Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

browser redirect


  • Please log in to reply
21 replies to this topic

#1 SadFlute

SadFlute

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 25 March 2012 - 10:13 PM

i am using ie9 in windows 7
lately my computer has been slow to load pages. Also i get redirected when i click the results of a web search

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:17 AM

Posted 26 March 2012 - 04:51 PM

Hello,

I will be helping you with your problems
Please do the following:

Step 1

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

----------------

Step 2

Please download Farbar Service Scanner to your Desktop and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

----------------

Step 3

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

----------------

Step 4

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to Update Malwarebytes'
    Anti-Malware
    and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 26 March 2012 - 07:04 PM

security check log




Results of screen317's Security Check version 0.99.32
Windows 7 x64 (UAC is disabled!)
Internet Explorer 9
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Norton Internet Security
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

Java™ 6 Update 26
Java version out of date!
Adobe Flash Player 10.0.2.54 Flash Player out of Date!
Adobe Reader 9 Adobe Reader out of date!
Mozilla Firefox (3.6.3) Firefox out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Norton ccSvcHst.exe
``````````End of Log````````````










farbar service scanner log




Farbar Service Scanner Version: 01-03-2012
Ran by Owner (administrator) on 26-03-2012 at 18:54:32
Running from "C:\Users\Owner\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****









minitoolbox log




MiniToolBox by Farbar Version: 18-01-2012
Ran by Owner (administrator) on 26-03-2012 at 18:56:45
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.http", "127.0.0.1"
"network.proxy.http_port", 50505
"network.proxy.type", 1

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































149.5.18.172 www.google-analytics.com.
149.5.18.172 ad-emea.doubleclick.net.
149.5.18.172 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Atheros 802.11 a/b/g/n Dualband Wireless Network Module = Wireless Network Connection (Hardware not present)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Alfred
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : westell.com

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : westell.com
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 90-E6-BA-3E-20-10
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::2d2c:765d:3992:1714%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.24(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, March 26, 2012 6:48:35 PM
Lease Expires . . . . . . . . . . : Tuesday, March 27, 2012 6:48:35 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 234890776
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-79-9A-50-90-E6-BA-3E-20-10
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.westell.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : westell.com
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1452:258e:b593:a9df(Preferred)
Link-local IPv6 Address . . . . . : fe80::1452:258e:b593:a9df%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Pinging google.com [72.14.204.113] with 32 bytes of data:
Reply from 72.14.204.113: bytes=32 time=124ms TTL=55
Reply from 72.14.204.113: bytes=32 time=38ms TTL=55

Ping statistics for 72.14.204.113:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 38ms, Maximum = 124ms, Average = 81ms

Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=120ms TTL=56
Reply from 209.191.122.70: bytes=32 time=127ms TTL=56

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 120ms, Maximum = 127ms, Average = 123ms

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...90 e6 ba 3e 20 10 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.24 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.24 276
192.168.1.24 255.255.255.255 On-link 192.168.1.24 276
192.168.1.255 255.255.255.255 On-link 192.168.1.24 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.24 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.24 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:1452:258e:b593:a9df/128
On-link
10 276 fe80::/64 On-link
13 306 fe80::/64 On-link
13 306 fe80::1452:258e:b593:a9df/128
On-link
10 276 fe80::2d2c:765d:3992:1714/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog5 08 mswsock.dll [File Not found] ()
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog5 08 mswsock.dll [File Not found] ()
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/26/2012 06:13:36 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Installing the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/26/2012 06:13:36 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unable to update the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the error code.

Error: (03/26/2012 06:13:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/26/2012 06:13:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unable to update the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the error code.

Error: (03/26/2012 01:40:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x517a6747
Faulting process id: 0x167c
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (03/26/2012 01:12:41 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume FACTORY_IMAGE (D:) was not defragmented because an error was encountered: The parameter is incorrect. (0x80070057)

Error: (03/26/2012 01:12:40 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume FACTORY_IMAGE (D:) was not defragmented because an error was encountered: The parameter is incorrect. (0x80070057)

Error: (03/26/2012 00:27:04 AM) (Source: Application Error) (User: )
Description: Faulting application name: OUTLOOK.EXE, version: 12.0.6562.5003, time stamp: 0x4e2f99fb
Faulting module name: OUTLOOK.EXE, version: 12.0.6562.5003, time stamp: 0x4e2f99fb
Exception code: 0xc0000005
Fault offset: 0x00007adc
Faulting process id: 0x1644
Faulting application start time: 0xOUTLOOK.EXE0
Faulting application path: OUTLOOK.EXE1
Faulting module path: OUTLOOK.EXE2
Report Id: OUTLOOK.EXE3

Error: (03/25/2012 11:05:13 PM) (Source: Application Error) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc3c5
Faulting module name: jscript9.dll, version: 9.0.8112.16441, time stamp: 0x4ee8124d
Exception code: 0xc0000005
Fault offset: 0x00066605
Faulting process id: 0x19e0
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (03/25/2012 09:47:17 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.


System errors:
=============
Error: (03/26/2012 06:48:36 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (03/26/2012 06:11:19 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/26/2012 06:11:18 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (03/26/2012 06:08:12 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
luafv

Error: (03/26/2012 06:07:00 PM) (Source: Service Control Manager) (User: )
Description: The Windows Live ID Sign-in Assistant service failed to start due to the following error:
%%1053

Error: (03/26/2012 06:07:00 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Live ID Sign-in Assistant service to connect.

Error: (03/26/2012 06:06:05 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service depends on the Windows Firewall Authorization Driver service which failed to start because of the following error:
%%183

Error: (03/26/2012 06:06:05 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall Authorization Driver service failed to start due to the following error:
%%183

Error: (03/25/2012 08:10:38 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (03/25/2012 08:08:54 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
luafv


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Activate Norton Online Backup (Version: 1.1.20.0)
Adobe Community Help (Version: 3.4.980)
Adobe Flash Player 10 Plugin (Version: 10.0.2.54)
Adobe Flash Player 10 Plugin (Version: 10.0.32.18)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.62)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Reader 9.4.7 (Version: 9.4.7)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
AIM 7
Akamai NetSession Interface
Akamai NetSession Interface Service
Amazon MP3 Downloader 1.0.9
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.3.1.3)
Apple Software Update (Version: 2.1.1.116)
ArcSoft PhotoImpression 5
ArcSoft VideoImpression 2
ArcSoft WebCam Companion 2
Bonjour (Version: 2.0.4.0)
CCleaner (Version: 3.16)
CDisplay 1.8
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
CyberLink DVD Suite Deluxe (Version: 6.0.3101)
D3DX10 (Version: 15.4.2368.0902)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
DivX Setup (Version: 2.6.1.5)
Download Updater (AOL LLC)
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
FileZilla Client 3.3.2.1 (Version: 3.3.2.1)
FL Studio 10
FLV Player 2.0 (build 25) (Version: 2.0 (build 25))
Google Chrome (Version: 17.0.963.83)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.99)
Hardware Diagnostic Tools (Version: 6.0.5434.08)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
Homepage Protection (Version: )
HP Advisor (Version: 3.3.12286.3436)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.0.71)
HP MediaSmart Demo (Version: 1.00.0000)
HP MediaSmart DVD (Version: 3.0.3420)
HP MediaSmart Movie Themes (Version: 3.0.3102)
HP MediaSmart Music/Photo/Video (Version: 3.1.3601)
HP MediaSmart SmartMenu (Version: 3.0.28.2)
HP Odometer (Version: 2.10.0000)
HP Remote Solution (Version: 1.1.9.0)
HP Setup (Version: 1.2.3220.3079)
HP Support Assistant (Version: 6.1.12.1)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.001.000.014)
ID3-TagIT 3 (Version: 3)
IL Download Manager
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2226)
iTunes (Version: 10.1.2.17)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
LabelPrint (Version: 2.5.1901)
LightScribe System Software (Version: 1.18.5.1)
LimeWire PRO 5.4.6 (Version: 5.4.6)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Home and Student 60 day trial
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook 2007 Trial (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MotoHelper 2.0.40 Driver 4.8.0 (Version: 2.0.40)
MotoHelper MergeModules (Version: 1.2.0)
MOTOROLA MEDIA LINK (Version: 1.2.5900.9)
Motorola Mobile Drivers Installation 4.9.0 (Version: 4.9.0)
Move Media Player
Mozilla Firefox (3.6.15) (Version: 3.6.15 (en-US))
Mozilla Firefox (3.6.16) (Version: 3.6.16 (en-US))
Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Netflix in Windows Media Center (Version: 3.3.101.0)
Norton Internet Security (Version: 16.8.3.6)
Norton Security Scan (Version: 2.7.3.34)
Photopos Toolbar (Remove Toolbar Only)
PictureMover (Version: 3.3.1.19)
Power2Go (Version: 6.0.3101)
PowerDirector (Version: 7.0.3101)
PowerRecover (Version: 5.5.1923)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.6196)
Safari (Version: 5.33.19.4)
Skype™ 5.0 (Version: 5.0.152)
Sprite Backup HTC (Version: 6.2.1.2269)
Tag&Rename 3.5.4 (Version: 3.5.4)
TextPad 5 (Version: 5.2.0)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2597998) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Script Editor Help (KB963671)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Verizon Download Manager (Version: 12)
Verizon High Speed Internet
Virtual DJ - Atomix Productions
Vuze (Version: 4.7)
WavePad Sound Editor
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Windows Mobile® Device Handbook (Version: 1.0)
WinRAR archiver
Yontoo Layers Runtime 1.10.01 (Version: 1.10.01)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Devices: ================================

Name: Atheros 802.11 a/b/g/n Dualband Wireless Network Module
Description: Atheros 802.11 a/b/g/n Dualband Wireless Network Module
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Windows Firewall Authorization Driver
Description: Windows Firewall Authorization Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mpsdrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 8157.18 MB
Available physical RAM: 5144.5 MB
Total Pagefile: 16312.55 MB
Available Pagefile: 13121.03 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.52 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:686.69 GB) (Free:283.09 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.83 GB) (Free:2.14 GB) NTFS

========================= Users: ========================================

User accounts for \\ALFRED

Administrator Guest Owner

========================= Minidump Files ==================================

No minidump file found

**** End of log ****










mbam log




Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.26.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Owner :: ALFRED [administrator]

3/26/2012 6:59:01 PM
mbam-log-2012-03-26 (18-59-01).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 207364
Time elapsed: 5 minute(s), 42 second(s)

Memory Processes Detected: 4
C:\ProgramData\XCMsXSJotCWrp.exe (Trojan.Agent) -> 2228 -> Delete on reboot.
C:\ProgramData\bYXmuYDuwsvN.exe (Trojan.Agent) -> 2236 -> Delete on reboot.
C:\Windows\svchost.exe (Trojan.Agent) -> 992 -> Delete on reboot.
C:\Users\Owner\AppData\Roaming\Zuiked\ukiheg.exe (Trojan.ZbotR.Gen) -> 2100 -> Delete on reboot.

Memory Modules Detected: 3
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Adobe\sp.DLL (TrojanProxy.Agent) -> Delete on reboot.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\sp.DLL (TrojanProxy.Agent) -> Delete on reboot.
C:\Users\Owner\AppData\Roaming\7AB25\7AB25\klzgc.dll (Trojan.Agent.GMAGen) -> Delete on reboot.

Registry Keys Detected: 4
HKCR\CLSID\{96AFBE69-C3B0-4b00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKCR\sp (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\sp (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKLM\System\CurrentControlSet\Services\SPService (TrojanProxy.Agent) -> Quarantined and deleted successfully.

Registry Values Detected: 9
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|XCMsXSJotCWrp.exe (Trojan.Agent) -> Data: C:\ProgramData\XCMsXSJotCWrp.exe -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|bYXmuYDuwsvN.exe (Trojan.Agent) -> Data: C:\ProgramData\bYXmuYDuwsvN.exe -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved|{96AFBE69-C3B0-4B00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Data: sp -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{96AFBE69-C3B0-4b00-8578-D933D2896EE2} (TrojanProxy.Agent) -> Data: -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Update (Trojan.Agent.GMAGen) -> Data: rundll32.exe "C:\Users\Owner\AppData\Roaming\7AB25\7AB25\klzgc.dll",DllRegisterServer -> Quarantined and deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Update (Trojan.Agent.GMAGen) -> Data: rundll32.exe "C:\Users\Owner\AppData\Roaming\7AB25\7AB25\klzgc.dll",DllRegisterServer -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|{99D01932-AD6C-8108-5BD8-195323CF6317} (Trojan.ZbotR.Gen) -> Data: C:\Users\Owner\AppData\Roaming\Zuiked\ukiheg.exe -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost|netsvc (TrojanProxy.Agent) -> Data: SPService^o^ -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.QHost.BG) -> Data: C:\Windows\system32\config\systemprofile\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr (PUM.Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 10
C:\ProgramData\XCMsXSJotCWrp.exe (Trojan.Agent) -> Delete on reboot.
C:\ProgramData\bYXmuYDuwsvN.exe (Trojan.Agent) -> Delete on reboot.
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Adobe\sp.DLL (TrojanProxy.Agent) -> Delete on reboot.
C:\Windows\Temp\nscB108.tmp\oexuquj.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\Temp\nscB108.tmp\vubjh.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Windows\svchost.exe (Trojan.Agent) -> Delete on reboot.
C:\Windows\System32\config\systemprofile\AppData\Roaming\Adobe\sp.DLL (TrojanProxy.Agent) -> Delete on reboot.
C:\Users\Owner\AppData\Local\Temp\0.13915426675029297 (Exploit.Drop.9) -> Quarantined and deleted successfully.
C:\Users\Owner\AppData\Roaming\7AB25\7AB25\klzgc.dll (Trojan.Agent.GMAGen) -> Delete on reboot.
C:\Users\Owner\AppData\Roaming\Zuiked\ukiheg.exe (Trojan.ZbotR.Gen) -> Delete on reboot.

(end)

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:17 AM

Posted 27 March 2012 - 03:49 PM

Hi SadFlute,

IMPORTANT NOTE: One or more of the identified infections is a backdoor Trojan.

Backdoor Trojans, Botnets, and IRCBots are very dangerous because they compromise system integrity by making changes that allow it to be used by the attacker for malicious purposes. They can disable your anti-virus and security tools to prevent detection and removal. Remote attackers use backdoors as a means of accessing and taking control of a computer that bypasses security mechanisms. This type of exploit allows them to steal sensitive information like passwords, personal and financial data which is then sent back to the hacker. Read Danger: Remote Access Trojans.

You should disconnect the computer from the Internet and from any networked computers until it is cleaned. If your computer was used for online banking, paying bills, has credit card information or other sensitive data on it, all passwords should be changed immediately to include those used for taxes, email, eBay, paypal and any other online activities. You should consider them to be compromised and change passwords from a clean computer, not the infected one. If not, an attacker may get the new passwords and transaction information. Banking and credit card institutions should be notified immediately of the possible security breach. Failure to notify your financial institution and local law enforcement can result in refusal to reimburse funds lost due to fraud or similar criminal activity. If using a router, you need to reset it with a strong logon/password before connecting again.

Although the infection has been identified and may be removed, your machine has likely been compromised and there is no way to be sure the computer can ever be trusted again. It is dangerous and incorrect to assume the computer is secure even if the malware appears to have been removed. In some instances an infection may have caused so much damage to your system that it cannot be successfully cleaned or repaired. The malware may leave so many remnants behind that security tools cannot find them. Many experts in the security community believe that once infected with this type of malware, the best course of action is to wipe the drive clean, reformat and reinstall the OS. Please read:

Whenever a system has been compromised by a backdoor payload, it is impossible to know if or how much the backdoor has been used to affect your system...There are only a few ways to return a compromised system to a confident security configuration. These include:
• Reimaging the system
• Restoring the entire system using a full system backup from before the backdoor infection
• Reformatting and reinstalling the system

Backdoors and What They Mean to You

This is what Jesper M. Johansson, Security Program Manager at Microsoft TechNet has to say:
Help: I Got Hacked. Now What Do I Do?.

The only way to clean a compromised system is to flatten and rebuild. That's right. If you have a system that has been completely compromised, the only thing you can do is to flatten the system (reformat the system disk) and rebuild it from scratch (reinstall Windows and your applications).


We will do our best to clean the computer of any infections seen on the log.
However, because of the nature of this Trojan, I cannot offer a total
guarantee that there are no remnants left in the system, or that the
computer will be trustworthy.

Many security experts believe that once infected with this type of Trojan,
the best course of action is to reformat and reinstall the Operating System.
Making this decision is based on what the computer is used for, and what
information can be accessed from it.

Knowing the above, please let me know if you wish to proceed with cleaning the malware from the computer?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 28 March 2012 - 06:53 AM

yes i want to proceed with cleaning

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:17 AM

Posted 29 March 2012 - 07:06 PM

Hi SadFlute,

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 30 March 2012 - 04:56 AM

05:49:04.0549 5384 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
05:49:05.0010 5384 ============================================================
05:49:05.0010 5384 Current date / time: 2012/03/30 05:49:05.0010
05:49:05.0010 5384 SystemInfo:
05:49:05.0010 5384
05:49:05.0010 5384 OS Version: 6.1.7601 ServicePack: 1.0
05:49:05.0010 5384 Product type: Workstation
05:49:05.0010 5384 ComputerName: ALFRED
05:49:05.0010 5384 UserName: Owner
05:49:05.0010 5384 Windows directory: C:\Windows
05:49:05.0010 5384 System windows directory: C:\Windows
05:49:05.0010 5384 Running under WOW64
05:49:05.0010 5384 Processor architecture: Intel x64
05:49:05.0010 5384 Number of processors: 4
05:49:05.0010 5384 Page size: 0x1000
05:49:05.0011 5384 Boot type: Normal boot
05:49:05.0011 5384 ============================================================
05:49:06.0328 5384 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
05:49:06.0345 5384 \Device\Harddisk0\DR0:
05:49:06.0345 5384 MBR used
05:49:06.0345 5384 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
05:49:06.0345 5384 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x55D63800
05:49:06.0345 5384 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x55D96000, BlocksNum 0x17AF800
05:49:06.0414 5384 Initialize success
05:49:06.0414 5384 ============================================================
05:49:42.0850 2788 ============================================================
05:49:42.0851 2788 Scan started
05:49:42.0851 2788 Mode: Manual;
05:49:42.0851 2788 ============================================================
05:49:49.0463 2788 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
05:49:49.0467 2788 1394ohci - ok
05:49:49.0606 2788 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
05:49:49.0609 2788 ACDaemon - ok
05:49:49.0684 2788 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
05:49:49.0688 2788 ACPI - ok
05:49:49.0845 2788 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
05:49:49.0858 2788 AcpiPmi - ok
05:49:49.0918 2788 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
05:49:49.0919 2788 adfs - ok
05:49:50.0073 2788 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
05:49:50.0088 2788 adp94xx - ok
05:49:50.0381 2788 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
05:49:50.0385 2788 adpahci - ok
05:49:50.0406 2788 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
05:49:50.0410 2788 adpu320 - ok
05:49:50.0436 2788 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
05:49:50.0437 2788 AeLookupSvc - ok
05:49:50.0523 2788 Afc (6ccd1135320109d6b219f1a6e04ad9f6) C:\Windows\syswow64\drivers\Afc.sys
05:49:50.0524 2788 Afc - ok
05:49:50.0573 2788 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
05:49:50.0579 2788 AFD - ok
05:49:50.0596 2788 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
05:49:50.0599 2788 agp440 - ok
05:49:50.0766 2788 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll
05:49:50.0766 2788 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
05:49:50.0773 2788 Akamai ( HiddenFile.Multi.Generic ) - warning
05:49:50.0773 2788 Akamai - detected HiddenFile.Multi.Generic (1)
05:49:50.0799 2788 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
05:49:50.0800 2788 ALG - ok
05:49:50.0825 2788 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
05:49:50.0826 2788 aliide - ok
05:49:50.0849 2788 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
05:49:50.0850 2788 amdide - ok
05:49:50.0868 2788 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
05:49:50.0869 2788 AmdK8 - ok
05:49:50.0887 2788 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
05:49:50.0888 2788 AmdPPM - ok
05:49:50.0916 2788 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
05:49:50.0918 2788 amdsata - ok
05:49:50.0936 2788 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
05:49:50.0939 2788 amdsbs - ok
05:49:50.0964 2788 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
05:49:50.0964 2788 amdxata - ok
05:49:50.0997 2788 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
05:49:50.0999 2788 AppID - ok
05:49:51.0021 2788 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
05:49:51.0023 2788 AppIDSvc - ok
05:49:51.0060 2788 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
05:49:51.0061 2788 Appinfo - ok
05:49:51.0120 2788 Apple Mobile Device (5aa788d5a2c6737bb9c45933985bc1b8) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
05:49:51.0121 2788 Apple Mobile Device - ok
05:49:51.0160 2788 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
05:49:51.0161 2788 arc - ok
05:49:51.0179 2788 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
05:49:51.0181 2788 arcsas - ok
05:49:51.0217 2788 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
05:49:51.0218 2788 AsyncMac - ok
05:49:51.0239 2788 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
05:49:51.0239 2788 atapi - ok
05:49:51.0281 2788 athr (7d89b0c443f6068e5b27aa3b972069ff) C:\Windows\system32\DRIVERS\athrx.sys
05:49:51.0307 2788 athr - ok
05:49:51.0388 2788 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
05:49:51.0395 2788 AudioEndpointBuilder - ok
05:49:51.0405 2788 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
05:49:51.0408 2788 AudioSrv - ok
05:49:51.0453 2788 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
05:49:51.0455 2788 AxInstSV - ok
05:49:51.0488 2788 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
05:49:51.0494 2788 b06bdrv - ok
05:49:51.0524 2788 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
05:49:51.0527 2788 b57nd60a - ok
05:49:51.0602 2788 BasicScan Service (14de3145ac70b0dd665312d2ebc50c02) C:\Program Files (x86)\BasicScan\basicscan.exe
05:49:51.0603 2788 BasicScan Service - ok
05:49:51.0628 2788 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
05:49:51.0630 2788 BDESVC - ok
05:49:51.0653 2788 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
05:49:51.0654 2788 Beep - ok
05:49:51.0683 2788 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
05:49:51.0691 2788 BFE - ok
05:49:51.0763 2788 BHDrvx64 (4d7f8401eae7eaa4ef702fa6f4153269) C:\Windows\System32\Drivers\NISx64\1008030.006\BHDrvx64.sys
05:49:51.0765 2788 BHDrvx64 - ok
05:49:51.0800 2788 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
05:49:51.0809 2788 BITS - ok
05:49:51.0838 2788 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
05:49:51.0840 2788 blbdrive - ok
05:49:51.0895 2788 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
05:49:51.0899 2788 Bonjour Service - ok
05:49:51.0933 2788 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
05:49:51.0935 2788 bowser - ok
05:49:51.0961 2788 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
05:49:51.0962 2788 BrFiltLo - ok
05:49:52.0202 2788 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
05:49:52.0203 2788 BrFiltUp - ok
05:49:52.0233 2788 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
05:49:52.0235 2788 Browser - ok
05:49:52.0259 2788 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
05:49:52.0263 2788 Brserid - ok
05:49:52.0278 2788 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
05:49:52.0280 2788 BrSerWdm - ok
05:49:52.0296 2788 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
05:49:52.0297 2788 BrUsbMdm - ok
05:49:52.0310 2788 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
05:49:52.0311 2788 BrUsbSer - ok
05:49:52.0332 2788 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys
05:49:52.0333 2788 BTCFilterService - ok
05:49:52.0355 2788 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
05:49:52.0377 2788 BTHMODEM - ok
05:49:52.0421 2788 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
05:49:52.0423 2788 bthserv - ok
05:49:52.0512 2788 ccHP (a2e6ab452b9393ca8d11d28827e0e1a1) C:\Windows\System32\Drivers\NISx64\1008030.006\ccHPx64.sys
05:49:52.0515 2788 ccHP - ok
05:49:52.0537 2788 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
05:49:52.0539 2788 cdfs - ok
05:49:52.0566 2788 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
05:49:52.0568 2788 cdrom - ok
05:49:52.0601 2788 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
05:49:52.0604 2788 CertPropSvc - ok
05:49:52.0622 2788 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
05:49:52.0623 2788 circlass - ok
05:49:52.0650 2788 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
05:49:52.0656 2788 CLFS - ok
05:49:52.0702 2788 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
05:49:52.0703 2788 clr_optimization_v2.0.50727_32 - ok
05:49:52.0735 2788 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
05:49:52.0738 2788 clr_optimization_v2.0.50727_64 - ok
05:49:52.0820 2788 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
05:49:52.0823 2788 clr_optimization_v4.0.30319_32 - ok
05:49:52.0838 2788 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
05:49:52.0842 2788 clr_optimization_v4.0.30319_64 - ok
05:49:52.0865 2788 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
05:49:52.0866 2788 CmBatt - ok
05:49:52.0886 2788 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
05:49:52.0887 2788 cmdide - ok
05:49:52.0930 2788 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
05:49:52.0935 2788 CNG - ok
05:49:52.0957 2788 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
05:49:52.0959 2788 Compbatt - ok
05:49:52.0981 2788 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
05:49:52.0982 2788 CompositeBus - ok
05:49:52.0989 2788 COMSysApp - ok
05:49:53.0009 2788 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
05:49:53.0010 2788 crcdisk - ok
05:49:53.0042 2788 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
05:49:53.0044 2788 CryptSvc - ok
05:49:53.0091 2788 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
05:49:53.0097 2788 DcomLaunch - ok
05:49:53.0133 2788 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
05:49:53.0137 2788 defragsvc - ok
05:49:53.0245 2788 DeviceMonitorService (893a82d118833a850459dd470ffa48d9) C:\Program Files (x86)\Motorola Media Link\NServiceEntry.exe
05:49:53.0250 2788 DeviceMonitorService - ok
05:49:53.0288 2788 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
05:49:53.0291 2788 DfsC - ok
05:49:53.0306 2788 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
05:49:53.0310 2788 Dhcp - ok
05:49:53.0336 2788 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
05:49:53.0337 2788 discache - ok
05:49:53.0371 2788 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
05:49:53.0373 2788 Disk - ok
05:49:53.0406 2788 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
05:49:53.0409 2788 Dnscache - ok
05:49:53.0436 2788 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
05:49:53.0439 2788 dot3svc - ok
05:49:53.0465 2788 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
05:49:53.0467 2788 DPS - ok
05:49:53.0499 2788 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
05:49:53.0500 2788 drmkaud - ok
05:49:53.0534 2788 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
05:49:53.0540 2788 DXGKrnl - ok
05:49:53.0573 2788 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
05:49:53.0576 2788 EapHost - ok
05:49:53.0654 2788 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
05:49:53.0716 2788 ebdrv - ok
05:49:53.0810 2788 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
05:49:53.0813 2788 eeCtrl - ok
05:49:53.0848 2788 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
05:49:53.0850 2788 EFS - ok
05:49:53.0894 2788 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
05:49:53.0902 2788 ehRecvr - ok
05:49:53.0923 2788 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
05:49:53.0925 2788 ehSched - ok
05:49:53.0990 2788 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
05:49:53.0997 2788 elxstor - ok
05:49:54.0059 2788 EraserUtilRebootDrv (12866876e3851f1e5d462b2a83e25578) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
05:49:54.0060 2788 EraserUtilRebootDrv - ok
05:49:54.0077 2788 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
05:49:54.0079 2788 ErrDev - ok
05:49:54.0124 2788 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
05:49:54.0135 2788 EventSystem - ok
05:49:54.0169 2788 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
05:49:54.0172 2788 exfat - ok
05:49:54.0191 2788 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
05:49:54.0194 2788 fastfat - ok
05:49:54.0248 2788 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
05:49:54.0265 2788 Fax - ok
05:49:54.0292 2788 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
05:49:54.0316 2788 fdc - ok
05:49:54.0358 2788 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
05:49:54.0360 2788 fdPHost - ok
05:49:54.0380 2788 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
05:49:54.0382 2788 FDResPub - ok
05:49:54.0412 2788 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
05:49:54.0423 2788 FileInfo - ok
05:49:54.0444 2788 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
05:49:54.0446 2788 Filetrace - ok
05:49:54.0473 2788 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
05:49:54.0480 2788 flpydisk - ok
05:49:54.0517 2788 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
05:49:54.0520 2788 FltMgr - ok
05:49:54.0559 2788 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
05:49:54.0578 2788 FontCache - ok
05:49:54.0687 2788 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
05:49:54.0688 2788 FontCache3.0.0.0 - ok
05:49:54.0867 2788 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
05:49:54.0877 2788 FsDepends - ok
05:49:54.0928 2788 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
05:49:54.0928 2788 Fs_Rec - ok
05:49:54.0965 2788 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
05:49:54.0967 2788 fvevol - ok
05:49:55.0009 2788 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
05:49:55.0011 2788 gagp30kx - ok
05:49:55.0070 2788 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
05:49:55.0072 2788 GamesAppService - ok
05:49:55.0097 2788 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
05:49:55.0097 2788 GEARAspiWDM - ok
05:49:55.0147 2788 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
05:49:55.0155 2788 gpsvc - ok
05:49:55.0258 2788 gupdate1ca916fda31697a (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:49:55.0267 2788 gupdate1ca916fda31697a - ok
05:49:55.0295 2788 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
05:49:55.0296 2788 gupdatem - ok
05:49:55.0310 2788 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
05:49:55.0312 2788 hcw85cir - ok
05:49:55.0344 2788 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
05:49:55.0346 2788 HDAudBus - ok
05:49:55.0367 2788 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
05:49:55.0369 2788 HidBatt - ok
05:49:55.0388 2788 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
05:49:55.0389 2788 HidBth - ok
05:49:55.0414 2788 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
05:49:55.0415 2788 HidIr - ok
05:49:55.0444 2788 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
05:49:55.0446 2788 hidserv - ok
05:49:55.0482 2788 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
05:49:55.0484 2788 HidUsb - ok
05:49:55.0522 2788 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
05:49:55.0540 2788 hkmsvc - ok
05:49:55.0566 2788 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
05:49:55.0570 2788 HomeGroupListener - ok
05:49:55.0615 2788 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
05:49:55.0625 2788 HomeGroupProvider - ok
05:49:55.0740 2788 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
05:49:55.0741 2788 HP Support Assistant Service - ok
05:49:55.0805 2788 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
05:49:55.0808 2788 HPDrvMntSvc.exe - ok
05:49:55.0850 2788 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
05:49:55.0858 2788 hpqwmiex - ok
05:49:55.0884 2788 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
05:49:55.0885 2788 HpSAMD - ok
05:49:56.0012 2788 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
05:49:56.0021 2788 HTTP - ok
05:49:56.0068 2788 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
05:49:56.0068 2788 hwpolicy - ok
05:49:56.0127 2788 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
05:49:56.0131 2788 i8042prt - ok
05:49:56.0181 2788 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
05:49:56.0191 2788 iaStorV - ok
05:49:56.0378 2788 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
05:49:56.0419 2788 idsvc - ok
05:49:56.0552 2788 IDSVia64 (9a793a1451b5e2cf54b4a33342cb58cf) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20100128.002\IDSvia64.sys
05:49:56.0555 2788 IDSVia64 - ok
05:49:57.0276 2788 igfx (d926f1c76a78a69a154187ceb487e863) C:\Windows\system32\DRIVERS\igdkmd64.sys
05:49:57.0447 2788 igfx - ok
05:49:57.0522 2788 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
05:49:57.0524 2788 iirsp - ok
05:49:57.0560 2788 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
05:49:57.0569 2788 IKEEXT - ok
05:49:57.0640 2788 IntcAzAudAddService (3c4b4ee54febb09f7e9f58776de96dca) C:\Windows\system32\drivers\RTKVHD64.sys
05:49:57.0655 2788 IntcAzAudAddService - ok
05:49:57.0700 2788 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
05:49:57.0701 2788 intelide - ok
05:49:57.0783 2788 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
05:49:57.0783 2788 intelppm - ok
05:49:57.0906 2788 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
05:49:57.0908 2788 IPBusEnum - ok
05:49:57.0951 2788 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
05:49:57.0954 2788 IpFilterDriver - ok
05:49:57.0996 2788 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
05:49:58.0027 2788 iphlpsvc - ok
05:49:58.0052 2788 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
05:49:58.0054 2788 IPMIDRV - ok
05:49:58.0089 2788 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
05:49:58.0091 2788 IPNAT - ok
05:49:58.0228 2788 iPod Service (3d62fe4fefe9c67dafec52b534dfa1fb) C:\Program Files\iPod\bin\iPodService.exe
05:49:58.0253 2788 iPod Service - ok
05:49:58.0282 2788 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
05:49:58.0284 2788 IRENUM - ok
05:49:58.0297 2788 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
05:49:58.0299 2788 isapnp - ok
05:49:58.0323 2788 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
05:49:58.0326 2788 iScsiPrt - ok
05:49:58.0356 2788 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
05:49:58.0357 2788 kbdclass - ok
05:49:58.0413 2788 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
05:49:58.0414 2788 kbdhid - ok
05:49:58.0443 2788 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
05:49:58.0445 2788 KeyIso - ok
05:49:58.0493 2788 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
05:49:58.0500 2788 KSecDD - ok
05:49:58.0519 2788 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
05:49:58.0522 2788 KSecPkg - ok
05:49:58.0539 2788 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
05:49:58.0541 2788 ksthunk - ok
05:49:58.0573 2788 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
05:49:58.0580 2788 KtmRm - ok
05:49:58.0632 2788 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
05:49:58.0636 2788 LanmanServer - ok
05:49:58.0689 2788 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
05:49:58.0694 2788 LanmanWorkstation - ok
05:49:58.0753 2788 LightScribeService (108333981c841eb0ff198aa5dfcf3d3b) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
05:49:58.0756 2788 LightScribeService - ok
05:49:58.0798 2788 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
05:49:58.0800 2788 lltdio - ok
05:49:58.0820 2788 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
05:49:58.0824 2788 lltdsvc - ok
05:49:58.0836 2788 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
05:49:58.0838 2788 lmhosts - ok
05:49:58.0917 2788 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
05:49:58.0920 2788 LSI_FC - ok
05:49:58.0957 2788 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
05:49:58.0959 2788 LSI_SAS - ok
05:49:58.0979 2788 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
05:49:58.0982 2788 LSI_SAS2 - ok
05:49:59.0008 2788 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
05:49:59.0011 2788 LSI_SCSI - ok
05:49:59.0049 2788 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
05:49:59.0051 2788 luafv - ok
05:49:59.0137 2788 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
05:49:59.0186 2788 Mcx2Svc - ok
05:49:59.0221 2788 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
05:49:59.0223 2788 megasas - ok
05:49:59.0286 2788 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
05:49:59.0289 2788 MegaSR - ok
05:49:59.0944 2788 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
05:49:59.0961 2788 MMCSS - ok
05:50:00.0284 2788 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
05:50:00.0286 2788 Modem - ok
05:50:00.0327 2788 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
05:50:00.0328 2788 monitor - ok
05:50:00.0359 2788 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys
05:50:00.0366 2788 motandroidusb - ok
05:50:00.0449 2788 motccgp (5d1080dbd8ec5f2d6e550e01398e17cf) C:\Windows\system32\DRIVERS\motccgp.sys
05:50:00.0451 2788 motccgp - ok
05:50:00.0534 2788 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
05:50:00.0535 2788 motccgpfl - ok
05:50:00.0623 2788 motmodem (6cbc0f4005593c96c9aecad39f0690fc) C:\Windows\system32\DRIVERS\motmodem.sys
05:50:00.0625 2788 motmodem - ok
05:50:00.0797 2788 MotoHelper (705568b735847b3304f9602834def733) C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
05:50:00.0800 2788 MotoHelper - ok
05:50:00.0835 2788 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
05:50:00.0840 2788 MotoSwitchService - ok
05:50:01.0077 2788 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys
05:50:01.0100 2788 Motousbnet - ok
05:50:01.0115 2788 motusbdevice - ok
05:50:01.0140 2788 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
05:50:01.0141 2788 mouclass - ok
05:50:01.0169 2788 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
05:50:01.0171 2788 mouhid - ok
05:50:01.0202 2788 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
05:50:01.0203 2788 mountmgr - ok
05:50:01.0219 2788 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
05:50:01.0221 2788 mpio - ok
05:50:01.0237 2788 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
05:50:01.0239 2788 mpsdrv - ok
05:50:01.0278 2788 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
05:50:01.0296 2788 MpsSvc - ok
05:50:01.0320 2788 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
05:50:01.0323 2788 MRxDAV - ok
05:50:01.0348 2788 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
05:50:01.0350 2788 mrxsmb - ok
05:50:01.0379 2788 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
05:50:01.0383 2788 mrxsmb10 - ok
05:50:01.0404 2788 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
05:50:01.0408 2788 mrxsmb20 - ok
05:50:01.0513 2788 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
05:50:01.0516 2788 msahci - ok
05:50:01.0539 2788 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
05:50:01.0542 2788 msdsm - ok
05:50:01.0576 2788 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
05:50:01.0579 2788 MSDTC - ok
05:50:01.0600 2788 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
05:50:01.0607 2788 Msfs - ok
05:50:01.0641 2788 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
05:50:01.0642 2788 mshidkmdf - ok
05:50:01.0661 2788 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
05:50:01.0662 2788 msisadrv - ok
05:50:01.0694 2788 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
05:50:01.0697 2788 MSiSCSI - ok
05:50:01.0705 2788 msiserver - ok
05:50:01.0783 2788 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
05:50:01.0792 2788 MSKSSRV - ok
05:50:01.0843 2788 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
05:50:01.0845 2788 MSPCLOCK - ok
05:50:01.0857 2788 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
05:50:01.0860 2788 MSPQM - ok
05:50:01.0900 2788 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
05:50:01.0905 2788 MsRPC - ok
05:50:01.0926 2788 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
05:50:01.0927 2788 mssmbios - ok
05:50:01.0944 2788 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
05:50:01.0946 2788 MSTEE - ok
05:50:01.0963 2788 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
05:50:01.0965 2788 MTConfig - ok
05:50:01.0990 2788 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
05:50:01.0990 2788 Mup - ok
05:50:02.0029 2788 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
05:50:02.0036 2788 napagent - ok
05:50:02.0094 2788 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
05:50:02.0099 2788 NativeWifiP - ok
05:50:02.0182 2788 NAVENG - ok
05:50:02.0193 2788 NAVEX15 - ok
05:50:02.0284 2788 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
05:50:02.0296 2788 NDIS - ok
05:50:02.0316 2788 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
05:50:02.0318 2788 NdisCap - ok
05:50:02.0346 2788 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
05:50:02.0355 2788 NdisTapi - ok
05:50:02.0388 2788 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
05:50:02.0398 2788 Ndisuio - ok
05:50:02.0431 2788 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
05:50:02.0433 2788 NdisWan - ok
05:50:02.0458 2788 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
05:50:02.0460 2788 NDProxy - ok
05:50:02.0479 2788 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
05:50:02.0481 2788 NetBIOS - ok
05:50:02.0504 2788 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
05:50:02.0507 2788 NetBT - ok
05:50:02.0528 2788 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
05:50:02.0530 2788 Netlogon - ok
05:50:02.0559 2788 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
05:50:02.0575 2788 Netman - ok
05:50:02.0602 2788 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
05:50:02.0608 2788 netprofm - ok
05:50:02.0702 2788 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
05:50:02.0705 2788 NetTcpPortSharing - ok
05:50:02.0746 2788 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
05:50:02.0748 2788 nfrd960 - ok
05:50:02.0778 2788 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
05:50:02.0782 2788 NlaSvc - ok
05:50:02.0861 2788 Norton Internet Security (64c89db40949fd0e7c8ff303676a91f1) C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
05:50:02.0864 2788 Norton Internet Security - ok
05:50:02.0881 2788 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
05:50:02.0883 2788 Npfs - ok
05:50:02.0909 2788 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
05:50:02.0913 2788 nsi - ok
05:50:02.0935 2788 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
05:50:02.0937 2788 nsiproxy - ok
05:50:02.0990 2788 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
05:50:03.0022 2788 Ntfs - ok
05:50:03.0038 2788 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
05:50:03.0040 2788 Null - ok
05:50:03.0074 2788 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
05:50:03.0076 2788 nvraid - ok
05:50:03.0104 2788 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
05:50:03.0106 2788 nvstor - ok
05:50:03.0134 2788 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
05:50:03.0142 2788 nv_agp - ok
05:50:03.0254 2788 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
05:50:03.0260 2788 odserv - ok
05:50:03.0288 2788 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
05:50:03.0291 2788 ohci1394 - ok
05:50:03.0332 2788 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
05:50:03.0335 2788 ose - ok
05:50:03.0376 2788 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
05:50:03.0380 2788 p2pimsvc - ok
05:50:03.0404 2788 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
05:50:03.0421 2788 p2psvc - ok
05:50:03.0448 2788 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
05:50:03.0451 2788 Parport - ok
05:50:03.0487 2788 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
05:50:03.0496 2788 partmgr - ok
05:50:03.0513 2788 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
05:50:03.0517 2788 PcaSvc - ok
05:50:03.0537 2788 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
05:50:03.0539 2788 pci - ok
05:50:03.0559 2788 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
05:50:03.0561 2788 pciide - ok
05:50:03.0596 2788 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
05:50:03.0599 2788 pcmcia - ok
05:50:03.0637 2788 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
05:50:03.0637 2788 pcw - ok
05:50:03.0665 2788 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
05:50:03.0672 2788 PEAUTH - ok
05:50:03.0765 2788 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
05:50:03.0776 2788 PerfHost - ok
05:50:04.0018 2788 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
05:50:04.0051 2788 pla - ok
05:50:04.0113 2788 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
05:50:04.0119 2788 PlugPlay - ok
05:50:04.0142 2788 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
05:50:04.0146 2788 PNRPAutoReg - ok
05:50:04.0167 2788 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
05:50:04.0170 2788 PNRPsvc - ok
05:50:04.0222 2788 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
05:50:04.0240 2788 PolicyAgent - ok
05:50:04.0276 2788 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
05:50:04.0280 2788 Power - ok
05:50:04.0322 2788 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
05:50:04.0331 2788 PptpMiniport - ok
05:50:04.0426 2788 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
05:50:04.0439 2788 Processor - ok
05:50:04.0468 2788 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
05:50:04.0471 2788 ProfSvc - ok
05:50:04.0495 2788 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
05:50:04.0497 2788 ProtectedStorage - ok
05:50:04.0549 2788 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
05:50:04.0563 2788 Psched - ok
05:50:04.0637 2788 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
05:50:04.0666 2788 ql2300 - ok
05:50:04.0688 2788 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
05:50:04.0691 2788 ql40xx - ok
05:50:04.0731 2788 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
05:50:04.0734 2788 QWAVE - ok
05:50:04.0757 2788 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
05:50:04.0759 2788 QWAVEdrv - ok
05:50:04.0831 2788 RapiMgr (a55e7d0d873b2c97585b3b5926ac6ade) C:\Windows\WindowsMobile\rapimgr.dll
05:50:04.0836 2788 RapiMgr - ok
05:50:04.0844 2788 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
05:50:04.0845 2788 RasAcd - ok
05:50:04.0870 2788 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
05:50:04.0873 2788 RasAgileVpn - ok
05:50:04.0887 2788 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
05:50:04.0891 2788 RasAuto - ok
05:50:04.0919 2788 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
05:50:04.0922 2788 Rasl2tp - ok
05:50:04.0956 2788 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
05:50:04.0969 2788 RasMan - ok
05:50:04.0986 2788 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
05:50:04.0988 2788 RasPppoe - ok
05:50:05.0007 2788 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
05:50:05.0009 2788 RasSstp - ok
05:50:05.0058 2788 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
05:50:05.0067 2788 rdbss - ok
05:50:05.0103 2788 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
05:50:05.0112 2788 rdpbus - ok
05:50:05.0130 2788 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
05:50:05.0132 2788 RDPCDD - ok
05:50:05.0162 2788 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
05:50:05.0165 2788 RDPENCDD - ok
05:50:05.0181 2788 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
05:50:05.0183 2788 RDPREFMP - ok
05:50:05.0211 2788 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
05:50:05.0214 2788 RDPWD - ok
05:50:05.0249 2788 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
05:50:05.0251 2788 rdyboost - ok
05:50:05.0273 2788 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
05:50:05.0276 2788 RemoteAccess - ok
05:50:05.0306 2788 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
05:50:05.0309 2788 RemoteRegistry - ok
05:50:05.0327 2788 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
05:50:05.0329 2788 RimUsb - ok
05:50:05.0355 2788 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
05:50:05.0358 2788 RpcEptMapper - ok
05:50:05.0374 2788 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
05:50:05.0377 2788 RpcLocator - ok
05:50:05.0411 2788 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
05:50:05.0416 2788 RpcSs - ok
05:50:05.0436 2788 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
05:50:05.0438 2788 rspndr - ok
05:50:05.0474 2788 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
05:50:05.0476 2788 RTL8167 - ok
05:50:05.0500 2788 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
05:50:05.0501 2788 SamSs - ok
05:50:05.0526 2788 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
05:50:05.0529 2788 sbp2port - ok
05:50:05.0544 2788 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
05:50:05.0555 2788 SCardSvr - ok
05:50:05.0576 2788 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
05:50:05.0579 2788 scfilter - ok
05:50:05.0656 2788 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
05:50:05.0679 2788 Schedule - ok
05:50:05.0713 2788 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
05:50:05.0714 2788 SCPolicySvc - ok
05:50:05.0966 2788 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
05:50:05.0971 2788 SDRSVC - ok
05:50:05.0990 2788 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
05:50:05.0992 2788 secdrv - ok
05:50:06.0014 2788 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
05:50:06.0018 2788 seclogon - ok
05:50:06.0036 2788 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
05:50:06.0040 2788 SENS - ok
05:50:06.0066 2788 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
05:50:06.0070 2788 SensrSvc - ok
05:50:06.0093 2788 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
05:50:06.0095 2788 Serenum - ok
05:50:06.0127 2788 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
05:50:06.0145 2788 Serial - ok
05:50:06.0179 2788 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
05:50:06.0184 2788 sermouse - ok
05:50:06.0252 2788 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
05:50:06.0256 2788 SessionEnv - ok
05:50:06.0272 2788 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
05:50:06.0274 2788 sffdisk - ok
05:50:06.0289 2788 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
05:50:06.0291 2788 sffp_mmc - ok
05:50:06.0306 2788 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
05:50:06.0308 2788 sffp_sd - ok
05:50:06.0325 2788 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
05:50:06.0327 2788 sfloppy - ok
05:50:06.0373 2788 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
05:50:06.0377 2788 SharedAccess - ok
05:50:06.0415 2788 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
05:50:06.0421 2788 ShellHWDetection - ok
05:50:06.0457 2788 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
05:50:06.0459 2788 SiSRaid2 - ok
05:50:06.0496 2788 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
05:50:06.0500 2788 SiSRaid4 - ok
05:50:06.0554 2788 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
05:50:06.0567 2788 Smb - ok
05:50:06.0648 2788 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
05:50:06.0663 2788 SNMPTRAP - ok
05:50:06.0711 2788 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
05:50:06.0711 2788 spldr - ok
05:50:06.0779 2788 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
05:50:06.0791 2788 Spooler - ok
05:50:06.0904 2788 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
05:50:06.0956 2788 sppsvc - ok
05:50:07.0025 2788 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
05:50:07.0029 2788 sppuinotify - ok
05:50:07.0121 2788 sprtsvc_verizondm - ok
05:50:07.0338 2788 SRTSP (9e399476e5d5e0d3c8822c857a7e9a9a) C:\Windows\System32\Drivers\NISx64\1008030.006\SRTSP64.SYS
05:50:07.0366 2788 SRTSP - ok
05:50:07.0400 2788 SRTSPX (3d7717b582f0365e75071556936e5a6b) C:\Windows\system32\drivers\NISx64\1008030.006\SRTSPX64.SYS
05:50:07.0400 2788 SRTSPX - ok
05:50:07.0484 2788 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
05:50:07.0504 2788 srv - ok
05:50:07.0544 2788 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
05:50:07.0549 2788 srv2 - ok
05:50:07.0562 2788 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
05:50:07.0565 2788 srvnet - ok
05:50:07.0609 2788 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
05:50:07.0613 2788 SSDPSRV - ok
05:50:07.0632 2788 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
05:50:07.0636 2788 SstpSvc - ok
05:50:07.0671 2788 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
05:50:07.0674 2788 stexstor - ok
05:50:07.0969 2788 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
05:50:08.0003 2788 stisvc - ok
05:50:08.0053 2788 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
05:50:08.0054 2788 swenum - ok
05:50:08.0131 2788 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
05:50:08.0138 2788 swprv - ok
05:50:08.0277 2788 SymEFA (4f87bb5389a93778ebc363b28271a65b) C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS
05:50:08.0295 2788 SymEFA - ok
05:50:08.0333 2788 SymEvent (7e4d281982e19abd06728c7ee9ac40a8) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
05:50:08.0334 2788 SymEvent - ok
05:50:08.0346 2788 SYMFW - ok
05:50:08.0379 2788 SymIM (212bbf5a964513980d5de9397381534f) C:\Windows\system32\DRIVERS\SymIMv.sys
05:50:08.0380 2788 SymIM - ok
05:50:08.0403 2788 SYMNDISV - ok
05:50:08.0457 2788 SYMTDI (33b37cb0a74f1f4b78a665ece9184095) C:\Windows\System32\Drivers\NISx64\1008030.006\SYMTDI.SYS
05:50:08.0458 2788 SYMTDI - ok
05:50:08.0520 2788 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
05:50:08.0557 2788 SysMain - ok
05:50:08.0577 2788 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
05:50:08.0582 2788 TabletInputService - ok
05:50:08.0608 2788 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
05:50:08.0616 2788 TapiSrv - ok
05:50:08.0645 2788 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
05:50:08.0647 2788 TBS - ok
05:50:08.0727 2788 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
05:50:08.0772 2788 Tcpip - ok
05:50:08.0807 2788 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
05:50:08.0818 2788 TCPIP6 - ok
05:50:08.0873 2788 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
05:50:08.0883 2788 tcpipreg - ok
05:50:08.0919 2788 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
05:50:08.0921 2788 TDPIPE - ok
05:50:08.0930 2788 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
05:50:08.0931 2788 TDTCP - ok
05:50:08.0954 2788 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
05:50:08.0956 2788 tdx - ok
05:50:08.0991 2788 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
05:50:08.0991 2788 TermDD - ok
05:50:09.0020 2788 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
05:50:09.0029 2788 TermService - ok
05:50:09.0067 2788 tgsrvc_verizondm - ok
05:50:09.0173 2788 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
05:50:09.0183 2788 Themes - ok
05:50:09.0209 2788 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
05:50:09.0210 2788 THREADORDER - ok
05:50:09.0223 2788 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
05:50:09.0227 2788 TrkWks - ok
05:50:09.0295 2788 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
05:50:09.0300 2788 TrustedInstaller - ok
05:50:09.0394 2788 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
05:50:09.0851 2788 tssecsrv - ok
05:50:10.0157 2788 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
05:50:10.0159 2788 TsUsbFlt - ok
05:50:10.0217 2788 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
05:50:10.0220 2788 tunnel - ok
05:50:10.0268 2788 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
05:50:10.0270 2788 uagp35 - ok
05:50:10.0476 2788 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
05:50:10.0481 2788 udfs - ok
05:50:10.0524 2788 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
05:50:10.0527 2788 UI0Detect - ok
05:50:10.0549 2788 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
05:50:10.0550 2788 uliagpkx - ok
05:50:10.0568 2788 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
05:50:10.0570 2788 umbus - ok
05:50:10.0603 2788 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
05:50:10.0614 2788 UmPass - ok
05:50:11.0483 2788 UpdaterService (885028c977162896724b78cfd77009ef) C:\ProgramData\UpdaterService\wsupdsvc.exe
05:50:11.0677 2788 UpdaterService - ok
05:50:11.0774 2788 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
05:50:11.0781 2788 upnphost - ok
05:50:11.0877 2788 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
05:50:11.0882 2788 USBAAPL64 - ok
05:50:11.0952 2788 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
05:50:11.0954 2788 usbaudio - ok
05:50:11.0975 2788 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
05:50:11.0977 2788 usbccgp - ok
05:50:12.0015 2788 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
05:50:12.0018 2788 usbcir - ok
05:50:12.0048 2788 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
05:50:12.0050 2788 usbehci - ok
05:50:12.0087 2788 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
05:50:12.0091 2788 usbhub - ok
05:50:12.0109 2788 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
05:50:12.0112 2788 usbohci - ok
05:50:12.0130 2788 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
05:50:12.0132 2788 usbprint - ok
05:50:12.0145 2788 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
05:50:12.0148 2788 USBSTOR - ok
05:50:12.0160 2788 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
05:50:12.0162 2788 usbuhci - ok
05:50:12.0214 2788 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
05:50:12.0217 2788 usbvideo - ok
05:50:12.0235 2788 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
05:50:12.0246 2788 usb_rndisx - ok
05:50:12.0260 2788 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
05:50:12.0275 2788 UxSms - ok
05:50:12.0292 2788 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
05:50:12.0294 2788 VaultSvc - ok
05:50:12.0314 2788 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
05:50:12.0314 2788 vdrvroot - ok
05:50:12.0367 2788 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
05:50:12.0385 2788 vds - ok
05:50:12.0403 2788 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
05:50:12.0405 2788 vga - ok
05:50:12.0433 2788 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
05:50:12.0436 2788 VgaSave - ok
05:50:12.0464 2788 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
05:50:12.0466 2788 vhdmp - ok
05:50:12.0493 2788 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
05:50:12.0495 2788 viaide - ok
05:50:12.0527 2788 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
05:50:12.0535 2788 volmgr - ok
05:50:12.0571 2788 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
05:50:12.0575 2788 volmgrx - ok
05:50:12.0591 2788 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
05:50:12.0594 2788 volsnap - ok
05:50:12.0630 2788 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
05:50:12.0632 2788 vsmraid - ok
05:50:12.0694 2788 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
05:50:12.0742 2788 VSS - ok
05:50:12.0765 2788 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
05:50:12.0767 2788 vwifibus - ok
05:50:12.0789 2788 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
05:50:12.0791 2788 vwififlt - ok
05:50:12.0813 2788 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
05:50:12.0815 2788 vwifimp - ok
05:50:12.0849 2788 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
05:50:12.0857 2788 W32Time - ok
05:50:12.0874 2788 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
05:50:12.0876 2788 WacomPen - ok
05:50:12.0918 2788 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
05:50:12.0928 2788 WANARP - ok
05:50:12.0934 2788 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
05:50:12.0935 2788 Wanarpv6 - ok
05:50:13.0027 2788 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
05:50:13.0056 2788 WatAdminSvc - ok
05:50:13.0099 2788 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
05:50:13.0122 2788 wbengine - ok
05:50:13.0154 2788 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
05:50:13.0164 2788 WbioSrvc - ok
05:50:13.0303 2788 WcesComm (8bda6db43aa54e8bb5e0794541ddc209) C:\Windows\WindowsMobile\wcescomm.dll
05:50:13.0308 2788 WcesComm - ok
05:50:13.0353 2788 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
05:50:13.0359 2788 wcncsvc - ok
05:50:13.0379 2788 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
05:50:13.0382 2788 WcsPlugInService - ok
05:50:13.0411 2788 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
05:50:13.0412 2788 Wd - ok
05:50:13.0452 2788 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
05:50:13.0459 2788 Wdf01000 - ok
05:50:13.0487 2788 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
05:50:13.0490 2788 WdiServiceHost - ok
05:50:13.0495 2788 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
05:50:13.0497 2788 WdiSystemHost - ok
05:50:13.0530 2788 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
05:50:13.0535 2788 WebClient - ok
05:50:13.0545 2788 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
05:50:13.0549 2788 Wecsvc - ok
05:50:13.0567 2788 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
05:50:13.0571 2788 wercplsupport - ok
05:50:13.0608 2788 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
05:50:13.0617 2788 WerSvc - ok
05:50:13.0643 2788 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
05:50:13.0645 2788 WfpLwf - ok
05:50:13.0663 2788 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
05:50:13.0665 2788 WIMMount - ok
05:50:13.0670 2788 WinHttpAutoProxySvc - ok
05:50:13.0788 2788 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
05:50:13.0792 2788 Winmgmt - ok
05:50:13.0849 2788 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
05:50:13.0872 2788 WinRM - ok
05:50:13.0933 2788 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
05:50:13.0935 2788 WinUSB - ok
05:50:13.0985 2788 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
05:50:13.0996 2788 Wlansvc - ok
05:50:14.0114 2788 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
05:50:14.0157 2788 wlidsvc - ok
05:50:14.0180 2788 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
05:50:14.0182 2788 WmiAcpi - ok
05:50:14.0224 2788 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
05:50:14.0234 2788 wmiApSrv - ok
05:50:14.0254 2788 WMPNetworkSvc - ok
05:50:14.0361 2788 WMZuneComm (83b6ca03c846fcd47f9883d77d1eb27b) c:\Program Files\Zune\WMZuneComm.exe
05:50:14.0368 2788 WMZuneComm - ok
05:50:14.0386 2788 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
05:50:14.0390 2788 WPCSvc - ok
05:50:14.0417 2788 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
05:50:14.0421 2788 WPDBusEnum - ok
05:50:14.0444 2788 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
05:50:14.0446 2788 ws2ifsl - ok
05:50:14.0453 2788 WSearch - ok
05:50:14.0514 2788 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
05:50:14.0592 2788 wuauserv - ok
05:50:14.0624 2788 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
05:50:14.0627 2788 WudfPf - ok
05:50:14.0644 2788 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
05:50:14.0646 2788 WUDFRd - ok
05:50:14.0661 2788 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
05:50:14.0666 2788 wudfsvc - ok
05:50:14.0690 2788 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
05:50:14.0696 2788 WwanSvc - ok
05:50:15.0403 2788 ZuneNetworkSvc (67b787c34fb2888d01b130ae007042d8) c:\Program Files\Zune\ZuneNss.exe
05:50:15.0546 2788 ZuneNetworkSvc - ok
05:50:15.0604 2788 ZuneWlanCfgSvc (4d89fc1c20cf655739efac5da81a67bc) c:\Program Files\Zune\ZuneWlanCfgSvc.exe
05:50:15.0611 2788 ZuneWlanCfgSvc - ok
05:50:15.0644 2788 MBR (0x1B8) (22a989b08cd088728d4e9fc470755d79) \Device\Harddisk0\DR0
05:50:15.0671 2788 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
05:50:15.0671 2788 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
05:50:15.0703 2788 Boot (0x1200) (2c93e33009dbd4a04ab783cba51c3f9a) \Device\Harddisk0\DR0\Partition0
05:50:15.0705 2788 \Device\Harddisk0\DR0\Partition0 - ok
05:50:15.0744 2788 Boot (0x1200) (e0a1f7f125b2f2ceb4392975d9978129) \Device\Harddisk0\DR0\Partition1
05:50:15.0763 2788 \Device\Harddisk0\DR0\Partition1 - ok
05:50:15.0795 2788 Boot (0x1200) (32e64ec078546e5cf97ca0088686ec3c) \Device\Harddisk0\DR0\Partition2
05:50:15.0836 2788 \Device\Harddisk0\DR0\Partition2 - ok
05:50:15.0836 2788 ============================================================
05:50:15.0836 2788 Scan finished
05:50:15.0836 2788 ============================================================
05:50:15.0850 2172 Detected object count: 2
05:50:15.0850 2172 Actual detected object count: 2
05:50:44.0289 2172 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
05:50:44.0290 2172 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
05:50:47.0359 2172 \Device\Harddisk0\DR0\# - copied to quarantine
05:50:47.0361 2172 \Device\Harddisk0\DR0 - copied to quarantine
05:50:47.0638 2172 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
05:50:47.0652 2172 \Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
05:50:47.0670 2172 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
05:50:47.0689 2172 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
05:50:47.0744 2172 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
05:50:47.0764 2172 \Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
05:50:47.0767 2172 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
05:50:47.0769 2172 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
05:50:47.0771 2172 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
05:50:47.0778 2172 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
05:50:47.0788 2172 \Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
05:50:47.0790 2172 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
05:50:47.0864 2172 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
05:50:47.0869 2172 \Device\Harddisk0\DR0 - ok
05:50:48.0409 2172 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure
05:50:59.0311 5372 Deinitialize success

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:17 AM

Posted 30 March 2012 - 07:15 AM

Hi SadFlute

Tdsskiller has identified one Rootkit.

Step 1

IMPORTANT NOTE: One or more of the identified infections is a backdoor Trojan.

Backdoor Trojans, Botnets, and IRCBots are very dangerous because they compromise system integrity by making changes that allow it to be used by the attacker for malicious purposes. They can disable your anti-virus and security tools to prevent detection and removal. Remote attackers use backdoors as a means of accessing and taking control of a computer that bypasses security mechanisms. This type of exploit allows them to steal sensitive information like passwords, personal and financial data which is then sent back to the hacker. Read Danger: Remote Access Trojans.

You should disconnect the computer from the Internet and from any networked computers until it is cleaned. If your computer was used for online banking, paying bills, has credit card information or other sensitive data on it, all passwords should be changed immediately to include those used for taxes, email, eBay, paypal and any other online activities. You should consider them to be compromised and change passwords from a clean computer, not the infected one. If not, an attacker may get the new passwords and transaction information. Banking and credit card institutions should be notified immediately of the possible security breach. Failure to notify your financial institution and local law enforcement can result in refusal to reimburse funds lost due to fraud or similar criminal activity. If using a router, you need to reset it with a strong logon/password before connecting again.

Although the infection has been identified and may be removed, your machine has likely been compromised and there is no way to be sure the computer can ever be trusted again. It is dangerous and incorrect to assume the computer is secure even if the malware appears to have been removed. In some instances an infection may have caused so much damage to your system that it cannot be successfully cleaned or repaired. The malware may leave so many remnants behind that security tools cannot find them. Many experts in the security community believe that once infected with this type of malware, the best course of action is to wipe the drive clean, reformat and reinstall the OS. Please read:

Whenever a system has been compromised by a backdoor payload, it is impossible to know if or how much the backdoor has been used to affect your system...There are only a few ways to return a compromised system to a confident security configuration. These include:
• Reimaging the system
• Restoring the entire system using a full system backup from before the backdoor infection
• Reformatting and reinstalling the system

Backdoors and What They Mean to You

This is what Jesper M. Johansson, Security Program Manager at Microsoft TechNet has to say:
Help: I Got Hacked. Now What Do I Do?.

The only way to clean a compromised system is to flatten and rebuild. That's right. If you have a system that has been completely compromised, the only thing you can do is to flatten the system (reformat the system disk) and rebuild it from scratch (reinstall Windows and your applications).


We will do our best to clean the computer of any infections seen on the log.
However, because of the nature of this Trojan, I cannot offer a total
guarantee that there are no remnants left in the system, or that the
computer will be trustworthy.

Many security experts believe that once infected with this type of Trojan,
the best course of action is to reformat and reinstall the Operating System.
Making this decision is based on what the computer is used for, and what
information can be accessed from it.

If you do wish to continue cleaning this computer please post do the following:

Step 2

Please rerun tdsskiller again and post the log in your next reply.

Step 3

Please update MBAM, then run a full scan and post the log in your next reply.

Step 4

Please rerun minitoolbox again and post the log in your next reply.

Step 5

Are the redirects still present? If so do they happen both in Internet explorer and Firefox, or just one of them?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 30 March 2012 - 01:16 PM

tdss log




12:03:24.0588 2464 TDSS rootkit removing tool 2.7.23.0 Mar 26 2012 13:40:18
12:03:24.0588 2464 ============================================================
12:03:24.0588 2464 Current date / time: 2012/03/30 12:03:24.0588
12:03:24.0588 2464 SystemInfo:
12:03:24.0588 2464
12:03:24.0588 2464 OS Version: 6.1.7601 ServicePack: 1.0
12:03:24.0588 2464 Product type: Workstation
12:03:24.0588 2464 ComputerName: ALFRED
12:03:24.0588 2464 UserName: Owner
12:03:24.0588 2464 Windows directory: C:\Windows
12:03:24.0588 2464 System windows directory: C:\Windows
12:03:24.0588 2464 Running under WOW64
12:03:24.0588 2464 Processor architecture: Intel x64
12:03:24.0588 2464 Number of processors: 4
12:03:24.0588 2464 Page size: 0x1000
12:03:24.0588 2464 Boot type: Normal boot
12:03:24.0588 2464 ============================================================
12:03:25.0462 2464 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:03:25.0478 2464 \Device\Harddisk0\DR0:
12:03:25.0478 2464 MBR used
12:03:25.0478 2464 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:03:25.0478 2464 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x55D63800
12:03:25.0478 2464 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x55D96000, BlocksNum 0x17AF800
12:03:25.0556 2464 Initialize success
12:03:25.0556 2464 ============================================================
12:03:26.0850 3896 ============================================================
12:03:26.0850 3896 Scan started
12:03:26.0850 3896 Mode: Manual;
12:03:26.0850 3896 ============================================================
12:03:27.0428 3896 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
12:03:27.0428 3896 1394ohci - ok
12:03:27.0521 3896 ACDaemon (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
12:03:27.0537 3896 ACDaemon - ok
12:03:27.0552 3896 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
12:03:27.0552 3896 ACPI - ok
12:03:27.0568 3896 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
12:03:27.0568 3896 AcpiPmi - ok
12:03:27.0584 3896 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
12:03:27.0584 3896 adfs - ok
12:03:27.0615 3896 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
12:03:27.0615 3896 adp94xx - ok
12:03:27.0630 3896 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
12:03:27.0646 3896 adpahci - ok
12:03:27.0662 3896 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
12:03:27.0662 3896 adpu320 - ok
12:03:27.0693 3896 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
12:03:27.0693 3896 AeLookupSvc - ok
12:03:27.0786 3896 Afc (6ccd1135320109d6b219f1a6e04ad9f6) C:\Windows\syswow64\drivers\Afc.sys
12:03:27.0786 3896 Afc - ok
12:03:27.0833 3896 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
12:03:27.0833 3896 AFD - ok
12:03:27.0849 3896 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
12:03:27.0849 3896 agp440 - ok
12:03:28.0005 3896 Akamai (1125c7d9fb8898015829c387c1bc87c7) c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll
12:03:28.0005 3896 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_6c825ce.dll. md5: 1125c7d9fb8898015829c387c1bc87c7
12:03:28.0005 3896 Akamai ( HiddenFile.Multi.Generic ) - warning
12:03:28.0005 3896 Akamai - detected HiddenFile.Multi.Generic (1)
12:03:28.0036 3896 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
12:03:28.0036 3896 ALG - ok
12:03:28.0052 3896 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
12:03:28.0052 3896 aliide - ok
12:03:28.0067 3896 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
12:03:28.0067 3896 amdide - ok
12:03:28.0083 3896 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
12:03:28.0083 3896 AmdK8 - ok
12:03:28.0098 3896 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
12:03:28.0098 3896 AmdPPM - ok
12:03:28.0130 3896 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
12:03:28.0130 3896 amdsata - ok
12:03:28.0145 3896 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
12:03:28.0145 3896 amdsbs - ok
12:03:28.0176 3896 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
12:03:28.0176 3896 amdxata - ok
12:03:28.0208 3896 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
12:03:28.0208 3896 AppID - ok
12:03:28.0239 3896 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
12:03:28.0239 3896 AppIDSvc - ok
12:03:28.0270 3896 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
12:03:28.0270 3896 Appinfo - ok
12:03:28.0348 3896 Apple Mobile Device (5aa788d5a2c6737bb9c45933985bc1b8) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:03:28.0348 3896 Apple Mobile Device - ok
12:03:28.0364 3896 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
12:03:28.0364 3896 arc - ok
12:03:28.0379 3896 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
12:03:28.0395 3896 arcsas - ok
12:03:28.0426 3896 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
12:03:28.0426 3896 AsyncMac - ok
12:03:28.0442 3896 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
12:03:28.0442 3896 atapi - ok
12:03:28.0473 3896 athr (7d89b0c443f6068e5b27aa3b972069ff) C:\Windows\system32\DRIVERS\athrx.sys
12:03:28.0504 3896 athr - ok
12:03:28.0566 3896 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
12:03:28.0566 3896 AudioEndpointBuilder - ok
12:03:28.0582 3896 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
12:03:28.0582 3896 AudioSrv - ok
12:03:28.0629 3896 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
12:03:28.0629 3896 AxInstSV - ok
12:03:28.0660 3896 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
12:03:28.0676 3896 b06bdrv - ok
12:03:28.0707 3896 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
12:03:28.0707 3896 b57nd60a - ok
12:03:28.0785 3896 BasicScan Service (14de3145ac70b0dd665312d2ebc50c02) C:\Program Files (x86)\BasicScan\basicscan.exe
12:03:28.0785 3896 BasicScan Service - ok
12:03:28.0816 3896 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
12:03:28.0816 3896 BDESVC - ok
12:03:28.0832 3896 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
12:03:28.0832 3896 Beep - ok
12:03:28.0878 3896 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
12:03:28.0878 3896 BFE - ok
12:03:28.0956 3896 BHDrvx64 (4d7f8401eae7eaa4ef702fa6f4153269) C:\Windows\System32\Drivers\NISx64\1008030.006\BHDrvx64.sys
12:03:28.0956 3896 BHDrvx64 - ok
12:03:29.0003 3896 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
12:03:29.0019 3896 BITS - ok
12:03:29.0050 3896 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
12:03:29.0050 3896 blbdrive - ok
12:03:29.0097 3896 Bonjour Service (f832f1505ad8b83474bd9a5b1b985e01) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
12:03:29.0112 3896 Bonjour Service - ok
12:03:29.0144 3896 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
12:03:29.0144 3896 bowser - ok
12:03:29.0159 3896 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:03:29.0159 3896 BrFiltLo - ok
12:03:29.0175 3896 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:03:29.0175 3896 BrFiltUp - ok
12:03:29.0206 3896 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
12:03:29.0206 3896 Browser - ok
12:03:29.0237 3896 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
12:03:29.0237 3896 Brserid - ok
12:03:29.0253 3896 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
12:03:29.0253 3896 BrSerWdm - ok
12:03:29.0268 3896 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:03:29.0268 3896 BrUsbMdm - ok
12:03:29.0284 3896 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
12:03:29.0284 3896 BrUsbSer - ok
12:03:29.0315 3896 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys
12:03:29.0315 3896 BTCFilterService - ok
12:03:29.0346 3896 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
12:03:29.0346 3896 BTHMODEM - ok
12:03:29.0378 3896 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
12:03:29.0378 3896 bthserv - ok
12:03:29.0424 3896 ccHP (a2e6ab452b9393ca8d11d28827e0e1a1) C:\Windows\System32\Drivers\NISx64\1008030.006\ccHPx64.sys
12:03:29.0424 3896 ccHP - ok
12:03:29.0440 3896 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
12:03:29.0440 3896 cdfs - ok
12:03:29.0471 3896 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
12:03:29.0471 3896 cdrom - ok
12:03:29.0502 3896 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
12:03:29.0502 3896 CertPropSvc - ok
12:03:29.0518 3896 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
12:03:29.0518 3896 circlass - ok
12:03:29.0549 3896 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
12:03:29.0549 3896 CLFS - ok
12:03:29.0596 3896 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:03:29.0596 3896 clr_optimization_v2.0.50727_32 - ok
12:03:29.0627 3896 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:03:29.0627 3896 clr_optimization_v2.0.50727_64 - ok
12:03:29.0705 3896 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:03:29.0721 3896 clr_optimization_v4.0.30319_32 - ok
12:03:29.0768 3896 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:03:29.0783 3896 clr_optimization_v4.0.30319_64 - ok
12:03:29.0814 3896 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
12:03:29.0830 3896 CmBatt - ok
12:03:29.0861 3896 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
12:03:29.0861 3896 cmdide - ok
12:03:29.0908 3896 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
12:03:29.0908 3896 CNG - ok
12:03:29.0924 3896 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
12:03:29.0924 3896 Compbatt - ok
12:03:29.0939 3896 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
12:03:29.0955 3896 CompositeBus - ok
12:03:29.0955 3896 COMSysApp - ok
12:03:29.0970 3896 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
12:03:29.0970 3896 crcdisk - ok
12:03:30.0002 3896 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
12:03:30.0002 3896 CryptSvc - ok
12:03:30.0048 3896 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
12:03:30.0048 3896 DcomLaunch - ok
12:03:30.0080 3896 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
12:03:30.0080 3896 defragsvc - ok
12:03:30.0158 3896 DeviceMonitorService (893a82d118833a850459dd470ffa48d9) C:\Program Files (x86)\Motorola Media Link\NServiceEntry.exe
12:03:30.0158 3896 DeviceMonitorService - ok
12:03:30.0189 3896 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
12:03:30.0189 3896 DfsC - ok
12:03:30.0220 3896 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
12:03:30.0220 3896 Dhcp - ok
12:03:30.0236 3896 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
12:03:30.0251 3896 discache - ok
12:03:30.0267 3896 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
12:03:30.0267 3896 Disk - ok
12:03:30.0298 3896 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
12:03:30.0314 3896 Dnscache - ok
12:03:30.0345 3896 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
12:03:30.0345 3896 dot3svc - ok
12:03:30.0376 3896 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
12:03:30.0376 3896 DPS - ok
12:03:30.0392 3896 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
12:03:30.0392 3896 drmkaud - ok
12:03:30.0423 3896 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
12:03:30.0438 3896 DXGKrnl - ok
12:03:30.0454 3896 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
12:03:30.0454 3896 EapHost - ok
12:03:30.0548 3896 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
12:03:30.0610 3896 ebdrv - ok
12:03:30.0672 3896 eeCtrl (066108ae4c35835081598827a1a7d08d) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
12:03:30.0672 3896 eeCtrl - ok
12:03:30.0704 3896 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
12:03:30.0704 3896 EFS - ok
12:03:30.0766 3896 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
12:03:30.0766 3896 ehRecvr - ok
12:03:30.0782 3896 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
12:03:30.0797 3896 ehSched - ok
12:03:30.0828 3896 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
12:03:30.0844 3896 elxstor - ok
12:03:30.0891 3896 EraserUtilRebootDrv (12866876e3851f1e5d462b2a83e25578) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
12:03:30.0906 3896 EraserUtilRebootDrv - ok
12:03:30.0922 3896 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
12:03:30.0922 3896 ErrDev - ok
12:03:30.0969 3896 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
12:03:30.0984 3896 EventSystem - ok
12:03:31.0156 3896 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
12:03:31.0156 3896 exfat - ok
12:03:31.0281 3896 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
12:03:31.0281 3896 fastfat - ok
12:03:31.0328 3896 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
12:03:31.0328 3896 Fax - ok
12:03:31.0343 3896 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
12:03:31.0343 3896 fdc - ok
12:03:31.0374 3896 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
12:03:31.0374 3896 fdPHost - ok
12:03:31.0390 3896 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
12:03:31.0390 3896 FDResPub - ok
12:03:31.0406 3896 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
12:03:31.0406 3896 FileInfo - ok
12:03:31.0421 3896 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
12:03:31.0421 3896 Filetrace - ok
12:03:31.0437 3896 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
12:03:31.0437 3896 flpydisk - ok
12:03:31.0484 3896 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
12:03:31.0484 3896 FltMgr - ok
12:03:31.0530 3896 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
12:03:31.0546 3896 FontCache - ok
12:03:31.0640 3896 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:03:31.0640 3896 FontCache3.0.0.0 - ok
12:03:31.0655 3896 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
12:03:31.0655 3896 FsDepends - ok
12:03:31.0671 3896 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
12:03:31.0671 3896 Fs_Rec - ok
12:03:31.0718 3896 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
12:03:31.0718 3896 fvevol - ok
12:03:31.0733 3896 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:03:31.0749 3896 gagp30kx - ok
12:03:31.0811 3896 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
12:03:31.0811 3896 GamesAppService - ok
12:03:31.0842 3896 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:03:31.0842 3896 GEARAspiWDM - ok
12:03:31.0874 3896 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
12:03:31.0889 3896 gpsvc - ok
12:03:31.0967 3896 gupdate1ca916fda31697a (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:03:31.0967 3896 gupdate1ca916fda31697a - ok
12:03:31.0998 3896 gupdatem (626a24ed1228580b9518c01930936df9) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:03:31.0998 3896 gupdatem - ok
12:03:32.0014 3896 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
12:03:32.0014 3896 hcw85cir - ok
12:03:32.0030 3896 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
12:03:32.0030 3896 HDAudBus - ok
12:03:32.0045 3896 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
12:03:32.0045 3896 HidBatt - ok
12:03:32.0076 3896 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
12:03:32.0076 3896 HidBth - ok
12:03:32.0092 3896 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
12:03:32.0092 3896 HidIr - ok
12:03:32.0123 3896 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
12:03:32.0123 3896 hidserv - ok
12:03:32.0139 3896 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
12:03:32.0139 3896 HidUsb - ok
12:03:32.0170 3896 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
12:03:32.0170 3896 hkmsvc - ok
12:03:32.0201 3896 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
12:03:32.0201 3896 HomeGroupListener - ok
12:03:32.0232 3896 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
12:03:32.0232 3896 HomeGroupProvider - ok
12:03:32.0310 3896 HP Support Assistant Service (13bb1114451c63bfb41ba7daa4d70a29) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:03:32.0310 3896 HP Support Assistant Service - ok
12:03:32.0357 3896 HPDrvMntSvc.exe (bcc4a8b2e2e902f52e7f2e7d8e125765) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
12:03:32.0357 3896 HPDrvMntSvc.exe - ok
12:03:32.0388 3896 hpqwmiex (ec9739a46f1f83c6e52a7a4697f44a65) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
12:03:32.0404 3896 hpqwmiex - ok
12:03:32.0435 3896 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
12:03:32.0435 3896 HpSAMD - ok
12:03:32.0482 3896 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
12:03:32.0482 3896 HTTP - ok
12:03:32.0513 3896 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
12:03:32.0513 3896 hwpolicy - ok
12:03:32.0529 3896 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
12:03:32.0529 3896 i8042prt - ok
12:03:32.0576 3896 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
12:03:32.0576 3896 iaStorV - ok
12:03:32.0638 3896 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:03:32.0638 3896 idsvc - ok
12:03:32.0747 3896 IDSVia64 (9a793a1451b5e2cf54b4a33342cb58cf) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20100128.002\IDSvia64.sys
12:03:32.0747 3896 IDSVia64 - ok
12:03:32.0934 3896 igfx (d926f1c76a78a69a154187ceb487e863) C:\Windows\system32\DRIVERS\igdkmd64.sys
12:03:33.0106 3896 igfx - ok
12:03:33.0137 3896 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
12:03:33.0137 3896 iirsp - ok
12:03:33.0168 3896 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
12:03:33.0184 3896 IKEEXT - ok
12:03:33.0246 3896 IntcAzAudAddService (3c4b4ee54febb09f7e9f58776de96dca) C:\Windows\system32\drivers\RTKVHD64.sys
12:03:33.0262 3896 IntcAzAudAddService - ok
12:03:33.0262 3896 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
12:03:33.0262 3896 intelide - ok
12:03:33.0293 3896 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
12:03:33.0293 3896 intelppm - ok
12:03:33.0309 3896 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
12:03:33.0309 3896 IPBusEnum - ok
12:03:33.0340 3896 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:03:33.0340 3896 IpFilterDriver - ok
12:03:33.0387 3896 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
12:03:33.0387 3896 iphlpsvc - ok
12:03:33.0402 3896 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
12:03:33.0418 3896 IPMIDRV - ok
12:03:33.0449 3896 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
12:03:33.0449 3896 IPNAT - ok
12:03:33.0527 3896 iPod Service (3d62fe4fefe9c67dafec52b534dfa1fb) C:\Program Files\iPod\bin\iPodService.exe
12:03:33.0543 3896 iPod Service - ok
12:03:33.0543 3896 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
12:03:33.0543 3896 IRENUM - ok
12:03:33.0558 3896 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
12:03:33.0558 3896 isapnp - ok
12:03:33.0590 3896 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
12:03:33.0590 3896 iScsiPrt - ok
12:03:33.0621 3896 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
12:03:33.0621 3896 kbdclass - ok
12:03:33.0636 3896 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
12:03:33.0636 3896 kbdhid - ok
12:03:33.0652 3896 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
12:03:33.0668 3896 KeyIso - ok
12:03:33.0699 3896 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
12:03:33.0699 3896 KSecDD - ok
12:03:33.0730 3896 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
12:03:33.0730 3896 KSecPkg - ok
12:03:33.0746 3896 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
12:03:33.0746 3896 ksthunk - ok
12:03:33.0761 3896 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
12:03:33.0777 3896 KtmRm - ok
12:03:33.0808 3896 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
12:03:33.0824 3896 LanmanServer - ok
12:03:33.0855 3896 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
12:03:33.0855 3896 LanmanWorkstation - ok
12:03:33.0917 3896 LightScribeService (108333981c841eb0ff198aa5dfcf3d3b) c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
12:03:33.0917 3896 LightScribeService - ok
12:03:33.0933 3896 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
12:03:33.0948 3896 lltdio - ok
12:03:33.0964 3896 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
12:03:33.0964 3896 lltdsvc - ok
12:03:33.0980 3896 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
12:03:33.0980 3896 lmhosts - ok
12:03:34.0011 3896 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:03:34.0026 3896 LSI_FC - ok
12:03:34.0042 3896 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:03:34.0042 3896 LSI_SAS - ok
12:03:34.0058 3896 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:03:34.0058 3896 LSI_SAS2 - ok
12:03:34.0089 3896 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:03:34.0089 3896 LSI_SCSI - ok
12:03:34.0120 3896 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
12:03:34.0136 3896 luafv - ok
12:03:34.0151 3896 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
12:03:34.0151 3896 Mcx2Svc - ok
12:03:34.0182 3896 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
12:03:34.0182 3896 megasas - ok
12:03:34.0214 3896 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
12:03:34.0214 3896 MegaSR - ok
12:03:34.0229 3896 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:03:34.0229 3896 MMCSS - ok
12:03:34.0260 3896 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
12:03:34.0276 3896 Modem - ok
12:03:34.0292 3896 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
12:03:34.0292 3896 monitor - ok
12:03:34.0307 3896 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys
12:03:34.0307 3896 motandroidusb - ok
12:03:34.0338 3896 motccgp (5d1080dbd8ec5f2d6e550e01398e17cf) C:\Windows\system32\DRIVERS\motccgp.sys
12:03:34.0338 3896 motccgp - ok
12:03:34.0354 3896 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
12:03:34.0354 3896 motccgpfl - ok
12:03:34.0370 3896 motmodem (6cbc0f4005593c96c9aecad39f0690fc) C:\Windows\system32\DRIVERS\motmodem.sys
12:03:34.0370 3896 motmodem - ok
12:03:34.0448 3896 MotoHelper (705568b735847b3304f9602834def733) C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
12:03:34.0448 3896 MotoHelper - ok
12:03:34.0463 3896 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
12:03:34.0463 3896 MotoSwitchService - ok
12:03:34.0479 3896 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys
12:03:34.0494 3896 Motousbnet - ok
12:03:34.0510 3896 motusbdevice - ok
12:03:34.0557 3896 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
12:03:34.0557 3896 mouclass - ok
12:03:34.0557 3896 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
12:03:34.0557 3896 mouhid - ok
12:03:34.0588 3896 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
12:03:34.0604 3896 mountmgr - ok
12:03:34.0619 3896 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
12:03:34.0619 3896 mpio - ok
12:03:34.0635 3896 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
12:03:34.0635 3896 mpsdrv - ok
12:03:34.0682 3896 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
12:03:34.0697 3896 MpsSvc - ok
12:03:34.0744 3896 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
12:03:34.0744 3896 MRxDAV - ok
12:03:34.0760 3896 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:03:34.0775 3896 mrxsmb - ok
12:03:34.0791 3896 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:03:34.0791 3896 mrxsmb10 - ok
12:03:34.0806 3896 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:03:34.0806 3896 mrxsmb20 - ok
12:03:34.0838 3896 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
12:03:34.0838 3896 msahci - ok
12:03:34.0853 3896 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
12:03:34.0853 3896 msdsm - ok
12:03:34.0884 3896 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
12:03:34.0884 3896 MSDTC - ok
12:03:34.0931 3896 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
12:03:34.0931 3896 Msfs - ok
12:03:34.0947 3896 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
12:03:34.0947 3896 mshidkmdf - ok
12:03:34.0947 3896 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
12:03:34.0947 3896 msisadrv - ok
12:03:34.0978 3896 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
12:03:34.0978 3896 MSiSCSI - ok
12:03:34.0994 3896 msiserver - ok
12:03:35.0025 3896 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
12:03:35.0025 3896 MSKSSRV - ok
12:03:35.0056 3896 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
12:03:35.0056 3896 MSPCLOCK - ok
12:03:35.0072 3896 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
12:03:35.0072 3896 MSPQM - ok
12:03:35.0103 3896 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
12:03:35.0103 3896 MsRPC - ok
12:03:35.0118 3896 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
12:03:35.0118 3896 mssmbios - ok
12:03:35.0134 3896 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
12:03:35.0134 3896 MSTEE - ok
12:03:35.0165 3896 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
12:03:35.0165 3896 MTConfig - ok
12:03:35.0181 3896 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
12:03:35.0181 3896 Mup - ok
12:03:35.0228 3896 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
12:03:35.0228 3896 napagent - ok
12:03:35.0243 3896 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
12:03:35.0243 3896 NativeWifiP - ok
12:03:35.0321 3896 NAVENG - ok
12:03:35.0337 3896 NAVEX15 - ok
12:03:35.0399 3896 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
12:03:35.0415 3896 NDIS - ok
12:03:35.0430 3896 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
12:03:35.0430 3896 NdisCap - ok
12:03:35.0462 3896 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
12:03:35.0462 3896 NdisTapi - ok
12:03:35.0493 3896 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
12:03:35.0493 3896 Ndisuio - ok
12:03:35.0524 3896 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
12:03:35.0524 3896 NdisWan - ok
12:03:35.0555 3896 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
12:03:35.0555 3896 NDProxy - ok
12:03:35.0571 3896 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
12:03:35.0571 3896 NetBIOS - ok
12:03:35.0586 3896 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
12:03:35.0586 3896 NetBT - ok
12:03:35.0602 3896 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
12:03:35.0602 3896 Netlogon - ok
12:03:35.0649 3896 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
12:03:35.0649 3896 Netman - ok
12:03:35.0664 3896 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
12:03:35.0680 3896 netprofm - ok
12:03:35.0742 3896 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:03:35.0742 3896 NetTcpPortSharing - ok
12:03:35.0774 3896 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
12:03:35.0789 3896 nfrd960 - ok
12:03:35.0820 3896 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
12:03:35.0820 3896 NlaSvc - ok
12:03:35.0883 3896 Norton Internet Security (64c89db40949fd0e7c8ff303676a91f1) C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
12:03:35.0883 3896 Norton Internet Security - ok
12:03:35.0914 3896 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
12:03:35.0914 3896 Npfs - ok
12:03:35.0930 3896 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
12:03:35.0945 3896 nsi - ok
12:03:35.0961 3896 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
12:03:35.0961 3896 nsiproxy - ok
12:03:36.0008 3896 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
12:03:36.0039 3896 Ntfs - ok
12:03:36.0054 3896 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
12:03:36.0054 3896 Null - ok
12:03:36.0086 3896 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
12:03:36.0086 3896 nvraid - ok
12:03:36.0101 3896 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
12:03:36.0101 3896 nvstor - ok
12:03:36.0132 3896 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
12:03:36.0132 3896 nv_agp - ok
12:03:36.0226 3896 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:03:36.0226 3896 odserv - ok
12:03:36.0242 3896 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
12:03:36.0257 3896 ohci1394 - ok
12:03:36.0320 3896 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:03:36.0320 3896 ose - ok
12:03:36.0366 3896 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:03:36.0382 3896 p2pimsvc - ok
12:03:36.0398 3896 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
12:03:36.0398 3896 p2psvc - ok
12:03:36.0429 3896 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
12:03:36.0429 3896 Parport - ok
12:03:36.0460 3896 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
12:03:36.0460 3896 partmgr - ok
12:03:36.0491 3896 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
12:03:36.0491 3896 PcaSvc - ok
12:03:36.0507 3896 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
12:03:36.0522 3896 pci - ok
12:03:36.0538 3896 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
12:03:36.0538 3896 pciide - ok
12:03:36.0569 3896 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
12:03:36.0569 3896 pcmcia - ok
12:03:36.0600 3896 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
12:03:36.0600 3896 pcw - ok
12:03:36.0616 3896 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
12:03:36.0616 3896 PEAUTH - ok
12:03:36.0663 3896 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
12:03:36.0663 3896 PerfHost - ok
12:03:36.0710 3896 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
12:03:36.0741 3896 pla - ok
12:03:36.0803 3896 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
12:03:36.0803 3896 PlugPlay - ok
12:03:36.0819 3896 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
12:03:36.0819 3896 PNRPAutoReg - ok
12:03:36.0850 3896 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
12:03:36.0850 3896 PNRPsvc - ok
12:03:36.0881 3896 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
12:03:36.0881 3896 PolicyAgent - ok
12:03:36.0912 3896 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
12:03:36.0912 3896 Power - ok
12:03:36.0944 3896 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
12:03:36.0959 3896 PptpMiniport - ok
12:03:36.0975 3896 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
12:03:36.0975 3896 Processor - ok
12:03:36.0990 3896 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
12:03:36.0990 3896 ProfSvc - ok
12:03:37.0006 3896 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
12:03:37.0006 3896 ProtectedStorage - ok
12:03:37.0053 3896 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
12:03:37.0053 3896 Psched - ok
12:03:37.0100 3896 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
12:03:37.0146 3896 ql2300 - ok
12:03:37.0162 3896 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
12:03:37.0162 3896 ql40xx - ok
12:03:37.0193 3896 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
12:03:37.0193 3896 QWAVE - ok
12:03:37.0224 3896 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
12:03:37.0224 3896 QWAVEdrv - ok
12:03:37.0271 3896 RapiMgr (a55e7d0d873b2c97585b3b5926ac6ade) C:\Windows\WindowsMobile\rapimgr.dll
12:03:37.0271 3896 RapiMgr - ok
12:03:37.0302 3896 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
12:03:37.0302 3896 RasAcd - ok
12:03:37.0318 3896 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:03:37.0318 3896 RasAgileVpn - ok
12:03:37.0334 3896 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
12:03:37.0349 3896 RasAuto - ok
12:03:37.0365 3896 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:03:37.0380 3896 Rasl2tp - ok
12:03:37.0396 3896 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
12:03:37.0396 3896 RasMan - ok
12:03:37.0412 3896 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
12:03:37.0427 3896 RasPppoe - ok
12:03:37.0458 3896 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
12:03:37.0458 3896 RasSstp - ok
12:03:37.0474 3896 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
12:03:37.0474 3896 rdbss - ok
12:03:37.0490 3896 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
12:03:37.0490 3896 rdpbus - ok
12:03:37.0521 3896 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:03:37.0521 3896 RDPCDD - ok
12:03:37.0536 3896 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
12:03:37.0536 3896 RDPENCDD - ok
12:03:37.0552 3896 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
12:03:37.0568 3896 RDPREFMP - ok
12:03:37.0583 3896 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
12:03:37.0599 3896 RDPWD - ok
12:03:37.0630 3896 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
12:03:37.0630 3896 rdyboost - ok
12:03:37.0646 3896 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
12:03:37.0661 3896 RemoteAccess - ok
12:03:37.0661 3896 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
12:03:37.0677 3896 RemoteRegistry - ok
12:03:37.0692 3896 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
12:03:37.0692 3896 RimUsb - ok
12:03:37.0708 3896 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
12:03:37.0708 3896 RpcEptMapper - ok
12:03:37.0724 3896 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
12:03:37.0724 3896 RpcLocator - ok
12:03:37.0755 3896 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
12:03:37.0755 3896 RpcSs - ok
12:03:37.0786 3896 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
12:03:37.0786 3896 rspndr - ok
12:03:37.0817 3896 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
12:03:37.0817 3896 RTL8167 - ok
12:03:37.0833 3896 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
12:03:37.0833 3896 SamSs - ok
12:03:37.0848 3896 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
12:03:37.0848 3896 sbp2port - ok
12:03:37.0864 3896 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
12:03:37.0864 3896 SCardSvr - ok
12:03:37.0895 3896 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
12:03:37.0895 3896 scfilter - ok
12:03:37.0958 3896 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
12:03:37.0973 3896 Schedule - ok
12:03:38.0004 3896 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
12:03:38.0004 3896 SCPolicySvc - ok
12:03:38.0020 3896 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
12:03:38.0036 3896 SDRSVC - ok
12:03:38.0051 3896 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
12:03:38.0051 3896 secdrv - ok
12:03:38.0067 3896 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
12:03:38.0067 3896 seclogon - ok
12:03:38.0082 3896 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
12:03:38.0098 3896 SENS - ok
12:03:38.0114 3896 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
12:03:38.0114 3896 SensrSvc - ok
12:03:38.0129 3896 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
12:03:38.0129 3896 Serenum - ok
12:03:38.0160 3896 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
12:03:38.0160 3896 Serial - ok
12:03:38.0192 3896 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
12:03:38.0192 3896 sermouse - ok
12:03:38.0207 3896 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
12:03:38.0207 3896 SessionEnv - ok
12:03:38.0223 3896 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
12:03:38.0223 3896 sffdisk - ok
12:03:38.0238 3896 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
12:03:38.0238 3896 sffp_mmc - ok
12:03:38.0254 3896 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
12:03:38.0254 3896 sffp_sd - ok
12:03:38.0285 3896 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
12:03:38.0285 3896 sfloppy - ok
12:03:38.0332 3896 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
12:03:38.0332 3896 SharedAccess - ok
12:03:38.0363 3896 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
12:03:38.0363 3896 ShellHWDetection - ok
12:03:38.0394 3896 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:03:38.0394 3896 SiSRaid2 - ok
12:03:38.0426 3896 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
12:03:38.0426 3896 SiSRaid4 - ok
12:03:38.0472 3896 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
12:03:38.0472 3896 Smb - ok
12:03:38.0488 3896 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
12:03:38.0488 3896 SNMPTRAP - ok
12:03:38.0519 3896 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
12:03:38.0519 3896 spldr - ok
12:03:38.0535 3896 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
12:03:38.0550 3896 Spooler - ok
12:03:38.0628 3896 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
12:03:38.0691 3896 sppsvc - ok
12:03:38.0706 3896 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
12:03:38.0706 3896 sppuinotify - ok
12:03:38.0769 3896 sprtsvc_verizondm - ok
12:03:38.0831 3896 SRTSP (9e399476e5d5e0d3c8822c857a7e9a9a) C:\Windows\System32\Drivers\NISx64\1008030.006\SRTSP64.SYS
12:03:38.0831 3896 SRTSP - ok
12:03:38.0878 3896 SRTSPX (3d7717b582f0365e75071556936e5a6b) C:\Windows\system32\drivers\NISx64\1008030.006\SRTSPX64.SYS
12:03:38.0878 3896 SRTSPX - ok
12:03:38.0909 3896 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
12:03:38.0909 3896 srv - ok
12:03:38.0940 3896 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
12:03:38.0972 3896 srv2 - ok
12:03:38.0987 3896 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
12:03:38.0987 3896 srvnet - ok
12:03:39.0003 3896 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
12:03:39.0003 3896 SSDPSRV - ok
12:03:39.0018 3896 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
12:03:39.0018 3896 SstpSvc - ok
12:03:39.0050 3896 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
12:03:39.0050 3896 stexstor - ok
12:03:39.0096 3896 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
12:03:39.0112 3896 stisvc - ok
12:03:39.0128 3896 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
12:03:39.0128 3896 swenum - ok
12:03:39.0159 3896 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
12:03:39.0159 3896 swprv - ok
12:03:39.0190 3896 SymEFA (4f87bb5389a93778ebc363b28271a65b) C:\Windows\system32\drivers\NISx64\1008030.006\SYMEFA64.SYS
12:03:39.0190 3896 SymEFA - ok
12:03:39.0237 3896 SymEvent (7e4d281982e19abd06728c7ee9ac40a8) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
12:03:39.0237 3896 SymEvent - ok
12:03:39.0237 3896 SYMFW - ok
12:03:39.0252 3896 SymIM (212bbf5a964513980d5de9397381534f) C:\Windows\system32\DRIVERS\SymIMv.sys
12:03:39.0252 3896 SymIM - ok
12:03:39.0268 3896 SYMNDISV - ok
12:03:39.0284 3896 SYMTDI (33b37cb0a74f1f4b78a665ece9184095) C:\Windows\System32\Drivers\NISx64\1008030.006\SYMTDI.SYS
12:03:39.0284 3896 SYMTDI - ok
12:03:39.0346 3896 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
12:03:39.0377 3896 SysMain - ok
12:03:39.0408 3896 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
12:03:39.0408 3896 TabletInputService - ok
12:03:39.0440 3896 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
12:03:39.0440 3896 TapiSrv - ok
12:03:39.0455 3896 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
12:03:39.0455 3896 TBS - ok
12:03:39.0518 3896 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
12:03:39.0564 3896 Tcpip - ok
12:03:39.0611 3896 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
12:03:39.0627 3896 TCPIP6 - ok
12:03:39.0658 3896 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
12:03:39.0658 3896 tcpipreg - ok
12:03:39.0705 3896 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
12:03:39.0705 3896 TDPIPE - ok
12:03:39.0705 3896 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
12:03:39.0705 3896 TDTCP - ok
12:03:39.0752 3896 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
12:03:39.0752 3896 tdx - ok
12:03:39.0767 3896 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
12:03:39.0767 3896 TermDD - ok
12:03:39.0814 3896 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
12:03:39.0814 3896 TermService - ok
12:03:39.0861 3896 tgsrvc_verizondm - ok
12:03:39.0876 3896 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
12:03:39.0876 3896 Themes - ok
12:03:39.0908 3896 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
12:03:39.0908 3896 THREADORDER - ok
12:03:39.0923 3896 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
12:03:39.0923 3896 TrkWks - ok
12:03:39.0954 3896 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
12:03:39.0954 3896 TrustedInstaller - ok
12:03:39.0970 3896 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:03:39.0970 3896 tssecsrv - ok
12:03:40.0017 3896 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
12:03:40.0017 3896 TsUsbFlt - ok
12:03:40.0064 3896 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
12:03:40.0064 3896 tunnel - ok
12:03:40.0095 3896 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
12:03:40.0095 3896 uagp35 - ok
12:03:40.0126 3896 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
12:03:40.0126 3896 udfs - ok
12:03:40.0142 3896 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
12:03:40.0157 3896 UI0Detect - ok
12:03:40.0173 3896 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
12:03:40.0173 3896 uliagpkx - ok
12:03:40.0188 3896 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
12:03:40.0188 3896 umbus - ok
12:03:40.0220 3896 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
12:03:40.0220 3896 UmPass - ok
12:03:40.0454 3896 UpdaterService (885028c977162896724b78cfd77009ef) C:\ProgramData\UpdaterService\wsupdsvc.exe
12:03:40.0656 3896 UpdaterService - ok
12:03:40.0688 3896 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
12:03:40.0688 3896 upnphost - ok
12:03:40.0719 3896 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
12:03:40.0719 3896 USBAAPL64 - ok
12:03:40.0734 3896 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
12:03:40.0750 3896 usbaudio - ok
12:03:40.0766 3896 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
12:03:40.0766 3896 usbccgp - ok
12:03:40.0797 3896 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
12:03:40.0797 3896 usbcir - ok
12:03:40.0828 3896 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
12:03:40.0828 3896 usbehci - ok
12:03:40.0844 3896 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
12:03:40.0844 3896 usbhub - ok
12:03:40.0859 3896 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
12:03:40.0875 3896 usbohci - ok
12:03:40.0890 3896 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
12:03:40.0890 3896 usbprint - ok
12:03:40.0906 3896 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:03:40.0906 3896 USBSTOR - ok
12:03:40.0922 3896 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
12:03:40.0922 3896 usbuhci - ok
12:03:40.0953 3896 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
12:03:40.0953 3896 usbvideo - ok
12:03:40.0968 3896 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys
12:03:40.0968 3896 usb_rndisx - ok
12:03:40.0984 3896 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
12:03:40.0984 3896 UxSms - ok
12:03:41.0000 3896 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
12:03:41.0000 3896 VaultSvc - ok
12:03:41.0109 3896 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
12:03:41.0109 3896 vdrvroot - ok
12:03:41.0187 3896 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
12:03:41.0187 3896 vds - ok
12:03:41.0202 3896 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
12:03:41.0202 3896 vga - ok
12:03:41.0234 3896 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
12:03:41.0234 3896 VgaSave - ok
12:03:41.0265 3896 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
12:03:41.0265 3896 vhdmp - ok
12:03:41.0280 3896 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
12:03:41.0280 3896 viaide - ok
12:03:41.0312 3896 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
12:03:41.0312 3896 volmgr - ok
12:03:41.0468 3896 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
12:03:41.0468 3896 volmgrx - ok
12:03:41.0483 3896 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
12:03:41.0499 3896 volsnap - ok
12:03:41.0514 3896 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
12:03:41.0514 3896 vsmraid - ok
12:03:41.0577 3896 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
12:03:41.0608 3896 VSS - ok
12:03:41.0624 3896 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
12:03:41.0624 3896 vwifibus - ok
12:03:41.0655 3896 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
12:03:41.0670 3896 vwififlt - ok
12:03:41.0686 3896 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
12:03:41.0686 3896 vwifimp - ok
12:03:41.0717 3896 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
12:03:41.0733 3896 W32Time - ok
12:03:41.0748 3896 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
12:03:41.0748 3896 WacomPen - ok
12:03:41.0780 3896 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
12:03:41.0780 3896 WANARP - ok
12:03:41.0780 3896 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
12:03:41.0780 3896 Wanarpv6 - ok
12:03:41.0842 3896 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
12:03:41.0873 3896 WatAdminSvc - ok
12:03:41.0936 3896 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
12:03:41.0967 3896 wbengine - ok
12:03:41.0982 3896 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
12:03:41.0982 3896 WbioSrvc - ok
12:03:42.0045 3896 WcesComm (8bda6db43aa54e8bb5e0794541ddc209) C:\Windows\WindowsMobile\wcescomm.dll
12:03:42.0045 3896 WcesComm - ok
12:03:42.0060 3896 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
12:03:42.0076 3896 wcncsvc - ok
12:03:42.0092 3896 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
12:03:42.0092 3896 WcsPlugInService - ok
12:03:42.0107 3896 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
12:03:42.0107 3896 Wd - ok
12:03:42.0138 3896 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
12:03:42.0154 3896 Wdf01000 - ok
12:03:42.0170 3896 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:03:42.0170 3896 WdiServiceHost - ok
12:03:42.0185 3896 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
12:03:42.0185 3896 WdiSystemHost - ok
12:03:42.0216 3896 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
12:03:42.0216 3896 WebClient - ok
12:03:42.0232 3896 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
12:03:42.0232 3896 Wecsvc - ok
12:03:42.0248 3896 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
12:03:42.0248 3896 wercplsupport - ok
12:03:42.0294 3896 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
12:03:42.0294 3896 WerSvc - ok
12:03:42.0326 3896 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
12:03:42.0326 3896 WfpLwf - ok
12:03:42.0341 3896 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
12:03:42.0341 3896 WIMMount - ok
12:03:42.0357 3896 WinHttpAutoProxySvc - ok
12:03:42.0404 3896 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
12:03:42.0404 3896 Winmgmt - ok
12:03:42.0466 3896 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
12:03:42.0497 3896 WinRM - ok
12:03:42.0528 3896 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
12:03:42.0528 3896 WinUSB - ok
12:03:42.0560 3896 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
12:03:42.0560 3896 Wlansvc - ok
12:03:42.0700 3896 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:03:42.0747 3896 wlidsvc - ok
12:03:42.0762 3896 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
12:03:42.0762 3896 WmiAcpi - ok
12:03:42.0794 3896 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
12:03:42.0794 3896 wmiApSrv - ok
12:03:42.0825 3896 WMPNetworkSvc - ok
12:03:42.0887 3896 WMZuneComm (83b6ca03c846fcd47f9883d77d1eb27b) c:\Program Files\Zune\WMZuneComm.exe
12:03:42.0887 3896 WMZuneComm - ok
12:03:42.0903 3896 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
12:03:42.0918 3896 WPCSvc - ok
12:03:42.0934 3896 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
12:03:42.0950 3896 WPDBusEnum - ok
12:03:42.0981 3896 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
12:03:42.0981 3896 ws2ifsl - ok
12:03:42.0981 3896 WSearch - ok
12:03:43.0043 3896 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
12:03:43.0090 3896 wuauserv - ok
12:03:43.0121 3896 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
12:03:43.0121 3896 WudfPf - ok
12:03:43.0137 3896 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:03:43.0137 3896 WUDFRd - ok
12:03:43.0152 3896 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
12:03:43.0168 3896 wudfsvc - ok
12:03:43.0199 3896 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
12:03:43.0215 3896 WwanSvc - ok
12:03:43.0386 3896 ZuneNetworkSvc (67b787c34fb2888d01b130ae007042d8) c:\Program Files\Zune\ZuneNss.exe
12:03:43.0511 3896 ZuneNetworkSvc - ok
12:03:43.0574 3896 ZuneWlanCfgSvc (4d89fc1c20cf655739efac5da81a67bc) c:\Program Files\Zune\ZuneWlanCfgSvc.exe
12:03:43.0574 3896 ZuneWlanCfgSvc - ok
12:03:43.0620 3896 MBR (0x1B8) (f7182332b2b601676e896aeeda61ca3a) \Device\Harddisk0\DR0
12:03:43.0808 3896 \Device\Harddisk0\DR0 - ok
12:03:43.0823 3896 Boot (0x1200) (2c93e33009dbd4a04ab783cba51c3f9a) \Device\Harddisk0\DR0\Partition0
12:03:43.0823 3896 \Device\Harddisk0\DR0\Partition0 - ok
12:03:43.0839 3896 Boot (0x1200) (e0a1f7f125b2f2ceb4392975d9978129) \Device\Harddisk0\DR0\Partition1
12:03:43.0839 3896 \Device\Harddisk0\DR0\Partition1 - ok
12:03:43.0854 3896 Boot (0x1200) (32e64ec078546e5cf97ca0088686ec3c) \Device\Harddisk0\DR0\Partition2
12:03:43.0854 3896 \Device\Harddisk0\DR0\Partition2 - ok
12:03:43.0854 3896 ============================================================
12:03:43.0854 3896 Scan finished
12:03:43.0854 3896 ============================================================
12:03:43.0870 3724 Detected object count: 1
12:03:43.0870 3724 Actual detected object count: 1
12:03:51.0280 3724 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
12:03:51.0296 3724 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
12:04:00.0016 4944 Deinitialize success










mbam log




Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.26.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Owner :: ALFRED [administrator]

3/30/2012 12:04:39 PM
mbam-log-2012-03-30 (12-04-39).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 579276
Time elapsed: 1 hour(s), 25 minute(s), 51 second(s)

Memory Processes Detected: 4
C:\ProgramData\UpdaterService\wsupdsvc.exe (PUP.BundleInstaller.IB) -> 3164 -> No action taken.
C:\ProgramData\UpdaterService\wsupdsvc.exe (PUP.BundleInstaller.IB) -> 4088 -> No action taken.
C:\Program Files (x86)\BasicScan\basicscan.exe (Adware.Zwangi) -> 1608 -> Delete on reboot.
C:\Program Files (x86)\BasicScan\basicscan.exe (Adware.Zwangi) -> 2024 -> Delete on reboot.

Memory Modules Detected: 1
C:\Program Files (x86)\BasicScan\basicscan.dll (Adware.Zwangi) -> Delete on reboot.

Registry Keys Detected: 5
HKLM\SYSTEM\CurrentControlSet\Services\UpdaterService (PUP.BundleInstaller.IB) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WhiteSmoke Updater Service (PUP.BundleInstaller.IB) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33524C00-63FB-43DB-A6BF-0A4E14B24649} (Adware.Zwangi) -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\BasicScan Service (Adware.Zwangi) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\BASICSCAN (Adware.Zwangi) -> Quarantined and deleted successfully.

Registry Values Detected: 3
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.QHost.BG) -> Data: C:\Windows\system32\config\systemprofile\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BasicScan|DisplayName (Adware.Zwangi) -> Data: BasicScan 1.0 build 115 -> Quarantined and deleted successfully.
HKLM\SYSTEM\CurrentControlSet\Services\BasicScan Service|ImagePath (Adware.Zwangi) -> Data: "C:\Program Files (x86)\BasicScan\basicscan.exe" "C:\Program Files (x86)\BasicScan\basicscan.dll" caquboget zirumihuj -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 10
C:\ProgramData\UpdaterService\wsupdsvc.exe (PUP.BundleInstaller.IB) -> No action taken.
C:\Users\Owner\AppData\Local\Temp\_teD9E0.exe (PUP.BundleInstaller.IB) -> No action taken.
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0004.dta (Rootkit.Agent.Gen) -> Quarantined and deleted successfully.
C:\Users\Owner\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NHMXT8FP\Setup.exe (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\36f9cb16-30cd5f3c (Trojan.Zbot) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\36f9cb16-30cd5f3c (Trojan.Zbot) -> Quarantined and deleted successfully.
C:\ProgramData\BasicScan\basicscan115.exe (Adware.Zwangi) -> Quarantined and deleted successfully.
C:\Program Files (x86)\BasicScan\basicscan.dll (Adware.Zwangi) -> Delete on reboot.
C:\Program Files (x86)\BasicScan\basicscan.exe (Adware.Zwangi) -> Delete on reboot.
C:\Windows\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

(end)










minitoolbox log





MiniToolBox by Farbar Version: 18-01-2012
Ran by Owner (administrator) on 30-03-2012 at 14:07:02
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































149.5.18.172 www.google-analytics.com.
149.5.18.172 ad-emea.doubleclick.net.
149.5.18.172 www.statcounter.com.
108.163.215.51 www.google-analytics.com.
108.163.215.51 ad-emea.doubleclick.net.
108.163.215.51 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros 802.11 a/b/g/n Dualband Wireless Network Module = Wireless Network Connection (Hardware not present)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Alfred
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : westell.com
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 90-E6-BA-3E-20-10
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.westell.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Ping request could not find host google.com. Please check the name and try again.
Ping request could not find host yahoo.com. Please check the name and try again.
Ping request could not find host bleepingcomputer.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...90 e6 ba 3e 20 10 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
1 306 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog5 08 mswsock.dll [File Not found] ()
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog5 08 mswsock.dll [File Not found] ()
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/30/2012 01:52:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "NeroAPIFiles,processorArchitecture="x86",type="win32",version="9.0.0.0"1".
Dependent Assembly NeroAPIFiles,processorArchitecture="x86",type="win32",version="9.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (03/30/2012 11:59:35 AM) (Source: HP Advisor) (User: )
Description: Timestamp: 03/30/2012 11:59:35.986;
Category: FATAL;
Priority:(4);
Win32 Thread Id: [1396];
Message: Unhandled Exception: System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.NullReferenceException: Object reference not set to an instance of an object.
at HPAdvisor.MainFrame.Windows.DockViewBase.UpdatePosition()
at HPAdvisor.MainFrame.Windows.DockViewBase.displaySettingsChanged(Object sender, EventArgs e)
--- End of inner exception stack trace ---
at System.RuntimeMethodHandle._InvokeMethodFast(Object target, Object[] arguments, SignatureStruct& sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
at System.RuntimeMethodHandle.InvokeMethodFast(Object target, Object[] arguments, Signature sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
at System.Reflection.RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture, Boolean skipVisibilityChecks)
at System.Delegate.DynamicInvokeImpl(Object[] args)
at Microsoft.Win32.SystemEvents.SystemEventInvokeInfo.InvokeCallback(Object arg)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler);
EventId: 400;
Severity: Critical;
Machine: ALFRED;
Application Domain: HPAdvisor.exe;
Process Id: 1256;
Process Name: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe;
Extended Properties:

Error: (03/30/2012 11:33:43 AM) (Source: HP Advisor) (User: )
Description: Timestamp: 03/30/2012 11:33:43.484;
Category: FATAL;
Priority:(4);
Win32 Thread Id: [1396];
Message: System.InvalidOperationException: ShowDialog can be called only on hidden windows.
at System.Windows.Window.ShowDialog()
at HPAdvisor.Common.Utility.MessageBoxPanel.ShowPanel(Window _parent)
at HPAdvisor.MyApp.OnDispatcherUnhandledException(Object sender, DispatcherUnhandledExceptionEventArgs e);
EventId: 400;
Severity: Critical;
Machine: ALFRED;
Application Domain: HPAdvisor.exe;
Process Id: 1256;
Process Name: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe;
Extended Properties:

Error: (03/30/2012 11:33:35 AM) (Source: HP Advisor) (User: )
Description: Timestamp: 03/30/2012 11:33:35.231;
Category: FATAL;
Priority:(4);
Win32 Thread Id: [1396];
Message: Unhandled Exception: System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.NullReferenceException: Object reference not set to an instance of an object.
at HPAdvisor.MainFrame.Windows.DockViewBase.UpdatePosition()
at HPAdvisor.MainFrame.Windows.DockViewBase.displaySettingsChanged(Object sender, EventArgs e)
--- End of inner exception stack trace ---
at System.RuntimeMethodHandle._InvokeMethodFast(Object target, Object[] arguments, SignatureStruct& sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
at System.RuntimeMethodHandle.InvokeMethodFast(Object target, Object[] arguments, Signature sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
at System.Reflection.RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture, Boolean skipVisibilityChecks)
at System.Delegate.DynamicInvokeImpl(Object[] args)
at Microsoft.Win32.SystemEvents.SystemEventInvokeInfo.InvokeCallback(Object arg)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler);
EventId: 400;
Severity: Critical;
Machine: ALFRED;
Application Domain: HPAdvisor.exe;
Process Id: 1256;
Process Name: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe;
Extended Properties:

Error: (03/30/2012 09:56:54 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (03/30/2012 09:54:03 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.

Error: (03/30/2012 09:53:34 AM) (Source: HP Advisor) (User: )
Description: Timestamp: 03/30/2012 09:53:34.948;
Category: FATAL;
Priority:(4);
Win32 Thread Id: [1396];
Message: Unhandled Exception: System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.NullReferenceException: Object reference not set to an instance of an object.
at HPAdvisor.MainFrame.Windows.DockViewBase.UpdatePosition()
at HPAdvisor.MainFrame.Windows.DockViewBase.displaySettingsChanged(Object sender, EventArgs e)
--- End of inner exception stack trace ---
at System.RuntimeMethodHandle._InvokeMethodFast(Object target, Object[] arguments, SignatureStruct& sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
at System.RuntimeMethodHandle.InvokeMethodFast(Object target, Object[] arguments, Signature sig, MethodAttributes methodAttributes, RuntimeTypeHandle typeOwner)
at System.Reflection.RuntimeMethodInfo.Invoke(Object obj, BindingFlags invokeAttr, Binder binder, Object[] parameters, CultureInfo culture, Boolean skipVisibilityChecks)
at System.Delegate.DynamicInvokeImpl(Object[] args)
at Microsoft.Win32.SystemEvents.SystemEventInvokeInfo.InvokeCallback(Object arg)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler);
EventId: 400;
Severity: Critical;
Machine: ALFRED;
Application Domain: HPAdvisor.exe;
Process Id: 1256;
Process Name: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe;
Extended Properties:

Error: (03/30/2012 05:52:38 AM) (Source: Application Error) (User: )
Description: Faulting application name: NobuActivation.exe, version: 1.1.20.0, time stamp: 0x4a0a0fbd
Faulting module name: NobuActivation.exe, version: 1.1.20.0, time stamp: 0x4a0a0fbd
Exception code: 0xc0000409
Fault offset: 0x0003fbd3
Faulting process id: 0xa5c
Faulting application start time: 0xNobuActivation.exe0
Faulting application path: NobuActivation.exe1
Faulting module path: NobuActivation.exe2
Report Id: NobuActivation.exe3

Error: (03/30/2012 05:52:19 AM) (Source: HP Advisor) (User: )
Description: Timestamp: 03/30/2012 05:52:19.181;
Category: FATAL;
Priority:(4);
Win32 Thread Id: [1396];
Message: Unhandled Exception: System.Configuration.ConfigurationErrorsException: Failed to save settings: An error occurred loading a configuration file: Unable to open file 'C:\Users\Owner\AppData\Local\Hewlett-Packard\HPAdvisor.exe_Url_mcixdsg4ikd5i1gipqgefy0tj33souow\3.3.12286.3436\user.config' for writing because it is read-only or hidden. (C:\Users\Owner\AppData\Local\Hewlett-Packard\HPAdvisor.exe_Url_mcixdsg4ikd5i1gipqgefy0tj33souow\3.3.12286.3436\user.config) ---> System.Configuration.ConfigurationErrorsException: An error occurred loading a configuration file: Unable to open file 'C:\Users\Owner\AppData\Local\Hewlett-Packard\HPAdvisor.exe_Url_mcixdsg4ikd5i1gipqgefy0tj33souow\3.3.12286.3436\user.config' for writing because it is read-only or hidden. (C:\Users\Owner\AppData\Local\Hewlett-Packard\HPAdvisor.exe_Url_mcixdsg4ikd5i1gipqgefy0tj33souow\3.3.12286.3436\user.config) ---> System.IO.IOException: Unable to open file 'C:\Users\Owner\AppData\Local\Hewlett-Packard\HPAdvisor.exe_Url_mcixdsg4ikd5i1gipqgefy0tj33souow\3.3.12286.3436\user.config' for writing because it is read-only or hidden.
at System.Configuration.Internal.InternalConfigHost.StaticOpenStreamForWrite(String streamName, String templateStreamName, Object& writeContext, Boolean assertPermissions)
at System.Configuration.Internal.InternalConfigHost.System.Configuration.Internal.IInternalConfigHost.OpenStreamForWrite(String streamName, String templateStreamName, Object& writeContext, Boolean assertPermissions)
at System.Configuration.Internal.DelegatingConfigHost.OpenStreamForWrite(String streamName, String templateStreamName, Object& writeContext, Boolean assertPermissions)
at System.Configuration.ClientSettingsStore.ClientSettingsConfigurationHost.OpenStreamForWrite(String streamName, String templateStreamName, Object& writeContext)
at System.Configuration.UpdateConfigHost.OpenStreamForWrite(String streamName, String templateStreamName, Object& writeContext)
at System.Configuration.MgmtConfigurationRecord.SaveAs(String filename, ConfigurationSaveMode saveMode, Boolean forceUpdateAll)
--- End of inner exception stack trace ---
at System.Configuration.MgmtConfigurationRecord.SaveAs(String filename, ConfigurationSaveMode saveMode, Boolean forceUpdateAll)
at System.Configuration.Configuration.SaveAsImpl(String filename, ConfigurationSaveMode saveMode, Boolean forceSaveAll)
at System.Configuration.Configuration.Save()
at System.Configuration.ClientSettingsStore.WriteSettings(String sectionName, Boolean isRoaming, IDictionary newSettings)
--- End of inner exception stack trace ---
at System.Configuration.ClientSettingsStore.WriteSettings(String sectionName, Boolean isRoaming, IDictionary newSettings)
at System.Configuration.LocalFileSettingsProvider.SetPropertyValues(SettingsContext context, SettingsPropertyValueCollection values)
at System.Configuration.SettingsBase.SaveCore()
at System.Configuration.SettingsBase.Save()
at System.Configuration.ApplicationSettingsBase.Save()
at HPAdvisor.Common.Ceement.CeeWriter.AdvisorCeeWriter..ctor()
at HPAdvisor.MainFrame.Business.CTrackElementWriter..ctor()
at HPAdvisor.MyApp.get_ObjTrackElmntWriter()
at HPAdvisor.MyApp.TrackCeement(Object trigger, CTrackElementInfo trackInfo, Boolean isAppending)
at HPAdvisor.MainFrame.Windows.DockViewWindow.TrackCeement(Object trigger, CTrackElementInfo trackInfo, Boolean isAppending)
at HPAdvisor.MainFrame.Windows.DockViewWindow.SetCeementData(ActionType _at, String ElementName, String ElementType, NameValueCollection keyValuePairs, Boolean bAppending)
at HPAdvisor.MainFrame.Windows.DockViewWindow._Activate(ViewStateArgs _args)
at HPAdvisor.MainFrame.Business.ManagerView.OpenViewState(ViewStateArgs _args)
at HPAdvisor.MainFrame.Business.ManagerView.ChangeViewStateRoutine(ViewStateArgs _args)
at HPAdvisor.MyApp.InitViewManager()
at HPAdvisor.MyApp.OnStartup(StartupEventArgs e)
at System.Windows.Application.<.ctor>b__0(Object unused)
at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Boolean isSingleParameter)
at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Boolean isSingleParameter, Delegate catchHandler);
EventId: 400;
Severity: Critical;
Machine: ALFRED;
Application Domain: HPAdvisor.exe;
Process Id: 1256;
Process Name: C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe;
Extended Properties:

Error: (03/30/2012 05:47:09 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.
.


System errors:
=============
Error: (03/30/2012 00:05:30 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%5

Error: (03/30/2012 00:05:30 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%5

Error: (03/30/2012 00:05:28 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (03/30/2012 00:05:30 PM) (Source: PNRPSvc) (User: )
Description: 0x80070005

Error: (03/30/2012 00:04:58 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%5

Error: (03/30/2012 00:04:58 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%5

Error: (03/30/2012 00:04:57 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

Error: (03/30/2012 00:04:58 PM) (Source: PNRPSvc) (User: )
Description: 0x80070005

Error: (03/30/2012 00:04:16 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%5

Error: (03/30/2012 00:04:16 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%5


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Activate Norton Online Backup (Version: 1.1.20.0)
Adobe Community Help (Version: 3.4.980)
Adobe Flash Player 10 Plugin (Version: 10.0.2.54)
Adobe Flash Player 10 Plugin (Version: 10.0.32.18)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.62)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Reader 9.4.7 (Version: 9.4.7)
Adobe Shockwave Player 11.5 (Version: 11.5.8.612)
AIM 7
Akamai NetSession Interface
Akamai NetSession Interface Service
Amazon MP3 Downloader 1.0.9
Apple Application Support (Version: 1.4.1)
Apple Mobile Device Support (Version: 3.3.1.3)
Apple Software Update (Version: 2.1.1.116)
ArcSoft PhotoImpression 5
ArcSoft VideoImpression 2
ArcSoft WebCam Companion 2
blinkx beat (Version: 1.5.0)
Bonjour (Version: 2.0.4.0)
CCleaner (Version: 3.16)
CDisplay 1.8
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
CyberLink DVD Suite Deluxe (Version: 6.0.3101)
D3DX10 (Version: 15.4.2368.0902)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
DivX Setup (Version: 2.6.1.5)
Download Updater (AOL LLC)
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
FileZilla Client 3.3.2.1 (Version: 3.3.2.1)
FL Studio 10
FLV Player 2.0 (build 25) (Version: 2.0 (build 25))
Google Chrome (Version: 17.0.963.83)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.111)
Hardware Diagnostic Tools (Version: 6.0.5434.08)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
Homepage Protection (Version: )
HP Advisor (Version: 3.3.12286.3436)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.0.71)
HP MediaSmart Demo (Version: 1.00.0000)
HP MediaSmart DVD (Version: 3.0.3420)
HP MediaSmart Movie Themes (Version: 3.0.3102)
HP MediaSmart Music/Photo/Video (Version: 3.1.3601)
HP MediaSmart SmartMenu (Version: 3.0.28.2)
HP Odometer (Version: 2.10.0000)
HP Remote Solution (Version: 1.1.9.0)
HP Setup (Version: 1.2.3220.3079)
HP Support Assistant (Version: 6.1.12.1)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.001.000.014)
ID3-TagIT 3 (Version: 3)
IL Download Manager
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2226)
iTunes (Version: 10.1.2.17)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 26 (Version: 6.0.260)
LabelPrint (Version: 2.5.1901)
LightScribe System Software (Version: 1.18.5.1)
LimeWire PRO 5.4.6 (Version: 5.4.6)
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Home and Student 60 day trial
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook 2007 Trial (Version: 12.0.6425.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MotoHelper 2.0.40 Driver 4.8.0 (Version: 2.0.40)
MotoHelper MergeModules (Version: 1.2.0)
MOTOROLA MEDIA LINK (Version: 1.2.5900.9)
Motorola Mobile Drivers Installation 4.9.0 (Version: 4.9.0)
Move Media Player
Mozilla Firefox (3.6.15) (Version: 3.6.15 (en-US))
Mozilla Firefox (3.6.16) (Version: 3.6.16 (en-US))
Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Netflix in Windows Media Center (Version: 3.3.101.0)
Norton Internet Security (Version: 16.8.3.6)
Norton Security Scan (Version: 2.7.3.34)
Photopos Toolbar (Remove Toolbar Only)
PictureMover (Version: 3.3.1.19)
Power2Go (Version: 6.0.3101)
PowerDirector (Version: 7.0.3101)
PowerRecover (Version: 5.5.1923)
PricePeep for Internet Explorer (Version: 2.1.83.0)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.6196)
Safari (Version: 5.33.19.4)
Skype™ 5.0 (Version: 5.0.152)
Sprite Backup HTC (Version: 6.2.1.2269)
Tag&Rename 3.5.4 (Version: 3.5.4)
TextPad 5 (Version: 5.2.0)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2597998) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office Outlook 2007 (KB2583910)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Script Editor Help (KB963671)
Update Installer for WildTangent Games App
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Verizon Download Manager (Version: 12)
Verizon High Speed Internet
Virtual DJ - Atomix Productions
Vuze (Version: 4.7)
WavePad Sound Editor
WhiteSmoke Updater Service (Version: 11,6,20,3)
WhiteSmoke US Toolbar (Version: 6.8.8.8)
WhiteSmokeTranslator (Version: 1.00.6033.12731)
WildTangent Games App (HP Games) (Version: 4.0.5.36)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)
Windows Mobile Device Center Driver Update (Version: 6.1.6965.0)
Windows Mobile Device Updater Component (Version: 04.08.2345.00)
Windows Mobile® Device Handbook (Version: 1.0)
WinRAR archiver
Yontoo Layers Runtime 1.10.01 (Version: 1.10.01)
Zune (Version: 04.08.2345.00)
Zune Language Pack (CHS) (Version: 04.08.2345.00)
Zune Language Pack (CHT) (Version: 04.08.2345.00)
Zune Language Pack (CSY) (Version: 04.08.2345.00)
Zune Language Pack (DAN) (Version: 04.08.2345.00)
Zune Language Pack (DEU) (Version: 04.08.2345.00)
Zune Language Pack (ELL) (Version: 04.08.2345.00)
Zune Language Pack (ESP) (Version: 04.08.2345.00)
Zune Language Pack (FIN) (Version: 04.08.2345.00)
Zune Language Pack (FRA) (Version: 04.08.2345.00)
Zune Language Pack (HUN) (Version: 04.08.2345.00)
Zune Language Pack (IND) (Version: 04.08.2345.00)
Zune Language Pack (ITA) (Version: 04.08.2345.00)
Zune Language Pack (JPN) (Version: 04.08.2345.00)
Zune Language Pack (KOR) (Version: 04.08.2345.00)
Zune Language Pack (MSL) (Version: 04.08.2345.00)
Zune Language Pack (NLD) (Version: 04.08.2345.00)
Zune Language Pack (NOR) (Version: 04.08.2345.00)
Zune Language Pack (PLK) (Version: 04.08.2345.00)
Zune Language Pack (PTB) (Version: 04.08.2345.00)
Zune Language Pack (PTG) (Version: 04.08.2345.00)
Zune Language Pack (RUS) (Version: 04.08.2345.00)
Zune Language Pack (SVE) (Version: 04.08.2345.00)

========================= Devices: ================================

Name: Atheros 802.11 a/b/g/n Dualband Wireless Network Module
Description: Atheros 802.11 a/b/g/n Dualband Wireless Network Module
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Windows Firewall Authorization Driver
Description: Windows Firewall Authorization Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: mpsdrv
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 8157.18 MB
Available physical RAM: 5856.87 MB
Total Pagefile: 16312.55 MB
Available Pagefile: 13293.6 MB
Total Virtual: 4095.88 MB
Available Virtual: 3945.23 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:686.69 GB) (Free:262.34 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.83 GB) (Free:2.14 GB) NTFS

========================= Users: ========================================

User accounts for \\ALFRED

Administrator Guest Owner

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:17 AM

Posted 30 March 2012 - 05:08 PM

Hi

There is still some malware showing in the logs

Step 1

Please update MBAM again, then run a full scan, making sure to remove all threats found, and post the log in your next reply.

Step 2

Please click HERE to download Kaspersky Virus Removal Tool (click on the Download link for Version 11). NOTE. This is quite large file, so be patient.
  • Double click on the file you just downloaded and let it install.
  • It will install to your desktop (be patient; it may take a while).
  • Accept license agreement and click "Start" button.
  • Click on Settings button Posted Image
    • In Scan scope leave pre-checked items as they're and also checkmark My Computer
    • In Actions checkmark Select action: (disinfect; delete if disinfection fails) instead of preselected Prompt on detection
  • Click on Automatic Scan tab and then click on Start scanning button.
  • Before it is done it may prompt for action regardless of the setting so choose delete if prompted.
  • When the scan is done NO log will be produced.
  • Click on Report button Posted Image then on Automatic Scan report tab.
  • Right click anywhere within right pane, click Select All then right click again and click Copy.
  • This will copy the items that it found to the clipboard you can then open notepad (go to start then run then type in notepad) and choose paste to paste the contents into Notepad.
  • You can save this on the desktop.
  • Post the contents of the document in your next reply.
Step 3

Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.


Step 4


ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Please go here to run the scan.

    Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
    All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.

  • Select the option YES, I accept the Terms of Use then click on: Posted Image
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: Posted Image
  • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: Posted Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

Edited by dev00790, 30 March 2012 - 05:08 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 04 April 2012 - 07:45 AM

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.26.08

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Owner :: ALFRED [administrator]

4/2/2012 5:19:11 PM
mbam-log-2012-04-02 (17-19-11).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 580949
Time elapsed: 1 hour(s), 26 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKLM\SYSTEM\CurrentControlSet\Services\UpdaterService (PUP.BundleInstaller.IB) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WhiteSmoke Updater Service (PUP.BundleInstaller.IB) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\ProgramData\UpdaterService\wsupdsvc.exe (PUP.BundleInstaller.IB) -> Quarantined and deleted successfully.
C:\Users\Owner\AppData\Local\Temp\_teD9E0.exe (PUP.BundleInstaller.IB) -> Quarantined and deleted successfully.
C:\Program Files (x86)\mozjs.dll (Spyware.OnlineGames) -> Quarantined and deleted successfully.

(end)









eset onlne scanner





C:\$Recycle.Bin\S-1-5-21-2193901143-2822497681-3665832931-1000\$RXCC5GO\WSRegistrationDictMode.exe probably a variant of Win32/WhiteSmoke application
C:\$Recycle.Bin\S-1-5-21-2193901143-2822497681-3665832931-1000\$RXCC5GO\html\english\dictClientDic\index.html HTML/WhiteSmoke application
C:\Desktop\Mozilla Firefox\extensions\{6AA54174-C9E8-4B07-95A0-0FBC19CBE64C}\chrome\basicscan.jar Win32/Adware.OneStep application
C:\Program Files (x86)\Yontoo Layers Runtime\YontooIEClient.dll a variant of Win32/Adware.Yontoo.A application
C:\ProgramData\Microsoft\Windows\DRM\DE91.tmp Win64/Olmarik.AD trojan
C:\ProgramData\Microsoft\Windows\DRM\DEA2.tmp Win64/Olmarik.AD trojan
C:\ProgramData\Tarma Installer\{2E1037EA-038A-425F-86B9-6CD19B8497E9}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AWO trojan
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AG trojan
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0005.dta Win64/Olmarik.AF trojan
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0009.dta Win32/Olmarik.AWO trojan
C:\TDSSKiller_Quarantine\30.03.2012_05.49.05\mbr0000\tdlfs0000\tsk0010.dta Win64/Olmarik.X trojan
C:\Users\All Users\Microsoft\Windows\DRM\DE91.tmp Win64/Olmarik.AD trojan
C:\Users\All Users\Microsoft\Windows\DRM\DEA2.tmp Win64/Olmarik.AD trojan
C:\Users\All Users\Tarma Installer\{2E1037EA-038A-425F-86B9-6CD19B8497E9}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application
C:\Users\All Users\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application
C:\Users\Owner\Admin\Sony Vegas 9.0\moviestudiope90a install.exe Win32/Bifrose.NEL trojan
C:\Users\Owner\Admin\Sony Vegas 9.0\Sony vegas install + Patch.zip multiple threats
C:\Users\Owner\AppData\Local\62a3e052\U\800000cf.@ Win64/Sirefef.U trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\334136ca-12f0b099 a variant of Java/Exploit.Agent.NAL trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\2781ea0d-4101f650 a variant of Java/TrojanDownloader.Agent.NDJ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\5fe93a0e-7d9bdedc a variant of Java/Exploit.Blacole.AN trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\456472d2-1ea28d23 a variant of Java/TrojanDownloader.Agent.NDJ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\19\10ff7513-4ccf1767 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\3fe69555-11428378 Java/Exploit.CVE-2011-3544.BG trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\3fe69555-16ecbcce Java/Exploit.CVE-2011-3544.BG trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\45205095-52651bba multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\7101fbd5-47074a0c multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\22\373e3fd6-2c508497 a variant of Java/TrojanDownloader.OpenConnection.AQ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\37a54b9c-322fe016 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\5fd6a89c-158d4256 a variant of Java/Exploit.CVE-2011-3544.AO trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\c3ee35c-71037c8d multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\3c51235d-3c900465 Java/Exploit.CVE-2011-3544.H trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\3\11ad6003-3f7cc029 Java/Agent.EA trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\3a25b1e-39e6e6e9 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\1f80969f-2f00fed1 Java/Exploit.CVE-2010-0844.A trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\a11d45f-5d79adf2 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\36a4d420-60f008af a variant of Java/TrojanDownloader.Agent.NCT trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\12b52ba2-56a031e7 a variant of Java/Exploit.CVE-2011-3544.B trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\290a52e3-77c1e8ef multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\53c54425-4d1bcad7 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\2b19b866-4c7c3710 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\40591084-2a66faed Java/TrojanDownloader.Agent.NBL trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\cdca84-7f7138b8 a variant of Java/TrojanDownloader.OpenConnection.AQ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\174ec6ab-3adefb6b multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\b96086b-234e1327 OSX/Exploit.Smid.B trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\257a302d-5a95c92f Java/Exploit.CVE-2009-3867.AL trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\787b4c2d-2869da75 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\2fd1b4ee-1c94209f a variant of Java/TrojanDownloader.Agent.NDJ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\46\4c2baf2e-41f1d920 a variant of Java/TrojanDownloader.Agent.NDJ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\1e57fa2f-4adda466 a variant of Java/TrojanDownloader.Agent.NDJ trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\42850831-58f7e2eb a variant of Java/Exploit.Agent.NAL trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\39f386c5-65b26639 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\4c81ed73-14d9bbcd probably a variant of Java/Agent.BR trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\28c00235-57f18391 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\640c67b5-208e90eb Java/TrojanDownloader.Agent.NBM trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\6a235075-44e53b5d Java/TrojanDownloader.Agent.NDR trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\6a235075-6ef82c11 Java/TrojanDownloader.Agent.NDR trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\447b42b7-1ef24b67 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\56\5ad4b738-147790e7 Java/Agent.BV trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\71c3b839-5985de52 multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\5749493b-76f7782b multiple threats
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\7d60f77b-7d2d3b6c Java/Exploit.CVE-2011-3544.T trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\6\25eb9c86-51e18084 a variant of Java/Exploit.Agent.NAC trojan
C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\3f5641c8-7c6e97db Java/TrojanDownloader.Agent.NBK trojan
C:\Users\Owner\AppData\Roaming\7AB25\7AB25\nnafru.dll a variant of Win32/Kryptik.ADGH trojan
C:\Users\Owner\Downloads\cnet_r2vcnv_exe.exe a variant of Win32/InstallCore.D application
C:\Users\Owner\Downloads\flstudio_10.0_online.exe Win32/OpenCandy application
C:\Windows\System32\config\systemprofile\AppData\Local\Skype\SkypePM.exe Win32/LockScreen.AIG trojan
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\28ede65c-1233c5d2 Java/Exploit.CVE-2012-0507.B trojan
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\966377-43678ee0 multiple threats
C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\4146893b-51d6d3ee Java/Exploit.CVE-2012-0507.B trojan
C:\Windows\System32\config\systemprofile\AppData\Roaming\Apple Computer\Apple Computer\klzgc.dll a variant of Win32/Kryptik.ADGH trojan
C:\Windows\System32\config\systemprofile\AppData\Roaming\Apple Computer\Apple Computer\nnafru.dll a variant of Win32/Kryptik.ADGH trojan
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Skype\SkypePM.exe Win32/LockScreen.AIG trojan
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\28\28ede65c-1233c5d2 Java/Exploit.CVE-2012-0507.B trojan
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\966377-43678ee0 multiple threats
C:\Windows\SysWOW64\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\59\4146893b-51d6d3ee Java/Exploit.CVE-2012-0507.B trojan
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Apple Computer\Apple Computer\klzgc.dll a variant of Win32/Kryptik.ADGH trojan
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Apple Computer\Apple Computer\nnafru.dll a variant of Win32/Kryptik.ADGH trojan
C:\Windows\Temp\123B.tmp a variant of Win32/Kryptik.ACYZ trojan
C:\Windows\Temp\15C3.tmp a variant of Win32/Kryptik.ACYZ trojan
C:\Windows\Temp\B2DC.tmp a variant of Win32/Injector.PLT trojan
C:\Windows\Temp\B349.tmp a variant of Win32/Injector.PLT trojan
C:\Windows\Temp\jar_cache1843874834176319698.tmp a variant of Java/Exploit.CVE-2012-0507.B trojan
C:\Windows\Temp\~!#6290.tmp Win32/LockScreen.AIG trojan
C:\Windows\Temp\~!#B869.tmp a variant of Win32/Kryptik.ADIL trojan
C:\Windows\Temp\~!#BF1F.tmp a variant of Win32/Kryptik.ADIL trojan
Operating memory a variant of Win32/Adware.Yontoo.A application










SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/03/2012 at 00:24 AM

Application Version : 5.0.1146

Core Rules Database Version : 8409
Trace Rules Database Version: 6221

Scan type : Complete Scan
Total Scan Time : 01:20:51

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 407
Memory threats detected : 0
Registry items scanned : 66909
Registry threats detected : 13
File items scanned : 112284
File threats detected : 370

Malware.Trace
(x86) HKU\S-1-5-21-2193901143-2822497681-3665832931-1000\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON#SHELL

Disabled.TaskManager
(x86) HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM#DISABLETASKMGR
(x86) HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM#DISABLETASKMGR

PUP.Whitesmoke
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#DistID
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#Build
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#ContentVersion
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#Dir
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#IslicensedVersion
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#ProductName
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#Version
(x86) HKLM\SOFTWARE\WhiteSmokeTranslator#SerialKey
(x86) HKU\S-1-5-21-2193901143-2822497681-3665832931-1000\Software\WhiteSmokeTranslator

Adware.Tracking Cookie
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\TOE5LLCA.txt [ /pro-market.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\RXEMX6PE.txt [ /mediaservices-d.openxenterprise.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\CLZDUN4G.txt [ /advertising.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\RPEN22R3.txt [ /imrworldwide.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\4ZRJU2VF.txt [ /ad2.adfarm1.adition.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\VGLBC8AG.txt [ /ads.pubmatic.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\5A5WJ2MI.txt [ /kontera.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\X1S6KXTH.txt [ /questionmarket.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\AL1EZSXU.txt [ /adfarm1.adition.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\7Y4LNM20.txt [ /directtrack.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\XVTRV517.txt [ /adxpose.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\VHC8QGTS.txt [ /media6degrees.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\G78M7P9H.txt [ /www.consumersdiscountrx.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\WKXTDE47.txt [ /tribalfusion.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\J1I8MO2M.txt [ /openx.jeetyetmedia.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\0KO33F54.txt [ /dmtracker.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\OMLP2IUH.txt [ /specificclick.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\BEFCZ53B.txt [ /zedo.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\DDDFAH7N.txt [ /lucidmedia.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\IO71LOBZ.txt [ /apmebf.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\8SAS2O5Y.txt [ /picadmedia.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\NT434938.txt [ /fastclick.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\B5SFP9JZ.txt [ /legolas-media.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\822ZN7LF.txt [ /interclick.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\TIFRH1MH.txt [ /a1.interclick.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\439L09WM.txt [ /at.atwola.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\84682KJ9.txt [ /revsci.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\VNK6RD98.txt [ /atdmt.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\DREFSKWN.txt [ /collective-media.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\UWZVUW5P.txt [ /asseenonpc.directtrack.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\21P7VQ8H.txt [ /pointroll.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\29UE7AF1.txt [ /accounts.youtube.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\OYE63309.txt [ /adbrite.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\JJKK18R4.txt [ /c.atdmt.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\18H76XXZ.txt [ /accounts.google.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\TQN3RKWE.txt [ /burstnet.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\B16NNUZB.txt [ /jeetyetmedia.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\J578SH3Z.txt [ /edge.jeetyetmedia.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\J2GLR1YB.txt [ /ads.pointroll.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\NKLRE4AJ.txt [ /mediaplex.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\66DGH3VB.txt [ /casalemedia.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\T8226ICC.txt [ /cts.metricsdirect.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\SDHOQ46H.txt [ /www.burstnet.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\XNDRETFD.txt [ /ru4.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\XWXQ0MGE.txt [ /cts.zroitracker.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\BTX1BD0N.txt [ /affiliatetracking.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\0T3XBQY0.txt [ /ads.adk2.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\NBFH90TP.txt [ /counter.hitslink.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\YIXNAT2H.txt [ /skinmedica.122.2o7.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\G7G41QP1.txt [ /doubleclick.net ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\NKWSKOWF.txt [ /ad.yieldmanager.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\KZQERG7G.txt [ /serving-sys.com ]
C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Cookies\LAGUN0KB.txt [ /invitemedia.com ]
C:\USERS\OWNER\AppData\Roaming\Microsoft\Windows\Cookies\Low\JE421Y8V.txt [ Cookie:owner@google.com/accounts/ ]
C:\USERS\OWNER\AppData\Roaming\Microsoft\Windows\Cookies\Low\0FFUEKYH.txt [ Cookie:owner@www.google.com/accounts ]
C:\USERS\OWNER\Cookies\RXEMX6PE.txt [ Cookie:owner@mediaservices-d.openxenterprise.com/ ]
C:\USERS\OWNER\Cookies\CLZDUN4G.txt [ Cookie:owner@advertising.com/ ]
C:\USERS\OWNER\Cookies\4ZRJU2VF.txt [ Cookie:owner@ad2.adfarm1.adition.com/ ]
C:\USERS\OWNER\Cookies\5A5WJ2MI.txt [ Cookie:owner@kontera.com/ ]
C:\USERS\OWNER\Cookies\X1S6KXTH.txt [ Cookie:owner@questionmarket.com/ ]
C:\USERS\OWNER\Cookies\AL1EZSXU.txt [ Cookie:owner@adfarm1.adition.com/ ]
C:\USERS\OWNER\Cookies\7Y4LNM20.txt [ Cookie:owner@directtrack.com/ ]
C:\USERS\OWNER\Cookies\VHC8QGTS.txt [ Cookie:owner@media6degrees.com/ ]
C:\USERS\OWNER\Cookies\WKXTDE47.txt [ Cookie:owner@tribalfusion.com/ ]
C:\USERS\OWNER\Cookies\0KO33F54.txt [ Cookie:owner@dmtracker.com/ ]
C:\USERS\OWNER\Cookies\OMLP2IUH.txt [ Cookie:owner@specificclick.net/ ]
C:\USERS\OWNER\Cookies\8SAS2O5Y.txt [ Cookie:owner@picadmedia.com/ ]
C:\USERS\OWNER\Cookies\NT434938.txt [ Cookie:owner@fastclick.net/ ]
C:\USERS\OWNER\Cookies\TIFRH1MH.txt [ Cookie:owner@a1.interclick.com/ ]
C:\USERS\OWNER\Cookies\84682KJ9.txt [ Cookie:owner@revsci.net/ ]
C:\USERS\OWNER\Cookies\DREFSKWN.txt [ Cookie:owner@collective-media.net/ ]
C:\USERS\OWNER\Cookies\UWZVUW5P.txt [ Cookie:owner@asseenonpc.directtrack.com/ ]
C:\USERS\OWNER\Cookies\21P7VQ8H.txt [ Cookie:owner@pointroll.com/ ]
C:\USERS\OWNER\Cookies\OYE63309.txt [ Cookie:owner@adbrite.com/ ]
C:\USERS\OWNER\Cookies\JJKK18R4.txt [ Cookie:owner@c.atdmt.com/ ]
C:\USERS\OWNER\Cookies\18H76XXZ.txt [ Cookie:owner@accounts.google.com/ ]
C:\USERS\OWNER\Cookies\TQN3RKWE.txt [ Cookie:owner@burstnet.com/ ]
C:\USERS\OWNER\Cookies\B16NNUZB.txt [ Cookie:owner@jeetyetmedia.com/ ]
C:\USERS\OWNER\Cookies\J578SH3Z.txt [ Cookie:owner@edge.jeetyetmedia.com/ ]
C:\USERS\OWNER\Cookies\J2GLR1YB.txt [ Cookie:owner@ads.pointroll.com/ ]
C:\USERS\OWNER\Cookies\NKLRE4AJ.txt [ Cookie:owner@mediaplex.com/ ]
C:\USERS\OWNER\Cookies\66DGH3VB.txt [ Cookie:owner@casalemedia.com/ ]
C:\USERS\OWNER\Cookies\XNDRETFD.txt [ Cookie:owner@ru4.com/ ]
C:\USERS\OWNER\Cookies\XWXQ0MGE.txt [ Cookie:owner@cts.zroitracker.com/ ]
C:\USERS\OWNER\Cookies\BTX1BD0N.txt [ Cookie:owner@affiliatetracking.com/cdrx/ ]
C:\USERS\OWNER\Cookies\NBFH90TP.txt [ Cookie:owner@counter.hitslink.com/ ]
C:\USERS\OWNER\Cookies\G7G41QP1.txt [ Cookie:owner@doubleclick.net/ ]
C:\USERS\OWNER\Cookies\KZQERG7G.txt [ Cookie:owner@serving-sys.com/ ]
C:\USERS\OWNER\Cookies\LAGUN0KB.txt [ Cookie:owner@invitemedia.com/ ]
account.goodgamestudios.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
ad.adlegend.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
adserv6.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
art.aim4media.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.eyewonder.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.fondnessmedia.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.selectablemedia.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn2.baronsmedia.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn5.tribalfusion.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdnx.tribalfusion.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cmadsdev.technoratimedia.net [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
content.oddcast.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
content.yieldmanager.edgesuite.net [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
convoad.technoratimedia.net [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
crackle.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
i.adultswim.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.alldayslim.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.heavy.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.kyte.tv [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.movieweb.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.mtvnservices.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media1.break.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media4.onsugar.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
mediacast.realgravity.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
msnbcmedia.msn.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
objects.tremormedia.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
s0.2mdn.net [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
secure-uk.imrworldwide.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
secure-us.imrworldwide.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
service.twistage.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
stat.easydate.biz [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
tag.2bluemedia.hiro.tv [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
tag.mediashakers.hiro.tv [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
webservices.evolvemediacorp.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
www.goodcholesterolcount.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
www.pornhub.com [ C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
click.get-answers-fast.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.specificclick.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.amazon-adsystem.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.statcounter.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaforge.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
adserver.adreactor.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.stats.complex.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.stats.complex.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bizzclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pro-market.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adxpose.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.technoratimedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.technoratimedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.www.burstnet.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.burstnet.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
www.burstnet.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media.adfrontiers.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media.adfrontiers.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
a.visualrevenue.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.apmebf.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.fastclick.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.a1.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.interclick.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.questionmarket.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.realmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
network.realmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.mediaplex.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.bs.serving-sys.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ru4.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pro-market.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
hpi.rotator.hadj7.adjuggler.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
hpi.rotator.hadj7.adjuggler.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.rotator.hadj7.adjuggler.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
hpi.rotator.hadj7.adjuggler.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.lucidmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyewonder.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.eyewonder.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ads.pointroll.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
supremeadserver.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.zedo.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
7.rotator.wigetmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
7.rotator.wigetmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
7.rotator.wigetmedia.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.doubleclick.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.youtube.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.accounts.google.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.accounts.google.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.accounts.google.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.youtube.com [ C:\USERS\OWNER\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
cdn2.baronsmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\33RED4M3 ]
.atdmt.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.c.atdmt.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.mediaplex.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.doubleclick.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.tribalfusion.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.mm.chitika.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.myroitracking.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.adbrite.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.clicksor.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\3HEP4V4D.DEFAULT\COOKIES.SQLITE ]
account.goodgamestudios.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
ad.adlegend.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
ad.insightexpressai.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
adserv6.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
art.aim4media.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.eyewonder.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.fondnessmedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.media.abcfamily.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.selectablemedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn.tremormedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn2.baronsmedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdn5.tribalfusion.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cdnx.tribalfusion.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
click.searchnation.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
cmadsdev.technoratimedia.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
content.oddcast.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
content.yieldmanager.edgesuite.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
convoad.technoratimedia.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
core.insightexpressai.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
crackle.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
data-ero-advertising.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
ds.serving-sys.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
i.adultswim.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
inline.admedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
kaltura.hutchmedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
konac.kontera.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.alldayslim.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.bowflex.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.expedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.heavy.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.kyte.tv [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.movieweb.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.mtvnservices.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.oprah.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.scanscout.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media.whosay.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media1.break.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media3.break.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
media4.onsugar.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
mediacast.realgravity.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
msnbcmedia.msn.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
objects.tremormedia.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
s0.2mdn.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
secure-uk.imrworldwide.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
secure-us.imrworldwide.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
service.twistage.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
sftrack.searchforce.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
stat.easydate.biz [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
tag.2bluemedia.hiro.tv [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
tag.mediashakers.hiro.tv [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
vitamine.networldmedia.net [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
webservices.evolvemediacorp.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
www.adultswim.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
www.goodcholesterolcount.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]
www.pornhub.com [ C:\WINDOWS\SYSWOW64\CONFIG\SYSTEMPROFILE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\LHJ772R2 ]

Trojan.Agent/Gen-Zbot
C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\USERS\DEFAULT\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\EZYDO.EXE
C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\USERS\OWNER\APPDATA\ROAMING\ZUIKED\UKIHEG.EXE

Adware.Zwangi
C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\USERS\OWNER\ADMIN\RED-V2.1-SETUP.EXE
C:\USERS\OWNER\ADMIN\RED-V2.1-SETUP.EXE

Trojan.Agent/Gen
C:\SYSTEM VOLUME INFORMATION\SYSTEMRESTORE\FRSTAGING\WINDOWS\SYSWOW64\WDJ6XH3S.COM
C:\WINDOWS\SYSWOW64\WDJ6XH3S.COM

Trojan.Agent/Gen-ImageDocFake
C:\USERS\OWNER\DOCUMENTS\AZUREUS DOWNLOADS\DEADMAU5 DISCOGRAPHY (320KBPS MP3)\FAXING BERLIN\ZUNEART_{8AA253A3-BE32-4E40-9782-35F4B61109AC}.JPG
C:\USERS\OWNER\DOCUMENTS\AZUREUS DOWNLOADS\DEADMAU5 DISCOGRAPHY (320KBPS MP3)\GHOSTS N STUFF\ALBUMART_{CE913839-FD33-41C6-8E58-0502032794F3}_LARGE.JPG
C:\USERS\OWNER\DOCUMENTS\AZUREUS DOWNLOADS\DEADMAU5 DISCOGRAPHY (320KBPS MP3)\I LIKE YOUR MUSIC\FOLDER.JPG
C:\USERS\OWNER\DOCUMENTS\AZUREUS DOWNLOADS\DEADMAU5 DISCOGRAPHY (320KBPS MP3)\NOT EXACTLY WE FAIL\ZUNEART_{0F47C45F-6E56-47E0-A53D-95D336CAF06B}.JPG
C:\USERS\OWNER\DOCUMENTS\AZUREUS DOWNLOADS\DEADMAU5 DISCOGRAPHY (320KBPS MP3)\SEX, LIES, AUDIOTAPE\ZUNEART_{01FA232A-A6A7-47D9-A202-E4B35E2E06AF}.JPG

#12 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 04 April 2012 - 07:50 AM

kaspersky virus removal tool

Automatic Scan: stopped 11 minutes ago (events: 231, objects: 229, time: 00:00:43)
4/2/2012 8:15:39 PM Task started
4/2/2012 8:15:59 PM OK System Memory
4/2/2012 8:15:59 PM OK taskhost.exe\ntdll.dll
4/2/2012 8:15:59 PM OK taskhost.exe\taskhost.exe
4/2/2012 8:15:59 PM OK taskhost.exe\apisetschema.dll
4/2/2012 8:15:59 PM OK C:\Windows\System32\ntdll.dll
4/2/2012 8:15:59 PM OK C:\Windows\System32\apisetschema.dll
4/2/2012 8:15:59 PM OK C:\Windows\System32\taskhost.exe
4/2/2012 8:15:59 PM OK wmpnetwk.exe\Indiv01_64.key
4/2/2012 8:15:59 PM OK wmpnetwk.exe\wmploc.DLL
4/2/2012 8:15:59 PM OK wmpnetwk.exe\MSOXMLMF.DLL
4/2/2012 8:15:59 PM OK wmpnetwk.exe\msvcr80.dll
4/2/2012 8:15:59 PM OK wmpnetwk.exe\user32.dll
4/2/2012 8:15:59 PM OK wmpnetwk.exe\wininet.dll
4/2/2012 8:15:59 PM OK wmpnetwk.exe\kernel32.dll
4/2/2012 8:16:00 PM OK C:\program files\common files\microsoft shared\office12\msoxmlmf.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\urlmon.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\iertutil.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\ntdll.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\normaliz.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wmpnetwk.exe
4/2/2012 8:16:00 PM OK C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
4/2/2012 8:16:00 PM OK wmpnetwk.exe\Desktop.ini
4/2/2012 8:16:00 PM OK wmpnetwk.exe\MSMPEG2ENC.DLL
4/2/2012 8:16:00 PM OK C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wmp.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\drmv2clt.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wmpmde.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\upnphost.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\WinSATAPI.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wbemsvc.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\netprofm.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wmdrmdev.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\upnp.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\user32.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\npmproxy.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\ntlanman.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wbemprox.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\ntdsapi.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\wininet.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\fastprox.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wbemcomn.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\davclnt.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\msdmo.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wmpps.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\devenum.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\kernel32.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\httpapi.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\ssdpapi.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\urlmon.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\webio.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\normaliz.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\winhttp.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\mfplat.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\ieproxy.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\networkexplorer.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\provsvc.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\GdiPlus.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\iertutil.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\dxgi.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\mpr.dll
4/2/2012 8:16:00 PM OK C:\program files\Windows Media Player\wmpnetwk.exe
4/2/2012 8:16:00 PM OK wmpnetwk.exe\msxml6.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\dhcpcsvc6.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\dhcpcsvc.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\MSMPEG2ENC.DLL
4/2/2012 8:16:00 PM OK wmpnetwk.exe\winnsi.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\IPHLPAPI.DLL
4/2/2012 8:16:00 PM OK wmpnetwk.exe\winmm.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\wmp.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wkscli.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\netutils.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\netapi32.dll
4/2/2012 8:16:00 PM OK C:\Windows\System32\drmv2clt.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\wtsapi32.dll
4/2/2012 8:16:00 PM OK wmpnetwk.exe\davhlpr.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wmpmde.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\drprov.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\WindowsCodecs.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\upnphost.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wmploc.DLL
4/2/2012 8:16:01 PM OK wmpnetwk.exe\slc.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\WinSATAPI.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wbem\wbemsvc.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\xmllite.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\netprofm.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\dwmapi.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wmdrmdev.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\upnp.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\wsock32.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\npmproxy.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\ntlanman.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\dsrole.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wbem\wbemprox.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\ntdsapi.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\nlaapi.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\samlib.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\linkinfo.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\ntmarta.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\comctl32.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wbemcomn.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wbem\fastprox.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\avrt.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\propsys.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\msdmo.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\davclnt.dll
4/2/2012 8:16:01 PM OK wmpnetwk.exe\version.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\wmpps.dll
4/2/2012 8:16:01 PM OK C:\Windows\System32\devenum.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\WSHTCPIP.DLL
4/2/2012 8:16:02 PM OK C:\Windows\System32\httpapi.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\ssdpapi.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\pcwum.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\webio.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\winhttp.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\gpapi.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\mfplat.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\userenv.dll
4/2/2012 8:16:02 PM OK C:\program files\Internet Explorer\ieproxy.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\rsaenh.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\provsvc.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\wship6.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\networkexplorer.dll
4/2/2012 8:16:02 PM OK C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\cryptsp.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\mpr.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\dxgi.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\authz.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\srvcli.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\dhcpcsvc6.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\sspicli.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\dhcpcsvc.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\apphelp.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\msxml6.dll
4/2/2012 8:16:02 PM OK C:\Windows\System32\winnsi.dll
4/2/2012 8:16:02 PM OK wmpnetwk.exe\cryptbase.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\IPHLPAPI.DLL
4/2/2012 8:16:03 PM OK C:\Windows\System32\winmm.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\sxs.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\wkscli.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\netutils.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\winsta.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\netapi32.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\wtsapi32.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\RpcRtRemote.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\davhlpr.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\profapi.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\drprov.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\mswsock.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\WindowsCodecs.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\msasn1.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\slc.dll
4/2/2012 8:16:03 PM OK wmpnetwk.exe\KernelBase.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\xmllite.dll
4/2/2012 8:16:03 PM OK C:\Windows\System32\dwmapi.dll
4/2/2012 8:16:04 PM OK wmpnetwk.exe\devobj.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\wsock32.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\dsrole.dll
4/2/2012 8:16:04 PM OK wmpnetwk.exe\crypt32.dll
4/2/2012 8:16:04 PM OK wmpnetwk.exe\wintrust.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\nlaapi.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\samlib.dll
4/2/2012 8:16:04 PM OK wmpnetwk.exe\cfgmgr32.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\linkinfo.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\ntmarta.dll
4/2/2012 8:16:04 PM OK wmpnetwk.exe\imm32.dll
4/2/2012 8:16:04 PM OK C:\Windows\System32\avrt.dll
4/2/2012 8:16:05 PM OK wmpnetwk.exe\msctf.dll
4/2/2012 8:16:05 PM OK wmpnetwk.exe\setupapi.dll
4/2/2012 8:16:05 PM OK wmpnetwk.exe\oleaut32.dll
4/2/2012 8:16:06 PM OK wmpnetwk.exe\advapi32.dll
4/2/2012 8:16:06 PM OK wmpnetwk.exe\shlwapi.dll
4/2/2012 8:16:06 PM OK wmpnetwk.exe\msvcrt.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\ole32.dll
4/2/2012 8:16:07 PM OK C:\Windows\System32\propsys.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\nsi.dll
4/2/2012 8:16:07 PM OK C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\Wldap32.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\usp10.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\lpk.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\ws2_32.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\shell32.dll
4/2/2012 8:16:07 PM OK C:\Windows\System32\WSHTCPIP.DLL
4/2/2012 8:16:07 PM OK wmpnetwk.exe\gdi32.dll
4/2/2012 8:16:07 PM OK C:\Windows\System32\version.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\rpcrt4.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\clbcatq.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\sechost.dll
4/2/2012 8:16:07 PM OK C:\Windows\System32\pcwum.dll
4/2/2012 8:16:07 PM OK wmpnetwk.exe\apisetschema.dll
4/2/2012 8:16:07 PM OK C:\Windows\System32\gpapi.dll
4/2/2012 8:16:07 PM OK C:\Windows\System32\userenv.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\rsaenh.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\wship6.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\cryptsp.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\authz.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\srvcli.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\sspicli.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\apphelp.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\cryptbase.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\winsta.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\RpcRtRemote.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\sxs.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\profapi.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\mswsock.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\msasn1.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\KernelBase.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\devobj.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\wintrust.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\crypt32.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\cfgmgr32.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\imm32.dll
4/2/2012 8:16:08 PM OK C:\Windows\System32\msctf.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\oleaut32.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\setupapi.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\shlwapi.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\advapi32.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\msvcrt.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\nsi.dll
4/2/2012 8:16:09 PM OK C:\Windows\System32\ole32.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\Wldap32.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\lpk.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\usp10.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\ws2_32.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\gdi32.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\rpcrt4.dll
4/2/2012 8:16:10 PM OK C:\Windows\System32\clbcatq.dll
4/2/2012 8:16:11 PM OK C:\Windows\System32\sechost.dll
4/2/2012 8:16:14 PM OK C:\Windows\System32\shell32.dll
4/2/2012 8:16:15 PM Detected: Backdoor.Win64.ZAccess.aj C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:16:22 PM Task stopped
Disinfect active threats: completed 5 minutes ago (events: 6768, objects: 6729, time: 00:05:27)
4/2/2012 8:16:22 PM Task started
4/2/2012 8:16:23 PM Detected: Backdoor.Win64.ZAccess.aj C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:17:11 PM Backed up C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:17:11 PM Will be deleted on system restart: Backdoor.Win64.ZAccess.aj C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:17:11 PM OK System Memory
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\user32.dll
4/2/2012 8:17:11 PM OK C:\Windows\System32\user32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\kernel32.dll
4/2/2012 8:17:11 PM OK C:\Windows\System32\kernel32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\ntdll.dll
4/2/2012 8:17:11 PM OK C:\Windows\System32\ntdll.dll Object was not changed (iSwift 3)
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\SearchFilterHost.exe
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\Query.dll
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\msshooks.dll
4/2/2012 8:17:11 PM OK C:\Windows\System32\SearchFilterHost.exe
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\mssprxy.dll
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\tquery.dll
4/2/2012 8:17:11 PM OK C:\Windows\System32\msshooks.dll
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\mscoreei.dll
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\mscoree.dll
4/2/2012 8:17:11 PM OK C:\Windows\System32\mssprxy.dll
4/2/2012 8:17:11 PM OK SearchFilterHost.exe\rsaenh.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\rsaenh.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\cryptsp.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\cryptsp.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\cryptbase.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\Query.dll
4/2/2012 8:17:12 PM OK C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\cryptbase.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK C:\Windows\System32\tquery.dll
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\sxs.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\sxs.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\RpcRtRemote.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\mscoree.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\RpcRtRemote.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\KernelBase.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\KernelBase.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\imm32.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\imm32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\msctf.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\msctf.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\oleaut32.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\oleaut32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\advapi32.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\advapi32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\shlwapi.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\shlwapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\msvcrt.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\msvcrt.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\ole32.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\ole32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\usp10.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\usp10.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\lpk.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\lpk.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\shell32.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\shell32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\gdi32.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\gdi32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\rpcrt4.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\rpcrt4.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\clbcatq.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\clbcatq.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\sechost.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\sechost.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK SearchFilterHost.exe\apisetschema.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\apisetschema.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\Indiv01_64.key Object was not changed (iChecker)
4/2/2012 8:17:12 PM OK C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wmploc.DLL
4/2/2012 8:17:12 PM OK C:\Windows\System32\wmploc.DLL Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\MSOXMLMF.DLL
4/2/2012 8:17:12 PM OK C:\program files\common files\microsoft shared\office12\msoxmlmf.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\msvcr80.dll
4/2/2012 8:17:12 PM OK C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\ksuser.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\user32.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wininet.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\ksuser.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wininet.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\kernel32.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\urlmon.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\urlmon.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\iertutil.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\iertutil.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\ntdll.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\normaliz.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\normaliz.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wmpnetwk.exe
4/2/2012 8:17:12 PM OK C:\program files\Windows Media Player\wmpnetwk.exe Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\mf.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\MSMPEG2ENC.DLL
4/2/2012 8:17:12 PM Detected: Backdoor.Win64.ZAccess.aj C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:17:12 PM OK C:\Windows\System32\MSMPEG2ENC.DLL Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wmp.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wmp.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\drmv2clt.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\mf.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\drmv2clt.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wmpmde.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wmpmde.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\upnphost.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\upnphost.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\WinSATAPI.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\WinSATAPI.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wbemsvc.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wbem\wbemsvc.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\netprofm.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\netprofm.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wmdrmdev.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wmdrmdev.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\upnp.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\upnp.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\npmproxy.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\npmproxy.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\ntlanman.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\ntlanman.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wbemprox.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wbem\wbemprox.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\ntdsapi.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\ntdsapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\fastprox.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wbem\fastprox.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wbemcomn.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wbemcomn.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\davclnt.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\davclnt.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\msdmo.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\msdmo.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\wmpps.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\wmpps.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\devenum.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\devenum.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\httpapi.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\httpapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\mlang.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\ssdpapi.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\ssdpapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK C:\Windows\System32\mlang.dll
4/2/2012 8:17:12 PM OK wmpnetwk.exe\webio.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\webio.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\winhttp.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\winhttp.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\mfplat.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\mfplat.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\ieproxy.dll
4/2/2012 8:17:12 PM OK C:\program files\Internet Explorer\ieproxy.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\networkexplorer.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\networkexplorer.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\provsvc.dll
4/2/2012 8:17:12 PM OK C:\Windows\System32\provsvc.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\GdiPlus.dll
4/2/2012 8:17:12 PM OK C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll Object was not changed (iSwift 3)
4/2/2012 8:17:12 PM OK wmpnetwk.exe\dxgi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\dxgi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\mpr.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\mpr.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\msxml6.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\msxml6.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\dhcpcsvc6.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\dhcpcsvc6.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\dhcpcsvc.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\dhcpcsvc.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\winnsi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\winnsi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\IPHLPAPI.DLL
4/2/2012 8:17:13 PM OK C:\Windows\System32\IPHLPAPI.DLL Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\winmm.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\winmm.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\wkscli.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\wkscli.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\netutils.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\netutils.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\netapi32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\netapi32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\wtsapi32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\wtsapi32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\davhlpr.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\davhlpr.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\drprov.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\drprov.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\WindowsCodecs.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\WindowsCodecs.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\slc.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\slc.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\xmllite.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\xmllite.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\dwmapi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\dwmapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\wsock32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\wsock32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\dsrole.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\dsrole.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\atl.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\nlaapi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\nlaapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\samlib.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\atl.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\samlib.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\linkinfo.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\linkinfo.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\ntmarta.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\ntmarta.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\comctl32.dll
4/2/2012 8:17:13 PM OK C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\avrt.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\avrt.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\propsys.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\propsys.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\version.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\version.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\WSHTCPIP.DLL
4/2/2012 8:17:13 PM OK C:\Windows\System32\WSHTCPIP.DLL Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\pcwum.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\pcwum.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\gpapi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\gpapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\userenv.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\userenv.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\rsaenh.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\wship6.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\wship6.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\cryptsp.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\authz.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\authz.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\srvcli.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\srvcli.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\sspicli.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\sspicli.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\apphelp.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\apphelp.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\cryptbase.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\sxs.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\winsta.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\winsta.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\RpcRtRemote.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\profapi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\profapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\mswsock.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\mswsock.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\msasn1.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\msasn1.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\KernelBase.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\devobj.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\devobj.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\crypt32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\crypt32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\wintrust.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\wintrust.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\cfgmgr32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\cfgmgr32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\imm32.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\msctf.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\setupapi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\setupapi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\oleaut32.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\advapi32.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\shlwapi.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\msvcrt.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\ole32.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\nsi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\nsi.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\Wldap32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\Wldap32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\usp10.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\lpk.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\ws2_32.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\ws2_32.dll Object was not changed (iSwift 3)
4/2/2012 8:17:13 PM OK wmpnetwk.exe\shell32.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\gdi32.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\rpcrt4.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\clbcatq.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\sechost.dll
4/2/2012 8:17:13 PM OK wmpnetwk.exe\apisetschema.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\user32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\kernel32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\ntdll.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\sppsvc.exe
4/2/2012 8:17:13 PM OK sppsvc.exe\sppobjs.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\sppwinob.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\rsaenh.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\dnsapi.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\cryptsp.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\sspicli.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\cryptbase.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\RpcRtRemote.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\KernelBase.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\imm32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\msctf.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\oleaut32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\advapi32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\msvcrt.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\ole32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\nsi.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\usp10.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\lpk.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\ws2_32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\gdi32.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\rpcrt4.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\clbcatq.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\sechost.dll
4/2/2012 8:17:13 PM OK sppsvc.exe\apisetschema.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\sppwinob.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\sppsvc.exe
4/2/2012 8:17:13 PM OK C:\Windows\System32\dnsapi.dll
4/2/2012 8:17:13 PM OK C:\Windows\System32\sppobjs.dll
4/2/2012 8:17:13 PM OK HPSA_Service.exe\HPSA_Service.exe
4/2/2012 8:17:13 PM OK HPSA_Service.exe\HP.SupportAssistant.ServiceManager.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\HP.SupportAssistant.ServiceManager.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\HP.SupportAssistant.Common.dll
4/2/2012 8:17:14 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
4/2/2012 8:17:14 PM OK C:\Windows\assembly\GAC_MSIL\HP.SupportAssistant.ServiceManager\6.0.1.1__afd7346f05a57c11\HP.SupportAssistant.ServiceManager.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\HP.SupportAssistant.Common.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\msvcr80.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\user32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\kernel32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\ntdll.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\mscorsec.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\System.Runtime.Remoting.ni.dll
4/2/2012 8:17:14 PM OK C:\Windows\assembly\GAC_MSIL\HP.SupportAssistant.Common\6.0.1.1__41bdec5abf54f6dc\HP.SupportAssistant.Common.dll
4/2/2012 8:17:14 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\comctl32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\SensApi.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\cryptnet.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\SensApi.dll
4/2/2012 8:17:14 PM OK C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\mscorjit.dll
4/2/2012 8:17:14 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\8b193e216f8cf8cd74d7f63cc3ebd2d9\System.Runtime.Remoting.ni.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\cryptnet.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\System.ni.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\mscorlib.ni.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\mscorwks.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\System.ServiceProcess.ni.dll
4/2/2012 8:17:14 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\mscoreei.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\mscoree.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\gpapi.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\userenv.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\bcryptprimitives.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\rsaenh.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\cryptsp.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\bcrypt.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\ncrypt.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\cryptbase.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\profapi.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\msasn1.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\KernelBase.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\crypt32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\wintrust.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\imm32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\msctf.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\imagehlp.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\advapi32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\shlwapi.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\msvcrt.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\ole32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\Wldap32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\usp10.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\lpk.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\shell32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\gdi32.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\rpcrt4.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\sechost.dll
4/2/2012 8:17:14 PM OK HPSA_Service.exe\apisetschema.dll
4/2/2012 8:17:14 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
4/2/2012 8:17:14 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System\d5bc322d03a6628891b1e1232c4815af\System.ni.dll
4/2/2012 8:17:14 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\872d9ab7e9259b407668c38b6112499e\System.ServiceProcess.ni.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\bcryptprimitives.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\bcrypt.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\ncrypt.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\imagehlp.dll
4/2/2012 8:17:14 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\1d2d3e57724bcacaea5e41063dc565c1\mscorlib.ni.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\user32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\kernel32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\ntdll.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\WmiPrvSE.exe
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\wmiutils.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\wbem\WmiPrvSE.exe
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\wbemsvc.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\ncobjapi.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\wbem\wmiutils.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\wbemprox.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\ntdsapi.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\fastprox.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\wbemcomn.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\wmiprov.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\ncobjapi.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\ntmarta.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\rsaenh.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\cryptsp.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\cryptbase.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\RpcRtRemote.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\KernelBase.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\imm32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\msctf.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\oleaut32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\advapi32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\msvcrt.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\ole32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\nsi.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\Wldap32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\usp10.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\lpk.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\ws2_32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\gdi32.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\rpcrt4.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\clbcatq.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\sechost.dll
4/2/2012 8:17:14 PM OK WmiPrvSE.exe\apisetschema.dll
4/2/2012 8:17:14 PM OK C:\Windows\System32\wbem\wmiprov.dll
4/2/2012 8:17:14 PM OK 4279864.exe\apisetschema.dll
4/2/2012 8:17:14 PM OK 4279864.exe\4279864.exe
4/2/2012 8:17:14 PM OK 4279864.exe\compgMgr.dll
4/2/2012 8:17:14 PM OK 4279864.exe\cscapi.dll
4/2/2012 8:17:14 PM OK 4279864.exe\ntshrui.dll
4/2/2012 8:17:14 PM OK 4279864.exe\WindowsCodecs.dll
4/2/2012 8:17:14 PM OK 4279864.exe\shdocvw.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\cscapi.dll
4/2/2012 8:17:14 PM OK 4279864.exe\linkinfo.dll
4/2/2012 8:17:14 PM OK 4279864.exe\spfileq.dll
4/2/2012 8:17:14 PM OK 4279864.exe\SPInf.dll
4/2/2012 8:17:14 PM OK 4279864.exe\cryptnet.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\ntshrui.dll
4/2/2012 8:17:14 PM Detected: Backdoor.Win32.Papras.fgi C:\Windows\SysWOW64\compgMgr.dll
4/2/2012 8:17:14 PM OK C:\Users\Owner\AppData\Local\Temp\RarSFX2\4279864.exe/#
4/2/2012 8:17:14 PM OK 4279864.exe\fltLib.dll
4/2/2012 8:17:14 PM OK C:\Users\Owner\AppData\Local\Temp\RarSFX2\4279864.exe
4/2/2012 8:17:14 PM OK 4279864.exe\GdiPlus.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\WindowsCodecs.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\shdocvw.dll
4/2/2012 8:17:14 PM OK 4279864.exe\propsys.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\linkinfo.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\spfileq.dll
4/2/2012 8:17:14 PM OK 4279864.exe\devrtl.dll
4/2/2012 8:17:14 PM OK 4279864.exe\comctl32.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\SPInf.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\cryptnet.dll
4/2/2012 8:17:14 PM OK 4279864.exe\srvcli.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\fltLib.dll
4/2/2012 8:17:14 PM OK 4279864.exe\ntmarta.dll
4/2/2012 8:17:14 PM OK 4279864.exe\profapi.dll
4/2/2012 8:17:14 PM OK 4279864.exe\userenv.dll
4/2/2012 8:17:14 PM OK 4279864.exe\wow64cpu.dll
4/2/2012 8:17:14 PM OK 4279864.exe\wow64win.dll
4/2/2012 8:17:14 PM OK 4279864.exe\wow64.dll
4/2/2012 8:17:14 PM OK C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\propsys.dll
4/2/2012 8:17:14 PM OK 4279864.exe\cabinet.dll
4/2/2012 8:17:14 PM OK 4279864.exe\gpapi.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\devrtl.dll
4/2/2012 8:17:14 PM OK 4279864.exe\slc.dll
4/2/2012 8:17:14 PM OK C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\srvcli.dll
4/2/2012 8:17:14 PM OK 4279864.exe\bcryptprimitives.dll
4/2/2012 8:17:14 PM OK C:\Windows\SysWOW64\ntmarta.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\profapi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\bcrypt.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\userenv.dll
4/2/2012 8:17:15 PM OK C:\Windows\System32\wow64cpu.dll
4/2/2012 8:17:15 PM OK 4279864.exe\SensApi.dll
4/2/2012 8:17:15 PM OK C:\Windows\System32\wow64win.dll
4/2/2012 8:17:15 PM OK 4279864.exe\ncrypt.dll
4/2/2012 8:17:15 PM OK C:\Windows\System32\wow64.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\cabinet.dll
4/2/2012 8:17:15 PM OK 4279864.exe\dwmapi.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\gpapi.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\slc.dll
4/2/2012 8:17:15 PM OK 4279864.exe\uxtheme.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\bcryptprimitives.dll
4/2/2012 8:17:15 PM OK 4279864.exe\apphelp.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\bcrypt.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\SensApi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\rsaenh.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\ncrypt.dll
4/2/2012 8:17:15 PM OK 4279864.exe\cryptsp.dll
4/2/2012 8:17:15 PM OK 4279864.exe\cryptbase.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\dwmapi.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\uxtheme.dll
4/2/2012 8:17:15 PM OK 4279864.exe\sspicli.dll
4/2/2012 8:17:15 PM OK 4279864.exe\crypt32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\setupapi.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\apphelp.dll
4/2/2012 8:17:15 PM OK 4279864.exe\devobj.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\cryptsp.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\rsaenh.dll
4/2/2012 8:17:15 PM OK 4279864.exe\user32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\urlmon.dll
4/2/2012 8:17:15 PM OK 4279864.exe\wintrust.dll
4/2/2012 8:17:15 PM OK 4279864.exe\cfgmgr32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\ws2_32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\advapi32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\cryptbase.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\sspicli.dll
4/2/2012 8:17:15 PM OK 4279864.exe\gdi32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\normaliz.dll
4/2/2012 8:17:15 PM Backed up C:\Windows\SysWOW64\compgMgr.dll
4/2/2012 8:17:15 PM Will be deleted on system restart: Backdoor.Win32.Papras.fgi C:\Windows\SysWOW64\compgMgr.dll
4/2/2012 8:17:15 PM OK 4279864.exe\rpcrt4.dll
4/2/2012 8:17:15 PM OK 4279864.exe\psapi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\clbcatq.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\devobj.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\crypt32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\shell32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\nsi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\msasn1.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\setupapi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\oleaut32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\user32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\sechost.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\wintrust.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\urlmon.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\cfgmgr32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\Wldap32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\wininet.dll
4/2/2012 8:17:15 PM OK 4279864.exe\imm32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\ws2_32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\gdi32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\imagehlp.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\normaliz.dll
4/2/2012 8:17:15 PM OK 4279864.exe\msctf.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\psapi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\kernel32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\shlwapi.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\advapi32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\rpcrt4.dll
4/2/2012 8:17:15 PM OK 4279864.exe\iertutil.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\clbcatq.dll
4/2/2012 8:17:15 PM OK 4279864.exe\msvcrt.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\nsi.dll
4/2/2012 8:17:15 PM OK 4279864.exe\usp10.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\msasn1.dll
4/2/2012 8:17:15 PM OK 4279864.exe\KernelBase.dll
4/2/2012 8:17:15 PM OK 4279864.exe\ole32.dll
4/2/2012 8:17:15 PM OK 4279864.exe\ntdll.dll
4/2/2012 8:17:15 PM OK 4279864.exe\lpk.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\sechost.dll
4/2/2012 8:17:15 PM OK 4279864.exe\ntdll.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\oleaut32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\Wldap32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\imm32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\imagehlp.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\wininet.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\msctf.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\shlwapi.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\kernel32.dll
4/2/2012 8:17:15 PM OK C:\Windows\SysWOW64\iertutil.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\msvcrt.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\usp10.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\KernelBase.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\lpk.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\ole32.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\shell32.dll
4/2/2012 8:17:16 PM OK C:\Windows\SysWOW64\ntdll.dll
4/2/2012 8:17:16 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\apisetschema.dll
4/2/2012 8:17:16 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\setup_11.0.0.1245.x01_2012_04_03_01_23.exe
4/2/2012 8:17:16 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe:Zone.Identifier
4/2/2012 8:17:16 PM Archive: RAR C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe
4/2/2012 8:17:16 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/archive comment
4/2/2012 8:17:16 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/4279864.exe Object was not changed (iChecker)
4/2/2012 8:17:16 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/4279864.prg
4/2/2012 8:17:19 PM Archive: RAR C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/4279864rar.exe
4/2/2012 8:17:19 PM Password protected C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/4279864rar.exe
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/4279864rar.prg
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/background.png
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/1/kl1.cat
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/1/kl1.inf
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/1/kl1.sys
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/2/501/4279864drv.cat
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/2/501/4279864drv.inf
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/2/501/4279864drv.sys
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/2/600/4279864drv.cat
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/2/600/4279864drv.inf
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win32/2/600/4279864drv.sys
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/1/kl1.cat
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/1/kl1.inf
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/1/kl1.sys
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/2/501/4279864drv.cat
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/2/501/4279864drv.inf
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/2/501/4279864drv.sys
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/2/600/4279864drv.cat
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/2/600/4279864drv.inf
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/Drivers/Win64/2/600/4279864drv.sys
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/helper64.exe
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/helper64.prg
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/#
4/2/2012 8:17:19 PM OK C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/#
4/2/2012 8:17:20 PM Archive: RAR C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/#
4/2/2012 8:17:20 PM Password protected C:\Users\Owner\Desktop\setup_11.0.0.1245.x01_2012_04_03_01_23.exe/#
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\compgMgr.dll Object was not changed (iChecker)
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\shdocvw.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\riched20.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\propsys.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\comctl32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\ntmarta.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\profapi.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\wow64cpu.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\wow64win.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\wow64.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\riched32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\secur32.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\riched32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\dwmapi.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\uxtheme.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\apphelp.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\cryptbase.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\sspicli.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\crypt32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\setupapi.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\devobj.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\user32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\urlmon.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\cfgmgr32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\ws2_32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\advapi32.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\riched20.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\gdi32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\normaliz.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\rpcrt4.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\psapi.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\clbcatq.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\shell32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\nsi.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\msasn1.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\oleaut32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\sechost.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\Wldap32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\wininet.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\imm32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\msctf.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\kernel32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\shlwapi.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\iertutil.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\msvcrt.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\usp10.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\KernelBase.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\ole32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\comdlg32.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\secur32.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\ntdll.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\lpk.dll
4/2/2012 8:17:20 PM OK setup_11.0.0.1245.x01_2012_04_03_01_23.exe\ntdll.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\comdlg32.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\apisetschema.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\msvcr71.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\DVDAgent.exe
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\msvcr71.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\CLRCEngine3.dll
4/2/2012 8:17:20 PM OK C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
4/2/2012 8:17:20 PM OK C:\Program Files (x86)\Hewlett-Packard\Media\DVD\Kernel\Common\CLRCEngine3.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\MFC71ENU.DLL
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\MFC71ENU.DLL Object was not changed (iChecker)
4/2/2012 8:17:20 PM OK DVDAgent.exe\cscapi.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\davhlpr.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\davclnt.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\davhlpr.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\MSOXMLMF.DLL
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\davclnt.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\ntlanman.dll
4/2/2012 8:17:20 PM OK C:\Program Files (x86)\common files\microsoft shared\office12\msoxmlmf.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\drprov.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\ntlanman.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\msxml3.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\drprov.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\propsys.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\msxml3.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\comctl32.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\winsta.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\wkscli.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\netutils.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\wkscli.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\winsta.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\msvcr80.dll
4/2/2012 8:17:20 PM OK C:\Windows\SysWOW64\netutils.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\ntmarta.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\profapi.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\wow64cpu.dll
4/2/2012 8:17:20 PM OK C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
4/2/2012 8:17:20 PM OK DVDAgent.exe\wow64win.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\wow64.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\secur32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\dwmapi.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\uxtheme.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\winmm.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\rsaenh.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\winmm.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\cryptsp.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\mpr.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\RpcRtRemote.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\cryptbase.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\sspicli.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\user32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\urlmon.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\cfgmgr32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\advapi32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\gdi32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\normaliz.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\rpcrt4.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\clbcatq.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\shell32.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\mpr.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\oleaut32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\sechost.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\Wldap32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\wininet.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\imm32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\msctf.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\kernel32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\shlwapi.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\iertutil.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\msvcrt.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\usp10.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\KernelBase.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\ole32.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\ntdll.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\lpk.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\ntdll.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\RpcRtRemote.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\MFC71u.dll
4/2/2012 8:17:21 PM OK DVDAgent.exe\msvcp71.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\MFC71u.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\msvcp71.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\apisetschema.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\CLMLSvc.exe
4/2/2012 8:17:21 PM OK CLMLSvc.exe\CLMediaLibrary.dll
4/2/2012 8:17:21 PM OK C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
4/2/2012 8:17:21 PM OK CLMLSvc.exe\cscapi.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\networkexplorer.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\xmllite.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\linkinfo.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\davhlpr.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\davclnt.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\MSOXMLMF.DLL
4/2/2012 8:17:21 PM OK CLMLSvc.exe\ntlanman.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\drprov.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msxml3.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\GdiPlus.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\propsys.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\comctl32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\winsta.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\wkscli.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\netutils.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msvcr80.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\ntmarta.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\profapi.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\wow64cpu.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\wow64win.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\wow64.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\secur32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\dwmapi.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\uxtheme.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\winmm.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\apphelp.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\mpr.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\cryptbase.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\sspicli.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\crypt32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\setupapi.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\devobj.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\user32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\urlmon.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\wintrust.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\cfgmgr32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\advapi32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\gdi32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\normaliz.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\rpcrt4.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\clbcatq.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\shell32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msasn1.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\oleaut32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\sechost.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\Wldap32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\wininet.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\imm32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msctf.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\kernel32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\shlwapi.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\iertutil.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msvcrt.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\usp10.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\KernelBase.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\ole32.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\ntdll.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\lpk.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\ntdll.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msvcr71.dll
4/2/2012 8:17:21 PM OK CLMLSvc.exe\msvcp71.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\xmllite.dll
4/2/2012 8:17:21 PM OK C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\networkexplorer.dll
4/2/2012 8:17:21 PM OK taskeng.exe\user32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\kernel32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\ntdll.dll
4/2/2012 8:17:21 PM OK taskeng.exe\taskeng.exe
4/2/2012 8:17:21 PM OK taskeng.exe\TSChannel.dll
4/2/2012 8:17:21 PM OK taskeng.exe\ktmw32.dll
4/2/2012 8:17:21 PM OK C:\Windows\System32\taskeng.exe
4/2/2012 8:17:21 PM OK C:\Windows\System32\TSChannel.dll
4/2/2012 8:17:21 PM OK taskeng.exe\xmllite.dll
4/2/2012 8:17:21 PM OK taskeng.exe\dwmapi.dll
4/2/2012 8:17:21 PM OK taskeng.exe\uxtheme.dll
4/2/2012 8:17:21 PM OK C:\Windows\System32\ktmw32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\rsaenh.dll
4/2/2012 8:17:21 PM OK taskeng.exe\cryptsp.dll
4/2/2012 8:17:21 PM OK taskeng.exe\wevtapi.dll
4/2/2012 8:17:21 PM OK C:\Windows\System32\uxtheme.dll
4/2/2012 8:17:21 PM OK taskeng.exe\sspicli.dll
4/2/2012 8:17:21 PM OK taskeng.exe\apphelp.dll
4/2/2012 8:17:21 PM OK taskeng.exe\cryptbase.dll
4/2/2012 8:17:21 PM OK taskeng.exe\RpcRtRemote.dll
4/2/2012 8:17:21 PM OK taskeng.exe\KernelBase.dll
4/2/2012 8:17:21 PM OK taskeng.exe\imm32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\msctf.dll
4/2/2012 8:17:21 PM OK taskeng.exe\oleaut32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\advapi32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\shlwapi.dll
4/2/2012 8:17:21 PM OK taskeng.exe\msvcrt.dll
4/2/2012 8:17:21 PM OK taskeng.exe\ole32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\usp10.dll
4/2/2012 8:17:21 PM OK taskeng.exe\lpk.dll
4/2/2012 8:17:21 PM OK taskeng.exe\gdi32.dll
4/2/2012 8:17:21 PM OK taskeng.exe\rpcrt4.dll
4/2/2012 8:17:21 PM OK taskeng.exe\clbcatq.dll
4/2/2012 8:17:21 PM OK taskeng.exe\sechost.dll
4/2/2012 8:17:21 PM OK taskeng.exe\apisetschema.dll
4/2/2012 8:17:21 PM OK C:\Windows\System32\wevtapi.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\apisetschema.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\ccSvcHst.exe
4/2/2012 8:17:21 PM OK ccSvcHst.exe\ieframe.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\actxprxy.dll
4/2/2012 8:17:21 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
4/2/2012 8:17:21 PM OK ccSvcHst.exe\linkinfo.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\shdocvw.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\AppMgr32.dll
4/2/2012 8:17:21 PM OK C:\Windows\SysWOW64\actxprxy.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\AVifc.dll
4/2/2012 8:17:21 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AppMgr32.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\AVMail.dll
4/2/2012 8:17:21 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AVifc.dll
4/2/2012 8:17:21 PM OK ccSvcHst.exe\AVPAPP32.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AVMail.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\FWSesAl.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AVPAPP32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\isDataPr.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\FWSesAl.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\isPwd.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\isDataPr.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\EFACli.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\EFACli.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\BHClient.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\isPwd.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\AcctMgr.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\coDataPr.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\BHClient.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\dinput.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\samlib.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\shfolder.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\ieframe.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AcctMgr.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\samcli.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coDataPr.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\dinput.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\samlib.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\shfolder.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccEmlPxy.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\samcli.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccGEvt.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccIPC.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccEmlPxy.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccJobMgr.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccGEvt.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccL80U.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccIPC.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccJobMgr.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccSet.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccSvc.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccL80U.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ccVrTrst.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSet.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cltLMC.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvc.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cltAlDis.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccVrTrst.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltLMC.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cltRes.loc
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cltLMSx.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\MUI\16.8.0.41\09\01\cltRes.loc
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltAlDis.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\oleacc.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\SymHTML.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\oleacc.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cltui.dll
4/2/2012 8:17:22 PM OK C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\CLT\cltLMSx.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\hsui.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SymHTML.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\NPCStatus.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltui.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\NPCTray.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\hsui.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\uiAlert.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\NPCTray.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\uiHost.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\uiPerfsv.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\GdiPlus.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\uiAlert.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\asFilter.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\uiHost.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\uiPerfsv.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\asOEHook.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\asFilter.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\asUniPlg.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\NPCStatus.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\asOEHook.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\SDKCmn.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\asUniPlg.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\SymNeti.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SDKCmn.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\SymRedir.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SymNeti.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\Srtsp32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\propsys.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\msi.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SymRedir.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\dbghelp.dll
4/2/2012 8:17:22 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\Srtsp32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\comctl32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\version.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\winnsi.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\msi.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\version.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\dbghelp.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\IPHLPAPI.DLL
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\winnsi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\winsta.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\wkscli.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\srvcli.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\netutils.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\netapi32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\webio.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\IPHLPAPI.DLL
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\netapi32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\msvcr80.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\winhttp.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\webio.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ntmarta.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\msvcp80.dll
4/2/2012 8:17:22 PM OK C:\Windows\SysWOW64\winhttp.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\profapi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\userenv.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\wow64cpu.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\wow64win.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\wow64.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\dwmapi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\uxtheme.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\winmm.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\apphelp.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\rsaenh.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cryptsp.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\RpcRtRemote.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cryptbase.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\sspicli.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\crypt32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\setupapi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\devobj.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\user32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\urlmon.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\wintrust.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\cfgmgr32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ws2_32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\advapi32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\gdi32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\normaliz.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\rpcrt4.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\psapi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\clbcatq.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\shell32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\nsi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\msasn1.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\oleaut32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\sechost.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\Wldap32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\wininet.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\imm32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\msctf.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\kernel32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\shlwapi.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\iertutil.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\msvcrt.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\usp10.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\KernelBase.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ole32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\comdlg32.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ntdll.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\lpk.dll
4/2/2012 8:17:22 PM OK ccSvcHst.exe\ntdll.dll
4/2/2012 8:17:23 PM OK C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\user32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\kernel32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\ntdll.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\SearchProtocolHost.exe
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\mapi32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\mssph.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\SearchProtocolHost.exe
4/2/2012 8:17:23 PM OK C:\Windows\System32\mapi32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\msshooks.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\mssprxy.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\msidle.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\tquery.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\mssph.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\ntmarta.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\comctl32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\propsys.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\version.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\rsaenh.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\cryptsp.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\authz.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\cryptbase.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\RpcRtRemote.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\profapi.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\KernelBase.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\devobj.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\cfgmgr32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\imm32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\msctf.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\setupapi.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\oleaut32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\advapi32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\shlwapi.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\msvcrt.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\ole32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\Wldap32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\usp10.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\lpk.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\shell32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\gdi32.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\rpcrt4.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\clbcatq.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\sechost.dll
4/2/2012 8:17:23 PM OK SearchProtocolHost.exe\apisetschema.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\msidle.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\user32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\kernel32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\ntdll.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\psapi.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\WUDFHost.exe
4/2/2012 8:17:23 PM OK WUDFHost.exe\PortableDeviceClassExtension.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\psapi.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\WMASF.DLL
4/2/2012 8:17:23 PM OK C:\Windows\System32\WUDFHost.exe
4/2/2012 8:17:23 PM OK C:\Windows\System32\PortableDeviceClassExtension.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\WMVCORE.DLL
4/2/2012 8:17:23 PM OK WUDFHost.exe\WUDFx.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\WMASF.DLL
4/2/2012 8:17:23 PM OK WUDFHost.exe\WpdFs.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\PortableDeviceTypes.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\WMVCORE.DLL
4/2/2012 8:17:23 PM OK WUDFHost.exe\GdiPlus.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\WUDFPlatform.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\propsys.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\version.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\wevtapi.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\cryptbase.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\msasn1.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\KernelBase.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\devobj.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\crypt32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\wintrust.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\cfgmgr32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\imm32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\msctf.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\setupapi.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\oleaut32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\advapi32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\msvcrt.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\ole32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\usp10.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\lpk.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\gdi32.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\rpcrt4.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\clbcatq.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\sechost.dll
4/2/2012 8:17:23 PM OK WUDFHost.exe\apisetschema.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\WUDFx.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\drivers\UMDF\WpdFs.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\PortableDeviceTypes.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\WUDFPlatform.dll
4/2/2012 8:17:23 PM OK svchost.exe\user32.dll
4/2/2012 8:17:23 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:23 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:23 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:23 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:23 PM OK svchost.exe\upnphost.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\svchost.exe
4/2/2012 8:17:23 PM OK svchost.exe\ssdpsrv.dll
4/2/2012 8:17:23 PM OK svchost.exe\FntCache.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\ssdpsrv.dll
4/2/2012 8:17:23 PM OK svchost.exe\ssdpapi.dll
4/2/2012 8:17:23 PM OK C:\Windows\System32\FntCache.dll
4/2/2012 8:17:23 PM OK svchost.exe\ktmw32.dll
4/2/2012 8:17:23 PM OK svchost.exe\dhcpcsvc6.dll
4/2/2012 8:17:23 PM OK svchost.exe\dhcpcsvc.dll
4/2/2012 8:17:23 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:23 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:23 PM OK svchost.exe\ntmarta.dll
4/2/2012 8:17:23 PM OK svchost.exe\version.dll
4/2/2012 8:17:23 PM OK svchost.exe\FirewallAPI.dll
4/2/2012 8:17:23 PM OK svchost.exe\WSHTCPIP.DLL
4/2/2012 8:17:23 PM OK C:\Windows\System32\FirewallAPI.dll
4/2/2012 8:17:23 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:23 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:24 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\credssp.dll
4/2/2012 8:17:24 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:24 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:24 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:24 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\secur32.dll
4/2/2012 8:17:24 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:24 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:24 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:24 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:24 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:24 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:24 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:24 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:24 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:24 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:24 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:24 PM OK svchost.exe\Wldap32.dll
4/2/2012 8:17:24 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:24 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:24 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:24 PM OK svchost.exe\shell32.dll
4/2/2012 8:17:24 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:24 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:24 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:24 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:24 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:24 PM OK svchost.exe\BthASPlugin.dll
4/2/2012 8:17:24 PM OK svchost.exe\dtptdns.dll
4/2/2012 8:17:24 PM OK C:\Windows\WindowsMobile\BthASPlugin.dll
4/2/2012 8:17:24 PM OK svchost.exe\wcescommproxy.dll
4/2/2012 8:17:24 PM OK C:\Windows\WindowsMobile\dtptdns.dll
4/2/2012 8:17:24 PM OK svchost.exe\tcp2udp.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\wcescommproxy.dll
4/2/2012 8:17:24 PM OK svchost.exe\wcescomm.dll
4/2/2012 8:17:24 PM OK C:\Windows\WindowsMobile\tcp2udp.dll
4/2/2012 8:17:24 PM OK svchost.exe\rapiproxystub.dll
4/2/2012 8:17:24 PM OK svchost.exe\rapimgr.dll
4/2/2012 8:17:24 PM OK C:\Windows\WindowsMobile\wcescomm.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\rapiproxystub.dll
4/2/2012 8:17:24 PM OK svchost.exe\mdnsNSP.dll
4/2/2012 8:17:24 PM OK C:\Windows\WindowsMobile\rapimgr.dll
4/2/2012 8:17:24 PM OK svchost.exe\ceutil.dll
4/2/2012 8:17:24 PM OK C:\program files\Bonjour\mdnsNSP.dll
4/2/2012 8:17:24 PM OK svchost.exe\user32.dll
4/2/2012 8:17:24 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:24 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:24 PM OK svchost.exe\psapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:24 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:24 PM OK svchost.exe\winusb.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\ceutil.dll
4/2/2012 8:17:24 PM OK svchost.exe\msvcp60.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\winusb.dll
4/2/2012 8:17:24 PM OK svchost.exe\rasadhlp.dll
4/2/2012 8:17:24 PM OK svchost.exe\WLIDNSP.DLL
4/2/2012 8:17:24 PM OK C:\Windows\System32\rasadhlp.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\msvcp60.dll
4/2/2012 8:17:24 PM OK svchost.exe\umb.dll
4/2/2012 8:17:24 PM OK C:\program files\common files\microsoft shared\Windows Live\WLIDNSP.DLL
4/2/2012 8:17:24 PM OK svchost.exe\dhcpcsvc.dll
4/2/2012 8:17:24 PM OK svchost.exe\FWPUCLNT.DLL
4/2/2012 8:17:24 PM OK C:\Windows\System32\umb.dll
4/2/2012 8:17:24 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:24 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:24 PM OK svchost.exe\wtsapi32.dll
4/2/2012 8:17:24 PM OK svchost.exe\wsock32.dll
4/2/2012 8:17:24 PM OK svchost.exe\atl.dll
4/2/2012 8:17:24 PM OK svchost.exe\version.dll
4/2/2012 8:17:24 PM OK svchost.exe\WSHTCPIP.DLL
4/2/2012 8:17:24 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:24 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:24 PM OK svchost.exe\dnsapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:24 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:24 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:24 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:24 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:24 PM OK svchost.exe\msasn1.dll
4/2/2012 8:17:24 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:24 PM OK svchost.exe\devobj.dll
4/2/2012 8:17:24 PM OK svchost.exe\crypt32.dll
4/2/2012 8:17:24 PM OK svchost.exe\wintrust.dll
4/2/2012 8:17:24 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:24 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:24 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:24 PM OK svchost.exe\setupapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:24 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:24 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:24 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:24 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:24 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:24 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:24 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:24 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:24 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:24 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:24 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:24 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:24 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\FWPUCLNT.DLL
4/2/2012 8:17:24 PM OK SearchIndexer.exe\NlsLexicons0009.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\user32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\kernel32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\ntdll.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\psapi.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\SearchIndexer.exe
4/2/2012 8:17:24 PM OK SearchIndexer.exe\NlsData0009.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\NaturalLanguage6.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\elslad.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\tquery.dll.mui
4/2/2012 8:17:24 PM OK SearchIndexer.exe\mssprxy.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\msidle.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\esent.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\mssrch.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\SearchIndexer.exe
4/2/2012 8:17:24 PM OK SearchIndexer.exe\tquery.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\ELSCore.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\netutils.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\wtsapi32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\es.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\samcli.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\vsstrace.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\NlsData0009.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\vssapi.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\atl.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\samlib.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\ntmarta.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\propsys.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\userenv.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\credssp.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\rsaenh.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\cryptsp.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\secur32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\sspicli.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\apphelp.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\cryptbase.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\sxs.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\winsta.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\RpcRtRemote.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\profapi.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\elslad.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\msasn1.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\KernelBase.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\NaturalLanguage6.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\crypt32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\cfgmgr32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\imm32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\msctf.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\oleaut32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\advapi32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\shlwapi.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\msvcrt.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\ole32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\Wldap32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\usp10.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\lpk.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\shell32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\gdi32.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\rpcrt4.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\clbcatq.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\sechost.dll
4/2/2012 8:17:24 PM OK SearchIndexer.exe\apisetschema.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\en-US\tquery.dll.mui
4/2/2012 8:17:24 PM OK C:\Windows\System32\NlsLexicons0009.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\ELSCore.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\mssrch.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\esent.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\es.dll
4/2/2012 8:17:24 PM OK C:\Windows\System32\samcli.dll
4/2/2012 8:17:25 PM OK C:\Windows\System32\vsstrace.dll
4/2/2012 8:17:25 PM OK C:\Windows\System32\vssapi.dll
4/2/2012 8:17:25 PM OK iPodService.exe\user32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\kernel32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\ntdll.dll
4/2/2012 8:17:25 PM OK iPodService.exe\iPodService.exe
4/2/2012 8:17:25 PM OK iPodService.exe\iPodService.dll
4/2/2012 8:17:25 PM OK iPodService.exe\iPodServiceLocalized.dll
4/2/2012 8:17:25 PM OK iPodService.exe\wtsapi32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\version.dll
4/2/2012 8:17:25 PM OK iPodService.exe\rsaenh.dll
4/2/2012 8:17:25 PM OK iPodService.exe\cryptsp.dll
4/2/2012 8:17:25 PM OK iPodService.exe\cryptbase.dll
4/2/2012 8:17:25 PM OK iPodService.exe\sxs.dll
4/2/2012 8:17:25 PM OK iPodService.exe\winsta.dll
4/2/2012 8:17:25 PM OK iPodService.exe\RpcRtRemote.dll
4/2/2012 8:17:25 PM OK iPodService.exe\msasn1.dll
4/2/2012 8:17:25 PM OK iPodService.exe\KernelBase.dll
4/2/2012 8:17:25 PM OK iPodService.exe\devobj.dll
4/2/2012 8:17:25 PM OK iPodService.exe\crypt32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\wintrust.dll
4/2/2012 8:17:25 PM OK iPodService.exe\cfgmgr32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\imm32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\msctf.dll
4/2/2012 8:17:25 PM OK iPodService.exe\setupapi.dll
4/2/2012 8:17:25 PM OK iPodService.exe\oleaut32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\advapi32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\msvcrt.dll
4/2/2012 8:17:25 PM OK iPodService.exe\ole32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\usp10.dll
4/2/2012 8:17:25 PM OK iPodService.exe\lpk.dll
4/2/2012 8:17:25 PM OK iPodService.exe\gdi32.dll
4/2/2012 8:17:25 PM OK iPodService.exe\rpcrt4.dll
4/2/2012 8:17:25 PM OK iPodService.exe\clbcatq.dll
4/2/2012 8:17:25 PM OK iPodService.exe\sechost.dll
4/2/2012 8:17:25 PM OK iPodService.exe\apisetschema.dll
4/2/2012 8:17:25 PM OK C:\program files\iPod\bin\iPodService.Resources\iPodService.dll
4/2/2012 8:17:25 PM OK C:\program files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
4/2/2012 8:17:25 PM OK C:\program files\iPod\bin\iPodService.exe
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\user32.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\kernel32.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\ntdll.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\psapi.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\WLIDSVCM.EXE
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\KernelBase.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\imm32.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\msctf.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\advapi32.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\shlwapi.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\msvcrt.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\usp10.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\lpk.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\shell32.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\gdi32.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\rpcrt4.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\sechost.dll
4/2/2012 8:17:25 PM OK WLIDSVCM.EXE\apisetschema.dll
4/2/2012 8:17:25 PM OK C:\program files\common files\microsoft shared\Windows Live\WLIDSVCM.EXE
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\user32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\kernel32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\ntdll.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\psapi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\WLIDSVC.EXE
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wbemsvc.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\dssenh.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\msxml3.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wbemprox.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\ntdsapi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\fastprox.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\SQMAPI.DLL
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\SensApi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wbemcomn.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\webio.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\winhttp.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wer.dll
4/2/2012 8:17:25 PM OK C:\Windows\System32\dssenh.dll
4/2/2012 8:17:25 PM OK C:\program files\common files\microsoft shared\Windows Live\WLIDSVC.EXE
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\WinSCard.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\winnsi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\IPHLPAPI.DLL
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wkscli.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\netutils.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\netapi32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wtsapi32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\samcli.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\version.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\userenv.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\rsaenh.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\cryptsp.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\srvcli.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\apphelp.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\cryptbase.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\winsta.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\RpcRtRemote.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\profapi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\msasn1.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\KernelBase.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\crypt32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\wintrust.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\imm32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\msctf.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\oleaut32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\advapi32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\shlwapi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\msvcrt.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\ole32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\nsi.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\usp10.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\lpk.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\ws2_32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\shell32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\gdi32.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\rpcrt4.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\clbcatq.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\sechost.dll
4/2/2012 8:17:25 PM OK WLIDSVC.EXE\apisetschema.dll
4/2/2012 8:17:25 PM OK C:\program files\common files\microsoft shared\Windows Live\SQMAPI.DLL
4/2/2012 8:17:25 PM OK C:\Windows\System32\wer.dll
4/2/2012 8:17:25 PM OK C:\Windows\System32\WinSCard.dll
4/2/2012 8:17:25 PM OK C:\Windows\System32\msxml3.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\apisetschema.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\DivXUpdate.exe
4/2/2012 8:17:25 PM OK DivXUpdate.exe\DivXUpdateCheck.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\Desktop.ini
4/2/2012 8:17:25 PM OK C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
4/2/2012 8:17:25 PM OK C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\rasapi32.dll
4/2/2012 8:17:25 PM Detected: Backdoor.Win32.ZAccess.aug C:\Windows\assembly\GAC_32\Desktop.ini
4/2/2012 8:17:25 PM OK DivXUpdate.exe\rtutils.dll
4/2/2012 8:17:25 PM OK C:\Windows\SysWOW64\rasapi32.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\rasman.dll
4/2/2012 8:17:25 PM OK C:\Windows\SysWOW64\rtutils.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\propsys.dll
4/2/2012 8:17:25 PM OK C:\Windows\SysWOW64\rasman.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\comctl32.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\wship6.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\rasadhlp.dll
4/2/2012 8:17:25 PM OK C:\Windows\SysWOW64\wship6.dll
4/2/2012 8:17:25 PM OK DivXUpdate.exe\dnsapi.dll
4/2/2012 8:17:25 PM OK C:\Windows\SysWOW64\rasadhlp.dll
4/2/2012 8:17:25 PM Backed up C:\Windows\assembly\GAC_32\Desktop.ini
4/2/2012 8:17:25 PM Will be deleted on system restart: Backdoor.Win32.ZAccess.aug C:\Windows\assembly\GAC_32\Desktop.ini
4/2/2012 8:17:25 PM OK DivXUpdate.exe\mswsock.dll
4/2/2012 8:17:25 PM OK C:\Windows\SysWOW64\dnsapi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\winnsi.dll
4/2/2012 8:17:26 PM OK C:\Windows\SysWOW64\mswsock.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\IPHLPAPI.DLL
4/2/2012 8:17:26 PM OK DivXUpdate.exe\mdnsNSP.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\WLIDNSP.DLL
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\Bonjour\mdnsNSP.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\msvcr80.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\common files\microsoft shared\Windows Live\WLIDNSP.DLL
4/2/2012 8:17:26 PM OK DivXUpdate.exe\ntmarta.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\msvcp80.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\profapi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\wow64cpu.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\wow64win.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\wow64.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\cabinet.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\secur32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\SensApi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\dwmapi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\uxtheme.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\rsaenh.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\cryptsp.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\WSHTCPIP.DLL
4/2/2012 8:17:26 PM OK DivXUpdate.exe\RpcRtRemote.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\cryptbase.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\sspicli.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\crypt32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\setupapi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\devobj.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\user32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\urlmon.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\cfgmgr32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\ws2_32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\advapi32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\gdi32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\normaliz.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\rpcrt4.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\psapi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\clbcatq.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\shell32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\nsi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\msasn1.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\oleaut32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\sechost.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\Wldap32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\wininet.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\imm32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\msctf.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\kernel32.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\shlwapi.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\iertutil.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\msvcrt.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\usp10.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\KernelBase.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\ole32.dll
4/2/2012 8:17:26 PM OK C:\Windows\SysWOW64\WSHTCPIP.DLL
4/2/2012 8:17:26 PM OK DivXUpdate.exe\ntdll.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\lpk.dll
4/2/2012 8:17:26 PM OK DivXUpdate.exe\ntdll.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\apisetschema.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\tgsrvc.exe
4/2/2012 8:17:26 PM OK tgsrvc.exe\propsys.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\devrtl.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\comctl32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\ntmarta.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\profapi.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\wow64cpu.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\wow64win.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\wow64.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\secur32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\apphelp.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\mpr.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\cryptbase.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\sspicli.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\setupapi.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\devobj.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\user32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\cfgmgr32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\advapi32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\gdi32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\rpcrt4.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\clbcatq.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\shell32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\oleaut32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\sechost.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\Wldap32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\imm32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\msctf.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\kernel32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\shlwapi.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\msvcrt.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\usp10.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\KernelBase.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\ole32.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\ntdll.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\lpk.dll
4/2/2012 8:17:26 PM OK tgsrvc.exe\ntdll.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe
4/2/2012 8:17:26 PM OK svchost.exe\user32.dll
4/2/2012 8:17:26 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:26 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:26 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:26 PM OK svchost.exe\wiatrace.dll
4/2/2012 8:17:26 PM OK svchost.exe\wiaservc.dll
4/2/2012 8:17:26 PM OK C:\Windows\System32\wiatrace.dll
4/2/2012 8:17:26 PM OK svchost.exe\version.dll
4/2/2012 8:17:26 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:26 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:26 PM OK svchost.exe\msv1_0.dll
4/2/2012 8:17:26 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:26 PM OK svchost.exe\cryptdll.dll
4/2/2012 8:17:26 PM OK C:\Windows\System32\wiaservc.dll
4/2/2012 8:17:26 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:26 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:26 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:26 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:26 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:26 PM OK svchost.exe\devobj.dll
4/2/2012 8:17:26 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:26 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:26 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:26 PM OK C:\Windows\System32\msv1_0.dll
4/2/2012 8:17:26 PM OK svchost.exe\setupapi.dll
4/2/2012 8:17:26 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:26 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:26 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:26 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:26 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:26 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:26 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:26 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:26 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:26 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:26 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:26 PM OK C:\Windows\System32\cryptdll.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\apisetschema.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtmessage.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtcmd.exe
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtmessage.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtmessage.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\supportsoft.agent.sprocket.supportmessage.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\supportsoft.agent.sprocket.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe
4/2/2012 8:17:26 PM OK sprtcmd.exe\supportsoft.agent.sprocket.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\compgMgr.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\supportsoft.agent.sprocket.supportmessage.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\dmmonitor.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\supportsoft.agent.sprocket.supportmessage.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\supportsoft.agent.sprocket.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\libeay32.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtfod.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\dmmonitor.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprttrigger.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtfod.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtui.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\libeay32.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprttrigger.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtevent.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtui.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtsync.dll
4/2/2012 8:17:26 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtevent.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\sprtsched.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\qmgrprxy.dll
4/2/2012 8:17:26 PM OK sprtcmd.exe\System.Xml.ni.dll
4/2/2012 8:17:26 PM OK C:\Windows\SysWOW64\qmgrprxy.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\System.ni.dll
4/2/2012 8:17:27 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtsync.dll
4/2/2012 8:17:27 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtsched.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\winrnr.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\pnrpnsp.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\mscorjit.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\winrnr.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\mscorlib.ni.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\version.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\wsock32.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\pnrpnsp.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\rasadhlp.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\dnsapi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\mswsock.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\winnsi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\IPHLPAPI.DLL
4/2/2012 8:17:27 PM OK sprtcmd.exe\mdnsNSP.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\WLIDNSP.DLL
4/2/2012 8:17:27 PM OK sprtcmd.exe\wkscli.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\srvcli.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\netutils.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\netapi32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\msvcr80.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\ntmarta.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\profapi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\wow64cpu.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\wow64win.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\wow64.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\mscorwks.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\NapiNSP.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\dwmapi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\uxtheme.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\mscoreei.dll
4/2/2012 8:17:27 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\mscoree.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\winspool.drv
4/2/2012 8:17:27 PM OK sprtcmd.exe\apphelp.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\rsaenh.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\cryptsp.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\RpcRtRemote.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\cryptbase.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\sspicli.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\crypt32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\user32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\urlmon.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\ws2_32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\advapi32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\gdi32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\normaliz.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\rpcrt4.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\psapi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\clbcatq.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\shell32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\nsi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\msasn1.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\oleaut32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\sechost.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\Wldap32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\wininet.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\imm32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\msctf.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\kernel32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\shlwapi.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\iertutil.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\msvcrt.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\usp10.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\KernelBase.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\ole32.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\ntdll.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\lpk.dll
4/2/2012 8:17:27 PM OK sprtcmd.exe\ntdll.dll
4/2/2012 8:17:27 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\wsock32.dll
4/2/2012 8:17:27 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\NapiNSP.dll
4/2/2012 8:17:27 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
4/2/2012 8:17:27 PM OK C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\winspool.drv
4/2/2012 8:17:27 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\mscoree.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\apisetschema.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\sprtsvc.exe
4/2/2012 8:17:27 PM OK sprtsvc.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:27 PM OK sprtsvc.exe\libeay32.dll Object was not changed (iChecker)
4/2/2012 8:17:27 PM OK sprtsvc.exe\sprtfod.dll Object was not changed (iChecker)
4/2/2012 8:17:27 PM OK sprtsvc.exe\sprtsync.dll Object was not changed (iChecker)
4/2/2012 8:17:27 PM OK sprtsvc.exe\sprtsched.dll Object was not changed (iChecker)
4/2/2012 8:17:27 PM OK sprtsvc.exe\sprtupdate.dll
4/2/2012 8:17:27 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe
4/2/2012 8:17:27 PM OK sprtsvc.exe\netbios.dll
4/2/2012 8:17:27 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtupdate.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\npmproxy.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\netbios.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\nlaapi.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\npmproxy.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\rasapi32.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\nlaapi.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\netprofm.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\qmgrprxy.dll
4/2/2012 8:17:27 PM OK C:\Windows\SysWOW64\netprofm.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\rtutils.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\rasman.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\propsys.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\msi.dll
4/2/2012 8:17:27 PM OK sprtsvc.exe\winrnr.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\pnrpnsp.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\devrtl.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\comctl32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\version.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\wsock32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\rasadhlp.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\dnsapi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\mswsock.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\winnsi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\IPHLPAPI.DLL
4/2/2012 8:17:28 PM OK sprtsvc.exe\mdnsNSP.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\WLIDNSP.DLL
4/2/2012 8:17:28 PM OK sprtsvc.exe\wkscli.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\srvcli.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\netutils.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\netapi32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\ntmarta.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\profapi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\wow64cpu.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\wow64win.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\wow64.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\secur32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\NapiNSP.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\SensApi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\winspool.drv
4/2/2012 8:17:28 PM OK sprtsvc.exe\apphelp.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\rsaenh.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\cryptsp.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\mpr.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\RpcRtRemote.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\cryptbase.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\sspicli.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\setupapi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\devobj.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\user32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\urlmon.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\cfgmgr32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\ws2_32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\advapi32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\gdi32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\normaliz.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\rpcrt4.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\psapi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\clbcatq.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\shell32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\nsi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\oleaut32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\sechost.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\Wldap32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\wininet.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\imm32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\msctf.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\kernel32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\shlwapi.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\iertutil.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\msvcrt.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\usp10.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\KernelBase.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\ole32.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\ntdll.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\lpk.dll
4/2/2012 8:17:28 PM OK sprtsvc.exe\ntdll.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\apisetschema.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\iTunesHelper.exe
4/2/2012 8:17:28 PM OK iTunesHelper.exe\libdispatch.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:28 PM OK iTunesHelper.exe\iTunesMobileDevice.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\iTunes\iTunesHelper.exe
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\libdispatch.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\ddraw.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\SQLite3.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\CFNetwork.dll
4/2/2012 8:17:28 PM OK C:\Windows\SysWOW64\ddraw.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\dsound.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Mobile Device Support\iTunesMobileDevice.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\QuickTime.qts
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\SQLite3.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\GdiPlus.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\dciman32.dll
4/2/2012 8:17:28 PM OK C:\Windows\SysWOW64\dsound.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CFNetwork.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\zlib1.dll
4/2/2012 8:17:28 PM OK C:\Windows\SysWOW64\dciman32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\QTCF.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\icudt40.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\icuuc40.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\icuin40.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\zlib1.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\QuickTime\QTSystem\QTCF.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\objc.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\pthreadVC2.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\icudt40.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\version.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\CoreFoundation.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wsock32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\mswsock.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\winnsi.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\IPHLPAPI.DLL
4/2/2012 8:17:28 PM OK iTunesHelper.exe\winsta.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\ASL.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wtsapi32.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.qts
4/2/2012 8:17:28 PM OK iTunesHelper.exe\msvcr80.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\msvcp80.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\profapi.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wow64cpu.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wow64win.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wow64.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\iTunesHelper.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\iTunesHelper.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\icuuc40.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\icuin40.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\objc.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\iTunesHelperLocalized.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\sxs.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\pthreadVC2.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\comctl32.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\ASL.dll
4/2/2012 8:17:28 PM OK C:\Windows\SysWOW64\wtsapi32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\dwmapi.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\uxtheme.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\winmm.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\rsaenh.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\cryptsp.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\powrprof.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\WSHTCPIP.DLL
4/2/2012 8:17:28 PM OK iTunesHelper.exe\RpcRtRemote.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\cryptbase.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\sspicli.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\crypt32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\setupapi.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\devobj.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\user32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\urlmon.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wintrust.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\cfgmgr32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\ws2_32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\advapi32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\gdi32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\normaliz.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\rpcrt4.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\clbcatq.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\shell32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\nsi.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\msasn1.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\oleaut32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\sechost.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\wininet.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\iTunes\iTunesHelper.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\imm32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\msctf.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\kernel32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\shlwapi.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\iertutil.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\msvcrt.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\usp10.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\KernelBase.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\ole32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\comdlg32.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\ntdll.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\lpk.dll
4/2/2012 8:17:28 PM OK iTunesHelper.exe\ntdll.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CoreFoundation.dll
4/2/2012 8:17:28 PM OK C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
4/2/2012 8:17:28 PM OK C:\Windows\SysWOW64\sxs.dll
4/2/2012 8:17:28 PM OK C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
4/2/2012 8:17:28 PM OK C:\Windows\SysWOW64\powrprof.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\apisetschema.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\MotoHelperAgent.exe
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\comctl32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\mswsock.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\wow64cpu.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\wow64win.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\wow64.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\dwmapi.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\uxtheme.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\WSHTCPIP.DLL
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\cryptbase.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\sspicli.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\user32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\urlmon.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\ws2_32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\advapi32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\gdi32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\normaliz.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\rpcrt4.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\psapi.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\shell32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\nsi.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\oleaut32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\sechost.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\wininet.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\imm32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\msctf.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\kernel32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\shlwapi.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\iertutil.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\msvcrt.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\usp10.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\KernelBase.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\ole32.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\ntdll.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\lpk.dll
4/2/2012 8:17:28 PM OK MotoHelperAgent.exe\ntdll.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe/#
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperAgent.exe
4/2/2012 8:17:29 PM OK ArcCon.ac\MagPCMac.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\apisetschema.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\msvcp60.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\MagUICommon.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\MagUIEngine.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagPCMac.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\MagUICommonET.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\MagUIInter.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagUICommon.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\msvcp60.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagUIEngine.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\ArcCon.ac
4/2/2012 8:17:29 PM OK ArcCon.ac\MagUIImage.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagUIInter.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagUICommonET.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\magPltfm.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\ArcCon.ac
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagUIImage.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\ArcCon.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\MagCore.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\magPltfm.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\msxml3.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\icm32.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\MagCore.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\msvfw32.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Bin\ArcCon.dll
4/2/2012 8:17:29 PM OK C:\Windows\SysWOW64\icm32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\mscms.dll
4/2/2012 8:17:29 PM OK C:\Windows\SysWOW64\msvfw32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\GdiPlus.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\msi.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\version.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\wtsapi32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\profapi.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\userenv.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\wow64cpu.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\wow64win.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\wow64.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\comctl32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\dwmapi.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\uxtheme.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\winmm.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\apphelp.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\cryptbase.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\sspicli.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\user32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\urlmon.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\advapi32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\gdi32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\normaliz.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\rpcrt4.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\psapi.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\clbcatq.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\shell32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\oleaut32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\sechost.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\wininet.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\imm32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\msctf.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\kernel32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\shlwapi.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\iertutil.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\msvcrt.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\usp10.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\KernelBase.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\ole32.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\ntdll.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\lpk.dll
4/2/2012 8:17:29 PM OK C:\Windows\SysWOW64\mscms.dll
4/2/2012 8:17:29 PM OK ArcCon.ac\ntdll.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\apisetschema.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\reader_sl.exe
4/2/2012 8:17:29 PM OK reader_sl.exe\msvcr80.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\msvcp80.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\wow64cpu.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\wow64win.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\wow64.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\dwmapi.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\uxtheme.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\cryptbase.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\sspicli.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\user32.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\advapi32.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\gdi32.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\rpcrt4.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\shell32.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\sechost.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\imm32.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\msctf.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\kernel32.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\shlwapi.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\msvcrt.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\usp10.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\KernelBase.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\ntdll.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\lpk.dll
4/2/2012 8:17:29 PM OK reader_sl.exe\ntdll.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
4/2/2012 8:17:29 PM OK ACDaemon.exe\apisetschema.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\ACDaemon.exe
4/2/2012 8:17:29 PM OK ACDaemon.exe\compgMgr.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\ArcCon.dll
4/2/2012 8:17:29 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\ACDaemon.exe
4/2/2012 8:17:29 PM OK ACDaemon.exe\rasapi32.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\rtutils.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\rasman.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\msi.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\comctl32.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\version.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\dnsapi.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\winnsi.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\IPHLPAPI.DLL
4/2/2012 8:17:29 PM OK ACDaemon.exe\profapi.dll
4/2/2012 8:17:29 PM OK ACDaemon.exe\wow64cpu.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\wow64win.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\wow64.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\secur32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\SensApi.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\dwmapi.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\uxtheme.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\apphelp.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\cryptbase.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\sspicli.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\crypt32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\user32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\urlmon.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\ws2_32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\advapi32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\gdi32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\normaliz.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\rpcrt4.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\psapi.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\shell32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\nsi.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\msasn1.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\oleaut32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\sechost.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\wininet.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\imm32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\msctf.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\kernel32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\shlwapi.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\iertutil.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\msvcrt.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\usp10.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\KernelBase.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\ole32.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\ntdll.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\lpk.dll
4/2/2012 8:17:30 PM OK ACDaemon.exe\ntdll.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\apisetschema.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\hpwuschd2.exe
4/2/2012 8:17:30 PM OK hpwuschd2.exe\wow64cpu.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\wow64win.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\wow64.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\dwmapi.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\uxtheme.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\cryptbase.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\sspicli.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\user32.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\advapi32.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\gdi32.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\rpcrt4.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\shell32.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\sechost.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\imm32.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\msctf.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\kernel32.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\shlwapi.dll

#13 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 04 April 2012 - 07:51 AM

kaspersky virus removal tool cont.


4/2/2012 8:17:30 PM OK hpwuschd2.exe\msvcrt.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\usp10.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\KernelBase.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\ntdll.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\lpk.dll
4/2/2012 8:17:30 PM OK hpwuschd2.exe\ntdll.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
4/2/2012 8:17:30 PM OK ccSvcHst.exe\apisetschema.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\ccSvcHst.exe Object was not changed (iChecker)
4/2/2012 8:17:30 PM OK ccSvcHst.exe\cltLMJ.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\vbajet32.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\expsrv.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\AppMgr32.dll Object was not changed (iChecker)
4/2/2012 8:17:30 PM OK ccSvcHst.exe\AVifc.dll Object was not changed (iChecker)
4/2/2012 8:17:30 PM OK C:\Windows\SysWOW64\vbajet32.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\AVModule.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltLMJ.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\AVPSVC32.dll
4/2/2012 8:17:30 PM OK C:\Windows\SysWOW64\expsrv.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\FWCore.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\FWGenPlg.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AVPSVC32.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\FWCore.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\FWHelper.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AVModule.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\FWGenPlg.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\FWSetup.dll
4/2/2012 8:17:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\FWHelper.dll
4/2/2012 8:17:30 PM OK ccSvcHst.exe\IMCfg.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\isDataPr.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ISDataSv.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\FWSetup.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IMCfg.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ncwTrust.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\QBackup.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ISDataSv.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\EFACli.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\BHClient.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\BHSvcPlg.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\coDataPr.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ncwTrust.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\QBackup.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\coSvcPlg.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msjtes40.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\hncore.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\oledb32.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\mswstr10.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\msjtes40.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msjet40.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\BHSvcPlg.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msjetoledb40.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coSvcPlg.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\hncore.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\sfc_os.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\common files\System\Ole DB\oledb32.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\sfc.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\mswstr10.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\credssp.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\msjetoledb40.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\sfc_os.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ntdsapi.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\sfc.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\fastprox.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\credssp.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\cscapi.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\oledb32r.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\wbemsvc.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\ntdsapi.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msdart.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\wbem\fastprox.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\common files\System\Ole DB\oledb32r.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\npmproxy.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\nlaapi.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msjint40.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\msjet40.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msjter40.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\wbem\wbemsvc.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\msdart.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\msjint40.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\rasapi32.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccGEvt.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccGLog.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccIPC.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccJobMgr.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccL80U.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccSet.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccSubEng.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\msjter40.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccSvc.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\ccVrTrst.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\IPSPlug.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccGLog.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSubEng.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\IDSxpx86.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\diMaster.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSPlug.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\cltLMC.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK ccSvcHst.exe\netprofm.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\CLTLMS.DLL
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\diMaster.dll
4/2/2012 8:17:31 PM OK C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100128.002\IDSxpx86.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\perfproc.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\wbemcomn.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\rtutils.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\rasman.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\perfproc.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\htec.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\wbemprox.dll
4/2/2012 8:17:31 PM Packed: PE_Patch C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CLTLMS.DLL
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\wbemcomn.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\uiPerfsv.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\htec.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\perfdisk.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\wbem\wbemprox.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CLTLMS.DLL/PE_Patch
4/2/2012 8:17:31 PM OK ccSvcHst.exe\SNDSvc.dll
4/2/2012 8:17:31 PM OK C:\Windows\SysWOW64\perfdisk.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\SymNeti.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CLTLMS.DLL
4/2/2012 8:17:31 PM OK ccSvcHst.exe\SymRdrSv.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\Srtsp32.dll Object was not changed (iChecker)
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SNDSvc.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\msi.dll
4/2/2012 8:17:31 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SymRdrSv.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\dbghelp.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\comctl32.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\version.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\winnsi.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\IPHLPAPI.DLL
4/2/2012 8:17:31 PM OK ccSvcHst.exe\winsta.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\wkscli.dll
4/2/2012 8:17:31 PM OK ccSvcHst.exe\srvcli.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\netutils.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\netapi32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\wtsapi32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\webio.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\msvcr80.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\winhttp.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\ntmarta.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\msvcp80.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\pdh.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\profapi.dll
4/2/2012 8:17:32 PM OK C:\Windows\SysWOW64\pdh.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\userenv.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\wow64cpu.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\wow64win.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\wow64.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\cabinet.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\secur32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\perfos.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\bcrypt.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\winspool.drv
4/2/2012 8:17:32 PM OK ccSvcHst.exe\apphelp.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\dhcpcsvc6.dll
4/2/2012 8:17:32 PM OK C:\Windows\SysWOW64\perfos.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\dhcpcsvc.dll
4/2/2012 8:17:32 PM OK C:\Windows\SysWOW64\dhcpcsvc6.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\rsaenh.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\cryptsp.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\powrprof.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\RpcRtRemote.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\cryptbase.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\sspicli.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\crypt32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\setupapi.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\devobj.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\user32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\urlmon.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\wintrust.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\cfgmgr32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\ws2_32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\advapi32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\gdi32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\normaliz.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\rpcrt4.dll
4/2/2012 8:17:32 PM OK C:\Windows\SysWOW64\dhcpcsvc.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\psapi.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\clbcatq.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\shell32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\nsi.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\msasn1.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\oleaut32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\sechost.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\Wldap32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\wininet.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\imm32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\msctf.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\kernel32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\shlwapi.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\iertutil.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\msvcrt.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\usp10.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\KernelBase.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\ole32.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\ntdll.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\lpk.dll
4/2/2012 8:17:32 PM OK ccSvcHst.exe\ntdll.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\apisetschema.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\hpsysdrv.exe
4/2/2012 8:17:32 PM OK hpsysdrv.exe\wow64cpu.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\wow64win.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\wow64.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\dwmapi.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\uxtheme.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\cryptbase.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\sspicli.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\user32.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\advapi32.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\gdi32.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\rpcrt4.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\sechost.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\imm32.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\msctf.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\kernel32.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\msvcrt.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\usp10.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\KernelBase.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\ntdll.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\lpk.dll
4/2/2012 8:17:32 PM OK hpsysdrv.exe\ntdll.dll
4/2/2012 8:17:32 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
4/2/2012 8:17:32 PM OK netsession_win.exe\apisetschema.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\netsession_win.exe
4/2/2012 8:17:32 PM OK netsession_win.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:32 PM OK netsession_win.exe\winrnr.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\pnrpnsp.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\wship6.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\rasadhlp.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\dnsapi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\mswsock.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\winnsi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\IPHLPAPI.DLL
4/2/2012 8:17:32 PM OK netsession_win.exe\mdnsNSP.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\WLIDNSP.DLL
4/2/2012 8:17:32 PM OK netsession_win.exe\wtsapi32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\webio.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\winhttp.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\ntmarta.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\pdh.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\profapi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\userenv.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\wow64cpu.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\wow64win.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\wow64.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\NapiNSP.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\perfos.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\dwmapi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\uxtheme.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\WSHTCPIP.DLL
4/2/2012 8:17:32 PM OK netsession_win.exe\cryptbase.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\sspicli.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\user32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\urlmon.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\ws2_32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\advapi32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\gdi32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\normaliz.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\rpcrt4.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\psapi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\shell32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\nsi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\oleaut32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\sechost.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\Wldap32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\wininet.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\imm32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\msctf.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\kernel32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\shlwapi.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\iertutil.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\msvcrt.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\usp10.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\KernelBase.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\ole32.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\ntdll.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\lpk.dll
4/2/2012 8:17:32 PM OK netsession_win.exe\ntdll.dll
4/2/2012 8:17:32 PM OK C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
4/2/2012 8:17:32 PM OK ctfmon.exe\user32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\kernel32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\ntdll.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\ctfmon.exe
4/2/2012 8:17:32 PM OK ctfmon.exe\msutb.dll
4/2/2012 8:17:32 PM OK C:\Windows\System32\ctfmon.exe
4/2/2012 8:17:32 PM OK ctfmon.exe\MsCtfMonitor.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\wtsapi32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\dwmapi.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\uxtheme.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\winsta.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\KernelBase.dll
4/2/2012 8:17:32 PM OK C:\Windows\System32\msutb.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\imm32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\msctf.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\advapi32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\msvcrt.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\ole32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\usp10.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\lpk.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\gdi32.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\rpcrt4.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\sechost.dll
4/2/2012 8:17:32 PM OK ctfmon.exe\apisetschema.dll
4/2/2012 8:17:33 PM OK C:\Windows\System32\MsCtfMonitor.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\apisetschema.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\netsession_win.exe Object was not changed (iChecker)
4/2/2012 8:17:33 PM OK netsession_win.exe\compgMgr.dll Object was not changed (iChecker)
4/2/2012 8:17:33 PM OK netsession_win.exe\winnsi.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\IPHLPAPI.DLL
4/2/2012 8:17:33 PM OK netsession_win.exe\winsta.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\wtsapi32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\webio.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\winhttp.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\pdh.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\profapi.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\userenv.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\wow64cpu.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\wow64win.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\wow64.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\dwmapi.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\uxtheme.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\apphelp.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\cryptbase.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\sspicli.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\crypt32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\user32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\urlmon.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\ws2_32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\advapi32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\gdi32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\normaliz.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\rpcrt4.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\psapi.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\shell32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\nsi.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\msasn1.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\oleaut32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\sechost.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\wininet.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\imm32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\msctf.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\kernel32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\shlwapi.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\iertutil.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\msvcrt.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\usp10.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\KernelBase.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\ole32.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\ntdll.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\lpk.dll
4/2/2012 8:17:33 PM OK netsession_win.exe\ntdll.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\apisetschema.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\CommonInterfaces.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\CommonUtility.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.Logging.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.Common.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.ObjectBuilder.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Content.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\PCHealthSecurityPillar.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.ObjectBuilder.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Content.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\SystemStatus.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCHealthSecurity\PCHealthSecurityPillar.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\PCAlertsPillar.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\SystemStatus.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\HPAdvisor.exe
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\PCAlerts\PCAlertsPillar.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\ECLibrary.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\CeeWriter.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECLibrary.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CeeWriter.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\ECenter.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\igdumd32.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
4/2/2012 8:17:33 PM OK HPAdvisor.exe\System.Data.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\igdumdx32.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\diasymreader.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\mscorsec.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\System.Data.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\System.Data.ni.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\shfolder.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\wpfgfx_v0300.dll
4/2/2012 8:17:33 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Pillars\ECenter\ECenter.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\PresentationNative_v0300.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\d3d9.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\msctfui.dll
4/2/2012 8:17:33 PM OK C:\Windows\SysWOW64\igdumd32.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
4/2/2012 8:17:33 PM OK C:\Windows\SysWOW64\igdumdx32.dll
4/2/2012 8:17:33 PM OK C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
4/2/2012 8:17:33 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
4/2/2012 8:17:33 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\CeeWriter.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\PresentationFramework.Aero.ni.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\System.Drawing.ni.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\ECenter.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\System.Management.ni.dll
4/2/2012 8:17:33 PM OK C:\Windows\SysWOW64\PresentationNative_v0300.dll
4/2/2012 8:17:33 PM OK C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\d3d8thk.dll
4/2/2012 8:17:33 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\eedf95f16a7e81ca43dd8accf11498a3\System.Data.ni.dll
4/2/2012 8:17:33 PM OK C:\Windows\SysWOW64\d3d9.dll
4/2/2012 8:17:33 PM OK C:\Windows\SysWOW64\msctfui.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\UIAutomationTypes.ni.dll
4/2/2012 8:17:33 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\74fcc0f56435d0396f9524cd4293d3e5\PresentationFramework.Aero.ni.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\ECLibrary.dll
4/2/2012 8:17:33 PM OK C:\Windows\SysWOW64\d3d8thk.dll
4/2/2012 8:17:33 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ab87129c2b603f218e4aa5300c9b1bdd\System.Drawing.ni.dll
4/2/2012 8:17:33 PM OK HPAdvisor.exe\PCAlertsPillar.dll
4/2/2012 8:17:34 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\cb5bd98ffa4c82327b0e4db02bb58d2d\System.Management.ni.dll
4/2/2012 8:17:34 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\93df5ea9646ad11a21517e4ab1d803d9\UIAutomationTypes.ni.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\System.Configuration.ni.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\SystemStatus.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\PCHealthSecurityPillar.dll
4/2/2012 8:17:34 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\e620323cacb5b6bfd93fd28d263440e4\System.Configuration.ni.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\Microsoft.Practices.ObjectBuilder.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.Common.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\Content.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\Microsoft.Practices.EnterpriseLibrary.Logging.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\CommonUtility.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\System.Xml.ni.dll Object was not changed (iChecker)
4/2/2012 8:17:34 PM OK HPAdvisor.exe\CommonInterfaces.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\PresentationFramework.ni.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\PresentationCore.ni.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\WindowsBase.ni.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\System.ni.dll Object was not changed (iChecker)
4/2/2012 8:17:34 PM OK HPAdvisor.exe\mscorjit.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\mscorlib.ni.dll Object was not changed (iChecker)
4/2/2012 8:17:34 PM OK HPAdvisor.exe\version.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\winsta.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\wtsapi32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\msvcr80.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\profapi.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\userenv.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\wow64cpu.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\wow64win.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\wow64.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\mscorwks.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\gpapi.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\bcryptprimitives.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\bcrypt.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\comctl32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\ncrypt.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\dwmapi.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\uxtheme.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\mscoreei.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\mscoree.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\winmm.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\rsaenh.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\cryptsp.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\powrprof.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\RpcRtRemote.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\cryptbase.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\sspicli.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\crypt32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\setupapi.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\devobj.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\user32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\wintrust.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\cfgmgr32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\ws2_32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\advapi32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\gdi32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\rpcrt4.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\shell32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\nsi.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\msasn1.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\oleaut32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\sechost.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\imm32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\imagehlp.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\msctf.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\kernel32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\shlwapi.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\msvcrt.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\usp10.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\KernelBase.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\ole32.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\ntdll.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\lpk.dll
4/2/2012 8:17:34 PM OK HPAdvisor.exe\ntdll.dll
4/2/2012 8:17:34 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\47b9e7f070271ff50f988f75ea68fa3e\WindowsBase.ni.dll
4/2/2012 8:17:34 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\f4b2424c1b32fbd11130482bb899b7ae\PresentationCore.ni.dll
4/2/2012 8:17:34 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\02f7846cbc5c02a5dbf50fd34325eb61\PresentationFramework.ni.dll
4/2/2012 8:17:34 PM OK rundll32.exe\apisetschema.dll
4/2/2012 8:17:34 PM OK rundll32.exe\rundll32.exe
4/2/2012 8:17:34 PM OK rundll32.exe\mltcr.dll
4/2/2012 8:17:34 PM OK C:\Windows\SysWOW64\rundll32.exe
4/2/2012 8:17:34 PM OK rundll32.exe\version.dll
4/2/2012 8:17:34 PM OK rundll32.exe\dnsapi.dll
4/2/2012 8:17:34 PM OK rundll32.exe\winnsi.dll
4/2/2012 8:17:34 PM OK rundll32.exe\IPHLPAPI.DLL
4/2/2012 8:17:34 PM OK rundll32.exe\profapi.dll
4/2/2012 8:17:34 PM OK rundll32.exe\userenv.dll
4/2/2012 8:17:34 PM OK rundll32.exe\wow64cpu.dll
4/2/2012 8:17:34 PM OK rundll32.exe\wow64win.dll
4/2/2012 8:17:34 PM OK rundll32.exe\wow64.dll
4/2/2012 8:17:34 PM OK rundll32.exe\sxs.dll
4/2/2012 8:17:34 PM OK rundll32.exe\dwmapi.dll
4/2/2012 8:17:34 PM OK rundll32.exe\uxtheme.dll
4/2/2012 8:17:34 PM OK rundll32.exe\winspool.drv
4/2/2012 8:17:34 PM OK rundll32.exe\AcLayers.dll
4/2/2012 8:17:34 PM OK rundll32.exe\apphelp.dll
4/2/2012 8:17:34 PM OK rundll32.exe\rsaenh.dll
4/2/2012 8:17:34 PM OK rundll32.exe\cryptsp.dll
4/2/2012 8:17:34 PM OK rundll32.exe\acwow64.dll
4/2/2012 8:17:34 PM OK rundll32.exe\mpr.dll
4/2/2012 8:17:34 PM OK rundll32.exe\RpcRtRemote.dll
4/2/2012 8:17:34 PM OK rundll32.exe\cryptbase.dll
4/2/2012 8:17:34 PM OK rundll32.exe\sspicli.dll
4/2/2012 8:17:34 PM OK rundll32.exe\user32.dll
4/2/2012 8:17:34 PM OK C:\Windows\AppPatch\AcLayers.dll
4/2/2012 8:17:34 PM OK rundll32.exe\urlmon.dll
4/2/2012 8:17:34 PM OK rundll32.exe\ws2_32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\advapi32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\gdi32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\normaliz.dll
4/2/2012 8:17:34 PM OK rundll32.exe\rpcrt4.dll
4/2/2012 8:17:34 PM OK rundll32.exe\clbcatq.dll
4/2/2012 8:17:34 PM OK rundll32.exe\shell32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\nsi.dll
4/2/2012 8:17:34 PM OK rundll32.exe\oleaut32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\sechost.dll
4/2/2012 8:17:34 PM OK rundll32.exe\wininet.dll
4/2/2012 8:17:34 PM OK rundll32.exe\imm32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\imagehlp.dll
4/2/2012 8:17:34 PM OK rundll32.exe\msctf.dll
4/2/2012 8:17:34 PM OK rundll32.exe\kernel32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\shlwapi.dll
4/2/2012 8:17:34 PM OK rundll32.exe\iertutil.dll
4/2/2012 8:17:34 PM OK rundll32.exe\msvcrt.dll
4/2/2012 8:17:34 PM OK rundll32.exe\usp10.dll
4/2/2012 8:17:34 PM OK rundll32.exe\KernelBase.dll
4/2/2012 8:17:34 PM OK C:\Windows\AppPatch\acwow64.dll
4/2/2012 8:17:34 PM OK rundll32.exe\ole32.dll
4/2/2012 8:17:34 PM OK rundll32.exe\ntdll.dll
4/2/2012 8:17:34 PM OK rundll32.exe\lpk.dll
4/2/2012 8:17:34 PM OK rundll32.exe\ntdll.dll
4/2/2012 8:17:35 PM OK C:\Windows\Temp\mltcr.dll
4/2/2012 8:17:35 PM OK C:\Windows\Temp\mltcr.dll
4/2/2012 8:17:35 PM OK rundll32.exe\user32.dll
4/2/2012 8:17:35 PM OK rundll32.exe\kernel32.dll
4/2/2012 8:17:35 PM OK rundll32.exe\ntdll.dll
4/2/2012 8:17:35 PM OK rundll32.exe\rundll32.exe
4/2/2012 8:17:35 PM OK rundll32.exe\apphelp.dll
4/2/2012 8:17:35 PM OK rundll32.exe\KernelBase.dll
4/2/2012 8:17:35 PM OK rundll32.exe\imm32.dll
4/2/2012 8:17:35 PM OK rundll32.exe\msctf.dll
4/2/2012 8:17:35 PM OK rundll32.exe\imagehlp.dll
4/2/2012 8:17:35 PM OK rundll32.exe\msvcrt.dll
4/2/2012 8:17:35 PM OK rundll32.exe\usp10.dll
4/2/2012 8:17:35 PM OK rundll32.exe\lpk.dll
4/2/2012 8:17:35 PM OK rundll32.exe\gdi32.dll
4/2/2012 8:17:35 PM OK rundll32.exe\apisetschema.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\rundll32.exe
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\msvcr90.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\user32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\kernel32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\ntdll.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\ZuneLauncher.exe
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\ZuneShellExt.dll
4/2/2012 8:17:35 PM OK C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\ZuneCfg.dll
4/2/2012 8:17:35 PM OK C:\program files\Zune\ZuneLauncher.exe
4/2/2012 8:17:35 PM OK C:\program files\Zune\ZuneShellExt.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\wtsapi32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\dwmapi.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\uxtheme.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\winsta.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\KernelBase.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\cfgmgr32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\imm32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\msctf.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\oleaut32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\advapi32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\shlwapi.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\msvcrt.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\ole32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\usp10.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\lpk.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\shell32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\gdi32.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\rpcrt4.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\sechost.dll
4/2/2012 8:17:35 PM OK C:\program files\Zune\ZuneCfg.dll
4/2/2012 8:17:35 PM OK ZuneLauncher.exe\apisetschema.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\igfxsrvc.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\user32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\kernel32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\ntdll.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\igfxpers.exe
4/2/2012 8:17:35 PM OK C:\Windows\System32\igfxsrvc.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\hccutils.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\igfxpers.exe
4/2/2012 8:17:35 PM OK igfxpers.exe\wtsapi32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\dwmapi.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\uxtheme.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\powrprof.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\hccutils.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\rsaenh.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\cryptsp.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\cryptbase.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\winsta.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\RpcRtRemote.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\KernelBase.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\devobj.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\cfgmgr32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\imm32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\msctf.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\setupapi.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\oleaut32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\advapi32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\shlwapi.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\msvcrt.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\ole32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\usp10.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\lpk.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\shell32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\gdi32.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\rpcrt4.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\clbcatq.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\sechost.dll
4/2/2012 8:17:35 PM OK igfxpers.exe\apisetschema.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\powrprof.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\igfxsrvc.dll Object was not changed (iChecker)
4/2/2012 8:17:35 PM OK hkcmd.exe\igfxrenu.lrc
4/2/2012 8:17:35 PM OK hkcmd.exe\user32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\wininet.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\kernel32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\urlmon.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\iertutil.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\ntdll.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\psapi.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\normaliz.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\hkcmd.exe
4/2/2012 8:17:35 PM OK hkcmd.exe\hccutils.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\oleacc.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\ieframe.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\igfxrenu.lrc
4/2/2012 8:17:35 PM OK C:\Windows\System32\hkcmd.exe
4/2/2012 8:17:35 PM OK hkcmd.exe\mpr.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\dwmapi.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\uxtheme.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\oleacc.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\ntmarta.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\comctl32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\propsys.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\devrtl.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\rsaenh.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\cryptsp.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\secur32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\sspicli.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\apphelp.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\cryptbase.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\RpcRtRemote.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\profapi.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\KernelBase.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\devobj.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\cfgmgr32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\imm32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\msctf.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\setupapi.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\oleaut32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\advapi32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\shlwapi.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\msvcrt.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\ole32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\Wldap32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\usp10.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\lpk.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\shell32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\gdi32.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\rpcrt4.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\clbcatq.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\sechost.dll
4/2/2012 8:17:35 PM OK hkcmd.exe\apisetschema.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\devrtl.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\ieframe.dll
4/2/2012 8:17:35 PM OK wmdc.exe\wcescommproxy.dll
4/2/2012 8:17:35 PM OK wmdc.exe\rapiproxystub.dll
4/2/2012 8:17:35 PM OK wmdc.exe\ceutil.dll
4/2/2012 8:17:35 PM OK wmdc.exe\rapi.dll
4/2/2012 8:17:35 PM OK wmdc.exe\rapistub.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\rapi.dll
4/2/2012 8:17:35 PM OK wmdc.exe\user32.dll
4/2/2012 8:17:35 PM OK C:\Windows\System32\rapistub.dll
4/2/2012 8:17:35 PM OK wmdc.exe\wininet.dll
4/2/2012 8:17:35 PM OK wmdc.exe\kernel32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\urlmon.dll
4/2/2012 8:17:36 PM OK wmdc.exe\iertutil.dll
4/2/2012 8:17:36 PM OK wmdc.exe\ntdll.dll
4/2/2012 8:17:36 PM OK wmdc.exe\psapi.dll
4/2/2012 8:17:36 PM OK wmdc.exe\normaliz.dll
4/2/2012 8:17:36 PM OK wmdc.exe\wmdc.exe
4/2/2012 8:17:36 PM OK wmdc.exe\wkscli.dll
4/2/2012 8:17:36 PM OK C:\Windows\WindowsMobile\wmdc.exe
4/2/2012 8:17:36 PM OK wmdc.exe\netutils.dll
4/2/2012 8:17:36 PM OK wmdc.exe\netapi32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\wtsapi32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\wsock32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\uxtheme.dll
4/2/2012 8:17:36 PM OK wmdc.exe\rsaenh.dll
4/2/2012 8:17:36 PM OK wmdc.exe\cryptsp.dll
4/2/2012 8:17:36 PM OK wmdc.exe\srvcli.dll
4/2/2012 8:17:36 PM OK wmdc.exe\cryptbase.dll
4/2/2012 8:17:36 PM OK wmdc.exe\RpcRtRemote.dll
4/2/2012 8:17:36 PM OK wmdc.exe\KernelBase.dll
4/2/2012 8:17:36 PM OK wmdc.exe\imm32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\msctf.dll
4/2/2012 8:17:36 PM OK wmdc.exe\oleaut32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\advapi32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\shlwapi.dll
4/2/2012 8:17:36 PM OK wmdc.exe\msvcrt.dll
4/2/2012 8:17:36 PM OK wmdc.exe\ole32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\nsi.dll
4/2/2012 8:17:36 PM OK wmdc.exe\usp10.dll
4/2/2012 8:17:36 PM OK wmdc.exe\lpk.dll
4/2/2012 8:17:36 PM OK wmdc.exe\ws2_32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\shell32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\gdi32.dll
4/2/2012 8:17:36 PM OK wmdc.exe\rpcrt4.dll
4/2/2012 8:17:36 PM OK wmdc.exe\clbcatq.dll
4/2/2012 8:17:36 PM OK wmdc.exe\sechost.dll
4/2/2012 8:17:36 PM OK wmdc.exe\apisetschema.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\msvcp90.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\msvcr90.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\user32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\kernel32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\ntdll.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\psapi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\SmartMenu.exe
4/2/2012 8:17:36 PM OK SmartMenu.exe\d3d10warp.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\UIAnimation.dll
4/2/2012 8:17:36 PM OK C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\DWrite.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\d3d10warp.dll
4/2/2012 8:17:36 PM OK C:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
4/2/2012 8:17:36 PM OK C:\Windows\System32\UIAnimation.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\d2d1.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\wer.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\gameux.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\GdiPlus.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\shdocvw.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\dxgi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\d3d10_1core.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\d3d10_1.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\DWrite.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\d2d1.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\cscapi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\msxml6.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\winmm.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\WindowsCodecs.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\slc.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\xmllite.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\dwmapi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\ntshrui.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\shdocvw.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\d3d10_1core.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\uxtheme.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\linkinfo.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\ntmarta.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\comctl32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\propsys.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\version.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\userenv.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\rsaenh.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\cryptsp.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\srvcli.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\apphelp.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\cryptbase.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\profapi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\msasn1.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\KernelBase.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\devobj.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\crypt32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\wintrust.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\cfgmgr32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\imm32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\msctf.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\setupapi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\oleaut32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\advapi32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\shlwapi.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\msvcrt.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\d3d10_1.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\ole32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\Wldap32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\usp10.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\lpk.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\shell32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\gdi32.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\rpcrt4.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\clbcatq.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\sechost.dll
4/2/2012 8:17:36 PM OK SmartMenu.exe\apisetschema.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\cscapi.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\ntshrui.dll
4/2/2012 8:17:36 PM OK C:\Windows\System32\gameux.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\apisetschema.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\PST.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\MotoHelperService.exe
4/2/2012 8:17:36 PM OK MotoHelperService.exe\compgMgr.dll Object was not changed (iChecker)
4/2/2012 8:17:36 PM OK MotoHelperService.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:36 PM OK MotoHelperService.exe\version.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wsock32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\mswsock.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\winnsi.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\IPHLPAPI.DLL
4/2/2012 8:17:36 PM OK MotoHelperService.exe\winsta.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wtsapi32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\msvcr80.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\msvcp80.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\profapi.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\userenv.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wow64cpu.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wow64win.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wow64.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\mfc80.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\secur32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\winmm.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\apphelp.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\WSHTCPIP.DLL
4/2/2012 8:17:36 PM OK MotoHelperService.exe\mfc80ENU.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\cryptbase.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\sspicli.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\crypt32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\setupapi.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\devobj.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\user32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\urlmon.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wintrust.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\cfgmgr32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\ws2_32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\advapi32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\gdi32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\normaliz.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\rpcrt4.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\psapi.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\shell32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\nsi.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\msasn1.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\oleaut32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\sechost.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\wininet.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\imm32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\msctf.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\kernel32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\shlwapi.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\iertutil.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\msvcrt.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\usp10.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\KernelBase.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\ole32.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\ntdll.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\lpk.dll
4/2/2012 8:17:36 PM OK MotoHelperService.exe\ntdll.dll
4/2/2012 8:17:36 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
4/2/2012 8:17:37 PM OK C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola\MotoHelper\PST.dll
4/2/2012 8:17:37 PM OK C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\apisetschema.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\LSSrvc.exe
4/2/2012 8:17:37 PM OK LSSrvc.exe\LSSProxy.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\LSLog.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\msvcr80.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\msvcp80.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\profapi.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\wow64cpu.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\wow64win.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\wow64.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\cryptbase.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\sspicli.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\common files\LightScribe\LSSrvc.exe
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\common files\LightScribe\LSSProxy.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\user32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\advapi32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\gdi32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\rpcrt4.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\psapi.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\shell32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\sechost.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\imm32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\msctf.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\kernel32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\shlwapi.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\msvcrt.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\usp10.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\KernelBase.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\ole32.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\ntdll.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\lpk.dll
4/2/2012 8:17:37 PM OK LSSrvc.exe\ntdll.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\common files\LightScribe\LSLog.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\apisetschema.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\HPDrvMntSvc.exe
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\wow64cpu.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\wow64win.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\wow64.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\cryptbase.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\sspicli.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\user32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\advapi32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\gdi32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\rpcrt4.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\shell32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\sechost.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\imm32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\msctf.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\kernel32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\shlwapi.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\msvcrt.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\usp10.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\KernelBase.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\ole32.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\ntdll.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\lpk.dll
4/2/2012 8:17:37 PM OK HPDrvMntSvc.exe\ntdll.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\PresentationFontCache.exe
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\wpfgfx_v0300.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\msvcr80.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\user32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\kernel32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\ntdll.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\PresentationCore.ni.dll
4/2/2012 8:17:37 PM OK C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\WindowsBase.ni.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\mscorjit.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\System.ni.dll Object was not changed (iChecker)
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\mscorlib.ni.dll Object was not changed (iChecker)
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\mscorwks.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\System.ServiceProcess.ni.dll Object was not changed (iChecker)
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\shfolder.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\mscoreei.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\mscoree.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\rsaenh.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\cryptsp.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\cryptbase.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\profapi.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\KernelBase.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\imm32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\msctf.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\oleaut32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\advapi32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\shlwapi.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\msvcrt.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\ole32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\usp10.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\lpk.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\shell32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\gdi32.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\rpcrt4.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\sechost.dll
4/2/2012 8:17:37 PM OK PresentationFontCache.exe\apisetschema.dll
4/2/2012 8:17:37 PM OK C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
4/2/2012 8:17:37 PM OK C:\Windows\System32\shfolder.dll
4/2/2012 8:17:37 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\a6d9b6658c7778345cc60fe0d9bb6e64\WindowsBase.ni.dll
4/2/2012 8:17:37 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\0fa603af6ee814498c20f46e00e5f891\PresentationCore.ni.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\apisetschema.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NFileMonitorInServices.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\DbAccess.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NServiceEntry.exe
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\DbAccess.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\NFileMonitorInServices.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NAdvLog.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\NServiceEntry.exe
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NFileCacheDBAccess.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\NAdvLog.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NITuneMonitor.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\NFileCacheDBAccess.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NetSharingService.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\NITuneMonitor.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\InterProcessChannel.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\NetSharingService.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\NLog.dll
4/2/2012 8:17:37 PM OK C:\Program Files (x86)\Motorola Media Link\InterProcessChannel.dll
4/2/2012 8:17:37 PM OK NServiceEntry.exe\LiveupdateTactics.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\Motorola Media Link\NLog.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\sqlite3.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\Motorola Media Link\LiveupdateTactics.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\winnsi.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\Motorola Media Link\sqlite3.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\IPHLPAPI.DLL
4/2/2012 8:17:38 PM OK NServiceEntry.exe\winsta.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\wtsapi32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\msvcr80.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\msvcp80.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\profapi.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\userenv.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\wow64cpu.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\wow64win.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\wow64.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\netcfgx.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\gpapi.dll
4/2/2012 8:17:38 PM OK C:\Windows\SysWOW64\netcfgx.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\slc.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\atl.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\hnetcfg.dll
4/2/2012 8:17:38 PM OK C:\Windows\SysWOW64\atl.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\cryptbase.dll
4/2/2012 8:17:38 PM OK C:\Windows\SysWOW64\hnetcfg.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\sspicli.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\user32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\advapi32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\gdi32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\rpcrt4.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\clbcatq.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\shell32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\nsi.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\oleaut32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\sechost.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\imm32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\msctf.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\kernel32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\shlwapi.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\msvcrt.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\usp10.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\KernelBase.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\ole32.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\ntdll.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\lpk.dll
4/2/2012 8:17:38 PM OK NServiceEntry.exe\ntdll.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\apisetschema.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\mDNSResponder.exe
4/2/2012 8:17:38 PM OK mDNSResponder.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:38 PM OK mDNSResponder.exe\wship6.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\dnsapi.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\mswsock.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\winnsi.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\IPHLPAPI.DLL
4/2/2012 8:17:38 PM OK mDNSResponder.exe\wkscli.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\srvcli.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\netutils.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\netapi32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\profapi.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\wow64cpu.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\wow64win.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\wow64.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\dhcpcsvc6.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\dhcpcsvc.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\rsaenh.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\cryptsp.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\powrprof.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\WSHTCPIP.DLL
4/2/2012 8:17:38 PM OK mDNSResponder.exe\cryptbase.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\sspicli.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\setupapi.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\devobj.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\user32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\cfgmgr32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\ws2_32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\advapi32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\gdi32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\rpcrt4.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\shell32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\nsi.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\oleaut32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\sechost.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\imm32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\msctf.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\kernel32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\shlwapi.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\msvcrt.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\usp10.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\KernelBase.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\ole32.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\ntdll.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\lpk.dll
4/2/2012 8:17:38 PM OK mDNSResponder.exe\ntdll.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\Bonjour\mDNSResponder.exe
4/2/2012 8:17:38 PM OK taskeng.exe\user32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\kernel32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\ntdll.dll
4/2/2012 8:17:38 PM OK taskeng.exe\taskeng.exe
4/2/2012 8:17:38 PM OK taskeng.exe\TSChannel.dll
4/2/2012 8:17:38 PM OK taskeng.exe\ktmw32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\xmllite.dll
4/2/2012 8:17:38 PM OK taskeng.exe\rsaenh.dll
4/2/2012 8:17:38 PM OK taskeng.exe\cryptsp.dll
4/2/2012 8:17:38 PM OK taskeng.exe\wevtapi.dll
4/2/2012 8:17:38 PM OK taskeng.exe\sspicli.dll
4/2/2012 8:17:38 PM OK taskeng.exe\apphelp.dll
4/2/2012 8:17:38 PM OK taskeng.exe\cryptbase.dll
4/2/2012 8:17:38 PM OK taskeng.exe\RpcRtRemote.dll
4/2/2012 8:17:38 PM OK taskeng.exe\KernelBase.dll
4/2/2012 8:17:38 PM OK taskeng.exe\imm32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\msctf.dll
4/2/2012 8:17:38 PM OK taskeng.exe\oleaut32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\advapi32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\shlwapi.dll
4/2/2012 8:17:38 PM OK taskeng.exe\msvcrt.dll
4/2/2012 8:17:38 PM OK taskeng.exe\ole32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\usp10.dll
4/2/2012 8:17:38 PM OK taskeng.exe\lpk.dll
4/2/2012 8:17:38 PM OK taskeng.exe\gdi32.dll
4/2/2012 8:17:38 PM OK taskeng.exe\rpcrt4.dll
4/2/2012 8:17:38 PM OK taskeng.exe\clbcatq.dll
4/2/2012 8:17:38 PM OK taskeng.exe\sechost.dll
4/2/2012 8:17:38 PM OK taskeng.exe\apisetschema.dll
4/2/2012 8:17:38 PM OK explorer.exe\fzshellext_64.dll
4/2/2012 8:17:38 PM OK explorer.exe\msxml5.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
4/2/2012 8:17:38 PM OK explorer.exe\ArcBmhE.dll
4/2/2012 8:17:38 PM OK explorer.exe\MSOXMLMF.DLL
4/2/2012 8:17:38 PM OK explorer.exe\FXSRESM.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\ArcBmhE.dll
4/2/2012 8:17:38 PM OK explorer.exe\msvcr80.dll
4/2/2012 8:17:38 PM OK explorer.exe\ksuser.dll
4/2/2012 8:17:38 PM OK explorer.exe\msvcr90.dll
4/2/2012 8:17:38 PM OK explorer.exe\user32.dll
4/2/2012 8:17:38 PM OK explorer.exe\wininet.dll
4/2/2012 8:17:38 PM OK explorer.exe\kernel32.dll
4/2/2012 8:17:38 PM OK explorer.exe\urlmon.dll
4/2/2012 8:17:38 PM OK explorer.exe\iertutil.dll
4/2/2012 8:17:38 PM OK explorer.exe\ntdll.dll
4/2/2012 8:17:38 PM OK explorer.exe\psapi.dll
4/2/2012 8:17:38 PM OK explorer.exe\normaliz.dll
4/2/2012 8:17:38 PM OK explorer.exe\explorer.exe
4/2/2012 8:17:38 PM OK explorer.exe\HPSFTaskbar.dll
4/2/2012 8:17:38 PM OK explorer.exe\werconcpl.dll
4/2/2012 8:17:38 PM OK explorer.exe\wscui.cpl
4/2/2012 8:17:38 PM OK C:\program files\common files\microsoft shared\OFFICE11\msxml5.dll
4/2/2012 8:17:38 PM OK explorer.exe\netprofm.dll
4/2/2012 8:17:38 PM OK explorer.exe\hgcpl.dll
4/2/2012 8:17:38 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll
4/2/2012 8:17:38 PM OK explorer.exe\msftedit.dll
4/2/2012 8:17:38 PM OK C:\Windows\System32\FXSRESM.dll
4/2/2012 8:17:38 PM OK explorer.exe\framedynos.dll
4/2/2012 8:17:38 PM OK explorer.exe\QAGENT.DLL
4/2/2012 8:17:38 PM OK explorer.exe\SyncCenter.dll
4/2/2012 8:17:38 PM OK explorer.exe\wwapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\WWanAPI.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\werconcpl.dll
4/2/2012 8:17:39 PM OK C:\Windows\explorer.exe
4/2/2012 8:17:39 PM OK explorer.exe\bthprops.cpl
4/2/2012 8:17:39 PM OK C:\Windows\System32\wscui.cpl
4/2/2012 8:17:39 PM OK explorer.exe\ActionCenter.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\hgcpl.dll
4/2/2012 8:17:39 PM OK explorer.exe\srchadmin.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\framedynos.dll
4/2/2012 8:17:39 PM OK explorer.exe\QUTIL.DLL
4/2/2012 8:17:39 PM OK C:\Windows\System32\msftedit.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\QAGENT.DLL
4/2/2012 8:17:39 PM OK explorer.exe\pnidui.dll
4/2/2012 8:17:39 PM OK explorer.exe\PortableDeviceApi.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\wwapi.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\WWanAPI.dll
4/2/2012 8:17:39 PM OK explorer.exe\PortableDeviceTypes.dll
4/2/2012 8:17:39 PM OK explorer.exe\WPDShServiceObj.dll
4/2/2012 8:17:39 PM OK explorer.exe\AltTab.dll
4/2/2012 8:17:39 PM OK explorer.exe\netshell.dll
4/2/2012 8:17:39 PM OK explorer.exe\Syncreg.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\bthprops.cpl
4/2/2012 8:17:39 PM OK C:\Windows\System32\ActionCenter.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\SyncCenter.dll
4/2/2012 8:17:39 PM OK explorer.exe\wlanapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\mssprxy.dll
4/2/2012 8:17:39 PM OK explorer.exe\npmproxy.dll
4/2/2012 8:17:39 PM OK explorer.exe\FXSAPI.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\QUTIL.DLL
4/2/2012 8:17:39 PM OK C:\Windows\System32\srchadmin.dll
4/2/2012 8:17:39 PM OK explorer.exe\FXSST.dll
4/2/2012 8:17:39 PM OK explorer.exe\DXP.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\WPDShServiceObj.dll
4/2/2012 8:17:39 PM OK explorer.exe\prnfldr.dll
4/2/2012 8:17:39 PM OK explorer.exe\batmeter.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\AltTab.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\PortableDeviceApi.dll
4/2/2012 8:17:39 PM OK explorer.exe\stobject.dll
4/2/2012 8:17:39 PM OK explorer.exe\SensApi.dll
4/2/2012 8:17:39 PM OK explorer.exe\wercplsupport.dll
4/2/2012 8:17:39 PM OK explorer.exe\wscapi.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\Syncreg.dll
4/2/2012 8:17:39 PM OK explorer.exe\wscinterop.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\wlanapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\cabinet.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\pnidui.dll
4/2/2012 8:17:39 PM OK explorer.exe\cryptnet.dll
4/2/2012 8:17:39 PM OK explorer.exe\ehSSO.dll
4/2/2012 8:17:39 PM OK explorer.exe\hcproviders.dll
4/2/2012 8:17:39 PM OK explorer.exe\ieproxy.dll
4/2/2012 8:17:39 PM OK explorer.exe\AudioSes.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\FXSAPI.dll
4/2/2012 8:17:39 PM OK explorer.exe\wdmaud.drv
4/2/2012 8:17:39 PM OK explorer.exe\UIAnimation.dll
4/2/2012 8:17:39 PM OK explorer.exe\oleacc.dll
4/2/2012 8:17:39 PM OK explorer.exe\ieframe.dll
4/2/2012 8:17:39 PM OK explorer.exe\networkexplorer.dll
4/2/2012 8:17:39 PM OK explorer.exe\msi.dll
4/2/2012 8:17:39 PM OK explorer.exe\cryptui.dll
4/2/2012 8:17:39 PM OK explorer.exe\authui.dll
4/2/2012 8:17:39 PM OK explorer.exe\tiptsf.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\DXP.dll
4/2/2012 8:17:39 PM OK explorer.exe\wer.dll
4/2/2012 8:17:39 PM OK explorer.exe\gameux.dll
4/2/2012 8:17:39 PM OK explorer.exe\provsvc.dll
4/2/2012 8:17:39 PM OK explorer.exe\imapi2.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\FXSST.dll
4/2/2012 8:17:39 PM OK explorer.exe\actxprxy.dll
4/2/2012 8:17:39 PM OK explorer.exe\GdiPlus.dll
4/2/2012 8:17:39 PM OK explorer.exe\ExplorerFrame.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\prnfldr.dll
4/2/2012 8:17:39 PM OK explorer.exe\msacm32.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\stobject.dll
4/2/2012 8:17:39 PM OK explorer.exe\shdocvw.dll
4/2/2012 8:17:39 PM OK explorer.exe\cscapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\winspool.drv
4/2/2012 8:17:39 PM OK explorer.exe\mpr.dll
4/2/2012 8:17:39 PM OK explorer.exe\midimap.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\wercplsupport.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\netshell.dll
4/2/2012 8:17:39 PM OK explorer.exe\timedate.cpl
4/2/2012 8:17:39 PM OK C:\Windows\System32\batmeter.dll
4/2/2012 8:17:39 PM OK explorer.exe\msxml6.dll
4/2/2012 8:17:39 PM OK explorer.exe\wlanutil.dll
4/2/2012 8:17:39 PM OK explorer.exe\dhcpcsvc6.dll
4/2/2012 8:17:39 PM OK explorer.exe\dhcpcsvc.dll
4/2/2012 8:17:39 PM OK explorer.exe\winnsi.dll
4/2/2012 8:17:39 PM OK explorer.exe\IPHLPAPI.DLL
4/2/2012 8:17:39 PM OK explorer.exe\msacm32.drv
4/2/2012 8:17:39 PM OK C:\Windows\System32\wscapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\winmm.dll
4/2/2012 8:17:39 PM OK explorer.exe\SndVolSSO.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\cabinet.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\wscinterop.dll
4/2/2012 8:17:39 PM OK C:\Windows\ehome\ehSSO.dll
4/2/2012 8:17:39 PM OK explorer.exe\taskschd.dll
4/2/2012 8:17:39 PM OK explorer.exe\wkscli.dll
4/2/2012 8:17:39 PM OK explorer.exe\netutils.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\hcproviders.dll
4/2/2012 8:17:39 PM OK explorer.exe\wtsapi32.dll
4/2/2012 8:17:39 PM OK explorer.exe\msiltcfg.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\wdmaud.drv
4/2/2012 8:17:39 PM OK C:\Windows\System32\AudioSes.dll
4/2/2012 8:17:39 PM OK explorer.exe\WindowsCodecs.dll
4/2/2012 8:17:39 PM OK explorer.exe\slc.dll
4/2/2012 8:17:39 PM OK explorer.exe\xmllite.dll
4/2/2012 8:17:39 PM OK explorer.exe\dwmapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\msls31.dll
4/2/2012 8:17:39 PM OK explorer.exe\es.dll
4/2/2012 8:17:39 PM OK explorer.exe\shacct.dll
4/2/2012 8:17:39 PM OK explorer.exe\IconCodecService.dll
4/2/2012 8:17:39 PM OK explorer.exe\ntshrui.dll
4/2/2012 8:17:39 PM OK explorer.exe\EhStorShell.dll
4/2/2012 8:17:39 PM OK explorer.exe\samcli.dll
4/2/2012 8:17:39 PM OK explorer.exe\atl.dll
4/2/2012 8:17:39 PM OK explorer.exe\nlaapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\uxtheme.dll
4/2/2012 8:17:39 PM OK explorer.exe\samlib.dll
4/2/2012 8:17:39 PM OK explorer.exe\linkinfo.dll
4/2/2012 8:17:39 PM OK explorer.exe\hid.dll
4/2/2012 8:17:39 PM OK explorer.exe\ntmarta.dll
4/2/2012 8:17:39 PM OK explorer.exe\comctl32.dll
4/2/2012 8:17:39 PM OK explorer.exe\dui70.dll
4/2/2012 8:17:39 PM OK explorer.exe\duser.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\cryptui.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\msi.dll
4/2/2012 8:17:39 PM OK explorer.exe\avrt.dll
4/2/2012 8:17:39 PM OK explorer.exe\propsys.dll
4/2/2012 8:17:39 PM OK explorer.exe\MMDevAPI.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\authui.dll
4/2/2012 8:17:39 PM OK C:\program files\common files\microsoft shared\ink\tiptsf.dll
4/2/2012 8:17:39 PM OK explorer.exe\powrprof.dll
4/2/2012 8:17:39 PM OK explorer.exe\version.dll
4/2/2012 8:17:39 PM OK explorer.exe\gpapi.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\imapi2.dll
4/2/2012 8:17:39 PM OK explorer.exe\userenv.dll
4/2/2012 8:17:39 PM OK explorer.exe\devrtl.dll
4/2/2012 8:17:39 PM OK explorer.exe\bcryptprimitives.dll
4/2/2012 8:17:39 PM OK explorer.exe\rsaenh.dll
4/2/2012 8:17:39 PM OK explorer.exe\cryptsp.dll
4/2/2012 8:17:39 PM OK explorer.exe\bcrypt.dll
4/2/2012 8:17:39 PM OK explorer.exe\ncrypt.dll
4/2/2012 8:17:39 PM OK explorer.exe\wevtapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\srvcli.dll
4/2/2012 8:17:39 PM OK explorer.exe\secur32.dll
4/2/2012 8:17:39 PM OK explorer.exe\sspicli.dll
4/2/2012 8:17:39 PM OK explorer.exe\apphelp.dll
4/2/2012 8:17:39 PM OK explorer.exe\cryptbase.dll
4/2/2012 8:17:39 PM OK explorer.exe\sxs.dll
4/2/2012 8:17:39 PM OK explorer.exe\winsta.dll
4/2/2012 8:17:39 PM OK explorer.exe\RpcRtRemote.dll
4/2/2012 8:17:39 PM OK explorer.exe\profapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\msasn1.dll
4/2/2012 8:17:39 PM OK explorer.exe\KernelBase.dll
4/2/2012 8:17:39 PM OK explorer.exe\devobj.dll
4/2/2012 8:17:39 PM OK explorer.exe\crypt32.dll
4/2/2012 8:17:39 PM OK explorer.exe\wintrust.dll
4/2/2012 8:17:39 PM OK explorer.exe\cfgmgr32.dll
4/2/2012 8:17:39 PM OK explorer.exe\imm32.dll
4/2/2012 8:17:39 PM OK explorer.exe\msctf.dll
4/2/2012 8:17:39 PM OK explorer.exe\setupapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\oleaut32.dll
4/2/2012 8:17:39 PM OK explorer.exe\imagehlp.dll
4/2/2012 8:17:39 PM OK explorer.exe\advapi32.dll
4/2/2012 8:17:39 PM OK explorer.exe\shlwapi.dll
4/2/2012 8:17:39 PM OK explorer.exe\msvcrt.dll
4/2/2012 8:17:39 PM OK explorer.exe\ole32.dll
4/2/2012 8:17:39 PM OK explorer.exe\nsi.dll
4/2/2012 8:17:39 PM OK explorer.exe\Wldap32.dll
4/2/2012 8:17:39 PM OK explorer.exe\usp10.dll
4/2/2012 8:17:39 PM OK explorer.exe\lpk.dll
4/2/2012 8:17:39 PM OK explorer.exe\ws2_32.dll
4/2/2012 8:17:39 PM OK explorer.exe\shell32.dll
4/2/2012 8:17:39 PM OK explorer.exe\gdi32.dll
4/2/2012 8:17:39 PM OK explorer.exe\rpcrt4.dll
4/2/2012 8:17:39 PM OK explorer.exe\clbcatq.dll
4/2/2012 8:17:39 PM OK explorer.exe\sechost.dll
4/2/2012 8:17:39 PM OK explorer.exe\apisetschema.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\msacm32.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\winspool.drv
4/2/2012 8:17:39 PM OK C:\Windows\System32\midimap.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\ExplorerFrame.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\actxprxy.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\wlanutil.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\msacm32.drv
4/2/2012 8:17:39 PM OK C:\Windows\System32\timedate.cpl
4/2/2012 8:17:39 PM OK C:\Windows\System32\SndVolSSO.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\msiltcfg.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\msls31.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\IconCodecService.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\shacct.dll
4/2/2012 8:17:39 PM OK C:\Windows\System32\taskschd.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\hid.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\EhStorShell.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\duser.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\MMDevAPI.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\dui70.dll
4/2/2012 8:17:40 PM OK dwm.exe\user32.dll
4/2/2012 8:17:40 PM OK dwm.exe\kernel32.dll
4/2/2012 8:17:40 PM OK dwm.exe\ntdll.dll
4/2/2012 8:17:40 PM OK dwm.exe\psapi.dll
4/2/2012 8:17:40 PM OK dwm.exe\dwm.exe
4/2/2012 8:17:40 PM OK dwm.exe\igd10umd64.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\dwm.exe
4/2/2012 8:17:40 PM OK dwm.exe\uDWM.dll
4/2/2012 8:17:40 PM OK dwm.exe\dxgi.dll
4/2/2012 8:17:40 PM OK dwm.exe\d3d10_1core.dll
4/2/2012 8:17:40 PM OK dwm.exe\d3d10_1.dll
4/2/2012 8:17:40 PM OK dwm.exe\dwmcore.dll
4/2/2012 8:17:40 PM OK dwm.exe\dwmredir.dll
4/2/2012 8:17:40 PM OK dwm.exe\WindowsCodecs.dll
4/2/2012 8:17:40 PM OK dwm.exe\slc.dll
4/2/2012 8:17:40 PM OK dwm.exe\dwmapi.dll
4/2/2012 8:17:40 PM OK dwm.exe\uxtheme.dll
4/2/2012 8:17:40 PM OK dwm.exe\version.dll
4/2/2012 8:17:40 PM OK dwm.exe\msasn1.dll
4/2/2012 8:17:40 PM OK dwm.exe\KernelBase.dll
4/2/2012 8:17:40 PM OK dwm.exe\crypt32.dll
4/2/2012 8:17:40 PM OK dwm.exe\wintrust.dll
4/2/2012 8:17:40 PM OK dwm.exe\imm32.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\uDWM.dll
4/2/2012 8:17:40 PM OK dwm.exe\msctf.dll
4/2/2012 8:17:40 PM OK dwm.exe\advapi32.dll
4/2/2012 8:17:40 PM OK dwm.exe\msvcrt.dll
4/2/2012 8:17:40 PM OK dwm.exe\ole32.dll
4/2/2012 8:17:40 PM OK dwm.exe\usp10.dll
4/2/2012 8:17:40 PM OK dwm.exe\lpk.dll
4/2/2012 8:17:40 PM OK dwm.exe\gdi32.dll
4/2/2012 8:17:40 PM OK dwm.exe\rpcrt4.dll
4/2/2012 8:17:40 PM OK dwm.exe\sechost.dll
4/2/2012 8:17:40 PM OK dwm.exe\apisetschema.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\dwmredir.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\igd10umd64.dll
4/2/2012 8:17:40 PM OK C:\Windows\System32\dwmcore.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\apisetschema.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\AppleMobileDeviceService.exe
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\libdispatch.dll Object was not changed (iChecker)
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\icudt40.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\icuuc40.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\icuin40.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\objc.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\pthreadVC2.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\version.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\CoreFoundation.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\wsock32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\AppleMobileDeviceService_main.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\mswsock.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\ASL.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\wtsapi32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\msvcr80.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\ntmarta.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\msvcp80.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\profapi.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\userenv.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\wow64cpu.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\wow64win.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\wow64.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\WSHTCPIP.DLL
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\cryptbase.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\sspicli.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\crypt32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\setupapi.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\devobj.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\user32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\wintrust.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\cfgmgr32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\ws2_32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\advapi32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\gdi32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\rpcrt4.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\shell32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\nsi.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\msasn1.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\oleaut32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\sechost.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\Wldap32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\imm32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\msctf.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\kernel32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\shlwapi.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\msvcrt.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\usp10.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\KernelBase.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\ole32.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\ntdll.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\lpk.dll
4/2/2012 8:17:40 PM OK AppleMobileDeviceService.exe\ntdll.dll
4/2/2012 8:17:40 PM OK C:\Program Files (x86)\common files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
4/2/2012 8:17:40 PM OK C:\Program Files (x86)\common files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
4/2/2012 8:17:40 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:40 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:40 PM OK svchost.exe\netsession_win_6c825ce.dll
4/2/2012 8:17:40 PM OK C:\Windows\SysWOW64\svchost.exe
4/2/2012 8:17:40 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:40 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:40 PM OK svchost.exe\rasadhlp.dll
4/2/2012 8:17:40 PM OK svchost.exe\dnsapi.dll
4/2/2012 8:17:40 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:40 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:40 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:40 PM OK svchost.exe\mdnsNSP.dll
4/2/2012 8:17:40 PM OK svchost.exe\WLIDNSP.DLL
4/2/2012 8:17:40 PM OK svchost.exe\winsta.dll
4/2/2012 8:17:40 PM OK svchost.exe\logoncli.dll
4/2/2012 8:17:40 PM OK svchost.exe\wkscli.dll
4/2/2012 8:17:40 PM OK svchost.exe\srvcli.dll
4/2/2012 8:17:40 PM OK svchost.exe\netutils.dll
4/2/2012 8:17:40 PM OK svchost.exe\netapi32.dll
4/2/2012 8:17:40 PM OK svchost.exe\wtsapi32.dll
4/2/2012 8:17:40 PM OK svchost.exe\webio.dll
4/2/2012 8:17:40 PM OK svchost.exe\winhttp.dll
4/2/2012 8:17:40 PM OK svchost.exe\ntmarta.dll
4/2/2012 8:17:40 PM OK svchost.exe\pdh.dll
4/2/2012 8:17:40 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:40 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:40 PM OK svchost.exe\wow64cpu.dll
4/2/2012 8:17:40 PM OK svchost.exe\wow64win.dll
4/2/2012 8:17:40 PM OK svchost.exe\wow64.dll
4/2/2012 8:17:40 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:40 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:40 PM OK svchost.exe\user32.dll
4/2/2012 8:17:40 PM OK svchost.exe\urlmon.dll
4/2/2012 8:17:40 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:40 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:40 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:40 PM OK svchost.exe\normaliz.dll
4/2/2012 8:17:40 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:40 PM OK svchost.exe\psapi.dll
4/2/2012 8:17:40 PM OK svchost.exe\shell32.dll
4/2/2012 8:17:40 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:40 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:40 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:40 PM OK svchost.exe\Wldap32.dll
4/2/2012 8:17:40 PM OK svchost.exe\wininet.dll
4/2/2012 8:17:40 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:40 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:40 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:40 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:40 PM OK svchost.exe\iertutil.dll
4/2/2012 8:17:40 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:40 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:40 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:40 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:40 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:40 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:40 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:40 PM OK C:\Windows\SysWOW64\logoncli.dll
4/2/2012 8:17:40 PM OK C:\Program Files (x86)\common files\Akamai\netsession_win_6c825ce.dll
4/2/2012 8:17:40 PM OK ACService.exe\apisetschema.dll
4/2/2012 8:17:40 PM OK ACService.exe\ACService.exe
4/2/2012 8:17:40 PM OK ACService.exe\ntmarta.dll
4/2/2012 8:17:40 PM OK ACService.exe\profapi.dll
4/2/2012 8:17:40 PM OK ACService.exe\userenv.dll
4/2/2012 8:17:41 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\ACService.exe
4/2/2012 8:17:41 PM OK ACService.exe\wow64cpu.dll
4/2/2012 8:17:41 PM OK ACService.exe\wow64win.dll
4/2/2012 8:17:41 PM OK ACService.exe\wow64.dll
4/2/2012 8:17:41 PM OK ACService.exe\cryptbase.dll
4/2/2012 8:17:41 PM OK ACService.exe\sspicli.dll
4/2/2012 8:17:41 PM OK ACService.exe\user32.dll
4/2/2012 8:17:41 PM OK ACService.exe\advapi32.dll
4/2/2012 8:17:41 PM OK ACService.exe\gdi32.dll
4/2/2012 8:17:41 PM OK ACService.exe\rpcrt4.dll
4/2/2012 8:17:41 PM OK ACService.exe\psapi.dll
4/2/2012 8:17:41 PM OK ACService.exe\shell32.dll
4/2/2012 8:17:41 PM OK ACService.exe\sechost.dll
4/2/2012 8:17:41 PM OK ACService.exe\Wldap32.dll
4/2/2012 8:17:41 PM OK ACService.exe\imm32.dll
4/2/2012 8:17:41 PM OK ACService.exe\msctf.dll
4/2/2012 8:17:41 PM OK ACService.exe\kernel32.dll
4/2/2012 8:17:41 PM OK ACService.exe\shlwapi.dll
4/2/2012 8:17:41 PM OK ACService.exe\msvcrt.dll
4/2/2012 8:17:41 PM OK ACService.exe\usp10.dll
4/2/2012 8:17:41 PM OK ACService.exe\KernelBase.dll
4/2/2012 8:17:41 PM OK ACService.exe\ole32.dll
4/2/2012 8:17:41 PM OK ACService.exe\ntdll.dll
4/2/2012 8:17:41 PM OK ACService.exe\lpk.dll
4/2/2012 8:17:41 PM OK ACService.exe\ntdll.dll
4/2/2012 8:17:41 PM OK svchost.exe\user32.dll
4/2/2012 8:17:41 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:41 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:41 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:41 PM OK svchost.exe\diagperf.dll
4/2/2012 8:17:41 PM OK svchost.exe\pnpts.dll
4/2/2012 8:17:41 PM OK svchost.exe\wdi.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\pnpts.dll
4/2/2012 8:17:41 PM OK svchost.exe\BFE.DLL
4/2/2012 8:17:41 PM OK svchost.exe\taskschd.dll
4/2/2012 8:17:41 PM OK svchost.exe\slc.dll
4/2/2012 8:17:41 PM OK svchost.exe\dps.dll
4/2/2012 8:17:41 PM OK svchost.exe\pcwum.dll
4/2/2012 8:17:41 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:41 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:41 PM OK svchost.exe\authz.dll
4/2/2012 8:17:41 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:41 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:41 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:41 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:41 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:41 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\wdi.dll
4/2/2012 8:17:41 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:41 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:41 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:41 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:41 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:41 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:41 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:41 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:41 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:41 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:41 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:41 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:41 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\dps.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\diagperf.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\BFE.DLL
4/2/2012 8:17:41 PM OK spoolsv.exe\HPZPPLHN.DLL
4/2/2012 8:17:41 PM OK spoolsv.exe\HPZLLLHN.DLL
4/2/2012 8:17:41 PM OK C:\Windows\System32\spool\prtprocs\x64\HPZPPLHN.DLL
4/2/2012 8:17:41 PM OK spoolsv.exe\mdnsNSP.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\user32.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\kernel32.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\ntdll.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\psapi.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\spoolsv.exe
4/2/2012 8:17:41 PM OK C:\Windows\System32\HPZLLLHN.DLL
4/2/2012 8:17:41 PM OK spoolsv.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:41 PM OK spoolsv.exe\cscapi.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\inetpp.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\win32spl.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\spoolsv.exe
4/2/2012 8:17:41 PM OK C:\Windows\System32\inetpp.dll
4/2/2012 8:17:41 PM OK spoolsv.exe\HPZPPWN7.DLL
4/2/2012 8:17:41 PM OK spoolsv.exe\winprint.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\win32spl.dll
4/2/2012 8:17:41 PM OK C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
4/2/2012 8:17:41 PM OK spoolsv.exe\fdPnp.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\spool\prtprocs\x64\winprint.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\fundisc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\fdPnp.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\webservices.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\fundisc.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\WSDApi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\WSDMon.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\WlS0WndH.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\usbmon.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\wsnmp32.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\WSDMon.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\WSDApi.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\webservices.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\snmpapi.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\WlS0WndH.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\usbmon.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\wsnmp32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\tcpmon.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\snmpapi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\HPZ3LWN7.DLL
4/2/2012 8:17:42 PM OK C:\Windows\System32\tcpmon.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\FXSMON.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\HPZ3LWN7.DLL
4/2/2012 8:17:42 PM OK spoolsv.exe\PrintIsolationProxy.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\FXSMON.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\winspool.drv
4/2/2012 8:17:42 PM OK spoolsv.exe\spoolss.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\PrintIsolationProxy.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\localspl.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\spoolss.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\rasadhlp.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\WLIDNSP.DLL
4/2/2012 8:17:42 PM OK spoolsv.exe\msxml6.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\umb.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\FWPUCLNT.DLL
4/2/2012 8:17:42 PM OK spoolsv.exe\winnsi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\IPHLPAPI.DLL
4/2/2012 8:17:42 PM OK spoolsv.exe\netutils.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\wtsapi32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\slc.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\dsrole.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\atl.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\powrprof.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\version.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\FirewallAPI.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\WSHTCPIP.DLL
4/2/2012 8:17:42 PM OK spoolsv.exe\gpapi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\userenv.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\devrtl.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\SPInf.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\credssp.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\rsaenh.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\dnsapi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\wship6.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\cryptsp.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\srvcli.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\secur32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\sspicli.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\cryptbase.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\winsta.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\RpcRtRemote.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\profapi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\mswsock.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\msasn1.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\KernelBase.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\devobj.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\crypt32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\wintrust.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\cfgmgr32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\imm32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\msctf.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\setupapi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\oleaut32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\advapi32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\shlwapi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\msvcrt.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\ole32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\nsi.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\usp10.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\lpk.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\ws2_32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\gdi32.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\rpcrt4.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\clbcatq.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\sechost.dll
4/2/2012 8:17:42 PM OK spoolsv.exe\apisetschema.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\localspl.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\SPInf.dll
4/2/2012 8:17:42 PM OK svchost.exe\user32.dll
4/2/2012 8:17:42 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:42 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:42 PM OK svchost.exe\psapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:42 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:42 PM OK svchost.exe\esent.dll
4/2/2012 8:17:42 PM OK svchost.exe\ssdpapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\webio.dll
4/2/2012 8:17:42 PM OK svchost.exe\winhttp.dll
4/2/2012 8:17:42 PM OK svchost.exe\ncsi.dll
4/2/2012 8:17:42 PM OK svchost.exe\nlasvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\wkssvc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\ncsi.dll
4/2/2012 8:17:42 PM OK svchost.exe\dhcpcsvc6.dll
4/2/2012 8:17:42 PM OK svchost.exe\dhcpcsvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\dnsext.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\nlasvc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\wkssvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\FWPUCLNT.DLL
4/2/2012 8:17:42 PM OK svchost.exe\dnsrslvr.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\dnsext.dll
4/2/2012 8:17:42 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:42 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:42 PM OK svchost.exe\wkscli.dll
4/2/2012 8:17:42 PM OK svchost.exe\netutils.dll
4/2/2012 8:17:42 PM OK svchost.exe\wtsapi32.dll
4/2/2012 8:17:42 PM OK svchost.exe\es.dll
4/2/2012 8:17:42 PM OK svchost.exe\samcli.dll
4/2/2012 8:17:42 PM OK svchost.exe\vsstrace.dll
4/2/2012 8:17:42 PM OK svchost.exe\vssapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\atl.dll
4/2/2012 8:17:42 PM OK svchost.exe\samlib.dll
4/2/2012 8:17:42 PM OK svchost.exe\cryptsvc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\dnsrslvr.dll
4/2/2012 8:17:42 PM OK svchost.exe\propsys.dll
4/2/2012 8:17:42 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:42 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:42 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:42 PM OK svchost.exe\dnsapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:42 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:42 PM OK svchost.exe\netjoin.dll
4/2/2012 8:17:42 PM OK svchost.exe\wevtapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:42 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:42 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:42 PM OK svchost.exe\winsta.dll
4/2/2012 8:17:42 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:42 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\cryptsvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\msasn1.dll
4/2/2012 8:17:42 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:42 PM OK svchost.exe\crypt32.dll
4/2/2012 8:17:42 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:42 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:42 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:42 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:42 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:42 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:42 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:42 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:42 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:42 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:42 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:42 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:42 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:42 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:42 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:42 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\netjoin.dll
4/2/2012 8:17:42 PM OK svchost.exe\sfc.dll
4/2/2012 8:17:42 PM OK svchost.exe\user32.dll
4/2/2012 8:17:42 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:42 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:42 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:42 PM OK svchost.exe\netprofm.dll
4/2/2012 8:17:42 PM OK svchost.exe\perftrack.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\sfc.dll
4/2/2012 8:17:42 PM OK svchost.exe\wdi.dll
4/2/2012 8:17:42 PM OK svchost.exe\npmproxy.dll
4/2/2012 8:17:42 PM OK svchost.exe\sfc_os.dll
4/2/2012 8:17:42 PM OK svchost.exe\aepic.dll
4/2/2012 8:17:42 PM OK svchost.exe\wer.dll
4/2/2012 8:17:42 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:42 PM OK svchost.exe\nsisvc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\perftrack.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\sfc_os.dll
4/2/2012 8:17:42 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:42 PM OK svchost.exe\dwmapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\es.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\aepic.dll
4/2/2012 8:17:42 PM OK svchost.exe\nlaapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\version.dll
4/2/2012 8:17:42 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:42 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:42 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:42 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:42 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:42 PM OK svchost.exe\sxs.dll
4/2/2012 8:17:42 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\nsisvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:42 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:42 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:42 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:42 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:42 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:42 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:42 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:42 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:42 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:42 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:42 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:42 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:42 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:42 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:42 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:42 PM OK audiodg.exe\RtkAPO64.dll
4/2/2012 8:17:42 PM OK audiodg.exe\ksuser.dll
4/2/2012 8:17:42 PM OK audiodg.exe\user32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\kernel32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\ntdll.dll
4/2/2012 8:17:42 PM OK audiodg.exe\audiodg.exe
4/2/2012 8:17:42 PM OK audiodg.exe\mfplat.dll
4/2/2012 8:17:42 PM OK audiodg.exe\WMALFXGFXDSP.dll
4/2/2012 8:17:42 PM OK audiodg.exe\AUDIOKSE.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\audiodg.exe
4/2/2012 8:17:42 PM OK audiodg.exe\AudioEng.dll
4/2/2012 8:17:42 PM OK audiodg.exe\AudioSes.dll
4/2/2012 8:17:42 PM OK audiodg.exe\ntmarta.dll
4/2/2012 8:17:42 PM OK audiodg.exe\avrt.dll
4/2/2012 8:17:42 PM OK audiodg.exe\propsys.dll
4/2/2012 8:17:42 PM OK audiodg.exe\MMDevAPI.dll
4/2/2012 8:17:42 PM OK audiodg.exe\rsaenh.dll
4/2/2012 8:17:42 PM OK audiodg.exe\cryptsp.dll
4/2/2012 8:17:42 PM OK audiodg.exe\cryptbase.dll
4/2/2012 8:17:42 PM OK audiodg.exe\RpcRtRemote.dll
4/2/2012 8:17:42 PM OK audiodg.exe\msasn1.dll
4/2/2012 8:17:42 PM OK audiodg.exe\KernelBase.dll
4/2/2012 8:17:42 PM OK audiodg.exe\devobj.dll
4/2/2012 8:17:42 PM OK audiodg.exe\crypt32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\wintrust.dll
4/2/2012 8:17:42 PM OK audiodg.exe\cfgmgr32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\imm32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\msctf.dll
4/2/2012 8:17:42 PM OK audiodg.exe\setupapi.dll
4/2/2012 8:17:42 PM OK audiodg.exe\oleaut32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\advapi32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\shlwapi.dll
4/2/2012 8:17:42 PM OK audiodg.exe\msvcrt.dll
4/2/2012 8:17:42 PM OK audiodg.exe\ole32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\nsi.dll
4/2/2012 8:17:42 PM OK audiodg.exe\Wldap32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\usp10.dll
4/2/2012 8:17:42 PM OK audiodg.exe\lpk.dll
4/2/2012 8:17:42 PM OK audiodg.exe\ws2_32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\gdi32.dll
4/2/2012 8:17:42 PM OK audiodg.exe\rpcrt4.dll
4/2/2012 8:17:42 PM OK audiodg.exe\clbcatq.dll
4/2/2012 8:17:42 PM OK audiodg.exe\sechost.dll
4/2/2012 8:17:42 PM OK audiodg.exe\apisetschema.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\AUDIOKSE.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\RtkAPO64.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\WMALFXGFXDSP.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\AudioEng.dll
4/2/2012 8:17:42 PM OK svchost.exe\mdnsNSP.dll
4/2/2012 8:17:42 PM OK svchost.exe\user32.dll
4/2/2012 8:17:42 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:42 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:42 PM OK svchost.exe\psapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:42 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:42 PM OK svchost.exe\repdrvfs.dll
4/2/2012 8:17:42 PM OK svchost.exe\wmiutils.dll
4/2/2012 8:17:42 PM OK svchost.exe\wbemsvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\esscli.dll
4/2/2012 8:17:42 PM OK svchost.exe\wbemcore.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\wbem\repdrvfs.dll
4/2/2012 8:17:42 PM OK svchost.exe\nci.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\wbem\esscli.dll
4/2/2012 8:17:42 PM OK svchost.exe\resutils.dll
4/2/2012 8:17:42 PM OK svchost.exe\clusapi.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\nci.dll
4/2/2012 8:17:42 PM OK svchost.exe\sscore.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\resutils.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\wbem\wbemcore.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\clusapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\netprofm.dll
4/2/2012 8:17:42 PM OK svchost.exe\qmgrprxy.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\sscore.dll
4/2/2012 8:17:42 PM OK svchost.exe\aelupsvc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\qmgrprxy.dll
4/2/2012 8:17:42 PM OK svchost.exe\browser.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\aelupsvc.dll
4/2/2012 8:17:42 PM OK svchost.exe\upnp.dll
4/2/2012 8:17:42 PM OK svchost.exe\bitsigd.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\browser.dll
4/2/2012 8:17:42 PM OK svchost.exe\bitsperf.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\bitsigd.dll
4/2/2012 8:17:42 PM OK svchost.exe\qmgr.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\bitsperf.dll
4/2/2012 8:17:42 PM OK svchost.exe\rasman.dll
4/2/2012 8:17:42 PM OK svchost.exe\rasapi32.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\qmgr.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\rasman.dll
4/2/2012 8:17:42 PM OK svchost.exe\npmproxy.dll
4/2/2012 8:17:42 PM OK svchost.exe\wbemess.dll
4/2/2012 8:17:42 PM OK svchost.exe\ncobjapi.dll
4/2/2012 8:17:42 PM OK svchost.exe\WmiPrvSD.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\rasapi32.dll
4/2/2012 8:17:42 PM OK svchost.exe\srvsvc.dll
4/2/2012 8:17:42 PM OK C:\Windows\System32\wbem\wbemess.dll
4/2/2012 8:17:43 PM OK svchost.exe\wdscore.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wbem\WmiPrvSD.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\srvsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\sqmapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\rtutils.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wdscore.dll
4/2/2012 8:17:43 PM OK svchost.exe\ntdsapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\iphlpsvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\sqmapi.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\rtutils.dll
4/2/2012 8:17:43 PM OK svchost.exe\fastprox.dll
4/2/2012 8:17:43 PM OK svchost.exe\wbemcomn.dll
4/2/2012 8:17:43 PM OK svchost.exe\WMIsvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\iphlpsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\NCProv.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wbem\WMIsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\ssdpapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\webio.dll
4/2/2012 8:17:43 PM OK svchost.exe\winhttp.dll
4/2/2012 8:17:43 PM OK svchost.exe\TSChannel.dll
4/2/2012 8:17:43 PM OK svchost.exe\winspool.drv
4/2/2012 8:17:43 PM OK svchost.exe\rasadhlp.dll
4/2/2012 8:17:43 PM OK svchost.exe\WLIDNSP.DLL
4/2/2012 8:17:43 PM OK svchost.exe\wiarpc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wbem\NCProv.dll
4/2/2012 8:17:43 PM OK svchost.exe\taskcomp.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wiarpc.dll
4/2/2012 8:17:43 PM OK svchost.exe\fvecerts.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\taskcomp.dll
4/2/2012 8:17:43 PM OK svchost.exe\tbs.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\fvecerts.dll
4/2/2012 8:17:43 PM OK svchost.exe\fveapi.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\tbs.dll
4/2/2012 8:17:43 PM OK svchost.exe\ktmw32.dll
4/2/2012 8:17:43 PM OK svchost.exe\schedsvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\fveapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\shsvcs.dll
4/2/2012 8:17:43 PM OK svchost.exe\dhcpcsvc6.dll
4/2/2012 8:17:43 PM OK svchost.exe\umb.dll
4/2/2012 8:17:43 PM OK svchost.exe\eapphost.dll
4/2/2012 8:17:43 PM OK svchost.exe\dhcpcsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\FWPUCLNT.DLL
4/2/2012 8:17:43 PM OK svchost.exe\eapsvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\shsvcs.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\schedsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:43 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:43 PM OK svchost.exe\wkscli.dll
4/2/2012 8:17:43 PM OK svchost.exe\netutils.dll
4/2/2012 8:17:43 PM OK svchost.exe\netapi32.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\eapphost.dll
4/2/2012 8:17:43 PM OK svchost.exe\IKEEXT.DLL
4/2/2012 8:17:43 PM OK C:\Windows\System32\eapsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\wtsapi32.dll
4/2/2012 8:17:43 PM OK svchost.exe\Sens.dll
4/2/2012 8:17:43 PM OK svchost.exe\slc.dll
4/2/2012 8:17:43 PM OK svchost.exe\xmllite.dll
4/2/2012 8:17:43 PM OK svchost.exe\dsrole.dll
4/2/2012 8:17:43 PM OK svchost.exe\themeservice.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\Sens.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\IKEEXT.DLL
4/2/2012 8:17:43 PM OK svchost.exe\samcli.dll
4/2/2012 8:17:43 PM OK svchost.exe\vsstrace.dll
4/2/2012 8:17:43 PM OK svchost.exe\vssapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\atl.dll
4/2/2012 8:17:43 PM OK svchost.exe\profsvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\themeservice.dll
4/2/2012 8:17:43 PM OK svchost.exe\nlaapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\gpsvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\profsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\uxtheme.dll
4/2/2012 8:17:43 PM OK svchost.exe\samlib.dll
4/2/2012 8:17:43 PM OK svchost.exe\ntmarta.dll
4/2/2012 8:17:43 PM OK svchost.exe\comctl32.dll
4/2/2012 8:17:43 PM OK svchost.exe\avrt.dll
4/2/2012 8:17:43 PM OK svchost.exe\propsys.dll
4/2/2012 8:17:43 PM OK svchost.exe\mmcss.dll
4/2/2012 8:17:43 PM OK svchost.exe\version.dll
4/2/2012 8:17:43 PM OK svchost.exe\FirewallAPI.dll
4/2/2012 8:17:43 PM OK svchost.exe\WSHTCPIP.DLL
4/2/2012 8:17:43 PM OK svchost.exe\pcwum.dll
4/2/2012 8:17:43 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:43 PM OK svchost.exe\devrtl.dll
4/2/2012 8:17:43 PM OK svchost.exe\SPInf.dll
4/2/2012 8:17:43 PM OK svchost.exe\ubpm.dll
4/2/2012 8:17:43 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:43 PM OK svchost.exe\bcryptprimitives.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\gpsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:43 PM OK svchost.exe\logoncli.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\mmcss.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\ubpm.dll
4/2/2012 8:17:43 PM OK svchost.exe\dnsapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:43 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:43 PM OK svchost.exe\netjoin.dll
4/2/2012 8:17:43 PM OK svchost.exe\bcrypt.dll
4/2/2012 8:17:43 PM OK svchost.exe\ncrypt.dll
4/2/2012 8:17:43 PM OK svchost.exe\authz.dll
4/2/2012 8:17:43 PM OK svchost.exe\wevtapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\cryptdll.dll
4/2/2012 8:17:43 PM OK svchost.exe\sysntfy.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\logoncli.dll
4/2/2012 8:17:43 PM OK svchost.exe\srvcli.dll
4/2/2012 8:17:43 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:43 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:43 PM OK svchost.exe\apphelp.dll
4/2/2012 8:17:43 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:43 PM OK svchost.exe\sxs.dll
4/2/2012 8:17:43 PM OK svchost.exe\winsta.dll
4/2/2012 8:17:43 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:43 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:43 PM OK svchost.exe\msasn1.dll
4/2/2012 8:17:43 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:43 PM OK svchost.exe\devobj.dll
4/2/2012 8:17:43 PM OK svchost.exe\crypt32.dll
4/2/2012 8:17:43 PM OK svchost.exe\wintrust.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\sysntfy.dll
4/2/2012 8:17:43 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:43 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:43 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:43 PM OK svchost.exe\setupapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:43 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:43 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:43 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:43 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:43 PM OK svchost.exe\Wldap32.dll
4/2/2012 8:17:43 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:43 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:43 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:43 PM OK svchost.exe\shell32.dll
4/2/2012 8:17:43 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:43 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:43 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:43 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:43 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:43 PM OK svchost.exe\sfc.dll
4/2/2012 8:17:43 PM OK svchost.exe\user32.dll
4/2/2012 8:17:43 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:43 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:43 PM OK svchost.exe\psapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:43 PM OK svchost.exe\wbemsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\hnetcfg.dll
4/2/2012 8:17:43 PM OK svchost.exe\netcfgx.dll
4/2/2012 8:17:43 PM OK svchost.exe\mprapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\PortableDeviceApi.dll
4/2/2012 8:17:43 PM OK svchost.exe\netshell.dll
4/2/2012 8:17:43 PM OK svchost.exe\wpdbusenum.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\hnetcfg.dll
4/2/2012 8:17:43 PM OK svchost.exe\PortableDeviceConnectApi.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\netcfgx.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\mprapi.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wpdbusenum.dll
4/2/2012 8:17:43 PM OK svchost.exe\Apphlpdm.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\PortableDeviceConnectApi.dll
4/2/2012 8:17:43 PM OK svchost.exe\hidserv.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\Apphlpdm.dll
4/2/2012 8:17:43 PM OK svchost.exe\wdi.dll
4/2/2012 8:17:43 PM OK svchost.exe\rasman.dll
4/2/2012 8:17:43 PM OK svchost.exe\rasapi32.dll
4/2/2012 8:17:43 PM OK svchost.exe\rasdlg.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\hidserv.dll
4/2/2012 8:17:43 PM OK svchost.exe\netman.dll
4/2/2012 8:17:43 PM OK svchost.exe\trkwks.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\rasdlg.dll
4/2/2012 8:17:43 PM OK svchost.exe\sysmain.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\netman.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\trkwks.dll
4/2/2012 8:17:43 PM OK svchost.exe\wbemprox.dll
4/2/2012 8:17:43 PM OK svchost.exe\rtutils.dll
4/2/2012 8:17:43 PM OK svchost.exe\ntdsapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\fastprox.dll
4/2/2012 8:17:43 PM OK svchost.exe\wbemcomn.dll
4/2/2012 8:17:43 PM OK svchost.exe\sfc_os.dll
4/2/2012 8:17:43 PM OK svchost.exe\aepic.dll
4/2/2012 8:17:43 PM OK svchost.exe\pcasvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\wer.dll
4/2/2012 8:17:43 PM OK svchost.exe\msxml6.dll
4/2/2012 8:17:43 PM OK svchost.exe\WinSCard.dll
4/2/2012 8:17:43 PM OK svchost.exe\wlanutil.dll
4/2/2012 8:17:43 PM OK svchost.exe\l2gpstore.dll
4/2/2012 8:17:43 PM OK svchost.exe\wlgpclnt.dll

#14 SadFlute

SadFlute
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:04:17 AM

Posted 04 April 2012 - 07:53 AM

kapersky virus removal tool part 3


4/2/2012 8:17:43 PM OK C:\Windows\System32\pcasvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\eappcfg.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\l2gpstore.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\sysmain.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wlgpclnt.dll
4/2/2012 8:17:43 PM OK svchost.exe\eappprxy.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\eappcfg.dll
4/2/2012 8:17:43 PM OK svchost.exe\onex.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\eappprxy.dll
4/2/2012 8:17:43 PM OK svchost.exe\wlansec.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\onex.dll
4/2/2012 8:17:43 PM OK svchost.exe\wlanmsm.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wlansec.dll
4/2/2012 8:17:43 PM OK svchost.exe\umb.dll
4/2/2012 8:17:43 PM OK svchost.exe\wlansvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wlanmsm.dll
4/2/2012 8:17:43 PM OK svchost.exe\dhcpcsvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:43 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:43 PM OK svchost.exe\WUDFPlatform.dll
4/2/2012 8:17:43 PM OK svchost.exe\WUDFSvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\wtsapi32.dll
4/2/2012 8:17:43 PM OK svchost.exe\uxsms.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\wlansvc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\WUDFSvc.dll
4/2/2012 8:17:43 PM OK svchost.exe\slc.dll
4/2/2012 8:17:43 PM OK C:\Windows\System32\uxsms.dll
4/2/2012 8:17:43 PM OK svchost.exe\dsrole.dll
4/2/2012 8:17:43 PM OK svchost.exe\atl.dll
4/2/2012 8:17:43 PM OK svchost.exe\nlaapi.dll
4/2/2012 8:17:43 PM OK svchost.exe\hid.dll
4/2/2012 8:17:43 PM OK svchost.exe\ntmarta.dll
4/2/2012 8:17:43 PM OK svchost.exe\avrt.dll
4/2/2012 8:17:44 PM OK svchost.exe\propsys.dll
4/2/2012 8:17:44 PM OK svchost.exe\MMDevAPI.dll
4/2/2012 8:17:44 PM OK svchost.exe\powrprof.dll
4/2/2012 8:17:44 PM OK svchost.exe\audiosrv.dll
4/2/2012 8:17:44 PM OK svchost.exe\version.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\audiosrv.dll
4/2/2012 8:17:44 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:44 PM OK svchost.exe\devrtl.dll
4/2/2012 8:17:44 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:44 PM OK svchost.exe\bcryptprimitives.dll
4/2/2012 8:17:44 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:44 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:44 PM OK svchost.exe\kerberos.dll
4/2/2012 8:17:44 PM OK svchost.exe\bcrypt.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\kerberos.dll
4/2/2012 8:17:44 PM OK svchost.exe\authz.dll
4/2/2012 8:17:44 PM OK svchost.exe\wevtapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\cryptdll.dll
4/2/2012 8:17:44 PM OK svchost.exe\sysntfy.dll
4/2/2012 8:17:44 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:44 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:44 PM OK svchost.exe\apphelp.dll
4/2/2012 8:17:44 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:44 PM OK svchost.exe\winsta.dll
4/2/2012 8:17:44 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:44 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\msasn1.dll
4/2/2012 8:17:44 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:44 PM OK svchost.exe\devobj.dll
4/2/2012 8:17:44 PM OK svchost.exe\crypt32.dll
4/2/2012 8:17:44 PM OK svchost.exe\wintrust.dll
4/2/2012 8:17:44 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:44 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:44 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:44 PM OK svchost.exe\setupapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:44 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:44 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:44 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:44 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:44 PM OK svchost.exe\Wldap32.dll
4/2/2012 8:17:44 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:44 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:44 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:44 PM OK svchost.exe\shell32.dll
4/2/2012 8:17:44 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:44 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:44 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:44 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:44 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:44 PM OK svchost.exe\winlogon.exe
4/2/2012 8:17:44 PM OK svchost.exe\WinMgmtR.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\winlogon.exe
4/2/2012 8:17:44 PM OK svchost.exe\user32.dll
4/2/2012 8:17:44 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:44 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:44 PM OK svchost.exe\winlogon.exe
4/2/2012 8:17:44 PM OK svchost.exe\services.exe
4/2/2012 8:17:44 PM OK C:\Windows\System32\wbem\WinMgmtR.dll
4/2/2012 8:17:44 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:44 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:44 PM OK svchost.exe\tquery.dll
4/2/2012 8:17:44 PM OK svchost.exe\AudioSes.dll
4/2/2012 8:17:44 PM OK svchost.exe\dhcpcore6.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\services.exe
4/2/2012 8:17:44 PM OK svchost.exe\dhcpcore.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\dhcpcore6.dll
4/2/2012 8:17:44 PM OK svchost.exe\nrpsrv.dll
4/2/2012 8:17:44 PM OK svchost.exe\winnsi.dll
4/2/2012 8:17:44 PM OK svchost.exe\IPHLPAPI.DLL
4/2/2012 8:17:44 PM OK svchost.exe\lmhsvc.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\dhcpcore.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\nrpsrv.dll
4/2/2012 8:17:44 PM OK svchost.exe\avrt.dll
4/2/2012 8:17:44 PM OK svchost.exe\propsys.dll
4/2/2012 8:17:44 PM OK svchost.exe\MMDevAPI.dll
4/2/2012 8:17:44 PM OK svchost.exe\powrprof.dll
4/2/2012 8:17:44 PM OK svchost.exe\audiosrv.dll
4/2/2012 8:17:44 PM OK svchost.exe\wevtsvc.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\lmhsvc.dll
4/2/2012 8:17:44 PM OK svchost.exe\version.dll
4/2/2012 8:17:44 PM OK svchost.exe\FirewallAPI.dll
4/2/2012 8:17:44 PM OK svchost.exe\WSHTCPIP.DLL
4/2/2012 8:17:44 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:44 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:44 PM OK svchost.exe\dnsapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:44 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:44 PM OK svchost.exe\wevtapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:44 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:44 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:44 PM OK svchost.exe\winsta.dll
4/2/2012 8:17:44 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:44 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:44 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:44 PM OK svchost.exe\devobj.dll
4/2/2012 8:17:44 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:44 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:44 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:44 PM OK svchost.exe\setupapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:44 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:44 PM OK svchost.exe\shlwapi.dll
4/2/2012 8:17:44 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:44 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:44 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:44 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:44 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:44 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:44 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:44 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:44 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:44 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:44 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\wevtsvc.dll
4/2/2012 8:17:44 PM OK svchost.exe\user32.dll
4/2/2012 8:17:44 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:44 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:44 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:44 PM OK svchost.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:44 PM OK svchost.exe\FWPUCLNT.DLL
4/2/2012 8:17:44 PM OK svchost.exe\version.dll
4/2/2012 8:17:44 PM OK svchost.exe\FirewallAPI.dll
4/2/2012 8:17:44 PM OK svchost.exe\WSHTCPIP.DLL
4/2/2012 8:17:44 PM OK svchost.exe\RpcEpMap.dll
4/2/2012 8:17:44 PM OK svchost.exe\rpcss.dll
4/2/2012 8:17:44 PM OK C:\Windows\System32\RpcEpMap.dll
4/2/2012 8:17:45 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:45 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:45 PM OK svchost.exe\wship6.dll
4/2/2012 8:17:45 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:45 PM OK svchost.exe\secur32.dll
4/2/2012 8:17:45 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:45 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK svchost.exe\mswsock.dll
4/2/2012 8:17:45 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:45 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:45 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:45 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:45 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:45 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:45 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:45 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:45 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:45 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:45 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:45 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:45 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\rpcss.dll
4/2/2012 8:17:45 PM OK svchost.exe\user32.dll
4/2/2012 8:17:45 PM OK svchost.exe\kernel32.dll
4/2/2012 8:17:45 PM OK svchost.exe\ntdll.dll
4/2/2012 8:17:45 PM OK svchost.exe\svchost.exe
4/2/2012 8:17:45 PM OK svchost.exe\wmiutils.dll
4/2/2012 8:17:45 PM OK svchost.exe\wbemsvc.dll
4/2/2012 8:17:45 PM OK svchost.exe\wbemprox.dll
4/2/2012 8:17:45 PM OK svchost.exe\ntdsapi.dll
4/2/2012 8:17:45 PM OK svchost.exe\fastprox.dll
4/2/2012 8:17:45 PM OK svchost.exe\WmiDcPrv.dll
4/2/2012 8:17:45 PM OK svchost.exe\wbemcomn.dll
4/2/2012 8:17:45 PM OK svchost.exe\wtsapi32.dll
4/2/2012 8:17:45 PM OK svchost.exe\ntmarta.dll
4/2/2012 8:17:45 PM OK svchost.exe\rpcss.dll
4/2/2012 8:17:45 PM OK svchost.exe\pcwum.dll
4/2/2012 8:17:45 PM OK svchost.exe\umpo.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\wbem\WmiDcPrv.dll
4/2/2012 8:17:45 PM OK svchost.exe\gpapi.dll
4/2/2012 8:17:45 PM OK svchost.exe\userenv.dll
4/2/2012 8:17:45 PM OK svchost.exe\devrtl.dll
4/2/2012 8:17:45 PM OK svchost.exe\SPInf.dll
4/2/2012 8:17:45 PM OK svchost.exe\umpnpmgr.dll
4/2/2012 8:17:45 PM OK svchost.exe\credssp.dll
4/2/2012 8:17:45 PM OK svchost.exe\rsaenh.dll
4/2/2012 8:17:45 PM OK svchost.exe\cryptsp.dll
4/2/2012 8:17:45 PM OK svchost.exe\sspicli.dll
4/2/2012 8:17:45 PM OK svchost.exe\apphelp.dll
4/2/2012 8:17:45 PM OK svchost.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK svchost.exe\winsta.dll
4/2/2012 8:17:45 PM OK svchost.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK svchost.exe\profapi.dll
4/2/2012 8:17:45 PM OK svchost.exe\msasn1.dll
4/2/2012 8:17:45 PM OK svchost.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK svchost.exe\devobj.dll
4/2/2012 8:17:45 PM OK svchost.exe\crypt32.dll
4/2/2012 8:17:45 PM OK svchost.exe\wintrust.dll
4/2/2012 8:17:45 PM OK svchost.exe\cfgmgr32.dll
4/2/2012 8:17:45 PM OK svchost.exe\imm32.dll
4/2/2012 8:17:45 PM OK svchost.exe\msctf.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\umpo.dll
4/2/2012 8:17:45 PM OK svchost.exe\setupapi.dll
4/2/2012 8:17:45 PM OK svchost.exe\oleaut32.dll
4/2/2012 8:17:45 PM OK svchost.exe\advapi32.dll
4/2/2012 8:17:45 PM OK svchost.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK svchost.exe\ole32.dll
4/2/2012 8:17:45 PM OK svchost.exe\nsi.dll
4/2/2012 8:17:45 PM OK svchost.exe\Wldap32.dll
4/2/2012 8:17:45 PM OK svchost.exe\usp10.dll
4/2/2012 8:17:45 PM OK svchost.exe\lpk.dll
4/2/2012 8:17:45 PM OK svchost.exe\ws2_32.dll
4/2/2012 8:17:45 PM OK svchost.exe\gdi32.dll
4/2/2012 8:17:45 PM OK svchost.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK svchost.exe\clbcatq.dll
4/2/2012 8:17:45 PM OK svchost.exe\sechost.dll
4/2/2012 8:17:45 PM OK svchost.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\umpnpmgr.dll
4/2/2012 8:17:45 PM OK lsm.exe\kernel32.dll
4/2/2012 8:17:45 PM OK lsm.exe\ntdll.dll
4/2/2012 8:17:45 PM OK lsm.exe\lsm.exe
4/2/2012 8:17:45 PM OK lsm.exe\pcwum.dll
4/2/2012 8:17:45 PM OK lsm.exe\credssp.dll
4/2/2012 8:17:45 PM OK lsm.exe\wmsgapi.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\lsm.exe
4/2/2012 8:17:45 PM OK lsm.exe\sysntfy.dll
4/2/2012 8:17:45 PM OK lsm.exe\secur32.dll
4/2/2012 8:17:45 PM OK lsm.exe\sspicli.dll
4/2/2012 8:17:45 PM OK lsm.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK lsm.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK lsm.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK lsm.exe\advapi32.dll
4/2/2012 8:17:45 PM OK lsm.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK lsm.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK lsm.exe\sechost.dll
4/2/2012 8:17:45 PM OK lsm.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\wmsgapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\msprivs.dll
4/2/2012 8:17:45 PM OK lsass.exe\user32.dll
4/2/2012 8:17:45 PM OK lsass.exe\kernel32.dll
4/2/2012 8:17:45 PM OK lsass.exe\ntdll.dll
4/2/2012 8:17:45 PM OK lsass.exe\psapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\lsass.exe
4/2/2012 8:17:45 PM OK C:\Windows\System32\msprivs.dll
4/2/2012 8:17:45 PM OK lsass.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:45 PM OK lsass.exe\keyiso.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\lsass.exe
4/2/2012 8:17:45 PM OK lsass.exe\winnsi.dll
4/2/2012 8:17:45 PM OK lsass.exe\IPHLPAPI.DLL
4/2/2012 8:17:45 PM OK lsass.exe\netutils.dll
4/2/2012 8:17:45 PM OK lsass.exe\wtsapi32.dll
4/2/2012 8:17:45 PM OK lsass.exe\slc.dll
4/2/2012 8:17:45 PM OK lsass.exe\efsutil.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\keyiso.dll
4/2/2012 8:17:45 PM OK lsass.exe\efscore.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\efsutil.dll
4/2/2012 8:17:45 PM OK lsass.exe\efssvc.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\efscore.dll
4/2/2012 8:17:45 PM OK lsass.exe\WSHTCPIP.DLL
4/2/2012 8:17:45 PM OK lsass.exe\gpapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\userenv.dll
4/2/2012 8:17:45 PM OK lsass.exe\scecli.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\efssvc.dll
4/2/2012 8:17:45 PM OK lsass.exe\credssp.dll
4/2/2012 8:17:45 PM OK lsass.exe\efslsaext.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\scecli.dll
4/2/2012 8:17:45 PM OK lsass.exe\bcryptprimitives.dll
4/2/2012 8:17:45 PM OK lsass.exe\LIVESSP.DLL
4/2/2012 8:17:45 PM OK C:\Windows\System32\efslsaext.dll
4/2/2012 8:17:45 PM OK lsass.exe\pku2u.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\LIVESSP.DLL
4/2/2012 8:17:45 PM OK lsass.exe\TSpkg.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\pku2u.dll
4/2/2012 8:17:45 PM OK lsass.exe\rsaenh.dll
4/2/2012 8:17:45 PM OK lsass.exe\wdigest.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\TSpkg.dll
4/2/2012 8:17:45 PM OK lsass.exe\schannel.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\wdigest.dll
4/2/2012 8:17:45 PM OK lsass.exe\logoncli.dll
4/2/2012 8:17:45 PM OK lsass.exe\dnsapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\netlogon.dll
4/2/2012 8:17:45 PM OK lsass.exe\msv1_0.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\schannel.dll
4/2/2012 8:17:45 PM OK lsass.exe\wship6.dll
4/2/2012 8:17:45 PM OK lsass.exe\cryptsp.dll
4/2/2012 8:17:45 PM OK lsass.exe\kerberos.dll
4/2/2012 8:17:45 PM OK lsass.exe\negoexts.dll
4/2/2012 8:17:45 PM OK lsass.exe\netjoin.dll
4/2/2012 8:17:45 PM OK lsass.exe\bcrypt.dll
4/2/2012 8:17:45 PM OK lsass.exe\ncrypt.dll
4/2/2012 8:17:45 PM OK lsass.exe\authz.dll
4/2/2012 8:17:45 PM OK lsass.exe\cngaudit.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\netlogon.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\negoexts.dll
4/2/2012 8:17:45 PM OK lsass.exe\wevtapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\cryptdll.dll
4/2/2012 8:17:45 PM OK lsass.exe\samsrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\cngaudit.dll
4/2/2012 8:17:45 PM OK lsass.exe\lsasrv.dll
4/2/2012 8:17:45 PM OK lsass.exe\secur32.dll
4/2/2012 8:17:45 PM OK lsass.exe\sspisrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\samsrv.dll
4/2/2012 8:17:45 PM OK lsass.exe\sspicli.dll
4/2/2012 8:17:45 PM OK lsass.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK lsass.exe\winsta.dll
4/2/2012 8:17:45 PM OK lsass.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK lsass.exe\profapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\mswsock.dll
4/2/2012 8:17:45 PM OK lsass.exe\msasn1.dll
4/2/2012 8:17:45 PM OK lsass.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK lsass.exe\crypt32.dll
4/2/2012 8:17:45 PM OK lsass.exe\imm32.dll
4/2/2012 8:17:45 PM OK lsass.exe\msctf.dll
4/2/2012 8:17:45 PM OK lsass.exe\advapi32.dll
4/2/2012 8:17:45 PM OK lsass.exe\shlwapi.dll
4/2/2012 8:17:45 PM OK lsass.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK lsass.exe\nsi.dll
4/2/2012 8:17:45 PM OK lsass.exe\usp10.dll
4/2/2012 8:17:45 PM OK lsass.exe\lpk.dll
4/2/2012 8:17:45 PM OK lsass.exe\ws2_32.dll
4/2/2012 8:17:45 PM OK lsass.exe\gdi32.dll
4/2/2012 8:17:45 PM OK lsass.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK lsass.exe\sechost.dll
4/2/2012 8:17:45 PM OK lsass.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\sspisrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\lsasrv.dll
4/2/2012 8:17:45 PM OK services.exe\user32.dll
4/2/2012 8:17:45 PM OK services.exe\kernel32.dll
4/2/2012 8:17:45 PM OK services.exe\ntdll.dll
4/2/2012 8:17:45 PM OK services.exe\services.exe
4/2/2012 8:17:45 PM OK services.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:45 PM OK services.exe\wtsapi32.dll
4/2/2012 8:17:45 PM OK services.exe\WSHTCPIP.DLL
4/2/2012 8:17:45 PM OK services.exe\ubpm.dll
4/2/2012 8:17:45 PM OK services.exe\credssp.dll
4/2/2012 8:17:45 PM OK services.exe\wship6.dll
4/2/2012 8:17:45 PM OK services.exe\authz.dll
4/2/2012 8:17:45 PM OK services.exe\srvcli.dll
4/2/2012 8:17:45 PM OK services.exe\scesrv.dll
4/2/2012 8:17:45 PM OK services.exe\secur32.dll
4/2/2012 8:17:45 PM OK services.exe\scext.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\scesrv.dll
4/2/2012 8:17:45 PM OK services.exe\sspicli.dll
4/2/2012 8:17:45 PM OK services.exe\apphelp.dll
4/2/2012 8:17:45 PM OK services.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK services.exe\winsta.dll
4/2/2012 8:17:45 PM OK services.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK services.exe\profapi.dll
4/2/2012 8:17:45 PM OK services.exe\mswsock.dll
4/2/2012 8:17:45 PM OK services.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK services.exe\imm32.dll
4/2/2012 8:17:45 PM OK services.exe\msctf.dll
4/2/2012 8:17:45 PM OK services.exe\advapi32.dll
4/2/2012 8:17:45 PM OK services.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK services.exe\nsi.dll
4/2/2012 8:17:45 PM OK services.exe\usp10.dll
4/2/2012 8:17:45 PM OK services.exe\lpk.dll
4/2/2012 8:17:45 PM OK services.exe\ws2_32.dll
4/2/2012 8:17:45 PM OK services.exe\gdi32.dll
4/2/2012 8:17:45 PM OK services.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK services.exe\sechost.dll
4/2/2012 8:17:45 PM OK services.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\scext.dll
4/2/2012 8:17:45 PM OK winlogon.exe\user32.dll
4/2/2012 8:17:45 PM OK winlogon.exe\kernel32.dll
4/2/2012 8:17:45 PM OK winlogon.exe\ntdll.dll
4/2/2012 8:17:45 PM OK winlogon.exe\winlogon.exe
4/2/2012 8:17:45 PM OK winlogon.exe\mpr.dll
4/2/2012 8:17:45 PM OK winlogon.exe\UXInit.dll
4/2/2012 8:17:45 PM OK winlogon.exe\wkscli.dll
4/2/2012 8:17:45 PM OK winlogon.exe\netutils.dll
4/2/2012 8:17:45 PM OK winlogon.exe\WindowsCodecs.dll
4/2/2012 8:17:45 PM OK winlogon.exe\slc.dll
4/2/2012 8:17:45 PM OK winlogon.exe\uxtheme.dll
4/2/2012 8:17:45 PM OK winlogon.exe\rsaenh.dll
4/2/2012 8:17:45 PM OK winlogon.exe\cryptsp.dll
4/2/2012 8:17:45 PM OK winlogon.exe\netjoin.dll
4/2/2012 8:17:45 PM OK winlogon.exe\sspicli.dll
4/2/2012 8:17:45 PM OK winlogon.exe\apphelp.dll
4/2/2012 8:17:45 PM OK winlogon.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK winlogon.exe\winsta.dll
4/2/2012 8:17:45 PM OK winlogon.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK winlogon.exe\profapi.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\UXInit.dll
4/2/2012 8:17:45 PM OK winlogon.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK winlogon.exe\imm32.dll
4/2/2012 8:17:45 PM OK winlogon.exe\msctf.dll
4/2/2012 8:17:45 PM OK winlogon.exe\advapi32.dll
4/2/2012 8:17:45 PM OK winlogon.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK winlogon.exe\ole32.dll
4/2/2012 8:17:45 PM OK winlogon.exe\usp10.dll
4/2/2012 8:17:45 PM OK winlogon.exe\lpk.dll
4/2/2012 8:17:45 PM OK winlogon.exe\gdi32.dll
4/2/2012 8:17:45 PM OK winlogon.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK winlogon.exe\sechost.dll
4/2/2012 8:17:45 PM OK winlogon.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK csrss.exe\csrss.exe
4/2/2012 8:17:45 PM OK csrss.exe\user32.dll
4/2/2012 8:17:45 PM OK csrss.exe\kernel32.dll
4/2/2012 8:17:45 PM OK csrss.exe\ntdll.dll
4/2/2012 8:17:45 PM OK csrss.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK csrss.exe\sxs.dll
4/2/2012 8:17:45 PM OK csrss.exe\sxssrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\csrss.exe
4/2/2012 8:17:45 PM OK csrss.exe\winsrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\sxssrv.dll
4/2/2012 8:17:45 PM OK csrss.exe\basesrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\winsrv.dll
4/2/2012 8:17:45 PM OK csrss.exe\csrsrv.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\basesrv.dll
4/2/2012 8:17:45 PM OK csrss.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK csrss.exe\advapi32.dll
4/2/2012 8:17:45 PM OK csrss.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK csrss.exe\nsi.dll
4/2/2012 8:17:45 PM OK csrss.exe\usp10.dll
4/2/2012 8:17:45 PM OK csrss.exe\lpk.dll
4/2/2012 8:17:45 PM OK csrss.exe\ws2_32.dll
4/2/2012 8:17:45 PM OK csrss.exe\gdi32.dll
4/2/2012 8:17:45 PM OK csrss.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK csrss.exe\sechost.dll
4/2/2012 8:17:45 PM OK csrss.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\csrsrv.dll
4/2/2012 8:17:45 PM OK wininit.exe\user32.dll
4/2/2012 8:17:45 PM OK wininit.exe\kernel32.dll
4/2/2012 8:17:45 PM OK wininit.exe\ntdll.dll
4/2/2012 8:17:45 PM OK wininit.exe\wininit.exe
4/2/2012 8:17:45 PM OK wininit.exe\Desktop.ini Object was not changed (iChecker)
4/2/2012 8:17:45 PM OK wininit.exe\WSHTCPIP.DLL
4/2/2012 8:17:45 PM OK wininit.exe\credssp.dll
4/2/2012 8:17:45 PM OK wininit.exe\wship6.dll
4/2/2012 8:17:45 PM OK wininit.exe\secur32.dll
4/2/2012 8:17:45 PM OK wininit.exe\sspicli.dll
4/2/2012 8:17:45 PM OK wininit.exe\apphelp.dll
4/2/2012 8:17:45 PM OK wininit.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK wininit.exe\RpcRtRemote.dll
4/2/2012 8:17:45 PM OK wininit.exe\profapi.dll
4/2/2012 8:17:45 PM OK wininit.exe\mswsock.dll
4/2/2012 8:17:45 PM OK wininit.exe\KernelBase.dll
4/2/2012 8:17:45 PM OK wininit.exe\imm32.dll
4/2/2012 8:17:45 PM OK wininit.exe\msctf.dll
4/2/2012 8:17:45 PM OK wininit.exe\advapi32.dll
4/2/2012 8:17:45 PM OK wininit.exe\msvcrt.dll
4/2/2012 8:17:45 PM OK wininit.exe\nsi.dll
4/2/2012 8:17:45 PM OK wininit.exe\usp10.dll
4/2/2012 8:17:45 PM OK wininit.exe\lpk.dll
4/2/2012 8:17:45 PM OK wininit.exe\ws2_32.dll
4/2/2012 8:17:45 PM OK wininit.exe\gdi32.dll
4/2/2012 8:17:45 PM OK wininit.exe\rpcrt4.dll
4/2/2012 8:17:45 PM OK wininit.exe\sechost.dll
4/2/2012 8:17:45 PM OK wininit.exe\apisetschema.dll
4/2/2012 8:17:45 PM OK C:\Windows\System32\wininit.exe
4/2/2012 8:17:45 PM OK csrss.exe\csrss.exe
4/2/2012 8:17:45 PM OK csrss.exe\user32.dll
4/2/2012 8:17:45 PM OK csrss.exe\kernel32.dll
4/2/2012 8:17:45 PM OK csrss.exe\ntdll.dll
4/2/2012 8:17:45 PM OK csrss.exe\cryptbase.dll
4/2/2012 8:17:45 PM OK csrss.exe\sxs.dll
4/2/2012 8:17:46 PM OK csrss.exe\sxssrv.dll
4/2/2012 8:17:46 PM OK csrss.exe\mswsock.dll
4/2/2012 8:17:46 PM OK csrss.exe\winsrv.dll
4/2/2012 8:17:46 PM OK csrss.exe\basesrv.dll
4/2/2012 8:17:46 PM OK csrss.exe\csrsrv.dll
4/2/2012 8:17:46 PM OK csrss.exe\KernelBase.dll
4/2/2012 8:17:46 PM OK csrss.exe\advapi32.dll
4/2/2012 8:17:46 PM OK csrss.exe\msvcrt.dll
4/2/2012 8:17:46 PM OK csrss.exe\nsi.dll
4/2/2012 8:17:46 PM OK csrss.exe\usp10.dll
4/2/2012 8:17:46 PM OK csrss.exe\lpk.dll
4/2/2012 8:17:46 PM OK csrss.exe\ws2_32.dll
4/2/2012 8:17:46 PM OK csrss.exe\gdi32.dll
4/2/2012 8:17:46 PM OK csrss.exe\rpcrt4.dll
4/2/2012 8:17:46 PM OK csrss.exe\sechost.dll
4/2/2012 8:17:46 PM OK csrss.exe\apisetschema.dll
4/2/2012 8:17:46 PM OK smss.exe\smss.exe
4/2/2012 8:17:46 PM OK smss.exe\ntdll.dll
4/2/2012 8:17:46 PM OK C:\Windows\System32\smss.exe
4/2/2012 8:17:46 PM OK smss.exe\apisetschema.dll
4/2/2012 8:17:46 PM OK pid:4\ntdll.dll
4/2/2012 8:17:46 PM OK pid:4\ntdll.dll
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:46 PM Processing error C:\Windows\Temp Read error
4/2/2012 8:17:51 PM OK C:\Windows\win.ini
4/2/2012 8:17:51 PM OK C:\Windows\system.ini
4/2/2012 8:17:52 PM OK C:\Windows\SysWOW64\explorer.exe
4/2/2012 8:17:52 PM OK C:\Windows\explorer.exe
4/2/2012 8:17:52 PM OK C:\Windows\SysWOW64\userinit.exe
4/2/2012 8:17:52 PM OK C:\Windows\System32\userinit.exe
4/2/2012 8:17:53 PM OK C:\Windows\System32\igfxdev.dll
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\hp\HP Software Update\hpwuschd2.exe
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe/#
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\Hewlett-Packard\Recovery\MUITransfer\MUIStartMenu.exe
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\ACDaemon.exe
4/2/2012 8:17:53 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
4/2/2012 8:17:54 PM OK C:\Program Files (x86)\common files\Adobe\ARM\1.0\AdobeARM.exe
4/2/2012 8:17:54 PM OK C:\Program Files (x86)\QuickTime\QTTask.exe
4/2/2012 8:17:54 PM OK C:\Program Files (x86)\iTunes\iTunesHelper.exe
4/2/2012 8:17:54 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtcmd.exe
4/2/2012 8:17:54 PM OK C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
4/2/2012 8:17:54 PM OK C:\Windows\SysWOW64\grpconv.exe
4/2/2012 8:17:54 PM OK C:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
4/2/2012 8:17:55 PM OK C:\Windows\WindowsMobile\wmdc.exe
4/2/2012 8:17:55 PM OK C:\Windows\System32\igfxtray.exe
4/2/2012 8:17:55 PM OK C:\Windows\System32\hkcmd.exe
4/2/2012 8:17:55 PM OK C:\Windows\System32\igfxpers.exe
4/2/2012 8:17:55 PM OK C:\program files\Zune\ZuneLauncher.exe
4/2/2012 8:17:55 PM OK C:\Windows\System32\rundll32.exe
4/2/2012 8:17:55 PM OK C:\Windows\Temp\mltcr.dll Object was not changed (iChecker)
4/2/2012 8:17:55 PM OK C:\Windows\SysWOW64\Adobe\Shockwave 11\SwHelper_1158612.exe
4/2/2012 8:17:55 PM OK C:\program files\Windows Sidebar\sidebar.exe
4/2/2012 8:17:55 PM OK C:\Windows\System32\mctadmin.exe
4/2/2012 8:17:55 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
4/2/2012 8:17:56 PM OK C:\Users\Owner\AppData\Local\Facebook\Update\FacebookUpdate.exe
4/2/2012 8:17:56 PM OK C:\Users\Owner\AppData\Local\Akamai\netsession_win.exe
4/2/2012 8:17:56 PM OK C:\Windows\System32\ctfmon.exe
4/2/2012 8:17:57 PM OK C:\Windows\System32\aelupsvc.dll
4/2/2012 8:17:57 PM OK C:\Program Files (x86)\common files\Akamai\netsession_win_6c825ce.dll
4/2/2012 8:17:57 PM OK C:\Windows\System32\appidsvc.dll
4/2/2012 8:17:57 PM OK C:\Windows\System32\appinfo.dll
4/2/2012 8:17:57 PM OK C:\Windows\System32\audiosrv.dll
4/2/2012 8:17:57 PM OK C:\Windows\System32\AxInstSv.dll
4/2/2012 8:17:57 PM OK C:\Windows\System32\bdesvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\BFE.DLL
4/2/2012 8:17:58 PM OK C:\Windows\System32\qmgr.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\browser.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\bthserv.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\certprop.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\cryptsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\rpcss.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\defragsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\dhcpcore.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\dnsrslvr.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\dot3svc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\dps.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\eapsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\es.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\fdPHost.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\FDResPub.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\FntCache.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\gpsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\hidserv.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\KMSVC.DLL
4/2/2012 8:17:58 PM OK C:\Windows\System32\ListSvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\provsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\IKEEXT.DLL
4/2/2012 8:17:58 PM OK C:\Windows\System32\IPBusEnum.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\iphlpsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\msdtckrm.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\srvsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\wkssvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\lltdsvc.dll
4/2/2012 8:17:58 PM OK C:\Windows\System32\lmhsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\Mcx2Svc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\mmcss.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\MPSSVC.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\iscsiexe.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\QAGENTRT.DLL
4/2/2012 8:17:59 PM OK C:\Windows\System32\netman.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\netprofm.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\nlasvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\nsisvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\pnrpsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\p2psvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\pcasvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\pla.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\umpnpmgr.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\pnrpauto.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\IPSECSVC.DLL
4/2/2012 8:17:59 PM OK C:\Windows\System32\umpo.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\profsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\qwave.dll
4/2/2012 8:17:59 PM OK C:\Windows\WindowsMobile\rapimgr.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\rasauto.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\rasmans.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\mprdim.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\regsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\RpcEpMap.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\SCardSvr.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\schedsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\sdrsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\seclogon.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\Sens.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\sensrsvc.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\SessEnv.dll
4/2/2012 8:17:59 PM OK C:\Windows\System32\ipnathlp.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\shsvcs.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\sppuinotify.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\ssdpsrv.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\sstpsvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wiaservc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\swprv.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\sysmain.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\TabSvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\tapisrv.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\tbssvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\termsrv.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\themeservice.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\trkwks.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\upnphost.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\uxsms.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\w32time.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wbiosrvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\WindowsMobile\wcescomm.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wcncsvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\WcsPlugInService.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wdi.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\WebClnt.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wecsvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wercplsupport.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wersvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\winhttp.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wbem\WMIsvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\WsmSvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wlansvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wpcsvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wpdbusenum.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wuaueng.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\WUDFSvc.dll
4/2/2012 8:18:00 PM OK C:\Windows\System32\wwansvc.dll
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\1394ohci.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\47542531.sys
4/2/2012 8:18:01 PM OK C:\Program Files (x86)\common files\ArcSoft\Connection Service\Bin\ACService.exe
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\acpi.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\acpipmi.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\adfs.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\adp94xx.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\adpahci.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\drivers\adpu320.sys
4/2/2012 8:18:01 PM OK C:\Windows\System32\svchost.exe
4/2/2012 8:18:01 PM OK C:\Windows\SysWOW64\drivers\afc.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\afd.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\AGP440.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\alg.exe
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\aliide.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\amdide.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\amdk8.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\amdppm.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\amdsata.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\amdsbs.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\amdxata.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\appid.sys
4/2/2012 8:18:02 PM OK C:\Program Files (x86)\common files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\arc.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\arcsas.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\asyncmac.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\atapi.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\athrx.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\bxvbda.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\b57nd60a.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\beep.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\NISx64\1008030.006\BHDrvx64.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\blbdrive.sys
4/2/2012 8:18:02 PM OK C:\Program Files (x86)\Bonjour\mDNSResponder.exe
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\bowser.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\BrFiltLo.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\BrFiltUp.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\BrSerId.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\BrSerWdm.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\BrUsbMdm.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\BrUsbSer.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\motfilt.sys
4/2/2012 8:18:02 PM OK C:\Windows\System32\drivers\bthmodem.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\NISx64\1008030.006\cchpx64.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\cdfs.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\cdrom.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\circlass.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\clfs.sys
4/2/2012 8:18:03 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
4/2/2012 8:18:03 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
4/2/2012 8:18:03 PM OK C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
4/2/2012 8:18:03 PM OK C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\CmBatt.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\cmdide.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\cng.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\compbatt.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\CompositeBus.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\dllhost.exe
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\crcdisk.sys
4/2/2012 8:18:03 PM OK C:\Program Files (x86)\Motorola Media Link\NServiceEntry.exe
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\dfsc.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\discache.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\disk.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\drmkaud.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\dxgkrnl.sys
4/2/2012 8:18:03 PM OK C:\Windows\System32\drivers\evbda.sys
4/2/2012 8:18:03 PM OK C:\Program Files (x86)\common files\Symantec Shared\EENGINE\eeCtrl64.sys/data0000.res
4/2/2012 8:18:03 PM OK C:\Program Files (x86)\common files\Symantec Shared\EENGINE\eeCtrl64.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\lsass.exe
4/2/2012 8:18:04 PM OK C:\Windows\ehome\ehrecvr.exe
4/2/2012 8:18:04 PM OK C:\Windows\ehome\ehsched.exe
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\elxstor.sys
4/2/2012 8:18:04 PM OK C:\Program Files (x86)\common files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\errdev.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\exfat.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\fastfat.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\FXSSVC.exe
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\fdc.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\fileinfo.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\filetrace.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\flpydisk.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\fltMgr.sys
4/2/2012 8:18:04 PM OK C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\fsdepends.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\fvevol.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\GAGP30KX.SYS
4/2/2012 8:18:04 PM OK C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\GEARAspiWDM.sys
4/2/2012 8:18:04 PM OK C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\hcw85cir.sys
4/2/2012 8:18:04 PM OK C:\Windows\System32\drivers\hdaudbus.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\hidbatt.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\hidbth.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\hidir.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\hidusb.sys
4/2/2012 8:18:05 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
4/2/2012 8:18:05 PM OK C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
4/2/2012 8:18:05 PM OK C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\HpSAMD.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\http.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\hwpolicy.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\i8042prt.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\iaStorV.sys
4/2/2012 8:18:05 PM OK C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
4/2/2012 8:18:05 PM OK C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20100128.002\IDSviA64.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\igdkmd64.sys
4/2/2012 8:18:05 PM OK C:\Windows\System32\drivers\iirsp.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\RTKVHD64.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\intelide.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\intelppm.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\ipfltdrv.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\IPMIDrv.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\ipnat.sys
4/2/2012 8:18:06 PM OK C:\program files\iPod\bin\iPodService.exe
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\irenum.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\isapnp.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\msiscsi.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\kbdclass.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\kbdhid.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\ksecdd.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\ksecpkg.sys
4/2/2012 8:18:06 PM OK C:\Windows\System32\drivers\ksthunk.sys
4/2/2012 8:18:07 PM OK C:\Program Files (x86)\common files\LightScribe\LSSrvc.exe
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\lltdio.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\lsi_fc.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\lsi_sas.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\lsi_sas2.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\lsi_scsi.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\luafv.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\megasas.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\MegaSR.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\modem.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\monitor.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\motoandroid.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\motccgp.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\motccgpfl.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\motmodem.sys
4/2/2012 8:18:07 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\motswch.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\Motousbnet.sys
4/2/2012 8:18:07 PM OK C:\Windows\System32\drivers\mouclass.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mouhid.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mountmgr.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mpio.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mpsdrv.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mrxdav.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mrxsmb.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mrxsmb10.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mrxsmb20.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\msahci.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\msdsm.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\msdtc.exe
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\msfs.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mshidkmdf.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\msisadrv.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\msiexec.exe
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mskssrv.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mspclock.sys
4/2/2012 8:18:08 PM OK C:\Windows\System32\drivers\mspqm.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\msrpc.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\mssmbios.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\mstee.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\MTConfig.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\mup.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\nwifi.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ndis.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ndiscap.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ndistapi.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ndisuio.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ndiswan.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ndproxy.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\netbios.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\netbt.sys
4/2/2012 8:18:09 PM OK C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\nfrd960.sys
4/2/2012 8:18:09 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSvcHst.exe
4/2/2012 8:18:09 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\diMaster.dll
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\npfs.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\nsiproxy.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\ntfs.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\null.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\nvraid.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\nvstor.sys
4/2/2012 8:18:09 PM OK C:\Windows\System32\drivers\NV_AGP.SYS
4/2/2012 8:18:10 PM OK C:\Program Files (x86)\common files\microsoft shared\office12\ODSERV.EXE
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\ohci1394.sys
4/2/2012 8:18:10 PM OK C:\Program Files (x86)\common files\microsoft shared\Source Engine\OSE.EXE
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\parport.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\partmgr.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\pci.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\pciide.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\pcmcia.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\pcw.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\PEAuth.sys
4/2/2012 8:18:10 PM OK C:\Windows\SysWOW64\perfhost.exe
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\raspptp.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\processr.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\pacer.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\ql2300.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\ql40xx.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\qwavedrv.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\rasacd.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\agilevpn.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\rasl2tp.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\raspppoe.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\rassstp.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\rdbss.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\rdpbus.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\RDPCDD.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\RDPENCDD.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\RDPREFMP.sys
4/2/2012 8:18:10 PM OK C:\Windows\System32\drivers\rdpwd.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\rdyboost.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\RimUsb_AMD64.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\Locator.exe
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\rspndr.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\Rt64win7.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\sbp2port.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\scfilter.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\secdrv.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\serenum.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\serial.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\sermouse.sys
4/2/2012 8:18:11 PM OK C:\Windows\System32\drivers\sffdisk.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\sffp_mmc.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\sffp_sd.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\sfloppy.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\sisraid2.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\sisraid4.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\smb.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\snmptrap.exe
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\spldr.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\spoolsv.exe
4/2/2012 8:18:12 PM OK C:\Windows\System32\sppsvc.exe
4/2/2012 8:18:12 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtsvc.exe
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\NISx64\1008030.006\srtsp64.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\NISx64\1008030.006\srtspx64.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\srv.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\srv2.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\srvnet.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\stexstor.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\swenum.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\NISx64\1008030.006\SymEFA64.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\SYMEVENT64x86.SYS
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\SymIMV.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\NISx64\1008030.006\symtdi.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\tcpip.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\tcpipreg.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\tdpipe.sys
4/2/2012 8:18:12 PM OK C:\Windows\System32\drivers\tdtcp.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\tdx.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\termdd.sys
4/2/2012 8:18:13 PM OK C:\Program Files (x86)\VERIZONDM\bin\tgsrvc.exe
4/2/2012 8:18:13 PM OK C:\Windows\servicing\TrustedInstaller.exe
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\tssecsrv.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\TsUsbFlt.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\tunnel.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\UAGP35.SYS
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\udfs.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\UI0Detect.exe
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\ULIAGPKX.SYS
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\umbus.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\umpass.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbaapl64.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\USBAUDIO.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbccgp.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbcir.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbehci.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbhub.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbohci.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbprint.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\USBSTOR.SYS
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbuhci.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usbvideo.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\usb8023x.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\vdrvroot.sys
4/2/2012 8:18:13 PM OK C:\Windows\System32\vds.exe
4/2/2012 8:18:13 PM OK C:\Windows\System32\drivers\vgapnp.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\vga.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\vhdmp.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\viaide.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\volmgr.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\volmgrx.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\volsnap.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\vsmraid.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\VSSVC.exe
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\vwifibus.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\vwififlt.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\vwifimp.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\wacompen.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\wanarp.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\Wat\WatAdminSvc.exe
4/2/2012 8:18:14 PM OK C:\Windows\System32\wbengine.exe
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\wd.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\Wdf01000.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\wfplwf.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\wimmount.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\winusb.sys
4/2/2012 8:18:14 PM OK C:\program files\common files\microsoft shared\Windows Live\WLIDSVC.EXE
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\wmiacpi.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\wbem\WmiApSrv.exe
4/2/2012 8:18:14 PM OK C:\program files\Windows Media Player\wmpnetwk.exe
4/2/2012 8:18:14 PM OK C:\program files\Zune\WMZuneComm.exe
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\ws2ifsl.sys
4/2/2012 8:18:14 PM OK C:\Windows\System32\SearchIndexer.exe
4/2/2012 8:18:14 PM OK C:\Windows\System32\drivers\WUDFPf.sys
4/2/2012 8:18:15 PM OK C:\Windows\System32\drivers\WUDFRd.sys
4/2/2012 8:18:15 PM OK C:\program files\Zune\ZuneNss.exe
4/2/2012 8:18:15 PM OK C:\program files\Zune\ZuneWlanCfgSvc.exe
4/2/2012 8:18:15 PM OK C:\Windows\System32\autochk.exe
4/2/2012 8:18:15 PM OK C:\Windows\System32\scecli.dll
4/2/2012 8:18:15 PM OK C:\Windows\SysWOW64\unregmp2.exe
4/2/2012 8:18:15 PM OK C:\Windows\SysWOW64\ie4uinit.exe
4/2/2012 8:18:16 PM OK C:\Windows\SysWOW64\rundll32.exe
4/2/2012 8:18:16 PM OK C:\Windows\SysWOW64\iedkcs32.dll
4/2/2012 8:18:16 PM OK C:\Windows\SysWOW64\regsvr32.exe
4/2/2012 8:18:16 PM OK C:\Windows\SysWOW64\themeui.dll
4/2/2012 8:18:16 PM OK C:\Program Files (x86)\Windows Mail\WinMail.exe
4/2/2012 8:18:16 PM OK C:\Windows\SysWOW64\shell32.dll
4/2/2012 8:18:16 PM OK C:\Windows\SysWOW64\mscories.dll
4/2/2012 8:18:16 PM OK C:\Windows\System32\unregmp2.exe
4/2/2012 8:18:16 PM OK C:\Windows\System32\ie4uinit.exe
4/2/2012 8:18:16 PM OK C:\Windows\System32\iedkcs32.dll
4/2/2012 8:18:17 PM OK C:\Windows\System32\regsvr32.exe
4/2/2012 8:18:17 PM OK C:\Windows\System32\themeui.dll
4/2/2012 8:18:17 PM OK C:\program files\Windows Mail\WinMail.exe
4/2/2012 8:18:18 PM OK C:\Windows\System32\shell32.dll
4/2/2012 8:18:18 PM OK C:\Windows\System32\mscories.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msrle32.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msvidc32.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\imaadp32.acm
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msg711.acm
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msgsm32.acm
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msadp32.acm
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\midimap.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msacm32.drv
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\msyuv.dll
4/2/2012 8:18:18 PM OK C:\Windows\System32\msyuv.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\iyuv_32.dll
4/2/2012 8:18:18 PM OK C:\Windows\System32\iyuv_32.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\tsbyuv.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\l3codeca.acm
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\iccvid.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\l3codecp.acm
4/2/2012 8:18:18 PM Packed: PE_Patch.PECompact C:\Windows\SysWOW64\DivX.dll
4/2/2012 8:18:18 PM Packed: PecBundle C:\Windows\SysWOW64\DivX.dll/PE_Patch.PECompact
4/2/2012 8:18:18 PM Packed: PECompact C:\Windows\SysWOW64\DivX.dll/PE_Patch.PECompact/PecBundle
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\DivX.dll/PE_Patch.PECompact/PecBundle/PECompact
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\DivX.dll/PE_Patch.PECompact/PecBundle
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\DivX.dll/PE_Patch.PECompact
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\DivX.dll
4/2/2012 8:18:18 PM OK C:\Windows\SysWOW64\wdmaud.drv
4/2/2012 8:18:19 PM OK C:\Windows\System32\wdmaud.drv
4/2/2012 8:18:19 PM OK C:\Windows\SysWOW64\vorbis.acm
4/2/2012 8:18:19 PM OK C:\Windows\System32\msrle32.dll
4/2/2012 8:18:19 PM OK C:\Windows\System32\msvidc32.dll
4/2/2012 8:18:19 PM OK C:\Windows\System32\imaadp32.acm
4/2/2012 8:18:19 PM OK C:\Windows\System32\msg711.acm
4/2/2012 8:18:19 PM OK C:\Windows\System32\msgsm32.acm
4/2/2012 8:18:19 PM OK C:\Windows\System32\msadp32.acm
4/2/2012 8:18:19 PM OK C:\Windows\System32\midimap.dll
4/2/2012 8:18:20 PM OK C:\Windows\System32\msacm32.drv
4/2/2012 8:18:20 PM OK C:\Windows\System32\tsbyuv.dll
4/2/2012 8:18:20 PM OK C:\Windows\System32\l3codeca.acm
4/2/2012 8:18:20 PM OK C:\Windows\System32\vfwwdm32.dll
4/2/2012 8:18:21 PM OK C:\Windows\System32\ssblinkx.scr
4/2/2012 8:18:21 PM OK C:\Windows\System32\shdocvw.dll
4/2/2012 8:18:21 PM OK C:\Windows\System32\mf.dll
4/2/2012 8:18:21 PM OK C:\Program Files (x86)\TagRename\TRshell.dll
4/2/2012 8:18:21 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoAcquireWizard.exe
4/2/2012 8:18:22 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
4/2/2012 8:18:22 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShimx64.dll
4/2/2012 8:18:22 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
4/2/2012 8:18:22 PM OK C:\Program Files (x86)\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll
4/2/2012 8:18:22 PM OK C:\program files\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll
4/2/2012 8:18:22 PM OK C:\Program Files (x86)\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll
4/2/2012 8:18:22 PM OK C:\program files\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll
4/2/2012 8:18:22 PM OK C:\Windows\SysWOW64\webcheck.dll
4/2/2012 8:18:22 PM OK C:\Windows\System32\webcheck.dll
4/2/2012 8:18:23 PM OK C:\Program Files (x86)\Microsoft Office\Office12\OLKFSTUB.DLL
4/2/2012 8:18:23 PM OK C:\Program Files (x86)\Microsoft Office\Office12\MLSHEXT.DLL
4/2/2012 8:18:23 PM OK C:\Program Files (x86)\Microsoft Office\Office12\MSOHEVI.DLL
4/2/2012 8:18:23 PM OK C:\program files\Microsoft Office\Office12\MSOHEVI.DLL
4/2/2012 8:18:23 PM OK C:\Program Files (x86)\Hewlett-Packard\Recovery\Protect.dll
4/2/2012 8:18:23 PM OK C:\program files\WinRAR\RarExt32.dll
4/2/2012 8:18:23 PM OK C:\program files\WinRAR\RarExt.dll
4/2/2012 8:18:23 PM OK C:\program files\iTunes\iTunesMiniPlayer.dll
4/2/2012 8:18:24 PM OK C:\program files\common files\microsoft shared\office12\msoshext.dll
4/2/2012 8:18:24 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CoIEPlg.dll
4/2/2012 8:18:24 PM OK C:\Program Files (x86)\PhotoposComTbr\PhotoposComTbrLib.dll/#
4/2/2012 8:18:24 PM OK C:\Program Files (x86)\PhotoposComTbr\PhotoposComTbrLib.dll
4/2/2012 8:18:24 PM OK C:\Program Files (x86)\common files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
4/2/2012 8:18:24 PM OK C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
4/2/2012 8:18:25 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IPSBHO.dll
4/2/2012 8:18:25 PM OK C:\Program Files (x86)\Java\jre6\bin\ssv.dll
4/2/2012 8:18:25 PM OK C:\Program Files (x86)\common files\microsoft shared\Windows Live\WindowsLiveLogin.dll
4/2/2012 8:18:25 PM OK C:\program files\common files\microsoft shared\Windows Live\WindowsLiveLogin.dll
4/2/2012 8:18:25 PM OK C:\Program Files (x86)\common files\Homepage Protection\HomepageProtection.dll
4/2/2012 8:18:25 PM OK C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
4/2/2012 8:18:25 PM OK C:\Program Files (x86)\PricePeep\pricepeep.dll
4/2/2012 8:18:26 PM OK C:\Program Files (x86)\Yontoo Layers Runtime\YontooIEClient.dll
4/2/2012 8:18:26 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
4/2/2012 8:18:26 PM OK C:\program files\CCleaner\CCleaner64.exe
4/2/2012 8:18:26 PM OK C:\Windows\WindowsMobile\ceappmgr.exe
4/2/2012 8:18:26 PM OK C:\Program Files (x86)\Google\Chrome\Application\chrome.exe/#
4/2/2012 8:18:26 PM OK C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
4/2/2012 8:18:26 PM OK C:\Windows\System32\cmcfg32.dll
4/2/2012 8:18:26 PM OK C:\program files\DVD Maker\DVDMaker.exe
4/2/2012 8:18:26 PM OK C:\Program Files (x86)\firefox.exe
4/2/2012 8:18:27 PM OK C:\Program Files (x86)\Image-Line\FL Studio 10\FL.exe
4/2/2012 8:18:27 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe/#
4/2/2012 8:18:27 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe/#
4/2/2012 8:18:27 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe/#
4/2/2012 8:18:27 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe/#
4/2/2012 8:18:27 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe/#
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\FLV Player\FLVPlayer.exe
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\HPTouchSmartMusic.exe
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\HPTouchSmartPhoto.exe
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\HPTouchSmartVideo.exe
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\Internet Explorer\iediagcmd.exe
4/2/2012 8:18:28 PM OK C:\Program Files (x86)\Internet Explorer\iexplore.exe
4/2/2012 8:18:29 PM OK C:\Program Files (x86)\iTunes\iTunes.exe
4/2/2012 8:18:29 PM OK C:\Program Files (x86)\Java\jre6\bin\javaws.exe
4/2/2012 8:18:29 PM OK C:\program files\Windows Journal\Journal.exe
4/2/2012 8:18:29 PM OK C:\Program Files (x86)\Cyberlink\LabelPrint\LabelPrint.exe
4/2/2012 8:18:29 PM OK C:\Program Files (x86)\Windows Live\Installer\LangSelector.exe
4/2/2012 8:18:29 PM OK C:\Program Files (x86)\common files\LightScribe\LightScribeControlPanel.exe
4/2/2012 8:18:29 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\MCUI32.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
4/2/2012 8:18:30 PM OK C:\program files\common files\microsoft shared\ink\mip.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Windows Media Player\wmplayer.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\common files\microsoft shared\office12\MSOXMLED.EXE
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Microsoft Works\MSWorks.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\Navw32.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\navwnt.exe
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Microsoft Office\Office12\OIS.EXE
4/2/2012 8:18:30 PM OK C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
4/2/2012 8:18:31 PM OK C:\Windows\System32\mspaint.exe
4/2/2012 8:18:31 PM OK C:\program files\PC-Doctor for Windows\pcdr5cuiw32.exe
4/2/2012 8:18:31 PM OK C:\Program Files (x86)\ArcSoft\PhotoImpression 5\photoimpression.exe
4/2/2012 8:18:31 PM OK C:\Program Files (x86)\QuickTime\PictureViewer.exe
4/2/2012 8:18:32 PM OK C:\Program Files (x86)\Cyberlink\Power2Go\Power2Go.exe
4/2/2012 8:18:32 PM OK C:\Program Files (x86)\Cyberlink\Power2Go\Power2GoExpress.exe
4/2/2012 8:18:32 PM OK C:\Program Files (x86)\Cyberlink\PowerDirector\PDR.exe
4/2/2012 8:18:32 PM OK C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
4/2/2012 8:18:32 PM OK C:\Program Files (x86)\Cyberlink\CyberLink DVD Suite Deluxe\PowerStarter.exe
4/2/2012 8:18:32 PM OK C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
4/2/2012 8:18:33 PM OK C:\Program Files (x86)\Safari\Safari.exe
4/2/2012 8:18:33 PM OK C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe/#
4/2/2012 8:18:33 PM OK C:\Program Files (x86)\PictureMover\Bin\PictureMover.exe
4/2/2012 8:18:33 PM OK C:\Windows\System32\SnippingTool.exe
4/2/2012 8:18:33 PM OK C:\program files\common files\microsoft shared\ink\TabTip.exe
4/2/2012 8:18:37 PM OK C:\Program Files (x86)\TextPad 5\TextPad.exe
4/2/2012 8:18:37 PM OK C:\Program Files (x86)\ArcSoft\VideoImpression 2\vi20.exe
4/2/2012 8:18:38 PM OK C:\program files\Windows Mail\wab.exe
4/2/2012 8:18:38 PM OK C:\program files\Windows Mail\wabmig.exe
4/2/2012 8:18:38 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\WindowsLivePhotoViewer.exe
4/2/2012 8:18:39 PM OK C:\program files\WinRAR\WinRAR.exe
4/2/2012 8:18:39 PM OK C:\Program Files (x86)\Microsoft Works\wksab.exe
4/2/2012 8:18:39 PM OK C:\Program Files (x86)\Microsoft Works\WksCal.exe
4/2/2012 8:18:40 PM OK C:\Program Files (x86)\Microsoft Works\wksdb.exe
4/2/2012 8:18:41 PM OK C:\Program Files (x86)\Microsoft Works\WksSb.exe
4/2/2012 8:18:41 PM OK C:\Program Files (x86)\Microsoft Works\wksss.exe
4/2/2012 8:18:42 PM OK C:\Program Files (x86)\Microsoft Works\WksWP.exe
4/2/2012 8:18:42 PM OK C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
4/2/2012 8:18:43 PM OK C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe
4/2/2012 8:18:43 PM OK C:\Program Files (x86)\Windows Live\Installer\wlstartup.exe
4/2/2012 8:18:43 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\WLXAlbumDownloadWizard.exe
4/2/2012 8:18:45 PM OK C:\program files\Windows NT\Accessories\wordpad.exe
4/2/2012 8:18:46 PM OK C:\program files\Zune\Zune.exe
4/2/2012 8:18:46 PM OK C:\Windows\SysWOW64\unicows.dll
4/2/2012 8:18:47 PM OK C:\Windows\Downloaded Program Files\PhotoUploader55.ocx
4/2/2012 8:18:48 PM OK C:\Windows\SysWOW64\atl.dll
4/2/2012 8:18:48 PM OK C:\Windows\SysWOW64\Adobe\Director\SwDir.dll
4/2/2012 8:18:48 PM OK C:\Program Files (x86)\Java\jre6\bin\jp2iexp.dll
4/2/2012 8:18:49 PM OK C:\Program Files (x86)\Java\jre6\bin\npjpi160_26.dll
4/2/2012 8:18:49 PM OK C:\Windows\System32\prnfldr.dll
4/2/2012 8:18:52 PM OK C:\Windows\SysWOW64\ieframe.dll
4/2/2012 8:18:54 PM OK C:\Windows\System32\ieframe.dll
4/2/2012 8:18:55 PM OK C:\Windows\System32\mscoree.dll
4/2/2012 8:18:56 PM OK C:\Program Files (x86)\common files\microsoft shared\office12\msoxmlmf.dll
4/2/2012 8:18:56 PM OK C:\program files\common files\microsoft shared\office12\msoxmlmf.dll
4/2/2012 8:18:57 PM OK C:\Windows\SysWOW64\mshtml.dll
4/2/2012 8:18:58 PM OK C:\Windows\System32\mshtml.dll
4/2/2012 8:18:58 PM OK C:\Windows\SysWOW64\urlmon.dll
4/2/2012 8:18:58 PM OK C:\Windows\System32\urlmon.dll
4/2/2012 8:18:58 PM OK C:\Windows\SysWOW64\MSVidCtl.dll
4/2/2012 8:18:59 PM OK C:\Windows\System32\MSVidCtl.dll
4/2/2012 8:18:59 PM OK C:\Windows\System32\itss.dll
4/2/2012 8:18:59 PM OK C:\Windows\System32\inetcomm.dll
4/2/2012 8:19:00 PM OK C:\Program Files (x86)\common files\microsoft shared\Help\hxds.dll
4/2/2012 8:19:00 PM OK C:\Program Files (x86)\common files\microsoft shared\Information Retrieval\msitss.dll
4/2/2012 8:19:01 PM OK C:\Program Files (x86)\common files\Skype\Skype4COM.dll
4/2/2012 8:19:02 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
4/2/2012 8:19:02 PM OK C:\Windows\System32\EhStorShell.dll
4/2/2012 8:19:03 PM OK C:\Windows\System32\ntshrui.dll
4/2/2012 8:19:03 PM OK C:\Windows\SysWOW64\SystemPropertiesPerformance.exe
4/2/2012 8:19:03 PM OK C:\Windows\System32\SystemPropertiesPerformance.exe
4/2/2012 8:19:04 PM OK C:\Windows\System32\cmd.exe
4/2/2012 8:19:04 PM OK C:\Windows\SysWOW64\wlgpclnt.dll
4/2/2012 8:19:04 PM OK C:\Windows\SysWOW64\fdeploy.dll
4/2/2012 8:19:04 PM OK C:\Windows\SysWOW64\dskquota.dll
4/2/2012 8:19:04 PM OK C:\Windows\SysWOW64\gptext.dll
4/2/2012 8:19:04 PM OK C:\Windows\SysWOW64\srchadmin.dll
4/2/2012 8:19:05 PM OK C:\Windows\SysWOW64\scecli.dll
4/2/2012 8:19:05 PM OK C:\Windows\SysWOW64\gpprnext.dll
4/2/2012 8:19:05 PM OK C:\Windows\SysWOW64\dot3gpclnt.dll
4/2/2012 8:19:05 PM OK C:\Windows\System32\gptext.dll
4/2/2012 8:19:06 PM OK C:\Windows\SysWOW64\polstore.dll
4/2/2012 8:19:06 PM OK C:\Windows\System32\wlgpclnt.dll
4/2/2012 8:19:06 PM OK C:\Windows\System32\fdeploy.dll
4/2/2012 8:19:06 PM OK C:\Windows\System32\dskquota.dll
4/2/2012 8:19:06 PM OK C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll
4/2/2012 8:19:07 PM OK C:\Windows\System32\srchadmin.dll
4/2/2012 8:19:07 PM OK C:\Windows\System32\gpprnext.dll
4/2/2012 8:19:07 PM OK C:\Windows\System32\dot3gpclnt.dll
4/2/2012 8:19:07 PM OK C:\Windows\System32\polstore.dll
4/2/2012 8:19:08 PM OK C:\Windows\System32\auditcse.dll
4/2/2012 8:19:08 PM OK C:\Windows\System32\iprtrmgr.dll
4/2/2012 8:19:08 PM OK C:\Windows\System32\bitsigd.dll
4/2/2012 8:19:09 PM OK C:\Windows\System32\scext.dll
4/2/2012 8:19:09 PM OK C:\Windows\System32\lsasrv.dll
4/2/2012 8:19:09 PM OK C:\Windows\System32\efslsaext.dll
4/2/2012 8:19:09 PM OK C:\Windows\System32\credssp.dll
4/2/2012 8:19:09 PM OK C:\Windows\System32\KBDUS.DLL
4/2/2012 8:19:09 PM OK C:\Windows\System32\csrss.exe
4/2/2012 8:19:09 PM OK C:\Windows\System32\basesrv.dll
4/2/2012 8:19:09 PM OK C:\Windows\System32\winsrv.dll
4/2/2012 8:19:10 PM Detected: Backdoor.Win64.ZAccess.ai C:\Windows\System32\consrv.dll
4/2/2012 8:19:48 PM Backed up C:\Windows\System32\consrv.dll
4/2/2012 8:19:48 PM Will be deleted on system restart: Backdoor.Win64.ZAccess.ai C:\Windows\System32\consrv.dll
4/2/2012 8:19:48 PM OK C:\Windows\System32\sxssrv.dll
4/2/2012 8:19:48 PM OK C:\Windows\System32\syncui.dll
4/2/2012 8:19:49 PM OK C:\Program Files (x86)\MagicISO\misosh64.dll
4/2/2012 8:19:49 PM OK C:\Program Files (x86)\Norton Internet Security\Engine64\16.8.3.6\NavShExt.dll
4/2/2012 8:19:49 PM OK C:\Program Files (x86)\TagRename\TRshell64.dll
4/2/2012 8:19:50 PM OK C:\Program Files (x86)\TextPad 5\system\ShellExt64.dll
4/2/2012 8:19:50 PM OK C:\Windows\System32\cryptext.dll
4/2/2012 8:19:50 PM OK C:\Windows\System32\rshx32.dll
4/2/2012 8:19:50 PM OK C:\Windows\System32\docprop.dll
4/2/2012 8:19:50 PM OK C:\Windows\System32\twext.dll
4/2/2012 8:19:51 PM OK C:\Windows\System32\mydocs.dll
4/2/2012 8:19:51 PM OK C:\Windows\System32\DfsShlEx.dll
4/2/2012 8:19:51 PM OK C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
4/2/2012 8:19:52 PM OK C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
4/2/2012 8:19:52 PM OK C:\Program Files (x86)\ArcSoft\PhotoImpression 5\Share\PIHook.dll
4/2/2012 8:19:52 PM OK C:\program files\Windows Sidebar\sbdrop.dll
4/2/2012 8:19:53 PM OK C:\Windows\System32\igfxpph.dll
4/2/2012 8:19:53 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamext.dll
4/2/2012 8:19:54 PM OK C:\Windows\System32\zipfldr.dll
4/2/2012 8:19:54 PM OK C:\Program Files (x86)\common files\Adobe\Acrobat\ActiveX\pdfshell.dll
4/2/2012 8:19:55 PM OK C:\Windows\System32\diskcopy.dll
4/2/2012 8:19:55 PM OK C:\Windows\System32\wpdshext.dll
4/2/2012 8:19:57 PM OK C:\Windows\SysWOW64\dskquoui.dll
4/2/2012 8:19:57 PM OK C:\Windows\System32\dskquoui.dll
4/2/2012 8:19:57 PM OK C:\Windows\SysWOW64\mshta.exe
4/2/2012 8:19:58 PM OK C:\Windows\regedit.exe
4/2/2012 8:20:00 PM Packed: PE_Patch.PECompact C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe
4/2/2012 8:20:00 PM Packed: PecBundle C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe/PE_Patch.PECompact
4/2/2012 8:20:00 PM Packed: PECompact C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe/PE_Patch.PECompact/PecBundle
4/2/2012 8:20:00 PM OK C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe/PE_Patch.PECompact/PecBundle/PECompact
4/2/2012 8:20:00 PM OK C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe/PE_Patch.PECompact/PecBundle
4/2/2012 8:20:00 PM OK C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe/PE_Patch.PECompact
4/2/2012 8:20:00 PM OK C:\Program Files (x86)\DivX\DivX Plus Player\DivX Plus Player.exe
4/2/2012 8:20:00 PM OK C:\Program Files (x86)\Microsoft Office\Office12\Moc.exe
4/2/2012 8:20:01 PM OK C:\program files\Windows Photo Viewer\PhotoViewer.dll
4/2/2012 8:20:02 PM OK C:\Windows\System32\notepad.exe
4/2/2012 8:20:03 PM OK C:\Windows\System32\url.dll
4/2/2012 8:20:03 PM OK C:\Desktop\Mozilla Firefox\firefox.exe
4/2/2012 8:20:03 PM Archive: E4J C:\Program Files (x86)\Vuze\Azureus.exe
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/exe4jlib.jar
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/i4jdel.exe
4/2/2012 8:20:03 PM Archive: ZIP C:\Program Files (x86)\Vuze\Azureus.exe/#
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/META-INF/MANIFEST.MF
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/Controller$1.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/Controller$ConnectionException.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/Controller$StartupListener.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/Controller$StartupThread$1.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/Controller$StartupThread.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/Controller.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/BaseConnectionException.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/ControllerInterface.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/Exe4JController.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/LauncherEngine.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/WinLauncher$1.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/WinLauncher$2.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/WinLauncher.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/ArgumentStack.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/DisplayTextArea.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/FileUtil$1.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/FileUtil$CopyProgressListener.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/FileUtil$LoadingDescriptor.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/FileUtil.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/InternalErrorFrame$1.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/InternalErrorFrame.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/LazyFileOutputStream.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/NullOutputStream.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/ResourceHelper.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/WinDel.class
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#/com/exe4j/runtime/util/error_32.png
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe/#
4/2/2012 8:20:03 PM OK C:\Program Files (x86)\Vuze\Azureus.exe
4/2/2012 8:20:04 PM OK C:\Windows\System32\clbcatq.dll
4/2/2012 8:20:04 PM OK C:\Windows\SysWOW64\clbcatq.dll
4/2/2012 8:20:05 PM OK C:\Windows\System32\ole32.dll
4/2/2012 8:20:05 PM OK C:\Windows\SysWOW64\ole32.dll
4/2/2012 8:20:05 PM OK C:\Windows\System32\advapi32.dll
4/2/2012 8:20:06 PM OK C:\Windows\SysWOW64\advapi32.dll
4/2/2012 8:20:06 PM OK C:\Windows\System32\comdlg32.dll
4/2/2012 8:20:06 PM OK C:\Windows\SysWOW64\comdlg32.dll
4/2/2012 8:20:07 PM OK C:\Windows\System32\gdi32.dll
4/2/2012 8:20:07 PM OK C:\Windows\SysWOW64\gdi32.dll
4/2/2012 8:20:07 PM OK C:\Windows\System32\iertutil.dll
4/2/2012 8:20:08 PM OK C:\Windows\SysWOW64\iertutil.dll
4/2/2012 8:20:08 PM OK C:\Windows\System32\imagehlp.dll
4/2/2012 8:20:08 PM OK C:\Windows\SysWOW64\imagehlp.dll
4/2/2012 8:20:09 PM OK C:\Windows\System32\imm32.dll
4/2/2012 8:20:09 PM OK C:\Windows\SysWOW64\imm32.dll
4/2/2012 8:20:09 PM OK C:\Windows\System32\kernel32.dll
4/2/2012 8:20:10 PM OK C:\Windows\SysWOW64\kernel32.dll
4/2/2012 8:20:10 PM OK C:\Windows\System32\lpk.dll
4/2/2012 8:20:11 PM OK C:\Windows\SysWOW64\lpk.dll
4/2/2012 8:20:11 PM OK C:\Windows\System32\msctf.dll
4/2/2012 8:20:11 PM OK C:\Windows\SysWOW64\msctf.dll
4/2/2012 8:20:11 PM OK C:\Windows\System32\msvcrt.dll
4/2/2012 8:20:12 PM OK C:\Windows\SysWOW64\msvcrt.dll
4/2/2012 8:20:12 PM OK C:\Windows\System32\normaliz.dll
4/2/2012 8:20:12 PM OK C:\Windows\SysWOW64\normaliz.dll
4/2/2012 8:20:12 PM OK C:\Windows\System32\nsi.dll
4/2/2012 8:20:12 PM OK C:\Windows\SysWOW64\nsi.dll
4/2/2012 8:20:12 PM OK C:\Windows\System32\oleaut32.dll
4/2/2012 8:20:12 PM OK C:\Windows\SysWOW64\oleaut32.dll
4/2/2012 8:20:12 PM OK C:\Windows\System32\psapi.dll
4/2/2012 8:20:12 PM OK C:\Windows\SysWOW64\psapi.dll
4/2/2012 8:20:13 PM OK C:\Windows\System32\rpcrt4.dll
4/2/2012 8:20:13 PM OK C:\Windows\SysWOW64\rpcrt4.dll
4/2/2012 8:20:13 PM OK C:\Windows\System32\sechost.dll
4/2/2012 8:20:13 PM OK C:\Windows\SysWOW64\sechost.dll
4/2/2012 8:20:13 PM OK C:\Windows\System32\setupapi.dll
4/2/2012 8:20:13 PM OK C:\Windows\SysWOW64\setupapi.dll
4/2/2012 8:20:13 PM OK C:\Windows\System32\shlwapi.dll
4/2/2012 8:20:13 PM OK C:\Windows\SysWOW64\shlwapi.dll
4/2/2012 8:20:14 PM OK C:\Windows\System32\user32.dll
4/2/2012 8:20:14 PM OK C:\Windows\SysWOW64\user32.dll
4/2/2012 8:20:14 PM OK C:\Windows\System32\usp10.dll
4/2/2012 8:20:14 PM OK C:\Windows\SysWOW64\usp10.dll
4/2/2012 8:20:14 PM OK C:\Windows\System32\wininet.dll
4/2/2012 8:20:14 PM OK C:\Windows\SysWOW64\wininet.dll
4/2/2012 8:20:14 PM OK C:\Windows\System32\Wldap32.dll
4/2/2012 8:20:14 PM OK C:\Windows\SysWOW64\Wldap32.dll
4/2/2012 8:20:14 PM OK C:\Windows\System32\ws2_32.dll
4/2/2012 8:20:14 PM OK C:\Windows\SysWOW64\ws2_32.dll
4/2/2012 8:20:14 PM OK C:\Windows\System32\difxapi.dll
4/2/2012 8:20:14 PM OK C:\Windows\SysWOW64\difxapi.dll
4/2/2012 8:20:14 PM OK C:\Windows\WindowsMobile\INetRepl.dll
4/2/2012 8:20:14 PM OK C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL
4/2/2012 8:20:22 PM OK C:\Program Files (x86)\Skype\Phone\Skype.exe
4/2/2012 8:20:23 PM OK C:\Windows\System32\pcalua.exe
4/2/2012 8:20:24 PM OK C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe/data0000.res
4/2/2012 8:20:24 PM OK C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe
4/2/2012 8:20:24 PM OK C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperUpdate.exe
4/2/2012 8:20:24 PM OK C:\Program Files (x86)\Windows Live\SOXE\wlsoxe.dll
4/2/2012 8:20:25 PM OK C:\Windows\System32\mscms.dll
4/2/2012 8:20:27 PM OK C:\Windows\System32\sdclt.exe
4/2/2012 8:20:27 PM OK C:\Windows\System32\sdengin2.dll
4/2/2012 8:20:27 PM OK C:\Windows\System32\wermgr.exe
4/2/2012 8:20:27 PM OK C:\Windows\System32\schtasks.exe
4/2/2012 8:20:28 PM OK C:\program files\Windows Media Player\wmpnscfg.exe
4/2/2012 8:20:28 PM OK C:\Windows\System32\sc.exe
4/2/2012 8:20:28 PM OK C:\Windows\System32\MsCtfMonitor.dll
4/2/2012 8:20:28 PM OK C:\Windows\System32\ndfapi.dll
4/2/2012 8:20:28 PM OK C:\Windows\System32\wdc.dll
4/2/2012 8:20:28 PM OK C:\Windows\System32\srrstr.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\AuxiliaryDisplayServices.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\wpcmig.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\wpcumi.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\raserver.exe
4/2/2012 8:20:29 PM OK C:\Windows\System32\regidle.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\rasmbmgr.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\RacEngn.dll
4/2/2012 8:20:29 PM OK C:\Windows\System32\powercfg.exe
4/2/2012 8:20:29 PM OK C:\Windows\System32\energy.dll

kaspersky virus removal tool part 4


4/2/2012 8:20:29 PM OK C:\Windows\System32\perftrack.dll
4/2/2012 8:20:30 PM OK C:\Windows\System32\gatherNetworkInfo.vbs/JIM
4/2/2012 8:20:30 PM OK C:\Windows\System32\gatherNetworkInfo.vbs/JIM
4/2/2012 8:20:30 PM OK C:\Windows\System32\gatherNetworkInfo.vbs/JIM
4/2/2012 8:20:30 PM OK C:\Windows\System32\gatherNetworkInfo.vbs/JIM
4/2/2012 8:20:30 PM OK C:\Windows\System32\gatherNetworkInfo.vbs
4/2/2012 8:20:30 PM OK C:\Windows\System32\PlaySndSrv.dll
4/2/2012 8:20:30 PM OK C:\Windows\System32\lpremove.exe
4/2/2012 8:20:30 PM OK C:\Windows\System32\HotStartUserAgent.dll
4/2/2012 8:20:30 PM OK C:\Windows\System32\memdiag.dll
4/2/2012 8:20:30 PM OK C:\Windows\ehome\ehprivjob.exe
4/2/2012 8:20:30 PM OK C:\Windows\ehome\ehrec.exe
4/2/2012 8:20:30 PM OK C:\Windows\ehome\mcupdate.exe
4/2/2012 8:20:30 PM OK C:\Windows\ehome\ehtrace.dll
4/2/2012 8:20:30 PM OK C:\Windows\System32\WinSATAPI.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\LocationNotifications.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\DFDWiz.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\dfdts.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\sdiagschd.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\Defrag.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\usbceip.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\kernelceip.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\wsqmcons.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\dimsjob.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\bthudtask.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\acproxy.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\aepdu.dll
4/2/2012 8:20:31 PM OK C:\Windows\System32\aitagent.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\appidcertstorecheck.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\appidpolicyconverter.exe
4/2/2012 8:20:31 PM OK C:\Windows\System32\msdrm.dll
4/2/2012 8:20:31 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
4/2/2012 8:20:32 PM OK C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater\HPSFUpdater.exe
4/2/2012 8:20:32 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe/res_0004
4/2/2012 8:20:32 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
4/2/2012 8:20:32 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFMsgr.exe
4/2/2012 8:20:32 PM OK C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
4/2/2012 8:20:32 PM OK C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
4/2/2012 8:20:32 PM OK C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
4/2/2012 8:20:33 PM OK C:\Windows\SysWOW64\mswsock.dll
4/2/2012 8:20:33 PM OK C:\Windows\System32\mswsock.dll
4/2/2012 8:20:33 PM OK C:\Windows\SysWOW64\NapiNSP.dll
4/2/2012 8:20:33 PM OK C:\Windows\SysWOW64\pnrpnsp.dll
4/2/2012 8:20:33 PM OK C:\Program Files (x86)\common files\microsoft shared\Windows Live\WLIDNSP.DLL
4/2/2012 8:20:33 PM OK C:\Program Files (x86)\Bonjour\mdnsNSP.dll
4/2/2012 8:20:33 PM OK C:\Windows\SysWOW64\winrnr.dll
4/2/2012 8:20:33 PM OK C:\Windows\System32\NapiNSP.dll
4/2/2012 8:20:33 PM OK C:\Windows\System32\pnrpnsp.dll
4/2/2012 8:20:33 PM OK C:\program files\common files\microsoft shared\Windows Live\WLIDNSP.DLL
4/2/2012 8:20:33 PM OK C:\program files\Bonjour\mdnsNSP.dll
4/2/2012 8:20:33 PM OK C:\Windows\System32\winrnr.dll
4/2/2012 8:20:33 PM OK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
4/2/2012 8:20:33 PM OK C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PictureMover.lnk
4/2/2012 8:20:33 PM OK C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
4/2/2012 8:20:34 PM OK C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_.lnk
4/2/2012 8:20:34 PM OK C:\Users\Owner\AppData\Local\Temp\_uninst_.bat
4/2/2012 8:20:34 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\4279864.exe
4/2/2012 8:20:34 PM OK C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\_uninst_47542531.lnk
4/2/2012 8:20:34 PM OK C:\Users\Owner\AppData\Local\Temp\_uninst_47542531.bat
4/2/2012 8:20:34 PM OK C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\desktop.ini
4/2/2012 8:20:34 PM Detected: Trojan-Dropper.Win32.Injector.drvw C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\ezydo.exe
4/2/2012 8:20:39 PM Backed up C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\ezydo.exe
4/2/2012 8:20:39 PM Will be deleted on system restart: Trojan-Dropper.Win32.Injector.drvw C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\ezydo.exe
4/2/2012 8:20:39 PM Detected: Trojan-Dropper.Win32.Injector.drvw C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\pyzype.exe
4/2/2012 8:20:43 PM Backed up C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\pyzype.exe
4/2/2012 8:20:43 PM Will be deleted on system restart: Trojan-Dropper.Win32.Injector.drvw C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartUp\pyzype.exe
4/2/2012 8:20:43 PM OK C:\Windows\System32\drivers\etc\hosts
4/2/2012 8:20:43 PM OK C:\Windows\System32\logoncli.dll
4/2/2012 8:20:43 PM OK C:\Windows\System32\RpcRtRemote.dll
4/2/2012 8:20:44 PM OK C:\Desktop\Mozilla Firefox\mozcrt19.dll
4/2/2012 8:20:44 PM OK C:\Desktop\Mozilla Firefox\plugins\NPOFF12.DLL
4/2/2012 8:20:44 PM OK C:\Desktop\Mozilla Firefox\plugins\npdeployJava1.dll
4/2/2012 8:20:44 PM OK C:\Desktop\Mozilla Firefox\plugins\npnul32.dll
4/2/2012 8:20:44 PM OK C:\Desktop\Mozilla Firefox\sqlite3.dll
4/2/2012 8:20:44 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ACE.dll
4/2/2012 8:20:44 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AGM.dll
4/2/2012 8:20:44 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
4/2/2012 8:20:44 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeXMP.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIB.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIBUtils.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll Object was not changed (iChecker)
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\CoolType.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\CoolType.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Annots.api
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\EScript.api
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\plug_ins\Updater.api
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\ArcSoft\WebCam Companion 2\uWebCam.exe
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\common files\Adobe\Acrobat\ActiveX\AcroPDF.dll
4/2/2012 8:20:45 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CFNetwork.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CoreAudioToolbox.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CoreFoundation.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CoreGraphics.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\CoreVideo.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\Apple\Apple Application Support\plutil.exe
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\client\jvm.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\hpi.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\java.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\management.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\net.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\nio.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\verify.dll
4/2/2012 8:20:46 PM OK C:\Program Files (x86)\common files\i4j_jres\jre6\bin\zip.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\common files\microsoft shared\office12\MSO.DLL
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\common files\microsoft shared\VGX\VGX.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\common files\microsoft shared\Windows Live\wlidcli.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\common files\microsoft shared\ink\tiptsf.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\avcodec-53.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\avformat-53.dll
4/2/2012 8:20:47 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\avutil-51.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\chrome.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\gcswf32.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\icudt.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\pdf.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Chrome\Application\17.0.963.83\ppgooglenaclpluginchrome.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
4/2/2012 8:20:48 PM OK C:\Program Files (x86)\Google\Update\1.3.21.111\GoogleCrashHandler.exe
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Google\Update\1.3.21.111\GoogleCrashHandler64.exe
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Google\Update\1.3.21.111\goopdate.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Google\Update\1.3.21.111\psmachine.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\D3DX9_38.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\SDL.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\WorldOfGoo-WT.exe
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\WorldOfGoo.exe
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\irrKlang.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\ode.dll
4/2/2012 8:20:49 PM Packed: PE_Patch.Poly C:\Program Files (x86)\HP Games\World of Goo\wtap.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\wtap.dll/PE_Patch.Poly
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\World of Goo\wtap.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\HP Games\onplay\onplay.exe
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CeeWriter.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonInterfaces.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\CommonUtility.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingClients.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingInterface.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingMessages.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\MessagingServer.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Common.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Microsoft.Practices.EnterpriseLibrary.Logging.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Hewlett-Packard\HP Advisor\RemotingClient.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Internet Explorer\IEShims.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Internet Explorer\ieproxy.dll
4/2/2012 8:20:49 PM OK C:\Program Files (x86)\Internet Explorer\sqmapi.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\awt.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\client\jvm.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\deploy.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\java.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\java.exe
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\jkernel.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\jp2launcher.exe
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\jp2native.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\msvcr71.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\net.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll Object was not changed (iChecker)
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\nio.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\regutils.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\verify.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Java\jre6\bin\zip.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll/data0000.res
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll/data0001.res
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
4/2/2012 8:20:50 PM OK C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\agcore.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\coreclr.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npdnu.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npdnupdater2.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npnul32.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll Object was not changed (iChecker)
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine64\16.8.3.6\EFACli64.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine64\16.8.3.6\ccIPC.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine64\16.8.3.6\ccL80U.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine64\16.8.3.6\ccSet.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine64\16.8.3.6\ccVrTrst.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AVifc.dll
4/2/2012 8:20:51 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\AcctMgr.dll
4/2/2012 8:20:52 PM Packed: PE_Patch C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CLTLMH.EXE
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CLTLMH.EXE/PE_Patch
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\CLTLMH.EXE
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\IMCfg.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\NUMEng.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SNDSvc.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\Settings.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\SymNeti.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\asBAList.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\asOEHook.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\asSetHlp.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccL80U.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\ccSubEng.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltAlDis.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltElPrv.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\cltui.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\coSvcPlg.dll
4/2/2012 8:20:52 PM OK C:\Program Files (x86)\Norton Internet Security\Engine\16.8.3.6\uiAlert.dll
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\QTPlugin.ocx/data0003.res
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\QTPlugin.ocx/# Object was not changed (iChecker)
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\QTPlugin.ocx
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.qts
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\VERIZONDM\bin\libeay32.dll
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\VERIZONDM\bin\sprtsync.dll
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\Vuze\aereg.dll
4/2/2012 8:20:53 PM OK C:\Program Files (x86)\Vuze\msvcr71.dll Object was not changed (iChecker)
4/2/2012 8:20:54 PM OK C:\Program Files (x86)\Vuze\plugins\azitunes\libProcessAccess.dll
4/2/2012 8:20:54 PM OK C:\Program Files (x86)\Windows Defender\MpClient.dll
4/2/2012 8:20:54 PM OK C:\Program Files (x86)\Windows Defender\MpOAV.dll
4/2/2012 8:20:54 PM OK C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
4/2/2012 8:20:54 PM OK C:\Program Files (x86)\iTunes\ITDetector.ocx
4/2/2012 8:20:54 PM OK C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
4/2/2012 8:20:55 PM OK C:\Program Files (x86)\ooVoo\ooVoo.exe
4/2/2012 8:20:55 PM OK C:\program files\common files\microsoft shared\OFFICE11\msxml5.dll
4/2/2012 8:20:55 PM OK C:\program files\Internet Explorer\IEShims.dll
4/2/2012 8:20:55 PM OK C:\program files\Internet Explorer\ieproxy.dll
4/2/2012 8:20:55 PM OK C:\program files\Internet Explorer\iexplore.exe
4/2/2012 8:20:55 PM OK C:\program files\Microsoft Games\Solitaire\Solitaire.exe
4/2/2012 8:20:55 PM OK C:\program files\WinRAR\Formats\gz.fmt
4/2/2012 8:20:55 PM OK C:\program files\WinRAR\Formats\tar.fmt
4/2/2012 8:20:55 PM OK C:\program files\WinRAR\Formats\z.fmt
4/2/2012 8:20:55 PM OK C:\program files\Windows Media Player\WMPMediaSharing.dll
4/2/2012 8:20:55 PM OK C:\program files\Windows Media Player\WMPNSSUI.dll
4/2/2012 8:20:55 PM OK C:\program files\Windows Media Player\wmpnssci.dll
4/2/2012 8:20:55 PM OK C:\program files\Windows Photo Viewer\ImagingEngine.dll
4/2/2012 8:20:55 PM OK C:\program files\Windows Photo Viewer\PhotoBase.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\UIXrender.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\WMZuneCommProxyStub.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\WMZuneDTPTDNS.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\WMZuneTCP2UDP.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\ZuneCore.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\ZuneDB.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\ZuneDBApi.dll
4/2/2012 8:20:55 PM OK C:\program files\Zune\ZuneEffects.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneNativeLib.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZunePS.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZunePresenter.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneQP.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneResources.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneSA.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneSE.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneSH.dll
4/2/2012 8:20:56 PM OK C:\program files\Zune\ZuneService.dll
4/2/2012 8:20:57 PM OK C:\program files\Zune\ZuneShellResources.dll
4/2/2012 8:20:57 PM OK C:\program files\Zune\ZuneWmdu.dll
4/2/2012 8:20:57 PM OK C:\program files\Zune\ZuneWmduResources.dll
4/2/2012 8:20:57 PM OK C:\program files\Zune\ZuneZMDB.Classic.dll
4/2/2012 8:20:57 PM OK C:\program files\Zune\ZuneZMDB.Mobile.dll
4/2/2012 8:20:57 PM OK C:\program files\Zune\msidcrl40.dll
4/2/2012 8:20:57 PM OK C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-20\Indiv01_64.key
4/2/2012 8:20:57 PM OK C:\ProgramData\Microsoft\Windows\DRM\Cache\Indiv_SID_S-1-5-21-2193901143-2822497681-3665832931-1000\Indiv01_64.key Object was not changed (iChecker)
4/2/2012 8:20:57 PM OK C:\Users\Owner\.swt\lib\win32\x86\swt-win32-3802.dll
4/2/2012 8:20:57 PM OK C:\Users\Owner\Admin\citrus_setup.exe/exe/data0054.res
4/2/2012 8:20:57 PM OK C:\Users\Owner\Admin\citrus_setup.exe/exe
4/2/2012 8:20:57 PM OK C:\Users\Owner\Admin\citrus_setup.exe/script
4/2/2012 8:20:57 PM OK C:\Users\Owner\Admin\citrus_setup.exe
4/2/2012 8:20:57 PM OK C:\Users\Owner\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
4/2/2012 8:20:57 PM OK C:\Users\Owner\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\advdis.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\avlib.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\avpgui.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\avs.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\avspm.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\avzkrnl.dll
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\basegui.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\avpcure.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\kavbase.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\kavsys.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\kjim.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\klavemu.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\mark.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\pbs.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\qscan.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bases\vlns.kdl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\bl.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\btdisk.ppl
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\clldr.dll
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\clldr.dll
4/2/2012 8:20:58 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\crpthlpr.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\diffs.dll
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\dmap.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\dtreg.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\filemap.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\fsdrvplg.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\fssync.dll
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\hashmd5.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\hashsha1.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\icheck3.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\inflate.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\klsrlsvc.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\mailmsg.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\mdb.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\memmng.dll
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\memmng.dll
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\memmodsc.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\memscan.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\minizip.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\mkavio.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\msoe.ppl
4/2/2012 8:20:59 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\ndetect.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\nfio.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\ntfsstrm.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\ods.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\params.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\prloader.dll
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\procmon.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\propmap.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\proxydet.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\prremote.dll
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\prseqio.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\prtransp.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\prutil.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\pxstub.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\qb.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\regmap.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\report.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\reportdb.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\schedule.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\sfdb.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\thpimpl.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\timer.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\tm.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\uniarc.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\updater.dll
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\ushata.dll
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\volenum.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\wdiskio.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\winreg.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\1432992\wmihlpr.ppl
4/2/2012 8:21:00 PM OK C:\Users\Owner\AppData\Local\Temp\RarSFX2\4279864rar.exe
4/2/2012 8:21:01 PM OK C:\Users\Owner\AppData\Local\Temp\RarSFX2\helper64.exe
4/2/2012 8:21:01 PM OK C:\Users\Owner\AppData\Roaming\Azureus\plugins\azutp\win32\msvcr100.dll
4/2/2012 8:21:01 PM OK C:\Users\Owner\AppData\Roaming\Move Networks\plugins\npqmp071701000002.dll
4/2/2012 8:21:01 PM OK C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\3hep4v4d.default\extensions.sqlite
4/2/2012 8:21:01 PM Packed: UPX C:\Users\Owner\Downloads\5gkoqpec.exe
4/2/2012 8:21:01 PM OK C:\Users\Owner\Downloads\5gkoqpec.exe/UPX/#
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\5gkoqpec.exe/UPX
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\5gkoqpec.exe/#
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\5gkoqpec.exe
4/2/2012 8:21:02 PM Archive: ZIP C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Install Adobe Download Assistant.exe
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/7z.dll
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/7z.exe
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/Adobe Download Assistant.exe
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/app_icons/appicon_256.png
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/app_icons/appicon_512.png
4/2/2012 8:21:02 PM Packed: Swf2Swc C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/DownloadAssistant.swf
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/DownloadAssistant.swf/Swf2Swc
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/DownloadAssistant.swf
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/META-INF/AIR/application.xml
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/META-INF/signatures.xml
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/mimetype
4/2/2012 8:21:02 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe/Adobe Download Assistant/setup.msi
4/2/2012 8:21:03 PM OK C:\Users\Owner\Downloads\AdobeDownloadAssistant.exe
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\BearShareV9.exe
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/# Object was not changed (iChecker)
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/# Object was not changed (iChecker)
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe/#
4/2/2012 8:21:04 PM OK C:\Users\Owner\Downloads\FacebookVideoCallSetup_v1.2.203.0.exe
4/2/2012 8:21:05 PM Packed: UPX C:\Users\Owner\Downloads\MiniToolBox-1.exe
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\MiniToolBox-1.exe/UPX/script.au3
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\MiniToolBox-1.exe/UPX
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\MiniToolBox-1.exe/script.au3
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\MiniToolBox-1.exe
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\TDSSKiller.exe
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\ccsetup312.exe/data0001
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\ccsetup312.exe
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\wpsetup (1).exe/data0005.res
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\wpsetup (1).exe/#
4/2/2012 8:21:05 PM OK C:\Users\Owner\Downloads\wpsetup (1).exe
4/2/2012 8:21:05 PM OK C:\Windows\AppPatch\AcLayers.dll
4/2/2012 8:21:05 PM OK C:\Windows\AppPatch\acwow64.dll
4/2/2012 8:21:05 PM OK C:\Windows\Fonts\ACaslonPro-Italic.otf
4/2/2012 8:21:05 PM OK C:\Windows\Installer\{6B9B0C6F-E5FA-4633-A640-AB98A272ECCA}\SafariIco.exe
4/2/2012 8:21:05 PM OK C:\Windows\Installer\{6F44AF95-3CDE-4513-AD3F-6D45F17BF324}\HPSF.exe1_5321553C1DE9413FB5EC5DBF79DC538E.exe
4/2/2012 8:21:05 PM OK C:\Windows\Installer\{91120000-001A-0000-0000-0000000FF1CE}\outicon.exe
4/2/2012 8:21:05 PM OK C:\Windows\Installer\{D9DC70B6-BE13-41DD-9053-9E617E72D085}\NGP.exe1_D8D417B09A874DACAA33B02B8329E513.exe
4/2/2012 8:21:05 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
4/2/2012 8:21:05 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\WMINet_Utils.dll
4/2/2012 8:21:05 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
4/2/2012 8:21:05 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
4/2/2012 8:21:05 PM OK C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework\v4.0.30319\fusion.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Linq\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Linq.dll
4/2/2012 8:21:06 PM OK C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Data.Services.Client\v4.0_4.0.0.0__b77a5c561934e089\System.Data.Services.Client.dll
4/2/2012 8:21:06 PM OK C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
4/2/2012 8:21:06 PM OK C:\Windows\SysWOW64\AudioSes.dll
4/2/2012 8:21:06 PM OK C:\Windows\SysWOW64\COLORCNV.DLL
4/2/2012 8:21:06 PM OK C:\Windows\SysWOW64\DShowRdpFilter.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\DWrite.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\EhStorAPI.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\EhStorShell.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\ExplorerFrame.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\FWPUCLNT.DLL
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\FirewallAPI.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\IEAdvpack.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\IPHLPAPI.DLL
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\IconCodecService.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\KernelBase.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\LIVESSP.DLL
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\MFC71ENU.DLL
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\MFC71u.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\MMDevAPI.dll
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\MP3DMOD.DLL
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\MP4SDECD.DLL
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\Macromed\Flash\Flash11f.ocx
4/2/2012 8:21:07 PM OK C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\NaturalLanguage6.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\NlsData0009.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\NlsLexicons0009.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\Nlsdl.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\PING.EXE
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\PortableDeviceApi.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\PortableDeviceTypes.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\RESAMPLEDMO.DLL
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\RpcRtRemote.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\SearchFilterHost.exe
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\SearchFolder.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\SearchIndexer.exe
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\SearchProtocolHost.exe
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\Sens.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\SensApi.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\SessEnv.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\StructuredQuery.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\TSpkg.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WMADMOD.DLL
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WMASF.DLL
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WMVCORE.DLL
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WMVDECOD.DLL
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WPDSp.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WSHTCPIP.DLL
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WcsPlugInService.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WebClnt.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WindowsCodecs.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WindowsCodecsExt.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WindowsPowerShell\v1.0\pwrshsip.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\Wpc.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\WsmSvc.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\acppage.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\actxprxy.dll
4/2/2012 8:21:08 PM OK C:\Windows\SysWOW64\advpack.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\apphelp.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\asycfilt.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\attrib.exe
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\audiodev.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\avrt.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\bcrypt.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\bcryptprimitives.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\browcli.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\cabinet.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\ceutil.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\cewmdm.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\cfgmgr32.dll
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\cmd.exe
4/2/2012 8:21:09 PM OK C:\Windows\SysWOW64\comctl32.dll
4/2/2012 8:21:09 PM Detected: Backdoor.Win32.Papras.fgi C:\Windows\SysWOW64\compgMgr.dll
4/2/2012 8:21:12 PM Backed up C:\Windows\SysWOW64\compgMgr.dll
4/2/2012 8:21:12 PM Will be deleted on system restart: Backdoor.Win32.Papras.fgi C:\Windows\SysWOW64\compgMgr.dll
4/2/2012 8:21:12 PM OK C:\Windows\SysWOW64\credssp.dll
4/2/2012 8:21:12 PM OK C:\Windows\SysWOW64\crypt32.dll
4/2/2012 8:21:12 PM OK C:\Windows\SysWOW64\cryptbase.dll
4/2/2012 8:21:12 PM OK C:\Windows\SysWOW64\cryptdll.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\cryptnet.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\cryptsp.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\cryptsvc.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\cryptui.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\cscapi.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\ctfmon.exe
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\d2d1.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\d3d10.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\d3d10_1core.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\d3d10core.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\d3d10warp.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\d3d9.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dbgeng.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dbghelp.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\ddraw.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\ddrawex.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\devenum.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\devobj.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\devrtl.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dhcpcore.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dhcpcsvc.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dhcpcsvc6.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dinput8.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dispex.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dllhost.exe
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dnsapi.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dsound.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dsrole.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dui70.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\duser.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dwmapi.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dxgi.dll
4/2/2012 8:21:13 PM OK C:\Windows\SysWOW64\dxtmsft.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\dxtrans.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\dxva2.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\es.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\evr.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\fltLib.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\gpapi.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\hid.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\hidserv.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\hnetcfg.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\icm32.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\idndl.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\ieapfltr.dat
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\ieapfltr.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\iepeers.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\ieui.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\igd10umd32.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\igdumd32.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\igdumdx32.dll
4/2/2012 8:21:14 PM OK C:\Windows\SysWOW64\imageres.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\imapi2.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\imgutil.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\inetcpl.cpl
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\ipconfig.exe
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\jscript.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\jscript9.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\kerberos.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\ksuser.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\linkinfo.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\logoncli.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mapi32.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mctres.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mf.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mfplat.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mfps.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mfreadwrite.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mlang.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mpr.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mprdim.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\msacm32.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\msasn1.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mscms.dll
4/2/2012 8:21:15 PM OK C:\Windows\SysWOW64\mscoree.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msdmo.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\mshtml.tlb
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\mshtmler.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msi.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msimg32.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msimtf.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msisip.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msls31.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msmpeg2adec.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msrating.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\mstask.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msv1_0.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msvcp60.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msvcr100_clr0400.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msvfw32.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\mswmdm.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msxml3.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msxml3r.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msxml6.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\msxml6r.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\ncrypt.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\net.exe
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\net1.exe
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\netapi32.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\netcfgx.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\netmsg.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\netprofm.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\netutils.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\ntdll.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\ntdsapi.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\ntmarta.dll
4/2/2012 8:21:16 PM OK C:\Windows\SysWOW64\ntshrui.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\oleacc.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\oleaccrc.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\olepro32.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\p2pcollab.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\pcwum.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\perfos.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\pku2u.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\pla.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\pngfilt.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\powrprof.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\profapi.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\propsys.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\provsvc.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\qmgrprxy.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\quartz.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\qwave.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rapi.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rapiproxystub.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rapistub.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rasadhlp.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rasapi32.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rasman.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\riched20.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\riched32.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rsaenh.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\rtutils.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\samcli.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\samlib.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\sc.exe
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\schannel.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\secur32.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\sfc.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\sfc_os.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\shdocvw.dll
4/2/2012 8:21:17 PM OK C:\Windows\SysWOW64\shfolder.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\shsvcs.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\slc.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\spp.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\srclient.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\srvcli.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\ssdpapi.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\sspicli.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\stdole2.tlb
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\sxs.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\synceng.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\syncui.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\t2embed.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\tapisrv.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\taskeng.exe
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\thumbcache.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\tquery.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\twext.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\tzres.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\ulib.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\upnphost.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\url.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\userenv.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\uxtheme.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\vbscript.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\verifier.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\version.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\vssapi.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\vsstrace.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wbem\fastprox.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wbem\wbemprox.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wbem\wbemsvc.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wbem\wmiutils.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wbemcomn.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wcescommproxy.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wcncsvc.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wdi.dll
4/2/2012 8:21:18 PM OK C:\Windows\SysWOW64\wdigest.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wdscore.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\webio.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wer.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wevtapi.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winbrand.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winhttp.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wininit.exe
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winmm.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winnsi.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winshfhc.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winspool.drv
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\winsta.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wintrust.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wkscli.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wmdmps.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wmp.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wmpeffects.dll
4/2/2012 8:21:19 PM OK C:\Windows\SysWOW64\wmploc.DLL
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wmpps.dll
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wpcsvc.dll
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wshext.dll
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wship6.dll
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wshom.ocx
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wsock32.dll
4/2/2012 8:21:20 PM OK C:\Windows\SysWOW64\wtsapi32.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\AUDIOKSE.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\ActionCenter.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\ActionCenterCPL.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\AltTab.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\Apphlpdm.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\AudioEng.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\AudioSes.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\AuthFWGP.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\AuxiliaryDisplayClassInstaller.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\BioCredProv.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\CertEnroll.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\CertPolEng.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\DHCPQEC.DLL
4/2/2012 8:21:20 PM OK C:\Windows\System32\DWrite.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\DXP.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\DeviceCenter.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\DiagCpl.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\Display.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\EAPQEC.DLL
4/2/2012 8:21:20 PM OK C:\Windows\System32\ELSCore.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\EhStorAPI.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\ExplorerFrame.dll
4/2/2012 8:21:20 PM OK C:\Windows\System32\FWPUCLNT.DLL
4/2/2012 8:21:21 PM OK C:\Windows\System32\FXSAPI.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\FXSRESM.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\FXSST.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\FirewallAPI.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\FirewallControlPanel.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\HelpPaneProxy.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\IDStore.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\IPHLPAPI.DLL
4/2/2012 8:21:21 PM OK C:\Windows\System32\IconCodecService.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\KernelBase.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\LogonUI.exe
4/2/2012 8:21:21 PM OK C:\Windows\System32\MMDevAPI.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\MP3DMOD.DLL
4/2/2012 8:21:21 PM OK C:\Windows\System32\MSMPEG2ENC.DLL
4/2/2012 8:21:21 PM OK C:\Windows\System32\McxDriv.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\MdSched.exe
4/2/2012 8:21:21 PM OK C:\Windows\System32\NaturalLanguage6.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData0000.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData0003.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData0007.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData0009.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData000a.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData000c.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData0010.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData001a.dll
4/2/2012 8:21:21 PM OK C:\Windows\System32\NlsData001b.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\NlsLexicons0007.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\NlsLexicons0009.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\NlsLexicons000c.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\P2P.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\P2PGraph.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\PhotoMetadataHandler.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\PortableDeviceApi.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\PortableDeviceConnectApi.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\PortableDeviceTypes.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\QAGENT.DLL
4/2/2012 8:21:22 PM OK C:\Windows\System32\QUTIL.DLL
4/2/2012 8:21:22 PM OK C:\Windows\System32\Query.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\RASMM.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\SPInf.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\SearchFilterHost.exe
4/2/2012 8:21:22 PM OK C:\Windows\System32\SearchFolder.dll
4/2/2012 8:21:22 PM OK C:\Windows\System32\SearchProtocolHost.exe
4/2/2012 8:21:22 PM OK C:\Windows\System32\SensApi.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\SensorsCpl.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\SmartcardCredentialProvider.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\SndVol.exe
4/2/2012 8:21:23 PM OK C:\Windows\System32\SndVolSSO.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\StructuredQuery.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\SyncCenter.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\Syncreg.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\TSChannel.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\TSpkg.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\UIAnimation.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\UXInit.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\VaultCredProvider.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WFS.exe
4/2/2012 8:21:23 PM OK C:\Windows\System32\WFSR.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WMALFXGFXDSP.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WMASF.DLL
4/2/2012 8:21:23 PM OK C:\Windows\System32\WMVCORE.DLL
4/2/2012 8:21:23 PM OK C:\Windows\System32\WPDShServiceObj.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WSDApi.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WSDMon.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WSHTCPIP.DLL
4/2/2012 8:21:23 PM OK C:\Windows\System32\WWanAPI.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WerFault.exe
4/2/2012 8:21:23 PM OK C:\Windows\System32\WinSCard.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WindowsCodecs.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WindowsCodecsExt.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\WlS0WndH.dll
4/2/2012 8:21:23 PM OK C:\Windows\System32\ZuneMTPZ.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\ZuneNetProxy.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\ZunePTDNS.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\ZuneRegUtil.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\ZuneTcp2Udp.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\ZuneUsbTransport.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\accessibilitycpl.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\aclui.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\acppage.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\actxprxy.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\adsldpc.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\advpack.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\aepic.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\apds.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\apisetschema.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\apphelp.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\apss.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\atl.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\audiodg.exe
4/2/2012 8:21:24 PM OK C:\Windows\System32\authui.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\authz.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\avrt.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\batmeter.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\batt.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bcrypt.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bcryptprimitives.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bitsperf.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bitsprx2.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bitsprx4.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\browcli.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bthci.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\bthprops.cpl
4/2/2012 8:21:24 PM OK C:\Windows\System32\cabinet.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\calc.exe
4/2/2012 8:21:24 PM OK C:\Windows\System32\cdd.dll
4/2/2012 8:21:24 PM OK C:\Windows\System32\certCredProvider.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\certcli.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cfgmgr32.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\clb.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\clusapi.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cngaudit.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\comctl32.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\comres.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\conhost.exe
4/2/2012 8:21:25 PM OK C:\Windows\System32\consent.exe
4/2/2012 8:21:25 PM OK C:\Windows\System32\credui.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\crypt32.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cryptbase.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cryptdll.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cryptnet.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cryptsp.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cryptui.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cscapi.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\cscdll.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\csrsrv.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\d2d1.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\d3d10.dll
4/2/2012 8:21:25 PM OK C:\Windows\System32\d3d10_1.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\d3d10_1core.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\d3d10core.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\d3d10level9.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\d3d10warp.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\d3d8thk.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\d3d9.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\davclnt.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\davhlpr.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\ddraw.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\desk.cpl
4/2/2012 8:21:26 PM OK C:\Windows\System32\devenum.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\devmgr.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\devobj.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\devrtl.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dfscli.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dhcpcore6.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dhcpcsvc.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dhcpcsvc6.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\diagperf.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dispci.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dmocx.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dnsapi.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dot3api.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\drivers\UMDF\WpdFs.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\drivers\UMDF\ZuneDriver.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\drivers\spsys.sys
4/2/2012 8:21:26 PM OK C:\Windows\System32\drmv2clt.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\drprov.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\drt.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\drttransport.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dsound.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dsrole.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dssenh.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dui70.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\duser.dll
4/2/2012 8:21:26 PM OK C:\Windows\System32\dwm.exe
4/2/2012 8:21:26 PM OK C:\Windows\System32\dwmapi.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\dwmcore.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\dwmredir.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\dxgi.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\eappcfg.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\eapphost.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\eappprxy.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\elsTrans.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\elslad.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\esent.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fdProxy.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fdSSDP.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fdWSD.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\filemgmt.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fltLib.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fms.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fontext.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fontsub.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\framedynos.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fthsvc.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fundisc.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fveapi.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\fvecerts.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\gameux.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\gpapi.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\grpconv.exe
4/2/2012 8:21:27 PM OK C:\Windows\System32\hcproviders.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\hgcpl.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\hid.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\hnetcfg.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\httpapi.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\icaapi.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\icm32.dll
4/2/2012 8:21:27 PM OK C:\Windows\System32\ifsutil.dll
4/2/2012 8:21:28 PM OK C:\Windows\System32\igdumd64.dll
4/2/2012 8:21:28 PM OK C:\Windows\System32\imageres.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\imapi2.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\imgutil.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\inetcpl.cpl
4/2/2012 8:21:29 PM OK C:\Windows\System32\inetpp.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\iscsicpl.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\iscsicpl.exe
4/2/2012 8:21:29 PM OK C:\Windows\System32\jscript.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\kerberos.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\keyiso.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\ksuser.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\ktmw32.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\linkinfo.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\loadperf.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\localspl.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\lsm.exe
4/2/2012 8:21:29 PM OK C:\Windows\System32\lsmproxy.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\main.cpl
4/2/2012 8:21:29 PM OK C:\Windows\System32\mapi32.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mcicda.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mdminst.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mfc42u.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mfplat.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\miguiresource.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mlang.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mmcbase.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mmsys.cpl
4/2/2012 8:21:29 PM OK C:\Windows\System32\mpr.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\mprapi.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\msacm32.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\msasn1.dll
4/2/2012 8:21:29 PM OK C:\Windows\System32\msconfig.exe
4/2/2012 8:21:29 PM OK C:\Windows\System32\msdmo.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msftedit.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msi.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msidle.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msiltcfg.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msimg32.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msimtf.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msisip.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msls31.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msnetobj.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msscp.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msshooks.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\mssph.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\mssprxy.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\mssrch.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\mssvp.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\mstask.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msutb.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msv1_0.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msvcp60.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msvcr100_clr0400.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msxml3.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\msxml6.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\mycomput.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\nci.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\ncobjapi.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\ncrypt.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\ncsi.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\negoexts.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\netapi32.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\netcfgx.dll
4/2/2012 8:21:30 PM OK C:\Windows\System32\netjoin.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\netlogon.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\netshell.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\netutils.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\networkexplorer.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\newdev.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\nlaapi.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\npmproxy.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\nrpsrv.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\ntdll.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\ntdsapi.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\ntlanman.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\ntmarta.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\odbc32.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\odbcad32.exe
4/2/2012 8:21:31 PM OK C:\Windows\System32\odbcint.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\oleacc.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\oleaccrc.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\onex.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\osk.exe
4/2/2012 8:21:31 PM OK C:\Windows\System32\p2pcollab.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\pautoenr.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\pcwum.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\pku2u.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\pngfilt.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\pnidui.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\pnpts.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\powercpl.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\powrprof.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\prncache.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\profapi.dll
4/2/2012 8:21:31 PM OK C:\Windows\System32\propsys.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\quartz.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\radardt.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rasadhlp.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rasapi32.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rasman.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rasplap.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rdpcorekmts.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\regapi.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\resutils.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\riched20.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\riched32.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rsaenh.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\rtutils.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\runonce.exe
4/2/2012 8:21:32 PM OK C:\Windows\System32\samcli.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\samlib.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\samsrv.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\sccls.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\scesrv.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\schannel.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\schedcli.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\scrrun.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\sdcpl.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\secur32.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\sfc.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\sfc_os.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\shacct.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\shfolder.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\shgina.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\slc.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\smss.exe
4/2/2012 8:21:32 PM OK C:\Windows\System32\spfileq.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
4/2/2012 8:21:32 PM OK C:\Windows\System32\spp.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\sppobjs.dll
4/2/2012 8:21:32 PM OK C:\Windows\System32\sppwinob.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sqlceoledb30.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sqlceqp30.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sqlcese30.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sqmapi.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\srvcli.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sscore.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\ssdpapi.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sspicli.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sspisrv.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sti_ci.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\stobject.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sud.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sxproxy.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sxs.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sxshared.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\synceng.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sysclass.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\sysntfy.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\taskbarcpl.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\taskeng.exe
4/2/2012 8:21:33 PM OK C:\Windows\System32\taskhost.exe
4/2/2012 8:21:33 PM OK C:\Windows\System32\taskschd.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\tbs.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\tdh.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\thumbcache.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\timedate.cpl
4/2/2012 8:21:33 PM OK C:\Windows\System32\tquery.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\tsgqec.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\tzres.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\uDWM.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\ubpm.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\udhisapi.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\ulib.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\umb.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\upnp.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\userenv.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\uxtheme.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\vaultcli.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\vbscript.dll
4/2/2012 8:21:33 PM OK C:\Windows\System32\version.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\virtdisk.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\vssapi.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\vsstrace.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\WMIADAP.exe
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\WmiPrvSE.exe
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\cimwin32.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\fastprox.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\repdrvfs.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\wbemcore.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\wbemprox.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\wbemsvc.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\wmiprov.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbem\wmiutils.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wbemcomn.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wdiasqmmodule.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wdigest.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wdscore.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\webio.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\webservices.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wer.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\werconcpl.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\werui.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wevtapi.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wevtsvc.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\win32spl.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\winbio.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\winbrand.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wininit.exe
4/2/2012 8:21:34 PM OK C:\Windows\System32\winlogon.exe
4/2/2012 8:21:34 PM OK C:\Windows\System32\winmm.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\winnsi.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\winspool.drv
4/2/2012 8:21:34 PM OK C:\Windows\System32\winsta.dll
4/2/2012 8:21:34 PM OK C:\Windows\System32\wintrust.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wkscli.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wlanapi.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wlanhlp.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wlanutil.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wmdrmdev.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wmdrmsdk.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wmi.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wmp.dll
4/2/2012 8:21:35 PM OK C:\Windows\System32\wmploc.DLL
4/2/2012 8:21:36 PM OK C:\Windows\System32\wmpmde.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wmpps.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wmsgapi.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wow64.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wow64cpu.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wow64win.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wpccpl.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wpd_ci.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wscapi.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wscinterop.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wscsvc.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wscui.cpl
4/2/2012 8:21:36 PM OK C:\Windows\System32\wsecedit.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wshext.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wship6.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wsock32.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wtsapi32.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wuapi.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wuapp.exe
4/2/2012 8:21:36 PM OK C:\Windows\System32\wups2.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wwanmm.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\wwapi.dll
4/2/2012 8:21:36 PM OK C:\Windows\System32\xmllite.dll
4/2/2012 8:21:37 PM OK C:\Windows\System32\xpsrchvw.exe
4/2/2012 8:21:37 PM OK C:\Windows\assembly\GAC_32\BDATunePIA\6.1.0.0__31bf3856ad364e35\BDATunePIA.dll
4/2/2012 8:21:37 PM Detected: Backdoor.Win64.ZAccess.aj C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:21:40 PM Backed up C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:21:40 PM Will be deleted on system restart: Backdoor.Win64.ZAccess.aj C:\Windows\assembly\GAC_64\Desktop.ini
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\HP.ActiveSupportLibrary\2.0.0.1__01a974bc1760f423\HP.ActiveSupportLibrary.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\HP.SupportAssistant.Common\6.0.1.1__41bdec5abf54f6dc\HP.SupportAssistant.Common.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\HP.SupportAssistant.ServiceManager\6.0.1.1__afd7346f05a57c11\HP.SupportAssistant.ServiceManager.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\HP.SupportFramework.Communicator\1.0.0.0__370cd15173f7ac8f\HP.SupportFramework.Communicator.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\HP.SupportFramework.Logging\1.0.0.0__a5a013d267b3a679\HP.SupportFramework.Logging.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\System.Data.Entity.Design\3.5.0.0__b77a5c561934e089\System.Data.Entity.Design.dll
4/2/2012 8:21:40 PM OK C:\Windows\assembly\GAC_MSIL\System.Data.Linq\3.5.0.0__b77a5c561934e089\System.Data.Linq.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualC\3cb6023aa6ab962babcee9c0ec8991de\Microsoft.VisualC.ni.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\f4b2424c1b32fbd11130482bb899b7ae\PresentationCore.ni.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\02f7846cbc5c02a5dbf50fd34325eb61\PresentationFramework.ni.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\eedf95f16a7e81ca43dd8accf11498a3\System.Data.ni.dll
4/2/2012 8:21:41 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\ab87129c2b603f218e4aa5300c9b1bdd\System.Drawing.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\a1c4a635721f85bef0ea4194b888b871\System.Runtime.Remoting.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6c51e152e7404188914c9fa4d8503ff9\System.Windows.Forms.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\9866d1f6178e1cde25642f1ac293ff8d\System.Xml.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\System\faf4e8730ecbd07570111bb7c3b20565\System.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\47b9e7f070271ff50f988f75ea68fa3e\WindowsBase.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\Accessibility\d301e1d96d4f39f15482db09206f1fb1\Accessibility.ni.dll
4/2/2012 8:21:42 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\0fa603af6ee814498c20f46e00e5f891\PresentationCore.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\be975224912fc63f0398ad0c969ba144\PresentationFramework.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\SMDiagnostics\823bd996cb5aefd6c2b2fa7e19e0ef40\SMDiagnostics.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\da9e586395168489e96323c7cbd635a3\System.Configuration.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Core\9e59bc2c8cf98cd315468ca01f68663c\System.Core.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\6c52a4ed4a4d301b51cae24e0d0b28ac\System.Drawing.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.IdentityModel\3fae8a8515a716f1fae4a64a7f2a4b05\System.IdentityModel.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Management\6860203a3f244d4c6b89ff38a9c9cadb\System.Management.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\8b193e216f8cf8cd74d7f63cc3ebd2d9\System.Runtime.Remoting.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Seri#\f99728bbb535157b904873158379dc67\System.Runtime.Serialization.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceModel\0b51b0626d95de7446d132c73edd77cc\System.ServiceModel.ni.dll
4/2/2012 8:21:43 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.ServiceProce#\872d9ab7e9259b407668c38b6112499e\System.ServiceProcess.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\87a79dd88275c7e7536a0476f2ed79aa\System.Windows.Forms.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml.Linq\bc3bbe78635aeacaeea3b310ea5ff002\System.Xml.Linq.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\e04d9231de2f5d2ababdb425df670e63\System.Xml.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\System\d5bc322d03a6628891b1e1232c4815af\System.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\UIX.RenderApi\8136aa0561a5fa7c0de1404148163c56\UIX.RenderApi.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\UIXControls\66de33e46703dd18ec7d3045452bede9\UIXControls.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\UIX\da8d3e8b1197688b343080488ce7c70c\UIX.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\a6d9b6658c7778345cc60fe0d9bb6e64\WindowsBase.ni.dll
4/2/2012 8:21:44 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\ZuneDBApi\af0bae3e5840d2ac89aefcb53d7b2470\ZuneDBApi.ni.dll
4/2/2012 8:21:45 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\ZuneShell\a903b2f03be177019632a901da23fc76\ZuneShell.ni.dll
4/2/2012 8:21:45 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\mcupdate\fb79aad0c745ff7b45151bc58b4dc8e9\mcupdate.ni.exe
4/2/2012 8:21:45 PM OK C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\1d2d3e57724bcacaea5e41063dc565c1\mscorlib.ni.dll
4/2/2012 8:21:45 PM OK C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\a774bd593b8420bae4a8cf1d46af3ba2\mscorlib.ni.dll
4/2/2012 8:21:46 PM OK C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
4/2/2012 8:21:46 PM OK C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
4/2/2012 8:21:46 PM OK C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcm90.dll
4/2/2012 8:21:46 PM OK C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
4/2/2012 8:21:46 PM OK C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll Object was not changed (iChecker)
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll Object was not changed (iChecker)
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
4/2/2012 8:21:47 PM OK C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll
4/2/2012 8:21:47 PM OK Unknown application
4/2/2012 8:21:47 PM OK C
4/2/2012 8:21:47 PM OK D
4/2/2012 8:21:48 PM OK \Device\HarddiskVolume2
4/2/2012 8:21:48 PM OK \Device\HarddiskVolume3
4/2/2012 8:21:48 PM OK \Device\HarddiskVolume1
4/2/2012 8:21:49 PM OK \Device\Harddisk0\DR0
4/2/2012 8:21:49 PM Task completed

#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:09:17 AM

Posted 04 April 2012 - 01:43 PM

Hi SadFlute,

Since there are indications of malicious programs still on your PC, please do the following next:


Step 1

I see you have Azureus Installed. Please do not use this while I am helping you. - I will go into more detail about this soon.

Step 2

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.
Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt


Step 3

Please boot your computer in safe mode.

  • Double-click the icon for Superantispyware on your desktop.
  • If it will not start, go to Start > All Programs > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "" tab, and under General and StartupStart-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • Make sure that Enable Rescue Scan is not checked.
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.
To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.


Step 4

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

Step 5


Rerun Minitoolbox as per my earlier post, and post the log in your next reply

Step 6


How is your computer running now?

Edited by dev00790, 04 April 2012 - 01:44 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog