Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

IE only works in compatibility view


  • Please log in to reply
27 replies to this topic

#1 Erthera

Erthera

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 14 November 2012 - 03:15 PM

My issue started over a month ago. Everything was working fine...then suddenly the internet would only load google.com. I guess it wasn't completely "suddenly"....I downloaded chrome (on a whim). That is the only thing I can recall doing. It didn't work after I tried to use it. After days of searching and trying to figure it out, I reinstalled OS (XP Pro). After installing updates, I continued to have this problem. I tether from my android, and also "connect" the usb to get pics and things from phone to computer, and read that viruses can affect certain flash drives so I formatted and scanned my sd just to be sure. I have since reinstalled 3 times in the past month or so. My connection is really slow so updating is a task in itself. I lost 13 years worth of research and data (family pics, videos, etc.). I really don't care about that as such....I'm just frustrated with all this at this point. I installed McAfee about a week ago and it said it found and deleted a virus, but nothing has really changed. Okay, I'm kind of venting here and not being specific about the issue....I apologize. This is some of what's happening:
  • IE 8 only works in compatibility view. When not in this view, only google.com loads. I can load facebook by typing in https://www.facebook.com (as well as other similar sites). When google loads a search, I click and it loads....for-never :blink:
  • I can't click on the "login" on some sites (like tumblr)....nothing happens
  • I can't download some exe. files
  • Everything (internet and os) runs r-e-a-l-l-y-s-l-o-w....like really slow (it did not do this before...even with the slow connection)
  • I get error messages about different processes (not sure if that's the right term)
  • No other browser works (firefox, chrome)
  • Some MS updates won't install
  • Some applications cannot be updated - I had AVG before McAfee and I had to install an older version of AVG because it said I did not have necessary files/updates to install the newer version...McAfee seems to be running "fine"...in spite of
  • It seems I have to give permission to run active x/java (which I'm sure is a "settings" issue, but I don't know how to correct this)
I'm really at a lost at this point...I've been searching and searching and trying different things. One thing I remember vividly is running Gmer....it would get to a certain point and reboot the system. I could only run it completely in safemode (with no results)
I also cannot use the internet in safemode because of my tethering my phone (my device is not read in safemode).
I'm not sure if I have a virus or not, but something is definitely not together here, lol. If anyone can help, I would really appreciate it....apologies for the venting again....and Thanks in advance

BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 14 November 2012 - 04:55 PM

Hello,

I will be helping you with your problems

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of hartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download Rkill by Grinler from Link 1 and save it to your desktop.

Link 1
Link 2 (renamed Rkill)

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If that does not work: delete the file, then download and use the one provided in Link 2 above.
  • If that does not work: repeat the process and attempt to use one of the remaining links under RKill download links here until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.

[*]Please post the log created by rkill in your next reply.


:step2:

Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/mbam-download.php to your desktop.

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to Update Malwarebytes'
    Anti-Malware
    and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.

If requested by MBAM, restart the computer.

The log can also be found here:
C:\Documents and Settings\<Username>\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step3:

How is your computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 14 November 2012 - 09:13 PM

Hello dev00790 :thumbsup: ! Thank you so much for helping me with this. I was unable to load pages (even in compatibility mode) after running Rkill and MBAM. I reset IE and deleted history, cookies, etc. What was really weird is that I could not load bleepingcomputer.com....even on my phone (both read: HTTP ERROR: 504). I also had a error message pop up. It read: McAfee Service Host has encountered a problem and needs to close. We are sorry for the inconvenience..yada yada yada. Anyways, here is the logs for Rkill and MBAM:

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/14/2012 05:25:04 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Firewall Disabled

[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

* RpcSs => %SystemRoot%\system32\svchost.exe -k rpcss [Incorrect ImagePath]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 11/14/2012 05:27:06 PM
Execution time: 0 hours(s), 2 minute(s), and 1 seconds(s)

*END Rkill*


Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.14.07

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Rethea Iz'i :: RETHEA-3102873 [administrator]

11/14/2012 6:00:43 PM
mbam-log-2012-11-14 (18-00-43).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 246595
Time elapsed: 1 hour(s), 45 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 2
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Oh....and I'm still having the "issues" :)
Which are:
1.) IE 8 only works in compatibility view. When not in this view, only google.com loads. I can load facebook by typing in https://www.facebook.com (as well as other similar sites). When google loads a search, I click and it loads....for-never

2.) I can't click on the "login" on some sites (like tumblr)....nothing happens

3.) I can't download some exe. files

4.) Everything (internet and os) runs r-e-a-l-l-y-s-l-o-w....like really slow (it did not do this before...even with the slow connection)

5.) I get error messages about different processes (not sure if that's the right term)

6.) No other browser works (firefox, chrome)

7.)It seems I have to give permission to run active x/java (which I'm sure is a "settings" issue, but I don't know how to correct this)

I have gotten 2 MS security updates since last night....they installed without error.

Edited by Erthera, 15 November 2012 - 08:04 AM.


#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 15 November 2012 - 03:19 PM

Hi

Please do the following next:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the box next to Loaded modules
  • If you are asked to reboot, then click Yes.

Next

  • Check the boxes next to Loaded modules, Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.


:step2:

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.


:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.


:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 15 November 2012 - 04:36 PM

Beautiful day to you :)....Here is the results for TDSSkiller.....the others will follow....

16:02:59.0578 2320 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
16:03:00.0343 2320 ============================================================
16:03:00.0343 2320 Current date / time: 2012/11/15 16:03:00.0343
16:03:00.0343 2320 SystemInfo:
16:03:00.0343 2320
16:03:00.0343 2320 OS Version: 5.1.2600 ServicePack: 3.0
16:03:00.0343 2320 Product type: Workstation
16:03:00.0343 2320 ComputerName: RETHEA-3102873
16:03:00.0343 2320 UserName: Rethea Iz'i
16:03:00.0343 2320 Windows directory: C:\WINDOWS
16:03:00.0343 2320 System windows directory: C:\WINDOWS
16:03:00.0343 2320 Processor architecture: Intel x86
16:03:00.0343 2320 Number of processors: 1
16:03:00.0343 2320 Page size: 0x1000
16:03:00.0343 2320 Boot type: Normal boot
16:03:00.0343 2320 ============================================================
16:03:06.0421 2320 BG loaded
16:03:07.0531 2320 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2861, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
16:03:07.0562 2320 ============================================================
16:03:07.0562 2320 \Device\Harddisk0\DR0:
16:03:07.0593 2320 MBR partitions:
16:03:07.0593 2320 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
16:03:07.0593 2320 ============================================================
16:03:07.0781 2320 C: <-> \Device\Harddisk0\DR0\Partition1
16:03:07.0984 2320 ============================================================
16:03:07.0984 2320 Initialize success
16:03:07.0984 2320 ============================================================
16:03:35.0578 2936 ============================================================
16:03:35.0578 2936 Scan started
16:03:35.0578 2936 Mode: Manual; SigCheck; TDLFS;
16:03:35.0578 2936 ============================================================
16:03:44.0406 2936 ================ Scan system memory ========================
16:03:44.0406 2936 System memory - ok
16:03:44.0531 2936 ================ Scan services =============================
16:03:48.0906 2936 Abiosdsk - ok
16:03:48.0968 2936 abp480n5 - ok
16:03:49.0078 2936 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] ac97intc C:\WINDOWS\system32\drivers\ac97intc.sys
16:03:50.0859 2936 ac97intc - ok
16:03:50.0921 2936 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:03:51.0593 2936 ACPI - ok
16:03:51.0671 2936 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
16:03:52.0296 2936 ACPIEC - ok
16:03:52.0453 2936 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:03:52.0796 2936 AdobeFlashPlayerUpdateSvc - ok
16:03:52.0828 2936 adpu160m - ok
16:03:52.0875 2936 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
16:03:53.0484 2936 aec - ok
16:03:53.0531 2936 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
16:03:53.0765 2936 AFD - ok
16:03:53.0796 2936 Aha154x - ok
16:03:53.0843 2936 aic78u2 - ok
16:03:53.0890 2936 aic78xx - ok
16:03:54.0000 2936 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
16:03:54.0562 2936 Alerter - ok
16:03:54.0609 2936 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
16:03:54.0937 2936 ALG - ok
16:03:54.0968 2936 AliIde - ok
16:03:55.0015 2936 amsint - ok
16:03:55.0109 2936 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
16:03:55.0625 2936 AppMgmt - ok
16:03:55.0671 2936 asc - ok
16:03:55.0734 2936 asc3350p - ok
16:03:55.0781 2936 asc3550 - ok
16:03:56.0062 2936 aspnet_state - ok
16:03:56.0140 2936 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:03:56.0687 2936 AsyncMac - ok
16:03:56.0750 2936 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
16:03:57.0359 2936 atapi - ok
16:03:57.0437 2936 Atdisk - ok
16:03:57.0500 2936 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:03:58.0703 2936 Atmarpc - ok
16:03:58.0781 2936 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
16:03:59.0234 2936 AudioSrv - ok
16:03:59.0296 2936 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
16:03:59.0796 2936 audstub - ok
16:03:59.0828 2936 avgtp - ok
16:03:59.0890 2936 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
16:04:00.0421 2936 Beep - ok
16:04:00.0546 2936 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
16:04:01.0250 2936 BITS - ok
16:04:01.0359 2936 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
16:04:01.0562 2936 Browser - ok
16:04:01.0687 2936 catchme - ok
16:04:01.0765 2936 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
16:04:02.0953 2936 cbidf2k - ok
16:04:03.0093 2936 cd20xrnt - ok
16:04:03.0171 2936 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
16:04:03.0750 2936 Cdaudio - ok
16:04:03.0812 2936 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
16:04:04.0281 2936 Cdfs - ok
16:04:04.0343 2936 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:04:05.0531 2936 Cdrom - ok
16:04:05.0625 2936 [ B1055457196E7EC9A9B65D4FAE5A4A53 ] cfwids C:\WINDOWS\system32\drivers\cfwids.sys
16:04:05.0703 2936 cfwids - ok
16:04:05.0734 2936 Changer - ok
16:04:05.0843 2936 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] cisvc C:\WINDOWS\system32\cisvc.exe
16:04:06.0312 2936 cisvc - ok
16:04:06.0421 2936 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
16:04:07.0000 2936 ClipSrv - ok
16:04:07.0046 2936 CmdIde - ok
16:04:07.0109 2936 COMSysApp - ok
16:04:07.0187 2936 Cpqarray - ok
16:04:07.0281 2936 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
16:04:07.0718 2936 CryptSvc - ok
16:04:07.0765 2936 dac2w2k - ok
16:04:07.0812 2936 dac960nt - ok
16:04:07.0921 2936 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:04:08.0046 2936 DcomLaunch - ok
16:04:08.0140 2936 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
16:04:08.0562 2936 Dhcp - ok
16:04:08.0625 2936 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
16:04:09.0078 2936 Disk - ok
16:04:09.0109 2936 dmadmin - ok
16:04:09.0234 2936 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
16:04:10.0781 2936 dmboot - ok
16:04:10.0828 2936 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
16:04:11.0531 2936 dmio - ok
16:04:11.0593 2936 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
16:04:12.0015 2936 dmload - ok
16:04:12.0109 2936 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
16:04:12.0546 2936 dmserver - ok
16:04:12.0609 2936 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
16:04:13.0156 2936 DMusic - ok
16:04:13.0218 2936 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:04:13.0312 2936 Dnscache - ok
16:04:13.0375 2936 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
16:04:13.0812 2936 Dot3svc - ok
16:04:13.0843 2936 dpti2o - ok
16:04:13.0921 2936 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:04:14.0390 2936 drmkaud - ok
16:04:14.0453 2936 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
16:04:15.0828 2936 EapHost - ok
16:04:15.0890 2936 [ 312B74DC21C0EE503905740852DAE28B ] easytether C:\WINDOWS\system32\DRIVERS\easytthr.sys
16:04:15.0953 2936 easytether - ok
16:04:16.0031 2936 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
16:04:16.0437 2936 ERSvc - ok
16:04:16.0500 2936 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
16:04:16.0578 2936 Eventlog - ok
16:04:16.0656 2936 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\System32\es.dll
16:04:16.0765 2936 EventSystem - ok
16:04:16.0828 2936 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
16:04:17.0375 2936 Fastfat - ok
16:04:17.0437 2936 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
16:04:17.0531 2936 FastUserSwitchingCompatibility - ok
16:04:17.0593 2936 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
16:04:18.0062 2936 Fdc - ok
16:04:18.0125 2936 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
16:04:19.0234 2936 Fips - ok
16:04:19.0296 2936 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:04:20.0484 2936 Flpydisk - ok
16:04:20.0546 2936 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
16:04:21.0062 2936 FltMgr - ok
16:04:21.0140 2936 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:04:21.0703 2936 Fs_Rec - ok
16:04:21.0765 2936 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:04:22.0203 2936 Ftdisk - ok
16:04:22.0265 2936 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
16:04:23.0718 2936 gameenum - ok
16:04:23.0781 2936 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:04:24.0390 2936 Gpc - ok
16:04:24.0593 2936 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:04:25.0671 2936 helpsvc - ok
16:04:25.0718 2936 HidServ - ok
16:04:25.0828 2936 [ D61E53E3FEC0C92BC8DD3969FAD63F87 ] HipShieldK C:\WINDOWS\system32\drivers\HipShieldK.sys
16:04:25.0968 2936 HipShieldK - ok
16:04:26.0015 2936 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
16:04:26.0453 2936 hkmsvc - ok
16:04:26.0500 2936 hpn - ok
16:04:26.0531 2936 hpt3xx - ok
16:04:26.0625 2936 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
16:04:26.0750 2936 HTTP - ok
16:04:26.0828 2936 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
16:04:27.0328 2936 HTTPFilter - ok
16:04:27.0359 2936 i2omgmt - ok
16:04:27.0406 2936 i2omp - ok
16:04:27.0484 2936 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:04:28.0640 2936 i8042prt - ok
16:04:28.0718 2936 [ 06B7EF73BA5F302EECC294CDF7E19702 ] i81x C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
16:04:29.0234 2936 i81x - ok
16:04:29.0359 2936 [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] iAimFP0 C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
16:04:30.0515 2936 iAimFP0 - ok
16:04:30.0578 2936 [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] iAimFP1 C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
16:04:31.0062 2936 iAimFP1 - ok
16:04:31.0109 2936 [ 03CE989D846C1AA81145CB22FCB86D06 ] iAimFP2 C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
16:04:31.0625 2936 iAimFP2 - ok
16:04:31.0687 2936 [ 525849B4469DE021D5D61B4DB9BE3A9D ] iAimFP3 C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
16:04:32.0171 2936 iAimFP3 - ok
16:04:32.0265 2936 [ 589C2BCDB5BD602BF7B63D210407EF8C ] iAimFP4 C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
16:04:32.0750 2936 iAimFP4 - ok
16:04:32.0843 2936 [ 0308AEF61941E4AF478FA1A0F83812F5 ] iAimFP5 C:\WINDOWS\system32\DRIVERS\wADV07nt.sys
16:04:33.0906 2936 iAimFP5 - ok
16:04:33.0953 2936 [ 714038A8AA5DE08E12062202CD7EAEB5 ] iAimFP6 C:\WINDOWS\system32\DRIVERS\wADV08nt.sys
16:04:35.0171 2936 iAimFP6 - ok
16:04:35.0234 2936 [ 7BB3AA595E4507A788DE1CDC63F4C8C4 ] iAimFP7 C:\WINDOWS\system32\DRIVERS\wADV09nt.sys
16:04:35.0750 2936 iAimFP7 - ok
16:04:35.0828 2936 [ D83BDD5C059667A2F647A6BE5703A4D2 ] iAimTV0 C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
16:04:36.0953 2936 iAimTV0 - ok
16:04:37.0000 2936 [ ED968D23354DAA0D7C621580C012A1F6 ] iAimTV1 C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
16:04:38.0156 2936 iAimTV1 - ok
16:04:38.0203 2936 iAimTV2 - ok
16:04:38.0265 2936 [ D738273F218A224C1DDAC04203F27A84 ] iAimTV3 C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
16:04:39.0296 2936 iAimTV3 - ok
16:04:39.0390 2936 [ 0052D118995CBAB152DAABE6106D1442 ] iAimTV4 C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
16:04:40.0453 2936 iAimTV4 - ok
16:04:40.0578 2936 [ 791CC45DE6E50445BE72E8AD6401FF45 ] iAimTV5 C:\WINDOWS\system32\DRIVERS\wATV10nt.sys
16:04:41.0765 2936 iAimTV5 - ok
16:04:41.0828 2936 [ 352FA0E98BC461CE1CE5D41F64DB558D ] iAimTV6 C:\WINDOWS\system32\DRIVERS\wATV06nt.sys
16:04:42.0328 2936 iAimTV6 - ok
16:04:42.0375 2936 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\drivers\Imapi.sys
16:04:43.0437 2936 Imapi - ok
16:04:43.0515 2936 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
16:04:43.0953 2936 ImapiService - ok
16:04:44.0015 2936 ini910u - ok
16:04:44.0078 2936 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
16:04:44.0531 2936 IntelIde - ok
16:04:44.0578 2936 [ 3BB22519A194418D5FEC05D800A19AD0 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
16:04:45.0734 2936 ip6fw - ok
16:04:45.0812 2936 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:04:46.0828 2936 IpFilterDriver - ok
16:04:46.0906 2936 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:04:48.0109 2936 IpInIp - ok
16:04:48.0171 2936 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:04:48.0687 2936 IpNat - ok
16:04:48.0734 2936 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:04:49.0250 2936 IPSec - ok
16:04:49.0312 2936 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
16:04:49.0515 2936 IRENUM - ok
16:04:49.0609 2936 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:04:50.0062 2936 isapnp - ok
16:04:50.0187 2936 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
16:04:50.0281 2936 JavaQuickStarterService - ok
16:04:50.0328 2936 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:04:51.0484 2936 Kbdclass - ok
16:04:51.0546 2936 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
16:04:52.0031 2936 kmixer - ok
16:04:52.0093 2936 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
16:04:52.0265 2936 KSecDD - ok
16:04:52.0359 2936 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
16:04:52.0437 2936 lanmanserver - ok
16:04:52.0531 2936 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
16:04:52.0625 2936 lanmanworkstation - ok
16:04:52.0671 2936 lbrtfdc - ok
16:04:52.0812 2936 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
16:04:53.0265 2936 LmHosts - ok
16:04:53.0359 2936 [ FA2ED4A054360F3F873C15420F1F19CC ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
16:04:54.0390 2936 ltmodem5 - ok
16:04:55.0390 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:04:55.0453 2936 McAfee SiteAdvisor Service - ok
16:04:55.0531 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] McMPFSvc C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:04:55.0593 2936 McMPFSvc - ok
16:04:55.0656 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] mcmscsvc C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:04:55.0703 2936 mcmscsvc - ok
16:04:55.0781 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] McNaiAnn C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:04:55.0843 2936 McNaiAnn - ok
16:04:55.0937 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] McNASvc C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:04:55.0984 2936 McNASvc - ok
16:04:56.0156 2936 [ E63BF12007702D6AC5037AF1E0C6B1C9 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
16:04:56.0234 2936 McODS - ok
16:04:56.0296 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] McProxy C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:04:56.0375 2936 McProxy - ok
16:04:56.0484 2936 [ 381D3CEA75F8BAA8DAAB39BE1487C339 ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
16:04:56.0593 2936 McShield - ok
16:04:56.0718 2936 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:04:56.0843 2936 MDM - ok
16:04:56.0921 2936 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
16:04:57.0390 2936 Messenger - ok
16:04:57.0406 2936 mfeapfk - ok
16:04:57.0500 2936 [ 1C02357D120C86F6FCDE1310AEA0F859 ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
16:04:57.0593 2936 mfeavfk - ok
16:04:57.0625 2936 mfeavfk01 - ok
16:04:57.0703 2936 [ FAAFF1D9A5624F2EEB7FA74919CCE947 ] mfebopk C:\WINDOWS\system32\drivers\mfebopk.sys
16:04:57.0734 2936 mfebopk - ok
16:04:57.0796 2936 [ 90E6BF80BA485BD3A4D66EE2EF9CCD87 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
16:04:57.0890 2936 mfefire - ok
16:04:57.0968 2936 [ 0D71E107B63FE8923D4694117882B2A3 ] mfefirek C:\WINDOWS\system32\drivers\mfefirek.sys
16:04:58.0125 2936 mfefirek - ok
16:04:58.0250 2936 [ 2BDEE93EA2DE3D643219B76153A6FAC3 ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
16:04:58.0390 2936 mfehidk - ok
16:04:58.0453 2936 [ 5E03A60C4F8BEC6805AF19C787232F75 ] mfendisk C:\WINDOWS\system32\DRIVERS\mfendisk.sys
16:04:58.0937 2936 mfendisk - ok
16:04:59.0515 2936 [ 5E03A60C4F8BEC6805AF19C787232F75 ] mfendiskmp C:\WINDOWS\system32\DRIVERS\mfendisk.sys
16:04:59.0562 2936 mfendiskmp - ok
16:04:59.0625 2936 [ FC293834A4F45F90EC41DC843AEFA9F9 ] mferkdet C:\WINDOWS\system32\drivers\mferkdet.sys
16:04:59.0718 2936 mferkdet - ok
16:04:59.0781 2936 [ B0124A3DF04FC3BDE11EF812436A907D ] mfetdi2k C:\WINDOWS\system32\drivers\mfetdi2k.sys
16:04:59.0890 2936 mfetdi2k - ok
16:04:59.0953 2936 [ 00E9EFFF461D979BAF3A92F12C0820CE ] mfevtp C:\WINDOWS\system32\mfevtps.exe
16:05:00.0000 2936 mfevtp - ok
16:05:00.0093 2936 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
16:05:00.0609 2936 mnmdd - ok
16:05:00.0671 2936 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
16:05:01.0140 2936 mnmsrvc - ok
16:05:01.0234 2936 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
16:05:01.0718 2936 Modem - ok
16:05:01.0781 2936 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:05:02.0265 2936 Mouclass - ok
16:05:02.0343 2936 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
16:05:02.0781 2936 MountMgr - ok
16:05:02.0859 2936 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
16:05:02.0953 2936 MozillaMaintenance - ok
16:05:02.0984 2936 mraid35x - ok
16:05:03.0062 2936 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:05:03.0562 2936 MRxDAV - ok
16:05:03.0656 2936 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:05:03.0812 2936 MRxSmb - ok
16:05:03.0875 2936 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
16:05:04.0328 2936 MSDTC - ok
16:05:04.0390 2936 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:05:04.0796 2936 Msfs - ok
16:05:04.0843 2936 MSIServer - ok
16:05:04.0937 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] MSK80Service C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:05:04.0984 2936 MSK80Service - ok
16:05:05.0046 2936 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:05:05.0515 2936 MSKSSRV - ok
16:05:05.0562 2936 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:05:06.0453 2936 MSPCLOCK - ok
16:05:06.0515 2936 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:05:07.0625 2936 MSPQM - ok
16:05:07.0687 2936 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:05:08.0234 2936 mssmbios - ok
16:05:08.0328 2936 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] ms_mpu401 C:\WINDOWS\system32\drivers\msmpu401.sys
16:05:09.0421 2936 ms_mpu401 - ok
16:05:09.0515 2936 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
16:05:09.0703 2936 Mup - ok
16:05:09.0843 2936 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
16:05:10.0421 2936 napagent - ok
16:05:10.0546 2936 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
16:05:11.0015 2936 NDIS - ok
16:05:11.0093 2936 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:05:11.0234 2936 NdisTapi - ok
16:05:11.0281 2936 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:05:12.0609 2936 Ndisuio - ok
16:05:12.0734 2936 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:05:13.0750 2936 NdisWan - ok
16:05:13.0859 2936 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:05:14.0046 2936 NDProxy - ok
16:05:14.0125 2936 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:05:14.0625 2936 NetBIOS - ok
16:05:14.0703 2936 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:05:15.0812 2936 NetBT - ok
16:05:15.0875 2936 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
16:05:16.0531 2936 NetDDE - ok
16:05:16.0593 2936 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
16:05:17.0031 2936 NetDDEdsdm - ok
16:05:17.0093 2936 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
16:05:17.0734 2936 Netlogon - ok
16:05:17.0828 2936 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
16:05:18.0453 2936 Netman - ok
16:05:18.0515 2936 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
16:05:18.0671 2936 Nla - ok
16:05:18.0718 2936 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:05:19.0375 2936 Npfs - ok
16:05:19.0484 2936 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:05:21.0062 2936 Ntfs - ok
16:05:21.0281 2936 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
16:05:21.0843 2936 NtLmSsp - ok
16:05:22.0046 2936 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
16:05:22.0671 2936 NtmsSvc - ok
16:05:22.0718 2936 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
16:05:23.0453 2936 Null - ok
16:05:23.0531 2936 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:05:24.0140 2936 NwlnkFlt - ok
16:05:24.0203 2936 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:05:24.0781 2936 NwlnkFwd - ok
16:05:24.0859 2936 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:05:25.0031 2936 ose - ok
16:05:25.0093 2936 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
16:05:25.0734 2936 Parport - ok
16:05:25.0781 2936 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
16:05:26.0312 2936 PartMgr - ok
16:05:26.0453 2936 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
16:05:26.0953 2936 ParVdm - ok
16:05:27.0015 2936 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
16:05:27.0453 2936 PCI - ok
16:05:27.0484 2936 PCIDump - ok
16:05:27.0515 2936 PCIIde - ok
16:05:27.0609 2936 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
16:05:28.0156 2936 Pcmcia - ok
16:05:28.0218 2936 PDCOMP - ok
16:05:28.0296 2936 PDFRAME - ok
16:05:28.0343 2936 PDRELI - ok
16:05:28.0406 2936 PDRFRAME - ok
16:05:28.0468 2936 perc2 - ok
16:05:28.0515 2936 perc2hib - ok
16:05:28.0921 2936 [ F042EE4C8D66248D9B86DCF52ABAE416 ] PEVSystemStart C:\comefox\pev.3XE
16:05:35.0593 2936 PEVSystemStart ( UnsignedFile.Multi.Generic ) - warning
16:05:35.0593 2936 PEVSystemStart - detected UnsignedFile.Multi.Generic (1)
16:05:35.0796 2936 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
16:05:36.0031 2936 PlugPlay - ok
16:05:36.0546 2936 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
16:05:37.0312 2936 PolicyAgent - ok
16:05:37.0421 2936 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:05:38.0015 2936 PptpMiniport - ok
16:05:38.0062 2936 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
16:05:38.0625 2936 ProtectedStorage - ok
16:05:38.0687 2936 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
16:05:39.0531 2936 PSched - ok
16:05:39.0593 2936 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:05:40.0390 2936 Ptilink - ok
16:05:40.0421 2936 ql1080 - ok
16:05:40.0484 2936 Ql10wnt - ok
16:05:40.0546 2936 ql12160 - ok
16:05:40.0625 2936 ql1240 - ok
16:05:40.0718 2936 ql1280 - ok
16:05:40.0781 2936 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:05:41.0437 2936 RasAcd - ok
16:05:41.0531 2936 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:05:42.0250 2936 RasAuto - ok
16:05:42.0328 2936 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:05:42.0953 2936 Rasl2tp - ok
16:05:43.0062 2936 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:05:43.0843 2936 RasMan - ok
16:05:43.0921 2936 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:05:45.0375 2936 RasPppoe - ok
16:05:45.0437 2936 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
16:05:46.0406 2936 Raspti - ok
16:05:46.0453 2936 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:05:47.0078 2936 Rdbss - ok
16:05:47.0109 2936 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:05:47.0703 2936 RDPCDD - ok
16:05:47.0781 2936 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:05:48.0937 2936 rdpdr - ok
16:05:49.0062 2936 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
16:05:49.0218 2936 RDPWD - ok
16:05:49.0312 2936 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
16:05:49.0859 2936 RDSessMgr - ok
16:05:49.0937 2936 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
16:05:51.0390 2936 redbook - ok
16:05:51.0453 2936 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:05:52.0093 2936 RemoteAccess - ok
16:05:52.0187 2936 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
16:05:52.0843 2936 RemoteRegistry - ok
16:05:52.0953 2936 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\System32\locator.exe
16:05:53.0734 2936 RpcLocator - ok
16:05:53.0812 2936 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
16:05:54.0015 2936 RpcSs - ok
16:05:54.0140 2936 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
16:05:54.0656 2936 RSVP - ok
16:05:54.0781 2936 [ CF84B1F0E8B14D4120AAF9CF35CBB265 ] RTL8023xp C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
16:05:55.0828 2936 RTL8023xp - ok
16:05:56.0500 2936 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
16:05:57.0578 2936 rtl8139 - ok
16:05:57.0656 2936 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
16:05:58.0421 2936 SamSs - ok
16:05:58.0484 2936 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
16:05:59.0687 2936 SCardSvr - ok
16:05:59.0843 2936 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:06:00.0593 2936 Schedule - ok
16:06:00.0687 2936 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:06:01.0109 2936 Secdrv - ok
16:06:01.0171 2936 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
16:06:02.0156 2936 seclogon - ok
16:06:02.0234 2936 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
16:06:02.0968 2936 SENS - ok
16:06:03.0031 2936 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
16:06:03.0640 2936 serenum - ok
16:06:03.0765 2936 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
16:06:04.0765 2936 Serial - ok
16:06:04.0937 2936 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
16:06:05.0718 2936 Sfloppy - ok
16:06:05.0843 2936 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:06:06.0734 2936 SharedAccess - ok
16:06:06.0812 2936 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:06:07.0109 2936 ShellHWDetection - ok
16:06:07.0156 2936 Simbad - ok
16:06:07.0187 2936 Sparrow - ok
16:06:07.0609 2936 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
16:06:08.0359 2936 splitter - ok
16:06:08.0437 2936 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
16:06:08.0625 2936 Spooler - ok
16:06:08.0750 2936 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
16:06:09.0046 2936 sr - ok
16:06:09.0265 2936 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
16:06:09.0578 2936 srservice - ok
16:06:09.0703 2936 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:06:10.0031 2936 Srv - ok
16:06:10.0093 2936 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:06:10.0375 2936 SSDPSRV - ok
16:06:10.0515 2936 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
16:06:11.0296 2936 stisvc - ok
16:06:11.0390 2936 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
16:06:12.0937 2936 swenum - ok
16:06:13.0000 2936 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
16:06:14.0500 2936 swmidi - ok
16:06:14.0531 2936 SwPrv - ok
16:06:14.0656 2936 symc810 - ok
16:06:14.0843 2936 symc8xx - ok
16:06:14.0890 2936 sym_hi - ok
16:06:15.0000 2936 sym_u3 - ok
16:06:15.0093 2936 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
16:06:15.0937 2936 sysaudio - ok
16:06:16.0031 2936 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
16:06:16.0953 2936 SysmonLog - ok
16:06:17.0171 2936 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:06:17.0875 2936 TapiSrv - ok
16:06:17.0953 2936 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:06:18.0109 2936 Tcpip - ok
16:06:18.0171 2936 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
16:06:19.0406 2936 TDPIPE - ok
16:06:19.0453 2936 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
16:06:20.0093 2936 TDTCP - ok
16:06:20.0171 2936 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
16:06:21.0453 2936 TermDD - ok
16:06:21.0609 2936 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
16:06:22.0343 2936 TermService - ok
16:06:22.0625 2936 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
16:06:22.0843 2936 Themes - ok
16:06:22.0953 2936 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\System32\tlntsvr.exe
16:06:23.0359 2936 TlntSvr - ok
16:06:23.0390 2936 TosIde - ok
16:06:23.0562 2936 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
16:06:24.0375 2936 TrkWks - ok
16:06:24.0484 2936 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
16:06:26.0093 2936 Udfs - ok
16:06:26.0234 2936 ultra - ok
16:06:26.0375 2936 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
16:06:27.0046 2936 Update - ok
16:06:27.0125 2936 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
16:06:27.0500 2936 upnphost - ok
16:06:27.0562 2936 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
16:06:28.0140 2936 UPS - ok
16:06:28.0250 2936 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:06:28.0781 2936 usbccgp - ok
16:06:28.0828 2936 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:06:29.0437 2936 usbhub - ok
16:06:29.0515 2936 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:06:30.0656 2936 USBSTOR - ok
16:06:30.0750 2936 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:06:31.0609 2936 usbuhci - ok
16:06:31.0671 2936 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
16:06:33.0062 2936 VgaSave - ok
16:06:33.0109 2936 ViaIde - ok
16:06:33.0187 2936 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
16:06:34.0046 2936 VolSnap - ok
16:06:34.0125 2936 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
16:06:34.0531 2936 VSS - ok
16:06:34.0656 2936 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
16:06:35.0343 2936 W32Time - ok
16:06:35.0453 2936 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:06:37.0156 2936 Wanarp - ok
16:06:37.0250 2936 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
16:06:37.0578 2936 Wdf01000 - ok
16:06:37.0656 2936 WDICA - ok
16:06:37.0734 2936 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
16:06:38.0312 2936 wdmaud - ok
16:06:38.0453 2936 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:06:39.0062 2936 WebClient - ok
16:06:39.0156 2936 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:06:39.0687 2936 winmgmt - ok
16:06:39.0953 2936 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUsb.sys
16:06:40.0171 2936 WinUsb - ok
16:06:40.0218 2936 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
16:06:40.0562 2936 WmdmPmSN - ok
16:06:40.0640 2936 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
16:06:40.0890 2936 Wmi - ok
16:06:40.0968 2936 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
16:06:42.0234 2936 WmiApSrv - ok
16:06:42.0375 2936 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
16:06:42.0953 2936 WMPNetworkSvc - ok
16:06:43.0015 2936 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
16:06:44.0156 2936 WS2IFSL - ok
16:06:44.0265 2936 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
16:06:45.0031 2936 wscsvc - ok
16:06:45.0078 2936 WSearch - ok
16:06:45.0203 2936 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
16:06:45.0921 2936 wuauserv - ok
16:06:46.0000 2936 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:06:46.0218 2936 WudfPf - ok
16:06:46.0343 2936 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:06:46.0765 2936 WudfRd - ok
16:06:46.0875 2936 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
16:06:46.0937 2936 WudfSvc - ok
16:06:47.0046 2936 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
16:06:47.0703 2936 WZCSVC - ok
16:06:47.0765 2936 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
16:06:48.0734 2936 xmlprov - ok
16:06:49.0078 2936 ================ Scan global ===============================
16:06:49.0484 2936 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
16:06:49.0593 2936 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
16:06:49.0718 2936 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
16:06:49.0781 2936 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
16:06:49.0796 2936 [Global] - ok
16:06:49.0843 2936 ================ Scan MBR ==================================
16:06:49.0859 2936 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
16:06:51.0406 2936 \Device\Harddisk0\DR0 - ok
16:06:51.0453 2936 ================ Scan VBR ==================================
16:06:51.0484 2936 [ 5E148F6D697A0E53597885BBCA6A791F ] \Device\Harddisk0\DR0\Partition1
16:06:51.0500 2936 \Device\Harddisk0\DR0\Partition1 - ok
16:06:51.0531 2936 ================ Scan active images ========================
16:06:51.0546 2936 [ 312B74DC21C0EE503905740852DAE28B ] C:\WINDOWS\system32\drivers\easytthr.sys
16:06:51.0546 2936 C:\WINDOWS\system32\drivers\easytthr.sys - ok
16:06:51.0562 2936 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
16:06:51.0562 2936 C:\WINDOWS\system32\drivers\videoprt.sys - ok
16:06:51.0609 2936 [ 06B7EF73BA5F302EECC294CDF7E19702 ] C:\WINDOWS\system32\drivers\i81xnt5.sys
16:06:51.0609 2936 C:\WINDOWS\system32\drivers\i81xnt5.sys - ok
16:06:51.0656 2936 [ FA2ED4A054360F3F873C15420F1F19CC ] C:\WINDOWS\system32\drivers\ltmdmnt.sys
16:06:51.0656 2936 C:\WINDOWS\system32\drivers\ltmdmnt.sys - ok
16:06:51.0687 2936 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
16:06:51.0687 2936 C:\WINDOWS\system32\drivers\modem.sys - ok
16:06:51.0703 2936 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
16:06:51.0703 2936 C:\WINDOWS\system32\drivers\fdc.sys - ok
16:06:51.0750 2936 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
16:06:51.0750 2936 C:\WINDOWS\system32\drivers\parport.sys - ok
16:06:51.0781 2936 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
16:06:51.0781 2936 C:\WINDOWS\system32\drivers\serial.sys - ok
16:06:51.0828 2936 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
16:06:51.0828 2936 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
16:06:51.0859 2936 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
16:06:51.0859 2936 C:\WINDOWS\system32\drivers\serenum.sys - ok
16:06:51.0906 2936 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
16:06:51.0906 2936 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
16:06:51.0953 2936 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
16:06:51.0953 2936 C:\WINDOWS\system32\drivers\mouclass.sys - ok
16:06:51.0968 2936 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
16:06:51.0968 2936 C:\WINDOWS\system32\drivers\drmk.sys - ok
16:06:52.0000 2936 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
16:06:52.0000 2936 C:\WINDOWS\system32\drivers\ks.sys - ok
16:06:52.0046 2936 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
16:06:52.0046 2936 C:\WINDOWS\system32\drivers\portcls.sys - ok
16:06:52.0078 2936 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
16:06:52.0078 2936 C:\WINDOWS\system32\drivers\cdrom.sys - ok
16:06:52.0125 2936 [ 065639773D8B03F33577F6CDAEA21063 ] C:\WINDOWS\system32\drivers\gameenum.sys
16:06:52.0125 2936 C:\WINDOWS\system32\drivers\gameenum.sys - ok
16:06:52.0156 2936 [ CA3E22598F411199ADC2DFEE76CD0AE0 ] C:\WINDOWS\system32\drivers\msmpu401.sys
16:06:52.0156 2936 C:\WINDOWS\system32\drivers\msmpu401.sys - ok
16:06:52.0203 2936 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
16:06:52.0203 2936 C:\WINDOWS\system32\drivers\redbook.sys - ok
16:06:52.0218 2936 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
16:06:52.0218 2936 C:\WINDOWS\system32\drivers\usbport.sys - ok
16:06:52.0250 2936 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
16:06:52.0250 2936 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
16:06:52.0296 2936 [ 0F2D66D5F08EBE2F77BB904288DCF6F0 ] C:\WINDOWS\system32\drivers\ac97intc.sys
16:06:52.0296 2936 C:\WINDOWS\system32\drivers\ac97intc.sys - ok
16:06:52.0328 2936 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
16:06:52.0328 2936 C:\WINDOWS\system32\drivers\audstub.sys - ok
16:06:52.0375 2936 [ 5E03A60C4F8BEC6805AF19C787232F75 ] C:\WINDOWS\system32\drivers\mfendisk.sys
16:06:52.0375 2936 C:\WINDOWS\system32\drivers\mfendisk.sys - ok
16:06:52.0406 2936 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
16:06:52.0406 2936 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
16:06:52.0453 2936 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
16:06:52.0453 2936 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
16:06:52.0468 2936 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
16:06:52.0468 2936 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
16:06:52.0515 2936 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
16:06:52.0515 2936 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
16:06:52.0546 2936 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
16:06:52.0546 2936 C:\WINDOWS\system32\drivers\tdi.sys - ok
16:06:52.0593 2936 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
16:06:52.0593 2936 C:\WINDOWS\system32\drivers\msgpc.sys - ok
16:06:52.0625 2936 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
16:06:52.0625 2936 C:\WINDOWS\system32\drivers\psched.sys - ok
16:06:52.0671 2936 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
16:06:52.0671 2936 C:\WINDOWS\system32\drivers\raspptp.sys - ok
16:06:52.0718 2936 [ 1C02357D120C86F6FCDE1310AEA0F859 ] C:\WINDOWS\system32\drivers\mfeavfk.sys
16:06:52.0718 2936 C:\WINDOWS\system32\drivers\mfeavfk.sys - ok
16:06:52.0734 2936 [ 0D71E107B63FE8923D4694117882B2A3 ] C:\WINDOWS\system32\drivers\mfefirek.sys
16:06:52.0734 2936 C:\WINDOWS\system32\drivers\mfefirek.sys - ok
16:06:52.0765 2936 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
16:06:52.0765 2936 C:\WINDOWS\system32\drivers\ptilink.sys - ok
16:06:52.0828 2936 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
16:06:52.0828 2936 C:\WINDOWS\system32\drivers\raspti.sys - ok
16:06:52.0859 2936 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
16:06:52.0859 2936 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
16:06:52.0906 2936 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
16:06:52.0921 2936 C:\WINDOWS\system32\drivers\swenum.sys - ok
16:06:52.0968 2936 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
16:06:52.0968 2936 C:\WINDOWS\system32\drivers\termdd.sys - ok
16:06:52.0984 2936 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
16:06:52.0984 2936 C:\WINDOWS\system32\drivers\update.sys - ok
16:06:53.0046 2936 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
16:06:53.0046 2936 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
16:06:53.0093 2936 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
16:06:53.0109 2936 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
16:06:53.0140 2936 [ 791CC45DE6E50445BE72E8AD6401FF45 ] C:\WINDOWS\system32\drivers\watv10nt.sys
16:06:53.0140 2936 C:\WINDOWS\system32\drivers\watv10nt.sys - ok
16:06:53.0187 2936 [ 0308AEF61941E4AF478FA1A0F83812F5 ] C:\WINDOWS\system32\drivers\wadv07nt.sys
16:06:53.0187 2936 C:\WINDOWS\system32\drivers\wadv07nt.sys - ok
16:06:53.0234 2936 [ 714038A8AA5DE08E12062202CD7EAEB5 ] C:\WINDOWS\system32\drivers\wadv08nt.sys
16:06:53.0234 2936 C:\WINDOWS\system32\drivers\wadv08nt.sys - ok
16:06:53.0265 2936 [ 7BB3AA595E4507A788DE1CDC63F4C8C4 ] C:\WINDOWS\system32\drivers\wadv09nt.sys
16:06:53.0265 2936 C:\WINDOWS\system32\drivers\wadv09nt.sys - ok
16:06:53.0375 2936 [ D738273F218A224C1DDAC04203F27A84 ] C:\WINDOWS\system32\drivers\watv04nt.sys
16:06:53.0375 2936 C:\WINDOWS\system32\drivers\watv04nt.sys - ok
16:06:53.0421 2936 [ 352FA0E98BC461CE1CE5D41F64DB558D ] C:\WINDOWS\system32\drivers\watv06nt.sys
16:06:53.0437 2936 C:\WINDOWS\system32\drivers\watv06nt.sys - ok
16:06:53.0468 2936 [ 0052D118995CBAB152DAABE6106D1442 ] C:\WINDOWS\system32\drivers\wch7xxnt.sys
16:06:53.0468 2936 C:\WINDOWS\system32\drivers\wch7xxnt.sys - ok
16:06:53.0484 2936 [ D83BDD5C059667A2F647A6BE5703A4D2 ] C:\WINDOWS\system32\drivers\watv01nt.sys
16:06:53.0484 2936 C:\WINDOWS\system32\drivers\watv01nt.sys - ok
16:06:53.0531 2936 [ ED968D23354DAA0D7C621580C012A1F6 ] C:\WINDOWS\system32\drivers\watv02nt.sys
16:06:53.0531 2936 C:\WINDOWS\system32\drivers\watv02nt.sys - ok
16:06:53.0562 2936 [ 589C2BCDB5BD602BF7B63D210407EF8C ] C:\WINDOWS\system32\drivers\wvchntxx.sys
16:06:53.0578 2936 C:\WINDOWS\system32\drivers\wvchntxx.sys - ok
16:06:53.0609 2936 [ EB1F6BAB6C22EDE0BA551B527475F7E9 ] C:\WINDOWS\system32\drivers\wadv02nt.sys
16:06:53.0609 2936 C:\WINDOWS\system32\drivers\wadv02nt.sys - ok
16:06:53.0656 2936 [ 03CE989D846C1AA81145CB22FCB86D06 ] C:\WINDOWS\system32\drivers\wadv05nt.sys
16:06:53.0656 2936 C:\WINDOWS\system32\drivers\wadv05nt.sys - ok
16:06:53.0687 2936 [ 525849B4469DE021D5D61B4DB9BE3A9D ] C:\WINDOWS\system32\drivers\wsiintxx.sys
16:06:53.0687 2936 C:\WINDOWS\system32\drivers\wsiintxx.sys - ok
16:06:53.0734 2936 [ 7B5B44EFE5EB9DADFB8EE29700885D23 ] C:\WINDOWS\system32\drivers\wadv01nt.sys
16:06:53.0734 2936 C:\WINDOWS\system32\drivers\wadv01nt.sys - ok
16:06:53.0750 2936 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
16:06:53.0750 2936 C:\WINDOWS\system32\drivers\usbd.sys - ok
16:06:53.0796 2936 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
16:06:53.0796 2936 C:\WINDOWS\system32\drivers\usbhub.sys - ok
16:06:53.0828 2936 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
16:06:53.0828 2936 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
16:06:53.0875 2936 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
16:06:53.0875 2936 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
16:06:53.0906 2936 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
16:06:53.0906 2936 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
16:06:53.0953 2936 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
16:06:53.0953 2936 C:\WINDOWS\system32\drivers\beep.sys - ok
16:06:53.0984 2936 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
16:06:53.0984 2936 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
16:06:54.0015 2936 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
16:06:54.0015 2936 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
16:06:54.0046 2936 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
16:06:54.0046 2936 C:\WINDOWS\system32\drivers\null.sys - ok
16:06:54.0093 2936 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
16:06:54.0093 2936 C:\WINDOWS\system32\drivers\vga.sys - ok
16:06:54.0125 2936 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
16:06:54.0125 2936 C:\WINDOWS\system32\drivers\msfs.sys - ok
16:06:54.0171 2936 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
16:06:54.0171 2936 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
16:06:54.0203 2936 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
16:06:54.0203 2936 C:\WINDOWS\system32\drivers\ipsec.sys - ok
16:06:54.0250 2936 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
16:06:54.0250 2936 C:\WINDOWS\system32\drivers\npfs.sys - ok
16:06:54.0265 2936 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
16:06:54.0265 2936 C:\WINDOWS\system32\drivers\rasacd.sys - ok
16:06:54.0296 2936 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
16:06:54.0296 2936 C:\WINDOWS\system32\drivers\tcpip.sys - ok
16:06:54.0343 2936 [ B0124A3DF04FC3BDE11EF812436A907D ] C:\WINDOWS\system32\drivers\mfetdi2k.sys
16:06:54.0343 2936 C:\WINDOWS\system32\drivers\mfetdi2k.sys - ok
16:06:54.0375 2936 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
16:06:54.0375 2936 C:\WINDOWS\system32\drivers\ipnat.sys - ok
16:06:54.0421 2936 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
16:06:54.0421 2936 C:\WINDOWS\system32\drivers\netbt.sys - ok
16:06:54.0453 2936 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
16:06:54.0453 2936 C:\WINDOWS\system32\drivers\afd.sys - ok
16:06:54.0500 2936 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
16:06:54.0500 2936 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
16:06:54.0515 2936 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
16:06:54.0515 2936 C:\WINDOWS\system32\drivers\netbios.sys - ok
16:06:54.0546 2936 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
16:06:54.0546 2936 C:\WINDOWS\system32\drivers\wanarp.sys - ok
16:06:54.0593 2936 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
16:06:54.0593 2936 C:\WINDOWS\system32\drivers\rdbss.sys - ok
16:06:54.0625 2936 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
16:06:54.0625 2936 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
16:06:54.0671 2936 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
16:06:54.0671 2936 C:\WINDOWS\system32\drivers\imapi.sys - ok
16:06:54.0718 2936 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
16:06:54.0718 2936 C:\WINDOWS\system32\drivers\fips.sys - ok
16:06:54.0750 2936 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
16:06:54.0750 2936 C:\WINDOWS\system32\smss.exe - ok
16:06:54.0765 2936 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
16:06:54.0765 2936 C:\WINDOWS\system32\ntdll.dll - ok
16:06:54.0812 2936 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
16:06:54.0812 2936 C:\WINDOWS\system32\autochk.exe - ok
16:06:54.0843 2936 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
16:06:54.0843 2936 C:\WINDOWS\system32\drivers\cdfs.sys - ok
16:06:54.0890 2936 [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
16:06:54.0890 2936 C:\WINDOWS\system32\drivers\usbccgp.sys - ok
16:06:54.0921 2936 [ A32426D9B14A089EAA1D922E0C5801A9 ] C:\WINDOWS\system32\drivers\usbstor.sys
16:06:54.0921 2936 C:\WINDOWS\system32\drivers\usbstor.sys - ok
16:06:54.0968 2936 [ 399C974DDA25FD3E59F22BAB787F662B ] C:\WINDOWS\system32\drivers\wdfldr.sys
16:06:54.0968 2936 C:\WINDOWS\system32\drivers\wdfldr.sys - ok
16:06:55.0000 2936 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] C:\WINDOWS\system32\drivers\winusb.sys
16:06:55.0000 2936 C:\WINDOWS\system32\drivers\winusb.sys - ok
16:06:55.0031 2936 [ D918617B46457B9AC28027722E30F647 ] C:\WINDOWS\system32\drivers\wdf01000.sys
16:06:55.0031 2936 C:\WINDOWS\system32\drivers\wdf01000.sys - ok
16:06:55.0062 2936 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
16:06:55.0062 2936 C:\WINDOWS\system32\drivers\wmilib.sys - ok
16:06:55.0109 2936 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
16:06:55.0109 2936 C:\WINDOWS\system32\drivers\atapi.sys - ok
16:06:55.0140 2936 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
16:06:55.0140 2936 C:\WINDOWS\system32\drivers\dxapi.sys - ok
16:06:55.0187 2936 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
16:06:55.0187 2936 C:\WINDOWS\system32\watchdog.sys - ok
16:06:55.0218 2936 [ 9A5E4D7820FF9A55B4639B32420B10EC ] C:\WINDOWS\system32\win32k.sys
16:06:55.0218 2936 C:\WINDOWS\system32\win32k.sys - ok
16:06:55.0250 2936 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
16:06:55.0250 2936 C:\WINDOWS\system32\csrsrv.dll - ok
16:06:55.0281 2936 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
16:06:55.0281 2936 C:\WINDOWS\system32\csrss.exe - ok
16:06:55.0312 2936 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
16:06:55.0312 2936 C:\WINDOWS\system32\basesrv.dll - ok
16:06:55.0359 2936 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
16:06:55.0359 2936 C:\WINDOWS\system32\winsrv.dll - ok
16:06:55.0390 2936 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
16:06:55.0390 2936 C:\WINDOWS\system32\gdi32.dll - ok
16:06:55.0437 2936 [ B921FB870C9AC0D509B2CCABBBBE95F3 ] C:\WINDOWS\system32\kernel32.dll
16:06:55.0437 2936 C:\WINDOWS\system32\kernel32.dll - ok
16:06:55.0468 2936 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
16:06:55.0468 2936 C:\WINDOWS\system32\user32.dll - ok
16:06:55.0515 2936 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
16:06:55.0515 2936 C:\WINDOWS\system32\drivers\dxg.sys - ok
16:06:55.0531 2936 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
16:06:55.0531 2936 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
16:06:55.0562 2936 [ 0D39773DA00E478B9DCACE3DE7EE0CBB ] C:\WINDOWS\system32\i81xdnt5.dll
16:06:55.0562 2936 C:\WINDOWS\system32\i81xdnt5.dll - ok
16:06:55.0609 2936 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
16:06:55.0609 2936 C:\WINDOWS\system32\vga.dll - ok
16:06:55.0656 2936 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
16:06:55.0656 2936 C:\WINDOWS\system32\winlogon.exe - ok
16:06:55.0687 2936 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
16:06:55.0687 2936 C:\WINDOWS\system32\advapi32.dll - ok
16:06:55.0734 2936 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
16:06:55.0734 2936 C:\WINDOWS\system32\rpcrt4.dll - ok
16:06:55.0765 2936 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
16:06:55.0765 2936 C:\WINDOWS\system32\authz.dll - ok
16:06:55.0796 2936 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
16:06:55.0796 2936 C:\WINDOWS\system32\secur32.dll - ok
16:06:55.0828 2936 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
16:06:55.0828 2936 C:\WINDOWS\system32\msvcrt.dll - ok
16:06:55.0875 2936 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
16:06:55.0875 2936 C:\WINDOWS\system32\crypt32.dll - ok
16:06:55.0906 2936 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
16:06:55.0906 2936 C:\WINDOWS\system32\msasn1.dll - ok
16:06:55.0953 2936 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
16:06:55.0953 2936 C:\WINDOWS\system32\nddeapi.dll - ok
16:06:55.0984 2936 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
16:06:55.0984 2936 C:\WINDOWS\system32\netapi32.dll - ok
16:06:56.0015 2936 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
16:06:56.0015 2936 C:\WINDOWS\system32\profmap.dll - ok
16:06:56.0046 2936 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
16:06:56.0046 2936 C:\WINDOWS\system32\userenv.dll - ok
16:06:56.0078 2936 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
16:06:56.0078 2936 C:\WINDOWS\system32\psapi.dll - ok
16:06:56.0125 2936 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
16:06:56.0125 2936 C:\WINDOWS\system32\regapi.dll - ok
16:06:56.0156 2936 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
16:06:56.0156 2936 C:\WINDOWS\system32\setupapi.dll - ok
16:06:56.0203 2936 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
16:06:56.0203 2936 C:\WINDOWS\system32\version.dll - ok
16:06:56.0234 2936 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
16:06:56.0234 2936 C:\WINDOWS\system32\winsta.dll - ok
16:06:56.0281 2936 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
16:06:56.0281 2936 C:\WINDOWS\system32\wintrust.dll - ok
16:06:56.0296 2936 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
16:06:56.0296 2936 C:\WINDOWS\system32\imagehlp.dll - ok
16:06:56.0328 2936 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
16:06:56.0328 2936 C:\WINDOWS\system32\ws2_32.dll - ok
16:06:56.0375 2936 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
16:06:56.0375 2936 C:\WINDOWS\system32\imm32.dll - ok
16:06:56.0406 2936 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
16:06:56.0406 2936 C:\WINDOWS\system32\ws2help.dll - ok
16:06:56.0453 2936 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
16:06:56.0453 2936 C:\WINDOWS\system32\kbdus.dll - ok
16:06:56.0484 2936 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
16:06:56.0484 2936 C:\WINDOWS\system32\msgina.dll - ok
16:06:56.0531 2936 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
16:06:56.0531 2936 C:\WINDOWS\system32\comctl32.dll - ok
16:06:56.0546 2936 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
16:06:56.0546 2936 C:\WINDOWS\system32\odbc32.dll - ok
16:06:56.0593 2936 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
16:06:56.0593 2936 C:\WINDOWS\system32\comdlg32.dll - ok
16:06:56.0625 2936 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
16:06:56.0625 2936 C:\WINDOWS\system32\shell32.dll - ok
16:06:56.0671 2936 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
16:06:56.0671 2936 C:\WINDOWS\system32\shlwapi.dll - ok
16:06:56.0703 2936 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
16:06:56.0703 2936 C:\WINDOWS\system32\sxs.dll - ok
16:06:56.0750 2936 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
16:06:56.0750 2936 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
16:06:56.0781 2936 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
16:06:56.0781 2936 C:\WINDOWS\system32\odbcint.dll - ok
16:06:56.0796 2936 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
16:06:56.0796 2936 C:\WINDOWS\system32\sfc.dll - ok
16:06:56.0843 2936 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
16:06:56.0843 2936 C:\WINDOWS\system32\shsvcs.dll - ok
16:06:56.0890 2936 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
16:06:56.0890 2936 C:\WINDOWS\system32\ole32.dll - ok
16:06:56.0937 2936 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
16:06:56.0937 2936 C:\WINDOWS\system32\sfc_os.dll - ok
16:06:57.0000 2936 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
16:06:57.0000 2936 C:\WINDOWS\system32\apphelp.dll - ok
16:06:57.0046 2936 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
16:06:57.0046 2936 C:\WINDOWS\system32\lsass.exe - ok
16:06:57.0156 2936 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
16:06:57.0171 2936 C:\WINDOWS\system32\services.exe - ok
16:06:57.0218 2936 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
16:06:57.0218 2936 C:\WINDOWS\system32\lsasrv.dll - ok
16:06:57.0250 2936 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
16:06:57.0250 2936 C:\WINDOWS\system32\ncobjapi.dll - ok
16:06:57.0281 2936 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
16:06:57.0281 2936 C:\WINDOWS\system32\msvcp60.dll - ok
16:06:57.0312 2936 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
16:06:57.0312 2936 C:\WINDOWS\system32\mpr.dll - ok
16:06:57.0343 2936 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
16:06:57.0343 2936 C:\WINDOWS\system32\scesrv.dll - ok
16:06:57.0390 2936 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
16:06:57.0390 2936 C:\WINDOWS\system32\ntdsapi.dll - ok
16:06:57.0421 2936 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
16:06:57.0421 2936 C:\WINDOWS\system32\umpnpmgr.dll - ok
16:06:57.0468 2936 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
16:06:57.0468 2936 C:\WINDOWS\system32\dnsapi.dll - ok
16:06:57.0515 2936 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
16:06:57.0515 2936 C:\WINDOWS\system32\shimeng.dll - ok
16:06:57.0578 2936 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
16:06:57.0578 2936 C:\WINDOWS\AppPatch\acadproc.dll - ok
16:06:57.0703 2936 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
16:06:57.0703 2936 C:\WINDOWS\system32\wldap32.dll - ok
16:06:57.0796 2936 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
16:06:57.0796 2936 C:\WINDOWS\system32\samlib.dll - ok
16:06:57.0828 2936 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
16:06:57.0828 2936 C:\WINDOWS\system32\samsrv.dll - ok
16:06:57.0859 2936 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
16:06:57.0859 2936 C:\WINDOWS\system32\cryptdll.dll - ok
16:06:57.0906 2936 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
16:06:57.0906 2936 C:\WINDOWS\AppPatch\acgenral.dll - ok
16:06:57.0937 2936 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
16:06:57.0937 2936 C:\WINDOWS\system32\winmm.dll - ok
16:06:57.0984 2936 [ 1B2BE5777F69A71778F52FFEE1C798D6 ] C:\WINDOWS\system32\oleaut32.dll
16:06:57.0984 2936 C:\WINDOWS\system32\oleaut32.dll - ok
16:06:58.0015 2936 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
16:06:58.0015 2936 C:\WINDOWS\system32\msacm32.dll - ok
16:06:58.0062 2936 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
16:06:58.0062 2936 C:\WINDOWS\system32\uxtheme.dll - ok
16:06:58.0078 2936 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
16:06:58.0078 2936 C:\WINDOWS\system32\msapsspc.dll - ok
16:06:58.0125 2936 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
16:06:58.0125 2936 C:\WINDOWS\system32\msvcrt40.dll - ok
16:06:58.0171 2936 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
16:06:58.0171 2936 C:\WINDOWS\system32\schannel.dll - ok
16:06:58.0250 2936 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
16:06:58.0250 2936 C:\WINDOWS\system32\digest.dll - ok
16:06:58.0328 2936 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
16:06:58.0328 2936 C:\WINDOWS\system32\msnsspc.dll - ok
16:06:58.0359 2936 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
16:06:58.0359 2936 C:\WINDOWS\system32\msctfime.ime - ok
16:06:58.0421 2936 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
16:06:58.0421 2936 C:\WINDOWS\system32\msprivs.dll - ok
16:06:58.0468 2936 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
16:06:58.0468 2936 C:\WINDOWS\system32\kerberos.dll - ok
16:06:58.0500 2936 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
16:06:58.0500 2936 C:\WINDOWS\system32\msv1_0.dll - ok
16:06:58.0546 2936 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
16:06:58.0546 2936 C:\WINDOWS\system32\sfcfiles.dll - ok
16:06:58.0578 2936 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
16:06:58.0578 2936 C:\WINDOWS\system32\iphlpapi.dll - ok
16:06:58.0609 2936 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
16:06:58.0609 2936 C:\WINDOWS\system32\netlogon.dll - ok
16:06:58.0640 2936 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
16:06:58.0640 2936 C:\WINDOWS\system32\w32time.dll - ok
16:06:58.0687 2936 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
16:06:58.0687 2936 C:\WINDOWS\system32\wdigest.dll - ok
16:06:58.0718 2936 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
16:06:58.0718 2936 C:\WINDOWS\system32\rsaenh.dll - ok
16:06:58.0781 2936 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
16:06:58.0781 2936 C:\WINDOWS\system32\winscard.dll - ok
16:06:58.0906 2936 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
16:06:58.0906 2936 C:\WINDOWS\system32\wtsapi32.dll - ok
16:06:59.0000 2936 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
16:06:59.0000 2936 C:\WINDOWS\system32\scecli.dll - ok
16:06:59.0062 2936 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
16:06:59.0062 2936 C:\WINDOWS\system32\svchost.exe - ok
16:06:59.0109 2936 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
16:06:59.0109 2936 C:\WINDOWS\system32\ntmarta.dll - ok
16:06:59.0140 2936 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
16:06:59.0140 2936 C:\WINDOWS\system32\rpcss.dll - ok
16:06:59.0171 2936 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
16:06:59.0171 2936 C:\WINDOWS\system32\xpsp2res.dll - ok
16:06:59.0203 2936 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
16:06:59.0203 2936 C:\WINDOWS\system32\eventlog.dll - ok
16:06:59.0234 2936 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
16:06:59.0234 2936 C:\WINDOWS\system32\mswsock.dll - ok
16:06:59.0281 2936 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
16:06:59.0281 2936 C:\WINDOWS\system32\hnetcfg.dll - ok
16:06:59.0312 2936 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
16:06:59.0312 2936 C:\WINDOWS\system32\wshtcpip.dll - ok
16:06:59.0359 2936 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
16:06:59.0359 2936 C:\WINDOWS\system32\winrnr.dll - ok
16:06:59.0421 2936 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
16:06:59.0421 2936 C:\WINDOWS\system32\rasadhlp.dll - ok
16:06:59.0437 2936 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
16:06:59.0437 2936 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
16:06:59.0484 2936 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
16:06:59.0484 2936 C:\WINDOWS\system32\dhcpcsvc.dll - ok
16:06:59.0546 2936 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
16:06:59.0546 2936 C:\WINDOWS\system32\dnsrslvr.dll - ok
16:06:59.0625 2936 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
16:06:59.0625 2936 C:\WINDOWS\system32\logonui.exe - ok
16:06:59.0687 2936 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
16:06:59.0687 2936 C:\WINDOWS\system32\cscdll.dll - ok
16:06:59.0718 2936 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
16:06:59.0718 2936 C:\WINDOWS\system32\dimsntfy.dll - ok
16:06:59.0750 2936 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
16:06:59.0750 2936 C:\WINDOWS\system32\wlnotify.dll - ok
16:06:59.0796 2936 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
16:06:59.0796 2936 C:\WINDOWS\system32\winspool.drv - ok
16:06:59.0828 2936 [ 02CF580510234E519736559A7F19EA20 ] C:\WINDOWS\system32\WgaLogon.dll
16:06:59.0828 2936 C:\WINDOWS\system32\WgaLogon.dll - ok
16:06:59.0875 2936 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
16:06:59.0875 2936 C:\WINDOWS\system32\clbcatq.dll - ok
16:06:59.0906 2936 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
16:06:59.0906 2936 C:\WINDOWS\system32\comres.dll - ok
16:06:59.0953 2936 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
16:06:59.0953 2936 C:\WINDOWS\system32\duser.dll - ok
16:06:59.0968 2936 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
16:06:59.0968 2936 C:\WINDOWS\system32\lmhsvc.dll - ok
16:07:00.0015 2936 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
16:07:00.0015 2936 C:\WINDOWS\system32\wzcsvc.dll - ok
16:07:00.0140 2936 [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
16:07:00.0140 2936 C:\WINDOWS\system32\msxml3.dll - ok
16:07:00.0234 2936 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
16:07:00.0234 2936 C:\WINDOWS\system32\msimg32.dll - ok
16:07:00.0296 2936 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
16:07:00.0296 2936 C:\WINDOWS\system32\oleacc.dll - ok
16:07:00.0343 2936 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
16:07:00.0343 2936 C:\WINDOWS\system32\rtutils.dll - ok
16:07:00.0375 2936 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
16:07:00.0375 2936 C:\WINDOWS\system32\wmi.dll - ok
16:07:00.0406 2936 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
16:07:00.0421 2936 C:\WINDOWS\system32\eapolqec.dll - ok
16:07:00.0453 2936 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
16:07:00.0453 2936 C:\WINDOWS\system32\atl.dll - ok
16:07:00.0484 2936 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
16:07:00.0484 2936 C:\WINDOWS\system32\qutil.dll - ok
16:07:00.0515 2936 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
16:07:00.0515 2936 C:\WINDOWS\system32\shgina.dll - ok
16:07:00.0546 2936 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
16:07:00.0546 2936 C:\WINDOWS\system32\dot3api.dll - ok
16:07:00.0593 2936 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
16:07:00.0593 2936 C:\WINDOWS\system32\esent.dll - ok
16:07:00.0625 2936 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
16:07:00.0625 2936 C:\WINDOWS\system32\rastls.dll - ok
16:07:00.0671 2936 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
16:07:00.0671 2936 C:\WINDOWS\system32\cryptui.dll - ok
16:07:00.0703 2936 [ FF1C14BCA1A797CE45DD359FA2C9EDA8 ] C:\WINDOWS\system32\wininet.dll
16:07:00.0703 2936 C:\WINDOWS\system32\wininet.dll - ok
16:07:00.0750 2936 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
16:07:00.0750 2936 C:\WINDOWS\system32\normaliz.dll - ok
16:07:00.0765 2936 [ 9371862D37E8F0AF21E4DEA95E867C39 ] C:\WINDOWS\system32\urlmon.dll
16:07:00.0765 2936 C:\WINDOWS\system32\urlmon.dll - ok
16:07:00.0796 2936 [ 0579CC3B95EDD1CE664A35E016F3DD58 ] C:\WINDOWS\system32\iertutil.dll
16:07:00.0796 2936 C:\WINDOWS\system32\iertutil.dll - ok
16:07:00.0843 2936 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
16:07:00.0843 2936 C:\WINDOWS\system32\mprapi.dll - ok
16:07:00.0875 2936 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
16:07:00.0875 2936 C:\WINDOWS\system32\activeds.dll - ok
16:07:00.0921 2936 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
16:07:00.0921 2936 C:\WINDOWS\system32\adsldpc.dll - ok
16:07:00.0953 2936 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
16:07:00.0953 2936 C:\WINDOWS\system32\rasapi32.dll - ok
16:07:01.0000 2936 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
16:07:01.0000 2936 C:\WINDOWS\system32\rasman.dll - ok
16:07:01.0015 2936 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
16:07:01.0015 2936 C:\WINDOWS\system32\tapi32.dll - ok
16:07:01.0062 2936 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
16:07:01.0062 2936 C:\WINDOWS\system32\riched20.dll - ok
16:07:01.0093 2936 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
16:07:01.0093 2936 C:\WINDOWS\system32\raschap.dll - ok
16:07:01.0140 2936 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
16:07:01.0140 2936 C:\WINDOWS\system32\schedsvc.dll - ok
16:07:01.0171 2936 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
16:07:01.0171 2936 C:\WINDOWS\system32\msidle.dll - ok
16:07:01.0203 2936 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
16:07:01.0203 2936 C:\WINDOWS\system32\spoolsv.exe - ok
16:07:01.0250 2936 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
16:07:01.0250 2936 C:\WINDOWS\system32\audiosrv.dll - ok
16:07:01.0265 2936 [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
16:07:01.0265 2936 C:\WINDOWS\system32\wkssvc.dll - ok
16:07:01.0312 2936 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] C:\WINDOWS\system32\drivers\parvdm.sys
16:07:01.0312 2936 C:\WINDOWS\system32\drivers\parvdm.sys - ok
16:07:01.0343 2936 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
16:07:01.0343 2936 C:\WINDOWS\system32\cryptsvc.dll - ok
16:07:01.0390 2936 [ A9A3DAA780CA6C9671A19D52456705B4 ] C:\WINDOWS\system32\alrsvc.dll
16:07:01.0390 2936 C:\WINDOWS\system32\alrsvc.dll - ok
16:07:01.0421 2936 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
16:07:01.0421 2936 C:\WINDOWS\system32\certcli.dll - ok
16:07:01.0468 2936 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
16:07:01.0468 2936 C:\WINDOWS\system32\es.dll - ok
16:07:01.0500 2936 [ B591E761161D1EF547D76EF236EAA6A5 ] C:\Program Files\Java\jre7\bin\jqs.exe
16:07:01.0500 2936 C:\Program Files\Java\jre7\bin\jqs.exe - ok
16:07:01.0531 2936 [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
16:07:01.0531 2936 C:\WINDOWS\system32\dmserver.dll - ok
16:07:01.0562 2936 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
16:07:01.0562 2936 C:\WINDOWS\system32\ersvc.dll - ok
16:07:01.0609 2936 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\pchsvc.dll
16:07:01.0609 2936 C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\pchsvc.dll - ok
16:07:01.0640 2936 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
16:07:01.0640 2936 C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
16:07:01.0687 2936 [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
16:07:01.0687 2936 C:\WINDOWS\system32\pdh.dll - ok
16:07:01.0718 2936 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
16:07:01.0718 2936 C:\WINDOWS\system32\odbcbcp.dll - ok
16:07:01.0765 2936 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
16:07:01.0765 2936 C:\WINDOWS\system32\srvsvc.dll - ok
16:07:01.0781 2936 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
16:07:01.0781 2936 C:\WINDOWS\system32\netmsg.dll - ok
16:07:01.0828 2936 [ ECAB006AC6136F1307E140B633CDB8C2 ] C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
16:07:01.0828 2936 C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe - ok
16:07:01.0859 2936 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
16:07:01.0859 2936 C:\WINDOWS\system32\drivers\srv.sys - ok
16:07:01.0906 2936 [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\WINDOWS\system32\msvcr100.dll
16:07:01.0906 2936 C:\WINDOWS\system32\msvcr100.dll - ok
16:07:01.0937 2936 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
16:07:01.0953 2936 C:\WINDOWS\system32\perfos.dll - ok
16:07:01.0984 2936 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
16:07:01.0984 2936 C:\WINDOWS\system32\perfdisk.dll - ok
16:07:02.0015 2936 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
16:07:02.0015 2936 C:\WINDOWS\system32\cscui.dll - ok
16:07:02.0046 2936 [ B1E8AF364027029272758C8E34776144 ] C:\Program Files\Common Files\Mcafee\MSC\LogCntrl.dll
16:07:02.0046 2936 C:\Program Files\Common Files\Mcafee\MSC\LogCntrl.dll - ok
16:07:02.0078 2936 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
16:07:02.0078 2936 C:\WINDOWS\system32\powrprof.dll - ok
16:07:02.0125 2936 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
16:07:02.0125 2936 C:\WINDOWS\system32\dpcdll.dll - ok
16:07:02.0156 2936 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
16:07:02.0156 2936 C:\WINDOWS\system32\wdmaud.drv - ok
16:07:02.0203 2936 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
16:07:02.0203 2936 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
16:07:02.0234 2936 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
16:07:02.0234 2936 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
16:07:02.0281 2936 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
16:07:02.0281 2936 C:\WINDOWS\system32\drivers\splitter.sys - ok
16:07:02.0296 2936 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
16:07:02.0296 2936 C:\WINDOWS\system32\drivers\aec.sys - ok
16:07:02.0328 2936 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
16:07:02.0328 2936 C:\WINDOWS\system32\drivers\swmidi.sys - ok
16:07:02.0375 2936 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
16:07:02.0375 2936 C:\WINDOWS\system32\drivers\dmusic.sys - ok
16:07:02.0406 2936 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
16:07:02.0406 2936 C:\WINDOWS\system32\drivers\kmixer.sys - ok
16:07:02.0453 2936 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
16:07:02.0453 2936 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
16:07:02.0484 2936 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
16:07:02.0484 2936 C:\WINDOWS\system32\msacm32.drv - ok
16:07:02.0531 2936 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
16:07:02.0531 2936 C:\WINDOWS\system32\midimap.dll - ok
16:07:02.0546 2936 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
16:07:02.0546 2936 C:\WINDOWS\system32\userinit.exe - ok
16:07:02.0593 2936 [ B1296D52B0D2096EC4759EEEB806D759 ] C:\WINDOWS\system32\WgaTray.exe
16:07:02.0593 2936 C:\WINDOWS\system32\WgaTray.exe - ok
16:07:02.0625 2936 [ 11F714F85530A2BD134074DC30E99FCA ] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
16:07:02.0625 2936 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE - ok
16:07:02.0671 2936 [ 1D702A6E768510F2623171C963AFAE36 ] C:\PROGRA~1\McAfee\SITEAD~1\SaSSHMod.dll
16:07:02.0671 2936 C:\PROGRA~1\McAfee\SITEAD~1\SaSSHMod.dll - ok
16:07:02.0703 2936 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
16:07:02.0703 2936 C:\WINDOWS\explorer.exe - ok
16:07:02.0750 2936 [ 00E9EFFF461D979BAF3A92F12C0820CE ] C:\WINDOWS\system32\mfevtps.exe
16:07:02.0750 2936 C:\WINDOWS\system32\mfevtps.exe - ok
16:07:02.0781 2936 [ F042EE4C8D66248D9B86DCF52ABAE416 ] C:\comefox\pev.3XE
16:07:02.0781 2936 C:\comefox\pev.3XE - ok
16:07:02.0796 2936 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
16:07:02.0796 2936 C:\WINDOWS\system32\netman.dll - ok
16:07:02.0843 2936 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
16:07:02.0843 2936 C:\WINDOWS\system32\netshell.dll - ok
16:07:02.0890 2936 [ F042EE4C8D66248D9B86DCF52ABAE416 ] C:\comefox\PEV.exe
16:07:02.0890 2936 C:\comefox\PEV.exe - ok
16:07:02.0921 2936 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
16:07:02.0921 2936 C:\WINDOWS\system32\ipsecsvc.dll - ok
16:07:02.0968 2936 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
16:07:02.0968 2936 C:\WINDOWS\system32\browseui.dll - ok
16:07:03.0000 2936 [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
16:07:03.0000 2936 C:\WINDOWS\system32\oakley.dll - ok
16:07:03.0046 2936 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
16:07:03.0046 2936 C:\WINDOWS\system32\winipsec.dll - ok
16:07:03.0062 2936 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
16:07:03.0062 2936 C:\WINDOWS\system32\cryptnet.dll - ok
16:07:03.0093 2936 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
16:07:03.0093 2936 C:\WINDOWS\system32\pstorsvc.dll - ok
16:07:03.0140 2936 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
16:07:03.0140 2936 C:\WINDOWS\system32\psbase.dll - ok
16:07:03.0171 2936 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
16:07:03.0171 2936 C:\WINDOWS\system32\sensapi.dll - ok
16:07:03.0218 2936 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
16:07:03.0218 2936 C:\WINDOWS\system32\dssenh.dll - ok
16:07:03.0250 2936 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
16:07:03.0250 2936 C:\WINDOWS\system32\winhttp.dll - ok
16:07:03.0296 2936 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
16:07:03.0296 2936 C:\WINDOWS\system32\credui.dll - ok
16:07:03.0312 2936 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
16:07:03.0312 2936 C:\WINDOWS\system32\shdocvw.dll - ok
16:07:03.0343 2936 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
16:07:03.0343 2936 C:\WINDOWS\system32\dot3dlg.dll - ok
16:07:03.0390 2936 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
16:07:03.0390 2936 C:\WINDOWS\system32\onex.dll - ok
16:07:03.0421 2936 [ CC26451A90025F6C55F64146C333DEA5 ] C:\WINDOWS\system32\LegitCheckControl.dll
16:07:03.0421 2936 C:\WINDOWS\system32\LegitCheckControl.dll - ok
16:07:03.0468 2936 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
16:07:03.0468 2936 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
16:07:03.0500 2936 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
16:07:03.0500 2936 C:\WINDOWS\system32\eappcfg.dll - ok
16:07:03.0546 2936 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
16:07:03.0546 2936 C:\WINDOWS\system32\termsrv.dll - ok
16:07:03.0562 2936 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
16:07:03.0562 2936 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
16:07:03.0609 2936 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
16:07:03.0609 2936 C:\WINDOWS\system32\eappprxy.dll - ok
16:07:03.0640 2936 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
16:07:03.0640 2936 C:\WINDOWS\system32\wzcsapi.dll - ok
16:07:03.0687 2936 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
16:07:03.0687 2936 C:\WINDOWS\system32\icaapi.dll - ok
16:07:03.0718 2936 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
16:07:03.0718 2936 C:\WINDOWS\system32\mstlsapi.dll - ok
16:07:03.0765 2936 [ 381D3CEA75F8BAA8DAAB39BE1487C339 ] C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.exe
16:07:03.0765 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.exe - ok
16:07:03.0796 2936 [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
16:07:03.0796 2936 C:\WINDOWS\system32\browser.dll - ok
16:07:03.0828 2936 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
16:07:03.0828 2936 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
16:07:03.0859 2936 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
16:07:03.0859 2936 C:\WINDOWS\system32\wuauserv.dll - ok
16:07:03.0906 2936 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
16:07:03.0906 2936 C:\WINDOWS\system32\vssapi.dll - ok
16:07:03.0937 2936 [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
16:07:03.0937 2936 C:\WINDOWS\system32\lz32.dll - ok
16:07:03.0984 2936 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
16:07:03.0984 2936 C:\WINDOWS\system32\wuaueng.dll - ok
16:07:04.0015 2936 [ C371805D1B8275723629CEB35ED39693 ] C:\Program Files\Common Files\Mcafee\SystemCore\lockdown.dll
16:07:04.0015 2936 C:\Program Files\Common Files\Mcafee\SystemCore\lockdown.dll - ok
16:07:04.0046 2936 [ 385E4239AB1AF0D2CE6FD2B21CB506CB ] C:\Program Files\Common Files\Mcafee\SystemCore\mytilus3.dll
16:07:04.0062 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mytilus3.dll - ok
16:07:04.0078 2936 [ 6C676764E24283135EEB5C768A23C3AA ] C:\Program Files\Common Files\Mcafee\SystemCore\mytilus3_worker.dll
16:07:04.0078 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mytilus3_worker.dll - ok
16:07:04.0109 2936 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
16:07:04.0109 2936 C:\WINDOWS\system32\shfolder.dll - ok
16:07:04.0156 2936 [ 52250FBE7F7BD0CAE40AB24238749AF1 ] C:\Program Files\Common Files\Mcafee\SystemCore\mytilus3_server.dll
16:07:04.0156 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mytilus3_server.dll - ok
16:07:04.0187 2936 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
16:07:04.0187 2936 C:\WINDOWS\system32\cabinet.dll - ok
16:07:04.0234 2936 [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
16:07:04.0234 2936 C:\WINDOWS\system32\mspatcha.dll - ok
16:07:04.0265 2936 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
16:07:04.0265 2936 C:\WINDOWS\system32\trkwks.dll - ok
16:07:04.0312 2936 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
16:07:04.0312 2936 C:\WINDOWS\system32\srsvc.dll - ok
16:07:04.0328 2936 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
16:07:04.0328 2936 C:\WINDOWS\system32\sens.dll - ok
16:07:04.0359 2936 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
16:07:04.0359 2936 C:\WINDOWS\system32\desk.cpl - ok
16:07:04.0406 2936 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
16:07:04.0406 2936 C:\WINDOWS\system32\themeui.dll - ok
16:07:04.0437 2936 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
16:07:04.0437 2936 C:\WINDOWS\system32\actxprxy.dll - ok
16:07:04.0484 2936 [ 3D3DB5F7531F974CE743283F3343F728 ] C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.dll
16:07:04.0484 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.dll - ok
16:07:04.0515 2936 [ BD68D05082F1F1D12A666965CFD6B77B ] C:\PROGRA~1\McAfee\VIRUSS~1\NaiAnn.dll
16:07:04.0515 2936 C:\PROGRA~1\McAfee\VIRUSS~1\NaiAnn.dll - ok
16:07:04.0562 2936 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
16:07:04.0562 2936 C:\WINDOWS\system32\seclogon.dll - ok
16:07:04.0578 2936 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
16:07:04.0578 2936 C:\WINDOWS\system32\comsvcs.dll - ok
16:07:04.0625 2936 [ CFE8E9431B0F231CC80473214BEBB872 ] C:\Program Files\Common Files\Mcafee\SystemCore\ftl.dll
16:07:04.0625 2936 C:\Program Files\Common Files\Mcafee\SystemCore\ftl.dll - ok
16:07:04.0656 2936 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
16:07:04.0656 2936 C:\WINDOWS\system32\colbact.dll - ok
16:07:04.0703 2936 [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
16:07:04.0703 2936 C:\WINDOWS\system32\mtxclu.dll - ok
16:07:04.0734 2936 [ BC83108B18756547013ED443B8CDB31B ] C:\WINDOWS\system32\msvcp100.dll
16:07:04.0734 2936 C:\WINDOWS\system32\msvcp100.dll - ok
16:07:04.0781 2936 [ B6378BC366638D27EA1736F76B276DBF ] C:\Program Files\Common Files\Mcafee\SystemCore\mfeelama.dll
16:07:04.0781 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfeelama.dll - ok
16:07:04.0812 2936 [ 90E6BF80BA485BD3A4D66EE2EF9CCD87 ] C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe
16:07:04.0812 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe - ok
16:07:04.0843 2936 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
16:07:04.0843 2936 C:\WINDOWS\system32\wsock32.dll - ok
16:07:04.0875 2936 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
16:07:04.0875 2936 C:\WINDOWS\system32\clusapi.dll - ok
16:07:04.0921 2936 [ 2523EA6AE5062C75C97D44A5CF418045 ] C:\Program Files\Common Files\Mcafee\SystemCore\mfehida.dll
16:07:04.0921 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfehida.dll - ok
16:07:04.0953 2936 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
16:07:04.0953 2936 C:\WINDOWS\system32\resutils.dll - ok
16:07:05.0000 2936 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
16:07:05.0000 2936 C:\WINDOWS\system32\wups.dll - ok
16:07:05.0031 2936 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
16:07:05.0031 2936 C:\WINDOWS\system32\wups2.dll - ok
16:07:05.0078 2936 [ 45598A3648AD9C6806B2FF76EFD00414 ] C:\Program Files\Common Files\Mcafee\SystemCore\mfevtpa.dll
16:07:05.0078 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfevtpa.dll - ok
16:07:05.0093 2936 [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
16:07:05.0093 2936 C:\WINDOWS\system32\ipnathlp.dll - ok
16:07:05.0125 2936 [ 7778BDFA3F6F6FBA0E75B9594098F737 ] C:\WINDOWS\system32\searchindexer.exe
16:07:05.0125 2936 C:\WINDOWS\system32\searchindexer.exe - ok
16:07:05.0171 2936 [ 994AD0D8550B8B26990A6E3AA0791502 ] C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll
16:07:05.0171 2936 C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll - ok
16:07:05.0203 2936 [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
16:07:05.0203 2936 C:\WINDOWS\system32\wscsvc.dll - ok
16:07:05.0250 2936 [ 7DED7521EB8B8D56DADCD044D1B77709 ] C:\PROGRA~1\McAfee\SITEAD~1\saupkeep.dll
16:07:05.0250 2936 C:\PROGRA~1\McAfee\SITEAD~1\saupkeep.dll - ok
16:07:05.0281 2936 [ 0CBD1906F74BEB539FCEF6493095B933 ] C:\WINDOWS\system32\tquery.dll
16:07:05.0281 2936 C:\WINDOWS\system32\tquery.dll - ok
16:07:05.0328 2936 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
16:07:05.0328 2936 C:\WINDOWS\system32\msi.dll - ok
16:07:05.0343 2936 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
16:07:05.0343 2936 C:\WINDOWS\system32\netcfgx.dll - ok
16:07:05.0390 2936 [ D573DEB87CB2DF4E5116D2A4E284EAB4 ] C:\WINDOWS\system32\ieframe.dll
16:07:05.0390 2936 C:\WINDOWS\system32\ieframe.dll - ok
16:07:05.0421 2936 [ 12E33DD823D74680DE6F33BFA359EFB3 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
16:07:05.0421 2936 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe - ok
16:07:05.0468 2936 [ 01B5795F1B9D772AD71585EA0DCD9A57 ] C:\Program Files\Common Files\Mcafee\SystemCore\mfeavfa.dll
16:07:05.0468 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfeavfa.dll - ok
16:07:05.0500 2936 [ 89D74683C859B7982056D15938BACA3E ] C:\WINDOWS\system32\propsys.dll
16:07:05.0500 2936 C:\WINDOWS\system32\propsys.dll - ok
16:07:05.0546 2936 [ C0F7C25EEFB1C5FD554AAA801201A83C ] C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll
16:07:05.0546 2936 C:\Program Files\Malwarebytes' Anti-Malware\mbam.dll - ok
16:07:05.0578 2936 [ 80A617849B004D1C6C4BEAB7AA86F021 ] C:\Program Files\McAfee\VirusScan\Engine\5500.1093\mcscan32.dll
16:07:05.0578 2936 C:\Program Files\McAfee\VirusScan\Engine\5500.1093\mcscan32.dll - ok
16:07:05.0609 2936 [ E65C5F612400B39D7AA83E7057D798C2 ] C:\WINDOWS\system32\mssrch.dll
16:07:05.0609 2936 C:\WINDOWS\system32\mssrch.dll - ok
16:07:05.0640 2936 [ CAC6F6F206C978DEEA928B9302646A09 ] C:\PROGRA~1\McAfee\MSC\mcmscsub.dll
16:07:05.0640 2936 C:\PROGRA~1\McAfee\MSC\mcmscsub.dll - ok
16:07:05.0687 2936 [ A8AD2773202A3913D1E1564BD5703183 ] C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll
16:07:05.0687 2936 C:\Program Files\Malwarebytes' Anti-Malware\mbamnet.dll - ok
16:07:05.0718 2936 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
16:07:05.0718 2936 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
16:07:05.0765 2936 [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
16:07:05.0765 2936 C:\WINDOWS\system32\wuauclt.exe - ok
16:07:05.0796 2936 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
16:07:05.0796 2936 C:\WINDOWS\system32\wbem\esscli.dll - ok
16:07:05.0843 2936 [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
16:07:05.0843 2936 C:\WINDOWS\system32\wbem\fastprox.dll - ok
16:07:05.0859 2936 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
16:07:05.0859 2936 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
16:07:05.0906 2936 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
16:07:05.0906 2936 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
16:07:05.0968 2936 [ C85670AB64068F8080998AEBA6C5019C ] C:\WINDOWS\system32\atl100.dll
16:07:05.0968 2936 C:\WINDOWS\system32\atl100.dll - ok
16:07:06.0062 2936 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
16:07:06.0062 2936 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
16:07:06.0156 2936 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
16:07:06.0156 2936 C:\WINDOWS\system32\spoolss.dll - ok
16:07:06.0203 2936 [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
16:07:06.0203 2936 C:\WINDOWS\system32\localspl.dll - ok
16:07:06.0234 2936 [ 2E50B9E0C0647475116247DCE4357161 ] C:\PROGRA~1\COMMON~1\Mcafee\MSC\mcutil\11_6_2~1\mcutil.dll
16:07:06.0234 2936 C:\PROGRA~1\COMMON~1\Mcafee\MSC\mcutil\11_6_2~1\mcutil.dll - ok
16:07:06.0281 2936 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
16:07:06.0281 2936 C:\WINDOWS\system32\cnbjmon.dll - ok
16:07:06.0312 2936 [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
16:07:06.0312 2936 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
16:07:06.0359 2936 [ 322FD75A97DBA67FC8F97A9957F857F1 ] C:\WINDOWS\system32\mdimon.dll
16:07:06.0359 2936 C:\WINDOWS\system32\mdimon.dll - ok
16:07:06.0375 2936 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
16:07:06.0375 2936 C:\WINDOWS\system32\pjlmon.dll - ok
16:07:06.0421 2936 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
16:07:06.0421 2936 C:\WINDOWS\system32\tcpmon.dll - ok
16:07:06.0453 2936 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
16:07:06.0453 2936 C:\WINDOWS\system32\usbmon.dll - ok
16:07:06.0500 2936 [ EA8647A21BCB56C5F15712D4B7407501 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
16:07:06.0500 2936 C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll - ok
16:07:06.0562 2936 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
16:07:06.0562 2936 C:\WINDOWS\system32\wbem\wbemess.dll - ok
16:07:06.0609 2936 [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
16:07:06.0609 2936 C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
16:07:06.0687 2936 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
16:07:06.0687 2936 C:\WINDOWS\system32\dbghelp.dll - ok
16:07:06.0765 2936 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
16:07:06.0765 2936 C:\WINDOWS\system32\win32spl.dll - ok
16:07:06.0812 2936 [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
16:07:06.0812 2936 C:\WINDOWS\system32\rundll32.exe - ok
16:07:06.0859 2936 [ 28E60C4EC03340EE7C5D51D79C19498B ] C:\PROGRA~1\COMMON~1\Mcafee\Core\mccoreps.dll
16:07:06.0859 2936 C:\PROGRA~1\COMMON~1\Mcafee\Core\mccoreps.dll - ok
16:07:06.0890 2936 [ E84B3CB28AB4D95C07738AE9937C2734 ] C:\PROGRA~1\McAfee\SITEAD~1\sahook.dll
16:07:06.0890 2936 C:\PROGRA~1\McAfee\SITEAD~1\sahook.dll - ok
16:07:06.0921 2936 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
16:07:06.0921 2936 C:\WINDOWS\system32\netrap.dll - ok
16:07:06.0968 2936 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
16:07:06.0968 2936 C:\WINDOWS\system32\inetpp.dll - ok
16:07:07.0000 2936 [ BDE77CEE27C8CB0B03C05B15DEC57648 ] C:\PROGRA~1\McAfee\VIRUSS~1\mvsap.dll
16:07:07.0000 2936 C:\PROGRA~1\McAfee\VIRUSS~1\mvsap.dll - ok
16:07:07.0046 2936 [ 43E4758953F454090CAD65C303796ED5 ] C:\WINDOWS\system32\query.dll
16:07:07.0046 2936 C:\WINDOWS\system32\query.dll - ok
16:07:07.0078 2936 [ AE2C6ECBA88D409AE9AEF11FFADC5DBB ] C:\PROGRA~1\McAfee\VIRUSS~1\McVsPs.dll
16:07:07.0078 2936 C:\PROGRA~1\McAfee\VIRUSS~1\McVsPs.dll - ok
16:07:07.0125 2936 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
16:07:07.0125 2936 C:\WINDOWS\system32\wuapi.dll - ok
16:07:07.0171 2936 [ 22571BE48A7AA4A3621D8A39FA51A56D ] C:\PROGRA~1\McAfee\MSK\msksrvr.dll
16:07:07.0171 2936 C:\PROGRA~1\McAfee\MSK\msksrvr.dll - ok
16:07:07.0281 2936 [ BEA4AEE74FEF171EB61DE1BAD8FAF427 ] C:\WINDOWS\system32\xmllite.dll
16:07:07.0281 2936 C:\WINDOWS\system32\xmllite.dll - ok
16:07:07.0375 2936 [ E1044D59CBC1FB5F22E70AA1B42D4497 ] C:\PROGRA~1\McAfee\VIRUSS~1\NaiAnnPs.dll
16:07:07.0375 2936 C:\PROGRA~1\McAfee\VIRUSS~1\NaiAnnPs.dll - ok
16:07:07.0468 2936 [ F0012F09428AD9952FF57C93ACAAB585 ] C:\Program Files\Common Files\Mcafee\McProxy\McProxy.dll
16:07:07.0468 2936 C:\Program Files\Common Files\Mcafee\McProxy\McProxy.dll - ok
16:07:07.0500 2936 [ FFB3115AA757ABEFBA7FBA90BAD5DD0A ] C:\WINDOWS\system32\en-US\tquery.dll.mui
16:07:07.0500 2936 C:\WINDOWS\system32\en-US\tquery.dll.mui - ok
16:07:07.0546 2936 [ 8F580BCC5296ECC9DC8A649D75BE6BA5 ] C:\WINDOWS\system32\msscb.dll
16:07:07.0546 2936 C:\WINDOWS\system32\msscb.dll - ok
16:07:07.0578 2936 [ 456C541F8B681E6638F040BB0C30A1D2 ] C:\PROGRA~1\McAfee\VIRUSS~1\MVsCfg.dll
16:07:07.0578 2936 C:\PROGRA~1\McAfee\VIRUSS~1\MVsCfg.dll - ok
16:07:07.0609 2936 [ C3333DD48A39C17689414275E09D7CC7 ] C:\PROGRA~1\COMMON~1\Mcafee\Core\McEvtBrk.dll
16:07:07.0609 2936 C:\PROGRA~1\COMMON~1\Mcafee\Core\McEvtBrk.dll - ok
16:07:07.0640 2936 [ F721987C5A710EF2EDA2CBA9CFFAFAF7 ] C:\Program Files\Common Files\Mcafee\MNA\McNASvc.dll
16:07:07.0640 2936 C:\Program Files\Common Files\Mcafee\MNA\McNASvc.dll - ok
16:07:07.0671 2936 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
16:07:07.0671 2936 C:\WINDOWS\system32\cmd.exe - ok
16:07:07.0718 2936 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
16:07:07.0718 2936 C:\WINDOWS\system32\wbem\ncprov.dll - ok
16:07:07.0750 2936 [ 1793CC660605F63B14FB96C7707F75BA ] C:\WINDOWS\system32\perfproc.dll
16:07:07.0750 2936 C:\WINDOWS\system32\perfproc.dll - ok
16:07:07.0875 2936 [ 8CD7F18D1EF09160FD201446CA70A2FD ] C:\PROGRA~1\McAfee\MPF\MpfSvc.dll
16:07:07.0875 2936 C:\PROGRA~1\McAfee\MPF\MpfSvc.dll - ok
16:07:07.0921 2936 [ F3918915280350371C6ABD3212677693 ] C:\PROGRA~1\McAfee\VIRUSS~1\mvslog.dll
16:07:07.0921 2936 C:\PROGRA~1\McAfee\VIRUSS~1\mvslog.dll - ok
16:07:08.0000 2936 [ 8BEAF2B4BCDE405AF7EC46A9E03B2D65 ] C:\WINDOWS\system32\mssprxy.dll
16:07:08.0000 2936 C:\WINDOWS\system32\mssprxy.dll - ok
16:07:08.0062 2936 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
16:07:08.0062 2936 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
16:07:08.0093 2936 [ 355DB4F5E585CA04C08519CE98CD5CA2 ] C:\PROGRA~1\McAfee\MPF\MpfEvt.dll
16:07:08.0093 2936 C:\PROGRA~1\McAfee\MPF\MpfEvt.dll - ok
16:07:08.0140 2936 [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
16:07:08.0140 2936 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
16:07:08.0187 2936 [ 4BE8D8FB641F43F4C4D6CF6AB5ADE968 ] C:\Program Files\Common Files\Mcafee\MSC\McRTMui.dll
16:07:08.0187 2936 C:\Program Files\Common Files\Mcafee\MSC\McRTMui.dll - ok
16:07:08.0203 2936 [ DEA595A9A6233F67558FF45D6C12BCC2 ] C:\Program Files\Common Files\Mcafee\SystemCore\mfeapfa.dll
16:07:08.0203 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfeapfa.dll - ok
16:07:08.0234 2936 [ 45AF9B0A6C6A09D848CAC557DD036971 ] C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll
16:07:08.0234 2936 C:\PROGRA~1\McAfee\MSC\McTelemetryAPI.dll - ok
16:07:08.0281 2936 [ D731447BD126670B2246550D14E8E7CC ] C:\Program Files\Common Files\Mcafee\SystemCore\mfebopa.dll
16:07:08.0281 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfebopa.dll - ok
16:07:08.0312 2936 [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
16:07:08.0312 2936 C:\WINDOWS\system32\alg.exe - ok
16:07:08.0359 2936 [ FAAFF1D9A5624F2EEB7FA74919CCE947 ] C:\WINDOWS\system32\drivers\mfebopk.sys
16:07:08.0359 2936 C:\WINDOWS\system32\drivers\mfebopk.sys - ok
16:07:08.0421 2936 [ 9FE5CC1913DB45FA859C8584E240B32E ] C:\PROGRA~1\McAfee\MPS\mps.dll
16:07:08.0421 2936 C:\PROGRA~1\McAfee\MPS\mps.dll - ok
16:07:08.0515 2936 [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\system32\licwmi.dll
16:07:08.0515 2936 C:\WINDOWS\system32\licwmi.dll - ok
16:07:08.0625 2936 [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
16:07:08.0625 2936 C:\WINDOWS\system32\wbem\framedyn.dll - ok
16:07:08.0687 2936 [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\system32\licdll.dll
16:07:08.0687 2936 C:\WINDOWS\system32\licdll.dll - ok
16:07:08.0734 2936 [ 5BB62538342112C885C0A692E2649077 ] C:\Program Files\Common Files\Mcafee\SystemCore\mfefwctl.dll
16:07:08.0734 2936 C:\Program Files\Common Files\Mcafee\SystemCore\mfefwctl.dll - ok
16:07:08.0765 2936 [ A21C2A8E47D40FCC40A2B1573E666A53 ] C:\Program Files\Java\jre7\bin\awt.dll
16:07:08.0765 2936 C:\Program Files\Java\jre7\bin\awt.dll - ok
16:07:08.0796 2936 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\DOCUME~1\RETHEA~1\LOCALS~1\temp\A95ECF81-66F1-4509-904F-4DD4BF962533.exe
16:07:08.0796 2936 C:\DOCUME~1\RETHEA~1\LOCALS~1\temp\A95ECF81-66F1-4509-904F-4DD4BF962533.exe - ok
16:07:08.0828 2936 [ AE02E6DAC99FA4DC642C71B10FEE9971 ] C:\Program Files\Common Files\Mcafee\MSC\LangSel.dll
16:07:08.0828 2936 C:\Program Files\Common Files\Mcafee\MSC\LangSel.dll - ok
16:07:08.0875 2936 [ 966CD21542A62F9AB237D84C451CC137 ] C:\Program Files\Java\jre7\bin\client\jvm.dll
16:07:08.0875 2936 C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
16:07:08.0906 2936 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
16:07:08.0906 2936 C:\WINDOWS\system32\linkinfo.dll - ok
16:07:08.0953 2936 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
16:07:08.0953 2936 C:\WINDOWS\system32\ntshrui.dll - ok
16:07:08.0984 2936 [ FD83993DBFEC4EEE7C13BC8FA74DFACC ] C:\PROGRA~1\McAfee\MSC\mclwapi.dll
16:07:08.0984 2936 C:\PROGRA~1\McAfee\MSC\mclwapi.dll - ok
16:07:09.0031 2936 [ A0AE7F043497C9971E9D7FE291099D40 ] C:\WINDOWS\system32\msxml6.dll
16:07:09.0031 2936 C:\WINDOWS\system32\msxml6.dll - ok
16:07:09.0140 2936 [ 2B6CB9E78F40B3A7B857548495A6D99D ] C:\PROGRA~1\McAfee\MPS\mpscfg.dll
16:07:09.0140 2936 C:\PROGRA~1\McAfee\MPS\mpscfg.dll - ok
16:07:09.0265 2936 [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
16:07:09.0265 2936 C:\WINDOWS\system32\verclsid.exe - ok
16:07:09.0328 2936 [ E1F76D6495FAADC9E5F18D9D8376517C ] C:\Program Files\Common Files\Mcafee\NMC\McNmcSrv.dll
16:07:09.0328 2936 C:\Program Files\Common Files\Mcafee\NMC\McNmcSrv.dll - ok
16:07:09.0359 2936 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
16:07:09.0359 2936 C:\WINDOWS\system32\webcheck.dll - ok
16:07:09.0406 2936 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
16:07:09.0406 2936 C:\WINDOWS\system32\mlang.dll - ok
16:07:09.0437 2936 [ 9DC90AE98BAF79D3849153AF4D1BD8FF ] C:\Program Files\Common Files\Mcafee\NMC\McDisc.dll
16:07:09.0437 2936 C:\Program Files\Common Files\Mcafee\NMC\McDisc.dll - ok
16:07:09.0484 2936 [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
16:07:09.0484 2936 C:\WINDOWS\system32\stobject.dll - ok
16:07:09.0515 2936 [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
16:07:09.0515 2936 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
16:07:09.0562 2936 [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
16:07:09.0562 2936 C:\WINDOWS\system32\batmeter.dll - ok
16:07:09.0578 2936 [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\system32\WPDShServiceObj.dll
16:07:09.0578 2936 C:\WINDOWS\system32\WPDShServiceObj.dll - ok
16:07:09.0609 2936 [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\system32\mydocs.dll
16:07:09.0609 2936 C:\WINDOWS\system32\mydocs.dll - ok
16:07:09.0656 2936 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
16:07:09.0656 2936 C:\WINDOWS\system32\cfgmgr32.dll - ok
16:07:09.0687 2936 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
16:07:09.0687 2936 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
16:07:09.0734 2936 [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
16:07:09.0734 2936 C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
16:07:09.0765 2936 [ 581A9FE27C17B1679085A066B069B65D ] C:\Program Files\McAfee.com\Agent\mcagent.exe
16:07:09.0765 2936 C:\Program Files\McAfee.com\Agent\mcagent.exe - ok
16:07:09.0812 2936 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\48680409.sys
16:07:09.0812 2936 C:\WINDOWS\system32\drivers\48680409.sys - ok
16:07:09.0828 2936 [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\system32\PortableDeviceApi.dll
16:07:09.0828 2936 C:\WINDOWS\system32\PortableDeviceApi.dll - ok
16:07:09.0890 2936 [ 8C0AFF34D1A0C55A8CB027304F9887FC ] C:\PROGRA~1\McAfee\MSK\mskengn.dll
16:07:09.0890 2936 C:\PROGRA~1\McAfee\MSK\mskengn.dll - ok
16:07:09.0921 2936 [ 90760987BCCCF34D05EF6093EC278A96 ] C:\Program Files\Java\jre7\bin\dcpr.dll
16:07:09.0921 2936 C:\Program Files\Java\jre7\bin\dcpr.dll - ok
16:07:09.0968 2936 [ 17A2142C1EBC307399E68E0352C216F2 ] C:\Program Files\McAfee\MSC\mcoemres.dll
16:07:09.0968 2936 C:\Program Files\McAfee\MSC\mcoemres.dll - ok
16:07:10.0000 2936 [ A518D3C9FB121F0F37F86B3F1F5D1C32 ] C:\Program Files\Common Files\Mcafee\NMC\McNDSv.dll
16:07:10.0000 2936 C:\Program Files\Common Files\Mcafee\NMC\McNDSv.dll - ok
16:07:10.0046 2936 [ F059A865048118A96F2FCBD1AFFDF252 ] C:\Program Files\Mobile Stream\EasyTether\easytthr.exe
16:07:10.0046 2936 C:\Program Files\Mobile Stream\EasyTether\easytthr.exe - ok
16:07:10.0078 2936 [ 88BEEF09C654252F3E46B6167B7F4ECB ] C:\WINDOWS\system32\msisip.dll
16:07:10.0078 2936 C:\WINDOWS\system32\msisip.dll - ok
16:07:10.0109 2936 [ 3A6D465F379E5C815F4AD565391E654C ] C:\WINDOWS\system32\wshext.dll
16:07:10.0109 2936 C:\WINDOWS\system32\wshext.dll - ok
16:07:10.0140 2936 [ D2D31D7A394A70040FCAC5F54A130FBA ] C:\Program Files\Java\jre7\bin\deploy.dll
16:07:10.0140 2936 C:\Program Files\Java\jre7\bin\deploy.dll - ok
16:07:10.0187 2936 [ 40FA2F035ED88108850757CA51DAD942 ] C:\PROGRA~1\MICROS~2\OFFICE11\MCPS.DLL
16:07:10.0187 2936 C:\PROGRA~1\MICROS~2\OFFICE11\MCPS.DLL - ok
16:07:10.0218 2936 [ 559D9CBFC29DEE2773B28D38851683BA ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
16:07:10.0218 2936 C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
16:07:10.0265 2936 [ 843D21A20736016E5613E4B51EA60D46 ] C:\WINDOWS\system32\winusb.dll
16:07:10.0265 2936 C:\WINDOWS\system32\winusb.dll - ok
16:07:10.0296 2936 [ C09775FEB73BDF16BB87A509C5FF12AD ] C:\Program Files\Java\jre7\bin\fontmanager.dll
16:07:10.0296 2936 C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
16:07:10.0328 2936 [ B5C9F63C01FCFEC3F64EC6A0940A1825 ] C:\Program Files\Windows Desktop Search\WindowsSearch.exe
16:07:10.0328 2936 C:\Program Files\Windows Desktop Search\WindowsSearch.exe - ok
16:07:10.0359 2936 [ F54B23B6A452B54317DE75FC4F799D2E ] C:\Program Files\McAfee\MSC\oemui.dll
16:07:10.0359 2936 C:\Program Files\McAfee\MSC\oemui.dll - ok
16:07:10.0390 2936 [ 516F2ED421D9689696D38D5B5F825370 ] C:\Program Files\McAfee\MSC\mcprlres.dll
16:07:10.0390 2936 C:\Program Files\McAfee\MSC\mcprlres.dll - ok
16:07:10.0437 2936 [ 54AE1E72FE79C0B68FD79EE19C6DF38A ] C:\PROGRA~1\COMMON~1\Mcafee\MSC\sqlite3.dll
16:07:10.0437 2936 C:\PROGRA~1\COMMON~1\Mcafee\MSC\sqlite3.dll - ok
16:07:10.0468 2936 [ BA8FDF82D0B1316D5EAF60F5A0498DE1 ] C:\WINDOWS\system32\UncDMS.dll
16:07:10.0468 2936 C:\WINDOWS\system32\UncDMS.dll - ok
16:07:10.0515 2936 [ D59A7119054D70FC745A1BF9C06DCC65 ] C:\WINDOWS\system32\oeph.dll
16:07:10.0515 2936 C:\WINDOWS\system32\oeph.dll - ok
16:07:10.0546 2936 [ 6E914EEDD145C5ACCE56F4D5F3D606FC ] C:\WINDOWS\system32\mssph.dll
16:07:10.0546 2936 C:\WINDOWS\system32\mssph.dll - ok
16:07:10.0593 2936 [ E81BBE78A8EF85ACD490B3E64EF63A7C ] C:\WINDOWS\system32\mapi32.dll
16:07:10.0593 2936 C:\WINDOWS\system32\mapi32.dll - ok
16:07:10.0609 2936 [ 43979C30662F322E720B50B3D95F5D95 ] C:\PROGRA~1\COMMON~1\Mcafee\HACKER~1\HWAPI.dll
16:07:10.0609 2936 C:\PROGRA~1\COMMON~1\Mcafee\HACKER~1\HWAPI.dll - ok
16:07:10.0656 2936 [ 56183FB6413B7C5CB42B8AC1541A4EE8 ] C:\Program Files\Windows Desktop Search\en-US\WindowsSearchRes.dll.mui
16:07:10.0656 2936 C:\Program Files\Windows Desktop Search\en-US\WindowsSearchRes.dll.mui - ok
16:07:10.0687 2936 [ CBFD0FB0A9491ED3F1BAB4C64A04D2F1 ] C:\Program Files\Windows Desktop Search\WindowsSearchRes.dll
16:07:10.0687 2936 C:\Program Files\Windows Desktop Search\WindowsSearchRes.dll - ok
16:07:10.0734 2936 [ F23A5D407B753F2E5E2BB6A95AB6D12B ] C:\Program Files\Windows Desktop Search\WdsMktTools.dll
16:07:10.0734 2936 C:\Program Files\Windows Desktop Search\WdsMktTools.dll - ok
16:07:10.0765 2936 [ B01860E256305C775C4678F66710AA60 ] C:\PROGRA~1\McAfee\MSC\McMscShm.dll
16:07:10.0765 2936 C:\PROGRA~1\McAfee\MSC\McMscShm.dll - ok
16:07:10.0812 2936 [ CDBBFFD3ADAA56C4C8E0A9690FE83476 ] C:\Program Files\Outlook Express\msoe.dll
16:07:10.0812 2936 C:\Program Files\Outlook Express\msoe.dll - ok
16:07:10.0843 2936 [ 0485AB01B862FB91C21D39BD60BDF2AC ] C:\WINDOWS\system32\msoert2.dll
16:07:10.0843 2936 C:\WINDOWS\system32\msoert2.dll - ok
16:07:10.0859 2936 [ 871888B4AA0CA343E73C81E94AD4ED93 ] C:\WINDOWS\system32\msoeacct.dll
16:07:10.0859 2936 C:\WINDOWS\system32\msoeacct.dll - ok
16:07:10.0906 2936 [ 57AA18B2896055E8CB269B19DD85E7F3 ] C:\WINDOWS\system32\inetcomm.dll
16:07:10.0906 2936 C:\WINDOWS\system32\inetcomm.dll - ok
16:07:10.0953 2936 [ 441086F355F0DEA94621984C9A3BE765 ] C:\WINDOWS\system32\acctres.dll
16:07:10.0953 2936 C:\WINDOWS\system32\acctres.dll - ok
16:07:10.0984 2936 [ A6F6923B46802785B9A47A03AE3CD8BF ] C:\WINDOWS\system32\inetres.dll
16:07:10.0984 2936 C:\WINDOWS\system32\inetres.dll - ok
16:07:11.0031 2936 [ 116AA2B169ABD0B620961CAFF0AEAC84 ] C:\Program Files\Outlook Express\msoeres.dll
16:07:11.0031 2936 C:\Program Files\Outlook Express\msoeres.dll - ok
16:07:11.0062 2936 [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
16:07:11.0062 2936 C:\WINDOWS\system32\upnp.dll - ok
16:07:11.0109 2936 [ E6D44BF4A7A11BC06520B8CE54128F7B ] C:\PROGRA~1\McAfee\MSC\mcsubmgr\11_6_4~1\mcsubmgr.dll
16:07:11.0109 2936 C:\PROGRA~1\McAfee\MSC\mcsubmgr\11_6_4~1\mcsubmgr.dll - ok
16:07:11.0125 2936 [ B98F28229D292B99FF449FF3647F31BA ] C:\Program Files\Java\jre7\bin\java.dll
16:07:11.0125 2936 C:\Program Files\Java\jre7\bin\java.dll - ok
16:07:11.0156 2936 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
16:07:11.0156 2936 C:\WINDOWS\system32\ssdpapi.dll - ok
16:07:11.0203 2936 [ 23C84DBECF3BD95687623F23BCD66441 ] C:\Program Files\Java\jre7\bin\javaw.exe
16:07:11.0218 2936 C:\Program Files\Java\jre7\bin\javaw.exe - ok
16:07:11.0265 2936 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
16:07:11.0265 2936 C:\WINDOWS\system32\drivers\http.sys - ok
16:07:11.0296 2936 [ 0384126B913AC2E090804C642302945E ] C:\Program Files\Java\jre7\bin\jp2native.dll
16:07:11.0296 2936 C:\Program Files\Java\jre7\bin\jp2native.dll - ok
16:07:11.0343 2936 [ 79AED0CEBDB7EF4EA0569CE5D3F95A37 ] C:\PROGRA~1\McAfee\MSK\mskupd.dll
16:07:11.0343 2936 C:\PROGRA~1\McAfee\MSK\mskupd.dll - ok
16:07:11.0375 2936 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
16:07:11.0375 2936 C:\WINDOWS\system32\rasmans.dll - ok
16:07:11.0421 2936 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
16:07:11.0421 2936 C:\WINDOWS\system32\ssdpsrv.dll - ok
16:07:11.0453 2936 [ CB91CCFA95601066772A004550B55A85 ] C:\Program Files\Java\jre7\bin\jpeg.dll
16:07:11.0453 2936 C:\Program Files\Java\jre7\bin\jpeg.dll - ok
16:07:11.0515 2936 [ C371805D1B8275723629CEB35ED39693 ] C:\Program Files\Common Files\Mcafee\VSCore\lockdown.dll
16:07:11.0515 2936 C:\Program Files\Common Files\Mcafee\VSCore\lockdown.dll - ok
16:07:11.0546 2936 [ C4894B3B448B647BEDC9E916D181BDBE ] C:\WINDOWS\system32\searchprotocolhost.exe
16:07:11.0562 2936 C:\WINDOWS\system32\searchprotocolhost.exe - ok
16:07:11.0593 2936 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
16:07:11.0593 2936 C:\WINDOWS\system32\tapisrv.dll - ok
16:07:11.0640 2936 [ 4774D83BE60B7F47C612E25D6FE0F010 ] C:\WINDOWS\system32\msshooks.dll
16:07:11.0640 2936 C:\WINDOWS\system32\msshooks.dll - ok
16:07:11.0656 2936 [ 69210ED819ECD8C989295B1F183A2BA9 ] C:\PROGRA~1\McAfee\MSK\mskwm.dll
16:07:11.0656 2936 C:\PROGRA~1\McAfee\MSK\mskwm.dll - ok
16:07:11.0687 2936 [ 85AC5F11D4759D13674B3E92EAC3F140 ] C:\WINDOWS\system32\msident.dll
16:07:11.0687 2936 C:\WINDOWS\system32\msident.dll - ok
16:07:11.0734 2936 [ 7ED041C7F82A381417AA3F43AB55F95A ] C:\WINDOWS\system32\msidntld.dll
16:07:11.0734 2936 C:\WINDOWS\system32\msidntld.dll - ok
16:07:11.0781 2936 [ A14D324C50EB71FB480DDD60481D0C04 ] C:\WINDOWS\system32\pstorec.dll
16:07:11.0781 2936 C:\WINDOWS\system32\pstorec.dll - ok
16:07:11.0812 2936 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
16:07:11.0812 2936 C:\WINDOWS\system32\rastapi.dll - ok
16:07:11.0859 2936 [ A0C2CB21F4B521429F033FDEB18D63D7 ] C:\Program Files\Common Files\System\directdb.dll
16:07:11.0859 2936 C:\Program Files\Common Files\System\directdb.dll - ok
16:07:11.0890 2936 [ 44E59F0BBBB90BDAC3304F023937AC19 ] C:\PROGRA~1\McAfee\MPS\mpsevh.dll
16:07:11.0890 2936 C:\PROGRA~1\McAfee\MPS\mpsevh.dll - ok
16:07:11.0921 2936 [ 7473FECBCC12090389DF7C60191EC09F ] C:\WINDOWS\system32\msfeeds.dll
16:07:11.0921 2936 C:\WINDOWS\system32\msfeeds.dll - ok
16:07:11.0953 2936 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
16:07:11.0953 2936 C:\WINDOWS\system32\unimdm.tsp - ok
16:07:12.0000 2936 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
16:07:12.0000 2936 C:\WINDOWS\system32\uniplat.dll - ok
16:07:12.0031 2936 [ B326D1AD6DB689F62624083AADB23543 ] C:\PROGRA~1\McAfee\MSK\mskxaif.dll
16:07:12.0031 2936 C:\PROGRA~1\McAfee\MSK\mskxaif.dll - ok
16:07:12.0078 2936 [ 79ED352549EB6D5B1A454916C37D2E85 ] C:\WINDOWS\system32\UncPH.dll
16:07:12.0078 2936 C:\WINDOWS\system32\UncPH.dll - ok
16:07:12.0109 2936 [ F158180ACE853C7C698C4B905B3E6CB5 ] C:\PROGRA~1\McAfee\MPS\MPSMisp.dll
16:07:12.0109 2936 C:\PROGRA~1\McAfee\MPS\MPSMisp.dll - ok
16:07:12.0156 2936 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
16:07:12.0156 2936 C:\WINDOWS\system32\security.dll - ok
16:07:12.0171 2936 [ 12B0C4037D3BC83E2D46205BDEB3302C ] C:\Program Files\McAfee\MSK\mskppv.dll
16:07:12.0171 2936 C:\Program Files\McAfee\MSK\mskppv.dll - ok
16:07:12.0218 2936 [ 2E4A927544CDA0279501AA757FFFB538 ] C:\Program Files\Java\jre7\bin\net.dll
16:07:12.0218 2936 C:\Program Files\Java\jre7\bin\net.dll - ok
16:07:12.0250 2936 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
16:07:12.0250 2936 C:\WINDOWS\system32\unimdmat.dll - ok
16:07:12.0296 2936 [ 87889A983C015080FA813D7E32910D1E ] C:\WINDOWS\system32\searchfilterhost.exe
16:07:12.0296 2936 C:\WINDOWS\system32\searchfilterhost.exe - ok
16:07:12.0328 2936 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
16:07:12.0328 2936 C:\WINDOWS\system32\modemui.dll - ok
16:07:12.0359 2936 [ 805766A11E747A44C7C5FBD7F26E9001 ] C:\Program Files\Java\jre7\bin\nio.dll
16:07:12.0359 2936 C:\Program Files\Java\jre7\bin\nio.dll - ok
16:07:12.0406 2936 [ 2CE646E579A241D1143C3C858D31ED54 ] C:\Program Files\McAfee\MSK\MskSet.dll
16:07:12.0406 2936 C:\Program Files\McAfee\MSK\MskSet.dll - ok
16:07:12.0421 2936 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
16:07:12.0421 2936 C:\WINDOWS\system32\kmddsp.tsp - ok
16:07:12.0468 2936 [ 2D168A9627CFCE9C5AC20A90E54D66D4 ] C:\Program Files\Java\jre7\bin\verify.dll
16:07:12.0468 2936 C:\Program Files\Java\jre7\bin\verify.dll - ok
16:07:12.0500 2936 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
16:07:12.0500 2936 C:\WINDOWS\system32\ndptsp.tsp - ok
16:07:12.0546 2936 [ 9D54D4A8C18081F398FEC0D839340542 ] C:\Program Files\Java\jre7\bin\zip.dll
16:07:12.0546 2936 C:\Program Files\Java\jre7\bin\zip.dll - ok
16:07:12.0578 2936 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
16:07:12.0578 2936 C:\WINDOWS\system32\ipconf.tsp - ok
16:07:12.0625 2936 [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
16:07:12.0625 2936 C:\WINDOWS\system32\wbem\wmipcima.dll - ok
16:07:12.0656 2936 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
16:07:12.0656 2936 C:\WINDOWS\system32\h323.tsp - ok
16:07:12.0687 2936 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
16:07:12.0687 2936 C:\WINDOWS\system32\hidphone.tsp - ok
16:07:12.0718 2936 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
16:07:12.0718 2936 C:\WINDOWS\system32\hid.dll - ok
16:07:12.0765 2936 [ 566B1A3DF999E8B0C5C4778F66119E91 ] C:\Program Files\McAfee\MPF\L10N.dll
16:07:12.0765 2936 C:\Program Files\McAfee\MPF\L10N.dll - ok
16:07:12.0796 2936 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
16:07:12.0796 2936 C:\WINDOWS\system32\rasppp.dll - ok
16:07:12.0843 2936 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
16:07:12.0843 2936 C:\WINDOWS\system32\ntlsapi.dll - ok
16:07:12.0875 2936 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
16:07:12.0875 2936 C:\WINDOWS\system32\rasqec.dll - ok
16:07:12.0921 2936 [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
16:07:12.0921 2936 C:\WINDOWS\system32\rasdlg.dll - ok
16:07:12.0937 2936 [ A75338FABF3C24EBC4058FAF8A7203D7 ] C:\PROGRA~1\McAfee\MPF\MpfShm.dll
16:07:12.0937 2936 C:\PROGRA~1\McAfee\MPF\MpfShm.dll - ok
16:07:12.0968 2936 [ 20FA028CB6506591A99C51432A3C0174 ] C:\WINDOWS\system32\langwrbk.dll
16:07:12.0968 2936 C:\WINDOWS\system32\langwrbk.dll - ok
16:07:13.0015 2936 [ B6932761058DC21BEAA7A1245B1B20E6 ] C:\WINDOWS\system32\infosoft.dll
16:07:13.0015 2936 C:\WINDOWS\system32\infosoft.dll - ok
16:07:13.0031 2936 ============================================================
16:07:13.0031 2936 Scan finished
16:07:13.0031 2936 ============================================================
16:07:13.0281 2928 Detected object count: 1
16:07:13.0281 2928 Actual detected object count: 1
16:08:21.0984 2928 PEVSystemStart ( UnsignedFile.Multi.Generic ) - skipped by user
16:08:21.0984 2928 PEVSystemStart ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:08:38.0984 2180 Deinitialize success

#6 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 15 November 2012 - 04:40 PM

Results of screen317's Security Check version 0.99.54
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
Please wait while WMIC compiles updated MOF files.d
i
s
p
l
a
y
N
a
m
e
ECHO is off.
M
c
A
f
e
ECHO is off.
A
n
t
i
V
i
r
u
s
ECHO is off.
a
n
d
ECHO is off.
A
n
t
i
S
p
y
w
a
r
e
ECHO is off.
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.65.1.1000
Java 7 Update 9
Mozilla Firefox (16.0.1)
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 15% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````


Farbar Service Scanner Version: 09-11-2012
Ran by Rethea Iz'i (administrator) on 15-11-2012 at 16:21:42
Running from "C:\Documents and Settings\Rethea Iz'i\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is offline
Attempt to access Google.com returned error: Google.com is offline
Attempt to access Yahoo IP returned error. Yahoo IP is offline
Attempt to access Yahoo.com returned error: Yahoo.com is offline


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) mfetdi2k(8) NetBT(6) PSched(7) Tcpip(4)
0x080000000500000001000000020000000300000004000000080000000600000007000000
IpSec Tag value is correct.

**** End of log ****



MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Rethea Iz'i (administrator) on 15-11-2012 at 16:30:23
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 4

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8139/810x Family Fast Ethernet NIC = Local Area Connection (Disconnected)
EasyTether Network Adapter = Local Area Connection 3 (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 3"

set address name="Local Area Connection 3" source=dhcp
set dns name="Local Area Connection 3" source=dhcp register=PRIMARY
set wins name="Local Area Connection 3" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : rethea-3102873

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection 3:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : EasyTether Network Adapter

Physical Address. . . . . . . . . : 02-00-54-74-68-72

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.117.2

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.117.1

DHCP Server . . . . . . . . . . . : 192.168.117.1

DNS Servers . . . . . . . . . . . : 8.8.8.8

8.8.4.4

Lease Obtained. . . . . . . . . . : Thursday, November 15, 2012 4:08:45 PM

Lease Expires . . . . . . . . . . : Monday, January 18, 2038 10:14:07 PM

Server: google-public-dns-a.google.com
Address: 8.8.8.8

Name: google.com
Addresses: 74.125.225.40, 74.125.225.34, 74.125.225.41, 74.125.225.46
74.125.225.36, 74.125.225.37, 74.125.225.32, 74.125.225.33, 74.125.225.35
74.125.225.39, 74.125.225.38



Pinging google.com [74.125.225.40] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 74.125.225.40:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 8.8.8.8

Name: yahoo.com
Addresses: 98.139.183.24, 72.30.38.140, 98.138.253.109



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...02 00 54 74 68 72 ...... EasyTether Network Adapter - McAfee Core NDIS Intermediate Filter Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.117.1 192.168.117.2 1
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.117.0 255.255.255.0 192.168.117.2 192.168.117.2 10
192.168.117.2 255.255.255.255 127.0.0.1 127.0.0.1 10
192.168.117.255 255.255.255.255 192.168.117.2 192.168.117.2 10
224.0.0.0 240.0.0.0 192.168.117.2 192.168.117.2 10
255.255.255.255 255.255.255.255 192.168.117.2 192.168.117.2 1
Default Gateway: 192.168.117.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/14/2012 08:22:35 PM) (Source: Application Error) (User: )
Description: Faulting application McSvHost.exe, version 2.6.259.0, faulting module unknown, version 0.0.0.0, fault address 0x02c53eb0.
Processing media-specific event for [McSvHost.exe!ws!]

Error: (11/14/2012 03:30:02 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The specified server cannot perform the requested operation.

Error: (11/14/2012 03:30:00 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The specified server cannot perform the requested operation.

Error: (11/14/2012 03:29:57 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This operation returned because the timeout period expired.

Error: (11/14/2012 01:22:00 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (11/14/2012 01:22:00 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (11/14/2012 01:21:56 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (11/14/2012 01:21:56 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (11/14/2012 01:18:48 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (11/14/2012 01:18:48 PM) (Source: Windows Search Service) (User: )
Description: The entry <C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (11/15/2012 04:07:56 PM) (Source: DCOM) (User: RETHEA-3102873)
Description: The server {209500FC-6B45-4693-8871-6296C4843751} did not register with DCOM within the required timeout.

Error: (11/15/2012 04:02:44 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
avgtp

Error: (11/15/2012 02:15:04 PM) (Source: 0) (User: )
Description: \Device\CdRom0

Error: (11/15/2012 02:14:49 PM) (Source: 0) (User: )
Description: \Device\CdRom0

Error: (11/15/2012 02:13:31 PM) (Source: 0) (User: )
Description: \Device\CdRom0

Error: (11/15/2012 01:59:03 PM) (Source: 0) (User: )
Description: \Device\CdRom0

Error: (11/15/2012 01:56:44 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort1

Error: (11/15/2012 01:56:20 PM) (Source: 0) (User: )
Description: \Device\CdRom0

Error: (11/15/2012 01:55:38 PM) (Source: 0) (User: )
Description: \Device\CdRom0

Error: (11/15/2012 01:50:09 PM) (Source: 0) (User: )
Description: \Device\CdRom0


Microsoft Office Sessions:
=========================
Error: (11/14/2012 08:22:35 PM) (Source: Application Error)(User: )
Description: McSvHost.exe2.6.259.0unknown0.0.0.002c53eb0

Error: (11/14/2012 03:30:02 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe specified server cannot perform the requested operation.

Error: (11/14/2012 03:30:00 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe specified server cannot perform the requested operation.

Error: (11/14/2012 03:29:57 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThis operation returned because the timeout period expired.

Error: (11/14/2012 01:22:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK

Error: (11/14/2012 01:22:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK

Error: (11/14/2012 01:21:56 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK

Error: (11/14/2012 01:21:56 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK

Error: (11/14/2012 01:18:48 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK

Error: (11/14/2012 01:18:48 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog


Details:
A device attached to the system is not functioning. (0x8007001f)
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\MCAFEE\MCAFEE INTERNET SECURITY.LNK


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Creative Mass Storage Drivers
EasyTether (Version: 1.1.16)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
McAfee Internet Security (Version: 11.6.435)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WinUsb 2.0
Mozilla Firefox 16.0.1 (x86 en-US) (Version: 16.0.1)
Mozilla Maintenance Service (Version: 16.0.1)
MSVCRT (Version: 14.0.1468.721)
Segoe UI (Version: 14.0.4327.805)
Shared C Run-time for x86 (Version: 10.0.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
WebFldrs XP (Version: 9.50.5318)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0 (Version: 04.00.6001.503)
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Devices: ================================

Name: Realtek RTL8139/810x Family Fast Ethernet NIC
Description: Realtek RTL8139/810x Family Fast Ethernet NIC
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Realtek Semiconductor Corp.
Service: RTL8023xp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 55%
Total physical RAM: 510.51 MB
Available physical RAM: 227.5 MB
Total Pagefile: 1247.64 MB
Available Pagefile: 734.6 MB
Total Virtual: 2047.88 MB
Available Virtual: 1972.75 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:74.52 GB) (Free:64.62 GB) NTFS

========================= Users: ========================================

User accounts for \\RETHEA-3102873

Administrator ASPNET Guest
HelpAssistant Rethea Iz'i SUPPORT_388945a0

========================= Minidump Files ==================================

C:\WINDOWS\Minidump\Mini103112-01.dmp
C:\WINDOWS\Minidump\Mini103112-02.dmp
C:\WINDOWS\Minidump\Mini103112-03.dmp
C:\WINDOWS\Minidump\Mini110112-01.dmp
========================= Restore Points ==================================

02-11-2012 17:35:15 System Checkpoint
03-11-2012 18:15:33 System Checkpoint
04-11-2012 19:14:26 System Checkpoint
05-11-2012 20:14:29 System Checkpoint
06-11-2012 21:15:33 System Checkpoint
07-11-2012 17:42:02 Software Distribution Service 3.0
08-11-2012 18:45:59 System Checkpoint
09-11-2012 19:05:02 System Checkpoint
10-11-2012 19:40:44 System Checkpoint
11-11-2012 22:34:09 Installed Creative Mass Storage Drivers
12-11-2012 23:08:55 System Checkpoint
13-11-2012 23:14:31 System Checkpoint
14-11-2012 20:17:40 Software Distribution Service 3.0
15-11-2012 12:43:22 Software Distribution Service 3.0
15-11-2012 12:53:01 Software Distribution Service 3.0

**** End of log ****

#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 16 November 2012 - 05:52 PM

Hi

Please do the following next:

:step1:

Use the Windows Error Checking utility (Check Disk), with the options to fix file system errors and scan the disk surface for errors, attempt recovery of data and repair the disk:

  • Click the Posted Image button
  • Click My Computer.
  • Right-click on the drive that you wish to check > Properties > Tools tab
  • In the "Error checking" section, click on Check now.
  • Place a checkmark in both boxes > Start.
  • If the disk you have chosen is the Windows system disk:
  • A message will notify you that a restart is necessary ask "Do you want to check for hard disk errors the next time you start your computer?".
  • Click Schedule disk check > OK and close all windows.
  • Re-start the computer. The disk will be checked when the system boots.
  • This will take some time to run and at times may appear stalled but just let it run.
  • When the disk check is complete, the system will re-start automatically and load Windows.

A log of the disk check is recorded only if the scheduled re-start is used, and only for drives on the same HDD as the Operating System.
To open the log:

  • Click the Posted Image button
  • Click Run.
  • Type "eventvwr" without the quotes and press the <ENTER> key.
  • The Event Viewer window will open.
  • In the left pane, expand "Event Viewer (local)" then click on Application.
  • In the right pane, at the top, click on the column heading Source to sort the list alphabetically.
  • Look in the Source column for "Winlogon", with an entry corresponding to the date and time of the disk check.
  • Click on that Winlogon entry to select it.
  • In the box below "Description", Copy all of the contents.
  • Paste the contents into your next reply.


:step2:

We need to run the SFC /SCANNOW Command

The sfc /scannow command (System File Checker) scans the integrity of all protected Windows system files and replaces incorrect corrupted, changed/modified, or damaged versions with the correct versions if possible.

Note: Be aware that if you have modified your system files as in theming explorer/system files, running sfc /scannow will revert the system files such as explorer.exe back to it's default state.

Note: Make the appropriate backups of your system files that you have modified for theming if you wish to save them before running sfc /scannow.

  • Click the Start button.
  • Click Run.
  • Type cmd.
  • Copy the following line of text and paste it into the black box.
    (right-click in the black box and choose paste)

    sfc /scannow
  • Press Enter to run the command.
    Note: This may take a while to finish.
  • If SFC could not fix something, then run the command again to see if it may be able to the next time. Sometimes it may take running the sfc /scannow command 3 or more times to completely fix everything that it's able to.

Retrieving SFC /scannow log

  • Click the Start button
  • Click Run
  • Type cmd
  • Press enter
  • Copy the following line of text and paste it into the black box.
    (right-click in the black box and choose paste)

    findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
  • Press Enter to run the command.
  • A text file sfcdetails.txt should appear on your desktop. Post the content of the file in your next reply.


:step3:

How is the computer running now?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 16 November 2012 - 10:19 PM

Event Type: Information
Event Source: Winlogon
Event Category: None
Event ID: 1001
Date: 11/16/2012
Time: 6:50:57 PM
User: N/A
Computer: RETHEA-3102873
Description:
Checking file system on C:
The type of the file system is NTFS.

A disk check has been scheduled.
Windows will now check the disk.
Cleaning up minor inconsistencies on the drive.
Cleaning up 184 unused index entries from index $SII of file 0x9.
Cleaning up 184 unused index entries from index $SDH of file 0x9.
Cleaning up 184 unused security descriptors.
CHKDSK is verifying Usn Journal...
Usn Journal verification completed.
CHKDSK is verifying file data (stage 4 of 5)...
File data verification completed.
CHKDSK is verifying free space (stage 5 of 5)...
Free space verification is complete.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
Windows has made corrections to the file system.

78140128 KB total disk space.
10339016 KB in 49678 files.
14336 KB in 2971 indexes.
0 KB in bad sectors.
160212 KB in use by the system.
65536 KB occupied by the log file.
67626564 KB available on disk.

4096 bytes in each allocation unit.
19535032 total allocation units on disk.
16906641 allocation units available on disk.

Internal Info:
f0 d9 00 00 b5 cd 00 00 0d f1 00 00 00 00 00 00 ................
51 09 00 00 00 00 00 00 d4 06 00 00 00 00 00 00 Q...............
ea 83 2b 02 00 00 00 00 a6 3d 23 26 00 00 00 00 ..+......=#&....
9e 18 43 15 00 00 00 00 3a bd f8 2b 02 00 00 00 ..C.....:..+....
84 32 86 29 03 00 00 00 76 81 89 9c 05 00 00 00 .2.)....v.......
99 9e 36 00 00 00 00 00 a8 39 07 00 0e c2 00 00 ..6......9......
00 00 00 00 00 20 0b 77 02 00 00 00 9b 0b 00 00 ..... .w........

Windows has finished checking your disk.
Please wait while your computer restarts.


For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.


************************************************************************************************


After running the SFC/Scannow 6 times, the text file still came up empty....

IE still only works in compatibility view. When CV is off only google working and other https sites (only Facebook and tumblr tested) if typed in completely.
I still can't click on login "buttons" on sites like tumblr and ustream.
Firefox only loads google also

#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 17 November 2012 - 07:20 PM

What happens when you try to go to a site such as: www.bbc.co.uk ?
- Please give detailed description of what happens

Edited by dev00790, 17 November 2012 - 07:20 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 17 November 2012 - 07:52 PM

Hello again :)

The page loads fine in compatibility view (with error symbol). It seems I can click and load the different options on the page. When I turn off compatibility view, it says "website found. Waiting for reply" with the black clock "thingy". After about 2 minutes or so, I get the "Internet Explorer cannot display this webpage" page (with "error on page"). When I click on "diagnose connection problems", nothing happens. However, I do get the drop down list when I click on "more information".

#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 17 November 2012 - 09:18 PM

Do you have access to another computer and a USB key / blank CD to hand?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 17 November 2012 - 09:30 PM

I have my laptop, but I reinstalled the os and I have not updated it yet (SP3, etc.). So, I guess it would depend on what you need me to do. Oh...and yes, I do have a usb key.

#13 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 17 November 2012 - 09:45 PM

I have my laptop, but I reinstalled the os and I have not updated it yet (SP3, etc.). So, I guess it would depend on what you need me to do. Oh...and yes, I do have a usb key.

Did you reinstall the OS since your previous post?

Edited by dev00790, 17 November 2012 - 09:46 PM.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#14 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:12:18 AM

Posted 17 November 2012 - 09:46 PM

Note - I have edited my previous post.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#15 Erthera

Erthera
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:18 PM

Posted 17 November 2012 - 09:58 PM

No, I reinstalled the OS on my laptop a while ago. I just haven't really used it. I use my desktop (the one with the issues) daily. The laptop is "usable" though.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users