1916 [ BDDF242A49E7B7DC5CCEC291BCE53ACB ] C:\Windows\System32\WindowsCodecs.dll
18:22:19.0983 1916 C:\Windows\System32\WindowsCodecs.dll - ok
18:22:19.0987 1916 [ F23FEF6D569FCE88671949894A8BECF1 ] C:\Windows\System32\audiosrv.dll
18:22:19.0987 1916 C:\Windows\System32\audiosrv.dll - ok
18:22:19.0990 1916 [ C4C183E6551084039EC862DA1C945E3D ] C:\Windows\System32\FntCache.dll
18:22:19.0991 1916 C:\Windows\System32\FntCache.dll - ok
18:22:19.0994 1916 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D ] C:\Windows\System32\winbrand.dll
18:22:19.0994 1916 C:\Windows\System32\winbrand.dll - ok
18:22:19.0998 1916 [ C2762A57DF0EE85E63CE4893C5215313 ] C:\Windows\System32\VaultCredProvider.dll
18:22:19.0998 1916 C:\Windows\System32\VaultCredProvider.dll - ok
18:22:20.0001 1916 [ CA2985996BB49924B677113DF95CFEA7 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:22:20.0001 1916 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:22:20.0005 1916 [ D5CCA1453B98A5801E6D5FF0FF89DC6C ] C:\Windows\System32\audiodg.exe
18:22:20.0005 1916 C:\Windows\System32\audiodg.exe - ok
18:22:20.0008 1916 [ BF352E73615F5461AA6884472435A544 ] C:\Windows\System32\BioCredProv.dll
18:22:20.0009 1916 C:\Windows\System32\BioCredProv.dll - ok
18:22:20.0012 1916 [ CC0AB40F02D2C2A12209715A3C1B07B8 ] C:\Windows\System32\credui.dll
18:22:20.0012 1916 C:\Windows\System32\credui.dll - ok
18:22:20.0016 1916 [ 796B8123A7859AFD3A4AE10514DBAEB5 ] C:\Windows\System32\winbio.dll
18:22:20.0016 1916 C:\Windows\System32\winbio.dll - ok
18:22:20.0019 1916 [ EEEA40F0EDB0A6E5359E539E15D0BC77 ] C:\Windows\System32\netapi32.dll
18:22:20.0019 1916 C:\Windows\System32\netapi32.dll - ok
18:22:20.0023 1916 [ 6CECA4C6A489C9B2E6073AFDAAE3F607 ] C:\Windows\System32\netutils.dll
18:22:20.0023 1916 C:\Windows\System32\netutils.dll - ok
18:22:20.0026 1916 [ 44B9C66177651F3F53C87B665D58D17A ] C:\Windows\System32\vaultcli.dll
18:22:20.0026 1916 C:\Windows\System32\vaultcli.dll - ok
18:22:20.0030 1916 [ FC51229C7D4AFA0D6F186133728B95AB ] C:\Windows\System32\samcli.dll
18:22:20.0030 1916 C:\Windows\System32\samcli.dll - ok
18:22:20.0033 1916 [ 3C91392D448F6E5D525A85B7550D8BA9 ] C:\Windows\System32\wkscli.dll
18:22:20.0033 1916 C:\Windows\System32\wkscli.dll - ok
18:22:20.0037 1916 [ 972C3301DB3DA91AE06A95F6B4160B1B ] C:\Windows\System32\certCredProvider.dll
18:22:20.0037 1916 C:\Windows\System32\certCredProvider.dll - ok
18:22:20.0041 1916 [ 032229246107C5C7211E6D1498B52D3D ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
18:22:20.0041 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
18:22:20.0044 1916 [ 87FA0C48C3B2E9FEE518818FE26B15B5 ] C:\Windows\System32\rasplap.dll
18:22:20.0044 1916 C:\Windows\System32\rasplap.dll - ok
18:22:20.0047 1916 [ 019CD868461B646E09BDF04474C19341 ] C:\Windows\System32\rasapi32.dll
18:22:20.0047 1916 C:\Windows\System32\rasapi32.dll - ok
18:22:20.0050 1916 [ B28DEEC597C8DEB70C744C7CF9210E3E ] C:\Windows\System32\rasman.dll
18:22:20.0050 1916 C:\Windows\System32\rasman.dll - ok
18:22:20.0054 1916 [ 1F4492FE41767CDB8B89D17655847CDD ] C:\Windows\System32\ntmarta.dll
18:22:20.0054 1916 C:\Windows\System32\ntmarta.dll - ok
18:22:20.0057 1916 [ B53C4B69B695EDA1B7E41D35CA4244E2 ] C:\Windows\System32\rtutils.dll
18:22:20.0057 1916 C:\Windows\System32\rtutils.dll - ok
18:22:20.0061 1916 [ DA6B67270FD9DB3697B20FCE94950741 ] C:\Windows\System32\drivers\fltMgr.sys
18:22:20.0061 1916 C:\Windows\System32\drivers\fltMgr.sys - ok
18:22:20.0064 1916 [ CF636C92B762B26F0B39B38E92380A09 ] C:\Windows\System32\oleacc.dll
18:22:20.0064 1916 C:\Windows\System32\oleacc.dll - ok
18:22:20.0068 1916 [ 019BDD35DE269CB98B22DE8923C2AA3B ] C:\Windows\System32\UIAutomationCore.dll
18:22:20.0068 1916 C:\Windows\System32\UIAutomationCore.dll - ok
18:22:20.0071 1916 [ EF2AE43BCD46ABB13FC3E5B2B1935C73 ] C:\Windows\System32\winmm.dll
18:22:20.0071 1916 C:\Windows\System32\winmm.dll - ok
18:22:20.0075 1916 [ DC220AE6F64819099F7EBD6F137E32E7 ] C:\Windows\System32\AudioSes.dll
18:22:20.0075 1916 C:\Windows\System32\AudioSes.dll - ok
18:22:20.0078 1916 [ 8560FFFC8EB3A806DCD4F82252CFC8C6 ] C:\Windows\System32\ksuser.dll
18:22:20.0078 1916 C:\Windows\System32\ksuser.dll - ok
18:22:20.0081 1916 [ 1473768973453DE50DC738C2955FC4DD ] C:\Windows\System32\wdmaud.drv
18:22:20.0081 1916 C:\Windows\System32\wdmaud.drv - ok
18:22:20.0085 1916 [ CA2A0750ED830678997695FF61B04C30 ] C:\Windows\System32\midimap.dll
18:22:20.0085 1916 C:\Windows\System32\midimap.dll - ok
18:22:20.0088 1916 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A ] C:\Windows\System32\msacm32.dll
18:22:20.0088 1916 C:\Windows\System32\msacm32.dll - ok
18:22:20.0092 1916 [ 1B7C3A37362C7B2890168C5FC61C8D9B ] C:\Windows\System32\msacm32.drv
18:22:20.0092 1916 C:\Windows\System32\msacm32.drv - ok
18:22:20.0095 1916 [ 5EDBB34736DD7AC1A73CF8792A835E10 ] C:\Windows\System32\AudioEng.dll
18:22:20.0095 1916 C:\Windows\System32\AudioEng.dll - ok
18:22:20.0099 1916 [ C1395286B822E306B4FE1568A8A77813 ] C:\Windows\System32\AUDIOKSE.dll
18:22:20.0099 1916 C:\Windows\System32\AUDIOKSE.dll - ok
18:22:20.0102 1916 [ 853A17F7CED7ADE5A177520D5EAEC895 ] C:\Windows\System32\RtkAPO64.dll
18:22:20.0103 1916 C:\Windows\System32\RtkAPO64.dll - ok
18:22:20.0106 1916 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] C:\Windows\System32\profsvc.dll
18:22:20.0106 1916 C:\Windows\System32\profsvc.dll - ok
18:22:20.0109 1916 [ A3DB3C17EE6CAE65D53602B4E80BCCBC ] C:\Windows\System32\PSHED.DLL
18:22:20.0109 1916 C:\Windows\System32\PSHED.DLL - ok
18:22:20.0113 1916 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] C:\Windows\System32\gpsvc.dll
18:22:20.0113 1916 C:\Windows\System32\gpsvc.dll - ok
18:22:20.0116 1916 [ 6F3C559B82F2912354BE5B098744CC8C ] C:\Windows\System32\WMALFXGFXDSP.dll
18:22:20.0116 1916 C:\Windows\System32\WMALFXGFXDSP.dll - ok
18:22:20.0120 1916 [ 54B5DCD55B223BC5DF50B82E1E9E86B1 ] C:\Windows\System32\mfplat.dll
18:22:20.0120 1916 C:\Windows\System32\mfplat.dll - ok
18:22:20.0123 1916 [ A77BE7CB3222B4FB0AC6C71D1C2698D4 ] C:\Windows\System32\dsrole.dll
18:22:20.0123 1916 C:\Windows\System32\dsrole.dll - ok
18:22:20.0126 1916 [ 46BB91A169B9B31FF44EB04C48EC1D41 ] C:\Windows\System32\nlaapi.dll
18:22:20.0126 1916 C:\Windows\System32\nlaapi.dll - ok
18:22:20.0130 1916 [ BE097F5BB10F9079FCEB2DC4E7E20F02 ] C:\Windows\System32\slc.dll
18:22:20.0130 1916 C:\Windows\System32\slc.dll - ok
18:22:20.0133 1916 [ 58775492FFD419248B08325E583C527F ] C:\Windows\System32\atl.dll
18:22:20.0133 1916 C:\Windows\System32\atl.dll - ok
18:22:20.0136 1916 [ F0344071948D1A1FA732231785A0664C ] C:\Windows\System32\themeservice.dll
18:22:20.0136 1916 C:\Windows\System32\themeservice.dll - ok
18:22:20.0140 1916 [ 4166F82BE4D24938977DD1746BE9B8A0 ] C:\Windows\System32\es.dll
18:22:20.0140 1916 C:\Windows\System32\es.dll - ok
18:22:20.0143 1916 [ 9BC8610C32C96A2983A65DC21CAFA921 ] C:\Windows\System32\UXInit.dll
18:22:20.0143 1916 C:\Windows\System32\UXInit.dll - ok
18:22:20.0147 1916 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67 ] C:\Windows\System32\adtschema.dll
18:22:20.0147 1916 C:\Windows\System32\adtschema.dll - ok
18:22:20.0150 1916 [ B0945E538CF906BBDDC5A11C8EE868CC ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
18:22:20.0150 1916 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
18:22:20.0154 1916 [ C32AB8FA018EF34C0F113BD501436D21 ] C:\Windows\System32\Sens.dll
18:22:20.0154 1916 C:\Windows\System32\Sens.dll - ok
18:22:20.0157 1916 [ 1538831CF8AD2979A04C423779465827 ] C:\Windows\System32\drivers\lltdio.sys
18:22:20.0157 1916 C:\Windows\System32\drivers\lltdio.sys - ok
18:22:20.0161 1916 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] C:\Windows\System32\uxsms.dll
18:22:20.0161 1916 C:\Windows\System32\uxsms.dll - ok
18:22:20.0165 1916 [ 427E817E414160685FFCFA7F7DF6557E ] C:\Windows\System32\atieclxx.exe
18:22:20.0165 1916 C:\Windows\System32\atieclxx.exe - ok
18:22:20.0168 1916 [ 7D9DDE61A8B475AB0097D76797796CB1 ] C:\Windows\System32\atiadlxx.dll
18:22:20.0168 1916 C:\Windows\System32\atiadlxx.dll - ok
18:22:20.0172 1916 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] C:\Windows\System32\drivers\nwifi.sys
18:22:20.0172 1916 C:\Windows\System32\drivers\nwifi.sys - ok
18:22:20.0176 1916 [ 136185F9FB2CC61E573E676AA5402356 ] C:\Windows\System32\drivers\ndisuio.sys
18:22:20.0176 1916 C:\Windows\System32\drivers\ndisuio.sys - ok
18:22:20.0182 1916 [ 328B99E25901D314FDFB31F18A7E302E ] C:\Windows\System32\drivers\pnarp.sys
18:22:20.0182 1916 C:\Windows\System32\drivers\pnarp.sys - ok
18:22:20.0186 1916 [ E33AE01D03EBE68CD6A934BF52702BFD ] C:\Windows\System32\drivers\purendis.sys
18:22:20.0187 1916 C:\Windows\System32\drivers\purendis.sys - ok
18:22:20.0191 1916 [ DDC86E4F8E7456261E637E3552E804FF ] C:\Windows\System32\drivers\rspndr.sys
18:22:20.0191 1916 C:\Windows\System32\drivers\rspndr.sys - ok
18:22:20.0194 1916 [ 2B81776DA02017A37FE26C662827470E ] C:\Windows\System32\IPHLPAPI.DLL
18:22:20.0194 1916 C:\Windows\System32\IPHLPAPI.DLL - ok
18:22:20.0198 1916 [ F993A32249B66C9D622EA5592A8B76B8 ] C:\Windows\System32\lmhsvc.dll
18:22:20.0198 1916 C:\Windows\System32\lmhsvc.dll - ok
18:22:20.0202 1916 [ D54BFDF3E0C953F823B3D0BFE4732528 ] C:\Windows\System32\nsisvc.dll
18:22:20.0202 1916 C:\Windows\System32\nsisvc.dll - ok
18:22:20.0205 1916 [ B73A6E4B319AFFE64582AC5C1801BB3F ] C:\Windows\System32\nrpsrv.dll
18:22:20.0205 1916 C:\Windows\System32\nrpsrv.dll - ok
18:22:20.0209 1916 [ 4C9210E8F4E052F6A4EB87716DA0C24C ] C:\Windows\System32\winnsi.dll
18:22:20.0209 1916 C:\Windows\System32\winnsi.dll - ok
18:22:20.0212 1916 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] C:\Windows\System32\dnsrslvr.dll
18:22:20.0212 1916 C:\Windows\System32\dnsrslvr.dll - ok
18:22:20.0216 1916 [ F9EC845C5EECF20E9A67F9F805F2EF1F ] C:\Windows\System32\keyiso.dll
18:22:20.0216 1916 C:\Windows\System32\keyiso.dll - ok
18:22:20.0220 1916 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] C:\Windows\System32\eapsvc.dll
18:22:20.0220 1916 C:\Windows\System32\eapsvc.dll - ok
18:22:20.0223 1916 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] C:\Windows\System32\dhcpcore.dll
18:22:20.0223 1916 C:\Windows\System32\dhcpcore.dll - ok
18:22:20.0227 1916 [ 3CC16A849E6092E43909F48EF0E60306 ] C:\Windows\System32\dhcpcore6.dll
18:22:20.0227 1916 C:\Windows\System32\dhcpcore6.dll - ok
18:22:20.0231 1916 [ 885D0942E0F28DB90919BE3129ECF279 ] C:\Windows\System32\dnsext.dll
18:22:20.0231 1916 C:\Windows\System32\dnsext.dll - ok
18:22:20.0234 1916 [ 0040C486584A8E582C861CFB57AB5387 ] C:\Windows\System32\FWPUCLNT.DLL
18:22:20.0234 1916 C:\Windows\System32\FWPUCLNT.DLL - ok
18:22:20.0237 1916 [ F568F7C08458D69E4FCD8675BBB107E4 ] C:\Windows\System32\dhcpcsvc.dll
18:22:20.0238 1916 C:\Windows\System32\dhcpcsvc.dll - ok
18:22:20.0241 1916 [ 87356377F31DA5F20A833811CD59499C ] C:\Windows\System32\eapphost.dll
18:22:20.0241 1916 C:\Windows\System32\eapphost.dll - ok
18:22:20.0245 1916 [ 3C06D5A929B798D0B13F6481242A0FD2 ] C:\Windows\System32\dhcpcsvc6.dll
18:22:20.0245 1916 C:\Windows\System32\dhcpcsvc6.dll - ok
18:22:20.0249 1916 [ 9FCA3A84338ADEF2AFF67CDA46EF8539 ] C:\Windows\System32\umb.dll
18:22:20.0249 1916 C:\Windows\System32\umb.dll - ok
18:22:20.0252 1916 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] C:\Windows\System32\wlansvc.dll
18:22:20.0252 1916 C:\Windows\System32\wlansvc.dll - ok
18:22:20.0255 1916 [ A648C4A06DE367065B24056D067B4460 ] C:\Windows\System32\wlanmsm.dll
18:22:20.0256 1916 C:\Windows\System32\wlanmsm.dll - ok
18:22:20.0259 1916 [ 06A1386B6E3A0CBC368665C1840906F4 ] C:\Windows\System32\wlansec.dll
18:22:20.0259 1916 C:\Windows\System32\wlansec.dll - ok
18:22:20.0262 1916 [ 65522E77A1360DBC8D199DA3BF5EFFE4 ] C:\Windows\System32\eappprxy.dll
18:22:20.0262 1916 C:\Windows\System32\eappprxy.dll - ok
18:22:20.0266 1916 [ 73FCB7919DEE80EE556F2E498594EBAE ] C:\Windows\System32\onex.dll
18:22:20.0266 1916 C:\Windows\System32\onex.dll - ok
18:22:20.0270 1916 [ 0D753307D274F3688BD21C377B616700 ] C:\Windows\System32\eappcfg.dll
18:22:20.0270 1916 C:\Windows\System32\eappcfg.dll - ok
18:22:20.0273 1916 [ 730BF204A595D5B6D7DC57A247CC741C ] C:\Windows\System32\wlgpclnt.dll
18:22:20.0273 1916 C:\Windows\System32\wlgpclnt.dll - ok
18:22:20.0277 1916 [ 97E43F324BE1503CB2FFB058534688DA ] C:\Windows\System32\l2gpstore.dll
18:22:20.0277 1916 C:\Windows\System32\l2gpstore.dll - ok
18:22:20.0280 1916 [ 7F1B4C6FF3B85F9ADF74055187B8A22C ] C:\Windows\System32\wlanutil.dll
18:22:20.0280 1916 C:\Windows\System32\wlanutil.dll - ok
18:22:20.0284 1916 [ 7D5645EE0EA77D539828433D9B95F5EB ] C:\Windows\System32\WinSCard.dll
18:22:20.0284 1916 C:\Windows\System32\WinSCard.dll - ok
18:22:20.0287 1916 [ 99B91C5D2FCEF218CAD3600ECB62A799 ] C:\Windows\System32\msxml6.dll
18:22:20.0287 1916 C:\Windows\System32\msxml6.dll - ok
18:22:20.0291 1916 [ 1A47D52E303B7543E4E6026595B95422 ] C:\Windows\System32\comres.dll
18:22:20.0291 1916 C:\Windows\System32\comres.dll - ok
18:22:20.0294 1916 [ AAF932B4011D14052955D4B212A4DA8D ] C:\Windows\System32\shsvcs.dll
18:22:20.0294 1916 C:\Windows\System32\shsvcs.dll - ok
18:22:20.0297 1916 [ 262F6592C3299C005FD6BEC90FC4463A ] C:\Windows\System32\schedsvc.dll
18:22:20.0297 1916 C:\Windows\System32\schedsvc.dll - ok
18:22:20.0300 1916 [ 03706015DB44368375AEBE6339490E66 ] C:\Windows\System32\netcfgx.dll
18:22:20.0300 1916 C:\Windows\System32\netcfgx.dll - ok
18:22:20.0304 1916 [ BC414631876B2F28B8DAB08E849C12C5 ] C:\Windows\System32\ktmw32.dll
18:22:20.0304 1916 C:\Windows\System32\ktmw32.dll - ok
18:22:20.0307 1916 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] C:\Windows\System32\drivers\vwifimp.sys
18:22:20.0307 1916 C:\Windows\System32\drivers\vwifimp.sys - ok
18:22:20.0311 1916 [ 945E54F23C72D37B8CD1987AF0DB63BF ] C:\Windows\System32\fveapi.dll
18:22:20.0311 1916 C:\Windows\System32\fveapi.dll - ok
18:22:20.0314 1916 [ 891ECFD08E2C538B7948CBC45106D697 ] C:\Windows\System32\fvecerts.dll
18:22:20.0314 1916 C:\Windows\System32\fvecerts.dll - ok
18:22:20.0318 1916 [ 694865362F0965779F92BCFE97712323 ] C:\Windows\System32\tbs.dll
18:22:20.0318 1916 C:\Windows\System32\tbs.dll - ok
18:22:20.0321 1916 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7 ] C:\Windows\System32\taskcomp.dll
18:22:20.0321 1916 C:\Windows\System32\taskcomp.dll - ok
18:22:20.0325 1916 [ 5AA945234E9D4CCE4F715276B9AA712C ] C:\Windows\System32\imageres.dll
18:22:20.0325 1916 C:\Windows\System32\imageres.dll - ok
18:22:20.0329 1916 [ 8269210DAF3B12BC8300631B28A2A442 ] C:\Windows\System32\wiarpc.dll
18:22:20.0329 1916 C:\Windows\System32\wiarpc.dll - ok
18:22:20.0332 1916 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] C:\Windows\System32\drivers\http.sys
18:22:20.0332 1916 C:\Windows\System32\drivers\http.sys - ok
18:22:20.0336 1916 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] C:\Windows\System32\spoolsv.exe
18:22:20.0336 1916 C:\Windows\System32\spoolsv.exe - ok
18:22:20.0339 1916 [ 82974D6A2FD19445CC5171FC378668A4 ] C:\Windows\System32\BFE.DLL
18:22:20.0339 1916 C:\Windows\System32\BFE.DLL - ok
18:22:20.0342 1916 [ 6C02A83164F5CC0A262F4199F0871CF5 ] C:\Windows\System32\drivers\bowser.sys
18:22:20.0343 1916 C:\Windows\System32\drivers\bowser.sys - ok
18:22:20.0346 1916 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] C:\Windows\System32\drivers\mpsdrv.sys
18:22:20.0346 1916 C:\Windows\System32\drivers\mpsdrv.sys - ok
18:22:20.0350 1916 [ A5D9106A73DC88564C825D317CAC68AC ] C:\Windows\System32\drivers\mrxsmb.sys
18:22:20.0350 1916 C:\Windows\System32\drivers\mrxsmb.sys - ok
18:22:20.0353 1916 [ D711B3C1D5F42C0C2415687BE09FC163 ] C:\Windows\System32\drivers\mrxsmb10.sys
18:22:20.0353 1916 C:\Windows\System32\drivers\mrxsmb10.sys - ok
18:22:20.0357 1916 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] C:\Windows\System32\drivers\mrxsmb20.sys
18:22:20.0357 1916 C:\Windows\System32\drivers\mrxsmb20.sys - ok
18:22:20.0360 1916 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] C:\Windows\System32\MPSSVC.dll
18:22:20.0360 1916 C:\Windows\System32\MPSSVC.dll - ok
18:22:20.0364 1916 [ 851A1382EED3E3A7476DB004F4EE3E1A ] C:\Windows\System32\wkssvc.dll
18:22:20.0364 1916 C:\Windows\System32\wkssvc.dll - ok
18:22:20.0368 1916 [ C67F8A962B2534224D5908D16D2AD3CE ] C:\Windows\System32\wfapigp.dll
18:22:20.0368 1916 C:\Windows\System32\wfapigp.dll - ok
18:22:20.0371 1916 [ 1834B31C749B86DAC233BBBA1C03BC48 ] C:\Windows\System32\mscms.dll
18:22:20.0371 1916 C:\Windows\System32\mscms.dll - ok
18:22:20.0374 1916 [ 3AEAA8B561E63452C655DC0584922257 ] C:\Windows\System32\pcasvc.dll
18:22:20.0374 1916 C:\Windows\System32\pcasvc.dll - ok
18:22:20.0378 1916 [ 6313F223E817CC09AA41811DAA7F541D ] C:\Windows\System32\snmptrap.exe
18:22:20.0378 1916 C:\Windows\System32\snmptrap.exe - ok
18:22:20.0382 1916 [ 10EAB90C1AE8271B5FE5A8930987EE5C ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
18:22:20.0382 1916 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
18:22:20.0386 1916 [ E9A0777DCA9148157E0EF9B71D7DE353 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
18:22:20.0386 1916 C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
18:22:20.0389 1916 [ 3927397AC60D943DAF8808AFFED582B7 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:22:20.0389 1916 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
18:22:20.0393 1916 [ E73B0F1819602CB6EF176FB78D76A47B ] C:\Windows\SysWOW64\ntdll.dll
18:22:20.0393 1916 C:\Windows\SysWOW64\ntdll.dll - ok
18:22:20.0397 1916 [ 7C00C608FE4C8EDE9E30940837B9AC8B ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
18:22:20.0397 1916 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
18:22:20.0400 1916 [ 908ACB1F594274965A53926B10C81E89 ] C:\Windows\System32\provsvc.dll
18:22:20.0400 1916 C:\Windows\System32\provsvc.dll - ok
18:22:20.0403 1916 [ 259EB5F7D95A29842B476C5B3EB6E186 ] C:\Windows\System32\wow64.dll
18:22:20.0403 1916 C:\Windows\System32\wow64.dll - ok
18:22:20.0407 1916 [ 3EE3AA76D8AB6D5644C4C8F34471CEB3 ] C:\Windows\System32\wow64cpu.dll
18:22:20.0407 1916 C:\Windows\System32\wow64cpu.dll - ok
18:22:20.0410 1916 [ 5674E21E82CFBEA36DDAD5DB285D6DBC ] C:\Windows\System32\wow64win.dll
18:22:20.0410 1916 C:\Windows\System32\wow64win.dll - ok
18:22:20.0414 1916 [ AC0B6F41882FC6ED186962D770EBF1D2 ] C:\Windows\SysWOW64\kernel32.dll
18:22:20.0414 1916 C:\Windows\SysWOW64\kernel32.dll - ok
18:22:20.0417 1916 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] C:\Windows\System32\sstpsvc.dll
18:22:20.0417 1916 C:\Windows\System32\sstpsvc.dll - ok
18:22:20.0421 1916 [ E954A79D6A754A5475582CACED1565E6 ] C:\Windows\SysWOW64\KernelBase.dll
18:22:20.0421 1916 C:\Windows\SysWOW64\KernelBase.dll - ok
18:22:20.0424 1916 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 ] C:\Windows\SysWOW64\user32.dll
18:22:20.0424 1916 C:\Windows\SysWOW64\user32.dll - ok
18:22:20.0428 1916 [ D6D3AD7BF1D6F6CE9547613ED5E170A2 ] C:\Windows\SysWOW64\gdi32.dll
18:22:20.0428 1916 C:\Windows\SysWOW64\gdi32.dll - ok
18:22:20.0432 1916 [ 384721EF4024890092625E20CADFAF85 ] C:\Windows\SysWOW64\lpk.dll
18:22:20.0432 1916 C:\Windows\SysWOW64\lpk.dll - ok
18:22:20.0435 1916 [ B7230010D97787AF3D25E4C82F2B06B9 ] C:\Windows\SysWOW64\usp10.dll
18:22:20.0435 1916 C:\Windows\SysWOW64\usp10.dll - ok
18:22:20.0438 1916 [ 9DC80A8AAAAAC397BDAB3C67165A824E ] C:\Windows\SysWOW64\msvcrt.dll
18:22:20.0438 1916 C:\Windows\SysWOW64\msvcrt.dll - ok
18:22:20.0442 1916 [ 95E2376B3323F062EB562B8586D0F14A ] C:\Windows\SysWOW64\advapi32.dll
18:22:20.0442 1916 C:\Windows\SysWOW64\advapi32.dll - ok
18:22:20.0445 1916 [ CFC97F07904067A1E5FAE195D534DA3A ] C:\Windows\SysWOW64\sechost.dll
18:22:20.0445 1916 C:\Windows\SysWOW64\sechost.dll - ok
18:22:20.0449 1916 [ C5AD8083CF94201F1F8084ECC696A8B7 ] C:\Windows\SysWOW64\rpcrt4.dll
18:22:20.0449 1916 C:\Windows\SysWOW64\rpcrt4.dll - ok
18:22:20.0452 1916 [ F08F6FCD09F9BE94C37ACC1B344685FF ] C:\Windows\SysWOW64\cryptbase.dll
18:22:20.0452 1916 C:\Windows\SysWOW64\cryptbase.dll - ok
18:22:20.0456 1916 [ 29E9794708DF51DB5DC89FB2E903A0F6 ] C:\Windows\SysWOW64\shell32.dll
18:22:20.0456 1916 C:\Windows\SysWOW64\shell32.dll - ok
18:22:20.0459 1916 [ BFB26890612FB8AE8B0463EBEBE84B7E ] C:\Windows\SysWOW64\sspicli.dll
18:22:20.0459 1916 C:\Windows\SysWOW64\sspicli.dll - ok
18:22:20.0463 1916 [ 928CF7268086631F54C3D8E17238C6DD ] C:\Windows\SysWOW64\ole32.dll
18:22:20.0463 1916 C:\Windows\SysWOW64\ole32.dll - ok
18:22:20.0466 1916 [ 8CC3C111D653E96F3EA1590891491D71 ] C:\Windows\SysWOW64\shlwapi.dll
18:22:20.0467 1916 C:\Windows\SysWOW64\shlwapi.dll - ok
18:22:20.0470 1916 [ 6C765E82B57F2E66CE9C54AC238471D9 ] C:\Windows\SysWOW64\oleaut32.dll
18:22:20.0470 1916 C:\Windows\SysWOW64\oleaut32.dll - ok
18:22:20.0473 1916 [ 60D21799A4AF4EDCE65FB98830E4B0C8 ] C:\Windows\SysWOW64\crypt32.dll
18:22:20.0473 1916 C:\Windows\SysWOW64\crypt32.dll - ok
18:22:20.0477 1916 [ 938F39B50BAFE13D6F58C7790682C010 ] C:\Windows\SysWOW64\msasn1.dll
18:22:20.0477 1916 C:\Windows\SysWOW64\msasn1.dll - ok
18:22:20.0481 1916 [ 17448AF0BBA9E7AB5EC955AF93F271BD ] C:\Windows\SysWOW64\wintrust.dll
18:22:20.0481 1916 C:\Windows\SysWOW64\wintrust.dll - ok
18:22:20.0484 1916 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
18:22:20.0484 1916 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
18:22:20.0488 1916 [ A6F09E5669D9A19035F6D942CAA15882 ] C:\Windows\SysWOW64\imm32.dll
18:22:20.0488 1916 C:\Windows\SysWOW64\imm32.dll - ok
18:22:20.0491 1916 [ C9618BC9B2B0FD7C1138D8774795A79B ] C:\Windows\SysWOW64\msctf.dll
18:22:20.0491 1916 C:\Windows\SysWOW64\msctf.dll - ok
18:22:20.0495 1916 [ 54A47F6B5E09A77E61649109C6A08866 ] C:\Windows\SysWOW64\svchost.exe
18:22:20.0495 1916 C:\Windows\SysWOW64\svchost.exe - ok
18:22:20.0499 1916 [ C7074BD8D4B8F564859ED373433030AE ] C:\Program Files (x86)\Common Files\Akamai\netsession_win_ca0e279.dll
18:22:20.0499 1916 C:\Program Files (x86)\Common Files\Akamai\netsession_win_ca0e279.dll - ok
18:22:20.0502 1916 [ 32FB817DFBEE1BA2589AA3964718DCFC ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
18:22:20.0502 1916 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
18:22:20.0506 1916 [ 37D44BFEA9B50D75764660ADC35C83AC ] C:\Windows\System32\msvcp100.dll
18:22:20.0506 1916 C:\Windows\System32\msvcp100.dll - ok
18:22:20.0509 1916 [ B88DA7FD10BDBB3754D98AFD39677C29 ] C:\Windows\System32\msvcr100.dll
18:22:20.0509 1916 C:\Windows\System32\msvcr100.dll - ok
18:22:20.0514 1916 [ 5B25D1A753CC3A3EDB909BB759AC1098 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys
18:22:20.0514 1916 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys - ok
18:22:20.0517 1916 [ E910B8B8FD87E43F8698908D93290CBF ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
18:22:20.0517 1916 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
18:22:20.0521 1916 [ E2DEA77BAAAED15CA1CE0C8E017C7F2F ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
18:22:20.0521 1916 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
18:22:20.0525 1916 [ 6377051C63D5552A311935C67E9FDFDC ] C:\Windows\SysWOW64\nsi.dll
18:22:20.0525 1916 C:\Windows\SysWOW64\nsi.dll - ok
18:22:20.0528 1916 [ A543AC1F7138376D778D630A35FCBC4C ] C:\Windows\SysWOW64\psapi.dll
18:22:20.0528 1916 C:\Windows\SysWOW64\psapi.dll - ok
18:22:20.0532 1916 [ 7FF15A4F092CD4A96055BA69F903E3E9 ] C:\Windows\SysWOW64\ws2_32.dll
18:22:20.0532 1916 C:\Windows\SysWOW64\ws2_32.dll - ok
18:22:20.0535 1916 [ 487F44B08EFEAF5AD087878357B9403D ] C:\Windows\SysWOW64\pdh.dll
18:22:20.0535 1916 C:\Windows\SysWOW64\pdh.dll - ok
18:22:20.0538 1916 [ CA9F7888B524D8100B977C81F44C3234 ] C:\Windows\SysWOW64\winhttp.dll
18:22:20.0539 1916 C:\Windows\SysWOW64\winhttp.dll - ok
18:22:20.0542 1916 [ FB19FC5951A88F3C523E35C2C98D23C0 ] C:\Windows\SysWOW64\webio.dll
18:22:20.0542 1916 C:\Windows\SysWOW64\webio.dll - ok
18:22:20.0546 1916 [ A90DC9ABD65DB1A8902F361103029952 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:22:20.0546 1916 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:22:20.0548 1916 [ 2FCA0D2C59A855C54BAFA22AA329DF0F ] C:\Windows\SysWOW64\netapi32.dll
18:22:20.0548 1916 C:\Windows\SysWOW64\netapi32.dll - ok
18:22:20.0551 1916 [ C733D233B623B7FFCE5031E4B756EE26 ] C:\Windows\SysWOW64\profapi.dll
18:22:20.0551 1916 C:\Windows\SysWOW64\profapi.dll - ok
18:22:20.0555 1916 [ D15618A0FF8DBC2C5BF3726BACC75A0B ] C:\Windows\SysWOW64\userenv.dll
18:22:20.0555 1916 C:\Windows\SysWOW64\userenv.dll - ok
18:22:20.0558 1916 [ CFF35B879D1618D42C86644C717BA947 ] C:\Windows\SysWOW64\winnsi.dll
18:22:20.0558 1916 C:\Windows\SysWOW64\winnsi.dll - ok
18:22:20.0562 1916 [ 6A6B2EE4565A178035BE2A4FF6F2C968 ] C:\Windows\SysWOW64\wtsapi32.dll
18:22:20.0562 1916 C:\Windows\SysWOW64\wtsapi32.dll - ok
18:22:20.0566 1916 [ 8EA53101FF2B15BDFF934B62A8FB326D ] C:\Windows\SysWOW64\logoncli.dll
18:22:20.0566 1916 C:\Windows\SysWOW64\logoncli.dll - ok
18:22:20.0569 1916 [ 20B3934DB73EABA2B49B7177873CB81F ] C:\Windows\SysWOW64\netutils.dll
18:22:20.0569 1916 C:\Windows\SysWOW64\netutils.dll - ok
18:22:20.0573 1916 [ 5CCDCD40E732D54E0F7451AC66AC1C87 ] C:\Windows\SysWOW64\srvcli.dll
18:22:20.0573 1916 C:\Windows\SysWOW64\srvcli.dll - ok
18:22:20.0576 1916 [ CFE0CEE587F9CEA4C29DEEC6D85FC91C ] C:\Windows\SysWOW64\wininet.dll
18:22:20.0576 1916 C:\Windows\SysWOW64\wininet.dll - ok
18:22:20.0580 1916 [ E5A4A1326A02F8E7B59E6C3270CE7202 ] C:\Windows\SysWOW64\wkscli.dll
18:22:20.0580 1916 C:\Windows\SysWOW64\wkscli.dll - ok
18:22:20.0583 1916 [ 6A13B4F3B3F575F1E24B877B9359AABA ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
18:22:20.0583 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
18:22:20.0587 1916 [ 2E33DFD10F28F86C3FC40EE123CC3904 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
18:22:20.0587 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
18:22:20.0591 1916 [ 6951562DC4625EEFC6EACD52AD165866 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
18:22:20.0591 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
18:22:20.0594 1916 [ 589CBC4989F750E1DA35625AB481CF43 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
18:22:20.0594 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
18:22:20.0598 1916 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
18:22:20.0598 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
18:22:20.0602 1916 [ B5DEC0D4CBBC333CA99FE10B06D4747E ] C:\Windows\SysWOW64\iertutil.dll
18:22:20.0602 1916 C:\Windows\SysWOW64\iertutil.dll - ok
18:22:20.0605 1916 [ 702254574E7E52052DE39408457B7149 ] C:\Windows\SysWOW64\version.dll
18:22:20.0605 1916 C:\Windows\SysWOW64\version.dll - ok
18:22:20.0609 1916 [ 4FE5C6D40664AE07BE5105874357D2ED ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:22:20.0609 1916 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
18:22:20.0613 1916 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
18:22:20.0613 1916 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
18:22:20.0617 1916 [ A8704A10FFDE468F4AB18EBF82A9A86F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
18:22:20.0617 1916 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
18:22:20.0621 1916 [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
18:22:20.0621 1916 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
18:22:20.0624 1916 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
18:22:20.0625 1916 C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
18:22:20.0629 1916 [ 92DA9EDE07390B4352B29DD82079E398 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
18:22:20.0629 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
18:22:20.0633 1916 [ 9C963A14F955AF99F6DF0C1F5FC5AF9B ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
18:22:20.0633 1916 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
18:22:20.0637 1916 [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
18:22:20.0637 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
18:22:20.0640 1916 [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
18:22:20.0640 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
18:22:20.0644 1916 [ 537013677D6C96B2713F6A98A5138B2D ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
18:22:20.0645 1916 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
18:22:20.0648 1916 [ 4F6E72B34ED3DC53DCC5E8708E60B61F ] C:\Windows\SysWOW64\security.dll
18:22:20.0648 1916 C:\Windows\SysWOW64\security.dll - ok
18:22:20.0653 1916 [ A113AFEED3159A1ED52D78CB0226006D ] C:\Windows\SysWOW64\secur32.dll
18:22:20.0653 1916 C:\Windows\SysWOW64\secur32.dll - ok
18:22:20.0657 1916 [ 357BE883C5236BFC7341CB9E82308908 ] C:\Windows\System32\wlanapi.dll
18:22:20.0657 1916 C:\Windows\System32\wlanapi.dll - ok
18:22:20.0660 1916 [ 4E5FE39C1076D115EC8BFCFE14D75B80 ] C:\Windows\SysWOW64\credssp.dll
18:22:20.0660 1916 C:\Windows\SysWOW64\credssp.dll - ok
18:22:20.0664 1916 [ 7321F18D1F820612ED0E9F2D4B578A7E ] C:\Windows\SysWOW64\cryptsp.dll
18:22:20.0664 1916 C:\Windows\SysWOW64\cryptsp.dll - ok
18:22:20.0667 1916 [ 4C1E16B9A53102C8D6FBA587CBCB95DE ] C:\Windows\SysWOW64\msv1_0.dll
18:22:20.0667 1916 C:\Windows\SysWOW64\msv1_0.dll - ok
18:22:20.0671 1916 [ 638C7596B493F5F77DB9EF6BAD8FE46C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
18:22:20.0671 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
18:22:20.0675 1916 [ 1128637CAD49A8E3C8B5FA5D0A061525 ] C:\Windows\SysWOW64\cryptdll.dll
18:22:20.0675 1916 C:\Windows\SysWOW64\cryptdll.dll - ok
18:22:20.0679 1916 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
18:22:20.0679 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
18:22:20.0683 1916 [ DF13A51A5C591887D2EC6AE64CEED0FA ] C:\Windows\SysWOW64\wsock32.dll
18:22:20.0683 1916 C:\Windows\SysWOW64\wsock32.dll - ok
18:22:20.0686 1916 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
18:22:20.0686 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
18:22:20.0690 1916 [ D5AEFAD57C08349A4393D987DF7C715D ] C:\Windows\SysWOW64\winmm.dll
18:22:20.0690 1916 C:\Windows\SysWOW64\winmm.dll - ok
18:22:20.0694 1916 [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
18:22:20.0694 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
18:22:20.0698 1916 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
18:22:20.0698 1916 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
18:22:20.0701 1916 [ 418E881201583A3039D81F43E39E6C78 ] C:\Windows\SysWOW64\winsta.dll
18:22:20.0701 1916 C:\Windows\SysWOW64\winsta.dll - ok
18:22:20.0705 1916 [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
18:22:20.0705 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
18:22:20.0709 1916 [ 81F6C1AE23B1C493D9E996C3103915D7 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
18:22:20.0709 1916 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
18:22:20.0714 1916 [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
18:22:20.0714 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
18:22:20.0718 1916 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
18:22:20.0718 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
18:22:20.0722 1916 [ 4327CF9A9D0864CA0FFC97FCDA97315A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
18:22:20.0722 1916 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
18:22:20.0725 1916 [ 10FB16B50AFFDA6D44588F3C445DC273 ] C:\Windows\SysWOW64\setupapi.dll
18:22:20.0725 1916 C:\Windows\SysWOW64\setupapi.dll - ok
18:22:20.0729 1916 [ F436E847FA799ECD75AD8C313673F450 ] C:\Windows\SysWOW64\cfgmgr32.dll
18:22:20.0729 1916 C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:22:20.0732 1916 [ 2EEFF4502F5E13B1BED4A04CCAD64C08 ] C:\Windows\SysWOW64\devobj.dll
18:22:20.0732 1916 C:\Windows\SysWOW64\devobj.dll - ok
18:22:20.0736 1916 [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\Windows\SysWOW64\dnssd.dll
18:22:20.0736 1916 C:\Windows\SysWOW64\dnssd.dll - ok
18:22:20.0740 1916 [ 3FD15B4611D9BDA3F8013548C0ECAECA ] C:\Windows\SysWOW64\ntmarta.dll
18:22:20.0740 1916 C:\Windows\SysWOW64\ntmarta.dll - ok
18:22:20.0744 1916 [ A8BB45F9ECAD993461E0FEF8E2A99152 ] C:\Windows\SysWOW64\Wldap32.dll
18:22:20.0744 1916 C:\Windows\SysWOW64\Wldap32.dll - ok
18:22:20.0748 1916 [ 8999B8631C7FD9F7F9EC3CAFD953BA24 ] C:\Windows\SysWOW64\mswsock.dll
18:22:20.0748 1916 C:\Windows\SysWOW64\mswsock.dll - ok
18:22:20.0753 1916 [ 24665B221424FFD7B71F0D2C398F2F4F ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
18:22:20.0753 1916 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
18:22:20.0757 1916 [ EE5C8E27C37B79CB54A2FCEEED2DC262 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
18:22:20.0757 1916 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
18:22:20.0762 1916 [ F48FEB7DA35821DA15E0B006DCB9A169 ] C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE
18:22:20.0762 1916 C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BBSvc.EXE - ok
18:22:20.0766 1916 [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
18:22:20.0766 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
18:22:20.0770 1916 [ CF3126A2FF45AA224FC541BC543C2D9C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
18:22:20.0770 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
18:22:20.0774 1916 [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
18:22:20.0775 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
18:22:20.0779 1916 [ 5E33C164DC7FA74728D8A83036C438BB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
18:22:20.0779 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
18:22:20.0783 1916 [ A8EDB86FC2A4D6D1285E4C70384AC35A ] C:\Windows\System32\dllhost.exe
18:22:20.0783 1916 C:\Windows\System32\dllhost.exe - ok
18:22:20.0788 1916 [ 14DFDEAF4E589ED3F1FF187A86B9408C ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
18:22:20.0788 1916 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
18:22:20.0792 1916 [ A0A2C1D812C231C9BFE119FDC68E341B ] C:\Windows\System32\IDStore.dll
18:22:20.0792 1916 C:\Windows\System32\IDStore.dll - ok
18:22:20.0796 1916 [ A6C29DB53ECA94FA8591C5388D604B82 ] C:\Windows\SysWOW64\msi.dll
18:22:20.0796 1916 C:\Windows\SysWOW64\msi.dll - ok
18:22:20.0800 1916 [ 6F8E3B7B70E1BBA871212940C1FBDF60 ] C:\Windows\SysWOW64\SensApi.dll
18:22:20.0800 1916 C:\Windows\SysWOW64\SensApi.dll - ok
18:22:20.0803 1916 [ 73E8667A19FEEDD856DF2695E9E511D4 ] C:\Windows\SysWOW64\wship6.dll
18:22:20.0803 1916 C:\Windows\SysWOW64\wship6.dll - ok
18:22:20.0807 1916 [ 23566F9723771108D2E6CD768AC27407 ] C:\Windows\System32\AtBroker.exe
18:22:20.0807 1916 C:\Windows\System32\AtBroker.exe - ok
18:22:20.0811 1916 [ 6CEF7856A3EFAC59470F6208F0F585CE ] C:\Windows\System32\mpr.dll
18:22:20.0811 1916 C:\Windows\System32\mpr.dll - ok
18:22:20.0815 1916 [ FF5688D309347F2720911D8796912834 ] C:\Windows\SysWOW64\clbcatq.dll
18:22:20.0815 1916 C:\Windows\SysWOW64\clbcatq.dll - ok
18:22:20.0819 1916 [ BAFE84E637BF7388C96EF48D4D3FDD53 ] C:\Windows\System32\userinit.exe
18:22:20.0819 1916 C:\Windows\System32\userinit.exe - ok
18:22:20.0823 1916 [ 65EA57712340C09B1B0C427B4848AE05 ] C:\Windows\System32\taskeng.exe
18:22:20.0823 1916 C:\Windows\System32\taskeng.exe - ok
18:22:20.0827 1916 [ 639774C9ACD063F028F6084ABF5593AD ] C:\Windows\System32\taskhost.exe
18:22:20.0827 1916 C:\Windows\System32\taskhost.exe - ok
18:22:20.0832 1916 [ 5997D769CDB108390DCFAEBF442BF816 ] C:\Windows\SysWOW64\RpcRtRemote.dll
18:22:20.0832 1916 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
18:22:20.0836 1916 [ ED8EC63F7522DF4852147C84EC62C36A ] C:\Windows\SysWOW64\rsaenh.dll
18:22:20.0836 1916 C:\Windows\SysWOW64\rsaenh.dll - ok
18:22:20.0840 1916 [ F162D5F5E845B9DC352DD1BAD8CEF1BC ] C:\Windows\System32\dwm.exe
18:22:20.0840 1916 C:\Windows\System32\dwm.exe - ok
18:22:20.0844 1916 [ FCFCD1101C5DA23B4B95F93D02B2C169 ] C:\Windows\System32\dwmredir.dll
18:22:20.0844 1916 C:\Windows\System32\dwmredir.dll - ok
18:22:20.0848 1916 [ 94EEAC26F57811BD1AEFC164412F7FCE ] C:\Windows\System32\PlaySndSrv.dll
18:22:20.0848 1916 C:\Windows\System32\PlaySndSrv.dll - ok
18:22:20.0852 1916 [ 805A52C5AE26C28E88FDD9BCCFE6F312 ] C:\Windows\System32\TSChannel.dll
18:22:20.0852 1916 C:\Windows\System32\TSChannel.dll - ok
18:22:20.0856 1916 [ 4BA77A5EF71C14C764B0ED4701683E3E ] C:\Windows\System32\dwmcore.dll
18:22:20.0856 1916 C:\Windows\System32\dwmcore.dll - ok
18:22:20.0860 1916 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:22:20.0860 1916 C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
18:22:20.0865 1916 [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll
18:22:20.0865 1916 C:\Program Files (x86)\Google\Update\1.3.21.135\goopdate.dll - ok
18:22:20.0868 1916 [ 332FEAB1435662FC6C672E25BEB37BE3 ] C:\Windows\explorer.exe
18:22:20.0869 1916 C:\Windows\explorer.exe - ok
18:22:20.0873 1916 [ 352B3DC62A0D259A82A052238425C872 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
18:22:20.0873 1916 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
18:22:20.0877 1916 [ 8535493AB374BE5B1B3A34671F42CCB3 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
18:22:20.0877 1916 C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
18:22:20.0882 1916 [ 9AE80F6A66B30E3ED8CDF858CF28B11B ] C:\Windows\System32\d3d10_1.dll
18:22:20.0882 1916 C:\Windows\System32\d3d10_1.dll - ok
18:22:20.0885 1916 [ 63F72417CA38D8FC8F53709649B589E3 ] C:\Windows\System32\d3d10_1core.dll
18:22:20.0885 1916 C:\Windows\System32\d3d10_1core.dll - ok
18:22:20.0889 1916 [ 8DFB5752FCE145A6B295093C0A8BE131 ] C:\Windows\System32\dxgi.dll
18:22:20.0889 1916 C:\Windows\System32\dxgi.dll - ok
18:22:20.0892 1916 [ 448B02AD260EC3E1E892FCE6DFDDEEBD ] C:\Windows\System32\d3d11.dll
18:22:20.0892 1916 C:\Windows\System32\d3d11.dll - ok
18:22:20.0896 1916 [ B2DB6ABA2E292235749B80A9C3DFA867 ] C:\Windows\SysWOW64\imagehlp.dll
18:22:20.0896 1916 C:\Windows\SysWOW64\imagehlp.dll - ok
18:22:20.0900 1916 [ 465BEA35F7ED4A4A57686DEA7EA10F47 ] C:\Windows\SysWOW64\cscapi.dll
18:22:20.0900 1916 C:\Windows\SysWOW64\cscapi.dll - ok
18:22:20.0903 1916 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8 ] C:\Windows\SysWOW64\dbghelp.dll
18:22:20.0903 1916 C:\Windows\SysWOW64\dbghelp.dll - ok
18:22:20.0906 1916 [ B0F6619DA9B4DBF58FE86E5934AEC949 ] C:\Windows\System32\aticfx64.dll
18:22:20.0906 1916 C:\Windows\System32\aticfx64.dll - ok
18:22:20.0910 1916 [ EED05D42D91835064703E2318552ED25 ] C:\Windows\System32\ExplorerFrame.dll
18:22:20.0910 1916 C:\Windows\System32\ExplorerFrame.dll - ok
18:22:20.0914 1916 [ 725027EB23A0F4F8BB68D0732632C8E4 ] C:\Windows\System32\atiuxp64.dll
18:22:20.0914 1916 C:\Windows\System32\atiuxp64.dll - ok
18:22:20.0917 1916 [ ABF41C6B13E9BEC82457E9D1668475E3 ] C:\Windows\System32\atidxx64.dll
18:22:20.0917 1916 C:\Windows\System32\atidxx64.dll - ok
18:22:20.0920 1916 [ 49E5753D923F1AC63B22D3DCB0B47E00 ] C:\Windows\System32\uDWM.dll
18:22:20.0920 1916 C:\Windows\System32\uDWM.dll - ok
18:22:20.0924 1916 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA ] C:\Windows\System32\MsCtfMonitor.dll
18:22:20.0924 1916 C:\Windows\System32\MsCtfMonitor.dll - ok
18:22:20.0927 1916 [ F9D908DE6B166DAC9B89BF62FA291CE8 ] C:\Program Files\Bonjour\mdnsNSP.dll
18:22:20.0927 1916 C:\Program Files\Bonjour\mdnsNSP.dll - ok
18:22:20.0931 1916 [ F09A9A1AD21FE618C4C8B0A0D830C886 ] C:\Windows\System32\msutb.dll
18:22:20.0931 1916 C:\Windows\System32\msutb.dll - ok
18:22:20.0934 1916 [ F5CEF064C7E6D95DA86B9D064A56A969 ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
18:22:20.0934 1916 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
18:22:20.0938 1916 [ 9BB99503D6A4DD62569EDE9E5E2672A5 ] C:\Windows\System32\HotStartUserAgent.dll
18:22:20.0938 1916 C:\Windows\System32\HotStartUserAgent.dll - ok
18:22:20.0941 1916 [ 522B0466ED967A0762E9AF5B37D8F40A ] C:\Windows\System32\esent.dll
18:22:20.0941 1916 C:\Windows\System32\esent.dll - ok
18:22:20.0945 1916 [ AFB5B500AD69E24ED1BC15D1161641EF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
18:22:20.0945 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
18:22:20.0949 1916 [ 88351B29B622B30962D2FEB6CA8D860B ] C:\Windows\System32\rasadhlp.dll
18:22:20.0949 1916 C:\Windows\System32\rasadhlp.dll - ok
18:22:20.0952 1916 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051 ] C:\Windows\System32\localspl.dll
18:22:20.0952 1916 C:\Windows\System32\localspl.dll - ok
18:22:20.0956 1916 [ 3285481F5C12305CA104A6C493CA5A0B ] C:\Windows\System32\spoolss.dll
18:22:20.0956 1916 C:\Windows\System32\spoolss.dll - ok
18:22:20.0959 1916 [ C5AC93CF3BA30D367FB49148A2B673B9 ] C:\Windows\System32\PrintIsolationProxy.dll
18:22:20.0959 1916 C:\Windows\System32\PrintIsolationProxy.dll - ok
18:22:20.0963 1916 [ 0015ACFBBDD164A8A730009908868CA7 ] C:\Windows\System32\winspool.drv
18:22:20.0963 1916 C:\Windows\System32\winspool.drv - ok
18:22:20.0966 1916 [ 6C5604ECB59009D69E984891E435B62A ] C:\Windows\System32\CNCALAL.DLL
18:22:20.0966 1916 C:\Windows\System32\CNCALAL.DLL - ok
18:22:20.0970 1916 [ 93B9E4D0B7BD601372C5B50FE0381533 ] C:\Windows\System32\CNMLMAL.DLL
18:22:20.0970 1916 C:\Windows\System32\CNMLMAL.DLL - ok
18:22:20.0973 1916 [ 4A9C54F09772403272770BD2CD72E765 ] C:\Windows\System32\CNMN6PPM.DLL
18:22:20.0973 1916 C:\Windows\System32\CNMN6PPM.DLL - ok
18:22:20.0977 1916 [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe
18:22:20.0977 1916 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
18:22:20.0981 1916 [ 863F793D15B4026B1A5FDECA873D4D84 ] C:\Windows\SysWOW64\apphelp.dll
18:22:20.0981 1916 C:\Windows\SysWOW64\apphelp.dll - ok
18:22:20.0984 1916 [ B676429E44F2F8ACC3BAE7C89F46B212 ] C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe
18:22:20.0984 1916 C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe - ok
18:22:20.0988 1916 [ C5A99A4C0DC9F0F5A95BA0C83D30A549 ] C:\Windows\SysWOW64\mstask.dll
18:22:20.0988 1916 C:\Windows\SysWOW64\mstask.dll - ok
18:22:20.0991 1916 [ 1BF0CB861A48FEB1638228760750F3CB ] C:\Windows\System32\cscapi.dll
18:22:20.0991 1916 C:\Windows\System32\cscapi.dll - ok
18:22:20.0995 1916 [ A7A8CA53D9C9FD90C07AB0EB38E5316B ] C:\Windows\System32\dbghelp.dll
18:22:20.0995 1916 C:\Windows\System32\dbghelp.dll - ok
18:22:20.0998 1916 [ B40420876B9288E0A1C8CCA8A84E5DC9 ] C:\Windows\SysWOW64\dnsapi.dll
18:22:20.0998 1916 C:\Windows\SysWOW64\dnsapi.dll - ok
18:22:21.0002 1916 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
18:22:21.0002 1916 C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
18:22:21.0005 1916 [ 43964FA89CCF97BA6BE34D69455AC65F ] C:\Windows\SysWOW64\uxtheme.dll
18:22:21.0005 1916 C:\Windows\SysWOW64\uxtheme.dll - ok
18:22:21.0009 1916 [ 12B79422A23814429CDA9E734C58F78F ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
18:22:21.0009 1916 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
18:22:21.0013 1916 [ D622C0DD759A3D25174FAD44C7B22540 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
18:22:21.0013 1916 C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
18:22:21.0016 1916 [ ED6EE83D61EBC683C2CD8E899EA6FEBE ] C:\Windows\SysWOW64\rasadhlp.dll
18:22:21.0016 1916 C:\Windows\SysWOW64\rasadhlp.dll - ok
18:22:21.0020 1916 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
18:22:21.0020 1916 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
18:22:21.0024 1916 [ 219A9D8CC3E6617A4B7580284944A219 ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll
18:22:21.0024 1916 C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll - ok
18:22:21.0027 1916 [ CB2704C69D4363EB15D1C5B0C6653D45 ] C:\Windows\System32\dopdfmn7.dll
18:22:21.0027 1916 C:\Windows\System32\dopdfmn7.dll - ok
18:22:21.0031 1916 [ 4D1B31AA1CD11122E9ABCA04708A1B1C ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
18:22:21.0031 1916 C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe - ok
18:22:21.0035 1916 [ 5877A3341AA7DF58789294CEBA38AE2B ] C:\Users\Shilstone\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
18:22:21.0035 1916 C:\Users\Shilstone\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll - ok
18:22:21.0039 1916 [ 241AF87821FDA0F5792037B779F49BE0 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
18:22:21.0039 1916 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
18:22:21.0042 1916 [ D233C7FEAE3FAA25F93A9E6B46815ADC ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
18:22:21.0042 1916 C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
18:22:21.0046 1916 [ 024352FEEC9042260BB4CFB4D79A206B ] C:\Windows\System32\EhStorShell.dll
18:22:21.0046 1916 C:\Windows\System32\EhStorShell.dll - ok
18:22:21.0048 1916 [ 5EB6E9C8BE1ACC5830780E0F9A846255 ] C:\Windows\System32\msi.dll
18:22:21.0048 1916 C:\Windows\System32\msi.dll - ok
18:22:21.0052 1916 [ 037A719DAD50603202C978CD802623E4 ] C:\Windows\System32\ntshrui.dll
18:22:21.0052 1916 C:\Windows\System32\ntshrui.dll - ok
18:22:21.0055 1916 [ 1D63F4366288B8A7595397E27010FD44 ] C:\Windows\System32\IconCodecService.dll
18:22:21.0055 1916 C:\Windows\System32\IconCodecService.dll - ok
18:22:21.0059 1916 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567 ] C:\Windows\System32\vssapi.dll
18:22:21.0059 1916 C:\Windows\System32\vssapi.dll - ok
18:22:21.0062 1916 [ CF6850A72BEB4845A3BFFB3F5E8014B2 ] C:\Windows\System32\pdh.dll
18:22:21.0062 1916 C:\Windows\System32\pdh.dll - ok
18:22:21.0066 1916 [ 287923557447D7E4BDD7E65B1F0F5428 ] C:\Windows\System32\vsstrace.dll
18:22:21.0066 1916 C:\Windows\System32\vsstrace.dll - ok
18:22:21.0069 1916 [ 807EB11BD87CD9026906FB79015414CE ] C:\Windows\System32\perfdisk.dll
18:22:21.0069 1916 C:\Windows\System32\perfdisk.dll - ok
18:22:21.0073 1916 [ DBC2246E41D54CE62DE47A71D267479B ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
18:22:21.0073 1916 C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
18:22:21.0076 1916 [ 8792BAB371B4B1589E015B6FD1ED3B15 ] C:\Windows\System32\cryptnet.dll
18:22:21.0076 1916 C:\Windows\System32\cryptnet.dll - ok
18:22:21.0080 1916 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] C:\Windows\System32\cryptsvc.dll
18:22:21.0080 1916 C:\Windows\System32\cryptsvc.dll - ok
18:22:21.0083 1916 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] C:\Windows\System32\dps.dll
18:22:21.0083 1916 C:\Windows\System32\dps.dll - ok
18:22:21.0086 1916 [ 7F8E83B9466A0A002D4AB15C104062A7 ] C:\Windows\System32\efscore.dll
18:22:21.0086 1916 C:\Windows\System32\efscore.dll - ok
18:22:21.0090 1916 [ 0C043B0ABBB5E14E68906AB80365395B ] C:\Windows\System32\efssvc.dll
18:22:21.0090 1916 C:\Windows\System32\efssvc.dll - ok
18:22:21.0093 1916 [ B466E673B5E219520A12B40F1289E455 ] C:\Windows\System32\perfproc.dll
18:22:21.0093 1916 C:\Windows\System32\perfproc.dll - ok
18:22:21.0097 1916 [ 802496CB59A30349F9A6DD22D6947644 ] C:\Windows\System32\FDResPub.dll
18:22:21.0097 1916 C:\Windows\System32\FDResPub.dll - ok
18:22:21.0100 1916 [ FCD84C381E0140AF901E58D48882D26B ] C:\Windows\System32\IKEEXT.DLL
18:22:21.0100 1916 C:\Windows\System32\IKEEXT.DLL - ok
18:22:21.0104 1916 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB ] C:\Windows\System32\taskschd.dll
18:22:21.0104 1916 C:\Windows\System32\taskschd.dll - ok
18:22:21.0107 1916 [ F1B205F932F62F94506A5F332C895DAF ] C:\Windows\System32\WSDApi.dll
18:22:21.0107 1916 C:\Windows\System32\WSDApi.dll - ok
18:22:21.0111 1916 [ E47FFCA0909871AC1BFF0D446FF63CA9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
18:22:21.0111 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe - ok
18:22:21.0114 1916 [ C55516D98DD5D8F0153C2A9B4227DA86 ] C:\Windows\System32\webservices.dll
18:22:21.0114 1916 C:\Windows\System32\webservices.dll - ok
18:22:21.0118 1916 [ 58283053C781AD3A579C95D7765C1FA0 ] C:\Windows\System32\efsutil.dll
18:22:21.0118 1916 C:\Windows\System32\efsutil.dll - ok
18:22:21.0121 1916 [ 77B5035BC6EDF4D1B6265391AECEE4C0 ] C:\Windows\System32\vpnikeapi.dll
18:22:21.0121 1916 C:\Windows\System32\vpnikeapi.dll - ok
18:22:21.0125 1916 [ B5055B51BAA0FD0A736A88653DA3C1C0 ] C:\Windows\System32\fundisc.dll
18:22:21.0125 1916 C:\Windows\System32\fundisc.dll - ok
18:22:21.0129 1916 [ 52F6F5D0174AF8020B22890520394CE0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ushata.dll
18:22:21.0129 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ushata.dll - ok
18:22:21.0132 1916 [ 8C8E916E24FE1C0DD07554B34064F564 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpinit.dll
18:22:21.0133 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpinit.dll - ok
18:22:21.0136 1916 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC ] C:\Windows\SysWOW64\fltLib.dll
18:22:21.0136 1916 C:\Windows\SysWOW64\fltLib.dll - ok
18:22:21.0139 1916 [ D017BF8D92938EEB9B3A1D1C53FDA152 ] C:\Windows\SysWOW64\mshtml.dll
18:22:21.0139 1916 C:\Windows\SysWOW64\mshtml.dll - ok
18:22:21.0143 1916 [ 8ECAE7BA330CC1A8F807FFBF9A40A950 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpmain.dll
18:22:21.0143 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpmain.dll - ok
18:22:21.0147 1916 [ 50D998B4B5549E95F8B9C790DB2F78C7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\prremote.dll
18:22:21.0147 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\prremote.dll - ok
18:22:21.0151 1916 [ 3998A3FDB93A584EEB57D292439D3E1D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\dumpwriter.dll
18:22:21.0151 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\dumpwriter.dll - ok
18:22:21.0154 1916 [ 58F4493BF748A3A89689997B7BD00E95 ] C:\Windows\System32\winhttp.dll
18:22:21.0154 1916 C:\Windows\System32\winhttp.dll - ok
18:22:21.0158 1916 [ 06DC2FDC6282F0D68910417B1150C848 ] C:\Program Files (x86)\Linksys\Linksys Updater\bin\LinksysUpdater.exe
18:22:21.0158 1916 C:\Program Files (x86)\Linksys\Linksys Updater\bin\LinksysUpdater.exe - ok
18:22:21.0162 1916 [ 603EBD34E216C5654A2D774EAC98D278 ] C:\Windows\System32\webio.dll
18:22:21.0162 1916 C:\Windows\System32\webio.dll - ok
18:22:21.0165 1916 [ EC2E03CF0AAE54FCBE436CC89BE52A3A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\prloader.dll
18:22:21.0165 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\prloader.dll - ok
18:22:21.0168 1916 [ B5B2896034D8ADEBD79E0C281B52508F ] C:\Windows\AppPatch\AcGenral.dll
18:22:21.0168 1916 C:\Windows\AppPatch\AcGenral.dll - ok
18:22:21.0172 1916 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF ] C:\Windows\System32\httpapi.dll
18:22:21.0172 1916 C:\Windows\System32\httpapi.dll - ok
18:22:21.0175 1916 [ C5966E2813B92A5E37E95F33E8410E14 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\nfio.ppl
18:22:21.0176 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\nfio.ppl - ok
18:22:21.0179 1916 [ B9A8CBCFCD3EC9D2EA4740AF347BF108 ] C:\Windows\SysWOW64\mpr.dll
18:22:21.0179 1916 C:\Windows\SysWOW64\mpr.dll - ok
18:22:21.0183 1916 [ DED37DA67073115D370CB2634E53B793 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\fsdrvplg.ppl
18:22:21.0183 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\fsdrvplg.ppl - ok
18:22:21.0187 1916 [ FC4E79B2E5B7F19F688EDD9E5D3DC595 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\fssync.dll
18:22:21.0187 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\fssync.dll - ok
18:22:21.0190 1916 [ 85683DF1F917E4D7F6BE1A04986BF1C8 ] C:\Windows\SysWOW64\msacm32.dll
18:22:21.0190 1916 C:\Windows\SysWOW64\msacm32.dll - ok
18:22:21.0194 1916 [ 68ECCA523ED760AAFC03C5D587569859 ] C:\Windows\SysWOW64\samcli.dll
18:22:21.0194 1916 C:\Windows\SysWOW64\samcli.dll - ok
18:22:21.0197 1916 [ 39C5F32747B3414D1BB216FDB1DEFC58 ] C:\Windows\SysWOW64\dwmapi.dll
18:22:21.0197 1916 C:\Windows\SysWOW64\dwmapi.dll - ok
18:22:21.0200 1916 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9 ] C:\Windows\SysWOW64\sfc.dll
18:22:21.0200 1916 C:\Windows\SysWOW64\sfc.dll - ok
18:22:21.0204 1916 [ 84799328D87B3091A3BDD251E1AD31F9 ] C:\Windows\SysWOW64\sfc_os.dll
18:22:21.0204 1916 C:\Windows\SysWOW64\sfc_os.dll - ok
18:22:21.0207 1916 [ 69CB1A65B835EE6ADF9E16ED6D443072 ] C:\Windows\SysWOW64\urlmon.dll
18:22:21.0207 1916 C:\Windows\SysWOW64\urlmon.dll - ok
18:22:21.0211 1916 [ E277949FB0F4E90509A6A208AB88559D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\winreg.ppl
18:22:21.0211 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\winreg.ppl - ok
18:22:21.0215 1916 [ CA093AE88517317F97BD1A4ABE8623BA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\service.dll
18:22:21.0215 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\service.dll - ok
18:22:21.0218 1916 [ 1C60E09CA1C3A045BC4D367F67C915B7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
18:22:21.0218 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
18:22:21.0222 1916 [ 847D3AE376C0817161A14A82C8922A9E ] C:\Windows\System32\netman.dll
18:22:21.0222 1916 C:\Windows\System32\netman.dll - ok
18:22:21.0225 1916 [ F2840DBFE9322F35557219AE82CC4597 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsvchst.exe
18:22:21.0225 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsvchst.exe - ok
18:22:21.0229 1916 [ 932ED79E577C0D42AB9888287ED5C8D7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\eka_meta.dll
18:22:21.0229 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\eka_meta.dll - ok
18:22:21.0233 1916 [ 8623FCC3AFFE0A9D8C6165543D138C58 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\esmgr.dll
18:22:21.0233 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\esmgr.dll - ok
18:22:21.0237 1916 [ 021063A1F708BCCD0AF228DF924A40DE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\pxstub.ppl
18:22:21.0237 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\pxstub.ppl - ok
18:22:21.0241 1916 [ 49ACA548B2423F1C67898E6AC719A9A6 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
18:22:21.0241 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
18:22:21.0244 1916 [ D2AE56CEAFD824CA022164A79FCB2F5C ] C:\Windows\SysWOW64\java.exe
18:22:21.0244 1916 C:\Windows\SysWOW64\java.exe - ok
18:22:21.0248 1916 [ BA5E7B5CEF44E4F60F195C789F666CD7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\params.ppl
18:22:21.0248 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\params.ppl - ok
18:22:21.0252 1916 [ EAC557409471B44D3341DF9768B621BA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\thpimpl.ppl
18:22:21.0252 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\thpimpl.ppl - ok
18:22:21.0255 1916 [ EFB9F55F43B2524E48FE792BEF0D384E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\propmap.ppl
18:22:21.0255 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\propmap.ppl - ok
18:22:21.0259 1916 [ 33975A7AF1AF19E24E773948A7257407 ] C:\Program Files\Internet Explorer\sqmapi.dll
18:22:21.0259 1916 C:\Program Files\Internet Explorer\sqmapi.dll - ok
18:22:21.0263 1916 [ 58A0CDABEA255616827B1C22C9994466 ] C:\Windows\System32\NapiNSP.dll
18:22:21.0263 1916 C:\Windows\System32\NapiNSP.dll - ok
18:22:21.0266 1916 [ 613C8CE10A5FDE582BA5FA64C4D56AAA ] C:\Windows\System32\pnrpnsp.dll
18:22:21.0266 1916 C:\Windows\System32\pnrpnsp.dll - ok
18:22:21.0269 1916 [ 2E2072EB48238FCA8FBB7A9F5FABAC45 ] C:\Windows\System32\winrnr.dll
18:22:21.0269 1916 C:\Windows\System32\winrnr.dll - ok
18:22:21.0273 1916 [ 544EFF88AC6C85DF5A4D6F18DFE08CFC ] C:\Windows\SysWOW64\taskschd.dll
18:22:21.0273 1916 C:\Windows\SysWOW64\taskschd.dll - ok
18:22:21.0277 1916 [ B14946D70C2A2317243274A6E3736D3E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\filemap.ppl
18:22:21.0277 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\filemap.ppl - ok
18:22:21.0281 1916 [ 3215F584BF98ACAC49DE9A86A1A98710 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\tm.ppl
18:22:21.0281 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\tm.ppl - ok
18:22:21.0284 1916 [ 632DA8D8158DEB133FF086FF7171B2F6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\dtreg.ppl
18:22:21.0284 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\dtreg.ppl - ok
18:22:21.0288 1916 [ 2BF24493488E91285E0AB7ECADC6B822 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\bl.ppl
18:22:21.0288 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\bl.ppl - ok
18:22:21.0292 1916 [ 81D6FFDDD22663CA32F8BEF9F107889D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\vercheck.ppl
18:22:21.0292 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\vercheck.ppl - ok
18:22:21.0296 1916 [ A4D813B49057FCA29B16C1343424F79D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\regmap.ppl
18:22:21.0296 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\regmap.ppl - ok
18:22:21.0298 1916 [ 603EEEED14B3398532D2189119CE9B6B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpinst.dll
18:22:21.0298 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpinst.dll - ok
18:22:21.0302 1916 [ 77BE435238DC00551C80E09B4EC2D5C4 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\am_facade.dll
18:22:21.0302 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\am_facade.dll - ok
18:22:21.0305 1916 [ 1BCDB508143B517F21BBDAC10F5777BF ] C:\Windows\System32\conhost.exe
18:22:21.0305 1916 C:\Windows\System32\conhost.exe - ok
18:22:21.0309 1916 [ 8A8AB03962C9AEFC5D0471F629743338 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\metainfo.dll
18:22:21.0309 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\metainfo.dll - ok
18:22:21.0313 1916 [ 7A136F1B080B1CC7A8E219054CCEB1B2 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\storage.dll
18:22:21.0313 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\storage.dll - ok
18:22:21.0317 1916 [ EDF2A5E96BEC469DA3F64E9BDD386111 ] C:\Windows\SysWOW64\xmllite.dll
18:22:21.0317 1916 C:\Windows\SysWOW64\xmllite.dll - ok
18:22:21.0320 1916 [ BF84B8A80A002A0E6D7D6E3952569269 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ndetect.ppl
18:22:21.0320 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ndetect.ppl - ok
18:22:21.0324 1916 [ 795AB874952E74AD48CD741F9D024547 ] C:\Windows\System32\java.exe
18:22:21.0324 1916 C:\Windows\System32\java.exe - ok
18:22:21.0327 1916 [ 19E41CCCEE697CC9465396B370929792 ] C:\Windows\System32\FXSMON.dll
18:22:21.0327 1916 C:\Windows\System32\FXSMON.dll - ok
18:22:21.0331 1916 [ 53D8BBB236513133915E8206CC8E419F ] C:\Windows\System32\HPZ3LLHN.DLL
18:22:21.0331 1916 C:\Windows\System32\HPZ3LLHN.DLL - ok
18:22:21.0334 1916 [ EF255A7B70D4884B80B8D727B74F3E83 ] C:\Windows\System32\pdfc_port.dll
18:22:21.0334 1916 C:\Windows\System32\pdfc_port.dll - ok
18:22:21.0337 1916 [ 32A3C8600AF124CBAAD845F13CFAE3CB ] C:\Windows\System32\tcpmon.dll
18:22:21.0337 1916 C:\Windows\System32\tcpmon.dll - ok
18:22:21.0341 1916 [ 93518C6EDE0B61BCBD02BDB02BD05FEE ] C:\Windows\System32\snmpapi.dll
18:22:21.0341 1916 C:\Windows\System32\snmpapi.dll - ok
18:22:21.0344 1916 [ FFF9D00CF16397C64317F213484F94BD ] C:\Windows\System32\wsnmp32.dll
18:22:21.0344 1916 C:\Windows\System32\wsnmp32.dll - ok
18:22:21.0348 1916 [ 210FCACAF902B2CD47CF9FD17D846146 ] C:\Windows\System32\aeevts.dll
18:22:21.0348 1916 C:\Windows\System32\aeevts.dll - ok
18:22:21.0351 1916 [ DF72A9936D0C3F517083119648814B09 ] C:\Windows\System32\usbmon.dll
18:22:21.0351 1916 C:\Windows\System32\usbmon.dll - ok
18:22:21.0354 1916 [ A1D7E3ADCDB07DDB6F423862DCB1A52B ] C:\Windows\System32\WSDMon.dll
18:22:21.0354 1916 C:\Windows\System32\WSDMon.dll - ok
18:22:21.0358 1916 [ 4581716B4BF76ACFD8E167EB0B26D82A ] C:\Windows\System32\fdPnp.dll
18:22:21.0358 1916 C:\Windows\System32\fdPnp.dll - ok
18:22:21.0361 1916 [ 1D626FE2E13C1CE49CA0136CFF214E93 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:22:21.0361 1916 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:22:21.0365 1916 [ 474E7750C4ACDC5CBEDF9923A56E977B ] C:\Windows\System32\spool\prtprocs\x64\CNMPDAL.DLL
18:22:21.0365 1916 C:\Windows\System32\spool\prtprocs\x64\CNMPDAL.DLL - ok
18:22:21.0369 1916 [ C30A50449EA4B611484A5F1F1F016774 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
18:22:21.0369 1916 C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL - ok
18:22:21.0372 1916 [ 007863E45F25AA47A4C30D0930BBFD85 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
18:22:21.0372 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
18:22:21.0376 1916 [ 0353B239C28B0E9EBC7FA3D1F6181661 ] C:\Windows\System32\win32spl.dll
18:22:21.0376 1916 C:\Windows\System32\win32spl.dll - ok
18:22:21.0379 1916 [ 507D5567A0A4EE86C4B0CE2CE1777025 ] C:\Windows\System32\inetpp.dll
18:22:21.0379 1916 C:\Windows\System32\inetpp.dll - ok
18:22:21.0383 1916 [ A8E03C3538151D702A39A48CFBBCAF4C ] C:\Windows\System32\spool\drivers\x64\3\CNCARAL.DLL
18:22:21.0383 1916 C:\Windows\System32\spool\drivers\x64\3\CNCARAL.DLL - ok
18:22:21.0386 1916 [ 8C338238C16777A802D6A9211EB2BA50 ] C:\Windows\SysWOW64\netprofm.dll
18:22:21.0386 1916 C:\Windows\SysWOW64\netprofm.dll - ok
18:22:21.0389 1916 [ 0BA65122FFA7E37564EE86422DBF7AE8 ] C:\Windows\SysWOW64\nlaapi.dll
18:22:21.0389 1916 C:\Windows\SysWOW64\nlaapi.dll - ok
18:22:21.0393 1916 [ 5C36B5D824FB86BA812DA74A4C23424D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\crpthlpr.ppl
18:22:21.0393 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\crpthlpr.ppl - ok
18:22:21.0397 1916 [ 5217BA40DFEFFB00895EC279715EF9CB ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\report.ppl
18:22:21.0397 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\report.ppl - ok
18:22:21.0401 1916 [ A2F5B0B6010408B592FBE6BBD81A0D0A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\schedule.ppl
18:22:21.0401 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\schedule.ppl - ok
18:22:21.0405 1916 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll
18:22:21.0405 1916 C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll - ok
18:22:21.0408 1916 [ 47B4B2467838828B2DDA43E2FD31606D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\timer.ppl
18:22:21.0408 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\timer.ppl - ok
18:22:21.0412 1916 [ 1B72D757763C358130531DC837B586C6 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\reportdb.ppl
18:22:21.0412 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\reportdb.ppl - ok
18:22:21.0416 1916 [ BD3C0ABD9EE3562A49F458D9FB491C6D ] C:\Program Files (x86)\Java\jre6\bin\client\jvm.dll
18:22:21.0416 1916 C:\Program Files (x86)\Java\jre6\bin\client\jvm.dll - ok
18:22:21.0419 1916 [ FDC385A0F7D7DD880C4622D1DF08ABE9 ] C:\Windows\System32\ntprint.dll
18:22:21.0419 1916 C:\Windows\System32\ntprint.dll - ok
18:22:21.0423 1916 [ EFBBE3005DFBC4B740804B2DE2118B17 ] C:\Program Files (x86)\Java\jre6\bin\java.dll
18:22:21.0423 1916 C:\Program Files (x86)\Java\jre6\bin\java.dll - ok
18:22:21.0427 1916 [ 78E824973A67192DD52A720083B0318D ] C:\Program Files (x86)\Java\jre6\bin\verify.dll
18:22:21.0427 1916 C:\Program Files (x86)\Java\jre6\bin\verify.dll - ok
18:22:21.0430 1916 [ B63B4053B8F025D290326A49784F0BA9 ] C:\Program Files (x86)\Java\jre6\bin\zip.dll
18:22:21.0430 1916 C:\Program Files (x86)\Java\jre6\bin\zip.dll - ok
18:22:21.0434 1916 [ 03A03A453F1AAAE0C73AAAF895321C7A ] C:\Windows\SysWOW64\FWPUCLNT.DLL
18:22:21.0434 1916 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
18:22:21.0437 1916 [ 069E73627E4BD53EADDA5D53F1379542 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\stat.ppl
18:22:21.0437 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\stat.ppl - ok
18:22:21.0441 1916 [ B5BEB279C54709F9E1DD9A7CADCF863A ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\threatsmanager.dll
18:22:21.0441 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\threatsmanager.dll - ok
18:22:21.0445 1916 [ 33740E38BE21BA07F7FBE3A4B61CB0D7 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qb.ppl
18:22:21.0445 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qb.ppl - ok
18:22:21.0449 1916 [ F79F4C73D4FFC0D199C1D27E29DB5B48 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ksnhelper.dll
18:22:21.0449 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ksnhelper.dll - ok
18:22:21.0453 1916 [ 4853FAA23868E66FD66DC81B8DD42333 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccl110u.dll
18:22:21.0453 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccl110u.dll - ok
18:22:21.0457 1916 [ E7EE9E6E6CBC7929A5A3DB9F5CF095C0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\packed_io.dll
18:22:21.0457 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\packed_io.dll - ok
18:22:21.0461 1916 [ 2257C98561EBAC594A8BB797970D6D54 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccvrtrst.dll
18:22:21.0461 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccvrtrst.dll - ok
18:22:21.0465 1916 [ 5839A8027D6D324A7CD494051A96628C ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
18:22:21.0465 1916 C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe - ok
18:22:21.0468 1916 [ D4FAC263861BAE06971C7F7D0A8EBF15 ] C:\Windows\System32\ncsi.dll
18:22:21.0468 1916 C:\Windows\System32\ncsi.dll - ok
18:22:21.0472 1916 [ 8AD77806D336673F270DB31645267293 ] C:\Windows\System32\nlasvc.dll
18:22:21.0472 1916 C:\Windows\System32\nlasvc.dll - ok
18:22:21.0475 1916 [ 8B8EEDA3D4B9C32170918B4EB8EF023B ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsvc.dll
18:22:21.0475 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsvc.dll - ok
18:22:21.0479 1916 [ 52364B2BBA5D1CB4E6A55076EB184D90 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\efacli.dll
18:22:21.0480 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\efacli.dll - ok
18:22:21.0483 1916 [ 65D64BB840ABF8AA317E1A56595C5E28 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\srtsp32.dll
18:22:21.0483 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\srtsp32.dll - ok
18:22:21.0487 1916 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE ] C:\Windows\System32\ssdpapi.dll
18:22:21.0487 1916 C:\Windows\System32\ssdpapi.dll - ok
18:22:21.0491 1916 [ 79ED7408D94471522D5C34BA10BCC7B9 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccipc.dll
18:22:21.0491 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccipc.dll - ok
18:22:21.0495 1916 [ 284DAE55DED345F240DF806D45711E0B ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\dimaster.dll
18:22:21.0495 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\dimaster.dll - ok
18:22:21.0499 1916 [ 5684762CF40116976A0007EECD5A587D ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccset.dll
18:22:21.0499 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccset.dll - ok
18:22:21.0503 1916 [ BFFDCC9754CFBE68477D1CCAA7728536 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coSvcPlg.dll
18:22:21.0503 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coSvcPlg.dll - ok
18:22:21.0506 1916 [ 070AD442FA11A1FC4F695F7F93231825 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ksn_client.dll
18:22:21.0506 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ksn_client.dll - ok
18:22:21.0510 1916 [ 3A9738A0C71A9A5098356BD3AA46D0BD ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccgevt.dll
18:22:21.0510 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccgevt.dll - ok
18:22:21.0514 1916 [ E036AA5E1F4A94C2D7058192DA0514BA ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccglog.dll
18:22:21.0514 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccglog.dll - ok
18:22:21.0518 1916 [ 564B9FE047BEA0A2A592093C1DBF15C0 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coFFPlgn.dll
18:22:21.0518 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coFFPlgn.dll - ok
18:22:21.0521 1916 [ 63E9ACC3FC9E408A5907650FC78C8064 ] C:\Program Files (x86)\Linksys\Linksys Updater\lib\wrapper.dll
18:22:21.0521 1916 C:\Program Files (x86)\Linksys\Linksys Updater\lib\wrapper.dll - ok
18:22:21.0525 1916 [ 5672C775FAB584EB5BABBB79C74C530E ] C:\Program Files (x86)\Symantec\Norton Online Backup\BuEng.dll
18:22:21.0525 1916 C:\Program Files (x86)\Symantec\Norton Online Backup\BuEng.dll - ok
18:22:21.0529 1916 [ 59B5902DE78621E7ED90C89579024974 ] C:\Program Files (x86)\Java\jre6\bin\net.dll
18:22:21.0529 1916 C:\Program Files (x86)\Java\jre6\bin\net.dll - ok
18:22:21.0532 1916 [ 12C45E3CB6D65F73209549E2D02ECA7A ] C:\Windows\SysWOW64\propsys.dll
18:22:21.0532 1916 C:\Windows\SysWOW64\propsys.dll - ok
18:22:21.0536 1916 [ E36112A8A6C7F840169A7E92C12F4203 ] C:\Windows\System32\wsock32.dll
18:22:21.0536 1916 C:\Windows\System32\wsock32.dll - ok
18:22:21.0539 1916 [ 6A8661B0B63BDB4A5555AE2D906B96EA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ksn_facade.dll
18:22:21.0539 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ksn_facade.dll - ok
18:22:21.0543 1916 [ D2958325C1AE1AE37A83334C6229E3BC ] C:\Windows\SysWOW64\actxprxy.dll
18:22:21.0543 1916 C:\Windows\SysWOW64\actxprxy.dll - ok
18:22:21.0547 1916 [ 1727B2A2F379A32B864C096FA794AADC ] C:\Windows\System32\aepic.dll
18:22:21.0547 1916 C:\Windows\System32\aepic.dll - ok
18:22:21.0549 1916 [ 68769C3356B3BE5D1C732C97B9A80D6E ] C:\Windows\System32\drivers\PEAuth.sys
18:22:21.0549 1916 C:\Windows\System32\drivers\PEAuth.sys - ok
18:22:21.0552 1916 [ C6DCD1D11ED6827F05C00773C3E7053C ] C:\Windows\System32\sfc.dll
18:22:21.0552 1916 C:\Windows\System32\sfc.dll - ok
18:22:21.0555 1916 [ 895C9AB0A855547445C4181195230757 ] C:\Windows\System32\sfc_os.dll
18:22:21.0555 1916 C:\Windows\System32\sfc_os.dll - ok
18:22:21.0559 1916 [ 3EA8A16169C26AFBEB544E0E48421186 ] C:\Windows\System32\drivers\secdrv.sys
18:22:21.0559 1916 C:\Windows\System32\drivers\secdrv.sys - ok
18:22:21.0562 1916 [ 27E461F0BE5BFF5FC737328F749538C3 ] C:\Windows\System32\drivers\srvnet.sys
18:22:21.0562 1916 C:\Windows\System32\drivers\srvnet.sys - ok
18:22:21.0566 1916 [ BC617A4E1B4FA8DF523A061739A0BD87 ] C:\Windows\System32\seclogon.dll
18:22:21.0566 1916 C:\Windows\System32\seclogon.dll - ok
18:22:21.0569 1916 [ 93ED9FF632CEE1D181CD89BB67256C92 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccjobmgr.dll
18:22:21.0569 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccjobmgr.dll - ok
18:22:21.0573 1916 [ 03F3B770DFBED6131653CEDA8CA780F0 ] C:\Windows\SysWOW64\ntshrui.dll
18:22:21.0573 1916 C:\Windows\SysWOW64\ntshrui.dll - ok
18:22:21.0577 1916 [ A9E790F2C9B5F22EC9E9BE7855B9BFFC ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsubeng.dll
18:22:21.0577 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsubeng.dll - ok
18:22:21.0581 1916 [ 3662262608ADC5DEA6FD9F5AC465528D ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccemlpxy.dll
18:22:21.0581 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccemlpxy.dll - ok
18:22:21.0585 1916 [ A3209E8D70456D01DD2BB0C624C2AB12 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\transport_provider.dll
18:22:21.0585 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\transport_provider.dll - ok
18:22:21.0588 1916 [ 08DFDBD2FD4EA951DC46B1C7661ED35A ] C:\Windows\SysWOW64\powrprof.dll
18:22:21.0588 1916 C:\Windows\SysWOW64\powrprof.dll - ok
18:22:21.0592 1916 [ 99056A9FF85141B3337C5D392DD9EBA7 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\iron.dll
18:22:21.0592 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\iron.dll - ok
18:22:21.0595 1916 [ 8B74CEC6980D4816B0037AE9A27E538F ] C:\Windows\SysWOW64\slc.dll
18:22:21.0595 1916 C:\Windows\SysWOW64\slc.dll - ok
18:22:21.0599 1916 [ 7EABAA542A7DA553552128F595DDA08E ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sndsvc.dll
18:22:21.0599 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sndsvc.dll - ok
18:22:21.0603 1916 [ 2CFE545ABAFCE9AB0C375DC05CE831C7 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symredir.dll
18:22:21.0603 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symredir.dll - ok
18:22:21.0606 1916 [ 839F96DBAAFD3353E0B248A5E0BD2A51 ] C:\Windows\SysWOW64\rasapi32.dll
18:22:21.0607 1916 C:\Windows\SysWOW64\rasapi32.dll - ok
18:22:21.0610 1916 [ FFA7172354B9256DBB2CDD75F16F33FE ] C:\Windows\SysWOW64\rasman.dll
18:22:21.0610 1916 C:\Windows\SysWOW64\rasman.dll - ok
18:22:21.0614 1916 [ 374F45E5A2C2632134AF67C2BC5C72C4 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\cryptostaticprovider.dll
18:22:21.0614 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\cryptostaticprovider.dll - ok
18:22:21.0617 1916 [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159 ] C:\Windows\SysWOW64\rtutils.dll
18:22:21.0618 1916 C:\Windows\SysWOW64\rtutils.dll - ok
18:22:21.0621 1916 [ CCE1839C52D74A113FF5BAC6E1FC0495 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avs.ppl
18:22:21.0621 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avs.ppl - ok
18:22:21.0625 1916 [ AF8B7EE63077AF38B0AE3A91C372043B ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\procmon.ppl
18:22:21.0625 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\procmon.ppl - ok
18:22:21.0629 1916 [ F0758B13102C4120AE40E55242899EB5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\dmap.ppl
18:22:21.0629 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\dmap.ppl - ok
18:22:21.0633 1916 [ FDFF7984838441BE3D458C8B4F106C23 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ichecker.dll
18:22:21.0633 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\ichecker.dll - ok
18:22:21.0636 1916 [ 376FBDA340404E04115B8F5210CD81DA ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\memmon.dll
18:22:21.0636 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\memmon.dll - ok
18:22:21.0640 1916 [ F2163DEE022F71C2523F42C980A5769E ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\excludemanager.dll
18:22:21.0640 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\excludemanager.dll - ok
18:22:21.0644 1916 [ 070EAD77219F8A97E6EA02FDF7397607 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\klifpp.dll
18:22:21.0644 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\klifpp.dll - ok
18:22:21.0648 1916 [ 0316A26929C49D72D100A11BA949F8B6 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\avengine.dll.0316a26929c49d72d100a11ba949f8b6
18:22:21.0648 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\avengine.dll.0316a26929c49d72d100a11ba949f8b6 - ok
18:22:21.0652 1916 [ 1A46113F3B43DBD04D5A33B60B73074D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\hashmd5.ppl
18:22:21.0652 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\hashmd5.ppl - ok
18:22:21.0656 1916 [ 5E27E54F3B4175E0E6DFEE726B87A311 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\kavbase.kdl.5e27e54f3b4175e0e6dfee726b87a311
18:22:21.0656 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\kavbase.kdl.5e27e54f3b4175e0e6dfee726b87a311 - ok
18:22:21.0659 1916 [ 7601A29152ED8EDF2478DEBF5CDD89B6 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symrdrsv.dll
18:22:21.0659 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symrdrsv.dll - ok
18:22:21.0663 1916 [ 2DCB2CC8A1D1074E5D42D36FA6B7EB20 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\hncore.dll
18:22:21.0663 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\hncore.dll - ok
18:22:21.0667 1916 [ 2DE8B3750F5E699CB8E6C10DD3970437 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\acassembler.dll
18:22:21.0667 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\acassembler.dll - ok
18:22:21.0671 1916 [ C50D0F17B5A01E8805EEFD5DA9CF9FA2 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\appmgr32.dll
18:22:21.0671 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\appmgr32.dll - ok
18:22:21.0675 1916 [ 6CB560907292A84CD0A6BA0E9E8B632C ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\klavemu.kdl.6cb560907292a84cd0a6ba0e9e8b632c
18:22:21.0675 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\klavemu.kdl.6cb560907292a84cd0a6ba0e9e8b632c - ok
18:22:21.0679 1916 [ FF6B44E0BD9C3941A9D7764839100AC6 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symneti.dll
18:22:21.0679 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symneti.dll - ok
18:22:21.0683 1916 [ 05A3E083332D3ABE33E499A6DC3E7FFB ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\isdatapr.dll
18:22:21.0683 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\isdatapr.dll - ok
18:22:21.0687 1916 [ 915F6694F918DC272BDEA73A2DAE812F ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\format_recognizer.dll
18:22:21.0687 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\format_recognizer.dll - ok
18:22:21.0690 1916 [ 0B7E85364CB878E2AD531DB7B601A9E5 ] C:\Windows\SysWOW64\NapiNSP.dll
18:22:21.0690 1916 C:\Windows\SysWOW64\NapiNSP.dll - ok
18:22:21.0694 1916 [ 5CF640EDDB1E40A5AB1BB743BCDEC610 ] C:\Windows\SysWOW64\pnrpnsp.dll
18:22:21.0694 1916 C:\Windows\SysWOW64\pnrpnsp.dll - ok
18:22:21.0697 1916 [ 5DF5D8CFD9B9573FA3B2C89D9061A240 ] C:\Windows\SysWOW64\winrnr.dll
18:22:21.0697 1916 C:\Windows\SysWOW64\winrnr.dll - ok
18:22:21.0701 1916 [ CC7A567E299A103B794D5D77B51810AF ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\proxydet.ppl
18:22:21.0701 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\proxydet.ppl - ok
18:22:21.0705 1916 [ 797A3566CDAE5E9CEE6DB0041305DB46 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avmodule.dll
18:22:21.0705 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avmodule.dll - ok
18:22:21.0709 1916 [ 0B219909E597679290E7C00230D3D2F0 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\updater.dll
18:22:21.0709 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\updater.dll - ok
18:22:21.0713 1916 [ 1D83A60ECA0C8142F8A280E9AE6667B5 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\diffs.dll
18:22:21.0713 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\diffs.dll - ok
18:22:21.0717 1916 [ A6720B2881C5B66257DD9B6DD954887D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\processmonitor.dll
18:22:21.0717 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\processmonitor.dll - ok
18:22:21.0721 1916 [ A918B448BE75F1E6825549DDB6692D7A ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\kjim.kdl.a918b448be75f1e6825549ddb6692d7a
18:22:21.0721 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\kjim.kdl.a918b448be75f1e6825549ddb6692d7a - ok
18:22:21.0725 1916 [ 69D2B6F54B8D3AAE15E8112FAAC7979F ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\dns_client.dll.69d2b6f54b8d3aae15e8112faac7979f
18:22:21.0725 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\dns_client.dll.69d2b6f54b8d3aae15e8112faac7979f - ok
18:22:21.0729 1916 [ 317DF7C0EFF0939E6289F5C72F65BA51 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\vlns.kdl.317df7c0eff0939e6289f5c72f65ba51
18:22:21.0729 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\vlns.kdl.317df7c0eff0939e6289f5c72f65ba51 - ok
18:22:21.0732 1916 [ A6910B3BC8FBE23EF08166E35ECEAAEA ] C:\Program Files (x86)\Java\jre6\bin\sunmscapi.dll
18:22:21.0732 1916 C:\Program Files (x86)\Java\jre6\bin\sunmscapi.dll - ok
18:22:21.0736 1916 [ FB1FEC251BAAA2AB4237FB3CFF510751 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\qscan.kdl.fb1fec251baaa2ab4237fb3cff510751
18:22:21.0736 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\qscan.kdl.fb1fec251baaa2ab4237fb3cff510751 - ok
18:22:21.0740 1916 [ 613B277AB5C75287DACBA35AA7EE4BC8 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\defutdcd.dll
18:22:21.0740 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\defutdcd.dll - ok
18:22:21.0744 1916 [ 10280E90B16CD866364D155C88AF08DB ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ncw.dll
18:22:21.0744 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ncw.dll - ok
18:22:21.0748 1916 [ 41DC267440BC79CB8C2216BD28F1F254 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\pbs.kdl.41dc267440bc79cb8c2216bd28f1f254
18:22:21.0748 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\pbs.kdl.41dc267440bc79cb8c2216bd28f1f254 - ok
18:22:21.0751 1916 [ C44354E5074D69B0A7FF50964CB3BD18 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ducclib.dll
18:22:21.0751 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ducclib.dll - ok
18:22:21.0755 1916 [ 38B13C0DF479DBA23ECFA815159BA86E ] C:\Windows\SysWOW64\ktmw32.dll
18:22:21.0755 1916 C:\Windows\SysWOW64\ktmw32.dll - ok
18:22:21.0758 1916 [ 83E5B8B86E6FDD48A60954A193F1B440 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\cltpe.dll
18:22:21.0758 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\cltpe.dll - ok
18:22:21.0762 1916 [ D0C0C17E2A31C33FA495D3AB8A0D5BB2 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\bhclient.dll
18:22:21.0762 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\bhclient.dll - ok
18:22:21.0766 1916 [ 876AFFC7ED37A39109E85E32947ABBF7 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\NAVENG32.DLL
18:22:21.0766 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\NAVENG32.DLL - ok
18:22:21.0770 1916 [ 2BACD71123F42CEA603F4E205E1AE337 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:22:21.0770 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
18:22:21.0773 1916 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] C:\Windows\System32\drivers\tcpipreg.sys
18:22:21.0773 1916 C:\Windows\System32\drivers\tcpipreg.sys - ok
18:22:21.0777 1916 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] C:\Windows\System32\sysmain.dll
18:22:21.0777 1916 C:\Windows\System32\sysmain.dll - ok
18:22:21.0780 1916 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] C:\Windows\System32\tapisrv.dll
18:22:21.0780 1916 C:\Windows\System32\tapisrv.dll - ok
18:22:21.0784 1916 [ 7E7AFD841694F6AC397E99D75CEAD49D ] C:\Windows\System32\trkwks.dll
18:22:21.0784 1916 C:\Windows\System32\trkwks.dll - ok
18:22:21.0787 1916 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE ] C:\Windows\System32\wbemcomn.dll
18:22:21.0787 1916 C:\Windows\System32\wbemcomn.dll - ok
18:22:21.0791 1916 [ 19B07E7E8915D701225DA41CB3877306 ] C:\Windows\System32\wbem\WMIsvc.dll
18:22:21.0791 1916 C:\Windows\System32\wbem\WMIsvc.dll - ok
18:22:21.0794 1916 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] C:\Windows\System32\wiaservc.dll
18:22:21.0794 1916 C:\Windows\System32\wiaservc.dll - ok
18:22:21.0797 1916 [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5 ] C:\Windows\System32\wiatrace.dll
18:22:21.0797 1916 C:\Windows\System32\wiatrace.dll - ok
18:22:21.0800 1916 [ EE26D130808D16C0E417BBBED0451B34 ] C:\Windows\System32\ntdsapi.dll
18:22:21.0800 1916 C:\Windows\System32\ntdsapi.dll - ok
18:22:21.0803 1916 [ A3F5E8EC1316C3E2562B82694A251C9E ] C:\Windows\System32\wbem\fastprox.dll
18:22:21.0803 1916 C:\Windows\System32\wbem\fastprox.dll - ok
18:22:21.0806 1916 [ 0255C22D99602534F15CBB8D9B6F152F ] C:\Windows\System32\wbem\WinMgmtR.dll
18:22:21.0806 1916 C:\Windows\System32\wbem\WinMgmtR.dll - ok
18:22:21.0810 1916 [ 0C52762C606BCF6A377D5E4688191A6B ] C:\Windows\System32\wbem\WmiDcPrv.dll
18:22:21.0810 1916 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
18:22:21.0813 1916 [ 666A60F6F5E719856FF6254E0966EFF7 ] C:\Windows\System32\wbem\wbemprox.dll
18:22:21.0813 1916 C:\Windows\System32\wbem\wbemprox.dll - ok
18:22:21.0817 1916 [ 93812FDC01AA864195816CD814445F95 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
18:22:21.0817 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
18:22:21.0821 1916 [ B837D1528CE2E3CB79F09496BC08DDC6 ] C:\Windows\System32\SensApi.dll
18:22:21.0821 1916 C:\Windows\System32\SensApi.dll - ok
18:22:21.0824 1916 [ 087D8668C71634A3A3761135ABF16EEE ] C:\Windows\System32\wbem\esscli.dll
18:22:21.0824 1916 C:\Windows\System32\wbem\esscli.dll - ok
18:22:21.0828 1916 [ 5EB55F661DEBF156E126160BCD4D89F8 ] C:\Windows\System32\wbem\wbemcore.dll
18:22:21.0828 1916 C:\Windows\System32\wbem\wbemcore.dll - ok
18:22:21.0831 1916 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65 ] C:\Windows\System32\wer.dll
18:22:21.0831 1916 C:\Windows\System32\wer.dll - ok
18:22:21.0835 1916 [ 08C2957BB30058E663720C5606885653 ] C:\Windows\System32\iphlpsvc.dll
18:22:21.0835 1916 C:\Windows\System32\iphlpsvc.dll - ok
18:22:21.0838 1916 [ 27B9E163740A226B65E4B9E186117911 ] C:\Windows\System32\sqmapi.dll
18:22:21.0838 1916 C:\Windows\System32\sqmapi.dll - ok
18:22:21.0840 1916 [ 718B6F51AB7F6FE2988A36868F9AD3AB ] C:\Windows\System32\wbem\wbemsvc.dll
18:22:21.0840 1916 C:\Windows\System32\wbem\wbemsvc.dll - ok
18:22:21.0844 1916 [ 0143DB80DACFB7C2B5B7009ED9063353 ] C:\Windows\System32\wbem\wmiutils.dll
18:22:21.0844 1916 C:\Windows\System32\wbem\wmiutils.dll - ok
18:22:21.0848 1916 [ 82C5A813E8EA7E94DC1AFA24CD803B80 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
18:22:21.0848 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe - ok
18:22:21.0851 1916 [ 0AB34456654C283DAA13B8D2BA21439B ] C:\Windows\System32\wbem\repdrvfs.dll
18:22:21.0851 1916 C:\Windows\System32\wbem\repdrvfs.dll - ok
18:22:21.0855 1916 [ 7B38D7916A7CD058C16A0A6CA5077901 ] C:\Windows\System32\wdscore.dll
18:22:21.0855 1916 C:\Windows\System32\wdscore.dll - ok
18:22:21.0858 1916 [ 3B367397320C26DBA890B260F80D1B1B ] C:\Windows\System32\hnetcfg.dll
18:22:21.0858 1916 C:\Windows\System32\hnetcfg.dll - ok
18:22:21.0861 1916 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] C:\Windows\System32\netprofm.dll
18:22:21.0861 1916 C:\Windows\System32\netprofm.dll - ok
18:22:21.0865 1916 [ FEB91B4DA0D540865260A33838654FA3 ] C:\Windows\System32\nci.dll
18:22:21.0865 1916 C:\Windows\System32\nci.dll - ok
18:22:21.0868 1916 [ 85C3AB8341F13E94B16FE9A69582A42F ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
18:22:21.0868 1916 C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
18:22:21.0872 1916 [ 371948BC5911ABA06168FAC91ED25F06 ] C:\Windows\System32\msxml3.dll
18:22:21.0872 1916 C:\Windows\System32\msxml3.dll - ok
18:22:21.0875 1916 [ 2A46FFE841EC43001D5A293A54DB34DE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
18:22:21.0875 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
18:22:21.0879 1916 [ 0B6118058942961D504AAEA04FECB116 ] C:\Windows\SysWOW64\ieframe.dll
18:22:21.0879 1916 C:\Windows\SysWOW64\ieframe.dll - ok
18:22:21.0882 1916 [ F11A57E91FDAECFB41A5CB21EB1EBC8E ] C:\Windows\System32\dssenh.dll
18:22:21.0882 1916 C:\Windows\System32\dssenh.dll - ok
18:22:21.0886 1916 [ E4DC1B9579C849E18472B9A852607173 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avzkrnl.dll
18:22:21.0886 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avzkrnl.dll - ok
18:22:21.0890 1916 [ 60F4AEFA103D421EA4A40E31409B4756 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
18:22:21.0890 1916 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
18:22:21.0893 1916 [ C0F700218CC351CD55503068C28B44E4 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll
18:22:21.0893 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll - ok
18:22:21.0897 1916 [ BF6D6ED5FADCEEE885BD0144ECF1BA27 ] C:\Windows\SysWOW64\ncrypt.dll
18:22:21.0897 1916 C:\Windows\SysWOW64\ncrypt.dll - ok
18:22:21.0900 1916 [ CE71B9119A258EDD0A05B37D7B0F92E3 ] C:\Windows\SysWOW64\bcrypt.dll
18:22:21.0900 1916 C:\Windows\SysWOW64\bcrypt.dll - ok
18:22:21.0904 1916 [ E8449FE262D7406BCB2AC2A45C53EC5F ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:22:21.0904 1916 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:22:21.0907 1916 [ 1097F3035BAF46CED8B332B3564C5108 ] C:\Windows\SysWOW64\gpapi.dll
18:22:21.0907 1916 C:\Windows\SysWOW64\gpapi.dll - ok
18:22:21.0911 1916 [ CBAA4D0696C766B6DBC6EE3202B943D2 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmagnt.dll
18:22:21.0911 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmagnt.dll - ok
18:22:21.0914 1916 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] C:\Windows\System32\drivers\srv2.sys
18:22:21.0914 1916 C:\Windows\System32\drivers\srv2.sys - ok
18:22:21.0918 1916 [ EE867A0870FC9E4972BA9EAAD35651E2 ] C:\Windows\System32\rasmans.dll
18:22:21.0918 1916 C:\Windows\System32\rasmans.dll - ok
18:22:21.0921 1916 [ 44C96B48112EB24AE7764EBF1C527000 ] C:\Windows\System32\rastapi.dll
18:22:21.0921 1916 C:\Windows\System32\rastapi.dll - ok
18:22:21.0925 1916 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] C:\Windows\System32\drivers\srv.sys
18:22:21.0925 1916 C:\Windows\System32\drivers\srv.sys - ok
18:22:21.0928 1916 [ FAFAE01E889DC9C05A6CA2138CFC220B ] C:\Windows\System32\tapi32.dll
18:22:21.0928 1916 C:\Windows\System32\tapi32.dll - ok
18:22:21.0932 1916 [ D2A0FFA75AB181B19B5EB93BB29C7686 ] C:\Windows\System32\unimdm.tsp
18:22:21.0932 1916 C:\Windows\System32\unimdm.tsp - ok
18:22:21.0935 1916 [ DDD0357A92FA843EFF8915ED17253D6C ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:22:21.0935 1916 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:22:21.0938 1916 [ D41FEBD098234F02485A4EA98D4730A4 ] C:\Windows\System32\ncobjapi.dll
18:22:21.0939 1916 C:\Windows\System32\ncobjapi.dll - ok
18:22:21.0942 1916 [ 6F40D6FB05E0C1E5402812B426971AF0 ] C:\Windows\System32\wbem\wbemess.dll
18:22:21.0942 1916 C:\Windows\System32\wbem\wbemess.dll - ok
18:22:21.0945 1916 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C ] C:\Windows\System32\ndiscapCfg.dll
18:22:21.0945 1916 C:\Windows\System32\ndiscapCfg.dll - ok
18:22:21.0949 1916 [ 2DF29664ED261F0FC448E58F338F0671 ] C:\Windows\System32\mprapi.dll
18:22:21.0949 1916 C:\Windows\System32\mprapi.dll - ok
18:22:21.0952 1916 [ 1CF21800E337F4039AAD4C94B4280EE4 ] C:\Windows\System32\mprmsg.dll
18:22:21.0952 1916 C:\Windows\System32\mprmsg.dll - ok
18:22:21.0955 1916 [ 3D6AF45673C4B31CDECD7F80AF09D443 ] C:\Windows\System32\rascfg.dll
18:22:21.0955 1916 C:\Windows\System32\rascfg.dll - ok
18:22:21.0959 1916 [ 55DE45B116711881C852D2841E4C84DD ] C:\Windows\System32\tcpipcfg.dll
18:22:21.0959 1916 C:\Windows\System32\tcpipcfg.dll - ok
18:22:21.0963 1916 [ FE01191E0FD9C827B1366D0BFFE7C050 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmcore.dll
18:22:21.0963 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmcore.dll - ok
18:22:21.0967 1916 [ 81F08948A0F1475894C99D4D19A158A8 ] C:\Windows\SysWOW64\wshqos.dll
18:22:21.0967 1916 C:\Windows\SysWOW64\wshqos.dll - ok
18:22:21.0970 1916 [ B135B7BAD6A9C8318B5C9B88692638D8 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avpsvc32.dll
18:22:21.0970 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avpsvc32.dll - ok
18:22:21.0974 1916 [ 30979CDC8F0DA5E4AF4127A24870DCAC ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avmail.dll
18:22:21.0974 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avmail.dll - ok
18:22:21.0978 1916 [ FD32EA9505B4C74A0882D4733D4D1156 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\asengine.dll
18:22:21.0978 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\asengine.dll - ok
18:22:21.0982 1916 [ EAB1BB965DF56129A786078FC68A8B92 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avifc.dll
18:22:21.0982 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avifc.dll - ok
18:22:21.0985 1916 [ 94B7DF336815B47236724019FAB24B7C ] C:\Windows\System32\uniplat.dll
18:22:21.0985 1916 C:\Windows\System32\uniplat.dll - ok
18:22:21.0989 1916 [ 41326DD08ACC0CDC5F8177AF96C066E8 ] C:\Windows\System32\kmddsp.tsp
18:22:21.0989 1916 C:\Windows\System32\kmddsp.tsp - ok
18:22:21.0992 1916 [ 3726030ED9FAE22748F4ECB6936AE91B ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll
18:22:21.0992 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll - ok
18:22:21.0996 1916 [ 7C1BAE7D23D4874FEE256A2B9C00E019 ] C:\Windows\System32\hidphone.tsp
18:22:21.0996 1916 C:\Windows\System32\hidphone.tsp - ok
18:22:21.0999 1916 [ 1D6BC2769DA66C1145F4DA5A65F52E61 ] C:\Windows\System32\ndptsp.tsp
18:22:21.0999 1916 C:\Windows\System32\ndptsp.tsp - ok
18:22:22.0003 1916 [ 468D9C5404D6202DC7A5D96B8480929B ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sqsvc.dll
18:22:22.0003 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sqsvc.dll - ok
18:22:22.0007 1916 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8 ] C:\Windows\SysWOW64\winspool.drv
18:22:22.0007 1916 C:\Windows\SysWOW64\winspool.drv - ok
18:22:22.0010 1916 [ A46D72A18E4B34BDA2832AA445F7C058 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\cltlms.dll
18:22:22.0010 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\cltlms.dll - ok
18:22:22.0014 1916 [ D3654637A382BFD0E1ACED5CDF90CFDA ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\qsplugin.dll
18:22:22.0014 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\qsplugin.dll - ok
18:22:22.0018 1916 [ 1F761DA08B1855DDBDD97204D69B48DD ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\bhsvcplg.dll
18:22:22.0018 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\bhsvcplg.dll - ok
18:22:22.0022 1916 [ CA591BB0B28C777065D8A16B7057FCF8 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\spocclnt.dll
18:22:22.0022 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\spocclnt.dll - ok
18:22:22.0026 1916 [ 53726EBA2B0D9DD215CCE7B8923D73BF ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\datastor.dll
18:22:22.0026 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\datastor.dll - ok
18:22:22.0030 1916 [ 5E0C5B5BE5304E133968D6D6F8840B28 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\dscli.dll
18:22:22.0030 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\dscli.dll - ok
18:22:22.0034 1916 [ 4C230E31630087B78D061D29A43E6D11 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\comm.dll
18:22:22.0034 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\comm.dll - ok
18:22:22.0037 1916 [ F7DC4705A1B1D14FF9582D373AF080BA ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sqlite.dll
18:22:22.0037 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sqlite.dll - ok
18:22:22.0041 1916 [ 10729D2D308C5AA804ECE537B49C16AD ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\userlog.dll
18:22:22.0041 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\userlog.dll - ok
18:22:22.0045 1916 [ D750EA29EB42573062C3F115C4884942 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ipsplug.dll
18:22:22.0045 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ipsplug.dll - ok
18:22:22.0049 1916 [ F38E7CC2C76A78F31B1EE2559EDD35A9 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\isdatasv.dll
18:22:22.0049 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\isdatasv.dll - ok
18:22:22.0051 1916 [ 1C508276096E4C2D1684E475CE33EF82 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwcore.dll
18:22:22.0051 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwcore.dll - ok
18:22:22.0055 1916 [ BC0ED1BD94343BD7AC2E259576BFBCF8 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwgenplg.dll
18:22:22.0055 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwgenplg.dll - ok
18:22:22.0059 1916 [ DA0688029B2E7F7E703A39C41BBB1444 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20130322.001_24\BHEngine.dll
18:22:22.0059 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\BASHDefs\20130322.001_24\BHEngine.dll - ok
18:22:22.0063 1916 [ 4C1244FEF74C60A4B1B151C76609CBE2 ] C:\Windows\System32\wsdchngr.dll
18:22:22.0063 1916 C:\Windows\System32\wsdchngr.dll - ok
18:22:22.0066 1916 [ AC3F5C50E94037619AC93D01BBF0CA27 ] C:\Windows\System32\CNC410C.dll
18:22:22.0066 1916 C:\Windows\System32\CNC410C.dll - ok
18:22:22.0069 1916 [ F325980A000E2FD05C3D9D0313F3A1BE ] C:\Windows\System32\CNC410L.dll
18:22:22.0069 1916 C:\Windows\System32\CNC410L.dll - ok
18:22:22.0073 1916 [ 493574E218AA18161D14EECFD572A0E8 ] C:\Windows\System32\CNHMCA6.dll
18:22:22.0073 1916 C:\Windows\System32\CNHMCA6.dll - ok
18:22:22.0076 1916 [ D61211C6242AE4D6C914CB62EE3D3473 ] C:\Windows\twain_32\MX410 series\SG_ENU.dll
18:22:22.0076 1916 C:\Windows\twain_32\MX410 series\SG_ENU.dll - ok
18:22:22.0080 1916 [ CB61626FB485A606662279CEC7806214 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\npctray.dll
18:22:22.0080 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\npctray.dll - ok
18:22:22.0084 1916 [ BA364CB84A0815C69EC4B4B993CC28A6 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\npcstats.dll
18:22:22.0084 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\npcstats.dll - ok
18:22:22.0087 1916 [ 1245D621C59DF410EA3AB35234C734A7 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ashelper.dll
18:22:22.0087 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ashelper.dll - ok
18:22:22.0091 1916 [ 8718831F001A4C4F8ADD98833C2B1211 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\proxyclt.dll
18:22:22.0091 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\proxyclt.dll - ok
18:22:22.0095 1916 [ 548DF858BC8446D6A649E87EC02EEA09 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\asoehook.dll
18:22:22.0095 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\asoehook.dll - ok
18:22:22.0099 1916 [ 6487A19E0EA3228515394A4B1A780B17 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symhtml.dll
18:22:22.0099 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\symhtml.dll - ok
18:22:22.0103 1916 [ 14D289F63D9538306CB560C4CD12172F ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IDSxpx86.dll
18:22:22.0103 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IDSxpx86.dll - ok
18:22:22.0107 1916 [ 698667E69CF976A70A82AA2F0B1C37E0 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwsetup.dll
18:22:22.0107 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwsetup.dll - ok
18:22:22.0111 1916 [ 64975EB94BE6B314694C1F550D5DA3AD ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\idsaux.dll
18:22:22.0111 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\idsaux.dll - ok
18:22:22.0114 1916 [ F586611283205EBBC010201EE9EF85D9 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwhelper.dll
18:22:22.0115 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwhelper.dll - ok
18:22:22.0118 1916 [ 3F50200237961034FACE602373838980 ] C:\Windows\SysWOW64\FirewallAPI.dll
18:22:22.0118 1916 C:\Windows\SysWOW64\FirewallAPI.dll - ok
18:22:22.0121 1916 [ 8E01332CC4B68BC6B5B7EFFE374442AA ] C:\Windows\SysWOW64\oleacc.dll
18:22:22.0121 1916 C:\Windows\SysWOW64\oleacc.dll - ok
18:22:22.0125 1916 [ B010CF886420EE29C2C276646721D255 ] C:\Windows\SysWOW64\wlanapi.dll
18:22:22.0125 1916 C:\Windows\SysWOW64\wlanapi.dll - ok
18:22:22.0129 1916 [ 1D6A771D1D702AE07919DB52C889A249 ] C:\Windows\SysWOW64\wlanutil.dll
18:22:22.0129 1916 C:\Windows\SysWOW64\wlanutil.dll - ok
18:22:22.0132 1916 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IPSFFPl.dll
18:22:22.0132 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\IPSDefs\20130406.002\IPSFFPl.dll - ok
18:22:22.0136 1916 [ D1DE1EAFDE97BE41CF6585027FF3E732 ] C:\Windows\SysWOW64\comdlg32.dll
18:22:22.0136 1916 C:\Windows\SysWOW64\comdlg32.dll - ok
18:22:22.0140 1916 [ E01B313466464F9FF0EE76D171EAB624 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\codatapr.dll
18:22:22.0140 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\codatapr.dll - ok
18:22:22.0143 1916 [ 8985D2AA1EE7BE86B24BFC89A651519A ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avpapp32.dll
18:22:22.0143 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avpapp32.dll - ok
18:22:22.0147 1916 [ 5BDC853E9DB4641700E6480213538B9F ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coshdobj.dll
18:22:22.0147 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coshdobj.dll - ok
18:22:22.0151 1916 [ 92F7F16C5BBF75D96793A86C83DF322E ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\cltaldis.dll
18:22:22.0151 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\cltaldis.dll - ok
18:22:22.0155 1916 [ 5D50BB423CCC09BCABFE9BD5551BFA08 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\IPSFFPlgn\components\IPSFFPl.dll
18:22:22.0155 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\IPSFFPlgn\components\IPSFFPl.dll - ok
18:22:22.0158 1916 [ 1048CC7458DEED300BA3D192119D0CCE ] C:\Program Files (x86)\Norton Internet Security\MUI\19.9.1.14\09\01\cltres.loc
18:22:22.0159 1916 C:\Program Files (x86)\Norton Internet Security\MUI\19.9.1.14\09\01\cltres.loc - ok
18:22:22.0163 1916 [ 6C2C715A966DCD7118533D0B0171DBD8 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll
18:22:22.0163 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll - ok
18:22:22.0166 1916 [ 7B53984BB934E599A4E3668B2F678D48 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\kavsys.kdl.7b53984bb934e599a4e3668b2f678d48
18:22:22.0166 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\kavsys.kdl.7b53984bb934e599a4e3668b2f678d48 - ok
18:22:22.0170 1916 [ 92DFF4EE3F31D4A8028788006D921D26 ] C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\uds.dll.92dff4ee3f31d4a8028788006d921d26
18:22:22.0170 1916 C:\ProgramData\Kaspersky Lab\KSS2\DataRoot\Bases\Cache\uds.dll.92dff4ee3f31d4a8028788006d921d26 - ok
18:22:22.0173 1916 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF ] C:\Windows\SysWOW64\perfos.dll
18:22:22.0173 1916 C:\Windows\SysWOW64\perfos.dll - ok
18:22:22.0177 1916 [ 7C630EB7CA59C687C5D910F4FFB0BBDC ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmrasv.dll
18:22:22.0177 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmrasv.dll - ok
18:22:22.0181 1916 [ 7717F84F483002815490033BF069DABD ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
18:22:22.0181 1916 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll - ok
18:22:22.0185 1916 [ D9F42719019740BAA6D1C6D536CBDAA6 ] C:\Windows\System32\srvsvc.dll
18:22:22.0185 1916 C:\Windows\System32\srvsvc.dll - ok
18:22:22.0188 1916 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] C:\Windows\System32\browser.dll
18:22:22.0188 1916 C:\Windows\System32\browser.dll - ok
18:22:22.0191 1916 [ 81749E073AC5857B044A686B406E5244 ] C:\Windows\System32\clusapi.dll
18:22:22.0191 1916 C:\Windows\System32\clusapi.dll - ok
18:22:22.0195 1916 [ CFEFA40DDE34659BE5211966EAD86437 ] C:\Windows\System32\netmsg.dll
18:22:22.0195 1916 C:\Windows\System32\netmsg.dll - ok
18:22:22.0198 1916 [ FF80CAD87555E8E4D2CFD7B9058343F8 ] C:\Windows\System32\sscore.dll
18:22:22.0199 1916 C:\Windows\System32\sscore.dll - ok
18:22:22.0202 1916 [ A717A35120DBAB5AB707AB40662AF9DD ] C:\Windows\System32\rasppp.dll
18:22:22.0202 1916 C:\Windows\System32\rasppp.dll - ok
18:22:22.0205 1916 [ 344FCC9850C3A8A3B4D3C65151AF8E4C ] C:\Windows\System32\resutils.dll
18:22:22.0205 1916 C:\Windows\System32\resutils.dll - ok
18:22:22.0209 1916 [ 0FE5CD5F9C9248F42D1EF56E495B182E ] C:\Windows\System32\vpnike.dll
18:22:22.0209 1916 C:\Windows\System32\vpnike.dll - ok
18:22:22.0212 1916 [ 6A84E68B538B8B04608BF2F0D426CE6F ] C:\Windows\System32\raschap.dll
18:22:22.0212 1916 C:\Windows\System32\raschap.dll - ok
18:22:22.0216 1916 [ B95F6501A2F8B2E78C697FEC401970CE ] C:\Windows\System32\ipnathlp.dll
18:22:22.0216 1916 C:\Windows\System32\ipnathlp.dll - ok
18:22:22.0219 1916 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D ] C:\Windows\System32\netshell.dll
18:22:22.0219 1916 C:\Windows\System32\netshell.dll - ok
18:22:22.0223 1916 [ C5B0324DB461559ADD070E632A6919FA ] C:\Windows\SysWOW64\wbem\wbemprox.dll
18:22:22.0223 1916 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
18:22:22.0226 1916 [ 00CDFA8461780E8A42EED36D92B1B58B ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ispwd.dll
18:22:22.0226 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ispwd.dll - ok
18:22:22.0231 1916 [ C8112AFCCB31BB054A4570D99A0E331C ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwsesal.dll
18:22:22.0231 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\fwsesal.dll - ok
18:22:22.0234 1916 [ B8367D76BBF50335BA0777179D7BB799 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccscanw.dll
18:22:22.0234 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccscanw.dll - ok
18:22:22.0238 1916 [ 7B378E6633E08BC393D0E59A0DA13678 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ecmldr32.dll
18:22:22.0238 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ecmldr32.dll - ok
18:22:22.0242 1916 [ D66D82989DCF0D0C269DC21E413E2208 ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\ECMSVR32.DLL
18:22:22.0242 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\ECMSVR32.DLL - ok
18:22:22.0246 1916 [ C30A3E5DEEEBA22E782AC54C5AF5F352 ] C:\Windows\SysWOW64\samlib.dll
18:22:22.0246 1916 C:\Windows\SysWOW64\samlib.dll - ok
18:22:22.0249 1916 [ B0A7FA04BF62AAD1BD8F52BA07BD30CB ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\nahelper.dll
18:22:22.0249 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\nahelper.dll - ok
18:22:22.0253 1916 [ 748306FCA3E4F30D8F615EDF448BD767 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\dec_abi.dll
18:22:22.0253 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\dec_abi.dll - ok
18:22:22.0257 1916 [ FC2BB2598B4004C637F56331DF13A18F ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coactmgr.dll
18:22:22.0257 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coactmgr.dll - ok
18:22:22.0261 1916 [ 198D51AB311EF8ED8882985048A93406 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\distrptr.dll
18:22:22.0261 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\distrptr.dll - ok
18:22:22.0264 1916 [ C8333F1F77A1B2E25F2202E892CAF634 ] C:\Windows\SysWOW64\prnfldr.dll
18:22:22.0264 1916 C:\Windows\SysWOW64\prnfldr.dll - ok
18:22:22.0268 1916 [ C0479DFDB520B7117EDA736ADE855698 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sdkcmn.dll
18:22:22.0268 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\sdkcmn.dll - ok
18:22:22.0271 1916 [ 51B58EE8E0966EE553A5E497201B555E ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\uialert.dll
18:22:22.0272 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\uialert.dll - ok
18:22:22.0275 1916 [ 956019F9950947A06389BAA6BE8438CA ] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\NAVEX32A.DLL
18:22:22.0275 1916 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.6.2.10\Definitions\VirusDefs\20130410.003\NAVEX32A.DLL - ok
18:22:22.0279 1916 [ 60402F4BC7E1DDE03CECA8B50E7A942E ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\userctxt.dll
18:22:22.0279 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\userctxt.dll - ok
18:22:22.0283 1916 [ 5987EA8A82C53359BCD2C29D6588583E ] C:\Windows\SysWOW64\linkinfo.dll
18:22:22.0283 1916 C:\Windows\SysWOW64\linkinfo.dll - ok
18:22:22.0286 1916 [ 704314FD398C81D5F342CAA5DF7B7F21 ] C:\Windows\SysWOW64\wbemcomn.dll
18:22:22.0286 1916 C:\Windows\SysWOW64\wbemcomn.dll - ok
18:22:22.0290 1916 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A ] C:\Windows\SysWOW64\wbem\fastprox.dll
18:22:22.0290 1916 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
18:22:22.0293 1916 [ 776AE0564F8B1C282E331FD95A1BDC5F ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
18:22:22.0293 1916 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
18:22:22.0297 1916 [ E3E811471DE781900FF21C1FD84E941E ] C:\Windows\SysWOW64\ntdsapi.dll
18:22:22.0297 1916 C:\Windows\SysWOW64\ntdsapi.dll - ok
18:22:22.0300 1916 [ 619A67C9F617B7E69315BB28ECD5E1DF ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:22:22.0300 1916 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:22:22.0302 1916 [ 6607C2182C6A53ED983813AFE2F85768 ] C:\Windows\System32\wbem\cimwin32.dll
18:22:22.0302 1916 C:\Windows\System32\wbem\cimwin32.dll - ok
18:22:22.0306 1916 [ 1484B9EBF567346582DE571B0E164AE0 ] C:\Windows\System32\framedynos.dll
18:22:22.0306 1916 C:\Windows\System32\framedynos.dll - ok
18:22:22.0309 1916 [ 012787CEB35505EB78DF82E0A0072888 ] C:\Windows\System32\browcli.dll
18:22:22.0309 1916 C:\Windows\System32\browcli.dll - ok
18:22:22.0313 1916 [ C00DB14550E4BD49737F311C644E45FF ] C:\Windows\System32\wmi.dll
18:22:22.0313 1916 C:\Windows\System32\wmi.dll - ok
18:22:22.0316 1916 [ C4BFE4B61086416B0529212F92BCE081 ] C:\Windows\System32\schedcli.dll
18:22:22.0316 1916 C:\Windows\System32\schedcli.dll - ok
18:22:22.0319 1916 [ 1FF7E4F548C7C372C804938F0D5B36AE ] C:\Windows\SysWOW64\netcfgx.dll
18:22:22.0319 1916 C:\Windows\SysWOW64\netcfgx.dll - ok
18:22:22.0323 1916 [ 162D247E995EAEBF3EF4289069E1111C ] C:\Windows\SysWOW64\devrtl.dll
18:22:22.0323 1916 C:\Windows\SysWOW64\devrtl.dll - ok
18:22:22.0326 1916 [ 4BDBBE5E4208022DD794F7EEEB0F7366 ] C:\Windows\SysWOW64\SPInf.dll
18:22:22.0326 1916 C:\Windows\SysWOW64\SPInf.dll - ok
18:22:22.0329 1916 [ C8E8B8239FCF17BEA10E751BE5854631 ] C:\Windows\System32\FXSRESM.dll
18:22:22.0329 1916 C:\Windows\System32\FXSRESM.dll - ok
18:22:22.0333 1916 [ 954EA9B34F155C844B11F4047A8F6F89 ] C:\Windows\SysWOW64\upnp.dll
18:22:22.0333 1916 C:\Windows\SysWOW64\upnp.dll - ok
18:22:22.0336 1916 [ 28E2231BD34A39C854BDF3923AB2FF86 ] C:\Windows\SysWOW64\ssdpapi.dll
18:22:22.0336 1916 C:\Windows\SysWOW64\ssdpapi.dll - ok
18:22:22.0340 1916 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] C:\Windows\System32\appinfo.dll
18:22:22.0340 1916 C:\Windows\System32\appinfo.dll - ok
18:22:22.0343 1916 [ E0B340996A41C9A75DFA3B99BBA9C500 ] C:\Windows\System32\SearchIndexer.exe
18:22:22.0343 1916 C:\Windows\System32\SearchIndexer.exe - ok
18:22:22.0347 1916 [ BF1FC3F79B863C914687A737C2F3D681 ] C:\Windows\System32\wdi.dll
18:22:22.0347 1916 C:\Windows\System32\wdi.dll - ok
18:22:22.0350 1916 [ BF4AC709BE5BF64F331F5D67773A0C82 ] C:\Windows\System32\perftrack.dll
18:22:22.0350 1916 C:\Windows\System32\perftrack.dll - ok
18:22:22.0354 1916 [ 589DF683A6C81424A6CECE52ABF98A50 ] C:\Windows\System32\tquery.dll
18:22:22.0354 1916 C:\Windows\System32\tquery.dll - ok
18:22:22.0357 1916 [ 025E7DBDB98866ED3CB2D4DDA70B364D ] C:\Windows\System32\runonce.exe
18:22:22.0357 1916 C:\Windows\System32\runonce.exe - ok
18:22:22.0361 1916 [ D44741F65A1D71F65814A12CF6E2400A ] C:\Windows\SysWOW64\runonce.exe
18:22:22.0361 1916 C:\Windows\SysWOW64\runonce.exe - ok
18:22:22.0364 1916 [ 7568CC720ACE4D03B84AF97817E745EF ] C:\Windows\System32\mssrch.dll
18:22:22.0364 1916 C:\Windows\System32\mssrch.dll - ok
18:22:22.0367 1916 [ 4449D23E8F197862F1B16F1E6C89C36C ] C:\Windows\System32\diagperf.dll
18:22:22.0367 1916 C:\Windows\System32\diagperf.dll - ok
18:22:22.0371 1916 [ BD9EB3958F213F96B97B1D897DEE006D ] C:\Windows\System32\hidserv.dll
18:22:22.0371 1916 C:\Windows\System32\hidserv.dll - ok
18:22:22.0374 1916 [ 3121A79D13A61562BE9CC902CD46B542 ] C:\Windows\System32\msidle.dll
18:22:22.0374 1916 C:\Windows\System32\msidle.dll - ok
18:22:22.0378 1916 [ F7073C962C4FB7C415565DDE109DE49F ] C:\Windows\System32\npmproxy.dll
18:22:22.0378 1916 C:\Windows\System32\npmproxy.dll - ok
18:22:22.0381 1916 [ 93221146D4EBBF314C29B23CD6CC391D ] C:\Windows\System32\wpdbusenum.dll
18:22:22.0381 1916 C:\Windows\System32\wpdbusenum.dll - ok
18:22:22.0384 1916 [ ACE1BB07E0377E37A2C514CD2EC119B1 ] C:\Windows\System32\mssprxy.dll
18:22:22.0384 1916 C:\Windows\System32\mssprxy.dll - ok
18:22:22.0388 1916 [ 1CBF15FDB0310345A68972EB5C5B948F ] C:\Windows\SysWOW64\mssprxy.dll
18:22:22.0388 1916 C:\Windows\SysWOW64\mssprxy.dll - ok
18:22:22.0391 1916 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] C:\Windows\System32\ssdpsrv.dll
18:22:22.0391 1916 C:\Windows\System32\ssdpsrv.dll - ok
18:22:22.0395 1916 [ E64D9EC8018C55873B40FDEE9DBEF5B3 ] C:\Windows\System32\PortableDeviceApi.dll
18:22:22.0395 1916 C:\Windows\System32\PortableDeviceApi.dll - ok
18:22:22.0398 1916 [ 4B78B431F225FD8624C5655CB1DE7B61 ] C:\Windows\System32\aelupsvc.dll
18:22:22.0398 1916 C:\Windows\System32\aelupsvc.dll - ok
18:22:22.0402 1916 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] C:\Windows\System32\IPSECSVC.DLL
18:22:22.0402 1916 C:\Windows\System32\IPSECSVC.DLL - ok
18:22:22.0405 1916 [ E1B22739C933BE33F53DB58C5393ADD3 ] C:\Windows\System32\Apphlpdm.dll
18:22:22.0405 1916 C:\Windows\System32\Apphlpdm.dll - ok
18:22:22.0408 1916 [ 9BC93C9ACFA34DB5A41B89357B31E4ED ] C:\Windows\System32\FwRemoteSvr.dll
18:22:22.0409 1916 C:\Windows\System32\FwRemoteSvr.dll - ok
18:22:22.0412 1916 [ 9719E3D834F5C8C43F56A93DFA497023 ] C:\Windows\System32\pnpts.dll
18:22:22.0412 1916 C:\Windows\System32\pnpts.dll - ok
18:22:22.0415 1916 [ AFA79C343F9D1555F7E5D5FA70BB2A14 ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:22:22.0415 1916 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:22:22.0419 1916 [ AB886378EEB55C6C75B4F2D14B6C869F ] C:\Windows\System32\drivers\WUDFPf.sys
18:22:22.0419 1916 C:\Windows\System32\drivers\WUDFPf.sys - ok
18:22:22.0422 1916 [ DDA4CAF29D8C0A297F886BFE561E6659 ] C:\Windows\System32\drivers\WUDFRd.sys
18:22:22.0422 1916 C:\Windows\System32\drivers\WUDFRd.sys - ok
18:22:22.0426 1916 [ 46863C4CC5B68EB09EA2D5EEF0F1193A ] C:\Windows\System32\radardt.dll
18:22:22.0426 1916 C:\Windows\System32\radardt.dll - ok
18:22:22.0429 1916 [ E811F8510B133E70CF6E509FB809824F ] C:\Windows\System32\wdiasqmmodule.dll
18:22:22.0429 1916 C:\Windows\System32\wdiasqmmodule.dll - ok
18:22:22.0433 1916 [ B1DF2D87DC8BF6072699AC8301B37796 ] C:\Windows\System32\WUDFPlatform.dll
18:22:22.0433 1916 C:\Windows\System32\WUDFPlatform.dll - ok
18:22:22.0436 1916 [ B20F051B03A966392364C83F009F7D17 ] C:\Windows\System32\WUDFSvc.dll
18:22:22.0436 1916 C:\Windows\System32\WUDFSvc.dll - ok
18:22:22.0439 1916 [ 8ABFE00F213F2571498F1B8FD7939A98 ] C:\Windows\System32\WUDFHost.exe
18:22:22.0439 1916 C:\Windows\System32\WUDFHost.exe - ok
18:22:22.0443 1916 [ 919001D2BB17DF06CA3F8AC16AD039F6 ] C:\Windows\SysWOW64\sxs.dll
18:22:22.0443 1916 C:\Windows\SysWOW64\sxs.dll - ok
18:22:22.0446 1916 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F ] C:\Windows\System32\WUDFx.dll
18:22:22.0446 1916 C:\Windows\System32\WUDFx.dll - ok
18:22:22.0450 1916 [ 91D6F0AB79AA36FFB932157865206F35 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
18:22:22.0450 1916 C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
18:22:22.0453 1916 [ 9864D52F15AD32094A636C6B5281D9E7 ] C:\Windows\System32\WMVCORE.DLL
18:22:22.0453 1916 C:\Windows\System32\WMVCORE.DLL - ok
18:22:22.0457 1916 [ AACC48FE239F0DF126DA2F28930A5B83 ] C:\Windows\System32\WMASF.DLL
18:22:22.0457 1916 C:\Windows\System32\WMASF.DLL - ok
18:22:22.0460 1916 [ 21D3A18769EC2C4E56756D04E989A221 ] C:\Windows\SysWOW64\msxml3.dll
18:22:22.0460 1916 C:\Windows\SysWOW64\msxml3.dll - ok
18:22:22.0464 1916 [ 389CA818132C1D7DCF0C791E8D9035DE ] C:\Windows\System32\PortableDeviceClassExtension.dll
18:22:22.0464 1916 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
18:22:22.0467 1916 [ 4F3CD1C59EA71401E155C432BCECE180 ] C:\Windows\System32\PortableDeviceTypes.dll
18:22:22.0467 1916 C:\Windows\System32\PortableDeviceTypes.dll - ok
18:22:22.0471 1916 [ FF9918AF76D2F4D68910F28D5FD4713B ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\10.1.8116.1.nmcorePS.dll
18:22:22.0471 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\10.1.8116.1.nmcorePS.dll - ok
18:22:22.0475 1916 [ 7D4DC95A1F5E0818E74A399960569EA1 ] C:\Windows\SysWOW64\wuapi.dll
18:22:22.0475 1916 C:\Windows\SysWOW64\wuapi.dll - ok
18:22:22.0478 1916 [ 7A6986DD659B96398A11AF5173892715 ] C:\Windows\SysWOW64\cabinet.dll
18:22:22.0478 1916 C:\Windows\SysWOW64\cabinet.dll - ok
18:22:22.0482 1916 [ FB633DCC8664E4CCACF562DB5BAE38CF ] C:\Windows\SysWOW64\wups.dll
18:22:22.0482 1916 C:\Windows\SysWOW64\wups.dll - ok
18:22:22.0485 1916 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] C:\Windows\System32\wuaueng.dll
18:22:22.0485 1916 C:\Windows\System32\wuaueng.dll - ok
18:22:22.0489 1916 [ C9FB9038B15036CA28CF0B4BE2BED9BD ] C:\Windows\System32\en-US\tquery.dll.mui
18:22:22.0489 1916 C:\Windows\System32\en-US\tquery.dll.mui - ok
18:22:22.0492 1916 [ AD7B9C14083B52BC532FBA5948342B98 ] C:\Windows\SysWOW64\cmd.exe
18:22:22.0492 1916 C:\Windows\SysWOW64\cmd.exe - ok
18:22:22.0496 1916 [ 91658099D83CE02D1C317C589FB67105 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\UPnPGW.dll
18:22:22.0496 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\UPnPGW.dll - ok
18:22:22.0500 1916 [ FA43D418BC945D27D0625B697B8442B5 ] C:\Windows\System32\cabinet.dll
18:22:22.0500 1916 C:\Windows\System32\cabinet.dll - ok
18:22:22.0503 1916 [ 617F6EC0AC677C685479C1D0D1E76C6F ] C:\Windows\System32\mspatcha.dll
18:22:22.0503 1916 C:\Windows\System32\mspatcha.dll - ok
18:22:22.0507 1916 [ E746ED90132C6B6313CE9179F56BD31D ] C:\Windows\System32\wups.dll
18:22:22.0507 1916 C:\Windows\System32\wups.dll - ok
18:22:22.0510 1916 [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A ] C:\Windows\System32\wups2.dll
18:22:22.0510 1916 C:\Windows\System32\wups2.dll - ok
18:22:22.0514 1916 [ 326C7F76A29897A892AA7726E91C1C67 ] C:\Windows\SysWOW64\winbrand.dll
18:22:22.0514 1916 C:\Windows\SysWOW64\winbrand.dll - ok
18:22:22.0517 1916 [ E629F1A051C82795DDFFD3E8D4855811 ] C:\Windows\System32\dimsjob.dll
18:22:22.0517 1916 C:\Windows\System32\dimsjob.dll - ok
18:22:22.0521 1916 [ 35CB97CBC3EDC463418ED4997AAB29B6 ] C:\Windows\System32\pautoenr.dll
18:22:22.0521 1916 C:\Windows\System32\pautoenr.dll - ok
18:22:22.0524 1916 [ 0D893F8D145D3B125B0226727C243A69 ] C:\Windows\System32\security.dll
18:22:22.0524 1916 C:\Windows\System32\security.dll - ok
18:22:22.0527 1916 [ B6D6886149573278CBA6ABD44C4317F5 ] C:\Windows\System32\slwga.dll
18:22:22.0527 1916 C:\Windows\System32\slwga.dll - ok
18:22:22.0531 1916 [ 5EA9A0950F322BFA382AF277801C0307 ] C:\Windows\System32\wbem\wmipcima.dll
18:22:22.0531 1916 C:\Windows\System32\wbem\wmipcima.dll - ok
18:22:22.0534 1916 [ DB76DB15EFC6E4D1153A6C5BC895948D ] C:\Windows\System32\sppc.dll
18:22:22.0534 1916 C:\Windows\System32\sppc.dll - ok
18:22:22.0538 1916 [ 220159496484D34009DE71CA1A68E0D4 ] C:\Windows\System32\wbem\NCProv.dll
18:22:22.0538 1916 C:\Windows\System32\wbem\NCProv.dll - ok
18:22:22.0541 1916 [ 371F3248198FC6732D14F110495F25F6 ] C:\Windows\SysWOW64\Firewall.cpl
18:22:22.0541 1916 C:\Windows\SysWOW64\Firewall.cpl - ok
18:22:22.0545 1916 [ 3B395EE8062F50B2196BAF80719C6552 ] C:\Users\Shilstone\Desktop\Malwarebytes\mbar\mbar.exe
18:22:22.0545 1916 C:\Users\Shilstone\Desktop\Malwarebytes\mbar\mbar.exe - ok
18:22:22.0549 1916 [ D9E21CBF9E6A87847AFFD39EA3FA28EE ] C:\Windows\System32\SearchProtocolHost.exe
18:22:22.0549 1916 C:\Windows\System32\SearchProtocolHost.exe - ok
18:22:22.0551 1916 [ D2A5B2B09F2AF5ED13BF494508B09788 ] C:\Windows\System32\msshooks.dll
18:22:22.0551 1916 C:\Windows\System32\msshooks.dll - ok
18:22:22.0554 1916 [ 94DFBB481BF51158B216E23C5C1C9D6E ] C:\Windows\System32\certcli.dll
18:22:22.0554 1916 C:\Windows\System32\certcli.dll - ok
18:22:22.0558 1916 [ 49A3AD5CE578CD77F445F3D244AEAB2D ] C:\Windows\System32\SearchFilterHost.exe
18:22:22.0558 1916 C:\Windows\System32\SearchFilterHost.exe - ok
18:22:22.0561 1916 [ A08C010D859F8EB42BDD7E1D55B8CA27 ] C:\Windows\System32\mscoree.dll
18:22:22.0561 1916 C:\Windows\System32\mscoree.dll - ok
18:22:22.0565 1916 [ AA794B099F776B37ACCDEAD00E0FBFC9 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
18:22:22.0565 1916 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
18:22:22.0568 1916 [ 48041BAEB60CE5F34F13CC2A1361E49C ] C:\Windows\System32\mssph.dll
18:22:22.0568 1916 C:\Windows\System32\mssph.dll - ok
18:22:22.0571 1916 [ 8F4BB0CFECED925D440ABC2481278360 ] C:\Windows\System32\mapi32.dll
18:22:22.0572 1916 C:\Windows\System32\mapi32.dll - ok
18:22:22.0575 1916 [ 37FC675B0DB0E7467BD6F3CD4A0B9AD9 ] C:\Users\Shilstone\Desktop\Malwarebytes\mbar\QtGui4.dll
18:22:22.0575 1916 C:\Users\Shilstone\Desktop\Malwarebytes\mbar\QtGui4.dll - ok
18:22:22.0579 1916 [ BDAC1AA64495D0F7E1FF810EBBF1F018 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
18:22:22.0579 1916 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
18:22:22.0582 1916 [ D7B309347EE936BEE7FB3F66D16C0C03 ] C:\Users\Shilstone\Desktop\Malwarebytes\mbar\QtCore4.dll
18:22:22.0582 1916 C:\Users\Shilstone\Desktop\Malwarebytes\mbar\QtCore4.dll - ok
18:22:22.0586 1916 [ BCB7543678EF8C713E284123B6AA522F ] C:\Users\Shilstone\Desktop\Malwarebytes\mbar\msvcp100.dll
18:22:22.0586 1916 C:\Users\Shilstone\Desktop\Malwarebytes\mbar\msvcp100.dll - ok
18:22:22.0590 1916 [ 266509807E7FEB5273C3E3E977C91533 ] C:\Users\Shilstone\Desktop\Malwarebytes\mbar\msvcr100.dll
18:22:22.0590 1916 C:\Users\Shilstone\Desktop\Malwarebytes\mbar\msvcr100.dll - ok
18:22:22.0593 1916 [ 02120D84831EF289D8AAB08B19AD31D0 ] C:\Users\Shilstone\Desktop\Malwarebytes\mbar\mbamcore.dll
18:22:22.0593 1916 C:\Users\Shilstone\Desktop\Malwarebytes\mbar\mbamcore.dll - ok
18:22:22.0597 1916 [ BE247AE996A9FDE007A27B51413A6C79 ] C:\Windows\SysWOW64\shdocvw.dll
18:22:22.0597 1916 C:\Windows\SysWOW64\shdocvw.dll - ok
18:22:22.0601 1916 [ 178A34E5554DCE485E1262DDF027960C ] C:\Users\Shilstone\AppData\Local\Temp\49BE8D07-B67D-4969-B220-7D028D3D9DFF.exe
18:22:22.0601 1916 C:\Users\Shilstone\AppData\Local\Temp\49BE8D07-B67D-4969-B220-7D028D3D9DFF.exe - ok
18:22:22.0604 1916 [ CA79539D3D4C0BA66F0F051A5EE5E923 ] C:\Windows\SysWOW64\cryptnet.dll
18:22:22.0604 1916 C:\Windows\SysWOW64\cryptnet.dll - ok
18:22:22.0607 1916 [ 263B26106606A010CF877472B535E4BB ] C:\Windows\System32\CertEnroll.dll
18:22:22.0607 1916 C:\Windows\System32\CertEnroll.dll - ok
18:22:22.0611 1916 [ 3BCECD87AB4E6743BFB45B352AD1A529 ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:22:22.0611 1916 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:22:22.0614 1916 [ A28A91EECD09AF257CBFE00624EEDFB5 ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
18:22:22.0614 1916 C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll - ok
18:22:22.0618 1916 [ 846D0E4DB261CFAF363902E41498E961 ] C:\Windows\SysWOW64\EhStorShell.dll
18:22:22.0618 1916 C:\Windows\SysWOW64\EhStorShell.dll - ok
18:22:22.0621 1916 [ 827CB0D6C3F8057EA037FF271F8E9795 ] C:\Windows\SysWOW64\imageres.dll
18:22:22.0621 1916 C:\Windows\SysWOW64\imageres.dll - ok
18:22:22.0625 1916 [ FB10715E4099AF9FA389C71873245226 ] C:\Windows\System32\timedate.cpl
18:22:22.0625 1916 C:\Windows\System32\timedate.cpl - ok
18:22:22.0628 1916 [ E6F0F82788E8BD0F7A616350EFA0761C ] C:\Windows\System32\actxprxy.dll
18:22:22.0628 1916 C:\Windows\System32\actxprxy.dll - ok
18:22:22.0632 1916 [ C4F40F6CACD796A8E16671D0E9A2F319 ] C:\Windows\System32\shdocvw.dll
18:22:22.0632 1916 C:\Windows\System32\shdocvw.dll - ok
18:22:22.0635 1916 [ 69754747274B76E7FAF287239333D7E6 ] C:\Windows\System32\msiltcfg.dll
18:22:22.0635 1916 C:\Windows\System32\msiltcfg.dll - ok
18:22:22.0639 1916 [ A0A65D306A5490D2EB8E7DE66898ECFD ] C:\Windows\System32\linkinfo.dll
18:22:22.0639 1916 C:\Windows\System32\linkinfo.dll - ok
18:22:22.0642 1916 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86 ] C:\Windows\System32\msftedit.dll
18:22:22.0642 1916 C:\Windows\System32\msftedit.dll - ok
18:22:22.0646 1916 [ E6DD15E668DAF0A02470CF551B0A0105 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
18:22:22.0646 1916 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
18:22:22.0649 1916 [ 7DBA84667DC18877AEF693E3543DFAD7 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
18:22:22.0649 1916 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
18:22:22.0653 1916 [ 112183DF91C9BAECB498E4A86ECDE598 ] C:\Windows\System32\msls31.dll
18:22:22.0653 1916 C:\Windows\System32\msls31.dll - ok
18:22:22.0656 1916 [ 4C2C4640BF23AAFCF90519E0F34436CE ] C:\Windows\System32\DeviceCenter.dll
18:22:22.0656 1916 C:\Windows\System32\DeviceCenter.dll - ok
18:22:22.0659 1916 [ 2BCBA6052374959A30BD7948444DBB79 ] C:\Windows\System32\gameux.dll
18:22:22.0659 1916 C:\Windows\System32\gameux.dll - ok
18:22:22.0663 1916 [ 554A50B5310E702029D3A675459108FF ] C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
18:22:22.0663 1916 C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe - ok
18:22:22.0667 1916 [ 68D45D36DD827738A2F2E8E21E53C193 ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
18:22:22.0667 1916 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
18:22:22.0670 1916 [ D744D5B8145C2303B19A288AF695E9AD ] C:\Windows\System32\ieframe.dll
18:22:22.0670 1916 C:\Windows\System32\ieframe.dll - ok
18:22:22.0674 1916 [ C389DCD78E4BD8294097517A70CCE0E6 ] C:\Program Files\Canon\MyPrinter\CNMPU.DLL
18:22:22.0674 1916 C:\Program Files\Canon\MyPrinter\CNMPU.DLL - ok
18:22:22.0677 1916 [ 4AF2942743C865FE1708998ED8CED178 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
18:22:22.0677 1916 C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
18:22:22.0681 1916 [ FB4045578F5180BDB1963AB352B78548 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
18:22:22.0681 1916 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
18:22:22.0685 1916 [ 9108540E866F75C7AF2B91DD921A8091 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
18:22:22.0685 1916 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
18:22:22.0688 1916 [ AAB979089E192ACC0FE1E3C018F8B591 ] C:\Users\Shilstone\AppData\Local\Akamai\netsession_win.exe
18:22:22.0688 1916 C:\Users\Shilstone\AppData\Local\Akamai\netsession_win.exe - ok
18:22:22.0692 1916 [ 5D61BE7DB55B026A5D61A3EED09D0EAD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
18:22:22.0692 1916 C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
18:22:22.0696 1916 [ 5516C26A6AF8EB4E2CAB48EC98A74398 ] C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
18:22:22.0696 1916 C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe - ok
18:22:22.0699 1916 [ D3E69D500466C17498AAF7F83D12FFF0 ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
18:22:22.0700 1916 C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe - ok
18:22:22.0703 1916 [ BD713579A87D698E1F2158CE10E48130 ] C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe
18:22:22.0703 1916 C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe - ok
18:22:22.0707 1916 [ 76E7410B3A308F6960D3CE06DC7874AD ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll
18:22:22.0707 1916 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\gtn.dll - ok
18:22:22.0711 1916 [ 180BDB1F17FE41C8D8AEFE069A70CA2B ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\Linksys EasyLink Advisor.exe
18:22:22.0711 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\Linksys EasyLink Advisor.exe - ok
18:22:22.0715 1916 [ 917A728A12F25FCF4636858FAC9979FA ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
18:22:22.0715 1916 C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll - ok
18:22:22.0718 1916 [ 5E118E606E2AF56419A699210DFCF450 ] C:\Users\Shilstone\AppData\Roaming\Dropbox\bin\Dropbox.exe
18:22:22.0718 1916 C:\Users\Shilstone\AppData\Roaming\Dropbox\bin\Dropbox.exe - ok
18:22:22.0722 1916 [ E6A51806370DC61767CAE6DCD5F082A6 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe
18:22:22.0722 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe - ok
18:22:22.0725 1916 [ 405F4D32D2185F1F1BD753D8EEAFFB3A ] C:\Windows\System32\networkexplorer.dll
18:22:22.0725 1916 C:\Windows\System32\networkexplorer.dll - ok
18:22:22.0729 1916 [ D83947A58613E9091B4C9CC0F1546A8D ] C:\Windows\SysWOW64\mscoree.dll
18:22:22.0729 1916 C:\Windows\SysWOW64\mscoree.dll - ok
18:22:22.0732 1916 [ FCE23E27F62989AD0BB88E256E847A41 ] C:\Windows\System32\CertPolEng.dll
18:22:22.0732 1916 C:\Windows\System32\CertPolEng.dll - ok
18:22:22.0736 1916 [ F5DF6846F30E9F54EA60CCAEB3FB2055 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
18:22:22.0736 1916 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
18:22:22.0740 1916 [ E4F6125ED5185F8FA37CC4F449B85526 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
18:22:22.0740 1916 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
18:22:22.0743 1916 [ C3761661C17C2248A9379A8FB89E3DE1 ] C:\Windows\System32\stobject.dll
18:22:22.0743 1916 C:\Windows\System32\stobject.dll - ok
18:22:22.0747 1916 [ F832EEEA97CDDA1AF577E721F652A0D1 ] C:\Windows\System32\batmeter.dll
18:22:22.0747 1916 C:\Windows\System32\batmeter.dll - ok
18:22:22.0750 1916 [ 083F6B59E8317FA6BD0983DC051328C3 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxthl.dll
18:22:22.0750 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxthl.dll - ok
18:22:22.0754 1916 [ 857ECCF9BA20609AE28B39214015E8AD ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxt.dll
18:22:22.0754 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxt.dll - ok
18:22:22.0758 1916 [ 8B92BED5B8D4A8480E7AA631F35A6F35 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
18:22:22.0758 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
18:22:22.0762 1916 [ BAE2F93DCBDC47C290A5F1A18EF9BCE8 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp3.dll
18:22:22.0762 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\puresp3.dll - ok
18:22:22.0765 1916 [ 24F4B480F335A6C724AF352253C5D98B ] C:\Windows\System32\thumbcache.dll
18:22:22.0765 1916 C:\Windows\System32\thumbcache.dll - ok
18:22:22.0769 1916 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122 ] C:\Windows\System32\prnfldr.dll
18:22:22.0769 1916 C:\Windows\System32\prnfldr.dll - ok
18:22:22.0772 1916 [ EE263A62F955D87BAEE9D609E22D5543 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\10.1.8116.1.nmctxtPS.dll
18:22:22.0772 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\10.1.8116.1.nmctxtPS.dll - ok
18:22:22.0776 1916 [ 2327A96F10DF4A5BDD09AFAEBFCD74E0 ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\AVManagerUnified.dll
18:22:22.0776 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\AVManagerUnified.dll - ok
18:22:22.0780 1916 [ 42A9CB6906D9A8BEDC83B57163E62924 ] C:\Windows\System32\DXP.dll
18:22:22.0780 1916 C:\Windows\System32\DXP.dll - ok
18:22:22.0783 1916 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891 ] C:\Windows\System32\Syncreg.dll
18:22:22.0783 1916 C:\Windows\System32\Syncreg.dll - ok
18:22:22.0787 1916 [ C836175870E00ACC546066632E15BD10 ] C:\Windows\ehome\ehSSO.dll
18:22:22.0787 1916 C:\Windows\ehome\ehSSO.dll - ok
18:22:22.0790 1916 [ 5EB18497CEA961BB3C954C02F961022F ] C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\FWManager.dll
18:22:22.0790 1916 C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\FWManager.dll - ok
18:22:22.0794 1916 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB ] C:\Windows\System32\AltTab.dll
18:22:22.0794 1916 C:\Windows\System32\AltTab.dll - ok
18:22:22.0798 1916 [ C8FDF0FA9E97E2FAAF3F814716AAA881 ] C:\Windows\System32\WPDShServiceObj.dll
18:22:22.0798 1916 C:\Windows\System32\WPDShServiceObj.dll - ok
18:22:22.0801 1916 [ 784A50A6A09C25F011C3143DDD68E729 ] C:\Windows\SysWOW64\netsh.exe
18:22:22.0801 1916 C:\Windows\SysWOW64\netsh.exe - ok
18:22:22.0803 1916 [ 10F815BE90A66AAFC6C713D1BD626064 ] C:\Windows\System32\pnidui.dll
18:22:22.0803 1916 C:\Windows\System32\pnidui.dll - ok
18:22:22.0807 1916 [ E30C5F23B28D8BFD02E0E6AE79AC83A4 ] C:\Windows\SysWOW64\fwcfg.dll
18:22:22.0807 1916 C:\Windows\SysWOW64\fwcfg.dll - ok
18:22:22.0810 1916 [ 108C2CFA5527458C096A699929ECBD80 ] C:\Windows\SysWOW64\credui.dll
18:22:22.0810 1916 C:\Windows\SysWOW64\credui.dll - ok
18:22:22.0814 1916 [ 05FA8ADC5E47FF262020857BF503FB2E ] C:\Program Files\Windows Defender\MSASCui.exe
18:22:22.0814 1916 C:\Program Files\Windows Defender\MSASCui.exe - ok
18:22:22.0817 1916 [ B9F0A4020AA98B7A20287BF7FE99A1FD ] C:\Windows\System32\QUTIL.DLL
18:22:22.0817 1916 C:\Windows\System32\QUTIL.DLL - ok
18:22:22.0820 1916 [ 92DBF0A4C9239169010FC6E07859C82E ] C:\Windows\System32\ActionCenter.dll
18:22:22.0820 1916 C:\Windows\System32\ActionCenter.dll - ok
18:22:22.0824 1916 [ 7C6D2ACD8A48A7BA8C70BA68F6740732 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpgui.ppl
18:22:22.0824 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\avpgui.ppl - ok
18:22:22.0828 1916 [ 8569E35D00F45972E506502EEE622BA4 ] C:\Windows\System32\srchadmin.dll
18:22:22.0828 1916 C:\Windows\System32\srchadmin.dll - ok
18:22:22.0831 1916 [ F7A256EC899C72B4ECDD2C02CB592EFD ] C:\Windows\System32\bthprops.cpl
18:22:22.0831 1916 C:\Windows\System32\bthprops.cpl - ok
18:22:22.0835 1916 [ 1392B2F8B434936F3348DA97A130BE71 ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
18:22:22.0835 1916 C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe - ok
18:22:22.0839 1916 [ BC0D4AFBE94D8E1F81C8926D805C3366 ] C:\Windows\System32\webcheck.dll
18:22:22.0839 1916 C:\Windows\System32\webcheck.dll - ok
18:22:22.0842 1916 [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
18:22:22.0842 1916 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
18:22:22.0846 1916 [ C3E39FB1398EEE8E612C2FE53A9192EF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll
18:22:22.0846 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll - ok
18:22:22.0850 1916 [ B96F045D571747F8700CB43E8C458FF0 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe
18:22:22.0850 1916 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AcroRd32.exe - ok
18:22:22.0854 1916 [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
18:22:22.0854 1916 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
18:22:22.0858 1916 [ 15E298B5EC5B89C5994A59863969D9FF ] C:\Windows\SysWOW64\npmproxy.dll
18:22:22.0858 1916 C:\Windows\SysWOW64\npmproxy.dll - ok
18:22:22.0861 1916 [ 18AB2E5A40064ED5F7791AC5946A90F3 ] C:\Windows\SysWOW64\msimg32.dll
18:22:22.0861 1916 C:\Windows\SysWOW64\msimg32.dll - ok
18:22:22.0865 1916 [ 8EE6BDE1D572677AA35707C52C585F75 ] C:\Windows\SysWOW64\mlang.dll
18:22:22.0865 1916 C:\Windows\SysWOW64\mlang.dll - ok
18:22:22.0868 1916 [ 1D1EAA16D193C6A2D45981ED3914D22A ] C:\Windows\SysWOW64\msimtf.dll
18:22:22.0868 1916 C:\Windows\SysWOW64\msimtf.dll - ok
18:22:22.0872 1916 [ DB29633B71298F68EEB4B232F3829086 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
18:22:22.0872 1916 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
18:22:22.0875 1916 [ 6521891B67EAD77CAFD877D8A24ED769 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
18:22:22.0875 1916 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE - ok
18:22:22.0879 1916 [ D3570ACC178180AC0D7C24645461A9D3 ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
18:22:22.0879 1916 C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe - ok
18:22:22.0883 1916 [ E7088444721498C937DFD5CB3CEFF2B6 ] C:\Windows\SysWOW64\atiadlxy.dll
18:22:22.0883 1916 C:\Windows\SysWOW64\atiadlxy.dll - ok
18:22:22.0887 1916 [ 46DA8E7484AC7A52CE1D6E428398724B ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
18:22:22.0887 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
18:22:22.0890 1916 [ 7BE48C578124BBF4C1FAAFB4E718A4CC ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
18:22:22.0890 1916 C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
18:22:22.0894 1916 [ E8C99911CAC7668FC70C19BB7DE5CD8F ] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ENU.dll
18:22:22.0894 1916 C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_ENU.dll - ok
18:22:22.0898 1916 [ BC5E4F284065D426A0BF7FAD3CA32450 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
18:22:22.0898 1916 C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
18:22:22.0901 1916 [ 3F533D75631178A880AEFFDF117213BE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
18:22:22.0901 1916 C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
18:22:22.0905 1916 [ 17DB2616F860BF58FA1ED086EB356B84 ] C:\Windows\SysWOW64\CNMNPPM.DLL
18:22:22.0905 1916 C:\Windows\SysWOW64\CNMNPPM.DLL - ok
18:22:22.0909 1916 [ 6B7F83060A9A8B96380174F779472104 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
18:22:22.0909 1916 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
18:22:22.0913 1916 [ 56DD8322E112B35E7986137EB64EA039 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
18:22:22.0913 1916 C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
18:22:22.0916 1916 [ 8494E126F0B10180F3293AF861CE1F7A ] C:\Windows\System32\mlang.dll
18:22:22.0916 1916 C:\Windows\System32\mlang.dll - ok
18:22:22.0920 1916 [ C746F3BF98E92FB137B5BD2B8B5925BD ] C:\Windows\System32\FXSST.dll
18:22:22.0920 1916 C:\Windows\System32\FXSST.dll - ok
18:22:22.0923 1916 [ 650CAEA856943E29F25A25D31E004B18 ] C:\Windows\System32\FXSAPI.dll
18:22:22.0923 1916 C:\Windows\System32\FXSAPI.dll - ok
18:22:22.0926 1916 [ 91207A331F160E7D0C0AAB2AC94FE40D ] C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe
18:22:22.0926 1916 C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe - ok
18:22:22.0931 1916 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
18:22:22.0931 1916 C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
18:22:22.0934 1916 [ AE41A16603E2ED2DC4B8A2DF6E106D79 ] C:\ProgramData\Carbonite\Carbonite Backup\CarbonitePossibleUpgrade.exe
18:22:22.0934 1916 C:\ProgramData\Carbonite\Carbonite Backup\CarbonitePossibleUpgrade.exe - ok
18:22:22.0938 1916 [ 3ADD0FE7104713CF41D0FD75ACA8157C ] C:\Windows\SysWOW64\OpenCL.dll
18:22:22.0938 1916 C:\Windows\SysWOW64\OpenCL.dll - ok
18:22:22.0941 1916 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
18:22:22.0941 1916 C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
18:22:22.0945 1916 [ 823DC6C38A6BA9668F5D8B01413FD5F5 ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL
18:22:22.0945 1916 C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMLNG.DLL - ok
18:22:22.0949 1916 [ 163A95975E1D8819E653AA3E961371CA ] C:\Windows\twain_32.dll
18:22:22.0949 1916 C:\Windows\twain_32.dll - ok
18:22:22.0952 1916 [ 101797BA603D227946B4B5109867EB19 ] C:\Windows\System32\SyncCenter.dll
18:22:22.0952 1916 C:\Windows\System32\SyncCenter.dll - ok
18:22:22.0956 1916 [ C6106E98EC11ACBB728A6C47556C1263 ] C:\Windows\twain_32\MX410 series\CISDS.DS
18:22:22.0956 1916 C:\Windows\twain_32\MX410 series\CISDS.DS - ok
18:22:22.0959 1916 [ C6106E98EC11ACBB728A6C47556C1263 ] C:\Windows\twain_32\MX410 series\CISDS_Network.DS
18:22:22.0959 1916 C:\Windows\twain_32\MX410 series\CISDS_Network.DS - ok
18:22:22.0963 1916 [ 80279007CAB3549A5999348BD0C23732 ] C:\Windows\SysWOW64\wiadss.dll
18:22:22.0963 1916 C:\Windows\SysWOW64\wiadss.dll - ok
18:22:22.0966 1916 [ 0503D60AFCED7CB601C7CA70C08E8CAC ] C:\Windows\twain_32\wiatwain.ds
18:22:22.0966 1916 C:\Windows\twain_32\wiatwain.ds - ok
18:22:22.0970 1916 [ 37CF3324F46CEB3A4F2686C617CBB35C ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
18:22:22.0970 1916 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
18:22:22.0974 1916 [ 87890E0F3254AE7654A5FE1B5C7DABB8 ] C:\Windows\SysWOW64\amdocl.dll
18:22:22.0974 1916 C:\Windows\SysWOW64\amdocl.dll - ok
18:22:22.0977 1916 [ 2E483EC51216B52C711C7EC642798BB7 ] C:\Windows\System32\sti.dll
18:22:22.0977 1916 C:\Windows\System32\sti.dll - ok
18:22:22.0981 1916 [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2 ] C:\Windows\SysWOW64\sti.dll
18:22:22.0981 1916 C:\Windows\SysWOW64\sti.dll - ok
18:22:22.0984 1916 [ B087F2B901570F6EF62F6C2E01A480F3 ] C:\Windows\SysWOW64\wiatrace.dll
18:22:22.0984 1916 C:\Windows\SysWOW64\wiatrace.dll - ok
18:22:22.0988 1916 [ F8E2BDEED312CB62D5C7F135A2A26A91 ] C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL
18:22:22.0988 1916 C:\Program Files (x86)\Canon\Solution Menu EX\LangInfo\EN\CNSELANG.DLL - ok
18:22:22.0991 1916 [ EAADD6E47ED2A7003ACE1793B98CF63F ] C:\Windows\SysWOW64\msxml6.dll
18:22:22.0991 1916 C:\Windows\SysWOW64\msxml6.dll - ok
18:22:22.0995 1916 [ 83317A2B2708824B2978DAC3137D2627 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtcore4.dll
18:22:22.0995 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtcore4.dll - ok
18:22:22.0999 1916 [ D2155709E336C3BC15729EB87FEC6064 ] C:\Windows\System32\rasdlg.dll
18:22:22.0999 1916 C:\Windows\System32\rasdlg.dll - ok
18:22:23.0002 1916 [ 8130391F82D52D36C0441F714136957F ] C:\Windows\System32\imapi2.dll
18:22:23.0002 1916 C:\Windows\System32\imapi2.dll - ok
18:22:23.0006 1916 [ 6D137963730144698CBD10F202E9F251 ] C:\Windows\System32\wersvc.dll
18:22:23.0006 1916 C:\Windows\System32\wersvc.dll - ok
18:22:23.0009 1916 [ 44886233135241F3990724082EB104EE ] C:\Program Files\iPod\bin\iPodService.exe
18:22:23.0009 1916 C:\Program Files\iPod\bin\iPodService.exe - ok
18:22:23.0013 1916 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] C:\Windows\System32\FXSSVC.exe
18:22:23.0013 1916 C:\Windows\System32\FXSSVC.exe - ok
18:22:23.0016 1916 [ 06A7B794EDEFBA8AC17DC89DAEB21944 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
18:22:23.0016 1916 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
18:22:23.0020 1916 [ BFEF1EC8A8C826AA722A17642C5C647E ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
18:22:23.0020 1916 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
18:22:23.0024 1916 [ 6A5C1A8AC0B572679361026D0E900420 ] C:\Windows\System32\hgcpl.dll
18:22:23.0024 1916 C:\Windows\System32\hgcpl.dll - ok
18:22:23.0027 1916 [ 3518CB4E2D896CAB53D5386F15AC0566 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll
18:22:23.0027 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll - ok
18:22:23.0031 1916 [ 0438CAB2E03F4FB61455A7956026FE86 ] C:\Windows\System32\fdPHost.dll
18:22:23.0031 1916 C:\Windows\System32\fdPHost.dll - ok
18:22:23.0034 1916 [ 04CB7C8FDC6D9640DD82A527208F72C4 ] C:\Windows\System32\UIAnimation.dll
18:22:23.0034 1916 C:\Windows\System32\UIAnimation.dll - ok
18:22:23.0038 1916 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2 ] C:\Windows\System32\dot3api.dll
18:22:23.0038 1916 C:\Windows\System32\dot3api.dll - ok
18:22:23.0041 1916 [ E4FCA0F99A41E460C84016DEFD31E6EF ] C:\Windows\System32\wlanhlp.dll
18:22:23.0041 1916 C:\Windows\System32\wlanhlp.dll - ok
18:22:23.0045 1916 [ 171D7DB433314A868507C4326E8209DC ] C:\Windows\System32\fdWSD.dll
18:22:23.0045 1916 C:\Windows\System32\fdWSD.dll - ok
18:22:23.0048 1916 [ A2E5B2D20954210DCE1A75A1FC8CC36D ] C:\Windows\System32\fdSSDP.dll
18:22:23.0048 1916 C:\Windows\System32\fdSSDP.dll - ok
18:22:23.0052 1916 [ 6699A112A3BDC9B52338512894EBA9D6 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
18:22:23.0052 1916 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
18:22:23.0054 1916 [ DA6C4B5FEEEA4DC7162B5D0C055EB967 ] C:\Windows\System32\imaadp32.acm
18:22:23.0054 1916 C:\Windows\System32\imaadp32.acm - ok
18:22:23.0057 1916 [ 2A436796758BF2555A26C770FE8A6FEE ] C:\Windows\System32\fdProxy.dll
18:22:23.0057 1916 C:\Windows\System32\fdProxy.dll - ok
18:22:23.0061 1916 [ 1C81E1BEA4847F406BBDB74D19721CE6 ] C:\Windows\System32\msg711.acm
18:22:23.0061 1916 C:\Windows\System32\msg711.acm - ok
18:22:23.0064 1916 [ E5B9A2FA94D21C44DA2B898DC326B0C2 ] C:\Windows\System32\msgsm32.acm
18:22:23.0064 1916 C:\Windows\System32\msgsm32.acm - ok
18:22:23.0068 1916 [ C7494C67A6BF6FE914808E42F8265FEF ] C:\Program Files\Windows Media Player\wmpnssci.dll
18:22:23.0068 1916 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
18:22:23.0071 1916 [ 5046E55184021406C27E8D48A1B2C9D2 ] C:\Windows\System32\l3codeca.acm
18:22:23.0071 1916 C:\Windows\System32\l3codeca.acm - ok
18:22:23.0075 1916 [ 329FEB3452982A377726DEDAFE9BBDF0 ] C:\Windows\System32\msadp32.acm
18:22:23.0075 1916 C:\Windows\System32\msadp32.acm - ok
18:22:23.0079 1916 [ EFDFB3DD38A4376F93E7985173813ABD ] C:\Windows\System32\ListSvc.dll
18:22:23.0079 1916 C:\Windows\System32\ListSvc.dll - ok
18:22:23.0082 1916 [ 5DA219F57A9076FB6FBD3C9C3713A672 ] C:\Windows\System32\WWanAPI.dll
18:22:23.0082 1916 C:\Windows\System32\WWanAPI.dll - ok
18:22:23.0085 1916 [ B6411CED931AFD059E48C52DBFBA95B4 ] C:\Windows\System32\P2P.dll
18:22:23.0085 1916 C:\Windows\System32\P2P.dll - ok
18:22:23.0089 1916 [ 649ED39CA880B4CC5602D80931FF8817 ] C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll
18:22:23.0089 1916 C:\Program Files (x86)\Windows Live\Messenger\msgsres.dll - ok
18:22:23.0092 1916 [ 92E0508D924512F63FFEEFE498CBD11F ] C:\Windows\System32\p2pcollab.dll
18:22:23.0092 1916 C:\Windows\System32\p2pcollab.dll - ok
18:22:23.0096 1916 [ 62C7AACC746C9723468A8F2169ED3E85 ] C:\Windows\System32\wwapi.dll
18:22:23.0096 1916 C:\Windows\System32\wwapi.dll - ok
18:22:23.0100 1916 [ D0278156167EC2D8B4206CEFB0FF9FF5 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZSMEX.DLL
18:22:23.0100 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZSMEX.DLL - ok
18:22:23.0103 1916 [ A9F3BFC9345F49614D5859EC95B9E994 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
18:22:23.0103 1916 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
18:22:23.0107 1916 [ D202F8A7BF7391A099F99B4BC9057F93 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMME.DLL
18:22:23.0107 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMME.DLL - ok
18:22:23.0111 1916 [ F063B868865F684B24F65312749C1B47 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDM.DLL
18:22:23.0111 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDM.DLL - ok
18:22:23.0114 1916 [ 41446E7545BB7B4167DE8A274CC924E3 ] C:\Program Files\Internet Explorer\ieproxy.dll
18:22:23.0114 1916 C:\Program Files\Internet Explorer\ieproxy.dll - ok
18:22:23.0118 1916 [ 802467DB6F104AD4EF8789206E1755D6 ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDMRC.DLL
18:22:23.0118 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDMRC.DLL - ok
18:22:23.0122 1916 [ 4A31D1D93A0E359639FADC23B006883E ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDBAC.DLL
18:22:23.0122 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZDBAC.DLL - ok
18:22:23.0125 1916 [ B9BFE20689398A7618C4AF5137F4068C ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\LEJES.DLL
18:22:23.0125 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\LEJES.DLL - ok
18:22:23.0129 1916 [ 97548D6969BC66D01B89E1F80B35E83E ] C:\Windows\System32\spool\drivers\x64\3\CNMDRAL.DLL
18:22:23.0129 1916 C:\Windows\System32\spool\drivers\x64\3\CNMDRAL.DLL - ok
18:22:23.0133 1916 [ DA362B18ECC0352C188DEA4D0AB37745 ] C:\Windows\SysWOW64\aticaldd.dll
18:22:23.0133 1916 C:\Windows\SysWOW64\aticaldd.dll - ok
18:22:23.0136 1916 [ 127AA81343A7C6F665C22CB1293B0A90 ] C:\Windows\splwow64.exe
18:22:23.0136 1916 C:\Windows\splwow64.exe - ok
18:22:23.0139 1916 [ 2C1055E2C6D42753241FB2A129136994 ] C:\Windows\System32\drmv2clt.dll
18:22:23.0139 1916 C:\Windows\System32\drmv2clt.dll - ok
18:22:23.0143 1916 [ 423982DD851406A52B6399DDB196C606 ] C:\Windows\System32\wmdrmdev.dll
18:22:23.0143 1916 C:\Windows\System32\wmdrmdev.dll - ok
18:22:23.0147 1916 [ D1F4EF194A129726FBF30E2F514824AA ] C:\Users\Shilstone\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
18:22:23.0147 1916 C:\Users\Shilstone\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll - ok
18:22:23.0150 1916 [ 6B851E682A36453E1B1EE297FFB6E2AB ] C:\Windows\System32\QAGENT.DLL
18:22:23.0150 1916 C:\Windows\System32\QAGENT.DLL - ok
18:22:23.0154 1916 [ 4A82EA2807B16FF577AEAF8ADB8779FF ] C:\Windows\System32\IdListen.dll
18:22:23.0154 1916 C:\Windows\System32\IdListen.dll - ok
18:22:23.0157 1916 [ DEAB2B98FFC24E784D6B81BFD42130F7 ] C:\Windows\System32\spool\drivers\x64\3\CNMUIAL.DLL
18:22:23.0157 1916 C:\Windows\System32\spool\drivers\x64\3\CNMUIAL.DLL - ok
18:22:23.0161 1916 [ A0524499F4C63CADA7E1529FC77F5DC1 ] C:\Windows\System32\hgprint.dll
18:22:23.0161 1916 C:\Windows\System32\hgprint.dll - ok
18:22:23.0164 1916 [ 3EAC4455472CC2C97107B5291E0DCAFE ] C:\Windows\System32\pnrpsvc.dll
18:22:23.0164 1916 C:\Windows\System32\pnrpsvc.dll - ok
18:22:23.0168 1916 [ 1EB82516F21F27EED1833B4F9FD9614E ] C:\Windows\System32\wmp.dll
18:22:23.0168 1916 C:\Windows\System32\wmp.dll - ok
18:22:23.0171 1916 [ 582AC6D9873E31DFA28A4547270862DD ] C:\Windows\System32\QAGENTRT.DLL
18:22:23.0171 1916 C:\Windows\System32\QAGENTRT.DLL - ok
18:22:23.0175 1916 [ FBA4773ECFEFFC6566FB2AD13CEC4940 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll
18:22:23.0175 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\cf827fe7bc99d9bcf0ba3621054ef527\WindowsBase.ni.dll - ok
18:22:23.0179 1916 [ 506A83A3BEEE9FCA09F0170DE9FC7D1B ] C:\Windows\System32\fveui.dll
18:22:23.0179 1916 C:\Windows\System32\fveui.dll - ok
18:22:23.0182 1916 [ 927463ECB02179F88E4B9A17568C63C3 ] C:\Windows\System32\p2psvc.dll
18:22:23.0182 1916 C:\Windows\System32\p2psvc.dll - ok
18:22:23.0185 1916 [ 3AEE02CEDAA3ACD14F9D7E038E44D6D1 ] C:\Windows\System32\P2PGraph.dll
18:22:23.0185 1916 C:\Windows\System32\P2PGraph.dll - ok
18:22:23.0189 1916 [ E424B3EF666B184CEE0B6871AAA8C9F6 ] C:\Windows\System32\msimg32.dll
18:22:23.0189 1916 C:\Windows\System32\msimg32.dll - ok
18:22:23.0192 1916 [ 57EA435A851C813031DB154DD6EB67B3 ] C:\Windows\System32\spool\drivers\x64\3\CNMCPAL.DLL
18:22:23.0192 1916 C:\Windows\System32\spool\drivers\x64\3\CNMCPAL.DLL - ok
18:22:23.0196 1916 [ 22F020C76E339EB2B2187BA73A7E4173 ] C:\Windows\System32\PrintIsolationHost.exe
18:22:23.0196 1916 C:\Windows\System32\PrintIsolationHost.exe - ok
18:22:23.0199 1916 [ A91F3E7B431F2A59E9E0BEDBF7D31CE2 ] C:\Windows\SysWOW64\atigktxx.dll
18:22:23.0199 1916 C:\Windows\SysWOW64\atigktxx.dll - ok
18:22:23.0203 1916 [ 9B59687619B27CDA24638CDC3AF079FB ] C:\Windows\SysWOW64\jscript9.dll
18:22:23.0203 1916 C:\Windows\SysWOW64\jscript9.dll - ok
18:22:23.0206 1916 [ 7F8678C59F188528D60104E697C2361E ] C:\Windows\SysWOW64\mscms.dll
18:22:23.0206 1916 C:\Windows\SysWOW64\mscms.dll - ok
18:22:23.0210 1916 [ 816B681CC308FAA128EDCB90643DCED7 ] C:\Windows\SysWOW64\icm32.dll
18:22:23.0210 1916 C:\Windows\SysWOW64\icm32.dll - ok
18:22:23.0213 1916 [ 4D2A265C64B0EAAD21BC175902F35E63 ] C:\Windows\System32\spool\drivers\x64\3\CNMBS3AL.DLL
18:22:23.0213 1916 C:\Windows\System32\spool\drivers\x64\3\CNMBS3AL.DLL - ok
18:22:23.0217 1916 [ A7934B26A096F39B15960E0A56C1C8C4 ] C:\Windows\SysWOW64\bidispl.dll
18:22:23.0217 1916 C:\Windows\SysWOW64\bidispl.dll - ok
18:22:23.0220 1916 [ C0035666593496CA0FCD61600A11C83B ] C:\Windows\System32\spool\drivers\x64\3\CNMFUAL.DLL
18:22:23.0220 1916 C:\Windows\System32\spool\drivers\x64\3\CNMFUAL.DLL - ok
18:22:23.0224 1916 [ 7403E983C3B76A4D92A92229DA1FFBE7 ] C:\Windows\System32\spool\drivers\x64\3\CNMBM3AL.DLL
18:22:23.0224 1916 C:\Windows\System32\spool\drivers\x64\3\CNMBM3AL.DLL - ok
18:22:23.0228 1916 [ 7271B4BB5DE60D0C713AD0489EC87965 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0401\CNMurAL.dll
18:22:23.0228 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0401\CNMurAL.dll - ok
18:22:23.0232 1916 [ A3431E97742183236BF02C7F7FA7AB25 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0404\CNMurAL.dll
18:22:23.0232 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0404\CNMurAL.dll - ok
18:22:23.0235 1916 [ E61AB1015F1DF865880B033E3E1EE0A0 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0405\CNMurAL.dll
18:22:23.0235 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0405\CNMurAL.dll - ok
18:22:23.0239 1916 [ FDC2882C03154835F7B523363493830A ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0406\CNMurAL.dll
18:22:23.0239 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0406\CNMurAL.dll - ok
18:22:23.0243 1916 [ 92BC10AAF1B7497987DCE24B9EE1AB4E ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0407\CNMurAL.dll
18:22:23.0243 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0407\CNMurAL.dll - ok
18:22:23.0247 1916 [ 4044150AC5E943B1B34DE04B3E4F9E5A ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0408\CNMurAL.dll
18:22:23.0247 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0408\CNMurAL.dll - ok
18:22:23.0251 1916 [ 592D6989F8464A1700748A5B96A7FD4E ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0409\CNMurAL.dll
18:22:23.0251 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0409\CNMurAL.dll - ok
18:22:23.0255 1916 [ 1CA712B01500CD1AC0DC329A90D2FC70 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\040b\CNMurAL.dll
18:22:23.0255 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\040b\CNMurAL.dll - ok
18:22:23.0259 1916 [ 828B289739D4643F272B83E57045D964 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\040c\CNMurAL.dll
18:22:23.0259 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\040c\CNMurAL.dll - ok
18:22:23.0263 1916 [ 64AB0EE2028A465B765A8458C6208140 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\040e\CNMurAL.dll
18:22:23.0263 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\040e\CNMurAL.dll - ok
18:22:23.0267 1916 [ 4AC9458DB0A67A94D1645A4BAE330F80 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0410\CNMurAL.dll
18:22:23.0267 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0410\CNMurAL.dll - ok
18:22:23.0271 1916 [ FD16677B09FAE5D68D0AEE998D721D36 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0411\CNMurAL.dll
18:22:23.0271 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0411\CNMurAL.dll - ok
18:22:23.0275 1916 [ 1E3CB1435EC745058628AE40FEA9F471 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll
18:22:23.0275 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\19b3d17c3ce0e264c4fb62028161adf7\PresentationCore.ni.dll - ok
18:22:23.0279 1916 [ 5422CA729AB4FCF796D3386AE7698694 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0412\CNMurAL.dll
18:22:23.0279 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0412\CNMurAL.dll - ok
18:22:23.0283 1916 [ 13D2F5AD32EFB0A25831548BB17FBC71 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0413\CNMurAL.dll
18:22:23.0283 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0413\CNMurAL.dll - ok
18:22:23.0287 1916 [ 621A062498FE5131D73A9ADE53E0D112 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0414\CNMurAL.dll
18:22:23.0287 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0414\CNMurAL.dll - ok
18:22:23.0291 1916 [ 75BC0D565426E01EB6AB41A5A14EBAC1 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0415\CNMurAL.dll
18:22:23.0291 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0415\CNMurAL.dll - ok
18:22:23.0295 1916 [ 0E750342D9A6348FFD0D3C3E1E90D4F0 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0416\CNMurAL.dll
18:22:23.0295 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0416\CNMurAL.dll - ok
18:22:23.0299 1916 [ B6BD201CFC34E11095F037AD70DE5F1A ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0419\CNMurAL.dll
18:22:23.0299 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0419\CNMurAL.dll - ok
18:22:23.0304 1916 [ 9BCF861A8B1DCF3303D0B38EA6A9FD2F ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\041D\CNMurAL.dll
18:22:23.0304 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\041D\CNMurAL.dll - ok
18:22:23.0308 1916 [ F2BF05A83DFEC8278CBFDE2D1DA59E18 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\041E\CNMurAL.dll
18:22:23.0308 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\041E\CNMurAL.dll - ok
18:22:23.0312 1916 [ 7FD251C248B2A366CDB75F1A401AA615 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\041F\CNMurAL.dll
18:22:23.0313 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\041F\CNMurAL.dll - ok
18:22:23.0316 1916 [ 259ED5726E9B95143BCF8906F7F8057E ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0421\CNMurAL.dll
18:22:23.0316 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0421\CNMurAL.dll - ok
18:22:23.0320 1916 [ 582BD75E50CF3E6C725EEED6B3233F50 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0804\CNMurAL.dll
18:22:23.0320 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0804\CNMurAL.dll - ok
18:22:23.0324 1916 [ E19AD0D49BFF5938B3E374873AC174DE ] C:\Windows\System32\wmploc.DLL
18:22:23.0324 1916 C:\Windows\System32\wmploc.DLL - ok
18:22:23.0328 1916 [ 1589D8C640EC72EF93492DB78D8E86E4 ] C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0c0a\CNMurAL.dll
18:22:23.0328 1916 C:\ProgramData\CanonBJ\IJPrinter\CNMWindows\Canon MX410 series Printer\LanguageModules\0c0a\CNMurAL.dll - ok
18:22:23.0331 1916 [ 74D81D681CAC17963A661BE5DA08B98C ] C:\Windows\System32\spool\drivers\x64\3\CNMUBAL.DLL
18:22:23.0331 1916 C:\Windows\System32\spool\drivers\x64\3\CNMUBAL.DLL - ok
18:22:23.0335 1916 [ 5E3BA3887FA79E2588FAF1CC51EE3DB6 ] C:\Windows\System32\spool\drivers\x64\3\CNMBS6AL.DLL
18:22:23.0335 1916 C:\Windows\System32\spool\drivers\x64\3\CNMBS6AL.DLL - ok
18:22:23.0338 1916 [ 9FA56171C452530E2F51E3238B52140B ] C:\Windows\System32\bidispl.dll
18:22:23.0338 1916 C:\Windows\System32\bidispl.dll - ok
18:22:23.0342 1916 [ 2362B23E77CF7B05EFBBC18AC7E72694 ] C:\Windows\System32\spool\drivers\x64\3\CNMEIAL.DLL
18:22:23.0342 1916 C:\Windows\System32\spool\drivers\x64\3\CNMEIAL.DLL - ok
18:22:23.0346 1916 [ C52F93F01FB4E92B8852C9BD9DD9C75D ] C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.EXE
18:22:23.0346 1916 C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\CNEZMAIN.EXE - ok
18:22:23.0350 1916 [ A89346DF06DC06DEE6FD4CA370F03D81 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtgui4.dll
18:22:23.0350 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtgui4.dll - ok
18:22:23.0354 1916 [ FF6ABD2340BC42194C1FD9FD667A55A1 ] C:\Program Files (x86)\Canon\MP Navigator EX 4.1\mpnex41.exe
18:22:23.0354 1916 C:\Program Files (x86)\Canon\MP Navigator EX 4.1\mpnex41.exe - ok
18:22:23.0357 1916 [ 96DB78C9C50CEED9DA5050EFFEE272A2 ] C:\Windows\System32\upnp.dll
18:22:23.0357 1916 C:\Windows\System32\upnp.dll - ok
18:22:23.0361 1916 [ EE74A0FF7C5752E49911986F22BBAEEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll
18:22:23.0361 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\ff7c9a4f41f7cccc47e696c11b9f8469\PresentationFramework.ni.dll - ok
18:22:23.0365 1916 [ 0C85BEFBC3C5072DACD66474BBA121D8 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\qbackup.dll
18:22:23.0365 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\qbackup.dll - ok
18:22:23.0368 1916 [ 2537D941F11279765D7DA9CB89D627C2 ] C:\Program Files (x86)\Canon\Speed Dial Utility\sdutil.exe
18:22:23.0368 1916 C:\Program Files (x86)\Canon\Speed Dial Utility\sdutil.exe - ok
18:22:23.0372 1916 [ 9B642E45C4BC5E84957CD7397DD48E3C ] C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
18:22:23.0372 1916 C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe - ok
18:22:23.0376 1916 [ 2E7ADF9B0389CD94605717784D7E416A ] C:\Windows\System32\drttransport.dll
18:22:23.0376 1916 C:\Windows\System32\drttransport.dll - ok
18:22:23.0379 1916 [ C57BC99A4467B3E8F1CC2184A3F46729 ] C:\Windows\System32\drt.dll
18:22:23.0379 1916 C:\Windows\System32\drt.dll - ok
18:22:23.0383 1916 [ 5F9FFB632B74264C49A189850502C77F ] C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE
18:22:23.0383 1916 C:\Program Files (x86)\Canon\Canon IJ Network Tool\CNMNPUT.EXE - ok
18:22:23.0386 1916 [ AEDDFD540E3E6BECDB14C30D1F12B78A ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
18:22:23.0386 1916 C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
18:22:23.0390 1916 [ DDFBFD8959F32AC0CF3947F36BAC3081 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
18:22:23.0390 1916 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
18:22:23.0394 1916 [ 343655E9CD92650670956A385983A67B ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\log4net.dll
18:22:23.0394 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\log4net.dll - ok
18:22:23.0398 1916 [ 09A116FB06C5E362EF8938D29CDAB27B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
18:22:23.0398 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
18:22:23.0402 1916 [ 21E110FF1C0E948860458BD7B692DE13 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll
18:22:23.0402 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\195a77fcc6206f8bb35d419ff2cf0d72\System.Configuration.ni.dll - ok
18:22:23.0405 1916 [ F7AE4639FE8A7A76BFEDBA14F205C2F9 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtdeclarative4.dll
18:22:23.0405 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtdeclarative4.dll - ok
18:22:23.0409 1916 [ 811CF8920B409089D4B8C8A01378835C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\520a80ddcdd1084993516f4d42a73e05\System.Xml.ni.dll
18:22:23.0409 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\520a80ddcdd1084993516f4d42a73e05\System.Xml.ni.dll - ok
18:22:23.0413 1916 [ 8D5B6A862E3D3937292CA5B1C66B1B4F ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaResource.dll
18:22:23.0413 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaResource.dll - ok
18:22:23.0417 1916 [ 7221E564AF08E3C0858404B1933BEABE ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtscript4.dll
18:22:23.0417 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtscript4.dll - ok
18:22:23.0421 1916 [ 27E79A455EF80647F4F57FA3C2B09C94 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll
18:22:23.0421 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll - ok
18:22:23.0425 1916 [ 8B1590C627138166C015A5680ABF6BB2 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll
18:22:23.0425 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\cb562e2e4f74ae607f1186f6ec50cec7\System.Windows.Forms.ni.dll - ok
18:22:23.0429 1916 [ 93EDCC4872ADB099EFEA9FB245F32365 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtsql4.dll
18:22:23.0429 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtsql4.dll - ok
18:22:23.0432 1916 [ 9F2295A6DFC28CBA4D1085D698785F56 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtnetwork4.dll
18:22:23.0432 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\qtnetwork4.dll - ok
18:22:23.0436 1916 [ 72910F1DEB838E6E08A9017BFB7D4F0B ] C:\Windows\SysWOW64\browcli.dll
18:22:23.0436 1916 C:\Windows\SysWOW64\browcli.dll - ok
18:22:23.0440 1916 [ 7683E68DDF7B479AC938461058A32518 ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\en-US\Linksys EasyLink Advisor.resources.dll
18:22:23.0440 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\en-US\Linksys EasyLink Advisor.resources.dll - ok
18:22:23.0444 1916 [ 69B88F658A73362FC27E840543FB0518 ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\en-US\LelaResource.resources.dll
18:22:23.0444 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\en-US\LelaResource.resources.dll - ok
18:22:23.0448 1916 [ 605C180BD21B4E988CAB263FB89C8D45 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\basegui.ppl
18:22:23.0448 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\basegui.ppl - ok
18:22:23.0451 1916 [ 71DB15004402F4C8D004D13967FC1AE9 ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaNetwork.dll
18:22:23.0451 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaNetwork.dll - ok
18:22:23.0455 1916 [ FABD60DC893FAC2CC8A3E0639E99984C ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\en-US\LelaNetwork.resources.dll
18:22:23.0455 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\en-US\LelaNetwork.resources.dll - ok
18:22:23.0459 1916 [ BE39E22059A3082D5289739299C33C01 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll
18:22:23.0459 1916 C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\d7d20811a7ce7cc589153648cbb1ce5c\PresentationFramework.Aero.ni.dll - ok
18:22:23.0463 1916 [ 6EF5F3F18413C367195F06E503AB86A6 ] C:\Windows\SysWOW64\d3d9.dll
18:22:23.0463 1916 C:\Windows\SysWOW64\d3d9.dll - ok
18:22:23.0466 1916 [ 77B1471A490B53B24EFE136F09F76550 ] C:\Windows\SysWOW64\d3d8thk.dll
18:22:23.0466 1916 C:\Windows\SysWOW64\d3d8thk.dll - ok
18:22:23.0469 1916 [ D7962EF035BDF4FFAD9105FF9C30BB93 ] C:\Windows\SysWOW64\aticfx32.dll
18:22:23.0469 1916 C:\Windows\SysWOW64\aticfx32.dll - ok
18:22:23.0473 1916 [ 3D58F13253A749E37852630E9E264A70 ] C:\Windows\SysWOW64\atiu9pag.dll
18:22:23.0473 1916 C:\Windows\SysWOW64\atiu9pag.dll - ok
18:22:23.0476 1916 [ 5DD2F79B31D2FDFDBF22E5CC7B6393B7 ] C:\Windows\SysWOW64\atiumdag.dll
18:22:23.0476 1916 C:\Windows\SysWOW64\atiumdag.dll - ok
18:22:23.0479 1916 [ 9FF8F684BACF326082E5562F7C104A79 ] C:\Windows\SysWOW64\d2d1.dll
18:22:23.0480 1916 C:\Windows\SysWOW64\d2d1.dll - ok
18:22:23.0483 1916 [ C1C03EA437EDDA8A7D4D8786E5AE6751 ] C:\Windows\System32\wuauclt.exe
18:22:23.0483 1916 C:\Windows\System32\wuauclt.exe - ok
18:22:23.0486 1916 [ 50EBD31C3527366FAFA468BD609F7352 ] C:\Windows\System32\wucltux.dll
18:22:23.0486 1916 C:\Windows\System32\wucltux.dll - ok
18:22:23.0490 1916 [ 4277F5164DE9B7C665BB928B9145BEE0 ] C:\Windows\SysWOW64\DWrite.dll
18:22:23.0490 1916 C:\Windows\SysWOW64\DWrite.dll - ok
18:22:23.0493 1916 [ 3F939395FDB3AA9C2F55F057E21C5400 ] C:\Windows\SysWOW64\atiumdva.dll
18:22:23.0493 1916 C:\Windows\SysWOW64\atiumdva.dll - ok
18:22:23.0497 1916 [ D4F264FE23F8953D840904418220C15E ] C:\Windows\SysWOW64\dxgi.dll
18:22:23.0497 1916 C:\Windows\SysWOW64\dxgi.dll - ok
18:22:23.0500 1916 [ 3C06536A9AA332E9E0CEBDE5A596822A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL
18:22:23.0500 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDPROV.DLL - ok
18:22:23.0504 1916 [ 0C15DB6FF927935F0ECA52FEEA40E6C2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll
18:22:23.0504 1916 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.dll - ok
18:22:23.0508 1916 [ 7ACDFB4CC67F4993DF0E0731576309B2 ] C:\Windows\SysWOW64\d3d11.dll
18:22:23.0508 1916 C:\Windows\SysWOW64\d3d11.dll - ok
18:22:23.0511 1916 [ B3170CCC779B682C3341873EA60CF084 ] C:\Windows\SysWOW64\d3d10warp.dll
18:22:23.0511 1916 C:\Windows\SysWOW64\d3d10warp.dll - ok
18:22:23.0515 1916 [ 6FFAB55128BAF5E4043E88C56138D833 ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaNetworkLib.dll
18:22:23.0515 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaNetworkLib.dll - ok
18:22:23.0518 1916 [ C225E5307D8D4982A1687F2702C37C78 ] C:\Windows\SysWOW64\msls31.dll
18:22:23.0518 1916 C:\Windows\SysWOW64\msls31.dll - ok
18:22:23.0522 1916 [ FD7A28964CFF2A745E12296ADEC13F12 ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\Interop.NetworkCore.dll
18:22:23.0522 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\Interop.NetworkCore.dll - ok
18:22:23.0525 1916 [ 539C49CEBB3C50957AC8A09D95ECD880 ] C:\Windows\SysWOW64\shfolder.dll
18:22:23.0525 1916 C:\Windows\SysWOW64\shfolder.dll - ok
18:22:23.0529 1916 [ A0617B5753E31126AD29C03154F4F329 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
18:22:23.0529 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
18:22:23.0533 1916 [ 3D7D2E825C63FF501E896CF008C70D75 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
18:22:23.0533 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
18:22:23.0536 1916 [ C1B5307377C98F87E0152C44E9FF8DEE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
18:22:23.0536 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
18:22:23.0540 1916 [ 24FCC3CDAE327F632CB8696E1E40F772 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
18:22:23.0540 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
18:22:23.0543 1916 [ E955300DF949977878C705EC8681009A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
18:22:23.0543 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
18:22:23.0547 1916 [ ED797D8DC2C92401985D162E42FFA450 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
18:22:23.0547 1916 C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
18:22:23.0550 1916 [ 97A891E2BF7FDA830BCFC6269DA3F5E9 ] C:\Windows\System32\blackbox.dll
18:22:23.0550 1916 C:\Windows\System32\blackbox.dll - ok
18:22:23.0554 1916 [ 355A138ABDFD43FBABCAE3A1B06AB93D ] C:\Windows\System32\wmpps.dll
18:22:23.0554 1916 C:\Windows\System32\wmpps.dll - ok
18:22:23.0556 1916 [ F149E8CAE538DBF7059B00326673F602 ] C:\Windows\System32\wmpmde.dll
18:22:23.0556 1916 C:\Windows\System32\wmpmde.dll - ok
18:22:23.0559 1916 [ 021287C2050FD5DB4A8B084E2C38139C ] C:\Windows\System32\WinSATAPI.dll
18:22:23.0559 1916 C:\Windows\System32\WinSATAPI.dll - ok
18:22:23.0563 1916 [ B79515AFF098E5A56DFBD316152534DE ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
18:22:23.0563 1916 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
18:22:23.0567 1916 [ 28A7D7C7E2FDD1D55F12F750CD6331EC ] C:\Windows\System32\MSMPEG2ENC.DLL
18:22:23.0567 1916 C:\Windows\System32\MSMPEG2ENC.DLL - ok
18:22:23.0570 1916 [ E805F740F3A9B18DEFD853BE4A37A70C ] C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaServices.dll
18:22:23.0570 1916 C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\LelaServices.dll - ok
18:22:23.0574 1916 [ 46767946E7B559D981C1DC04EC0AB36F ] C:\Windows\System32\devenum.dll
18:22:23.0574 1916 C:\Windows\System32\devenum.dll - ok
18:22:23.0577 1916 [ 558C42D165DB5799B4072DC0A9C27C0B ] C:\Windows\System32\msdmo.dll
18:22:23.0577 1916 C:\Windows\System32\msdmo.dll - ok
18:22:23.0581 1916 [ 62A6EB5771580CAE445804389F3F7432 ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
18:22:23.0581 1916 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
18:22:23.0584 1916 [ D47EC6A8E81633DD18D2436B19BAF6DE ] C:\Windows\System32\upnphost.dll
18:22:23.0584 1916 C:\Windows\System32\upnphost.dll - ok
18:22:23.0587 1916 [ 45FB05F743E626D9E239E52602CEA041 ] C:\Windows\SysWOW64\msctfui.dll
18:22:23.0587 1916 C:\Windows\SysWOW64\msctfui.dll - ok
18:22:23.0591 1916 [ 07AD88DF9EF73215458867EFC1BFFE9E ] C:\Windows\System32\wbem\wmiprov.dll
18:22:23.0591 1916 C:\Windows\System32\wbem\wmiprov.dll - ok
18:22:23.0595 1916 [ 080D2F45C75C596D4EF2C9C82397AA61 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\localization_manager.dll
18:22:23.0595 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\localization_manager.dll - ok
18:22:23.0598 1916 [ 71E68F2443A80BD4DA89181889C457EA ] C:\Windows\System32\udhisapi.dll
18:22:23.0598 1916 C:\Windows\System32\udhisapi.dll - ok
18:22:23.0602 1916 [ E2A17BCC08D92F42E08AF6BA2F93ABA7 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:22:23.0602 1916 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:22:23.0604 1916 [ 6E1F8165C365D35C8E3C045AF0CDD481 ] C:\Windows\SysWOW64\duser.dll
18:22:23.0604 1916 C:\Windows\SysWOW64\duser.dll - ok
18:22:23.0607 1916 [ EE06B85BC69F18826302348A2AD089E0 ] C:\Windows\SysWOW64\dui70.dll
18:22:23.0607 1916 C:\Windows\SysWOW64\dui70.dll - ok
18:22:23.0611 1916 [ AF78F66116814FDD6677CEBD73035CDD ] C:\Windows\SysWOW64\schannel.dll
18:22:23.0611 1916 C:\Windows\SysWOW64\schannel.dll - ok
18:22:23.0615 1916 [ D7C08234E429159E419D500D5C53EE0D ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\w8toaster.dll
18:22:23.0615 1916 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\w8toaster.dll - ok
18:22:23.0618 1916 [ 8E8C92DD50F6B34907813AFDC0C8F7DD ] C:\Windows\SysWOW64\dbgeng.dll
18:22:23.0618 1916 C:\Windows\SysWOW64\dbgeng.dll - ok
18:22:23.0621 1916 [ 5F639198C4137075DA50E61C23963C11 ] C:\Windows\System32\drprov.dll
18:22:23.0621 1916 C:\Windows\System32\drprov.dll - ok
18:22:23.0625 1916 [ BC566D17914B07ABAAB3A5A385CC3300 ] C:\Windows\System32\ntlanman.dll
18:22:23.0625 1916 C:\Windows\System32\ntlanman.dll - ok
18:22:23.0628 1916 [ B3A33600DCDFB84D7FBE09ADEB1C9B8A ] C:\Windows\System32\davclnt.dll
18:22:23.0628 1916 C:\Windows\System32\davclnt.dll - ok
18:22:23.0632 1916 [ 45B24A357C801CE62052FE0CDC8BD4D2 ] C:\Windows\System32\davhlpr.dll
18:22:23.0632 1916 C:\Windows\System32\davhlpr.dll - ok
18:22:23.0635 1916 [ 773212B2AAA24C1E31F10246B15B276C ] C:\Windows\servicing\TrustedInstaller.exe
18:22:23.0635 1916 C:\Windows\servicing\TrustedInstaller.exe - ok
18:22:23.0639 1916 [ 288ADDED26C80FDC135CAB4340161686 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
18:22:23.0639 1916 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
18:22:23.0642 1916 [ 6369F960C28A16F4502C480EEDE3652C ] C:\Windows\System32\dpx.dll
18:22:23.0642 1916 C:\Windows\System32\dpx.dll - ok
18:22:23.0646 1916 [ 7957A194B8421BC070FABBF1C55DB68B ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
18:22:23.0646 1916 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
18:22:23.0650 1916 [ 9297F004FCE79FB7B26DAC6968FB5FEB ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
18:22:23.0650 1916 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
18:22:23.0653 1916 [ FC6C5D860CDB82411DA626821201BDF0 ] C:\Windows\System32\srclient.dll
18:22:23.0653 1916 C:\Windows\System32\srclient.dll - ok
18:22:23.0657 1916 [ B7AC66C1CCD87D7C49256B5451DED4FA ] C:\Windows\System32\spp.dll
18:22:23.0657 1916 C:\Windows\System32\spp.dll - ok
18:22:23.0660 1916 [ 943F48CC3A59169E52A054946C2F59B8 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
18:22:23.0660 1916 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
18:22:23.0664 1916 [ 6685DD5CC357D45EEE30FD089E8A111A ] C:\Windows\System32\sxsstore.dll
18:22:23.0664 1916 C:\Windows\System32\sxsstore.dll - ok
18:22:23.0667 1916 [ D485D1BE97777617B186FC8095F58421 ] C:\Windows\servicing\CbsApi.dll
18:22:23.0667 1916 C:\Windows\servicing\CbsApi.dll - ok
18:22:23.0671 1916 [ F146E2BA475893DD77B2370DC1211FC6 ] C:\Windows\System32\drivers\85614296.sys
18:22:23.0671 1916 C:\Windows\System32\drivers\85614296.sys - ok
18:22:23.0674 1916 [ 102CF6879887BBE846A00C459E6D4ABC ] C:\Windows\SysWOW64\riched20.dll
18:22:23.0674 1916 C:\Windows\SysWOW64\riched20.dll - ok
18:22:23.0678 1916 [ 5FBD7BEC6CD3DCAA6A87A7F70CE8AF44 ] C:\Windows\System32\advpack.dll
18:22:23.0678 1916 C:\Windows\System32\advpack.dll - ok
18:22:23.0681 1916 [ DC46D85DBBDB2E173FDD218D03169E08 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avscntsk.dll
18:22:23.0681 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\avscntsk.dll - ok
18:22:23.0685 1916 [ F52084DB96C2021ED7D73C7FD7562AB8 ] C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\imcfg.dll
18:22:23.0685 1916 C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\imcfg.dll - ok
18:22:23.0688 1916 ============================================================
18:22:23.0688 1916 Scan finished
18:22:23.0688 1916 ============================================================
18:22:23.0696 3532 Detected object count: 4
18:22:23.0696 3532 Actual detected object count: 4
18:22:48.0674 3532 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
18:22:48.0675 3532 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
18:22:48.0678 3532 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
18:22:48.0678 3532 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:22:48.0681 3532 LinksysUpdater ( UnsignedFile.Multi.Generic ) - skipped by user
18:22:48.0681 3532 LinksysUpdater ( UnsignedFile.Multi.Generic ) - User select action: Skip
18:22:48.0813 3532 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
18:22:48.0862 3532 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
18:22:49.0299 3532 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
18:22:49.0311 3532 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
18:22:49.0316 3532 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
18:22:49.0321 3532 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
18:22:49.0326 3532 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
18:22:49.0333 3532 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
18:22:49.0339 3532 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
18:22:49.0344 3532 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
18:22:49.0349 3532 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
18:22:49.0351 3532 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
18:22:49.0355 3532 \Device\Harddisk0\DR0\TDLFS\cmd32.dll - copied to quarantine
18:22:49.0356 3532 \Device\Harddisk0\DR0\TDLFS - deleted
18:22:49.0356 3532 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
18:26:46.0284 4652 Deinitialize success
  • 0

Advertisements

#17
lady2sylvia
Posted 10 April 2013 - 04:41 PM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Just wanted to mention that as soon as I deleted the item from the TDSS File System, my anti-virus program popped up saying that autoprotect had blocked two items:

a Trojan.Malcal and tsk0007.dtaBackdoor.Tidserv (I think I got that right - the pop-up closed while I was writing it down.)

I haven't seen that kind of pop-up in a long time, so maybe that means the system is more secure?
  • 0

#18
gringo_pr
Posted 10 April 2013 - 04:57 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello lady2sylvia

I would like to see a report that combofix makes.

extra combofix report

  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box
C:\Qoobox\Add-Remove Programs.txt
  • click ok

copy and paste the report into this topic for me to review

Gringo
  • 0

#19
lady2sylvia
Posted 10 April 2013 - 05:58 PM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Update for Microsoft Office 2007 (KB2508958)
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Digital Editions
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader X (10.1.6)
Akamai NetSession Interface
Akamai NetSession Interface Service
Amazon MP3 Downloader 1.0.17
AMD VISION Engine Control Center
Apple Application Support
Apple Software Update
Bejeweled 2 Deluxe
Bing Bar
Bing Rewards Client Installer
Blackhawk Striker 2
Build-a-lot 2
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool
Canon MP Navigator EX 4.1
Canon MX410 series User Registration
Canon My Printer
Canon Solution Menu EX
Canon Speed Dial Utility
Carbonite
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Chuzzle Deluxe
CinemaNow Media Manager
Compatibility Pack for the 2007 Office system
Coupon Printer for Windows
CyberLink DVD Suite Deluxe
D3DX10
Diner Dash 2 Restaurant Rescue
Dora's Carnival Adventure
Dropbox
DVD Menu Pack for HP MediaSmart Video
Escape Rosecliff Island
FATE
Final Drive Nitro
Freecorder 5
FundRaiser Basic
Google Earth
Google Gears
Google Toolbar for Internet Explorer
Google Update Helper
Heroes of Hellas 2 - Olympia
HP Advisor
HP Customer Experience Enhancements
HP Game Console
HP Games
HP MediaSmart CinemaNow 2.0
HP MediaSmart DVD
HP MediaSmart Music
HP MediaSmart Photo
HP MediaSmart Video
HP MediaSmart/TouchSmart Netflix
HP Odometer
HP Setup
HP Support Assistant
HP Support Information
HP Update
HPAsset component for HP Active Support Library
Hulu Desktop
Java Auto Updater
Java™ 6 Update 3
Java™ 6 Update 31
Jewel Quest 3
Jewel Quest Solitaire 2
Junk Mail filter update
Kaspersky Security Scan
Kobo
LabelPrint
LightScribe System Software
Linksys EasyLink Advisor
McAfee Security Scan Plus
Mesh Runtime
Messenger Companion
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works 6-9 Converter
Microsoft WSE 3.0 Runtime
Movie Theme Pack for HP MediaSmart Video
Mozilla Firefox 19.0.2 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Norton Internet Security
Norton Online Backup
PDF Complete Special Edition
Penguins!
PhotoNow!
PictureMover
Plants vs. Zombies
Poker Superstars III
Polar Bowler
Polar Golfer
Power2Go
PowerDirector
PressReader
Print Artist Silver 22
Pure Networks Platform
Ralink RT2860 Wireless LAN Card
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Recovery Manager
Roxio CinemaNow 2.0
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Virtual Families
Virtual Villagers - The Secret City
WebEx Support Manager for Internet Explorer
Wheel of Fortune 2
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Player Firefox Plugin
WModem Driver Installer
Zinio Reader 4
Zuma Deluxe
  • 0

#20
gringo_pr
Posted 10 April 2013 - 06:17 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

These logs are looking allot better. But we still have some work to do.

Please print out these instructions, or copy them to a Notepad file. It will make it easier for you to follow the instructions and complete all of the necessary steps..

uninstall some programs

NOTE** Because of the cleanup process some of the programs I have listed may not be in add/remove anymore this is fine just move to the next item on the list.

You can remove these programs using add/remove or you can use the free uninstaller from Revo (Revo does allot better of a job)

Programs to remove


Adobe Reader X (10.1.6)
Coupon Printer for Windows
Freecorder 5
Java™ 6 Update 3
Java™ 6 Update 31
McAfee Security Scan Plus

 [/list]

  • Please download and install Revo Uninstaller Free
  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes
  • when the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check/tick the bolded items only on the list then click Delete
  • when prompted click on Yes and then on next.
  • put a check on any folders that are found and select delete
  • when prompted select yes then on next
  • Once done click Finish.
.



Update Adobe reader

Recently there have been vulnerabilities detected in older versions of Adobe Reader. It is strongly suggested that you update to the current version.

You can download it from http://www.adobe.com.../readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

If you don't like Adobe Reader (53 MB), you can download Foxit PDF Reader(7 MB) from here. It's a much smaller file to download and uses a lot less resources than Adobe Reader.

Note: When installing FoxitReader, be careful not to install anything to do with AskBar.
[/list]


Clean Out Temp Files

  • This small application you may want to keep and use once a week to keep the computer clean.

    Download CCleaner from here http://www.ccleaner.com/

  • Run the installer to install the application.
  • When it gives you the option to install Yahoo toolbar uncheck the box next to it.
  • Run CCleaner. (make sure under Windows tab all the boxes of Internet Explorer and Windows explorer are checked. Under System check Empty Recycle Bin and Temporary Files. Under Application tab all the boxes should be checked).
  • Click Run Cleaner.
  • Close CCleaner.



: Malwarebytes' Anti-Malware :


I see You have MBAM installed on the computer - that is great!! it is a very good program! I would like you to run a quick scan for me now

  • Double-click mbam icon
  • go to the update tab at the top
  • click on check for updates
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
  • If you accidentally close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.


Download HijackThis

  • Go Here to download HijackThis program
  • Save HijackThis to your desktop.
  • Right Click on Hijackthis and select "Run as Admin" (XP users just need to double click to run)
  • Click on "Do A system scan and save a logfile" (if you do not see "Do A system scan and save a logfile" then click on main menu)
  • copy and paste hijackthis report into the topic


"information and logs"

  • In your next post I need the following

  • Log From MBAM
  • report from Hijackthis
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
  • 0

#21
lady2sylvia
Posted 11 April 2013 - 08:44 AM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Good Morning Gringo!

Good news - completed all the steps as directed above, ran Malwarbytes and here's the report: Scan Finished: No malware found!

I updated Adobe Reader (126 MB!), then tried to uninstall the old version - but only saw updates. Could the old version have been automatically uninstalled when the new version was installed?

I haven't encountered any problems or crashes this morning. Only thing I would like to change is Internet Explorer. Something called Genieo seems to have made some changes to that.

Here's the report from HijackThis. Before it scanned a pop-up came up which said "For some reason your system denied write access to the Hosts files. If any hijacked domains are in this file, HijackThis may NOT be able to fix this." I clicked OK and ran the scan anyway. Unfortunately, it came up as a list with check boxes in front of each item and it is not letting me copy the results.

Is there some other way to copy these results? I could try a screen grab, but I don't think I can send you attachments.

Thanks,
lady2sylvia
  • 0

#22
lady2sylvia
Posted 11 April 2013 - 08:46 AM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Wait - I found the log for Hijack This:

C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Shilstone\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.genieo...30415,19432,6,0,
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft..../?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft..../?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\IPS\IPSBHO.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll
O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files (x86)\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll
O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
O4 - HKLM\..\Run: [LELA] "C:\Program Files (x86)\Linksys\Linksys EasyLink Advisor\Linksys EasyLink Advisor.exe" /minimized
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [Carbonite Backup] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
O4 - HKLM\..\Run: [CanonSolutionMenuEx] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
O4 - HKLM\..\Run: [IJNetworkScannerSelectorEX] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCE
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\RunOnce: [Z1] cmd /c "C:\Users\Shilstone\Desktop\Malwarebytes\mbar\mbar.exe" /cleanup /s
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Shilstone\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [KSS] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe" /autorun
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe -update activex (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe -update activex (User 'Default user')
O4 - Startup: Dropbox.lnk = Shilstone\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files (x86)\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra 'Tools' menuitem: &Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files (x86)\Google\Google Gears\Internet Explorer\0.5.36.0\gears.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://search.genieo.com
O15 - Trusted IP range: 127.0.0.1
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.ad...Plus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: CarboniteService - Carbonite, Inc. (www.carbonite.com) - C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Kaspersky Security Scan Service (KSS) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan 2.0\kss.exe
O23 - Service: Linksys Updater (LinksysUpdater) - Unknown owner - C:\Program Files (x86)\Linksys\Linksys Updater\bin\LinksysUpdater.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe
O23 - Service: Pure Networks Platform Service (nmservice) - Pure Networks, Inc. - C:\Program Files (x86)\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13932 bytes
  • 0

#23
gringo_pr
Posted 11 April 2013 - 08:57 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Greetings

These logs are looking very good, we are almost done!!! Just one more scan to go.

:Remove unneeded start-up entries:

This part of the fix is purely optional
These are programs that start up when you turn on your computer but don't need to be, any of these programs you can click on their icons (or start from the control panel) and start the program when you need it. By stopping these programs you will boot up faster and your computer will work faster.

  • Run HijackThis (rightclick and run as admin)
  • Click on the Scan button
  • Put a check beside all of the items listed below (if present):

    • O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
      O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
      O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
      O4 - HKLM\..\RunOnce: [Z1] cmd /c "C:\Users\Shilstone\Desktop\Malwarebytes\mbar\mbar.exe" /cleanup /s
      O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Shilstone\AppData\Local\Akamai\netsession_win.exe"
      O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
      O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe -update activex (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe -update activex (User 'Default user')
      O4 - Startup: Dropbox.lnk = Shilstone\AppData\Roaming\Dropbox\bin\Dropbox.exe

  • Close all open windows and browsers/email, etc...
  • Click on the "Fix Checked" button
  • When completed, close the application.

    NOTE**You can research each of those lines >here< and see if you want to keep them or not
    just copy the name between the brackets and paste into the search space
    O4 - HKLM\..\Run: [IntelliPoint]


Eset Online Scanner

**Note** You will need to use Internet explorer for this scan - Vista and win 7 right click on IE shortcut and run as admin

Go Eset web page to run an online scanner from ESET.

  • Turn off the real time scanner of any existing antivirus program while performing the online scan
  • click on the Run ESET Online Scanner button
  • Tick the box next to YES, I accept the Terms of Use.
    • Click Start
  • When asked, allow the add/on to be installed
    • Click Start
  • Make sure that the option Remove found threats is unticked
  • Click on Advanced Settings, ensure the options
    Scan for potentially unwanted applications, Scan for potentially unsafe applications, and Enable Anti-Stealth Technology are ticked.
  • Click Scan
  • wait for the virus definitions to be downloaded
  • Wait for the scan to finish

When the scan is complete

  • If no threats were found
  • put a checkmark in "Uninstall application on close"
  • close program
  • report to me that nothing was found

  • If threats were found
  • click on "list of threats found"
  • click on "export to text file" and save it as ESET SCAN and save to the desktop
  • Click on back
  • put a checkmark in "Uninstall application on close"
  • click on finish
  • close program
  • copy and paste the report here

Gringo
  • 0

#24
lady2sylvia
Posted 11 April 2013 - 09:27 AM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Ok, I removed the unneeded start-up entries, no problem.

However, I can't access the Eset Online Scanner because Internet Explorer is totally unusable. I can't navigate through the address bar or the box. It seems to be taken over by something called Genieo. Should I remove and reinstall Internet Explorer?

Thanks
  • 0

#25
gringo_pr
Posted 11 April 2013 - 09:43 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello lady2sylvia

first I would like you to go here and click on the fixit button - http://support.microsoft.com/kb/923737


Then I want you to do the following

  • Start Internet Explorer.
  • click on "safety"
  • click on "Delete Browsing History"
  • make sure all boxes are checked
  • click on "Delete"
  • click on "Tools",
  • click "Internet Options".
  • On the "Advanced" tab, click "Reset"
  • put a check mark next to "Delete Personal Settings"
  • click "Reset" to confirm
  • when complete click the "Close" button
  • restart IE


Gringo
  • 0

Advertisements

#26
lady2sylvia
Posted 11 April 2013 - 09:48 AM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
I think I managed to resolve the Internet Explorer issue. I will use the Eset Online Scanner now.

Another small problem: I now have at icon for "Run Hunter Mode" of HijackThis program floating on my desktop and on open browser screens. When I click on it it says: Unresolved! Try to point to another window, icon or a taskbar item.
  • 0

#27
gringo_pr
Posted 11 April 2013 - 09:51 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello

"Run Hunter Mode" - this is part of REVO and if continues to be a problem then uninstall Revo
  • 0

#28
lady2sylvia
Posted 11 April 2013 - 10:38 AM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Results of Eset Scan:

C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\ReactivateIE.exe.vir a variant of Win32/Toolbar.Zugo application
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\Toolbar32.dll.vir Win32/Toolbar.Zugo application
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\ToolbarBroker.exe.vir Win32/Toolbar.Zugo application
C:\Qoobox\Quarantine\C\Program Files (x86)\StartNow Toolbar\ToolbarUpdaterService.exe.vir Win32/Toolbar.Zugo application
  • 0

#29
gringo_pr
Posted 11 April 2013 - 11:06 AM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello lady2sylvia

The Online scan looks very good!! It is only reporting backups created during the course of this fix!!


C:\Qoobox\Quarantine\<-- combofix


Very well done!! This is my general post for when your logs show no more signs of malware - Please let me know if you still are having problems with your computer and what these problems are.


:Why we need to remove some of our tools:

Some of the tools we have used to clean your computer were made by fellow malware fighters and are very powerful and if used incorrectly or at the wrong time can make the computer an expensive paper weight.
They are updated all the time and some of them more than once a day so by the time you are ready to use them again they will already be outdated.

The following procedures will implement some cleanup procedures to remove these tools. It will also reset your System Restore by flushing out previous restore points and create a new restore point. It will also remove all the backups our tools may have made.
:DeFogger:

Note** Defogger only needs to be run if it was run when we first started. If you have not already run it then skip this.

  • To re-enable your Emulation drivers, double click DeFogger to run the tool.
  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK.
Your Emulation drivers are now re-enabled.
:Uninstall ComboFix:

  • turn off all active protection software
  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box ComboFix /Uninstall and click OK.
  • Note the space between the X and the /Uninstall, it needs to be there.
  • Posted Image

:Remove the rest of our tools:

Please download OTCleanIt and save it to desktop. This tool will remove all the tools we used to clean your pc.
  • Double-click OTCleanIt.exe.
  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes, if not delete it by yourself.
  • If asked to restart the computer, please do so
Note: If you receive a warning from your firewall or other security programs regarding OTCleanIt attempting to contact the internet, please allow it to do so.

About Java


During the cleaning process if I found that Java was installed I asked for it to be uninstalled, Many home users will not miss it. If you use OpenOffice, play online games or use business applications which require Java, Then you need to install the latest version and make sure to disable it in your web browsers.

If an application or website requires it, you should receive a notification indicating that when you attempt to launch that application or access that website.

Link to download latest version. - install Java

How to disable java in your web browsers - Disable Java


:The programs you can keep:

Some of the programs that we have used would be a good idea to keep and used often in helping to keep the computer clean. I use these programs on my computer.

Revo Uninstaller Free - this is the uninstaller that I had you download and works allot better than add/remove in windows and has saved me more than once from corrupted installs and uninstalls

CCleaner - This is a good program to clean out temp files, I would use this once a week or before any malware scan to remove unwanted temp files - It has a built in registry cleaner but I would leave that alone and not use any registry cleaner

Malwarebytes' Anti-Malware The Gold standard today in antimalware scanners

:Security programs:

One of the questions I am asked all the time is "What programs do you use" I have at this time 4 computers in my home and I have this setup on all 4 of them.


  • Microsoft Security Essentials - provides real-time protection for your home PC that guards against viruses, spyware, and other malicious software.
  • WinPatrol As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
  • Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is
    totally free but for real-time protection you will have to pay a small one-time fee. We used this to help clean your computer and recomend keeping it and using often. (I have upgraded to the paid version of MBAM and I am glad I did)

    Note** If you decide to install MSE you will need to uninstall your present Antivirus

:Security awareness:


It is good security practice to change your passwords to all your online accounts on a fairly regular basis, this is especially true after an infection. Refer to this Microsoft article
Strong passwords: How to create and use them Then consider a password keeper, to keep all your passwords safe. KeePass is a small utility that allows you to manage all your passwords.


The other question I am asked all the time is "How can I prevent this from happening again." and the short answer to that is to be aware of what is out there and how to start spotting dangers.

Here are some articles that are must reads and should be read by everybody in your household that uses the internet

internetsafety

Internet Safety for Kids

Here is some more reading for you from some of my colleges

PC Safety and Security - What Do I Need? from my friends at Tech Support Forum

COMPUTER SECURITY - a short guide to staying safer online from my friends at Malware Removal

quoted from Tech Support Forum

Conclusion

There is no such thing as ‘perfect security’. This applies to many things, not just computer systems. Using the above guide you should be able to take all the reasonable steps you can to prevent infection. However, the most important part of all this is you, the user. Surf sensibly and think before you download a file or click on a link. Take a few moments to assess the possible risks and you should be able to enjoy all the internet has to offer.


I'd be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can then be closed.

I Will Keep This Open For About Three Days, If Anything Comes Up - Just Come Back And Let Me Know, after that time you will have to send me a PM

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->Posted Image<-- Don't worry every little bit helps.

Gringo
  • 0

#30
lady2sylvia
Posted 11 April 2013 - 01:04 PM

lady2sylvia

    Member

  • Topic Starter
  • Member
  • PipPip
  • 50 posts
Hi Gringo - You are the man! I think we've done it, as so far everything seems to be running normally. I just did a quick scan with my Norton Internet Security and it isn't finding any trace of the Trojan (before your help, it was identifying the threat, but could only partially remove it.)

Thank you so much for your patience and help - you have been amazing! I will be in touch to let you know how I'm making out. Also, be sure to check your Paypal account in the next few days. :)

lady2sylvia
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP