Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Found 2 dllhost.exe entries in Task Mgr/Processes


  • Please log in to reply
11 replies to this topic

#1 possum_ate_my_cat

possum_ate_my_cat

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:54 PM

Posted 15 June 2012 - 06:03 PM

Hey guys,

I was looking at a friend's laptop when I found 2 different dllhost.exe entries in the Task Manager Process list.

Found the file for one of them in C:\Windows\system32\dllhost.exe (description says it is a Microsoft COM surrogate)
Can't find the source for the other dllhost.exe process, BUT I did find C:\Windows\system32\dllhst3g.exe (also described as a Microsoft COM Surrogate)- Is this the source for the other dllhost.exe entry?

Also, after having hopped around the internet for a while, I found some places saying that dllhost.exe is dangerous, while others said it was legit. Then, I came here to BleepingComputer and found these 4 articles about dllhost.exe (or dllhst.exe, since I found the dllhst3g.exe file as well):

http://www.bleepingcomputer.com/startups/dllhst.exe-17397.html (same as dllhst3g.exe?)
http://www.bleepingcomputer.com/startups/dllhost.exe-14949.html (different file path than mine; can't find a C:\Windows\inf\ folder anywhere on the computer)
http://www.bleepingcomputer.com/startups/dllhost.exe-25641.html (same path & file as mine, says it's a valid program)
http://www.bleepingcomputer.com/startups/dllhost.exe-16363.html (same path & file as mine, says it's added by W32/Tilebot-HT worm and IRC backdoor)

Only the last 2 articles deal with my specific file path. So, since I couldn't find a clear consensus on the issue, I have come to seek the wise advice of the Bleeping Computer experts. Should I be concerned about these files/entries? More specifics below.

Task Mgr. Process Entries

- dllhost.exe PID: 3716 User Name: SYSTEM CPU: 00 Mem Usage: 4,464 K

- dllhost.exe PID: 3764 User Name: SYSTEM CPU: 00 Mem Usage: 7,364 K

OS: Windows XP Home Edition 2002 SP3

When I left-click on the process entries, no option to "Open File Location" appears as in Win 7. I scanned both with Avira Free and they both came up clean, but most internet sources say that if you have 2 dllhost.exe processes, one of them is most likely a virus. Any good words of wisdom?

Update: I searched C: for "dllhost.exe" and it found a couple more instances of it:

C:\Windows\ServicePackFiles\i386
C:\Windows\$NtServicePackUninstall$

...and a couple of Prefetch files:

DLLHOST.EXE-5353C76C.pf
DLLHOST.EXE-2B959836.pf

All four new files came up clean with an Avira scan. Should I trust the AV or is something else going on?

Let me know if you need any more info - I'm a bit of a n00b here ;)

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:05:54 AM

Posted 16 June 2012 - 06:18 AM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

Step 1

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.


Step 2

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


Step 3

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.


Step 4

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Check the boxes next to Verify file digital signatures and Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 possum_ate_my_cat

possum_ate_my_cat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:54 PM

Posted 16 June 2012 - 10:45 AM

Thanks for getting back to me. Just started the backup as recommended of the possibly infected computer. Unfortunately, it's a very slow computer and that will take about 2-3 hours, so I should have the logs you requested posted here when I get back home sometime this afternoon.

#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:05:54 AM

Posted 16 June 2012 - 11:27 AM

:thumbup2:

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 possum_ate_my_cat

possum_ate_my_cat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:54 PM

Posted 16 June 2012 - 09:08 PM

Here are the results for the 4 tool scans you advised.


Results of screen317's Security Check version 0.99.41
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Avira Free Antivirus
`````````Anti-malware/Other Utilities Check:`````````
CCleaner
Java version out of date!
Adobe Flash Player 11.1.102.63
Adobe Reader 8 Adobe Reader out of date!
Mozilla Firefox (3.6.3) Firefox out of Date!
Google Chrome 19.0.1084.52
Google Chrome 19.0.1084.56
````````Process Check: objlist.exe by Laurent````````
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 12% Defragment your hard drive soon!
````````````````````End of Log``````````````````````



Farbar Service Scanner Version: 09-06-2012
Ran by Becky (administrator) on 16-06-2012 at 18:55:59
Running from "C:\Documents and Settings\Becky\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error: Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error: Yahoo IP is unreachable
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit


**** End of log ****


MiniToolBox by Farbar Version: 09-06-2012
Ran by Becky (administrator) on 16-06-2012 at 18:57:35
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: http=127.0.0.1:1044

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.http", "127.0.0.1"
"network.proxy.http_port", 1044
"network.proxy.type", 1

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

3Com 3C920 Integrated Fast Ethernet Controller (3C905C-TX Compatible) = Local Area Connection 3 (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 3"

set address name="Local Area Connection 3" source=dhcp
set dns name="Local Area Connection 3" source=dhcp register=PRIMARY
set wins name="Local Area Connection 3" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Rbdesigner

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection 3:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : 3Com 3C920 Integrated Fast Ethernet Controller (3C905C-TX Compatible) #2

Physical Address. . . . . . . . . : 00-06-5B-BA-C2-A4

Server: UnKnown
Address: 127.0.0.1

Ping request could not find host google.com. Please check the name and try again.

Server: UnKnown
Address: 127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.

Server: UnKnown
Address: 127.0.0.1

Ping request could not find host bleepingcomputer.com. Please check the name and try again.



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 06 5b ba c2 a4 ...... 3Com 3C920 Integrated Fast Ethernet Controller (3C905C-TX Compatible) #2 - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
255.255.255.255 255.255.255.255 255.255.255.255 2 1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/05/2012 00:40:02 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 29322

Error: (06/05/2012 00:40:02 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 29322

Error: (06/05/2012 00:40:02 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/05/2012 00:39:34 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1913

Error: (06/05/2012 00:39:34 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1913

Error: (06/05/2012 00:39:34 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2012 09:29:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 120303447

Error: (06/04/2012 09:29:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 120303447

Error: (06/04/2012 09:29:47 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/03/2012 00:04:48 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4146


System errors:
=============
Error: (06/16/2012 08:22:40 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Cdr4_xp

Error: (06/16/2012 08:22:12 AM) (Source: Print) (User: SYSTEM)
Description: Sharing printer failed + 1722, Printer Microsoft XPS Document Writer share name Printer.

Error: (06/15/2012 02:14:12 PM) (Source: 0) (User: )
Description: C:

Error: (06/15/2012 01:58:54 PM) (Source: 0) (User: )
Description: \Device\HarddiskVolumeShadowCopy1C:

Error: (06/15/2012 01:56:40 PM) (Source: 0) (User: )
Description: \Device\HarddiskVolumeShadowCopy1C:C:

Error: (06/15/2012 01:50:45 PM) (Source: 0) (User: )
Description: \Device\HarddiskVolumeShadowCopy1C:C:

Error: (06/15/2012 01:47:25 PM) (Source: 0) (User: )
Description: C:

Error: (06/15/2012 00:53:21 PM) (Source: 0) (User: )
Description: \Device\HarddiskVolumeShadowCopy1C:

Error: (06/15/2012 00:52:55 PM) (Source: 0) (User: )
Description: \Device\HarddiskVolumeShadowCopy1C:C:

Error: (06/10/2012 06:32:29 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the AntiVirSchedulerService service.


Microsoft Office Sessions:
=========================
Error: (06/05/2012 00:40:02 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 29322

Error: (06/05/2012 00:40:02 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 29322

Error: (06/05/2012 00:40:02 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/05/2012 00:39:34 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1913

Error: (06/05/2012 00:39:34 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1913

Error: (06/05/2012 00:39:34 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/04/2012 09:29:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 120303447

Error: (06/04/2012 09:29:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 120303447

Error: (06/04/2012 09:29:47 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/03/2012 00:04:48 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4146


=========================== Installed Programs ============================

AC97 SoftV92 Data Fax Modem
Adobe Flash Player 11 Plugin (Version: 11.1.102.63)
Adobe Reader 8.3.1 (Version: 8.3.1)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Avira Free Antivirus (Version: 12.0.0.1125)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 2.32)
Critical Update for Windows Media Player 11 (KB959772)
D-Link DWA-131 Wireless N Nano USB Adapter (Version: )
D-Link Toolbar
Dell ResourceCD
DIRECTV Player (Version: 4.00)
Download Updater (AOL LLC)
Easy CD & DVD Creator 6 (Version: 6.0.0.171)
Google Chrome (Version: 19.0.1084.56)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.2.1)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office XP Professional with FrontPage (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MobileMe Control Panel (Version: 3.1.5.0)
Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US))
Opera 11.64 (Version: 11.64.1403)
PowerDVD
QuickTime (Version: 7.71.80.42)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
RealUpgrade 1.1 (Version: 1.1.0)
Registry Mechanic 10.0 (Version: 10.0)
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.0 (Version: 5.0.156)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB972636) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0017.0)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.5.0530.0)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Photo Gallery (Version: 12.0.1347.0718)
Windows Media Format 11 runtime
Windows Media Format SDK Hotfix - KB891122
Windows Rights Management Client Backwards Compatibility SP2 (Version: 5.2.70)
Windows Rights Management Client with Service Pack 2 (Version: 5.2.70)
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Devices: ================================

Name:
Description:
Class Guid: {50127DC3-0F36-415E-A6CC-4CB3BE910B65}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid: {4D36E969-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid: {72631E54-78A4-11D0-BCF7-00AA00B7B32A}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


========================= Memory info: ===================================

Percentage of memory in use: 58%
Total physical RAM: 510.98 MB
Available physical RAM: 212.33 MB
Total Pagefile: 2528.24 MB
Available Pagefile: 2182.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1971.2 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:55.88 GB) (Free:29.61 GB) NTFS
3 Drive e: (U3 System) (CDROM) (Total:0.01 GB) (Free:0 GB) CDFS
4 Drive f: (PENDRIVE) (Removable) (Total:3.8 GB) (Free:2.45 GB) FAT32

========================= Users: ========================================

User accounts for \\RBDESIGNER

Administrator ASPNET Becky
Guest HelpAssistant SUPPORT_388945a0

========================= Minidump Files ==================================

C:\WINDOWS\Minidump\Mini022112-01.dmp
========================= Restore Points ==================================

15-03-2012 06:24:37 Software Distribution Service 3.0
11-04-2012 19:05:51 Software Distribution Service 3.0
21-04-2012 01:14:00 System Checkpoint
26-04-2012 00:24:48 System Checkpoint
27-04-2012 22:42:39 System Checkpoint
02-05-2012 20:44:10 System Checkpoint
15-05-2012 02:15:14 System Checkpoint
16-05-2012 23:46:51 Software Distribution Service 3.0
17-05-2012 02:16:53 Installed DIRECTV Player.
22-05-2012 18:22:25 Software Distribution Service 3.0
30-05-2012 03:56:58 System Checkpoint
02-06-2012 23:59:47 System Checkpoint
05-06-2012 20:35:30 Software Distribution Service 3.0
15-06-2012 21:33:33 Unsigned driver install
16-06-2012 15:23:58 Unsigned driver install
16-06-2012 15:30:57 Unsigned driver install

**** End of log ****


18:59:07.0922 5324 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
18:59:07.0992 5324 ============================================================
18:59:07.0992 5324 Current date / time: 2012/06/16 18:59:07.0992
18:59:07.0992 5324 SystemInfo:
18:59:07.0992 5324
18:59:07.0992 5324 OS Version: 5.1.2600 ServicePack: 3.0
18:59:07.0992 5324 Product type: Workstation
18:59:07.0992 5324 ComputerName: RBDESIGNER
18:59:07.0992 5324 UserName: Becky
18:59:07.0992 5324 Windows directory: C:\WINDOWS
18:59:07.0992 5324 System windows directory: C:\WINDOWS
18:59:07.0992 5324 Processor architecture: Intel x86
18:59:07.0992 5324 Number of processors: 1
18:59:07.0992 5324 Page size: 0x1000
18:59:07.0992 5324 Boot type: Normal boot
18:59:07.0992 5324 ============================================================
18:59:10.0616 5324 Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 (55.89 Gb), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:59:10.0616 5324 Drive \Device\Harddisk1\DR8 - Size: 0xF48D2200 (3.82 Gb), SectorSize: 0x200, Cylinders: 0x1F2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:59:10.0626 5324 ============================================================
18:59:10.0626 5324 \Device\Harddisk0\DR0:
18:59:10.0626 5324 MBR partitions:
18:59:10.0626 5324 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x6FC3D80
18:59:10.0626 5324 \Device\Harddisk1\DR8:
18:59:10.0636 5324 MBR partitions:
18:59:10.0636 5324 \Device\Harddisk1\DR8\Partition0: MBR, Type 0xB, StartLBA 0x22, BlocksNum 0x79D48F
18:59:10.0636 5324 ============================================================
18:59:10.0917 5324 C: <-> \Device\Harddisk0\DR0\Partition0
18:59:10.0917 5324 ============================================================
18:59:10.0917 5324 Initialize success
18:59:10.0917 5324 ============================================================
18:59:30.0965 5612 ============================================================
18:59:30.0965 5612 Scan started
18:59:30.0965 5612 Mode: Manual; SigCheck; TDLFS;
18:59:30.0965 5612 ============================================================
18:59:31.0426 5612 Abiosdsk - ok
18:59:31.0466 5612 abp480n5 - ok
18:59:31.0566 5612 ac97intc (0f2d66d5f08ebe2f77bb904288dcf6f0) C:\WINDOWS\system32\drivers\ac97intc.sys
18:59:32.0127 5612 ac97intc ( UnsignedFile.Multi.Generic ) - warning
18:59:32.0127 5612 ac97intc - detected UnsignedFile.Multi.Generic (1)
18:59:32.0287 5612 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:59:32.0317 5612 ACPI ( UnsignedFile.Multi.Generic ) - warning
18:59:32.0317 5612 ACPI - detected UnsignedFile.Multi.Generic (1)
18:59:32.0367 5612 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
18:59:32.0418 5612 ACPIEC ( UnsignedFile.Multi.Generic ) - warning
18:59:32.0418 5612 ACPIEC - detected UnsignedFile.Multi.Generic (1)
18:59:32.0458 5612 adpu160m - ok
18:59:32.0548 5612 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
18:59:32.0598 5612 aec ( UnsignedFile.Multi.Generic ) - warning
18:59:32.0598 5612 aec - detected UnsignedFile.Multi.Generic (1)
18:59:32.0688 5612 AegisP (023867b6606fbabcdd52e089c4a507da) C:\WINDOWS\system32\DRIVERS\AegisP.sys
18:59:32.0738 5612 AegisP ( UnsignedFile.Multi.Generic ) - warning
18:59:32.0738 5612 AegisP - detected UnsignedFile.Multi.Generic (1)
18:59:32.0808 5612 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
18:59:33.0099 5612 AFD - ok
18:59:33.0189 5612 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
18:59:33.0259 5612 agp440 ( UnsignedFile.Multi.Generic ) - warning
18:59:33.0259 5612 agp440 - detected UnsignedFile.Multi.Generic (1)
18:59:33.0289 5612 Aha154x - ok
18:59:33.0329 5612 aic78u2 - ok
18:59:33.0369 5612 aic78xx - ok
18:59:33.0489 5612 Airgo (67b2f1bde076ec780394c8f0ec6888b8) C:\WINDOWS\system32\DRIVERS\lssrx51.sys
18:59:33.0629 5612 Airgo ( UnsignedFile.Multi.Generic ) - warning
18:59:33.0629 5612 Airgo - detected UnsignedFile.Multi.Generic (1)
18:59:33.0709 5612 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
18:59:33.0759 5612 Alerter ( UnsignedFile.Multi.Generic ) - warning
18:59:33.0759 5612 Alerter - detected UnsignedFile.Multi.Generic (1)
18:59:33.0840 5612 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
18:59:33.0870 5612 ALG ( UnsignedFile.Multi.Generic ) - warning
18:59:33.0870 5612 ALG - detected UnsignedFile.Multi.Generic (1)
18:59:33.0900 5612 AliIde - ok
18:59:33.0940 5612 amsint - ok
18:59:34.0080 5612 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files\Avira\AntiVir Desktop\sched.exe
18:59:34.0190 5612 AntiVirSchedulerService - ok
18:59:34.0260 5612 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
18:59:34.0330 5612 AntiVirService - ok
18:59:34.0430 5612 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:59:34.0511 5612 Apple Mobile Device - ok
18:59:34.0531 5612 AppMgmt - ok
18:59:34.0571 5612 asc - ok
18:59:34.0611 5612 asc3350p - ok
18:59:34.0641 5612 asc3550 - ok
18:59:34.0821 5612 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
18:59:34.0951 5612 aspnet_state - ok
18:59:35.0011 5612 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:59:35.0091 5612 AsyncMac ( UnsignedFile.Multi.Generic ) - warning
18:59:35.0091 5612 AsyncMac - detected UnsignedFile.Multi.Generic (1)
18:59:35.0182 5612 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:59:35.0202 5612 atapi ( UnsignedFile.Multi.Generic ) - warning
18:59:35.0202 5612 atapi - detected UnsignedFile.Multi.Generic (1)
18:59:35.0242 5612 Atdisk - ok
18:59:35.0302 5612 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:59:35.0352 5612 Atmarpc ( UnsignedFile.Multi.Generic ) - warning
18:59:35.0352 5612 Atmarpc - detected UnsignedFile.Multi.Generic (1)
18:59:35.0452 5612 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
18:59:35.0492 5612 AudioSrv ( UnsignedFile.Multi.Generic ) - warning
18:59:35.0492 5612 AudioSrv - detected UnsignedFile.Multi.Generic (1)
18:59:35.0572 5612 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:59:35.0632 5612 audstub ( UnsignedFile.Multi.Generic ) - warning
18:59:35.0632 5612 audstub - detected UnsignedFile.Multi.Generic (1)
18:59:35.0682 5612 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
18:59:35.0792 5612 avgntflt - ok
18:59:35.0832 5612 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\WINDOWS\system32\DRIVERS\avipbb.sys
18:59:35.0943 5612 avipbb - ok
18:59:35.0993 5612 avkmgr (271cfd1a989209b1964e24d969552bf7) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
18:59:36.0053 5612 avkmgr - ok
18:59:36.0093 5612 BCM42RLY - ok
18:59:36.0213 5612 BCM43XX (e7debb46b9ef1f28932e533be4a3d1a9) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
18:59:36.0333 5612 BCM43XX ( UnsignedFile.Multi.Generic ) - warning
18:59:36.0333 5612 BCM43XX - detected UnsignedFile.Multi.Generic (1)
18:59:36.0413 5612 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:59:36.0453 5612 Beep ( UnsignedFile.Multi.Generic ) - warning
18:59:36.0453 5612 Beep - detected UnsignedFile.Multi.Generic (1)
18:59:36.0564 5612 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
18:59:36.0624 5612 BITS ( UnsignedFile.Multi.Generic ) - warning
18:59:36.0624 5612 BITS - detected UnsignedFile.Multi.Generic (1)
18:59:36.0784 5612 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
18:59:36.0824 5612 Bonjour Service - ok
18:59:36.0894 5612 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
18:59:36.0954 5612 Browser ( UnsignedFile.Multi.Generic ) - warning
18:59:36.0954 5612 Browser - detected UnsignedFile.Multi.Generic (1)
18:59:37.0014 5612 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:59:37.0064 5612 cbidf2k ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0064 5612 cbidf2k - detected UnsignedFile.Multi.Generic (1)
18:59:37.0144 5612 CBTNDIS5 (181b4a19965024a2afa01fa2102b2a2d) C:\WINDOWS\system32\CBTNDIS5.SYS
18:59:37.0204 5612 CBTNDIS5 ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0204 5612 CBTNDIS5 - detected UnsignedFile.Multi.Generic (1)
18:59:37.0224 5612 cd20xrnt - ok
18:59:37.0295 5612 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:59:37.0375 5612 Cdaudio ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0375 5612 Cdaudio - detected UnsignedFile.Multi.Generic (1)
18:59:37.0455 5612 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
18:59:37.0495 5612 Cdfs ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0495 5612 Cdfs - detected UnsignedFile.Multi.Generic (1)
18:59:37.0575 5612 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\WINDOWS\system32\drivers\Cdr4_xp.sys
18:59:37.0615 5612 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0615 5612 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)
18:59:37.0675 5612 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\WINDOWS\system32\drivers\Cdralw2k.sys
18:59:37.0715 5612 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0715 5612 Cdralw2k - detected UnsignedFile.Multi.Generic (1)
18:59:37.0785 5612 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:59:37.0795 5612 Cdrom ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0795 5612 Cdrom - detected UnsignedFile.Multi.Generic (1)
18:59:37.0885 5612 cdudf_xp (a19f8c660426e02aa99af1ed3d0dcb1c) C:\WINDOWS\system32\drivers\cdudf_xp.sys
18:59:37.0976 5612 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning
18:59:37.0976 5612 cdudf_xp - detected UnsignedFile.Multi.Generic (1)
18:59:37.0996 5612 Changer - ok
18:59:38.0056 5612 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
18:59:38.0136 5612 CiSvc ( UnsignedFile.Multi.Generic ) - warning
18:59:38.0136 5612 CiSvc - detected UnsignedFile.Multi.Generic (1)
18:59:38.0176 5612 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
18:59:38.0236 5612 ClipSrv ( UnsignedFile.Multi.Generic ) - warning
18:59:38.0236 5612 ClipSrv - detected UnsignedFile.Multi.Generic (1)
18:59:38.0366 5612 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:59:38.0536 5612 clr_optimization_v2.0.50727_32 - ok
18:59:38.0616 5612 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
18:59:38.0667 5612 CmBatt ( UnsignedFile.Multi.Generic ) - warning
18:59:38.0667 5612 CmBatt - detected UnsignedFile.Multi.Generic (1)
18:59:38.0707 5612 CmdIde - ok
18:59:38.0757 5612 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
18:59:38.0797 5612 Compbatt ( UnsignedFile.Multi.Generic ) - warning
18:59:38.0797 5612 Compbatt - detected UnsignedFile.Multi.Generic (1)
18:59:38.0857 5612 COMSysApp - ok
18:59:38.0937 5612 Cpqarray - ok
18:59:39.0007 5612 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
18:59:39.0017 5612 CryptSvc ( UnsignedFile.Multi.Generic ) - warning
18:59:39.0017 5612 CryptSvc - detected UnsignedFile.Multi.Generic (1)
18:59:39.0057 5612 dac2w2k - ok
18:59:39.0117 5612 dac960nt - ok
18:59:39.0217 5612 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
18:59:39.0338 5612 DcomLaunch - ok
18:59:39.0418 5612 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
18:59:39.0438 5612 Dhcp ( UnsignedFile.Multi.Generic ) - warning
18:59:39.0438 5612 Dhcp - detected UnsignedFile.Multi.Generic (1)
18:59:39.0508 5612 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
18:59:39.0538 5612 Disk ( UnsignedFile.Multi.Generic ) - warning
18:59:39.0538 5612 Disk - detected UnsignedFile.Multi.Generic (1)
18:59:39.0588 5612 dmadmin - ok
18:59:39.0738 5612 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
18:59:39.0818 5612 dmboot ( UnsignedFile.Multi.Generic ) - warning
18:59:39.0818 5612 dmboot - detected UnsignedFile.Multi.Generic (1)
18:59:39.0908 5612 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
18:59:39.0958 5612 dmio ( UnsignedFile.Multi.Generic ) - warning
18:59:39.0958 5612 dmio - detected UnsignedFile.Multi.Generic (1)
18:59:40.0039 5612 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:59:40.0079 5612 dmload ( UnsignedFile.Multi.Generic ) - warning
18:59:40.0079 5612 dmload - detected UnsignedFile.Multi.Generic (1)
18:59:40.0139 5612 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
18:59:40.0189 5612 dmserver ( UnsignedFile.Multi.Generic ) - warning
18:59:40.0189 5612 dmserver - detected UnsignedFile.Multi.Generic (1)
18:59:40.0249 5612 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
18:59:40.0289 5612 DMusic ( UnsignedFile.Multi.Generic ) - warning
18:59:40.0289 5612 DMusic - detected UnsignedFile.Multi.Generic (1)
18:59:40.0379 5612 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
18:59:40.0479 5612 Dnscache - ok
18:59:40.0539 5612 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
18:59:40.0599 5612 Dot3svc ( UnsignedFile.Multi.Generic ) - warning
18:59:40.0599 5612 Dot3svc - detected UnsignedFile.Multi.Generic (1)
18:59:40.0679 5612 dot4 (3e4b043f8bc6be1d4820cc6c9c500306) C:\WINDOWS\system32\DRIVERS\Dot4.sys
18:59:40.0750 5612 dot4 ( UnsignedFile.Multi.Generic ) - warning
18:59:40.0750 5612 dot4 - detected UnsignedFile.Multi.Generic (1)
18:59:40.0810 5612 Dot4Print (77ce63a8a34ae23d9fe4c7896d1debe7) C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
18:59:40.0870 5612 Dot4Print ( UnsignedFile.Multi.Generic ) - warning
18:59:40.0870 5612 Dot4Print - detected UnsignedFile.Multi.Generic (1)
18:59:40.0950 5612 dot4usb (6ec3af6bb5b30e488a0c559921f012e1) C:\WINDOWS\system32\DRIVERS\dot4usb.sys
18:59:41.0000 5612 dot4usb ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0000 5612 dot4usb - detected UnsignedFile.Multi.Generic (1)
18:59:41.0020 5612 dpti2o - ok
18:59:41.0100 5612 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
18:59:41.0120 5612 drmkaud ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0120 5612 drmkaud - detected UnsignedFile.Multi.Generic (1)
18:59:41.0190 5612 dvd_2K (943873bf94e372b78ab0b0631069ac2b) C:\WINDOWS\system32\drivers\dvd_2K.sys
18:59:41.0260 5612 dvd_2K ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0260 5612 dvd_2K - detected UnsignedFile.Multi.Generic (1)
18:59:41.0300 5612 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
18:59:41.0340 5612 EapHost ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0340 5612 EapHost - detected UnsignedFile.Multi.Generic (1)
18:59:41.0441 5612 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
18:59:41.0491 5612 EL90XBC ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0491 5612 EL90XBC - detected UnsignedFile.Multi.Generic (1)
18:59:41.0571 5612 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
18:59:41.0621 5612 ERSvc ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0621 5612 ERSvc - detected UnsignedFile.Multi.Generic (1)
18:59:41.0711 5612 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
18:59:41.0751 5612 Eventlog - ok
18:59:41.0841 5612 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
18:59:41.0861 5612 EventSystem ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0861 5612 EventSystem - detected UnsignedFile.Multi.Generic (1)
18:59:41.0911 5612 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
18:59:41.0991 5612 Fastfat ( UnsignedFile.Multi.Generic ) - warning
18:59:41.0991 5612 Fastfat - detected UnsignedFile.Multi.Generic (1)
18:59:42.0051 5612 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
18:59:42.0132 5612 FastUserSwitchingCompatibility - ok
18:59:42.0172 5612 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:59:42.0272 5612 Fdc ( UnsignedFile.Multi.Generic ) - warning
18:59:42.0272 5612 Fdc - detected UnsignedFile.Multi.Generic (1)
18:59:42.0302 5612 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
18:59:42.0352 5612 Fips ( UnsignedFile.Multi.Generic ) - warning
18:59:42.0352 5612 Fips - detected UnsignedFile.Multi.Generic (1)
18:59:42.0422 5612 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:59:42.0462 5612 Flpydisk ( UnsignedFile.Multi.Generic ) - warning
18:59:42.0462 5612 Flpydisk - detected UnsignedFile.Multi.Generic (1)
18:59:42.0562 5612 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
18:59:42.0612 5612 FltMgr ( UnsignedFile.Multi.Generic ) - warning
18:59:42.0612 5612 FltMgr - detected UnsignedFile.Multi.Generic (1)
18:59:42.0782 5612 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
18:59:42.0843 5612 FontCache3.0.0.0 - ok
18:59:42.0903 5612 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:59:42.0943 5612 Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
18:59:42.0943 5612 Fs_Rec - detected UnsignedFile.Multi.Generic (1)
18:59:42.0983 5612 FTDIBUS - ok
18:59:43.0063 5612 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:59:43.0133 5612 Ftdisk ( UnsignedFile.Multi.Generic ) - warning
18:59:43.0133 5612 Ftdisk - detected UnsignedFile.Multi.Generic (1)
18:59:43.0153 5612 FTSER2K - ok
18:59:43.0223 5612 GearAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
18:59:43.0303 5612 GearAspiWDM - ok
18:59:43.0373 5612 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:59:43.0413 5612 Gpc ( UnsignedFile.Multi.Generic ) - warning
18:59:43.0413 5612 Gpc - detected UnsignedFile.Multi.Generic (1)
18:59:43.0604 5612 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
18:59:43.0624 5612 gupdate - ok
18:59:43.0674 5612 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
18:59:43.0694 5612 gupdatem - ok
18:59:43.0774 5612 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:59:43.0874 5612 gusvc - ok
18:59:43.0954 5612 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
18:59:44.0014 5612 helpsvc ( UnsignedFile.Multi.Generic ) - warning
18:59:44.0014 5612 helpsvc - detected UnsignedFile.Multi.Generic (1)
18:59:44.0034 5612 HidServ - ok
18:59:44.0094 5612 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:59:44.0154 5612 HidUsb ( UnsignedFile.Multi.Generic ) - warning
18:59:44.0154 5612 HidUsb - detected UnsignedFile.Multi.Generic (1)
18:59:44.0225 5612 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
18:59:44.0275 5612 hkmsvc ( UnsignedFile.Multi.Generic ) - warning
18:59:44.0275 5612 hkmsvc - detected UnsignedFile.Multi.Generic (1)
18:59:44.0305 5612 hpn - ok
18:59:44.0365 5612 HSFHWICH (68329f53ebfd34abf268c42d98c830f3) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
18:59:44.0425 5612 HSFHWICH ( UnsignedFile.Multi.Generic ) - warning
18:59:44.0425 5612 HSFHWICH - detected UnsignedFile.Multi.Generic (1)
18:59:44.0585 5612 HSF_DP (7bbc0d5900a1fc9f69fa0950a149a1c6) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
18:59:44.0725 5612 HSF_DP ( UnsignedFile.Multi.Generic ) - warning
18:59:44.0725 5612 HSF_DP - detected UnsignedFile.Multi.Generic (1)
18:59:44.0865 5612 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
18:59:44.0926 5612 HTTP - ok
18:59:44.0996 5612 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
18:59:45.0016 5612 HTTPFilter ( UnsignedFile.Multi.Generic ) - warning
18:59:45.0016 5612 HTTPFilter - detected UnsignedFile.Multi.Generic (1)
18:59:45.0036 5612 i2omgmt - ok
18:59:45.0076 5612 i2omp - ok
18:59:45.0146 5612 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:59:45.0196 5612 i8042prt ( UnsignedFile.Multi.Generic ) - warning
18:59:45.0196 5612 i8042prt - detected UnsignedFile.Multi.Generic (1)
18:59:45.0406 5612 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:59:45.0587 5612 idsvc - ok
18:59:45.0657 5612 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:59:45.0657 5612 Imapi ( UnsignedFile.Multi.Generic ) - warning
18:59:45.0667 5612 Imapi - detected UnsignedFile.Multi.Generic (1)
18:59:45.0737 5612 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
18:59:45.0747 5612 ImapiService ( UnsignedFile.Multi.Generic ) - warning
18:59:45.0747 5612 ImapiService - detected UnsignedFile.Multi.Generic (1)
18:59:45.0807 5612 ini910u - ok
18:59:45.0867 5612 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
18:59:45.0937 5612 IntelIde ( UnsignedFile.Multi.Generic ) - warning
18:59:45.0937 5612 IntelIde - detected UnsignedFile.Multi.Generic (1)
18:59:46.0007 5612 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:59:46.0047 5612 intelppm ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0047 5612 intelppm - detected UnsignedFile.Multi.Generic (1)
18:59:46.0117 5612 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
18:59:46.0167 5612 Ip6Fw ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0177 5612 Ip6Fw - detected UnsignedFile.Multi.Generic (1)
18:59:46.0257 5612 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:59:46.0298 5612 IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0298 5612 IpFilterDriver - detected UnsignedFile.Multi.Generic (1)
18:59:46.0348 5612 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:59:46.0398 5612 IpInIp ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0398 5612 IpInIp - detected UnsignedFile.Multi.Generic (1)
18:59:46.0478 5612 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:59:46.0488 5612 IpNat ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0488 5612 IpNat - detected UnsignedFile.Multi.Generic (1)
18:59:46.0728 5612 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
18:59:46.0788 5612 iPod Service - ok
18:59:46.0838 5612 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:59:46.0848 5612 IPSec ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0848 5612 IPSec - detected UnsignedFile.Multi.Generic (1)
18:59:46.0908 5612 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:59:46.0999 5612 IRENUM ( UnsignedFile.Multi.Generic ) - warning
18:59:46.0999 5612 IRENUM - detected UnsignedFile.Multi.Generic (1)
18:59:47.0099 5612 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:59:47.0149 5612 isapnp ( UnsignedFile.Multi.Generic ) - warning
18:59:47.0149 5612 isapnp - detected UnsignedFile.Multi.Generic (1)
18:59:47.0219 5612 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:59:47.0279 5612 Kbdclass ( UnsignedFile.Multi.Generic ) - warning
18:59:47.0279 5612 Kbdclass - detected UnsignedFile.Multi.Generic (1)
18:59:47.0369 5612 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
18:59:47.0429 5612 kmixer ( UnsignedFile.Multi.Generic ) - warning
18:59:47.0429 5612 kmixer - detected UnsignedFile.Multi.Generic (1)
18:59:47.0519 5612 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
18:59:47.0629 5612 KSecDD - ok
18:59:47.0690 5612 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
18:59:47.0810 5612 lanmanserver - ok
18:59:47.0880 5612 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
18:59:47.0980 5612 lanmanworkstation - ok
18:59:48.0020 5612 lbrtfdc - ok
18:59:48.0120 5612 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
18:59:48.0160 5612 LmHosts ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0160 5612 LmHosts - detected UnsignedFile.Multi.Generic (1)
18:59:48.0200 5612 LSWPCv4 - ok
18:59:48.0310 5612 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
18:59:48.0350 5612 mdmxsdk ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0350 5612 mdmxsdk - detected UnsignedFile.Multi.Generic (1)
18:59:48.0421 5612 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
18:59:48.0461 5612 Messenger ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0471 5612 Messenger - detected UnsignedFile.Multi.Generic (1)
18:59:48.0531 5612 mmc_2K (18032034b88c7f9e9068df91ab3ae968) C:\WINDOWS\system32\drivers\mmc_2K.sys
18:59:48.0571 5612 mmc_2K ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0571 5612 mmc_2K - detected UnsignedFile.Multi.Generic (1)
18:59:48.0651 5612 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:59:48.0721 5612 mnmdd ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0721 5612 mnmdd - detected UnsignedFile.Multi.Generic (1)
18:59:48.0811 5612 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
18:59:48.0861 5612 mnmsrvc ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0861 5612 mnmsrvc - detected UnsignedFile.Multi.Generic (1)
18:59:48.0921 5612 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
18:59:48.0931 5612 Modem ( UnsignedFile.Multi.Generic ) - warning
18:59:48.0931 5612 Modem - detected UnsignedFile.Multi.Generic (1)
18:59:48.0971 5612 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:59:49.0021 5612 Mouclass ( UnsignedFile.Multi.Generic ) - warning
18:59:49.0021 5612 Mouclass - detected UnsignedFile.Multi.Generic (1)
18:59:49.0102 5612 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:59:49.0152 5612 mouhid ( UnsignedFile.Multi.Generic ) - warning
18:59:49.0152 5612 mouhid - detected UnsignedFile.Multi.Generic (1)
18:59:49.0212 5612 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
18:59:49.0262 5612 MountMgr ( UnsignedFile.Multi.Generic ) - warning
18:59:49.0262 5612 MountMgr - detected UnsignedFile.Multi.Generic (1)
18:59:49.0282 5612 mraid35x - ok
18:59:49.0352 5612 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:59:49.0402 5612 MRxDAV ( UnsignedFile.Multi.Generic ) - warning
18:59:49.0402 5612 MRxDAV - detected UnsignedFile.Multi.Generic (1)
18:59:49.0512 5612 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:59:49.0692 5612 MRxSmb - ok
18:59:49.0773 5612 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
18:59:49.0853 5612 MSDTC ( UnsignedFile.Multi.Generic ) - warning
18:59:49.0853 5612 MSDTC - detected UnsignedFile.Multi.Generic (1)
18:59:49.0903 5612 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
18:59:49.0953 5612 Msfs ( UnsignedFile.Multi.Generic ) - warning
18:59:49.0953 5612 Msfs - detected UnsignedFile.Multi.Generic (1)
18:59:49.0993 5612 MSIServer - ok
18:59:50.0053 5612 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:59:50.0113 5612 MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
18:59:50.0113 5612 MSKSSRV - detected UnsignedFile.Multi.Generic (1)
18:59:50.0153 5612 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:59:50.0183 5612 MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
18:59:50.0183 5612 MSPCLOCK - detected UnsignedFile.Multi.Generic (1)
18:59:50.0253 5612 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
18:59:50.0313 5612 MSPQM ( UnsignedFile.Multi.Generic ) - warning
18:59:50.0313 5612 MSPQM - detected UnsignedFile.Multi.Generic (1)
18:59:50.0383 5612 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:59:50.0393 5612 mssmbios ( UnsignedFile.Multi.Generic ) - warning
18:59:50.0393 5612 mssmbios - detected UnsignedFile.Multi.Generic (1)
18:59:50.0484 5612 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
18:59:50.0574 5612 Mup - ok
18:59:50.0674 5612 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
18:59:50.0734 5612 napagent ( UnsignedFile.Multi.Generic ) - warning
18:59:50.0734 5612 napagent - detected UnsignedFile.Multi.Generic (1)
18:59:50.0824 5612 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
18:59:50.0914 5612 NDIS ( UnsignedFile.Multi.Generic ) - warning
18:59:50.0914 5612 NDIS - detected UnsignedFile.Multi.Generic (1)
18:59:50.0994 5612 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:59:51.0064 5612 NdisTapi - ok
18:59:51.0104 5612 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:59:51.0165 5612 Ndisuio ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0175 5612 Ndisuio - detected UnsignedFile.Multi.Generic (1)
18:59:51.0235 5612 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:59:51.0285 5612 NdisWan ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0285 5612 NdisWan - detected UnsignedFile.Multi.Generic (1)
18:59:51.0385 5612 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
18:59:51.0515 5612 NDProxy - ok
18:59:51.0565 5612 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:59:51.0645 5612 NetBIOS ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0645 5612 NetBIOS - detected UnsignedFile.Multi.Generic (1)
18:59:51.0715 5612 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:59:51.0725 5612 NetBT ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0735 5612 NetBT - detected UnsignedFile.Multi.Generic (1)
18:59:51.0795 5612 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
18:59:51.0846 5612 NetDDE ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0846 5612 NetDDE - detected UnsignedFile.Multi.Generic (1)
18:59:51.0886 5612 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
18:59:51.0896 5612 NetDDEdsdm ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0896 5612 NetDDEdsdm - detected UnsignedFile.Multi.Generic (1)
18:59:51.0936 5612 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
18:59:51.0996 5612 Netlogon ( UnsignedFile.Multi.Generic ) - warning
18:59:51.0996 5612 Netlogon - detected UnsignedFile.Multi.Generic (1)
18:59:52.0076 5612 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
18:59:52.0086 5612 Netman ( UnsignedFile.Multi.Generic ) - warning
18:59:52.0096 5612 Netman - detected UnsignedFile.Multi.Generic (1)
18:59:52.0216 5612 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:59:52.0296 5612 NetTcpPortSharing - ok
18:59:52.0406 5612 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
18:59:52.0436 5612 Nla - ok
18:59:52.0506 5612 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
18:59:52.0567 5612 Npfs ( UnsignedFile.Multi.Generic ) - warning
18:59:52.0567 5612 Npfs - detected UnsignedFile.Multi.Generic (1)
18:59:52.0687 5612 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
18:59:52.0767 5612 Ntfs ( UnsignedFile.Multi.Generic ) - warning
18:59:52.0767 5612 Ntfs - detected UnsignedFile.Multi.Generic (1)
18:59:52.0797 5612 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
18:59:52.0817 5612 NtLmSsp ( UnsignedFile.Multi.Generic ) - warning
18:59:52.0817 5612 NtLmSsp - detected UnsignedFile.Multi.Generic (1)
18:59:52.0927 5612 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
18:59:53.0027 5612 NtmsSvc ( UnsignedFile.Multi.Generic ) - warning
18:59:53.0027 5612 NtmsSvc - detected UnsignedFile.Multi.Generic (1)
18:59:53.0097 5612 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:59:53.0137 5612 Null ( UnsignedFile.Multi.Generic ) - warning
18:59:53.0137 5612 Null - detected UnsignedFile.Multi.Generic (1)
18:59:53.0388 5612 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:59:53.0608 5612 nv ( UnsignedFile.Multi.Generic ) - warning
18:59:53.0608 5612 nv - detected UnsignedFile.Multi.Generic (1)
18:59:53.0788 5612 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:59:53.0838 5612 NwlnkFlt ( UnsignedFile.Multi.Generic ) - warning
18:59:53.0838 5612 NwlnkFlt - detected UnsignedFile.Multi.Generic (1)
18:59:53.0888 5612 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:59:53.0939 5612 NwlnkFwd ( UnsignedFile.Multi.Generic ) - warning
18:59:53.0939 5612 NwlnkFwd - detected UnsignedFile.Multi.Generic (1)
18:59:54.0029 5612 odysseyIM4 (7af6ec0ea4261ecf7da084103be31ea8) C:\WINDOWS\system32\DRIVERS\odysseyIM4.sys
18:59:54.0149 5612 odysseyIM4 - ok
18:59:54.0219 5612 OMCI (cec7e2c6c1fa00c7ab2f5434f848ae51) C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS
18:59:54.0259 5612 OMCI ( UnsignedFile.Multi.Generic ) - warning
18:59:54.0259 5612 OMCI - detected UnsignedFile.Multi.Generic (1)
18:59:54.0329 5612 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
18:59:54.0369 5612 Parport ( UnsignedFile.Multi.Generic ) - warning
18:59:54.0369 5612 Parport - detected UnsignedFile.Multi.Generic (1)
18:59:54.0449 5612 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
18:59:54.0489 5612 PartMgr ( UnsignedFile.Multi.Generic ) - warning
18:59:54.0489 5612 PartMgr - detected UnsignedFile.Multi.Generic (1)
18:59:54.0589 5612 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:59:54.0619 5612 ParVdm ( UnsignedFile.Multi.Generic ) - warning
18:59:54.0619 5612 ParVdm - detected UnsignedFile.Multi.Generic (1)
18:59:54.0670 5612 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
18:59:54.0740 5612 PCI ( UnsignedFile.Multi.Generic ) - warning
18:59:54.0740 5612 PCI - detected UnsignedFile.Multi.Generic (1)
18:59:54.0780 5612 PCIDump - ok
18:59:54.0820 5612 PCIIde - ok
18:59:54.0870 5612 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
18:59:54.0950 5612 Pcmcia ( UnsignedFile.Multi.Generic ) - warning
18:59:54.0950 5612 Pcmcia - detected UnsignedFile.Multi.Generic (1)
18:59:55.0110 5612 PCToolsSSDMonitorSvc (e6e503845208a148a9e3e7faa63b97a4) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe
18:59:55.0240 5612 PCToolsSSDMonitorSvc - ok
18:59:55.0260 5612 PDCOMP - ok
18:59:55.0300 5612 PDFRAME - ok
18:59:55.0331 5612 PDRELI - ok
18:59:55.0371 5612 PDRFRAME - ok
18:59:55.0411 5612 perc2 - ok
18:59:55.0461 5612 perc2hib - ok
18:59:55.0601 5612 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
18:59:55.0671 5612 PlugPlay - ok
18:59:55.0751 5612 Point32 (f6210e1e4818dfb0d5d90b6bb659b513) C:\WINDOWS\system32\DRIVERS\point32.sys
18:59:56.0282 5612 Point32 ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0282 5612 Point32 - detected UnsignedFile.Multi.Generic (1)
18:59:56.0322 5612 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
18:59:56.0332 5612 PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0332 5612 PolicyAgent - detected UnsignedFile.Multi.Generic (1)
18:59:56.0402 5612 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:59:56.0482 5612 PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0482 5612 PptpMiniport - detected UnsignedFile.Multi.Generic (1)
18:59:56.0502 5612 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
18:59:56.0532 5612 ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0532 5612 ProtectedStorage - detected UnsignedFile.Multi.Generic (1)
18:59:56.0592 5612 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
18:59:56.0652 5612 PSched ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0652 5612 PSched - detected UnsignedFile.Multi.Generic (1)
18:59:56.0682 5612 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:59:56.0743 5612 Ptilink ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0743 5612 Ptilink - detected UnsignedFile.Multi.Generic (1)
18:59:56.0823 5612 pwd_2k (4f1948a73db89ee4b34feeedd6745ee1) C:\WINDOWS\system32\drivers\pwd_2k.sys
18:59:56.0863 5612 pwd_2k ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0863 5612 pwd_2k - detected UnsignedFile.Multi.Generic (1)
18:59:56.0933 5612 PxHelp20 (f7bb4e7a7c02ab4a2672937e124e306e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:59:56.0983 5612 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
18:59:56.0983 5612 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
18:59:57.0023 5612 ql1080 - ok
18:59:57.0073 5612 Ql10wnt - ok
18:59:57.0113 5612 ql12160 - ok
18:59:57.0173 5612 ql1240 - ok
18:59:57.0193 5612 ql1280 - ok
18:59:57.0253 5612 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:59:57.0283 5612 RasAcd ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0283 5612 RasAcd - detected UnsignedFile.Multi.Generic (1)
18:59:57.0363 5612 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
18:59:57.0424 5612 RasAuto ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0424 5612 RasAuto - detected UnsignedFile.Multi.Generic (1)
18:59:57.0504 5612 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:59:57.0544 5612 Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0544 5612 Rasl2tp - detected UnsignedFile.Multi.Generic (1)
18:59:57.0604 5612 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
18:59:57.0694 5612 RasMan ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0694 5612 RasMan - detected UnsignedFile.Multi.Generic (1)
18:59:57.0734 5612 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:59:57.0784 5612 RasPppoe ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0784 5612 RasPppoe - detected UnsignedFile.Multi.Generic (1)
18:59:57.0844 5612 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:59:57.0874 5612 Raspti ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0874 5612 Raspti - detected UnsignedFile.Multi.Generic (1)
18:59:57.0944 5612 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:59:57.0984 5612 Rdbss ( UnsignedFile.Multi.Generic ) - warning
18:59:57.0984 5612 Rdbss - detected UnsignedFile.Multi.Generic (1)
18:59:58.0014 5612 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:59:58.0064 5612 RDPCDD ( UnsignedFile.Multi.Generic ) - warning
18:59:58.0064 5612 RDPCDD - detected UnsignedFile.Multi.Generic (1)
18:59:58.0215 5612 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
18:59:58.0295 5612 RDPWD - ok
18:59:58.0365 5612 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
18:59:58.0435 5612 RDSessMgr ( UnsignedFile.Multi.Generic ) - warning
18:59:58.0435 5612 RDSessMgr - detected UnsignedFile.Multi.Generic (1)
18:59:58.0505 5612 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:59:58.0515 5612 redbook ( UnsignedFile.Multi.Generic ) - warning
18:59:58.0515 5612 redbook - detected UnsignedFile.Multi.Generic (1)
18:59:58.0585 5612 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
18:59:58.0655 5612 RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
18:59:58.0655 5612 RemoteAccess - detected UnsignedFile.Multi.Generic (1)
18:59:58.0735 5612 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
18:59:58.0785 5612 RpcLocator ( UnsignedFile.Multi.Generic ) - warning
18:59:58.0785 5612 RpcLocator - detected UnsignedFile.Multi.Generic (1)
18:59:58.0886 5612 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
18:59:58.0936 5612 RpcSs - ok
18:59:59.0016 5612 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
18:59:59.0076 5612 RSVP ( UnsignedFile.Multi.Generic ) - warning
18:59:59.0076 5612 RSVP - detected UnsignedFile.Multi.Generic (1)
18:59:59.0136 5612 rtl8180 - ok
18:59:59.0276 5612 RTL8192su (aab25c5da336424f36d532462becde03) C:\WINDOWS\system32\DRIVERS\RTL8192su.sys
18:59:59.0436 5612 RTL8192su - ok
18:59:59.0497 5612 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
18:59:59.0497 5612 SamSs ( UnsignedFile.Multi.Generic ) - warning
18:59:59.0497 5612 SamSs - detected UnsignedFile.Multi.Generic (1)
18:59:59.0577 5612 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
18:59:59.0657 5612 SCardSvr ( UnsignedFile.Multi.Generic ) - warning
18:59:59.0657 5612 SCardSvr - detected UnsignedFile.Multi.Generic (1)
18:59:59.0727 5612 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
18:59:59.0807 5612 Schedule ( UnsignedFile.Multi.Generic ) - warning
18:59:59.0807 5612 Schedule - detected UnsignedFile.Multi.Generic (1)
18:59:59.0917 5612 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:59:59.0947 5612 Secdrv ( UnsignedFile.Multi.Generic ) - warning
18:59:59.0947 5612 Secdrv - detected UnsignedFile.Multi.Generic (1)
19:00:00.0007 5612 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:00:00.0067 5612 seclogon ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0067 5612 seclogon - detected UnsignedFile.Multi.Generic (1)
19:00:00.0127 5612 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:00:00.0137 5612 SENS ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0137 5612 SENS - detected UnsignedFile.Multi.Generic (1)
19:00:00.0177 5612 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:00:00.0238 5612 Serenum ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0238 5612 Serenum - detected UnsignedFile.Multi.Generic (1)
19:00:00.0288 5612 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
19:00:00.0348 5612 Serial ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0358 5612 Serial - detected UnsignedFile.Multi.Generic (1)
19:00:00.0448 5612 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:00:00.0508 5612 Sfloppy ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0508 5612 Sfloppy - detected UnsignedFile.Multi.Generic (1)
19:00:00.0618 5612 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:00:00.0638 5612 SharedAccess ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0638 5612 SharedAccess - detected UnsignedFile.Multi.Generic (1)
19:00:00.0738 5612 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:00:00.0768 5612 ShellHWDetection - ok
19:00:00.0788 5612 Simbad - ok
19:00:00.0828 5612 Sparrow - ok
19:00:00.0878 5612 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:00:00.0919 5612 splitter ( UnsignedFile.Multi.Generic ) - warning
19:00:00.0919 5612 splitter - detected UnsignedFile.Multi.Generic (1)
19:00:01.0009 5612 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:00:01.0069 5612 Spooler - ok
19:00:01.0139 5612 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:00:01.0139 5612 sr ( UnsignedFile.Multi.Generic ) - warning
19:00:01.0139 5612 sr - detected UnsignedFile.Multi.Generic (1)
19:00:01.0219 5612 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
19:00:01.0239 5612 srservice ( UnsignedFile.Multi.Generic ) - warning
19:00:01.0239 5612 srservice - detected UnsignedFile.Multi.Generic (1)
19:00:01.0309 5612 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:00:01.0499 5612 Srv - ok
19:00:01.0549 5612 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:00:01.0640 5612 SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
19:00:01.0640 5612 SSDPSRV - detected UnsignedFile.Multi.Generic (1)
19:00:01.0740 5612 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
19:00:01.0810 5612 ssmdrv - ok
19:00:01.0900 5612 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:00:01.0990 5612 stisvc ( UnsignedFile.Multi.Generic ) - warning
19:00:01.0990 5612 stisvc - detected UnsignedFile.Multi.Generic (1)
19:00:02.0070 5612 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:00:02.0100 5612 swenum ( UnsignedFile.Multi.Generic ) - warning
19:00:02.0100 5612 swenum - detected UnsignedFile.Multi.Generic (1)
19:00:02.0140 5612 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:00:02.0200 5612 swmidi ( UnsignedFile.Multi.Generic ) - warning
19:00:02.0200 5612 swmidi - detected UnsignedFile.Multi.Generic (1)
19:00:02.0250 5612 SwPrv - ok
19:00:02.0331 5612 symc810 - ok
19:00:02.0371 5612 symc8xx - ok
19:00:02.0431 5612 sym_hi - ok
19:00:02.0471 5612 sym_u3 - ok
19:00:02.0521 5612 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:00:02.0571 5612 sysaudio ( UnsignedFile.Multi.Generic ) - warning
19:00:02.0571 5612 sysaudio - detected UnsignedFile.Multi.Generic (1)
19:00:02.0651 5612 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:00:02.0701 5612 SysmonLog ( UnsignedFile.Multi.Generic ) - warning
19:00:02.0701 5612 SysmonLog - detected UnsignedFile.Multi.Generic (1)
19:00:02.0781 5612 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:00:02.0861 5612 TapiSrv ( UnsignedFile.Multi.Generic ) - warning
19:00:02.0861 5612 TapiSrv - detected UnsignedFile.Multi.Generic (1)
19:00:02.0951 5612 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:00:02.0992 5612 Tcpip - ok
19:00:03.0032 5612 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:00:03.0092 5612 TDPIPE ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0092 5612 TDPIPE - detected UnsignedFile.Multi.Generic (1)
19:00:03.0132 5612 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:00:03.0172 5612 TDTCP ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0172 5612 TDTCP - detected UnsignedFile.Multi.Generic (1)
19:00:03.0222 5612 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:00:03.0252 5612 TermDD ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0252 5612 TermDD - detected UnsignedFile.Multi.Generic (1)
19:00:03.0332 5612 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:00:03.0402 5612 TermService ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0402 5612 TermService - detected UnsignedFile.Multi.Generic (1)
19:00:03.0482 5612 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:00:03.0512 5612 Themes - ok
19:00:03.0542 5612 TosIde - ok
19:00:03.0582 5612 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:00:03.0642 5612 TrkWks ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0642 5612 TrkWks - detected UnsignedFile.Multi.Generic (1)
19:00:03.0773 5612 UdfReadr_xp (37148e648e0f3a6694040fd9f80941b7) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys
19:00:03.0853 5612 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0853 5612 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1)
19:00:03.0923 5612 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:00:03.0963 5612 Udfs ( UnsignedFile.Multi.Generic ) - warning
19:00:03.0963 5612 Udfs - detected UnsignedFile.Multi.Generic (1)
19:00:04.0003 5612 ultra - ok
19:00:04.0103 5612 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:00:04.0193 5612 Update ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0193 5612 Update - detected UnsignedFile.Multi.Generic (1)
19:00:04.0283 5612 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:00:04.0364 5612 upnphost ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0364 5612 upnphost - detected UnsignedFile.Multi.Generic (1)
19:00:04.0424 5612 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:00:04.0494 5612 UPS ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0494 5612 UPS - detected UnsignedFile.Multi.Generic (1)
19:00:04.0574 5612 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:00:04.0634 5612 usbhub ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0634 5612 usbhub - detected UnsignedFile.Multi.Generic (1)
19:00:04.0694 5612 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:00:04.0734 5612 usbprint ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0734 5612 usbprint - detected UnsignedFile.Multi.Generic (1)
19:00:04.0794 5612 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:00:04.0854 5612 usbscan ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0854 5612 usbscan - detected UnsignedFile.Multi.Generic (1)
19:00:04.0914 5612 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:00:04.0924 5612 USBSTOR ( UnsignedFile.Multi.Generic ) - warning
19:00:04.0924 5612 USBSTOR - detected UnsignedFile.Multi.Generic (1)
19:00:04.0984 5612 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:00:05.0044 5612 usbuhci ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0044 5612 usbuhci - detected UnsignedFile.Multi.Generic (1)
19:00:05.0115 5612 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:00:05.0145 5612 VgaSave ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0145 5612 VgaSave - detected UnsignedFile.Multi.Generic (1)
19:00:05.0185 5612 ViaIde - ok
19:00:05.0255 5612 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:00:05.0275 5612 VolSnap ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0275 5612 VolSnap - detected UnsignedFile.Multi.Generic (1)
19:00:05.0385 5612 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:00:05.0455 5612 VSS ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0455 5612 VSS - detected UnsignedFile.Multi.Generic (1)
19:00:05.0515 5612 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:00:05.0535 5612 W32Time ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0535 5612 W32Time - detected UnsignedFile.Multi.Generic (1)
19:00:05.0585 5612 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:00:05.0655 5612 Wanarp ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0655 5612 Wanarp - detected UnsignedFile.Multi.Generic (1)
19:00:05.0675 5612 WDICA - ok
19:00:05.0745 5612 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:00:05.0786 5612 wdmaud ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0786 5612 wdmaud - detected UnsignedFile.Multi.Generic (1)
19:00:05.0856 5612 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:00:05.0946 5612 WebClient ( UnsignedFile.Multi.Generic ) - warning
19:00:05.0946 5612 WebClient - detected UnsignedFile.Multi.Generic (1)
19:00:06.0056 5612 winachsf (e010c2588ed1c0ad0e8188ec0f46ced6) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
19:00:06.0176 5612 winachsf ( UnsignedFile.Multi.Generic ) - warning
19:00:06.0176 5612 winachsf - detected UnsignedFile.Multi.Generic (1)
19:00:06.0306 5612 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:00:06.0316 5612 winmgmt ( UnsignedFile.Multi.Generic ) - warning
19:00:06.0316 5612 winmgmt - detected UnsignedFile.Multi.Generic (1)
19:00:06.0406 5612 WLNdis50 (bb2c5a7a555b387b85481b8bde5370d7) C:\WINDOWS\system32\DRIVERS\wlndis50.sys
19:00:06.0446 5612 WLNdis50 ( UnsignedFile.Multi.Generic ) - warning
19:00:06.0446 5612 WLNdis50 - detected UnsignedFile.Multi.Generic (1)
19:00:06.0607 5612 WLSetupSvc (94a85e956a065e23e0010a6a7826243b) C:\Program Files\Windows Live\installer\WLSetupSvc.exe
19:00:06.0687 5612 WLSetupSvc ( UnsignedFile.Multi.Generic ) - warning
19:00:06.0687 5612 WLSetupSvc - detected UnsignedFile.Multi.Generic (1)
19:00:06.0817 5612 WLSVC (5bf6d377d3c277a3a174cafae32e5831) C:\Program Files\D-Link\DWA-131 revA\WLSVC.exe
19:00:06.0877 5612 WLSVC ( UnsignedFile.Multi.Generic ) - warning
19:00:06.0877 5612 WLSVC - detected UnsignedFile.Multi.Generic (1)
19:00:07.0378 5612 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
19:00:07.0418 5612 WmdmPmSN ( UnsignedFile.Multi.Generic ) - warning
19:00:07.0418 5612 WmdmPmSN - detected UnsignedFile.Multi.Generic (1)
19:00:07.0538 5612 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:00:07.0608 5612 WmiApSrv ( UnsignedFile.Multi.Generic ) - warning
19:00:07.0608 5612 WmiApSrv - detected UnsignedFile.Multi.Generic (1)
19:00:07.0738 5612 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:00:07.0899 5612 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
19:00:07.0899 5612 WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
19:00:07.0929 5612 WNIPROT5 - ok
19:00:08.0009 5612 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:00:08.0019 5612 wscsvc ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0019 5612 wscsvc - detected UnsignedFile.Multi.Generic (1)
19:00:08.0089 5612 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:00:08.0099 5612 wuauserv ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0099 5612 wuauserv - detected UnsignedFile.Multi.Generic (1)
19:00:08.0179 5612 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:00:08.0229 5612 WudfPf ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0229 5612 WudfPf - detected UnsignedFile.Multi.Generic (1)
19:00:08.0279 5612 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:00:08.0329 5612 WudfRd ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0329 5612 WudfRd - detected UnsignedFile.Multi.Generic (1)
19:00:08.0379 5612 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:00:08.0439 5612 WudfSvc ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0439 5612 WudfSvc - detected UnsignedFile.Multi.Generic (1)
19:00:08.0560 5612 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:00:08.0610 5612 WZCSVC ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0610 5612 WZCSVC - detected UnsignedFile.Multi.Generic (1)
19:00:08.0670 5612 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:00:08.0750 5612 xmlprov ( UnsignedFile.Multi.Generic ) - warning
19:00:08.0750 5612 xmlprov - detected UnsignedFile.Multi.Generic (1)
19:00:08.0850 5612 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:00:09.0751 5612 \Device\Harddisk0\DR0 - ok
19:00:09.0831 5612 MBR (0x1B8) (23b571400a29918f5392f6e85eeb756e) \Device\Harddisk1\DR8
19:01:17.0629 5612 \Device\Harddisk1\DR8 - ok
19:01:17.0699 5612 Boot (0x1200) (d9ddbf4545e585ebf9c6023061004160) \Device\Harddisk0\DR0\Partition0
19:01:17.0699 5612 \Device\Harddisk0\DR0\Partition0 - ok
19:01:17.0769 5612 Boot (0x1200) (deebf996d33a9774bee9a6d06348aa28) \Device\Harddisk1\DR8\Partition0
19:01:17.0769 5612 \Device\Harddisk1\DR8\Partition0 - ok
19:01:17.0789 5612 ============================================================
19:01:17.0789 5612 Scan finished
19:01:17.0789 5612 ============================================================
19:01:17.0969 5628 Detected object count: 195
19:01:17.0969 5628 Actual detected object count: 195
19:02:41.0540 5628 ac97intc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0540 5628 ac97intc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0540 5628 ACPI ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0540 5628 ACPI ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0540 5628 ACPIEC ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0540 5628 ACPIEC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0540 5628 aec ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0540 5628 aec ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0560 5628 AegisP ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0560 5628 AegisP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0560 5628 agp440 ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0560 5628 agp440 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0580 5628 Airgo ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0580 5628 Airgo ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0580 5628 Alerter ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0580 5628 Alerter ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0590 5628 ALG ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0590 5628 ALG ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0590 5628 AsyncMac ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0590 5628 AsyncMac ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0590 5628 atapi ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0590 5628 atapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0590 5628 Atmarpc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0590 5628 Atmarpc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0600 5628 AudioSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0600 5628 AudioSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0600 5628 audstub ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0600 5628 audstub ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0600 5628 BCM43XX ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0600 5628 BCM43XX ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0600 5628 Beep ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0600 5628 Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0620 5628 BITS ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0620 5628 BITS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0620 5628 Browser ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0620 5628 Browser ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0630 5628 cbidf2k ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0630 5628 cbidf2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0630 5628 CBTNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0630 5628 CBTNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0650 5628 Cdaudio ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0650 5628 Cdaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0650 5628 Cdfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0650 5628 Cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0670 5628 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0670 5628 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0670 5628 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0670 5628 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0680 5628 Cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0680 5628 Cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0680 5628 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0680 5628 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0700 5628 CiSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0700 5628 CiSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0700 5628 ClipSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0700 5628 ClipSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0720 5628 CmBatt ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0720 5628 CmBatt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0720 5628 Compbatt ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0720 5628 Compbatt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0740 5628 CryptSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0740 5628 CryptSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0740 5628 Dhcp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0740 5628 Dhcp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0760 5628 Disk ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0760 5628 Disk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0760 5628 dmboot ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0760 5628 dmboot ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0770 5628 dmio ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0770 5628 dmio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0770 5628 dmload ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0770 5628 dmload ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0790 5628 dmserver ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0790 5628 dmserver ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0790 5628 DMusic ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0790 5628 DMusic ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0790 5628 Dot3svc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0790 5628 Dot3svc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0810 5628 dot4 ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0810 5628 dot4 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0810 5628 Dot4Print ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0810 5628 Dot4Print ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0820 5628 dot4usb ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0820 5628 dot4usb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0820 5628 drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0820 5628 drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0840 5628 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0840 5628 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0840 5628 EapHost ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0840 5628 EapHost ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0860 5628 EL90XBC ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0860 5628 EL90XBC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0860 5628 ERSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0860 5628 ERSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0870 5628 EventSystem ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0870 5628 EventSystem ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0870 5628 Fastfat ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0870 5628 Fastfat ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0890 5628 Fdc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0890 5628 Fdc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0890 5628 Fips ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0890 5628 Fips ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0900 5628 Flpydisk ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0900 5628 Flpydisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0910 5628 FltMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0910 5628 FltMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0920 5628 Fs_Rec ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0920 5628 Fs_Rec ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0920 5628 Ftdisk ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0920 5628 Ftdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0940 5628 Gpc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0940 5628 Gpc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0940 5628 helpsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0940 5628 helpsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0960 5628 HidUsb ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0960 5628 HidUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0970 5628 hkmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0970 5628 hkmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0980 5628 HSFHWICH ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0980 5628 HSFHWICH ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0990 5628 HSF_DP ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0990 5628 HSF_DP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:41.0990 5628 HTTPFilter ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:41.0990 5628 HTTPFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0010 5628 i8042prt ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0010 5628 i8042prt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0010 5628 Imapi ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0010 5628 Imapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0030 5628 ImapiService ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0030 5628 ImapiService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0030 5628 IntelIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0030 5628 IntelIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0040 5628 intelppm ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0040 5628 intelppm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0040 5628 Ip6Fw ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0040 5628 Ip6Fw ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0040 5628 IpFilterDriver ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0040 5628 IpFilterDriver ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0060 5628 IpInIp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0060 5628 IpInIp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0060 5628 IpNat ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0060 5628 IpNat ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0080 5628 IPSec ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0080 5628 IPSec ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0080 5628 IRENUM ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0080 5628 IRENUM ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0090 5628 isapnp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0090 5628 isapnp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0090 5628 Kbdclass ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0090 5628 Kbdclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0110 5628 kmixer ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0110 5628 kmixer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0110 5628 LmHosts ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0110 5628 LmHosts ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0130 5628 mdmxsdk ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0130 5628 mdmxsdk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0130 5628 Messenger ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0130 5628 Messenger ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0140 5628 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0140 5628 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0140 5628 mnmdd ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0140 5628 mnmdd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0160 5628 mnmsrvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0160 5628 mnmsrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0160 5628 Modem ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0160 5628 Modem ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0180 5628 Mouclass ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0180 5628 Mouclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0180 5628 mouhid ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0180 5628 mouhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0190 5628 MountMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0190 5628 MountMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0190 5628 MRxDAV ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0190 5628 MRxDAV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0210 5628 MSDTC ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0210 5628 MSDTC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0210 5628 Msfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0210 5628 Msfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0231 5628 MSKSSRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0231 5628 MSKSSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0231 5628 MSPCLOCK ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0231 5628 MSPCLOCK ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0241 5628 MSPQM ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0241 5628 MSPQM ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0241 5628 mssmbios ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0241 5628 mssmbios ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0261 5628 napagent ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0261 5628 napagent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0261 5628 NDIS ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0261 5628 NDIS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0281 5628 Ndisuio ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0281 5628 Ndisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0281 5628 NdisWan ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0281 5628 NdisWan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0291 5628 NetBIOS ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0291 5628 NetBIOS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0291 5628 NetBT ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0291 5628 NetBT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0291 5628 NetDDE ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0291 5628 NetDDE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0311 5628 NetDDEdsdm ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0311 5628 NetDDEdsdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0311 5628 Netlogon ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0311 5628 Netlogon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0331 5628 Netman ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0331 5628 Netman ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0331 5628 Npfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0331 5628 Npfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0341 5628 Ntfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0341 5628 Ntfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0341 5628 NtLmSsp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0341 5628 NtLmSsp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0361 5628 NtmsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0361 5628 NtmsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0361 5628 Null ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0361 5628 Null ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0381 5628 nv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0381 5628 nv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0381 5628 NwlnkFlt ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0381 5628 NwlnkFlt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0391 5628 NwlnkFwd ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0391 5628 NwlnkFwd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0391 5628 OMCI ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0391 5628 OMCI ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0411 5628 Parport ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0411 5628 Parport ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0411 5628 PartMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0411 5628 PartMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0421 5628 ParVdm ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0431 5628 ParVdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0431 5628 PCI ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0431 5628 PCI ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0441 5628 Pcmcia ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0441 5628 Pcmcia ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0441 5628 Point32 ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0441 5628 Point32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0461 5628 PolicyAgent ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0461 5628 PolicyAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0461 5628 PptpMiniport ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0461 5628 PptpMiniport ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0471 5628 ProtectedStorage ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0471 5628 ProtectedStorage ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0481 5628 PSched ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0481 5628 PSched ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0491 5628 Ptilink ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0491 5628 Ptilink ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0491 5628 pwd_2k ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0491 5628 pwd_2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0511 5628 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0511 5628 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0511 5628 RasAcd ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0511 5628 RasAcd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0521 5628 RasAuto ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0531 5628 RasAuto ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0531 5628 Rasl2tp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0531 5628 Rasl2tp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0541 5628 RasMan ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0541 5628 RasMan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0541 5628 RasPppoe ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0541 5628 RasPppoe ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0541 5628 Raspti ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0541 5628 Raspti ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0561 5628 Rdbss ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0561 5628 Rdbss ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0561 5628 RDPCDD ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0561 5628 RDPCDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0581 5628 RDSessMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0581 5628 RDSessMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0581 5628 redbook ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0581 5628 redbook ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0591 5628 RemoteAccess ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0591 5628 RemoteAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0591 5628 RpcLocator ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0591 5628 RpcLocator ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0611 5628 RSVP ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0611 5628 RSVP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0611 5628 SamSs ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0611 5628 SamSs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0631 5628 SCardSvr ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0631 5628 SCardSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0631 5628 Schedule ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0631 5628 Schedule ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0641 5628 Secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0641 5628 Secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0641 5628 seclogon ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0641 5628 seclogon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0661 5628 SENS ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0661 5628 SENS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0661 5628 Serenum ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0661 5628 Serenum ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0671 5628 Serial ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0671 5628 Serial ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0671 5628 Sfloppy ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0671 5628 Sfloppy ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0691 5628 SharedAccess ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0691 5628 SharedAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0691 5628 splitter ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0691 5628 splitter ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0711 5628 sr ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0711 5628 sr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0711 5628 srservice ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0711 5628 srservice ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0731 5628 SSDPSRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0731 5628 SSDPSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0731 5628 stisvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0731 5628 stisvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0741 5628 swenum ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0741 5628 swenum ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0751 5628 swmidi ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0751 5628 swmidi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0761 5628 sysaudio ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0761 5628 sysaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0761 5628 SysmonLog ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0761 5628 SysmonLog ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0781 5628 TapiSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0781 5628 TapiSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0781 5628 TDPIPE ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0781 5628 TDPIPE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0801 5628 TDTCP ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0801 5628 TDTCP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0801 5628 TermDD ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0801 5628 TermDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0801 5628 TermService ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0801 5628 TermService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0811 5628 TrkWks ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0811 5628 TrkWks ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0811 5628 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0811 5628 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0831 5628 Udfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0831 5628 Udfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0831 5628 Update ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0831 5628 Update ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0851 5628 upnphost ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0851 5628 upnphost ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0851 5628 UPS ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0851 5628 UPS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0861 5628 usbhub ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0861 5628 usbhub ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0861 5628 usbprint ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0861 5628 usbprint ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0881 5628 usbscan ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0881 5628 usbscan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0881 5628 USBSTOR ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0881 5628 USBSTOR ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0891 5628 usbuhci ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0901 5628 usbuhci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0901 5628 VgaSave ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0901 5628 VgaSave ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0911 5628 VolSnap ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0911 5628 VolSnap ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0911 5628 VSS ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0911 5628 VSS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0932 5628 W32Time ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0932 5628 W32Time ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0932 5628 Wanarp ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0932 5628 Wanarp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0952 5628 wdmaud ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0952 5628 wdmaud ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0952 5628 WebClient ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0952 5628 WebClient ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0962 5628 winachsf ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0962 5628 winachsf ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0962 5628 winmgmt ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0962 5628 winmgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0982 5628 WLNdis50 ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0982 5628 WLNdis50 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:42.0982 5628 WLSetupSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:42.0982 5628 WLSetupSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0002 5628 WLSVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0002 5628 WLSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0002 5628 WmdmPmSN ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0002 5628 WmdmPmSN ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0012 5628 WmiApSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0012 5628 WmiApSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0012 5628 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0012 5628 WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0032 5628 wscsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0032 5628 wscsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0032 5628 wuauserv ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0032 5628 wuauserv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0052 5628 WudfPf ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0052 5628 WudfPf ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0052 5628 WudfRd ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0052 5628 WudfRd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0052 5628 WudfSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0052 5628 WudfSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0062 5628 WZCSVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0062 5628 WZCSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:02:43.0062 5628 xmlprov ( UnsignedFile.Multi.Generic ) - skipped by user
19:02:43.0062 5628 xmlprov ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:03:23.0099 5624 Deinitialize success






I noticed the some of the results of the scans might not have produced their full effect since the computer in question is not connected to the internet.

#6 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:05:54 AM

Posted 17 June 2012 - 11:55 AM

Hi

Step 1

Please connect to internet


Step 2

Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/mbam-download.php to your desktop.

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to Update Malwarebytes'
    Anti-Malware
    and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#7 possum_ate_my_cat

possum_ate_my_cat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:54 PM

Posted 17 June 2012 - 02:21 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.17.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Becky :: RBDESIGNER [administrator]

6/17/2012 10:39:01 AM
mbam-log-2012-06-17 (10-39-01).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 261971
Time elapsed: 1 hour(s), 28 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 14
HKCR\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{53E0B6E8-A51D-448B-B692-40B67B285543} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{53E0B6E8-A51D-448B-B692-40B67B285543} (Adware.180Solutions) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (PUP.MyWebSearch) -> Quarantined and deleted successfully.
HKCU\Software\avsuite (Rogue.AntivirusSuite) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (PUP.MyWebSearch) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 2
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

Folders Detected: 1
C:\Program Files\FunWebProducts (PUP.MyWebSearch) -> Quarantined and deleted successfully.

Files Detected: 0
(No malicious items detected)

(end)

#8 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:05:54 AM

Posted 17 June 2012 - 02:52 PM

Hi

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.
Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#9 possum_ate_my_cat

possum_ate_my_cat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:54 PM

Posted 18 June 2012 - 12:36 AM

ESET Scan Results:

C:\Program Files\Uniblue\RegistryBooster\registrybooster.exe Win32/RegistryBooster application cleaned by deleting - quarantined

#10 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:05:54 AM

Posted 18 June 2012 - 07:04 PM

Hi

Ok no more signs of any more malware currently.

How is the computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#11 possum_ate_my_cat

possum_ate_my_cat
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:54 PM

Posted 18 June 2012 - 07:36 PM

Cool! It seems to be running a little faster now (which is saying something since it's a very old laptop with only 512mb ram and 1.2ghz cpu) and there are no dllhost.exe entries in the process list. The keyboard goes a little haywire sometimes, but that was the problem I was in the process of fixing when I found the dllhost entries in the first place. I'm pretty sure the keyboard problem is just a bad ribbon cable and I have a replacement on its way already.

I really appreciate all your help. I do have a couple of questions, though. You walked me through a lot of steps and scans, but I would really love to know why you chose those tools and scans in particular (as opposed to, say, super anti-spyware or Ad-aware or some other programs) and what you saw in each log file I posted. I started repairing computers (both hardware and software problems) about a year ago and I really want to know how to do all this stuff on my own so I won't have to waste your time again :)

Is there any chance you could walk me through, step by step, what went through your mind when you saw each of my posts? :clapping: :thumbsup:

#12 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:05:54 AM

Posted 19 June 2012 - 03:27 AM

Hi

Cool! It seems to be running a little faster now (which is saying something since it's a very old laptop with only 512mb ram and 1.2ghz cpu) and there are no dllhost.exe entries in the process list. The keyboard goes a little haywire sometimes, but that was the problem I was in the process of fixing when I found the dllhost entries in the first place. I'm pretty sure the keyboard problem is just a bad ribbon cable and I have a replacement on its way already.

Ok great :trumpet:

I really appreciate all your help. I do have a couple of questions, though. You walked me through a lot of steps and scans, but I would really love to know why you chose those tools and scans in particular (as opposed to, say, super anti-spyware or Ad-aware or some other programs) and what you saw in each log file I posted. I started repairing computers (both hardware and software problems) about a year ago and I really want to know how to do all this stuff on my own so I won't have to waste your time again :)

Is there any chance you could walk me through, step by step, what went through your mind when you saw each of my posts? :clapping: :thumbsup:

I'm sorry I don't have the time to explain each part in detail. If you are interested in how to identify and clean malware from computers, you may want to consider the Malware Removal Study Hall here.

-------------------------

Step 1

I see you have Registry Mechanic 10.0 installed.

I do not recommend using Registry 'cleaners'. If something is removed incorrectly it is very easy to end up with an unbootable computer!
Please uninstall this.

Step 2

Important Note: Your version of Firefox is out of date.

Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.

Please follow these steps to update Firefox:


Step 3

Important Note: Your version of Adobe Flash is out of date.

Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.

Uninstall Adobe Flash
  • Open Programs and Features or Add and Remove Programs by clicking the Start / Windows "Orb" button, clicking Control Panel, clicking Programs, and then clicking Programs and Features or Add and Remove Programs.
  • Select any program with Adobe Flash in the name, and then click Uninstall.
  • Repeat step 2 until no more programs containing Adobe Flash are visible.
Note: Some programs include the option to change or repair the program in addition to uninstalling it. but many simply offer the option to uninstall. To change a program, click
Change or Repair. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.

Please follow these steps to Install the latest Adobe flash player:



Step 4


Your version of Adobe Reader is outdated.

Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.

Please follow these steps to remove older version Adobe components and update:
  • Download the latest version of Adobe Reader Version X. and save it to your desktop.
  • Uncheck the "Free McAfee Security plan Plus" option or any other Toolbar you are offered
  • Click the download button at the bottom.
  • If you use Internet Explorer and do not wish to install the ActiveX element, simply click on the click here to download link on the next page.
  • Remove all older version of Adobe Reader: Go to Add/remove and uninstall all versions of Adobe Reader, Acrobat Reader and Adobe Acrobat.
    If you are unsure of how to use Add or Remove Programs (or Programs and Features), the please see this tutorial:How To Remove An Installed Program From Your Computer
  • Then from your desktop double-click on Adobe Reader to install the newest version.
    If using Windows Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the "Adobe Setup - Welcome" window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.

Your Adobe Reader is now up to date!



Step 5

Since you don't have Java SDK or Java RE installed, there is no need to have "Java Auto Updater (Version: 2.0.2.1)" installed at present.
-> You may as well uninstall this.


Step 6

I recommend you defragment your hard drive. Auslogics disk defrag is the software I use when defragmenting my disk.


---------------------

Good stuff, your computer appears to be clean! :thumbup2:

Let's do some clearing up

Please set your system to hide all hidden files.

  • Click Start, open My Computer, select the Tools menu and click Folder Options.
  • Select the View Tab. Under the Hidden files and folders heading,
    • Uncheck Show hidden files and folders.
    • Check: Hide file extensions for known file types.
    • Check: Hide protected operating system files (recommended) option.
  • Click Yes to confirm.

---------------------------------------------------------------------

Here's some advice on how you can keep your PC clean

Use and update your AntiVirus Software

You must have a good antivirus. There are plenty to choose from but I personally recommend the free options of Avast and Avira Antivir - though if you choose Avira you should make sure that you uncheck the box offering to install the Ask toolbar. If you want to purchase a security program then I recommend any of the following: AVG, Norton, McAfee, Kaspersky and ESET Nod32.

It is imperative that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out. If you use a commercial antivirus program you must make sure you keep renewing your subscription. Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.


Make sure your applications have all of their updates

Use this next program to check for updates for programs already on your system. Download Security Check by screen317 from here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A notepad document should open automatically, make sure that updates on any that are flagged are carried out as soon as possible

It is also possible for other programs on your computer to have security vulnerabilities that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector, Calendar of Updates., and FileHippo Update checker


Install an AntiSpyware Program

A highly recommended AntiSpyware program is SuperAntiSpyware. You can download the free Home Version. or the Pro version for a 15 day trial period.

Installing this or another recommended program will provide spyware & hijacker protection on your computer alongside your virus protection. You should scan your computer with an AntiSpyware program on a regular basis just as you would an antivirus software.

That's it, happy surfing!

Cheers,

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users