Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected computer: IE opening spontaneously and attempt to access sites


  • This topic is locked This topic is locked
10 replies to this topic

#1 gf1701

gf1701

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:15 PM

Posted 12 December 2012 - 08:57 PM

I've been helping a friend try and rid his computer of malware. His computer literacy is poor, so it's slow-going. He's running Windows XP, SP3. Windows Firewall is disabled and won't start when I try to turn it on (I don't know if it was up when his computer was attacked, but as he has anti-virus Software--McAfee--and wouldn't mess with any defaults, it's likely the firewall was enabled at that time). He says that initially, he received multiple alerts telling him that his computer was in danger and that Internet Explorer was trying to capture his keystrokes. So he uninstalled Internet Explorer! At least he thinks he did; there is still a version of IE7 on his computer. I think it's from AOL (the title bar on the browser indicates so, and he does use AOL). He began using Firefox. Whenever he tried going to a website, McAfee Site Advisor would come up and tell him he was being redirected to a dangerous site.

I tried having my friend run rkill.exe, Malwarebytes, and TDSSKiller, and replace his HOSTS file with a clean one. He can now access websites instead of being redirected every time he clicks a link, but he's definitely still infected. I got him to download Teamviewer, and I'm able to connect to him remotely now. I tried using System Restore to restore him to a prior checkpoint, but upon reboot, it told him that it was unable to restore to the checkpoint; we tried three different dates. I thought about having him run ComboFix, but read the bleepingcomputer warnings against it. As it stands now, my friend can use his computer, but IE pops up spontaneously and trys to access a website (websites?) that McAfee Site Advisor blocks. Sometimes he can start Firefox and other programs, and other times attempting to do so fails and he hears what he calls "the piano" (Windows critical stop or exclamation sound). It seems that if a program fails to start, and he then he opens a PDF file on his desktop, closes it, and tries the program again, it starts successfully. And of course, who knows what's going on in the background?

I posted this issue in an abridged form to a bleepingcomputer forum (http://www.bleepingcomputer.com/forums/topic478167.html/page__pid__2919163#entry2919163) and was advised to repost here, download and run DDS, and post the logs here. I've attached those logs. I'd appreach any guidance you can provide.

Gary

Attached Files



BC AdBot (Login to Remove)

 


#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:15 PM

Posted 13 December 2012 - 11:39 AM

Hello gf1701,
  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Watch Topic.I suggest you click it and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

  • Finally, please reply using the ADD REPLY button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.

1.
Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    Posted Image
  • Put a checkmark beside loaded modules.
    Posted Image
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    Posted Image
  • Click the Start Scan button.
    Posted Image
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    Posted Image
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Posted Image
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.


2.
Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • Posted Image
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    Posted Image
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


Things to include in your next reply::
TdssKiller log
Combofix.txt
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:15 PM

Posted 15 December 2012 - 11:42 AM

Hello.

Are you still there?

If you are please follow the instructions in my previous post.

If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 3-5 days the topic will need to be closed.

Thanks for understanding :)

With Regards,
fireman4it

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#4 gf1701

gf1701
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:15 PM

Posted 17 December 2012 - 01:27 AM

Sorry about not responding earlier. I thought I had selected the option to be notified when there was a response to my original posting, and I was not notified, so I thought no one had had a chance to respond yet (the forum notes said it could be five days before someone responded). I came here directly to double-check. I have now selected the notification options you suggested, but will check back even if I don't hear anything through email. I will contact my friend tomorrow with your instructions; his issues are still there. I want to clarify one note in your instructions regarding, ComboFix. You wrote, "Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix," then provided instructions on running ComboFix. Do you mean that it's up to me to decide whether to take the risk and run it, or was the notice just meant to caution me against taking any action with ComboFix that you don't instruct me to? I figure it's the latter, but wanted to doublecheck. Thanks for the assistance.

Gary

#5 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:15 PM

Posted 17 December 2012 - 11:25 AM

or was the notice just meant to caution me against taking any action with ComboFix that you don't instruct me to?


This is what we are talking about. If you use it without our knowledge we don't know what it has done or how to proceed. So yes go ahead a proceed with using it.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#6 gf1701

gf1701
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:15 PM

Posted 17 December 2012 - 10:43 PM

I connected with my friend using Teamviewer, downloaded the latest TSSKILLER, and ran it with the specified options. When TSSKILLER rebooted the machine, I of course lost my Teamviewer connection. When his machine came back up, he could not start Teamview, so I was unable to see what was going on. I instructed him on how to run TDSSKILLER when it came up again. He did this. It ran and detected one malicious item and a number of suspicious ones. At this point, I was confused by the instructions you provided. Your instructions say, "If a suspicious object is detected, the default action will be Skip, click on Continue." The default action for the malicious item was Cure; the others said Skip. I wasn't sure whether you wanted us to click Continue even though Skip was not the default for one of the items, or whether your intention was that all items should say Skip, and then we should press continue. First I had him change Cure to Skip and click Continue, but what he saw next did not seem to correspond to your next instruction ("If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue." Of course I could not see this for myself, so maybe my friend missed something. He said he had the option of rerunning the scan or exiting, so I had him rerun it. TDSSKILLER found the same thing the second time around. Again, the malicious item had a default action of Cure. I had him click continue. The TDSSKILLER cure module starting running -- and 50 minutes later, it was still running. At that point I instructed my friend on how to get into Task Manager and find the TDSS cure process. He reported that it was not using any CPU and the memory usage was not changing. I had him kill the process and reboot. I connected to him via Teamviewer and copied a 527kb TDSSKILLER log file to my desktop. The timestamp on the file reflects approximately the time when we first ran TDSSKILLER. I am posting it here as you requested. I did not run ComboFix at this time.

21:00:32.0078 2504 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:00:32.0437 2504 ============================================================
21:00:32.0437 2504 Current date / time: 2012/12/17 21:00:32.0437
21:00:32.0437 2504 SystemInfo:
21:00:32.0437 2504
21:00:32.0437 2504 OS Version: 5.1.2600 ServicePack: 3.0
21:00:32.0437 2504 Product type: Workstation
21:00:32.0437 2504 ComputerName: PINSTRIPES
21:00:32.0437 2504 UserName: michael
21:00:32.0437 2504 Windows directory: C:\WINDOWS
21:00:32.0437 2504 System windows directory: C:\WINDOWS
21:00:32.0437 2504 Processor architecture: Intel x86
21:00:32.0437 2504 Number of processors: 2
21:00:32.0437 2504 Page size: 0x1000
21:00:32.0437 2504 Boot type: Normal boot
21:00:32.0437 2504 ============================================================
21:00:32.0781 2504 BG loaded
21:00:33.0218 2504 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:00:33.0218 2504 ============================================================
21:00:33.0218 2504 \Device\Harddisk0\DR0:
21:00:33.0218 2504 MBR partitions:
21:00:33.0218 2504 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1C8488D6
21:00:33.0218 2504 ============================================================
21:00:33.0265 2504 C: <-> \Device\Harddisk0\DR0\Partition1
21:00:33.0281 2504 ============================================================
21:00:33.0281 2504 Initialize success
21:00:33.0281 2504 ============================================================
21:06:08.0421 3720 ============================================================
21:06:08.0421 3720 Scan started
21:06:08.0421 3720 Mode: Manual; SigCheck; TDLFS;
21:06:08.0421 3720 ============================================================
21:06:09.0687 3720 ================ Scan system memory ========================
21:06:09.0687 3720 System memory - ok
21:06:09.0687 3720 ================ Scan services =============================
21:06:09.0812 3720 Abiosdsk - ok
21:06:09.0843 3720 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:06:12.0187 3720 abp480n5 - ok
21:06:12.0234 3720 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:06:12.0437 3720 ACPI - ok
21:06:12.0468 3720 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:06:12.0593 3720 ACPIEC - ok
21:06:12.0671 3720 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:06:12.0687 3720 AdobeFlashPlayerUpdateSvc - ok
21:06:12.0718 3720 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:06:12.0875 3720 adpu160m - ok
21:06:12.0906 3720 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:06:13.0062 3720 aec - ok
21:06:13.0125 3720 [ F6C5B9B10EE127ED13063D25B36AAB91 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:06:13.0125 3720 Suspicious file (Forged): C:\WINDOWS\System32\drivers\afd.sys. Real md5: F6C5B9B10EE127ED13063D25B36AAB91, Fake md5: 7E775010EF291DA96AD17CA4B17137D7
21:06:13.0125 3720 AFD ( Virus.Win32.ZAccess.aml ) - infected
21:06:13.0125 3720 AFD - detected Virus.Win32.ZAccess.aml (0)
21:06:13.0156 3720 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
21:06:13.0312 3720 agp440 - ok
21:06:13.0343 3720 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:06:13.0500 3720 agpCPQ - ok
21:06:13.0531 3720 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:06:13.0609 3720 Aha154x - ok
21:06:13.0625 3720 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:06:13.0765 3720 aic78u2 - ok
21:06:13.0796 3720 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:06:13.0937 3720 aic78xx - ok
21:06:13.0984 3720 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:06:14.0125 3720 Alerter - ok
21:06:14.0156 3720 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
21:06:14.0312 3720 ALG - ok
21:06:14.0328 3720 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
21:06:14.0468 3720 AliIde - ok
21:06:14.0500 3720 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:06:14.0625 3720 alim1541 - ok
21:06:14.0640 3720 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:06:14.0781 3720 amdagp - ok
21:06:14.0812 3720 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
21:06:14.0890 3720 amsint - ok
21:06:15.0062 3720 [ F9DAC844B1D370DA4C984D4C22F5E696 ] AntiSpywareService C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe
21:06:15.0265 3720 AntiSpywareService - ok
21:06:15.0390 3720 [ 8FA646F0E639D9A8C8B98E217D471DC0 ] AOL ACS C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
21:06:15.0437 3720 AOL ACS - ok
21:06:15.0593 3720 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:06:15.0593 3720 Apple Mobile Device - ok
21:06:15.0671 3720 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
21:06:15.0828 3720 AppMgmt - ok
21:06:15.0875 3720 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:06:16.0046 3720 Arp1394 - ok
21:06:16.0078 3720 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
21:06:16.0218 3720 asc - ok
21:06:16.0250 3720 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:06:16.0328 3720 asc3350p - ok
21:06:16.0343 3720 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:06:16.0500 3720 asc3550 - ok
21:06:16.0546 3720 [ D880831279ED91F9A4190A2DB9539EA9 ] ASCTRM C:\WINDOWS\system32\drivers\ASCTRM.sys
21:06:16.0593 3720 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
21:06:16.0593 3720 ASCTRM - detected UnsignedFile.Multi.Generic (1)
21:06:16.0968 3720 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
21:06:17.0062 3720 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
21:06:17.0062 3720 aspnet_state - detected UnsignedFile.Multi.Generic (1)
21:06:17.0093 3720 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:06:17.0250 3720 AsyncMac - ok
21:06:17.0281 3720 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:06:17.0484 3720 atapi - ok
21:06:17.0484 3720 Atdisk - ok
21:06:17.0562 3720 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:06:17.0765 3720 Atmarpc - ok
21:06:17.0828 3720 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:06:17.0984 3720 AudioSrv - ok
21:06:18.0046 3720 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:06:18.0203 3720 audstub - ok
21:06:18.0265 3720 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:06:18.0437 3720 Beep - ok
21:06:18.0515 3720 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
21:06:18.0671 3720 Browser - ok
21:06:18.0734 3720 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:06:18.0906 3720 cbidf - ok
21:06:18.0937 3720 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:06:19.0109 3720 cbidf2k - ok
21:06:19.0156 3720 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:06:19.0343 3720 CCDECODE - ok
21:06:19.0406 3720 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:06:19.0500 3720 cd20xrnt - ok
21:06:19.0578 3720 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:06:19.0734 3720 Cdaudio - ok
21:06:19.0796 3720 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:06:20.0000 3720 Cdfs - ok
21:06:20.0031 3720 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:06:20.0218 3720 Cdrom - ok
21:06:20.0218 3720 Changer - ok
21:06:20.0296 3720 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:06:20.0468 3720 CiSvc - ok
21:06:20.0562 3720 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:06:20.0765 3720 ClipSrv - ok
21:06:20.0828 3720 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:06:21.0000 3720 CmdIde - ok
21:06:21.0000 3720 COMSysApp - ok
21:06:21.0046 3720 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:06:21.0234 3720 Cpqarray - ok
21:06:21.0343 3720 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:06:21.0484 3720 CryptSvc - ok
21:06:21.0609 3720 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:06:21.0859 3720 dac2w2k - ok
21:06:21.0890 3720 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:06:22.0062 3720 dac960nt - ok
21:06:22.0140 3720 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:06:22.0484 3720 DcomLaunch - ok
21:06:22.0562 3720 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:06:22.0781 3720 Dhcp - ok
21:06:22.0812 3720 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:06:22.0984 3720 Disk - ok
21:06:23.0062 3720 [ E2D0DE31442390C35E3163C87CB6A9EB ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
21:06:23.0093 3720 DLABOIOM ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0093 3720 DLABOIOM - detected UnsignedFile.Multi.Generic (1)
21:06:23.0171 3720 [ D979BEBCF7EDCC9C9EE1857D1A68C67B ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
21:06:23.0218 3720 DLACDBHM ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0218 3720 DLACDBHM - detected UnsignedFile.Multi.Generic (1)
21:06:23.0250 3720 [ 83545593E297F50A8E2524B4C071A153 ] DLADResN C:\WINDOWS\system32\DLA\DLADResN.SYS
21:06:23.0328 3720 DLADResN ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0328 3720 DLADResN - detected UnsignedFile.Multi.Generic (1)
21:06:23.0375 3720 [ 96E01D901CDC98C7817155CC057001BF ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
21:06:23.0390 3720 DLAIFS_M ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0390 3720 DLAIFS_M - detected UnsignedFile.Multi.Generic (1)
21:06:23.0453 3720 [ 0A60A39CC5E767980A31CA5D7238DFA9 ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
21:06:23.0515 3720 DLAOPIOM ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0515 3720 DLAOPIOM - detected UnsignedFile.Multi.Generic (1)
21:06:23.0546 3720 [ 9FE2B72558FC808357F427FD83314375 ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
21:06:23.0593 3720 DLAPoolM ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0593 3720 DLAPoolM - detected UnsignedFile.Multi.Generic (1)
21:06:23.0625 3720 [ 7EE0852AE8907689DF25049DCD2342E8 ] DLARTL_N C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
21:06:23.0656 3720 DLARTL_N ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0656 3720 DLARTL_N - detected UnsignedFile.Multi.Generic (1)
21:06:23.0750 3720 [ F08E1DAFAC457893399E03430A6A1397 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
21:06:23.0781 3720 DLAUDFAM ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0781 3720 DLAUDFAM - detected UnsignedFile.Multi.Generic (1)
21:06:23.0812 3720 [ E7D105ED1E694449D444A9933DF8E060 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
21:06:23.0875 3720 DLAUDF_M ( UnsignedFile.Multi.Generic ) - warning
21:06:23.0875 3720 DLAUDF_M - detected UnsignedFile.Multi.Generic (1)
21:06:23.0875 3720 dmadmin - ok
21:06:24.0125 3720 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:06:24.0750 3720 dmboot - ok
21:06:24.0828 3720 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:06:25.0078 3720 dmio - ok
21:06:25.0187 3720 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:06:25.0375 3720 dmload - ok
21:06:25.0484 3720 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:06:25.0687 3720 dmserver - ok
21:06:25.0828 3720 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:06:26.0015 3720 DMusic - ok
21:06:26.0140 3720 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:06:26.0296 3720 Dnscache - ok
21:06:26.0375 3720 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:06:26.0578 3720 Dot3svc - ok
21:06:26.0625 3720 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:06:26.0765 3720 dpti2o - ok
21:06:26.0781 3720 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:06:26.0937 3720 drmkaud - ok
21:06:26.0968 3720 [ FD0F95981FEF9073659D8EC58E40AA3C ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
21:06:26.0984 3720 DRVMCDB ( UnsignedFile.Multi.Generic ) - warning
21:06:26.0984 3720 DRVMCDB - detected UnsignedFile.Multi.Generic (1)
21:06:26.0984 3720 [ B4869D320428CDC5EC4D7F5E808E99B5 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
21:06:27.0015 3720 DRVNDDM ( UnsignedFile.Multi.Generic ) - warning
21:06:27.0015 3720 DRVNDDM - detected UnsignedFile.Multi.Generic (1)
21:06:27.0062 3720 [ FE80901578E7E3DA70299A5AEB2B7FBD ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
21:06:27.0078 3720 DSBrokerService - ok
21:06:27.0140 3720 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
21:06:27.0234 3720 DSproct ( UnsignedFile.Multi.Generic ) - warning
21:06:27.0234 3720 DSproct - detected UnsignedFile.Multi.Generic (1)
21:06:27.0281 3720 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
21:06:27.0343 3720 dsunidrv - ok
21:06:27.0453 3720 [ D57A8FC800B501AC05B10D00F66D127A ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
21:06:27.0546 3720 E100B - ok
21:06:27.0593 3720 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:06:27.0765 3720 EapHost - ok
21:06:28.0031 3720 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
21:06:28.0281 3720 ehRecvr - ok
21:06:28.0343 3720 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
21:06:29.0000 3720 ehSched - ok
21:06:29.0062 3720 [ 1976FEDF6D7F87135C9B7F5CB4C8C868 ] ELacpi C:\WINDOWS\system32\DRIVERS\ELacpi.sys
21:06:29.0140 3720 ELacpi - ok
21:06:29.0203 3720 [ AE65C02444907966378454138B9F99F0 ] ELhid C:\WINDOWS\system32\DRIVERS\ELhid.sys
21:06:29.0250 3720 ELhid ( UnsignedFile.Multi.Generic ) - warning
21:06:29.0250 3720 ELhid - detected UnsignedFile.Multi.Generic (1)
21:06:29.0265 3720 [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1 ] ELkbd C:\WINDOWS\system32\DRIVERS\ELkbd.sys
21:06:29.0312 3720 ELkbd ( UnsignedFile.Multi.Generic ) - warning
21:06:29.0312 3720 ELkbd - detected UnsignedFile.Multi.Generic (1)
21:06:29.0343 3720 [ 0D87CB825ED6CB2EBCC147A10A42F1D6 ] ELmon C:\WINDOWS\system32\DRIVERS\ELmon.sys
21:06:29.0375 3720 ELmon ( UnsignedFile.Multi.Generic ) - warning
21:06:29.0375 3720 ELmon - detected UnsignedFile.Multi.Generic (1)
21:06:29.0421 3720 [ A4ADD3847B67BACAB6FC851A2B60FDB3 ] ELmou C:\WINDOWS\system32\DRIVERS\ELmou.sys
21:06:29.0437 3720 ELmou ( UnsignedFile.Multi.Generic ) - warning
21:06:29.0437 3720 ELmou - detected UnsignedFile.Multi.Generic (1)
21:06:29.0578 3720 [ D1DE16926C682DCD3D99AE5500CA5522 ] ELService C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
21:06:29.0609 3720 ELService ( UnsignedFile.Multi.Generic ) - warning
21:06:29.0609 3720 ELService - detected UnsignedFile.Multi.Generic (1)
21:06:29.0671 3720 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:06:29.0812 3720 ERSvc - ok
21:06:29.0875 3720 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
21:06:30.0046 3720 Eventlog - ok
21:06:30.0109 3720 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
21:06:30.0171 3720 EventSystem - ok
21:06:30.0234 3720 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:06:30.0390 3720 Fastfat - ok
21:06:30.0468 3720 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:06:30.0640 3720 FastUserSwitchingCompatibility - ok
21:06:30.0687 3720 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
21:06:30.0828 3720 Fax - ok
21:06:30.0859 3720 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:06:31.0015 3720 Fdc - ok
21:06:31.0031 3720 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:06:31.0187 3720 Fips - ok
21:06:31.0218 3720 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:06:31.0359 3720 Flpydisk - ok
21:06:31.0406 3720 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:06:31.0562 3720 FltMgr - ok
21:06:31.0578 3720 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:06:31.0734 3720 Fs_Rec - ok
21:06:31.0765 3720 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:06:31.0937 3720 Ftdisk - ok
21:06:32.0000 3720 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
21:06:32.0015 3720 GEARAspiWDM - ok
21:06:32.0062 3720 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:06:32.0203 3720 Gpc - ok
21:06:32.0234 3720 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:06:32.0375 3720 HDAudBus - ok
21:06:32.0453 3720 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:06:32.0609 3720 helpsvc - ok
21:06:32.0640 3720 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
21:06:32.0781 3720 HidServ - ok
21:06:32.0812 3720 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:06:32.0937 3720 HidUsb - ok
21:06:32.0984 3720 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:06:33.0140 3720 hkmsvc - ok
21:06:33.0171 3720 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
21:06:33.0312 3720 hpn - ok
21:06:33.0328 3720 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:06:33.0453 3720 HPZid412 - ok
21:06:33.0468 3720 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:06:33.0531 3720 HPZipr12 - ok
21:06:33.0546 3720 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:06:33.0609 3720 HPZius12 - ok
21:06:33.0656 3720 [ 14B15D0D803EF4AB9B525B7E2DA303EF ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
21:06:33.0718 3720 HSFHWAZL - ok
21:06:33.0781 3720 [ CBF6831420A97E8FBB91E5F52B707EF7 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.SYS
21:06:33.0828 3720 HSF_DPV - ok
21:06:33.0906 3720 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:06:34.0062 3720 HTTP - ok
21:06:34.0125 3720 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:06:34.0250 3720 HTTPFilter - ok
21:06:34.0281 3720 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
21:06:34.0406 3720 i2omgmt - ok
21:06:34.0453 3720 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:06:34.0593 3720 i2omp - ok
21:06:34.0609 3720 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:06:34.0734 3720 i8042prt - ok
21:06:34.0812 3720 [ D43E91E271C041BB86A6223462A41D28 ] IAANTMon C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
21:06:34.0828 3720 IAANTMon ( UnsignedFile.Multi.Generic ) - warning
21:06:34.0828 3720 IAANTMon - detected UnsignedFile.Multi.Generic (1)
21:06:34.0890 3720 [ 5A8E05F1D5C36ABD58CFFA111EB325EA ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
21:06:35.0000 3720 ialm - ok
21:06:35.0062 3720 [ 9A65E42664D1534B68512CAAD0EFE963 ] iastor C:\WINDOWS\system32\drivers\iastor.sys
21:06:35.0156 3720 iastor - ok
21:06:35.0250 3720 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:06:35.0281 3720 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:06:35.0281 3720 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:06:35.0312 3720 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:06:35.0468 3720 Imapi - ok
21:06:35.0500 3720 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:06:35.0656 3720 ImapiService - ok
21:06:35.0687 3720 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:06:35.0843 3720 ini910u - ok
21:06:35.0875 3720 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
21:06:36.0015 3720 IntelIde - ok
21:06:36.0078 3720 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:06:36.0203 3720 intelppm - ok
21:06:36.0218 3720 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:06:36.0359 3720 Ip6Fw - ok
21:06:36.0406 3720 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:06:36.0546 3720 IpFilterDriver - ok
21:06:36.0578 3720 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:06:36.0703 3720 IpInIp - ok
21:06:36.0734 3720 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:06:36.0875 3720 IpNat - ok
21:06:36.0937 3720 [ 9033D67B7112D23EDED6789BACDED128 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:06:37.0000 3720 iPod Service - ok
21:06:37.0015 3720 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:06:37.0171 3720 IPSec - ok
21:06:37.0203 3720 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:06:37.0359 3720 IRENUM - ok
21:06:37.0406 3720 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:06:37.0562 3720 isapnp - ok
21:06:37.0640 3720 [ 54F694C6CD3A1149BA3A8BDACC83BADC ] ITMRTSVC C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
21:06:37.0640 3720 ITMRTSVC - ok
21:06:37.0781 3720 [ 9DBA73C2F1E76EC4CB837E67C5743596 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
21:06:37.0796 3720 JavaQuickStarterService - ok
21:06:37.0812 3720 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:06:37.0953 3720 Kbdclass - ok
21:06:38.0000 3720 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:06:38.0140 3720 kbdhid - ok
21:06:38.0187 3720 [ 52B115B2BE8987038D56B3B2AEB445F5 ] KLIF C:\WINDOWS\system32\DRIVERS\klif.sys
21:06:38.0218 3720 KLIF ( UnsignedFile.Multi.Generic ) - warning
21:06:38.0218 3720 KLIF - detected UnsignedFile.Multi.Generic (1)
21:06:38.0312 3720 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:06:38.0453 3720 kmixer - ok
21:06:38.0468 3720 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:06:38.0625 3720 KSecDD - ok
21:06:38.0671 3720 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:06:38.0828 3720 lanmanserver - ok
21:06:38.0906 3720 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:06:39.0062 3720 lanmanworkstation - ok
21:06:39.0093 3720 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:06:39.0234 3720 LmHosts - ok
21:06:39.0281 3720 [ F96CFB47903854F228BAAF3E2D41A0A3 ] LVPr2Mon C:\WINDOWS\system32\Drivers\LVPr2Mon.sys
21:06:39.0328 3720 LVPr2Mon - ok
21:06:39.0468 3720 [ FF23862146A682FCC3DBAA002E22F958 ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
21:06:39.0484 3720 LVPrcSrv - ok
21:06:39.0578 3720 [ E22FD7852E74F04CCEB6B8A684A51F3E ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:06:39.0640 3720 LVRS - ok
21:06:39.0687 3720 [ 5F987FC1AAD215EC2C60CF07719B1CCE ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
21:06:39.0703 3720 LVUSBSta - ok
21:06:39.0750 3720 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
21:06:39.0812 3720 MBAMProtector - ok
21:06:39.0968 3720 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:06:40.0015 3720 MBAMScheduler - ok
21:06:40.0109 3720 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:06:40.0156 3720 MBAMService - ok
21:06:40.0250 3720 [ 2241BA95626E55BE848A455273DDB018 ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
21:06:40.0265 3720 McAfee SiteAdvisor Service - ok
21:06:40.0406 3720 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
21:06:40.0453 3720 McComponentHostService - ok
21:06:40.0500 3720 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
21:06:40.0546 3720 McrdSvc - ok
21:06:40.0687 3720 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
21:06:40.0718 3720 MDM - ok
21:06:40.0781 3720 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:06:40.0812 3720 mdmxsdk - ok
21:06:40.0859 3720 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:06:41.0015 3720 Messenger - ok
21:06:41.0031 3720 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
21:06:41.0046 3720 MHN ( UnsignedFile.Multi.Generic ) - warning
21:06:41.0046 3720 MHN - detected UnsignedFile.Multi.Generic (1)
21:06:41.0062 3720 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
21:06:41.0062 3720 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
21:06:41.0062 3720 MHNDRV - detected UnsignedFile.Multi.Generic (1)
21:06:41.0093 3720 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:06:41.0250 3720 mnmdd - ok
21:06:41.0312 3720 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:06:41.0453 3720 mnmsrvc - ok
21:06:41.0531 3720 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:06:41.0671 3720 Modem - ok
21:06:41.0703 3720 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:06:41.0843 3720 Mouclass - ok
21:06:41.0906 3720 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:06:42.0078 3720 mouhid - ok
21:06:42.0109 3720 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:06:42.0265 3720 MountMgr - ok
21:06:42.0343 3720 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:06:42.0359 3720 MozillaMaintenance - ok
21:06:42.0406 3720 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:06:42.0562 3720 mraid35x - ok
21:06:42.0625 3720 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:06:42.0765 3720 MRxDAV - ok
21:06:42.0968 3720 [ 60AE98742484E7AB80C3C1450E708148 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:06:43.0093 3720 MRxSmb - ok
21:06:43.0171 3720 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:06:43.0296 3720 MSDTC - ok
21:06:43.0328 3720 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:06:43.0484 3720 Msfs - ok
21:06:43.0484 3720 MSIServer - ok
21:06:43.0515 3720 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:06:43.0671 3720 MSKSSRV - ok
21:06:43.0765 3720 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:06:43.0937 3720 MSPCLOCK - ok
21:06:43.0968 3720 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:06:44.0125 3720 MSPQM - ok
21:06:44.0156 3720 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:06:44.0359 3720 mssmbios - ok
21:06:44.0390 3720 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:06:44.0531 3720 MSTEE - ok
21:06:44.0562 3720 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:06:44.0687 3720 Mup - ok
21:06:44.0734 3720 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:06:44.0875 3720 NABTSFEC - ok
21:06:44.0984 3720 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:06:45.0218 3720 napagent - ok
21:06:45.0296 3720 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:06:45.0453 3720 NDIS - ok
21:06:45.0468 3720 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:06:45.0609 3720 NdisIP - ok
21:06:45.0656 3720 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:06:45.0812 3720 NdisTapi - ok
21:06:45.0875 3720 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:06:46.0015 3720 Ndisuio - ok
21:06:46.0031 3720 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:06:46.0156 3720 NdisWan - ok
21:06:46.0187 3720 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:06:46.0484 3720 NDProxy - ok
21:06:46.0531 3720 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:06:46.0703 3720 NetBIOS - ok
21:06:46.0843 3720 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:06:47.0000 3720 NetBT - ok
21:06:47.0062 3720 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
21:06:47.0250 3720 NetDDE - ok
21:06:47.0265 3720 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:06:47.0390 3720 NetDDEdsdm - ok
21:06:47.0453 3720 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:06:47.0609 3720 Netlogon - ok
21:06:47.0687 3720 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
21:06:47.0859 3720 Netman - ok
21:06:48.0000 3720 [ 9DA26B773BD04B867A8E9F427CD048FC ] NetSvc C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
21:06:48.0031 3720 NetSvc ( UnsignedFile.Multi.Generic ) - warning
21:06:48.0031 3720 NetSvc - detected UnsignedFile.Multi.Generic (1)
21:06:48.0046 3720 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:06:48.0187 3720 NIC1394 - ok
21:06:48.0250 3720 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] Nla C:\WINDOWS\System32\mswsock.dll
21:06:48.0343 3720 Nla - ok
21:06:48.0375 3720 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:06:48.0515 3720 Npfs - ok
21:06:48.0578 3720 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:06:48.0781 3720 Ntfs - ok
21:06:48.0812 3720 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:06:48.0937 3720 NtLmSsp - ok
21:06:48.0984 3720 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:06:49.0125 3720 NtmsSvc - ok
21:06:49.0156 3720 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:06:49.0312 3720 Null - ok
21:06:49.0531 3720 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:06:49.0796 3720 nv - ok
21:06:49.0843 3720 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:06:50.0015 3720 NwlnkFlt - ok
21:06:50.0046 3720 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:06:50.0187 3720 NwlnkFwd - ok
21:06:50.0218 3720 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:06:50.0375 3720 ohci1394 - ok
21:06:50.0437 3720 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:06:50.0468 3720 ose - ok
21:06:50.0531 3720 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:06:50.0718 3720 Parport - ok
21:06:50.0718 3720 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:06:50.0859 3720 PartMgr - ok
21:06:50.0890 3720 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:06:51.0031 3720 ParVdm - ok
21:06:51.0046 3720 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:06:51.0187 3720 PCI - ok
21:06:51.0203 3720 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:06:51.0359 3720 PCIIde - ok
21:06:51.0421 3720 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:06:51.0546 3720 Pcmcia - ok
21:06:51.0609 3720 [ 4349C7DC0C982CFFC11946FFF20F8524 ] pepifilter C:\WINDOWS\system32\DRIVERS\lv302af.sys
21:06:51.0609 3720 pepifilter - ok
21:06:51.0640 3720 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
21:06:51.0781 3720 perc2 - ok
21:06:51.0828 3720 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:06:52.0046 3720 perc2hib - ok
21:06:52.0421 3720 [ 4FC23DAE30EF4F6A2952CD93104909E7 ] PID_PEPI C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
21:06:52.0515 3720 PID_PEPI - ok
21:06:52.0562 3720 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
21:06:52.0750 3720 PlugPlay - ok
21:06:52.0796 3720 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
21:06:52.0859 3720 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:06:52.0859 3720 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
21:06:52.0890 3720 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:06:53.0015 3720 PolicyAgent - ok
21:06:53.0062 3720 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:06:53.0203 3720 PptpMiniport - ok
21:06:53.0218 3720 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:06:53.0343 3720 ProtectedStorage - ok
21:06:53.0343 3720 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:06:53.0484 3720 PSched - ok
21:06:53.0500 3720 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:06:53.0625 3720 Ptilink - ok
21:06:53.0640 3720 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:06:53.0656 3720 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
21:06:53.0656 3720 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
21:06:53.0703 3720 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:06:53.0843 3720 ql1080 - ok
21:06:53.0843 3720 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:06:53.0984 3720 Ql10wnt - ok
21:06:53.0984 3720 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:06:54.0140 3720 ql12160 - ok
21:06:54.0140 3720 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:06:54.0296 3720 ql1240 - ok
21:06:54.0296 3720 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:06:54.0437 3720 ql1280 - ok
21:06:54.0468 3720 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:06:54.0593 3720 RasAcd - ok
21:06:54.0625 3720 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:06:54.0765 3720 RasAuto - ok
21:06:54.0796 3720 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:06:54.0953 3720 Rasl2tp - ok
21:06:55.0000 3720 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:06:55.0125 3720 RasMan - ok
21:06:55.0156 3720 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:06:55.0312 3720 RasPppoe - ok
21:06:55.0328 3720 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:06:55.0484 3720 Raspti - ok
21:06:55.0515 3720 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:06:55.0656 3720 Rdbss - ok
21:06:55.0671 3720 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:06:55.0796 3720 RDPCDD - ok
21:06:55.0828 3720 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:06:55.0984 3720 rdpdr - ok
21:06:56.0015 3720 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:06:56.0156 3720 RDPWD - ok
21:06:56.0187 3720 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:06:56.0312 3720 RDSessMgr - ok
21:06:56.0343 3720 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:06:56.0468 3720 redbook - ok
21:06:56.0500 3720 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:06:56.0640 3720 RemoteAccess - ok
21:06:56.0703 3720 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:06:56.0859 3720 RemoteRegistry - ok
21:06:56.0875 3720 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
21:06:57.0031 3720 RpcLocator - ok
21:06:57.0062 3720 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:06:57.0218 3720 RpcSs - ok
21:06:57.0265 3720 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:06:57.0390 3720 RSVP - ok
21:06:57.0437 3720 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
21:06:57.0562 3720 SamSs - ok
21:06:57.0609 3720 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:06:57.0750 3720 SCardSvr - ok
21:06:57.0796 3720 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:06:57.0937 3720 Schedule - ok
21:06:57.0984 3720 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:06:58.0125 3720 Secdrv - ok
21:06:58.0140 3720 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:06:58.0281 3720 seclogon - ok
21:06:58.0296 3720 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
21:06:58.0453 3720 SENS - ok
21:06:58.0484 3720 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:06:58.0609 3720 serenum - ok
21:06:58.0640 3720 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:06:58.0796 3720 Serial - ok
21:06:58.0812 3720 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:06:58.0953 3720 Sfloppy - ok
21:06:58.0984 3720 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:06:59.0125 3720 ShellHWDetection - ok
21:06:59.0125 3720 Simbad - ok
21:06:59.0171 3720 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:06:59.0296 3720 sisagp - ok
21:06:59.0328 3720 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:06:59.0453 3720 SLIP - ok
21:06:59.0484 3720 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:06:59.0562 3720 Sparrow - ok
21:06:59.0593 3720 [ 658AD50E7B6909F4BB514F7CC1D4F1B2 ] SPCA508A C:\WINDOWS\system32\DRIVERS\SPCA508A.SYS
21:06:59.0625 3720 SPCA508A ( UnsignedFile.Multi.Generic ) - warning
21:06:59.0625 3720 SPCA508A - detected UnsignedFile.Multi.Generic (1)
21:06:59.0640 3720 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:06:59.0781 3720 splitter - ok
21:06:59.0828 3720 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:06:59.0968 3720 Spooler - ok
21:07:00.0078 3720 sprtsvc_dellsupportcenter - ok
21:07:00.0093 3720 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:07:00.0250 3720 sr - ok
21:07:00.0312 3720 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
21:07:00.0453 3720 srservice - ok
21:07:00.0500 3720 [ 3BB03F2BA89D2BE417206C373D2AF17C ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:07:00.0562 3720 Srv - ok
21:07:00.0578 3720 [ D6870895FE46A464A19141440EB6CC1E ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys
21:07:00.0640 3720 sscdbus - ok
21:07:00.0687 3720 [ 0FE167362E4689B716CDC8D93ADEDDA8 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
21:07:00.0765 3720 sscdmdfl - ok
21:07:00.0812 3720 [ 55A15707E32B6709242AD127E62CA55A ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
21:07:00.0828 3720 sscdmdm - ok
21:07:00.0875 3720 [ 9FA66E361A99F8920C7609BAE6814A0E ] sscdserd C:\WINDOWS\system32\DRIVERS\sscdserd.sys
21:07:00.0890 3720 sscdserd - ok
21:07:00.0906 3720 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:07:01.0046 3720 SSDPSRV - ok
21:07:01.0125 3720 [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
21:07:01.0187 3720 STHDA - ok
21:07:01.0218 3720 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:07:01.0359 3720 stisvc - ok
21:07:01.0375 3720 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:07:01.0515 3720 streamip - ok
21:07:01.0531 3720 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:07:01.0671 3720 swenum - ok
21:07:01.0703 3720 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:07:01.0843 3720 swmidi - ok
21:07:01.0843 3720 SwPrv - ok
21:07:01.0875 3720 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
21:07:02.0031 3720 symc810 - ok
21:07:02.0062 3720 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:07:02.0203 3720 symc8xx - ok
21:07:02.0203 3720 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:07:02.0343 3720 sym_hi - ok
21:07:02.0359 3720 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:07:02.0500 3720 sym_u3 - ok
21:07:02.0515 3720 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:07:02.0671 3720 sysaudio - ok
21:07:02.0703 3720 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:07:02.0843 3720 SysmonLog - ok
21:07:02.0875 3720 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:07:03.0015 3720 TapiSrv - ok
21:07:03.0093 3720 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:07:03.0125 3720 Tcpip - ok
21:07:03.0171 3720 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:07:03.0312 3720 TDPIPE - ok
21:07:03.0328 3720 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:07:03.0468 3720 TDTCP - ok
21:07:03.0656 3720 [ 851C5080261DFC1FCDC21DF0E5EA3BCB ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
21:07:03.0781 3720 TeamViewer8 - ok
21:07:03.0812 3720 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:07:03.0953 3720 TermDD - ok
21:07:04.0000 3720 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
21:07:04.0125 3720 TermService - ok
21:07:04.0156 3720 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:07:04.0296 3720 Themes - ok
21:07:04.0328 3720 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
21:07:04.0453 3720 TlntSvr - ok
21:07:04.0484 3720 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
21:07:04.0609 3720 TosIde - ok
21:07:04.0640 3720 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:07:04.0781 3720 TrkWks - ok
21:07:04.0828 3720 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:07:04.0968 3720 Udfs - ok
21:07:05.0000 3720 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
21:07:05.0062 3720 ultra - ok
21:07:05.0140 3720 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:07:05.0265 3720 Update - ok
21:07:05.0312 3720 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:07:05.0468 3720 upnphost - ok
21:07:05.0515 3720 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
21:07:05.0671 3720 UPS - ok
21:07:05.0718 3720 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
21:07:05.0859 3720 usbaudio - ok
21:07:05.0890 3720 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:07:06.0031 3720 usbccgp - ok
21:07:06.0046 3720 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:07:06.0187 3720 usbehci - ok
21:07:06.0203 3720 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:07:06.0343 3720 usbhub - ok
21:07:06.0375 3720 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:07:06.0515 3720 usbprint - ok
21:07:06.0531 3720 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:07:06.0671 3720 usbscan - ok
21:07:06.0703 3720 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:07:06.0859 3720 USBSTOR - ok
21:07:06.0890 3720 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:07:07.0046 3720 usbuhci - ok
21:07:07.0125 3720 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:07:07.0281 3720 VgaSave - ok
21:07:07.0312 3720 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:07:07.0468 3720 viaagp - ok
21:07:07.0500 3720 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
21:07:07.0640 3720 ViaIde - ok
21:07:07.0671 3720 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:07:07.0796 3720 VolSnap - ok
21:07:07.0843 3720 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
21:07:07.0984 3720 VSS - ok
21:07:08.0031 3720 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
21:07:08.0187 3720 w32time - ok
21:07:08.0218 3720 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:07:08.0359 3720 Wanarp - ok
21:07:08.0406 3720 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
21:07:08.0453 3720 wanatw - ok
21:07:08.0484 3720 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:07:08.0625 3720 wdmaud - ok
21:07:08.0640 3720 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:07:08.0781 3720 WebClient - ok
21:07:08.0828 3720 [ 59D043485A6EDA2ED2685C81489AE5BD ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
21:07:08.0890 3720 winachsf - ok
21:07:08.0984 3720 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:07:09.0125 3720 winmgmt - ok
21:07:09.0171 3720 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:07:09.0250 3720 WmdmPmSN - ok
21:07:09.0296 3720 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi C:\WINDOWS\System32\advapi32.dll
21:07:09.0453 3720 Wmi - ok
21:07:09.0484 3720 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:07:09.0625 3720 WmiApSrv - ok
21:07:09.0750 3720 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:07:09.0828 3720 WMPNetworkSvc - ok
21:07:09.0875 3720 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:07:10.0015 3720 WSTCODEC - ok
21:07:10.0062 3720 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:07:10.0109 3720 WudfPf - ok
21:07:10.0125 3720 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:07:10.0156 3720 WudfRd - ok
21:07:10.0187 3720 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:07:10.0234 3720 WudfSvc - ok
21:07:10.0312 3720 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:07:10.0468 3720 WZCSVC - ok
21:07:10.0515 3720 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:07:10.0687 3720 xmlprov - ok
21:07:10.0687 3720 ================ Scan global ===============================
21:07:10.0734 3720 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:07:10.0750 3720 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
21:07:10.0765 3720 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
21:07:10.0796 3720 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
21:07:10.0796 3720 [Global] - ok
21:07:10.0796 3720 ================ Scan MBR ==================================
21:07:10.0828 3720 [ 91722E6BC3A2B40FF00222DCA4A3DB3E ] \Device\Harddisk0\DR0
21:07:11.0296 3720 \Device\Harddisk0\DR0 - ok
21:07:11.0296 3720 ================ Scan VBR ==================================
21:07:11.0328 3720 [ 61BEBFC3ECDDB293245631EC4A88E250 ] \Device\Harddisk0\DR0\Partition1
21:07:11.0343 3720 \Device\Harddisk0\DR0\Partition1 - ok
21:07:11.0343 3720 ================ Scan active images ========================
21:07:11.0343 3720 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] C:\WINDOWS\system32\drivers\nic1394.sys
21:07:11.0343 3720 C:\WINDOWS\system32\drivers\nic1394.sys - ok
21:07:11.0343 3720 [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
21:07:11.0343 3720 C:\WINDOWS\system32\drivers\intelppm.sys - ok
21:07:11.0343 3720 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
21:07:11.0343 3720 C:\WINDOWS\system32\drivers\videoprt.sys - ok
21:07:11.0359 3720 [ 5A8E05F1D5C36ABD58CFFA111EB325EA ] C:\WINDOWS\system32\drivers\ialmnt5.sys
21:07:11.0359 3720 C:\WINDOWS\system32\drivers\ialmnt5.sys - ok
21:07:11.0359 3720 [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
21:07:11.0359 3720 C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
21:07:11.0359 3720 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
21:07:11.0359 3720 C:\WINDOWS\system32\drivers\usbport.sys - ok
21:07:11.0375 3720 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
21:07:11.0375 3720 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
21:07:11.0375 3720 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
21:07:11.0375 3720 C:\WINDOWS\system32\drivers\usbehci.sys - ok
21:07:11.0375 3720 [ D57A8FC800B501AC05B10D00F66D127A ] C:\WINDOWS\system32\drivers\e100b325.sys
21:07:11.0375 3720 C:\WINDOWS\system32\drivers\e100b325.sys - ok
21:07:11.0390 3720 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
21:07:11.0390 3720 C:\WINDOWS\system32\drivers\imapi.sys - ok
21:07:11.0390 3720 [ D979BEBCF7EDCC9C9EE1857D1A68C67B ] C:\WINDOWS\system32\drivers\DLACDBHM.SYS
21:07:11.0390 3720 C:\WINDOWS\system32\drivers\DLACDBHM.SYS - ok
21:07:11.0390 3720 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
21:07:11.0390 3720 C:\WINDOWS\system32\drivers\cdrom.sys - ok
21:07:11.0406 3720 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
21:07:11.0406 3720 C:\WINDOWS\system32\drivers\ks.sys - ok
21:07:11.0406 3720 [ 1976FEDF6D7F87135C9B7F5CB4C8C868 ] C:\WINDOWS\system32\drivers\ELacpi.sys
21:07:11.0406 3720 C:\WINDOWS\system32\drivers\ELacpi.sys - ok
21:07:11.0406 3720 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
21:07:11.0406 3720 C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
21:07:11.0421 3720 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
21:07:11.0421 3720 C:\WINDOWS\system32\drivers\redbook.sys - ok
21:07:11.0421 3720 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
21:07:11.0421 3720 C:\WINDOWS\system32\drivers\usbd.sys - ok
21:07:11.0421 3720 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
21:07:11.0421 3720 C:\WINDOWS\system32\drivers\audstub.sys - ok
21:07:11.0437 3720 [ 5F987FC1AAD215EC2C60CF07719B1CCE ] C:\WINDOWS\system32\drivers\LVUSBSta.sys
21:07:11.0437 3720 C:\WINDOWS\system32\drivers\LVUSBSta.sys - ok
21:07:11.0437 3720 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] C:\WINDOWS\system32\drivers\ndistapi.sys
21:07:11.0437 3720 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
21:07:11.0437 3720 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
21:07:11.0437 3720 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
21:07:11.0453 3720 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
21:07:11.0453 3720 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
21:07:11.0453 3720 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
21:07:11.0453 3720 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
21:07:11.0453 3720 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
21:07:11.0453 3720 C:\WINDOWS\system32\drivers\psched.sys - ok
21:07:11.0468 3720 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
21:07:11.0468 3720 C:\WINDOWS\system32\drivers\raspptp.sys - ok
21:07:11.0468 3720 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
21:07:11.0468 3720 C:\WINDOWS\system32\drivers\tdi.sys - ok
21:07:11.0468 3720 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
21:07:11.0468 3720 C:\WINDOWS\system32\drivers\msgpc.sys - ok
21:07:11.0484 3720 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
21:07:11.0484 3720 C:\WINDOWS\system32\drivers\ptilink.sys - ok
21:07:11.0484 3720 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
21:07:11.0484 3720 C:\WINDOWS\system32\drivers\raspti.sys - ok
21:07:11.0484 3720 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
21:07:11.0484 3720 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
21:07:11.0500 3720 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] C:\WINDOWS\system32\drivers\wanatw4.sys
21:07:11.0500 3720 C:\WINDOWS\system32\drivers\wanatw4.sys - ok
21:07:11.0500 3720 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
21:07:11.0500 3720 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
21:07:11.0500 3720 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
21:07:11.0500 3720 C:\WINDOWS\system32\drivers\mouclass.sys - ok
21:07:11.0515 3720 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
21:07:11.0515 3720 C:\WINDOWS\system32\drivers\swenum.sys - ok
21:07:11.0515 3720 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
21:07:11.0515 3720 C:\WINDOWS\system32\drivers\termdd.sys - ok
21:07:11.0531 3720 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
21:07:11.0531 3720 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
21:07:11.0531 3720 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
21:07:11.0531 3720 C:\WINDOWS\system32\drivers\update.sys - ok
21:07:11.0531 3720 [ 6215023940CFD3702B46ABC304E1D45A ] C:\WINDOWS\system32\drivers\ndproxy.sys
21:07:11.0531 3720 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
21:07:11.0546 3720 [ 0D87CB825ED6CB2EBCC147A10A42F1D6 ] C:\WINDOWS\system32\drivers\ELmon.sys
21:07:11.0546 3720 C:\WINDOWS\system32\drivers\ELmon.sys - ok
21:07:11.0546 3720 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
21:07:11.0546 3720 C:\WINDOWS\system32\drivers\usbhub.sys - ok
21:07:11.0562 3720 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
21:07:11.0562 3720 C:\WINDOWS\system32\drivers\drmk.sys - ok
21:07:11.0562 3720 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
21:07:11.0562 3720 C:\WINDOWS\system32\drivers\portcls.sys - ok
21:07:11.0562 3720 [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] C:\WINDOWS\system32\drivers\sthda.sys
21:07:11.0562 3720 C:\WINDOWS\system32\drivers\sthda.sys - ok
21:07:11.0578 3720 [ 14B15D0D803EF4AB9B525B7E2DA303EF ] C:\WINDOWS\system32\drivers\HSFHWAZL.sys
21:07:11.0578 3720 C:\WINDOWS\system32\drivers\HSFHWAZL.sys - ok
21:07:11.0578 3720 [ CBF6831420A97E8FBB91E5F52B707EF7 ] C:\WINDOWS\system32\drivers\HSF_DPV.SYS
21:07:11.0578 3720 C:\WINDOWS\system32\drivers\HSF_DPV.SYS - ok
21:07:11.0593 3720 [ 59D043485A6EDA2ED2685C81489AE5BD ] C:\WINDOWS\system32\drivers\HSF_CNXT.sys
21:07:11.0593 3720 C:\WINDOWS\system32\drivers\HSF_CNXT.sys - ok
21:07:11.0593 3720 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
21:07:11.0593 3720 C:\WINDOWS\system32\drivers\modem.sys - ok
21:07:11.0593 3720 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
21:07:11.0593 3720 C:\WINDOWS\system32\drivers\beep.sys - ok
21:07:11.0609 3720 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
21:07:11.0609 3720 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
21:07:11.0609 3720 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
21:07:11.0609 3720 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
21:07:11.0609 3720 [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
21:07:11.0609 3720 C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
21:07:11.0625 3720 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
21:07:11.0625 3720 C:\WINDOWS\system32\drivers\null.sys - ok
21:07:11.0625 3720 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
21:07:11.0625 3720 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
21:07:11.0640 3720 [ 7EE0852AE8907689DF25049DCD2342E8 ] C:\WINDOWS\system32\drivers\DLARTL_N.SYS
21:07:11.0640 3720 C:\WINDOWS\system32\drivers\DLARTL_N.SYS - ok
21:07:11.0656 3720 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
21:07:11.0656 3720 C:\WINDOWS\system32\drivers\hidparse.sys - ok
21:07:11.0656 3720 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
21:07:11.0656 3720 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
21:07:11.0671 3720 [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
21:07:11.0671 3720 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
21:07:11.0671 3720 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
21:07:11.0671 3720 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
21:07:11.0671 3720 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
21:07:11.0671 3720 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
21:07:11.0671 3720 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
21:07:11.0671 3720 C:\WINDOWS\system32\drivers\vga.sys - ok
21:07:11.0687 3720 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
21:07:11.0687 3720 C:\WINDOWS\system32\drivers\ipsec.sys - ok
21:07:11.0687 3720 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
21:07:11.0687 3720 C:\WINDOWS\system32\drivers\msfs.sys - ok
21:07:11.0703 3720 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
21:07:11.0703 3720 C:\WINDOWS\system32\drivers\npfs.sys - ok
21:07:11.0703 3720 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
21:07:11.0703 3720 C:\WINDOWS\system32\drivers\rasacd.sys - ok
21:07:11.0703 3720 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
21:07:11.0703 3720 C:\WINDOWS\system32\drivers\tcpip.sys - ok
21:07:11.0718 3720 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
21:07:11.0718 3720 C:\WINDOWS\system32\drivers\netbt.sys - ok
21:07:11.0718 3720 [ F6C5B9B10EE127ED13063D25B36AAB91 ] C:\WINDOWS\system32\drivers\afd.sys
21:07:11.0718 3720 C:\WINDOWS\system32\drivers\afd.sys - ok
21:07:11.0718 3720 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
21:07:11.0718 3720 C:\WINDOWS\system32\drivers\wanarp.sys - ok
21:07:11.0734 3720 [ B5B8A80875C1DEDEDA8B02765642C32F ] C:\WINDOWS\system32\drivers\arp1394.sys
21:07:11.0734 3720 C:\WINDOWS\system32\drivers\arp1394.sys - ok
21:07:11.0734 3720 [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
21:07:11.0734 3720 C:\WINDOWS\system32\drivers\usbccgp.sys - ok
21:07:11.0734 3720 [ 4FC23DAE30EF4F6A2952CD93104909E7 ] C:\WINDOWS\system32\drivers\LV302V32.SYS
21:07:11.0734 3720 C:\WINDOWS\system32\drivers\LV302V32.SYS - ok
21:07:11.0750 3720 [ 4349C7DC0C982CFFC11946FFF20F8524 ] C:\WINDOWS\system32\drivers\lv302af.sys
21:07:11.0750 3720 C:\WINDOWS\system32\drivers\lv302af.sys - ok
21:07:11.0750 3720 [ E919708DB44ED8543A7C017953148330 ] C:\WINDOWS\system32\drivers\USBAUDIO.sys
21:07:11.0750 3720 C:\WINDOWS\system32\drivers\USBAUDIO.sys - ok
21:07:11.0750 3720 [ E22FD7852E74F04CCEB6B8A684A51F3E ] C:\WINDOWS\system32\drivers\lvrs.sys
21:07:11.0750 3720 C:\WINDOWS\system32\drivers\lvrs.sys - ok
21:07:11.0765 3720 [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
21:07:11.0765 3720 C:\WINDOWS\system32\drivers\hidclass.sys - ok
21:07:11.0765 3720 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
21:07:11.0765 3720 C:\WINDOWS\system32\drivers\hidusb.sys - ok
21:07:11.0765 3720 [ AE65C02444907966378454138B9F99F0 ] C:\WINDOWS\system32\drivers\ELhid.sys
21:07:11.0765 3720 C:\WINDOWS\system32\drivers\ELhid.sys - ok
21:07:11.0781 3720 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] C:\WINDOWS\system32\drivers\usbscan.sys
21:07:11.0781 3720 C:\WINDOWS\system32\drivers\usbscan.sys - ok
21:07:11.0781 3720 [ A717C8721046828520C9EDF31288FC00 ] C:\WINDOWS\system32\drivers\usbprint.sys
21:07:11.0781 3720 C:\WINDOWS\system32\drivers\usbprint.sys - ok
21:07:11.0796 3720 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] C:\WINDOWS\system32\drivers\HPZius12.sys
21:07:11.0796 3720 C:\WINDOWS\system32\drivers\HPZius12.sys - ok
21:07:11.0796 3720 [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1 ] C:\WINDOWS\system32\drivers\ELkbd.sys
21:07:11.0796 3720 C:\WINDOWS\system32\drivers\ELkbd.sys - ok
21:07:11.0796 3720 [ A4ADD3847B67BACAB6FC851A2B60FDB3 ] C:\WINDOWS\system32\drivers\ELmou.sys
21:07:11.0796 3720 C:\WINDOWS\system32\drivers\ELmou.sys - ok
21:07:11.0812 3720 [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
21:07:11.0812 3720 C:\WINDOWS\system32\drivers\mouhid.sys - ok
21:07:11.0812 3720 [ 30CA91E657CEDE2F95359D6EF186F650 ] C:\WINDOWS\system32\drivers\HPZid412.sys
21:07:11.0812 3720 C:\WINDOWS\system32\drivers\HPZid412.sys - ok
21:07:11.0812 3720 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] C:\WINDOWS\system32\drivers\HPZipr12.sys
21:07:11.0812 3720 C:\WINDOWS\system32\drivers\HPZipr12.sys - ok
21:07:11.0828 3720 [ 7E775010EF291DA96AD17CA4B17137D7 ] C:\WINDOWS\system32\drivers\`
21:07:11.0828 3720 C:\WINDOWS\system32\drivers\` - ok
21:07:11.0828 3720 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
21:07:11.0828 3720 C:\WINDOWS\system32\drivers\netbios.sys - ok
21:07:11.0828 3720 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
21:07:11.0828 3720 C:\WINDOWS\system32\drivers\rdbss.sys - ok
21:07:11.0843 3720 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
21:07:11.0843 3720 C:\WINDOWS\system32\drivers\serial.sys - ok
21:07:11.0843 3720 [ 52B115B2BE8987038D56B3B2AEB445F5 ] C:\WINDOWS\system32\drivers\klif.sys
21:07:11.0843 3720 C:\WINDOWS\system32\drivers\klif.sys - ok
21:07:11.0843 3720 [ 60AE98742484E7AB80C3C1450E708148 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
21:07:11.0843 3720 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
21:07:11.0859 3720 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
21:07:11.0859 3720 C:\WINDOWS\system32\drivers\fips.sys - ok
21:07:11.0859 3720 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
21:07:11.0859 3720 C:\WINDOWS\system32\smss.exe - ok
21:07:11.0859 3720 [ 27D9ED8CB8B62D1E0A8E5ACE6CF52E2F ] C:\WINDOWS\system32\ntdll.dll
21:07:11.0859 3720 C:\WINDOWS\system32\ntdll.dll - ok
21:07:11.0875 3720 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
21:07:11.0875 3720 C:\WINDOWS\system32\autochk.exe - ok
21:07:11.0875 3720 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
21:07:11.0875 3720 C:\WINDOWS\system32\sfcfiles.dll - ok
21:07:11.0875 3720 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
21:07:11.0875 3720 C:\WINDOWS\system32\drivers\cdfs.sys - ok
21:07:11.0890 3720 [ 9A65E42664D1534B68512CAAD0EFE963 ] C:\WINDOWS\system32\drivers\iaStor.sys
21:07:11.0890 3720 C:\WINDOWS\system32\drivers\iaStor.sys - ok
21:07:11.0890 3720 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
21:07:11.0890 3720 C:\WINDOWS\system32\drivers\dxapi.sys - ok
21:07:11.0906 3720 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
21:07:11.0906 3720 C:\WINDOWS\system32\watchdog.sys - ok
21:07:11.0906 3720 [ D21A189185D3A74512CC8E68F16E3FCF ] C:\WINDOWS\system32\win32k.sys
21:07:11.0906 3720 C:\WINDOWS\system32\win32k.sys - ok
21:07:11.0906 3720 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:07:11.0906 3720 C:\WINDOWS\system32\basesrv.dll - ok
21:07:11.0921 3720 [ 05B100F8DD7073BFD7B3E46D0E36AD0C ] C:\WINDOWS\system32\csrsrv.dll
21:07:11.0921 3720 C:\WINDOWS\system32\csrsrv.dll - ok
21:07:11.0921 3720 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
21:07:11.0921 3720 C:\WINDOWS\system32\csrss.exe - ok
21:07:11.0921 3720 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
21:07:11.0921 3720 C:\WINDOWS\system32\winsrv.dll - ok
21:07:11.0937 3720 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
21:07:11.0937 3720 C:\WINDOWS\system32\gdi32.dll - ok
21:07:11.0937 3720 [ C24B983D211C34DA8FCC1AC38477971D ] C:\WINDOWS\system32\kernel32.dll
21:07:11.0937 3720 C:\WINDOWS\system32\kernel32.dll - ok
21:07:11.0937 3720 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
21:07:11.0937 3720 C:\WINDOWS\system32\user32.dll - ok
21:07:11.0953 3720 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
21:07:11.0953 3720 C:\WINDOWS\system32\drivers\dxg.sys - ok
21:07:11.0953 3720 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
21:07:11.0953 3720 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
21:07:11.0953 3720 [ A70E25C193FE92936665617D3B4973D6 ] C:\WINDOWS\system32\ialmdnt5.dll
21:07:11.0953 3720 C:\WINDOWS\system32\ialmdnt5.dll - ok
21:07:11.0968 3720 [ 4C3E431C30F13918B2B624839C5851D4 ] C:\WINDOWS\system32\ialmrnt5.dll
21:07:11.0968 3720 C:\WINDOWS\system32\ialmrnt5.dll - ok
21:07:11.0968 3720 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
21:07:11.0968 3720 C:\WINDOWS\system32\vga.dll - ok
21:07:11.0968 3720 [ D3F8D22ED63CDBB7F535AA4A914296C4 ] C:\WINDOWS\system32\ialmdev5.dll
21:07:11.0968 3720 C:\WINDOWS\system32\ialmdev5.dll - ok
21:07:11.0984 3720 [ ECAF48B8262DCEFCC605FABCBB15B6EF ] C:\WINDOWS\system32\ialmdd5.dll
21:07:11.0984 3720 C:\WINDOWS\system32\ialmdd5.dll - ok
21:07:11.0984 3720 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
21:07:11.0984 3720 C:\WINDOWS\system32\winlogon.exe - ok
21:07:11.0984 3720 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] C:\WINDOWS\system32\advapi32.dll
21:07:11.0984 3720 C:\WINDOWS\system32\advapi32.dll - ok
21:07:12.0000 3720 [ B979D9D1C8073DA21A7F80345F306A1D ] C:\WINDOWS\system32\rpcrt4.dll
21:07:12.0000 3720 C:\WINDOWS\system32\rpcrt4.dll - ok
21:07:12.0000 3720 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
21:07:12.0000 3720 C:\WINDOWS\system32\authz.dll - ok
21:07:12.0000 3720 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
21:07:12.0000 3720 C:\WINDOWS\system32\msvcrt.dll - ok
21:07:12.0015 3720 [ 7459C16CC3EF4651CAB7C9260E43FC58 ] C:\WINDOWS\system32\secur32.dll
21:07:12.0015 3720 C:\WINDOWS\system32\secur32.dll - ok
21:07:12.0015 3720 [ BDAAF79DD63F194434D31A74B9BB8B77 ] C:\WINDOWS\system32\crypt32.dll
21:07:12.0015 3720 C:\WINDOWS\system32\crypt32.dll - ok
21:07:12.0015 3720 [ A11F1EA5346165347BF54C1F959C3FBC ] C:\WINDOWS\system32\msasn1.dll
21:07:12.0015 3720 C:\WINDOWS\system32\msasn1.dll - ok
21:07:12.0031 3720 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
21:07:12.0031 3720 C:\WINDOWS\system32\nddeapi.dll - ok
21:07:12.0031 3720 [ 318230E845919255EF3C5D5E1E863631 ] C:\WINDOWS\system32\netapi32.dll
21:07:12.0031 3720 C:\WINDOWS\system32\netapi32.dll - ok
21:07:12.0046 3720 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
21:07:12.0046 3720 C:\WINDOWS\system32\profmap.dll - ok
21:07:12.0046 3720 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
21:07:12.0046 3720 C:\WINDOWS\system32\userenv.dll - ok
21:07:12.0046 3720 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
21:07:12.0046 3720 C:\WINDOWS\system32\psapi.dll - ok
21:07:12.0062 3720 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
21:07:12.0062 3720 C:\WINDOWS\system32\regapi.dll - ok
21:07:12.0062 3720 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
21:07:12.0062 3720 C:\WINDOWS\system32\setupapi.dll - ok
21:07:12.0062 3720 [ CA648BD638245EB83F971FF71B031BEC ] C:\WINDOWS\system32\imagehlp.dll
21:07:12.0062 3720 C:\WINDOWS\system32\imagehlp.dll - ok
21:07:12.0078 3720 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
21:07:12.0078 3720 C:\WINDOWS\system32\version.dll - ok
21:07:12.0078 3720 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
21:07:12.0078 3720 C:\WINDOWS\system32\winsta.dll - ok
21:07:12.0078 3720 [ B25D14DCBBB6623C1A63CD07A97DF32B ] C:\WINDOWS\system32\wintrust.dll
21:07:12.0078 3720 C:\WINDOWS\system32\wintrust.dll - ok
21:07:12.0093 3720 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
21:07:12.0093 3720 C:\WINDOWS\system32\imm32.dll - ok
21:07:12.0093 3720 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
21:07:12.0093 3720 C:\WINDOWS\system32\ws2help.dll - ok
21:07:12.0093 3720 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
21:07:12.0093 3720 C:\WINDOWS\system32\ws2_32.dll - ok
21:07:12.0109 3720 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
21:07:12.0109 3720 C:\WINDOWS\system32\kbdus.dll - ok
21:07:12.0109 3720 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
21:07:12.0109 3720 C:\WINDOWS\system32\msgina.dll - ok
21:07:12.0125 3720 [ 06F247492BC786CE5C24A23E178C711A ] C:\WINDOWS\system32\comctl32.dll
21:07:12.0125 3720 C:\WINDOWS\system32\comctl32.dll - ok
21:07:12.0125 3720 [ 52A5A388661FF3A889593185367B7226 ] C:\WINDOWS\system32\odbc32.dll
21:07:12.0125 3720 C:\WINDOWS\system32\odbc32.dll - ok
21:07:12.0125 3720 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
21:07:12.0125 3720 C:\WINDOWS\system32\comdlg32.dll - ok
21:07:12.0140 3720 [ 0CF50B1F45DAB08430C1DBB79FE2CA5B ] C:\WINDOWS\system32\shell32.dll
21:07:12.0140 3720 C:\WINDOWS\system32\shell32.dll - ok
21:07:12.0140 3720 [ 72EDAE61E761C14714BFD0CB4BA3C0DB ] C:\WINDOWS\system32\shlwapi.dll
21:07:12.0140 3720 C:\WINDOWS\system32\shlwapi.dll - ok
21:07:12.0140 3720 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
21:07:12.0140 3720 C:\WINDOWS\system32\sxs.dll - ok
21:07:12.0156 3720 [ BD38D1EBE24A46BD3EDA059560AFBA12 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
21:07:12.0156 3720 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll - ok
21:07:12.0156 3720 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
21:07:12.0156 3720 C:\WINDOWS\system32\odbcint.dll - ok
21:07:12.0156 3720 [ 1926899BF9FFE2602B63074971700412 ] C:\WINDOWS\system32\shsvcs.dll
21:07:12.0156 3720 C:\WINDOWS\system32\shsvcs.dll - ok
21:07:12.0171 3720 [ ECCE74BC6168375016450A86A164D976 ] C:\WINDOWS\system32\ole32.dll
21:07:12.0171 3720 C:\WINDOWS\system32\ole32.dll - ok
21:07:12.0171 3720 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
21:07:12.0171 3720 C:\WINDOWS\system32\sfc.dll - ok
21:07:12.0171 3720 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
21:07:12.0171 3720 C:\WINDOWS\system32\sfc_os.dll - ok
21:07:12.0187 3720 [ FA67DFCB786A624D6BE582FA532D8FF2 ] C:\WINDOWS\system32\dcomrint.dll
21:07:12.0187 3720 C:\WINDOWS\system32\dcomrint.dll - ok
21:07:12.0187 3720 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
21:07:12.0187 3720 C:\WINDOWS\system32\apphelp.dll - ok
21:07:12.0187 3720 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
21:07:12.0187 3720 C:\WINDOWS\system32\lsass.exe - ok
21:07:12.0203 3720 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
21:07:12.0203 3720 C:\WINDOWS\system32\services.exe - ok
21:07:12.0203 3720 [ EA9AAA0B9BBF9B24FD3CAECC7FD69A1E ] C:\WINDOWS\system32\lsasrv.dll
21:07:12.0203 3720 C:\WINDOWS\system32\lsasrv.dll - ok
21:07:12.0203 3720 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
21:07:12.0203 3720 C:\WINDOWS\system32\ncobjapi.dll - ok
21:07:12.0218 3720 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
21:07:12.0218 3720 C:\WINDOWS\system32\msvcp60.dll - ok
21:07:12.0218 3720 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
21:07:12.0218 3720 C:\WINDOWS\system32\mpr.dll - ok
21:07:12.0218 3720 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
21:07:12.0218 3720 C:\WINDOWS\system32\scesrv.dll - ok
21:07:12.0234 3720 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
21:07:12.0234 3720 C:\WINDOWS\system32\ntdsapi.dll - ok
21:07:12.0234 3720 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
21:07:12.0234 3720 C:\WINDOWS\system32\umpnpmgr.dll - ok
21:07:12.0234 3720 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
21:07:12.0234 3720 C:\WINDOWS\AppPatch\acadproc.dll - ok
21:07:12.0250 3720 [ 5D3FDE8FB2801A2041D1B965372C4928 ] C:\WINDOWS\system32\dnsapi.dll
21:07:12.0250 3720 C:\WINDOWS\system32\dnsapi.dll - ok
21:07:12.0250 3720 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
21:07:12.0250 3720 C:\WINDOWS\system32\shimeng.dll - ok
21:07:12.0250 3720 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
21:07:12.0250 3720 C:\WINDOWS\system32\wldap32.dll - ok
21:07:12.0265 3720 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
21:07:12.0265 3720 C:\WINDOWS\AppPatch\acgenral.dll - ok
21:07:12.0265 3720 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
21:07:12.0265 3720 C:\WINDOWS\system32\cryptdll.dll - ok
21:07:12.0281 3720 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
21:07:12.0281 3720 C:\WINDOWS\system32\samlib.dll - ok
21:07:12.0281 3720 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
21:07:12.0281 3720 C:\WINDOWS\system32\samsrv.dll - ok
21:07:12.0281 3720 [ 387006CF9983000BAB76DD250D424045 ] C:\WINDOWS\system32\oleaut32.dll
21:07:12.0281 3720 C:\WINDOWS\system32\oleaut32.dll - ok
21:07:12.0296 3720 [ F1300D0B4C40754A01DF16F350F0EF60 ] C:\WINDOWS\system32\winmm.dll
21:07:12.0296 3720 C:\WINDOWS\system32\winmm.dll - ok
21:07:12.0296 3720 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
21:07:12.0296 3720 C:\WINDOWS\system32\msacm32.dll - ok
21:07:12.0296 3720 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
21:07:12.0296 3720 C:\WINDOWS\system32\uxtheme.dll - ok
21:07:12.0312 3720 [ B17DEFD576AE373E7A1A2C75665E4549 ] C:\WINDOWS\system32\kerberos.dll
21:07:12.0312 3720 C:\WINDOWS\system32\kerberos.dll - ok
21:07:12.0312 3720 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
21:07:12.0312 3720 C:\WINDOWS\system32\msctfime.ime - ok
21:07:12.0312 3720 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
21:07:12.0312 3720 C:\WINDOWS\system32\msprivs.dll - ok
21:07:12.0328 3720 [ C61E8ECFFDBF05FF71D079BBD35396B3 ] C:\WINDOWS\system32\schannel.dll
21:07:12.0328 3720 C:\WINDOWS\system32\schannel.dll - ok
21:07:12.0328 3720 [ 34EF4739A4D9D09A96069198F42B8D99 ] C:\WINDOWS\system32\atmfd.dll
21:07:12.0328 3720 C:\WINDOWS\system32\atmfd.dll - ok
21:07:12.0328 3720 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
21:07:12.0328 3720 C:\WINDOWS\system32\iphlpapi.dll - ok
21:07:12.0343 3720 [ 0F152F4E57FDF9E8E8BDFEA583A4926B ] C:\WINDOWS\system32\msv1_0.dll
21:07:12.0343 3720 C:\WINDOWS\system32\msv1_0.dll - ok
21:07:12.0343 3720 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
21:07:12.0343 3720 C:\WINDOWS\system32\netlogon.dll - ok
21:07:12.0343 3720 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] C:\WINDOWS\system32\mswsock.dll
21:07:12.0343 3720 C:\WINDOWS\system32\mswsock.dll - ok
21:07:12.0359 3720 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
21:07:12.0359 3720 C:\WINDOWS\system32\w32time.dll - ok
21:07:12.0359 3720 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
21:07:12.0359 3720 C:\WINDOWS\system32\rsaenh.dll - ok
21:07:12.0359 3720 [ CEFCC6A64983EB8119F3A07A0C1EDE30 ] C:\WINDOWS\system32\wdigest.dll
21:07:12.0359 3720 C:\WINDOWS\system32\wdigest.dll - ok
21:07:12.0375 3720 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
21:07:12.0375 3720 C:\WINDOWS\system32\winscard.dll - ok
21:07:12.0375 3720 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
21:07:12.0375 3720 C:\WINDOWS\system32\wtsapi32.dll - ok
21:07:12.0390 3720 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
21:07:12.0390 3720 C:\WINDOWS\system32\scecli.dll - ok
21:07:12.0390 3720 [ B4869D320428CDC5EC4D7F5E808E99B5 ] C:\WINDOWS\system32\drivers\DRVNDDM.SYS
21:07:12.0390 3720 C:\WINDOWS\system32\drivers\DRVNDDM.SYS - ok
21:07:12.0390 3720 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
21:07:12.0390 3720 C:\WINDOWS\system32\cabinet.dll - ok
21:07:12.0406 3720 [ 26A62A18668C58A59C178B76A8CA81EC ] C:\WINDOWS\system32\urlmon.dll
21:07:12.0406 3720 C:\WINDOWS\system32\urlmon.dll - ok
21:07:12.0406 3720 [ 21E9A2407A947EF9D788812A2404D57D ] C:\WINDOWS\system32\iertutil.dll
21:07:12.0406 3720 C:\WINDOWS\system32\iertutil.dll - ok
21:07:12.0406 3720 [ 5F2DBE3CB563741C8084657BF956CE64 ] C:\WINDOWS\system32\oleacc.dll
21:07:12.0406 3720 C:\WINDOWS\system32\oleacc.dll - ok
21:07:12.0421 3720 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
21:07:12.0421 3720 C:\WINDOWS\system32\hnetcfg.dll - ok
21:07:12.0421 3720 [ 83545593E297F50A8E2524B4C071A153 ] C:\WINDOWS\system32\DLA\DLADResN.SYS
21:07:12.0421 3720 C:\WINDOWS\system32\DLA\DLADResN.SYS - ok
21:07:12.0421 3720 [ 96E01D901CDC98C7817155CC057001BF ] C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
21:07:12.0421 3720 C:\WINDOWS\system32\DLA\DLAIFS_M.SYS - ok
21:07:12.0437 3720 [ E2D0DE31442390C35E3163C87CB6A9EB ] C:\WINDOWS\system32\DLA\DLABOIOM.SYS
21:07:12.0437 3720 C:\WINDOWS\system32\DLA\DLABOIOM.SYS - ok
21:07:12.0437 3720 [ 0A60A39CC5E767980A31CA5D7238DFA9 ] C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
21:07:12.0437 3720 C:\WINDOWS\system32\DLA\DLAOPIOM.SYS - ok
21:07:12.0437 3720 [ 9FE2B72558FC808357F427FD83314375 ] C:\WINDOWS\system32\DLA\DLAPoolM.SYS
21:07:12.0437 3720 C:\WINDOWS\system32\DLA\DLAPoolM.SYS - ok
21:07:12.0453 3720 [ F08E1DAFAC457893399E03430A6A1397 ] C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
21:07:12.0453 3720 C:\WINDOWS\system32\DLA\DLAUDFAM.SYS - ok
21:07:12.0453 3720 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
21:07:12.0453 3720 C:\WINDOWS\system32\wshtcpip.dll - ok
21:07:12.0453 3720 [ E7D105ED1E694449D444A9933DF8E060 ] C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
21:07:12.0453 3720 C:\WINDOWS\system32\DLA\DLAUDF_M.SYS - ok
21:07:12.0468 3720 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
21:07:12.0468 3720 C:\WINDOWS\system32\svchost.exe - ok
21:07:12.0468 3720 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
21:07:12.0468 3720 C:\WINDOWS\system32\logonui.exe - ok
21:07:12.0468 3720 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
21:07:12.0468 3720 C:\WINDOWS\system32\ntmarta.dll - ok
21:07:12.0484 3720 [ 2589FE6015A316C0F5D5112B4DA7B509 ] C:\WINDOWS\system32\rpcss.dll
21:07:12.0484 3720 C:\WINDOWS\system32\rpcss.dll - ok
21:07:12.0484 3720 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
21:07:12.0484 3720 C:\WINDOWS\system32\xpsp2res.dll - ok
21:07:12.0484 3720 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
21:07:12.0484 3720 C:\WINDOWS\system32\duser.dll - ok
21:07:12.0500 3720 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
21:07:12.0500 3720 C:\WINDOWS\system32\msimg32.dll - ok
21:07:12.0500 3720 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
21:07:12.0500 3720 C:\WINDOWS\system32\eventlog.dll - ok
21:07:12.0500 3720 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
21:07:12.0500 3720 C:\WINDOWS\system32\clbcatq.dll - ok
21:07:12.0515 3720 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
21:07:12.0515 3720 C:\WINDOWS\system32\comres.dll - ok
21:07:12.0515 3720 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
21:07:12.0515 3720 C:\WINDOWS\system32\shgina.dll - ok
21:07:12.0515 3720 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
21:07:12.0515 3720 C:\WINDOWS\system32\winrnr.dll - ok
21:07:12.0531 3720 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
21:07:12.0531 3720 C:\WINDOWS\system32\rasadhlp.dll - ok
21:07:12.0531 3720 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
21:07:12.0531 3720 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
21:07:12.0546 3720 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
21:07:12.0546 3720 C:\WINDOWS\system32\dhcpcsvc.dll - ok
21:07:12.0546 3720 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
21:07:12.0546 3720 C:\WINDOWS\system32\cscdll.dll - ok
21:07:12.0546 3720 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
21:07:12.0546 3720 C:\WINDOWS\system32\dimsntfy.dll - ok
21:07:12.0562 3720 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
21:07:12.0562 3720 C:\WINDOWS\system32\winspool.drv - ok
21:07:12.0562 3720 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
21:07:12.0562 3720 C:\WINDOWS\system32\wlnotify.dll - ok
21:07:12.0562 3720 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] C:\WINDOWS\system32\dnsrslvr.dll
21:07:12.0562 3720 C:\WINDOWS\system32\dnsrslvr.dll - ok
21:07:12.0578 3720 [ D7DCFB4D0C58FFB569DE93E1681FD37A ] C:\WINDOWS\system32\WgaLogon.dll
21:07:12.0578 3720 C:\WINDOWS\system32\WgaLogon.dll - ok
21:07:12.0578 3720 [ 9FC3049701123BB618976F01F5702B00 ] C:\WINDOWS\system32\msxml3.dll
21:07:12.0578 3720 C:\WINDOWS\system32\msxml3.dll - ok
21:07:12.0578 3720 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
21:07:12.0578 3720 C:\WINDOWS\system32\lmhsvc.dll - ok
21:07:12.0593 3720 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
21:07:12.0593 3720 C:\WINDOWS\system32\wzcsvc.dll - ok
21:07:12.0593 3720 [ 14EE0E012E7298FC1448A88E9FE53322 ] C:\WINDOWS\system32\atl.dll
21:07:12.0593 3720 C:\WINDOWS\system32\atl.dll - ok
21:07:12.0593 3720 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
21:07:12.0593 3720 C:\WINDOWS\system32\eapolqec.dll - ok
21:07:12.0609 3720 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
21:07:12.0609 3720 C:\WINDOWS\system32\rtutils.dll - ok
21:07:12.0609 3720 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
21:07:12.0609 3720 C:\WINDOWS\system32\wmi.dll - ok
21:07:12.0609 3720 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
21:07:12.0609 3720 C:\WINDOWS\system32\dot3api.dll - ok
21:07:12.0625 3720 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
21:07:12.0625 3720 C:\WINDOWS\system32\qutil.dll - ok
21:07:12.0625 3720 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
21:07:12.0625 3720 C:\WINDOWS\system32\esent.dll - ok
21:07:12.0625 3720 [ 036D3962F2086BF2A98E2873CE153828 ] C:\WINDOWS\system32\rastls.dll
21:07:12.0625 3720 C:\WINDOWS\system32\rastls.dll - ok
21:07:12.0640 3720 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
21:07:12.0640 3720 C:\WINDOWS\system32\cryptui.dll - ok
21:07:12.0640 3720 [ 6741EAF7B7F110E803A6E38F6E5FA6B0 ] C:\WINDOWS\system32\wininet.dll
21:07:12.0640 3720 C:\WINDOWS\system32\wininet.dll - ok
21:07:12.0640 3720 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
21:07:12.0640 3720 C:\WINDOWS\system32\normaliz.dll - ok
21:07:12.0656 3720 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
21:07:12.0656 3720 C:\WINDOWS\system32\mprapi.dll - ok
21:07:12.0656 3720 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
21:07:12.0656 3720 C:\WINDOWS\system32\activeds.dll - ok
21:07:12.0671 3720 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
21:07:12.0671 3720 C:\WINDOWS\system32\adsldpc.dll - ok
21:07:12.0671 3720 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
21:07:12.0671 3720 C:\WINDOWS\system32\rasapi32.dll - ok
21:07:12.0671 3720 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
21:07:12.0671 3720 C:\WINDOWS\system32\rasman.dll - ok
21:07:12.0671 3720 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
21:07:12.0671 3720 C:\WINDOWS\system32\riched20.dll - ok
21:07:12.0687 3720 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
21:07:12.0687 3720 C:\WINDOWS\system32\tapi32.dll - ok
21:07:12.0687 3720 [ ED43F00CD77E72483A8625AC4F32D8D8 ] C:\WINDOWS\system32\raschap.dll
21:07:12.0687 3720 C:\WINDOWS\system32\raschap.dll - ok
21:07:12.0687 3720 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
21:07:12.0687 3720 C:\WINDOWS\system32\schedsvc.dll - ok
21:07:12.0703 3720 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
21:07:12.0703 3720 C:\WINDOWS\system32\msidle.dll - ok
21:07:12.0703 3720 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] C:\WINDOWS\system32\spoolsv.exe
21:07:12.0703 3720 C:\WINDOWS\system32\spoolsv.exe - ok
21:07:12.0718 3720 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
21:07:12.0718 3720 C:\WINDOWS\system32\audiosrv.dll - ok
21:07:12.0718 3720 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] C:\WINDOWS\system32\wkssvc.dll
21:07:12.0718 3720 C:\WINDOWS\system32\wkssvc.dll - ok
21:07:12.0718 3720 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
21:07:12.0718 3720 C:\WINDOWS\system32\cscui.dll - ok
21:07:12.0734 3720 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
21:07:12.0734 3720 C:\WINDOWS\system32\powrprof.dll - ok
21:07:12.0734 3720 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
21:07:12.0734 3720 C:\WINDOWS\system32\dpcdll.dll - ok
21:07:12.0734 3720 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
21:07:12.0734 3720 C:\WINDOWS\system32\wdmaud.drv - ok
21:07:12.0750 3720 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
21:07:12.0750 3720 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
21:07:12.0750 3720 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
21:07:12.0750 3720 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
21:07:12.0750 3720 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
21:07:12.0750 3720 C:\WINDOWS\system32\drivers\splitter.sys - ok
21:07:12.0765 3720 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
21:07:12.0765 3720 C:\WINDOWS\system32\drivers\aec.sys - ok
21:07:12.0765 3720 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
21:07:12.0765 3720 C:\WINDOWS\system32\drivers\swmidi.sys - ok
21:07:12.0765 3720 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
21:07:12.0765 3720 C:\WINDOWS\system32\drivers\dmusic.sys - ok
21:07:12.0781 3720 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
21:07:12.0781 3720 C:\WINDOWS\system32\drivers\kmixer.sys - ok
21:07:12.0781 3720 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
21:07:12.0781 3720 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
21:07:12.0796 3720 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
21:07:12.0796 3720 C:\WINDOWS\system32\userinit.exe - ok
21:07:12.0796 3720 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
21:07:12.0796 3720 C:\WINDOWS\system32\msacm32.drv - ok
21:07:12.0796 3720 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
21:07:12.0796 3720 C:\WINDOWS\system32\midimap.dll - ok
21:07:12.0812 3720 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
21:07:12.0812 3720 C:\WINDOWS\explorer.exe - ok
21:07:12.0812 3720 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
21:07:12.0812 3720 C:\WINDOWS\system32\browseui.dll - ok
21:07:12.0812 3720 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
21:07:12.0812 3720 C:\WINDOWS\system32\shdocvw.dll - ok
21:07:12.0828 3720 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
21:07:12.0828 3720 C:\WINDOWS\system32\desk.cpl - ok
21:07:12.0828 3720 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
21:07:12.0828 3720 C:\WINDOWS\system32\themeui.dll - ok
21:07:12.0828 3720 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
21:07:12.0828 3720 C:\WINDOWS\system32\actxprxy.dll - ok
21:07:12.0843 3720 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
21:07:12.0843 3720 C:\WINDOWS\system32\cmd.exe - ok
21:07:12.0843 3720 [ 23DD2287BA2630805E16571CB5E4E3EB ] C:\WINDOWS\system32\ieframe.dll
21:07:12.0843 3720 C:\WINDOWS\system32\ieframe.dll - ok
21:07:12.0843 3720 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
21:07:12.0843 3720 C:\WINDOWS\system32\cryptnet.dll - ok
21:07:12.0859 3720 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
21:07:12.0859 3720 C:\WINDOWS\system32\sensapi.dll - ok
21:07:12.0859 3720 [ D29F2889BAA10E19AD9FF70C8D5ECF50 ] C:\WINDOWS\system32\winhttp.dll
21:07:12.0859 3720 C:\WINDOWS\system32\winhttp.dll - ok
21:07:12.0859 3720 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
21:07:12.0859 3720 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
21:07:12.0875 3720 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
21:07:12.0875 3720 C:\WINDOWS\system32\webclnt.dll - ok
21:07:12.0875 3720 [ 8FA646F0E639D9A8C8B98E217D471DC0 ] C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
21:07:12.0875 3720 C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe - ok
21:07:12.0875 3720 [ 25912CC032CB14C299CEC9D2034A49F4 ] C:\WINDOWS\system32\msvcr71.dll
21:07:12.0875 3720 C:\WINDOWS\system32\msvcr71.dll - ok
21:07:12.0890 3720 [ 20607EE4886D78DD95286F2D14E9FF2F ] C:\WINDOWS\system32\msvcp71.dll
21:07:12.0890 3720 C:\WINDOWS\system32\msvcp71.dll - ok
21:07:12.0890 3720 [ C6B2AD321E6C12E12898D1CAE587D0D5 ] C:\Program Files\Common Files\AOL\ACS\shfolder.dll
21:07:12.0890 3720 C:\Program Files\Common Files\AOL\ACS\shfolder.dll - ok
21:07:12.0890 3720 [ 20F6F19FE9E753F2780DC2FA083AD597 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:07:12.0890 3720 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
21:07:12.0906 3720 [ 8C53CCD787C381CD535D8DCCA12584D8 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll
21:07:12.0906 3720 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll - ok
21:07:12.0906 3720 [ 1169436EE42F860C7DB37A4692B38F0E ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
21:07:12.0906 3720 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll - ok
21:07:12.0921 3720 [ DDDD1D04D5F4360371BC99C7C476F70D ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
21:07:12.0921 3720 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
21:07:12.0921 3720 [ DC70310B3D079D667B67F0C7067209F3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
21:07:12.0921 3720 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
21:07:12.0921 3720 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
21:07:12.0921 3720 C:\WINDOWS\system32\wsock32.dll - ok
21:07:12.0921 3720 [ 749CF03BADC40453F61FD7025E2BA2F5 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
21:07:12.0921 3720 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
21:07:12.0937 3720 [ 258D35F5F5F5F3F6045488ECDC14FAAB ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
21:07:12.0937 3720 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
21:07:12.0937 3720 [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
21:07:12.0937 3720 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
21:07:12.0953 3720 [ C7B2C357F485A3046DA50DA779068648 ] C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll
21:07:12.0953 3720 C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll - ok
21:07:12.0953 3720 [ 7EF0C8A9A1A57756F4868E3693173C08 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
21:07:12.0953 3720 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
21:07:12.0953 3720 [ 0EF9D6C6C04CAB0B87C57330910D20A6 ] C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll
21:07:12.0953 3720 C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll - ok
21:07:12.0968 3720 [ 90E11D62F692F5A0B7DFC548F776BAAF ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll
21:07:12.0968 3720 C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll - ok
21:07:12.0968 3720 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
21:07:12.0968 3720 C:\WINDOWS\system32\cryptsvc.dll - ok
21:07:12.0968 3720 [ D880831279ED91F9A4190A2DB9539EA9 ] C:\WINDOWS\system32\drivers\asctrm.sys
21:07:12.0968 3720 C:\WINDOWS\system32\drivers\asctrm.sys - ok
21:07:12.0984 3720 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] C:\WINDOWS\system32\drivers\dsunidrv.sys
21:07:12.0984 3720 C:\WINDOWS\system32\drivers\dsunidrv.sys - ok
21:07:12.0984 3720 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
21:07:12.0984 3720 C:\WINDOWS\system32\certcli.dll - ok
21:07:12.0984 3720 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] C:\WINDOWS\system32\drivers\http.sys
21:07:12.0984 3720 C:\WINDOWS\system32\drivers\http.sys - ok
21:07:13.0000 3720 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
21:07:13.0000 3720 C:\WINDOWS\system32\ersvc.dll - ok
21:07:13.0000 3720 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
21:07:13.0000 3720 C:\WINDOWS\system32\es.dll - ok
21:07:13.0000 3720 [ D43E91E271C041BB86A6223462A41D28 ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:07:13.0000 3720 C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe - ok
21:07:13.0015 3720 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
21:07:13.0015 3720 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
21:07:13.0015 3720 [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
21:07:13.0015 3720 C:\WINDOWS\system32\dmserver.dll - ok
21:07:13.0031 3720 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
21:07:13.0031 3720 C:\WINDOWS\system32\hid.dll - ok
21:07:13.0031 3720 [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
21:07:13.0031 3720 C:\WINDOWS\system32\hidserv.dll - ok
21:07:13.0031 3720 [ 54F694C6CD3A1149BA3A8BDACC83BADC ] C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
21:07:13.0031 3720 C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe - ok
21:07:13.0046 3720 [ 362529BA150768AD05DFEEE9EA4B6C07 ] C:\Program Files\CA\PPRT\bin\CAServer.dll
21:07:13.0046 3720 C:\Program Files\CA\PPRT\bin\CAServer.dll - ok
21:07:13.0046 3720 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files\CA\PPRT\bin\msvcp71.dll
21:07:13.0046 3720 C:\Program Files\CA\PPRT\bin\msvcp71.dll - ok
21:07:13.0046 3720 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\CA\PPRT\bin\msvcr71.dll
21:07:13.0046 3720 C:\Program Files\CA\PPRT\bin\msvcr71.dll - ok
21:07:13.0062 3720 [ 9DBA73C2F1E76EC4CB837E67C5743596 ] C:\Program Files\Java\jre6\bin\jqs.exe
21:07:13.0062 3720 C:\Program Files\Java\jre6\bin\jqs.exe - ok
21:07:13.0062 3720 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\Java\jre6\bin\msvcr71.dll
21:07:13.0062 3720 C:\Program Files\Java\jre6\bin\msvcr71.dll - ok
21:07:13.0062 3720 [ 5454607F90878D7CD0BCDB6E0D3F235F ] C:\WINDOWS\system32\pdh.dll
21:07:13.0062 3720 C:\WINDOWS\system32\pdh.dll - ok
21:07:13.0078 3720 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
21:07:13.0078 3720 C:\WINDOWS\system32\odbcbcp.dll - ok
21:07:13.0078 3720 [ FF23862146A682FCC3DBAA002E22F958 ] C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
21:07:13.0078 3720 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe - ok
21:07:13.0078 3720 [ F385F4B02C535BFFE1D70CAB80838123 ] C:\WINDOWS\system32\srvsvc.dll
21:07:13.0078 3720 C:\WINDOWS\system32\srvsvc.dll - ok
21:07:13.0093 3720 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
21:07:13.0093 3720 C:\WINDOWS\system32\netmsg.dll - ok
21:07:13.0093 3720 [ 3BB03F2BA89D2BE417206C373D2AF17C ] C:\WINDOWS\system32\drivers\srv.sys
21:07:13.0093 3720 C:\WINDOWS\system32\drivers\srv.sys - ok
21:07:13.0093 3720 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
21:07:13.0093 3720 C:\WINDOWS\system32\perfos.dll - ok
21:07:13.0109 3720 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
21:07:13.0109 3720 C:\WINDOWS\system32\perfdisk.dll - ok
21:07:13.0109 3720 [ 2241BA95626E55BE848A455273DDB018 ] C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe
21:07:13.0109 3720 C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe - ok
21:07:13.0109 3720 [ 11F714F85530A2BD134074DC30E99FCA ] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
21:07:13.0109 3720 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE - ok
21:07:13.0125 3720 [ 5DE4A76726A61FB735FE009CB61EA35D ] C:\PROGRA~1\McAfee\SITEAD~1\SaSSHMod.dll
21:07:13.0125 3720 C:\PROGRA~1\McAfee\SITEAD~1\SaSSHMod.dll - ok
21:07:13.0125 3720 [ 80490E9285C373B991E4EEE7D1228C6A ] C:\PROGRA~1\McAfee\SITEAD~1\saupkeep.dll
21:07:13.0125 3720 C:\PROGRA~1\McAfee\SITEAD~1\saupkeep.dll - ok
21:07:13.0140 3720 [ 3C318B9CD391371BED62126581EE9961 ] C:\WINDOWS\system32\drivers\mdmxsdk.sys
21:07:13.0140 3720 C:\WINDOWS\system32\drivers\mdmxsdk.sys - ok
21:07:13.0140 3720 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] C:\WINDOWS\system32\HPZipm12.exe
21:07:13.0140 3720 C:\WINDOWS\system32\HPZipm12.exe - ok
21:07:13.0140 3720 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
21:07:13.0140 3720 C:\WINDOWS\system32\ipsecsvc.dll - ok
21:07:13.0156 3720 [ 33CEB89B62589E8B12AEE9E2D523DADE ] C:\WINDOWS\system32\oakley.dll
21:07:13.0156 3720 C:\WINDOWS\system32\oakley.dll - ok
21:07:13.0156 3720 [ 5B19B557B0C188210A56A6B699D90B8F ] C:\WINDOWS\system32\regsvc.dll
21:07:13.0156 3720 C:\WINDOWS\system32\regsvc.dll - ok
21:07:13.0156 3720 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
21:07:13.0156 3720 C:\WINDOWS\system32\seclogon.dll - ok
21:07:13.0171 3720 [ 777115C9CC675BD98127660712D2F784 ] C:\Program Files\Dell Support Center\bin\sprtsvc.exe
21:07:13.0171 3720 C:\Program Files\Dell Support Center\bin\sprtsvc.exe - ok
21:07:13.0171 3720 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
21:07:13.0171 3720 C:\WINDOWS\system32\sens.dll - ok
21:07:13.0171 3720 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
21:07:13.0171 3720 C:\WINDOWS\system32\winipsec.dll - ok
21:07:13.0187 3720 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
21:07:13.0187 3720 C:\WINDOWS\system32\pstorsvc.dll - ok
21:07:13.0187 3720 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
21:07:13.0187 3720 C:\WINDOWS\system32\psbase.dll - ok
21:07:13.0187 3720 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
21:07:13.0187 3720 C:\WINDOWS\system32\srsvc.dll - ok
21:07:13.0203 3720 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
21:07:13.0203 3720 C:\WINDOWS\system32\ssdpsrv.dll - ok
21:07:13.0203 3720 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
21:07:13.0203 3720 C:\WINDOWS\system32\wiaservc.dll - ok
21:07:13.0203 3720 [ 8E8D1251C52DE0256C076CAAA79AF327 ] C:\Program Files\Dell Support Center\bin\sprtsched.dll
21:07:13.0203 3720 C:\Program Files\Dell Support Center\bin\sprtsched.dll - ok
21:07:13.0218 3720 [ 851C5080261DFC1FCDC21DF0E5EA3BCB ] C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
21:07:13.0218 3720 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe - ok
21:07:13.0218 3720 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
21:07:13.0218 3720 C:\WINDOWS\system32\cfgmgr32.dll - ok
21:07:13.0218 3720 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
21:07:13.0218 3720 C:\WINDOWS\system32\tapisrv.dll - ok
21:07:13.0234 3720 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
21:07:13.0234 3720 C:\WINDOWS\system32\dssenh.dll - ok
21:07:13.0234 3720 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
21:07:13.0234 3720 C:\WINDOWS\system32\mscms.dll - ok
21:07:13.0234 3720 [ 0AB6629467D8F073B762FCA1D416BF2D ] C:\Program Files\Dell Support Center\bin\sprtfod.dll
21:07:13.0234 3720 C:\Program Files\Dell Support Center\bin\sprtfod.dll - ok
21:07:13.0250 3720 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files\Dell Support Center\bin\libeay32.dll
21:07:13.0250 3720 C:\Program Files\Dell Support Center\bin\libeay32.dll - ok
21:07:13.0250 3720 [ A340CD71EB535A3DD751B5F28723E50C ] C:\WINDOWS\system32\ddraw.dll
21:07:13.0250 3720 C:\WINDOWS\system32\ddraw.dll - ok
21:07:13.0250 3720 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
21:07:13.0250 3720 C:\WINDOWS\system32\trkwks.dll - ok
21:07:13.0265 3720 [ E97D6A8684466DF94FF3BC24FB787A07 ] C:\WINDOWS\system32\fxssvc.exe
21:07:13.0265 3720 C:\WINDOWS\system32\fxssvc.exe - ok
21:07:13.0265 3720 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
21:07:13.0265 3720 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
21:07:13.0281 3720 [ D8B91D94ECB123862B390FDE3250D3BB ] C:\WINDOWS\system32\dciman32.dll
21:07:13.0281 3720 C:\WINDOWS\system32\dciman32.dll - ok
21:07:13.0281 3720 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
21:07:13.0281 3720 C:\WINDOWS\system32\vssapi.dll - ok
21:07:13.0281 3720 [ 869FF988D4582D616D49CFBE7D84C1B4 ] C:\WINDOWS\system32\hpowiax2.dll
21:07:13.0281 3720 C:\WINDOWS\system32\hpowiax2.dll - ok
21:07:13.0296 3720 [ A08EF2FC9B3E688128E89D9C193F7652 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\GdiPlus.dll
21:07:13.0296 3720 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\GdiPlus.dll - ok
21:07:13.0296 3720 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
21:07:13.0296 3720 C:\WINDOWS\system32\credui.dll - ok
21:07:13.0296 3720 [ BDB83C844EDEC9BD01A94750D2C38DDF ] C:\WINDOWS\system32\fxsevent.dll
21:07:13.0296 3720 C:\WINDOWS\system32\fxsevent.dll - ok
21:07:13.0312 3720 [ 1144EF6B4BB72E33B41912AE1AE4F97A ] C:\WINDOWS\system32\fxstiff.dll
21:07:13.0312 3720 C:\WINDOWS\system32\fxstiff.dll - ok
21:07:13.0312 3720 [ A06CE3399D16DB864F55FAEB1F1927A9 ] C:\WINDOWS\system32\browser.dll
21:07:13.0312 3720 C:\WINDOWS\system32\browser.dll - ok
21:07:13.0312 3720 [ 39DD0C97932CDFDCF006569E1A942728 ] C:\WINDOWS\system32\wiavusd.dll
21:07:13.0312 3720 C:\WINDOWS\system32\wiavusd.dll - ok
21:07:13.0328 3720 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
21:07:13.0328 3720 C:\WINDOWS\system32\comsvcs.dll - ok
21:07:13.0328 3720 [ 0329D0A4F230094B669A87BB3B85606E ] C:\WINDOWS\system32\fxsapi.dll
21:07:13.0328 3720 C:\WINDOWS\system32\fxsapi.dll - ok
21:07:13.0328 3720 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files\Dell Support Center\bin\sprtsync.dll
21:07:13.0328 3720 C:\Program Files\Dell Support Center\bin\sprtsync.dll - ok
21:07:13.0343 3720 [ DF0A511F38F16016BF658FCA0090CB87 ] C:\WINDOWS\ehome\mcrdsvc.exe
21:07:13.0343 3720 C:\WINDOWS\ehome\mcrdsvc.exe - ok
21:07:13.0343 3720 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
21:07:13.0343 3720 C:\WINDOWS\system32\spoolss.dll - ok
21:07:13.0343 3720 [ D8AD3D7F927C686B8C233221513DA628 ] C:\WINDOWS\system32\localspl.dll
21:07:13.0343 3720 C:\WINDOWS\system32\localspl.dll - ok
21:07:13.0359 3720 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
21:07:13.0359 3720 C:\WINDOWS\system32\ssdpapi.dll - ok
21:07:13.0359 3720 [ E4D3F600CFF1E76950ABB0D790F2A1EF ] C:\Program Files\Dell Support Center\bin\sprtupdate.dll
21:07:13.0359 3720 C:\Program Files\Dell Support Center\bin\sprtupdate.dll - ok
21:07:13.0375 3720 [ 6D280BC969218AE4A72180F907C32913 ] C:\WINDOWS\ehome\ehTrace.dll
21:07:13.0375 3720 C:\WINDOWS\ehome\ehTrace.dll - ok
21:07:13.0375 3720 [ D1DE16926C682DCD3D99AE5500CA5522 ] C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
21:07:13.0375 3720 C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe - ok
21:07:13.0375 3720 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
21:07:13.0375 3720 C:\WINDOWS\system32\cnbjmon.dll - ok
21:07:13.0390 3720 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
21:07:13.0390 3720 C:\WINDOWS\system32\colbact.dll - ok
21:07:13.0390 3720 [ E965160B09675E027EF8235EF90EB405 ] C:\WINDOWS\system32\HPTcpMon.dll
21:07:13.0390 3720 C:\WINDOWS\system32\HPTcpMon.dll - ok
21:07:13.0390 3720 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
21:07:13.0390 3720 C:\WINDOWS\system32\msi.dll - ok
21:07:13.0406 3720 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
21:07:13.0406 3720 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
21:07:13.0406 3720 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
21:07:13.0406 3720 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
21:07:13.0406 3720 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
21:07:13.0406 3720 C:\WINDOWS\system32\shfolder.dll - ok
21:07:13.0421 3720 [ 72CD04A8789BEFAB99F06658A41D10C9 ] C:\WINDOWS\system32\mtxclu.dll
21:07:13.0421 3720 C:\WINDOWS\system32\mtxclu.dll - ok
21:07:13.0421 3720 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
21:07:13.0421 3720 C:\WINDOWS\system32\clusapi.dll - ok
21:07:13.0421 3720 [ B85EC14C7A5F7B2C8D70D4443486DD77 ] C:\WINDOWS\system32\hpzjrd01.dll
21:07:13.0421 3720 C:\WINDOWS\system32\hpzjrd01.dll - ok
21:07:13.0437 3720 [ 219541B30B162B7BD1202A252C56F941 ] C:\WINDOWS\system32\HPTcpMUI.dll
21:07:13.0437 3720 C:\WINDOWS\system32\HPTcpMUI.dll - ok
21:07:13.0437 3720 [ FA784AFE3925C4D1E7EB65CA3A9CC72F ] C:\Program Files\Java\jre6\bin\awt.dll
21:07:13.0437 3720 C:\Program Files\Java\jre6\bin\awt.dll - ok
21:07:13.0437 3720 [ E5A93F799298147E169D689969D5C73F ] C:\WINDOWS\system32\HPTcpMib.dll
21:07:13.0437 3720 C:\WINDOWS\system32\HPTcpMib.dll - ok
21:07:13.0453 3720 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
21:07:13.0453 3720 C:\WINDOWS\system32\resutils.dll - ok
21:07:13.0453 3720 [ 1E744353BD534405187A404667DA3DC3 ] C:\WINDOWS\system32\mgmtapi.dll
21:07:13.0453 3720 C:\WINDOWS\system32\mgmtapi.dll - ok
21:07:13.0468 3720 [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
21:07:13.0468 3720 C:\WINDOWS\system32\snmpapi.dll - ok
21:07:13.0468 3720 [ 277F3E3333F1D10CA428568197FCCE70 ] C:\WINDOWS\system32\wsnmp32.dll
21:07:13.0468 3720 C:\WINDOWS\system32\wsnmp32.dll - ok
21:07:13.0468 3720 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
21:07:13.0468 3720 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
21:07:13.0484 3720 [ 8DE42B399DA44BFC936F7D850613FC72 ] C:\WINDOWS\system32\hpzll43a.dll
21:07:13.0484 3720 C:\WINDOWS\system32\hpzll43a.dll - ok
21:07:13.0484 3720 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
21:07:13.0484 3720 C:\WINDOWS\system32\wbem\esscli.dll - ok
21:07:13.0484 3720 [ 15A9294B81D0FF0E4AC75276C13FD04B ] C:\WINDOWS\system32\mdimon.dll
21:07:13.0484 3720 C:\WINDOWS\system32\mdimon.dll - ok
21:07:13.0500 3720 [ 60027BEA3E76D7DD8D96C02432BFDE82 ] C:\WINDOWS\system32\wbem\fastprox.dll
21:07:13.0500 3720 C:\WINDOWS\system32\wbem\fastprox.dll - ok
21:07:13.0500 3720 [ CC6292CA575E851E5B74BF8883AB967A ] C:\WINDOWS\system32\fxsmon.dll
21:07:13.0500 3720 C:\WINDOWS\system32\fxsmon.dll - ok
21:07:13.0500 3720 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
21:07:13.0500 3720 C:\WINDOWS\system32\pjlmon.dll - ok
21:07:13.0515 3720 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
21:07:13.0515 3720 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
21:07:13.0515 3720 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
21:07:13.0515 3720 C:\WINDOWS\system32\tcpmon.dll - ok
21:07:13.0515 3720 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
21:07:13.0515 3720 C:\WINDOWS\system32\usbmon.dll - ok
21:07:13.0531 3720 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
21:07:13.0531 3720 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
21:07:13.0531 3720 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
21:07:13.0531 3720 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
21:07:13.0531 3720 [ C2A4FDBD76953411000A01EB047DDC12 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
21:07:13.0531 3720 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
21:07:13.0546 3720 [ E039FEC74CD7CF8C664138ADE6B688F4 ] C:\Program Files\Java\jre6\bin\client\jvm.dll
21:07:13.0546 3720 C:\Program Files\Java\jre6\bin\client\jvm.dll - ok
21:07:13.0546 3720 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
21:07:13.0546 3720 C:\WINDOWS\system32\wbem\wbemess.dll - ok
21:07:13.0546 3720 [ EA1B063208E4AE322BDF3F2FA235CC9D ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp43a.dll
21:07:13.0546 3720 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp43a.dll - ok
21:07:13.0562 3720 [ 063457262374B224226710D8DB74C37C ] C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
21:07:13.0562 3720 C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll - ok
21:07:13.0562 3720 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
21:07:13.0562 3720 C:\WINDOWS\system32\win32spl.dll - ok
21:07:13.0562 3720 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
21:07:13.0562 3720 C:\WINDOWS\system32\inetpp.dll - ok
21:07:13.0578 3720 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
21:07:13.0578 3720 C:\WINDOWS\system32\netrap.dll - ok
21:07:13.0578 3720 [ 0CE5F8AE9C371A965D17E3F2ED134809 ] C:\WINDOWS\system32\fxst30.dll
21:07:13.0578 3720 C:\WINDOWS\system32\fxst30.dll - ok
21:07:13.0593 3720 [ 2D583E2844FDD592D1629EB6B10E5702 ] C:\WINDOWS\system32\fxsroute.dll
21:07:13.0593 3720 C:\WINDOWS\system32\fxsroute.dll - ok
21:07:13.0593 3720 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
21:07:13.0593 3720 C:\WINDOWS\system32\unimdm.tsp - ok
21:07:13.0593 3720 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
21:07:13.0593 3720 C:\WINDOWS\system32\uniplat.dll - ok
21:07:13.0609 3720 [ 0FFAE66E6D5B1C87CBD22D1F3B6079FD ] C:\WINDOWS\system32\wbem\wmiprvse.exe
21:07:13.0609 3720 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
21:07:13.0609 3720 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
21:07:13.0609 3720 C:\WINDOWS\system32\unimdmat.dll - ok
21:07:13.0609 3720 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
21:07:13.0609 3720 C:\WINDOWS\system32\modemui.dll - ok
21:07:13.0625 3720 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
21:07:13.0625 3720 C:\WINDOWS\system32\kmddsp.tsp - ok
21:07:13.0625 3720 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
21:07:13.0625 3720 C:\WINDOWS\system32\ndptsp.tsp - ok
21:07:13.0625 3720 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
21:07:13.0625 3720 C:\WINDOWS\system32\h323.tsp - ok
21:07:13.0640 3720 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
21:07:13.0640 3720 C:\WINDOWS\system32\ipconf.tsp - ok
21:07:13.0640 3720 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
21:07:13.0640 3720 C:\WINDOWS\system32\hidphone.tsp - ok
21:07:13.0640 3720 [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
21:07:13.0640 3720 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
21:07:13.0656 3720 [ FC384144E1C6390B6E576C641A9D9F99 ] C:\Program Files\Java\jre6\bin\dcpr.dll
21:07:13.0656 3720 C:\Program Files\Java\jre6\bin\dcpr.dll - ok
21:07:13.0656 3720 [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
21:07:13.0656 3720 C:\WINDOWS\system32\wbem\framedyn.dll - ok
21:07:13.0656 3720 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
21:07:13.0656 3720 C:\WINDOWS\system32\security.dll - ok
21:07:13.0671 3720 [ 2D3E7A71A93D6D6D063CB391D225AF08 ] C:\Program Files\Java\jre6\bin\deploy.dll
21:07:13.0671 3720 C:\Program Files\Java\jre6\bin\deploy.dll - ok
21:07:13.0671 3720 [ 4B267FFF6BA9E985D7964440A69E8146 ] C:\Program Files\Java\jre6\bin\fontmanager.dll
21:07:13.0671 3720 C:\Program Files\Java\jre6\bin\fontmanager.dll - ok
21:07:13.0671 3720 [ 97AD9A55A6F4D8D825A718081BFD72EA ] C:\Program Files\Java\jre6\bin\hpi.dll
21:07:13.0671 3720 C:\Program Files\Java\jre6\bin\hpi.dll - ok
21:07:13.0687 3720 [ BD1D0F150C25F972951FF1E7381CFB67 ] C:\Program Files\Java\jre6\bin\java.dll
21:07:13.0687 3720 C:\Program Files\Java\jre6\bin\java.dll - ok
21:07:13.0687 3720 [ FD8AB373BD7834A65114DD899199D00B ] C:\Program Files\Java\jre6\bin\javaw.exe
21:07:13.0687 3720 C:\Program Files\Java\jre6\bin\javaw.exe - ok
21:07:13.0687 3720 [ A75020E93E606BEF7609E9AF061A2117 ] C:\Program Files\Java\jre6\bin\jp2native.dll
21:07:13.0687 3720 C:\Program Files\Java\jre6\bin\jp2native.dll - ok
21:07:13.0703 3720 [ C3F7A1E52F753EB5D0AF61A0C0AF9F67 ] C:\Program Files\Java\jre6\bin\jpeg.dll
21:07:13.0703 3720 C:\Program Files\Java\jre6\bin\jpeg.dll - ok
21:07:13.0703 3720 [ F00769B92D4FBBCC66AC298658BBCB69 ] C:\Program Files\Java\jre6\bin\net.dll
21:07:13.0703 3720 C:\Program Files\Java\jre6\bin\net.dll - ok
21:07:13.0703 3720 [ D5DEC0FE419EF7FDE0691E876518C74C ] C:\Program Files\Java\jre6\bin\nio.dll
21:07:13.0703 3720 C:\Program Files\Java\jre6\bin\nio.dll - ok
21:07:13.0718 3720 [ 655E7B6BBA29D1AA5A024C580C7FC9C8 ] C:\Program Files\Java\jre6\bin\regutils.dll
21:07:13.0718 3720 C:\Program Files\Java\jre6\bin\regutils.dll - ok
21:07:13.0718 3720 [ 048DFF56FAF13418A4883EBA57E0F532 ] C:\Program Files\Java\jre6\bin\verify.dll
21:07:13.0718 3720 C:\Program Files\Java\jre6\bin\verify.dll - ok
21:07:13.0734 3720 [ 9649B2B14C6AA0B4AD02BBA93CA7DC0F ] C:\Program Files\Java\jre6\bin\zip.dll
21:07:13.0734 3720 C:\Program Files\Java\jre6\bin\zip.dll - ok
21:07:13.0734 3720 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
21:07:13.0734 3720 C:\WINDOWS\system32\termsrv.dll - ok
21:07:13.0734 3720 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
21:07:13.0734 3720 C:\WINDOWS\system32\icaapi.dll - ok
21:07:13.0750 3720 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
21:07:13.0750 3720 C:\WINDOWS\system32\mstlsapi.dll - ok
21:07:13.0750 3720 [ F96CFB47903854F228BAAF3E2D41A0A3 ] C:\WINDOWS\system32\drivers\LVPr2Mon.sys
21:07:13.0750 3720 C:\WINDOWS\system32\drivers\LVPr2Mon.sys - ok
21:07:13.0750 3720 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
21:07:13.0750 3720 C:\WINDOWS\system32\rasmans.dll - ok
21:07:13.0765 3720 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
21:07:13.0765 3720 C:\WINDOWS\system32\netcfgx.dll - ok
21:07:13.0765 3720 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
21:07:13.0765 3720 C:\WINDOWS\system32\rastapi.dll - ok
21:07:13.0765 3720 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
21:07:13.0765 3720 C:\WINDOWS\system32\rasppp.dll - ok
21:07:13.0781 3720 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
21:07:13.0781 3720 C:\WINDOWS\system32\ntlsapi.dll - ok
21:07:13.0781 3720 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
21:07:13.0781 3720 C:\WINDOWS\system32\rasqec.dll - ok
21:07:13.0781 3720 [ D20DA789C445936988C8B83F53522374 ] C:\WINDOWS\Temp\logishrd\LVPrcInj02.dll
21:07:13.0781 3720 C:\WINDOWS\Temp\logishrd\LVPrcInj02.dll - ok
21:07:13.0796 3720 [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
21:07:13.0796 3720 C:\WINDOWS\system32\rundll32.exe - ok
21:07:13.0796 3720 [ F795ABFBCE29C843D7EB7110722D18D0 ] C:\PROGRA~1\McAfee\SITEAD~1\sahook.dll
21:07:13.0796 3720 C:\PROGRA~1\McAfee\SITEAD~1\sahook.dll - ok
21:07:13.0796 3720 [ 047CD344AC7B76BA3C224FAE1A4627C9 ] C:\WINDOWS\system32\WgaTray.exe
21:07:13.0812 3720 C:\WINDOWS\system32\WgaTray.exe - ok
21:07:13.0812 3720 [ D1CB99ADBA9397D7D02B0B2DCFE47F1A ] C:\WINDOWS\system32\LegitCheckControl.dll
21:07:13.0812 3720 C:\WINDOWS\system32\LegitCheckControl.dll - ok
21:07:13.0812 3720 [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\system32\licwmi.dll
21:07:13.0812 3720 C:\WINDOWS\system32\licwmi.dll - ok
21:07:13.0828 3720 [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\system32\licdll.dll
21:07:13.0828 3720 C:\WINDOWS\system32\licdll.dll - ok
21:07:13.0828 3720 [ 6A740DF0429C794517F44125E9E1DA05 ] C:\Program Files\CA\PPRT\bin\ITMRTSVC_NT.dll
21:07:13.0828 3720 C:\Program Files\CA\PPRT\bin\ITMRTSVC_NT.dll - ok
21:07:13.0828 3720 [ CF7460002344F4DD680FE4AED1994252 ] C:\Program Files\CA\PPRT\bin\CAHook.dll
21:07:13.0828 3720 C:\Program Files\CA\PPRT\bin\CAHook.dll - ok
21:07:13.0843 3720 [ 1CD99FDB466276D79C8D47753EF4AACB ] C:\Program Files\CA\PPRT\bin\CACheck.dll
21:07:13.0843 3720 C:\Program Files\CA\PPRT\bin\CACheck.dll - ok
21:07:13.0843 3720 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\DOCUME~1\michael\LOCALS~1\Temp\8895CE5F-8D51-4BA9-8392-84C2C77822EF.exe
21:07:13.0843 3720 C:\DOCUME~1\michael\LOCALS~1\Temp\8895CE5F-8D51-4BA9-8392-84C2C77822EF.exe - ok
21:07:13.0843 3720 [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
21:07:13.0843 3720 C:\WINDOWS\system32\msutb.dll - ok
21:07:13.0859 3720 [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
21:07:13.0859 3720 C:\WINDOWS\system32\msctf.dll - ok
21:07:13.0859 3720 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
21:07:13.0859 3720 C:\WINDOWS\system32\ntshrui.dll - ok
21:07:13.0859 3720 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
21:07:13.0859 3720 C:\WINDOWS\system32\imapi.exe - ok
21:07:13.0875 3720 [ C444B433A340C24B51A2DACE9D13FC70 ] C:\WINDOWS\system32\zipfldr.dll
21:07:13.0875 3720 C:\WINDOWS\system32\zipfldr.dll - ok
21:07:13.0875 3720 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\29146980.sys
21:07:13.0875 3720 C:\WINDOWS\system32\drivers\29146980.sys - ok
21:07:13.0875 3720 [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
21:07:13.0875 3720 C:\WINDOWS\system32\verclsid.exe - ok
21:07:13.0890 3720 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
21:07:13.0890 3720 C:\WINDOWS\system32\linkinfo.dll - ok
21:07:13.0890 3720 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
21:07:13.0890 3720 C:\WINDOWS\system32\mlang.dll - ok
21:07:13.0890 3720 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
21:07:13.0890 3720 C:\WINDOWS\system32\netshell.dll - ok
21:07:13.0906 3720 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
21:07:13.0906 3720 C:\WINDOWS\system32\dot3dlg.dll - ok
21:07:13.0906 3720 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
21:07:13.0906 3720 C:\WINDOWS\system32\eappcfg.dll - ok
21:07:13.0906 3720 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
21:07:13.0906 3720 C:\WINDOWS\system32\eappprxy.dll - ok
21:07:13.0921 3720 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
21:07:13.0921 3720 C:\WINDOWS\system32\onex.dll - ok
21:07:13.0921 3720 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
21:07:13.0921 3720 C:\WINDOWS\system32\wbem\ncprov.dll - ok
21:07:13.0921 3720 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
21:07:13.0921 3720 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
21:07:13.0937 3720 [ C25782BBE380C33C5E34AEAAEE607BEE ] C:\PROGRA~1\McAfee\SITEAD~1\MCSACO~1.DLL
21:07:13.0937 3720 C:\PROGRA~1\McAfee\SITEAD~1\MCSACO~1.DLL - ok
21:07:13.0937 3720 [ E4A5301E7683F4B012CC7BF84E15BB48 ] C:\WINDOWS\system32\msxml6.dll
21:07:13.0937 3720 C:\WINDOWS\system32\msxml6.dll - ok
21:07:13.0937 3720 [ B0EC253506BEE5CC1B004CD0E7A698E9 ] C:\Program Files\Ask.com\UpdateTask.exe
21:07:13.0937 3720 C:\Program Files\Ask.com\UpdateTask.exe - ok
21:07:13.0953 3720 [ CD7CFCCECC1EF1CC2D05CFB396B7C354 ] C:\Program Files\Ask.com\SaUpdate.exe
21:07:13.0953 3720 C:\Program Files\Ask.com\SaUpdate.exe - ok
21:07:13.0953 3720 [ 121EC39A64D64205A88C2C45B034B455 ] C:\WINDOWS\system32\mshtml.dll
21:07:13.0953 3720 C:\WINDOWS\system32\mshtml.dll - ok
21:07:13.0968 3720 [ 2D15E1C7CD0BC1A9B7F9660E39A0CE3E ] C:\WINDOWS\system32\msls31.dll
21:07:13.0968 3720 C:\WINDOWS\system32\msls31.dll - ok
21:07:13.0968 3720 [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\msimtf.dll
21:07:13.0968 3720 C:\WINDOWS\system32\msimtf.dll - ok
21:07:13.0968 3720 [ 7C6B20F70F427ABE9C9F490B50E3D736 ] C:\WINDOWS\system32\jscript.dll
21:07:13.0968 3720 C:\WINDOWS\system32\jscript.dll - ok
21:07:13.0984 3720 [ 25DEF2EF843275862FFBF55487CEFDDD ] C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_135.ocx
21:07:13.0984 3720 C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_135.ocx - ok
21:07:13.0984 3720 [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
21:07:13.0984 3720 C:\WINDOWS\system32\dsound.dll - ok
21:07:13.0984 3720 [ 7469B9D06F0299273769C3E5365F5469 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
21:07:13.0984 3720 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL - ok
21:07:14.0000 3720 [ 22A252B03462457AF8D1A22EC64AADBF ] C:\WINDOWS\system32\wmp.dll
21:07:14.0000 3720 C:\WINDOWS\system32\wmp.dll - ok
21:07:14.0000 3720 [ 235B2311786AC007AD644B12A2DA8AC7 ] C:\WINDOWS\system32\msvfw32.dll
21:07:14.0000 3720 C:\WINDOWS\system32\msvfw32.dll - ok
21:07:14.0000 3720 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
21:07:14.0000 3720 C:\WINDOWS\system32\dbghelp.dll - ok
21:07:14.0015 3720 [ E8885A533A3D46209851433E3B9B3BC4 ] C:\WINDOWS\system32\wmploc.dll
21:07:14.0015 3720 C:\WINDOWS\system32\wmploc.dll - ok
21:07:14.0015 3720 [ 55C30168142479C602BD456AC4E230B0 ] C:\WINDOWS\system32\MFPLAT.dll
21:07:14.0015 3720 C:\WINDOWS\system32\MFPLAT.dll - ok
21:07:14.0015 3720 [ 1D21DB64E6C815925B6A3617C9EBFA72 ] C:\WINDOWS\system32\dxtrans.dll
21:07:14.0015 3720 C:\WINDOWS\system32\dxtrans.dll - ok
21:07:14.0031 3720 [ A47F6A13202AA54541CA46D6CED79F5F ] C:\WINDOWS\system32\ddrawex.dll
21:07:14.0031 3720 C:\WINDOWS\system32\ddrawex.dll - ok
21:07:14.0031 3720 [ 6F50DCD4184538F6742043D45E396C03 ] C:\WINDOWS\system32\dxtmsft.dll
21:07:14.0031 3720 C:\WINDOWS\system32\dxtmsft.dll - ok
21:07:14.0031 3720 [ C4EFFBE602CE2ADC047AF5CC1F858707 ] C:\WINDOWS\system32\vbscript.dll
21:07:14.0031 3720 C:\WINDOWS\system32\vbscript.dll - ok
21:07:14.0046 3720 [ F9CCDEBD2C487BC2438680D7C9AE4C76 ] C:\WINDOWS\system32\mshtmled.dll
21:07:14.0046 3720 C:\WINDOWS\system32\mshtmled.dll - ok
21:07:14.0046 3720 [ 7D7D8501F3CB45D0408CDEFA08CDAEFF ] C:\WINDOWS\system32\usp10.dll
21:07:14.0046 3720 C:\WINDOWS\system32\usp10.dll - ok
21:07:14.0046 3720 ============================================================
21:07:14.0046 3720 Scan finished
21:07:14.0046 3720 ============================================================
21:07:14.0156 3712 Detected object count: 29
21:07:14.0156 3712 Actual detected object count: 29
21:10:04.0187 3712 AFD ( Virus.Win32.ZAccess.aml ) - skipped by user
21:10:04.0187 3712 AFD ( Virus.Win32.ZAccess.aml ) - User select action: Skip
21:10:04.0187 3712 ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0187 3712 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0187 3712 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0187 3712 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0187 3712 DLABOIOM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0187 3712 DLABOIOM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0187 3712 DLACDBHM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0187 3712 DLACDBHM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0187 3712 DLADResN ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0187 3712 DLADResN ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DLAIFS_M ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DLAIFS_M ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DLAOPIOM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DLAOPIOM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DLAPoolM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DLAPoolM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DLARTL_N ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DLARTL_N ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DLAUDFAM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DLAUDFAM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DLAUDF_M ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DLAUDF_M ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0203 3712 DRVMCDB ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0203 3712 DRVMCDB ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 DRVNDDM ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 DRVNDDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 DSproct ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 ELhid ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 ELhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 ELkbd ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 ELkbd ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 ELmon ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 ELmon ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 ELmou ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 ELmou ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 ELService ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 ELService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0218 3712 IAANTMon ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0218 3712 IAANTMon ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 KLIF ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 KLIF ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 NetSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 NetSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0234 3712 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0234 3712 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:10:04.0250 3712 SPCA508A ( UnsignedFile.Multi.Generic ) - skipped by user
21:10:04.0250 3712 SPCA508A ( UnsignedFile.Multi.Generic ) - User select action: Skip

Remainder of log:

21:11:37.0078 2948 ============================================================
21:11:37.0078 2948 Scan started
21:11:37.0078 2948 Mode: Manual; SigCheck; TDLFS;
21:11:37.0078 2948 ============================================================
21:11:37.0781 2948 ================ Scan system memory ========================
21:11:37.0781 2948 System memory - ok
21:11:37.0781 2948 ================ Scan services =============================
21:11:37.0921 2948 Abiosdsk - ok
21:11:37.0937 2948 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
21:11:38.0125 2948 abp480n5 - ok
21:11:38.0171 2948 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:11:38.0328 2948 ACPI - ok
21:11:38.0359 2948 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:11:38.0484 2948 ACPIEC - ok
21:11:38.0578 2948 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:11:38.0593 2948 AdobeFlashPlayerUpdateSvc - ok
21:11:38.0625 2948 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
21:11:38.0750 2948 adpu160m - ok
21:11:38.0781 2948 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
21:11:38.0921 2948 aec - ok
21:11:38.0968 2948 [ F6C5B9B10EE127ED13063D25B36AAB91 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:11:38.0968 2948 Suspicious file (Forged): C:\WINDOWS\System32\drivers\afd.sys. Real md5: F6C5B9B10EE127ED13063D25B36AAB91, Fake md5: 7E775010EF291DA96AD17CA4B17137D7
21:11:38.0968 2948 AFD ( Virus.Win32.ZAccess.aml ) - infected
21:11:38.0968 2948 AFD - detected Virus.Win32.ZAccess.aml (0)
21:11:39.0000 2948 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
21:11:39.0140 2948 agp440 - ok
21:11:39.0187 2948 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
21:11:39.0328 2948 agpCPQ - ok
21:11:39.0359 2948 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
21:11:39.0437 2948 Aha154x - ok
21:11:39.0468 2948 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
21:11:39.0609 2948 aic78u2 - ok
21:11:39.0640 2948 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
21:11:39.0750 2948 aic78xx - ok
21:11:39.0796 2948 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:11:39.0937 2948 Alerter - ok
21:11:39.0953 2948 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
21:11:40.0109 2948 ALG - ok
21:11:40.0140 2948 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
21:11:40.0265 2948 AliIde - ok
21:11:40.0296 2948 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
21:11:40.0421 2948 alim1541 - ok
21:11:40.0437 2948 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
21:11:40.0562 2948 amdagp - ok
21:11:40.0578 2948 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
21:11:40.0656 2948 amsint - ok
21:11:40.0796 2948 [ F9DAC844B1D370DA4C984D4C22F5E696 ] AntiSpywareService C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe
21:11:40.0828 2948 AntiSpywareService - ok
21:11:40.0953 2948 [ 8FA646F0E639D9A8C8B98E217D471DC0 ] AOL ACS C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
21:11:41.0000 2948 AOL ACS - ok
21:11:41.0093 2948 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:11:41.0109 2948 Apple Mobile Device - ok
21:11:41.0171 2948 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
21:11:41.0312 2948 AppMgmt - ok
21:11:41.0343 2948 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:11:41.0500 2948 Arp1394 - ok
21:11:41.0515 2948 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
21:11:41.0656 2948 asc - ok
21:11:41.0687 2948 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
21:11:41.0765 2948 asc3350p - ok
21:11:41.0781 2948 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
21:11:41.0921 2948 asc3550 - ok
21:11:41.0968 2948 [ D880831279ED91F9A4190A2DB9539EA9 ] ASCTRM C:\WINDOWS\system32\drivers\ASCTRM.sys
21:11:41.0984 2948 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
21:11:41.0984 2948 ASCTRM - detected UnsignedFile.Multi.Generic (1)
21:11:42.0109 2948 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
21:11:42.0125 2948 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
21:11:42.0125 2948 aspnet_state - detected UnsignedFile.Multi.Generic (1)
21:11:42.0156 2948 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:11:42.0296 2948 AsyncMac - ok
21:11:42.0312 2948 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:11:42.0453 2948 atapi - ok
21:11:42.0453 2948 Atdisk - ok
21:11:42.0484 2948 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:11:42.0640 2948 Atmarpc - ok
21:11:42.0687 2948 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:11:42.0828 2948 AudioSrv - ok
21:11:42.0875 2948 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:11:43.0000 2948 audstub - ok
21:11:43.0046 2948 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:11:43.0171 2948 Beep - ok
21:11:43.0234 2948 [ A06CE3399D16DB864F55FAEB1F1927A9 ] Browser C:\WINDOWS\System32\browser.dll
21:11:43.0375 2948 Browser - ok
21:11:43.0390 2948 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
21:11:43.0546 2948 cbidf - ok
21:11:43.0546 2948 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:11:43.0687 2948 cbidf2k - ok
21:11:43.0703 2948 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:11:43.0828 2948 CCDECODE - ok
21:11:43.0843 2948 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
21:11:43.0906 2948 cd20xrnt - ok
21:11:43.0953 2948 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:11:44.0093 2948 Cdaudio - ok
21:11:44.0093 2948 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:11:44.0234 2948 Cdfs - ok
21:11:44.0265 2948 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:11:44.0406 2948 Cdrom - ok
21:11:44.0406 2948 Changer - ok
21:11:44.0437 2948 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:11:44.0562 2948 CiSvc - ok
21:11:44.0609 2948 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:11:44.0750 2948 ClipSrv - ok
21:11:44.0781 2948 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
21:11:44.0921 2948 CmdIde - ok
21:11:44.0921 2948 COMSysApp - ok
21:11:44.0953 2948 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
21:11:45.0093 2948 Cpqarray - ok
21:11:45.0140 2948 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:11:45.0281 2948 CryptSvc - ok
21:11:45.0312 2948 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
21:11:45.0453 2948 dac2w2k - ok
21:11:45.0484 2948 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
21:11:45.0625 2948 dac960nt - ok
21:11:45.0765 2948 [ 2589FE6015A316C0F5D5112B4DA7B509 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:11:45.0921 2948 DcomLaunch - ok
21:11:45.0984 2948 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:11:46.0125 2948 Dhcp - ok
21:11:46.0187 2948 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:11:46.0312 2948 Disk - ok
21:11:46.0390 2948 [ E2D0DE31442390C35E3163C87CB6A9EB ] DLABOIOM C:\WINDOWS\system32\DLA\DLABOIOM.SYS
21:11:46.0406 2948 DLABOIOM ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0406 2948 DLABOIOM - detected UnsignedFile.Multi.Generic (1)
21:11:46.0406 2948 [ D979BEBCF7EDCC9C9EE1857D1A68C67B ] DLACDBHM C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
21:11:46.0453 2948 DLACDBHM ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0453 2948 DLACDBHM - detected UnsignedFile.Multi.Generic (1)
21:11:46.0484 2948 [ 83545593E297F50A8E2524B4C071A153 ] DLADResN C:\WINDOWS\system32\DLA\DLADResN.SYS
21:11:46.0500 2948 DLADResN ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0500 2948 DLADResN - detected UnsignedFile.Multi.Generic (1)
21:11:46.0515 2948 [ 96E01D901CDC98C7817155CC057001BF ] DLAIFS_M C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
21:11:46.0515 2948 DLAIFS_M ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0515 2948 DLAIFS_M - detected UnsignedFile.Multi.Generic (1)
21:11:46.0531 2948 [ 0A60A39CC5E767980A31CA5D7238DFA9 ] DLAOPIOM C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
21:11:46.0531 2948 DLAOPIOM ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0531 2948 DLAOPIOM - detected UnsignedFile.Multi.Generic (1)
21:11:46.0531 2948 [ 9FE2B72558FC808357F427FD83314375 ] DLAPoolM C:\WINDOWS\system32\DLA\DLAPoolM.SYS
21:11:46.0546 2948 DLAPoolM ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0546 2948 DLAPoolM - detected UnsignedFile.Multi.Generic (1)
21:11:46.0546 2948 [ 7EE0852AE8907689DF25049DCD2342E8 ] DLARTL_N C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
21:11:46.0562 2948 DLARTL_N ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0562 2948 DLARTL_N - detected UnsignedFile.Multi.Generic (1)
21:11:46.0562 2948 [ F08E1DAFAC457893399E03430A6A1397 ] DLAUDFAM C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
21:11:46.0562 2948 DLAUDFAM ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0562 2948 DLAUDFAM - detected UnsignedFile.Multi.Generic (1)
21:11:46.0578 2948 [ E7D105ED1E694449D444A9933DF8E060 ] DLAUDF_M C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
21:11:46.0593 2948 DLAUDF_M ( UnsignedFile.Multi.Generic ) - warning
21:11:46.0593 2948 DLAUDF_M - detected UnsignedFile.Multi.Generic (1)
21:11:46.0609 2948 dmadmin - ok
21:11:46.0640 2948 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:11:46.0781 2948 dmboot - ok
21:11:46.0875 2948 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:11:47.0015 2948 dmio - ok
21:11:47.0062 2948 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:11:47.0218 2948 dmload - ok
21:11:47.0265 2948 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
21:11:47.0406 2948 dmserver - ok
21:11:47.0453 2948 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:11:47.0593 2948 DMusic - ok
21:11:47.0593 2948 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:11:47.0734 2948 Dnscache - ok
21:11:47.0765 2948 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
21:11:47.0921 2948 Dot3svc - ok
21:11:47.0937 2948 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
21:11:48.0062 2948 dpti2o - ok
21:11:48.0093 2948 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:11:48.0250 2948 drmkaud - ok
21:11:48.0250 2948 [ FD0F95981FEF9073659D8EC58E40AA3C ] DRVMCDB C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
21:11:48.0250 2948 DRVMCDB ( UnsignedFile.Multi.Generic ) - warning
21:11:48.0250 2948 DRVMCDB - detected UnsignedFile.Multi.Generic (1)
21:11:48.0265 2948 [ B4869D320428CDC5EC4D7F5E808E99B5 ] DRVNDDM C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
21:11:48.0265 2948 DRVNDDM ( UnsignedFile.Multi.Generic ) - warning
21:11:48.0265 2948 DRVNDDM - detected UnsignedFile.Multi.Generic (1)
21:11:48.0312 2948 [ FE80901578E7E3DA70299A5AEB2B7FBD ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
21:11:48.0328 2948 DSBrokerService - ok
21:11:48.0375 2948 [ 413F2D5F9D802688242C23B38F767ECB ] DSproct C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
21:11:48.0406 2948 DSproct ( UnsignedFile.Multi.Generic ) - warning
21:11:48.0406 2948 DSproct - detected UnsignedFile.Multi.Generic (1)
21:11:48.0421 2948 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] dsunidrv C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
21:11:48.0453 2948 dsunidrv - ok
21:11:48.0500 2948 [ D57A8FC800B501AC05B10D00F66D127A ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
21:11:48.0531 2948 E100B - ok
21:11:48.0562 2948 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
21:11:48.0703 2948 EapHost - ok
21:11:48.0796 2948 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
21:11:48.0828 2948 ehRecvr - ok
21:11:48.0906 2948 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
21:11:48.0937 2948 ehSched - ok
21:11:48.0953 2948 [ 1976FEDF6D7F87135C9B7F5CB4C8C868 ] ELacpi C:\WINDOWS\system32\DRIVERS\ELacpi.sys
21:11:48.0968 2948 ELacpi - ok
21:11:49.0015 2948 [ AE65C02444907966378454138B9F99F0 ] ELhid C:\WINDOWS\system32\DRIVERS\ELhid.sys
21:11:49.0031 2948 ELhid ( UnsignedFile.Multi.Generic ) - warning
21:11:49.0031 2948 ELhid - detected UnsignedFile.Multi.Generic (1)
21:11:49.0062 2948 [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1 ] ELkbd C:\WINDOWS\system32\DRIVERS\ELkbd.sys
21:11:49.0093 2948 ELkbd ( UnsignedFile.Multi.Generic ) - warning
21:11:49.0093 2948 ELkbd - detected UnsignedFile.Multi.Generic (1)
21:11:49.0109 2948 [ 0D87CB825ED6CB2EBCC147A10A42F1D6 ] ELmon C:\WINDOWS\system32\DRIVERS\ELmon.sys
21:11:49.0140 2948 ELmon ( UnsignedFile.Multi.Generic ) - warning
21:11:49.0140 2948 ELmon - detected UnsignedFile.Multi.Generic (1)
21:11:49.0156 2948 [ A4ADD3847B67BACAB6FC851A2B60FDB3 ] ELmou C:\WINDOWS\system32\DRIVERS\ELmou.sys
21:11:49.0187 2948 ELmou ( UnsignedFile.Multi.Generic ) - warning
21:11:49.0187 2948 ELmou - detected UnsignedFile.Multi.Generic (1)
21:11:49.0250 2948 [ D1DE16926C682DCD3D99AE5500CA5522 ] ELService C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
21:11:49.0281 2948 ELService ( UnsignedFile.Multi.Generic ) - warning
21:11:49.0281 2948 ELService - detected UnsignedFile.Multi.Generic (1)
21:11:49.0296 2948 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:11:49.0437 2948 ERSvc - ok
21:11:49.0515 2948 [ 0E776ED5F7CC9F94299E70461B7B8185 ] Eventlog C:\WINDOWS\system32\services.exe
21:11:49.0640 2948 Eventlog - ok
21:11:49.0703 2948 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
21:11:49.0750 2948 EventSystem - ok
21:11:49.0796 2948 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:11:49.0921 2948 Fastfat - ok
21:11:49.0968 2948 [ 1926899BF9FFE2602B63074971700412 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:11:50.0125 2948 FastUserSwitchingCompatibility - ok
21:11:50.0171 2948 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
21:11:50.0328 2948 Fax - ok
21:11:50.0359 2948 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:11:50.0500 2948 Fdc - ok
21:11:50.0531 2948 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:11:50.0687 2948 Fips - ok
21:11:50.0718 2948 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:11:50.0859 2948 Flpydisk - ok
21:11:50.0921 2948 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
21:11:51.0062 2948 FltMgr - ok
21:11:51.0078 2948 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:11:51.0218 2948 Fs_Rec - ok
21:11:51.0250 2948 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:11:51.0390 2948 Ftdisk - ok
21:11:51.0453 2948 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
21:11:51.0453 2948 GEARAspiWDM - ok
21:11:51.0500 2948 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:11:51.0671 2948 Gpc - ok
21:11:51.0703 2948 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:11:51.0843 2948 HDAudBus - ok
21:11:51.0937 2948 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:11:52.0078 2948 helpsvc - ok
21:11:52.0109 2948 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
21:11:52.0250 2948 HidServ - ok
21:11:52.0296 2948 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:11:52.0437 2948 HidUsb - ok
21:11:52.0468 2948 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
21:11:52.0609 2948 hkmsvc - ok
21:11:52.0625 2948 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
21:11:52.0750 2948 hpn - ok
21:11:52.0781 2948 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:11:52.0812 2948 HPZid412 - ok
21:11:52.0828 2948 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:11:52.0859 2948 HPZipr12 - ok
21:11:52.0906 2948 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:11:52.0937 2948 HPZius12 - ok
21:11:53.0000 2948 [ 14B15D0D803EF4AB9B525B7E2DA303EF ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
21:11:53.0031 2948 HSFHWAZL - ok
21:11:53.0078 2948 [ CBF6831420A97E8FBB91E5F52B707EF7 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.SYS
21:11:53.0125 2948 HSF_DPV - ok
21:11:53.0187 2948 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:11:53.0328 2948 HTTP - ok
21:11:53.0375 2948 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:11:53.0500 2948 HTTPFilter - ok
21:11:53.0531 2948 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
21:11:53.0656 2948 i2omgmt - ok
21:11:53.0718 2948 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
21:11:53.0843 2948 i2omp - ok
21:11:53.0843 2948 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:11:53.0984 2948 i8042prt - ok
21:11:54.0046 2948 [ D43E91E271C041BB86A6223462A41D28 ] IAANTMon C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
21:11:54.0046 2948 IAANTMon ( UnsignedFile.Multi.Generic ) - warning
21:11:54.0046 2948 IAANTMon - detected UnsignedFile.Multi.Generic (1)
21:11:54.0109 2948 [ 5A8E05F1D5C36ABD58CFFA111EB325EA ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
21:11:54.0171 2948 ialm - ok
21:11:54.0218 2948 [ 9A65E42664D1534B68512CAAD0EFE963 ] iastor C:\WINDOWS\system32\drivers\iastor.sys
21:11:54.0281 2948 iastor - ok
21:11:54.0390 2948 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:11:54.0421 2948 IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:11:54.0421 2948 IDriverT - detected UnsignedFile.Multi.Generic (1)
21:11:54.0453 2948 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:11:54.0593 2948 Imapi - ok
21:11:54.0656 2948 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:11:54.0796 2948 ImapiService - ok
21:11:54.0812 2948 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
21:11:54.0953 2948 ini910u - ok
21:11:54.0984 2948 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
21:11:55.0125 2948 IntelIde - ok
21:11:55.0156 2948 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:11:55.0281 2948 intelppm - ok
21:11:55.0296 2948 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
21:11:55.0437 2948 Ip6Fw - ok
21:11:55.0468 2948 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:11:55.0609 2948 IpFilterDriver - ok
21:11:55.0656 2948 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:11:55.0781 2948 IpInIp - ok
21:11:55.0812 2948 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:11:55.0953 2948 IpNat - ok
21:11:56.0015 2948 [ 9033D67B7112D23EDED6789BACDED128 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:11:56.0046 2948 iPod Service - ok
21:11:56.0093 2948 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:11:56.0234 2948 IPSec - ok
21:11:56.0234 2948 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:11:56.0390 2948 IRENUM - ok
21:11:56.0421 2948 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:11:56.0562 2948 isapnp - ok
21:11:56.0656 2948 [ 54F694C6CD3A1149BA3A8BDACC83BADC ] ITMRTSVC C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
21:11:56.0671 2948 ITMRTSVC - ok
21:11:56.0796 2948 [ 9DBA73C2F1E76EC4CB837E67C5743596 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
21:11:56.0812 2948 JavaQuickStarterService - ok
21:11:56.0812 2948 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:11:56.0953 2948 Kbdclass - ok
21:11:56.0984 2948 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:11:57.0109 2948 kbdhid - ok
21:11:57.0171 2948 [ 52B115B2BE8987038D56B3B2AEB445F5 ] KLIF C:\WINDOWS\system32\DRIVERS\klif.sys
21:11:57.0187 2948 KLIF ( UnsignedFile.Multi.Generic ) - warning
21:11:57.0187 2948 KLIF - detected UnsignedFile.Multi.Generic (1)
21:11:57.0234 2948 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:11:57.0390 2948 kmixer - ok
21:11:57.0390 2948 [ 1705745D900DABF2D89F90EBADDC7517 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:11:57.0531 2948 KSecDD - ok
21:11:57.0562 2948 [ F385F4B02C535BFFE1D70CAB80838123 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:11:57.0718 2948 lanmanserver - ok
21:11:57.0734 2948 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:11:57.0890 2948 lanmanworkstation - ok
21:11:57.0906 2948 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:11:58.0046 2948 LmHosts - ok
21:11:58.0062 2948 [ F96CFB47903854F228BAAF3E2D41A0A3 ] LVPr2Mon C:\WINDOWS\system32\Drivers\LVPr2Mon.sys
21:11:58.0078 2948 LVPr2Mon - ok
21:11:58.0140 2948 [ FF23862146A682FCC3DBAA002E22F958 ] LVPrcSrv C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
21:11:58.0156 2948 LVPrcSrv - ok
21:11:58.0234 2948 [ E22FD7852E74F04CCEB6B8A684A51F3E ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
21:11:58.0250 2948 LVRS - ok
21:11:58.0312 2948 [ 5F987FC1AAD215EC2C60CF07719B1CCE ] LVUSBSta C:\WINDOWS\system32\drivers\LVUSBSta.sys
21:11:58.0328 2948 LVUSBSta - ok
21:11:58.0359 2948 [ 500D089CE760D83DA2B6CBA681AA9949 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
21:11:58.0375 2948 MBAMProtector - ok
21:11:58.0437 2948 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:11:58.0453 2948 MBAMScheduler - ok
21:11:58.0515 2948 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:11:58.0531 2948 MBAMService - ok
21:11:58.0625 2948 [ 2241BA95626E55BE848A455273DDB018 ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
21:11:58.0640 2948 McAfee SiteAdvisor Service - ok
21:11:58.0734 2948 [ F453D1E6D881E8F8717E20CCD4199E85 ] McComponentHostService C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe
21:11:58.0750 2948 McComponentHostService - ok
21:11:58.0796 2948 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
21:11:58.0843 2948 McrdSvc - ok
21:11:58.0921 2948 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
21:11:58.0937 2948 MDM - ok
21:11:59.0000 2948 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:11:59.0031 2948 mdmxsdk - ok
21:11:59.0078 2948 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:11:59.0218 2948 Messenger - ok
21:11:59.0281 2948 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
21:11:59.0281 2948 MHN ( UnsignedFile.Multi.Generic ) - warning
21:11:59.0281 2948 MHN - detected UnsignedFile.Multi.Generic (1)
21:11:59.0296 2948 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
21:11:59.0312 2948 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
21:11:59.0312 2948 MHNDRV - detected UnsignedFile.Multi.Generic (1)
21:11:59.0328 2948 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:11:59.0468 2948 mnmdd - ok
21:11:59.0515 2948 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:11:59.0656 2948 mnmsrvc - ok
21:11:59.0687 2948 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:11:59.0828 2948 Modem - ok
21:11:59.0843 2948 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:12:00.0000 2948 Mouclass - ok
21:12:00.0031 2948 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:12:00.0171 2948 mouhid - ok
21:12:00.0218 2948 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:12:00.0359 2948 MountMgr - ok
21:12:00.0421 2948 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:12:00.0437 2948 MozillaMaintenance - ok
21:12:00.0484 2948 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
21:12:00.0625 2948 mraid35x - ok
21:12:00.0640 2948 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:12:00.0781 2948 MRxDAV - ok
21:12:00.0843 2948 [ 60AE98742484E7AB80C3C1450E708148 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:12:00.0875 2948 MRxSmb - ok
21:12:00.0921 2948 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:12:01.0046 2948 MSDTC - ok
21:12:01.0062 2948 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:12:01.0187 2948 Msfs - ok
21:12:01.0187 2948 MSIServer - ok
21:12:01.0218 2948 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:12:01.0359 2948 MSKSSRV - ok
21:12:01.0390 2948 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:12:01.0515 2948 MSPCLOCK - ok
21:12:01.0546 2948 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:12:01.0687 2948 MSPQM - ok
21:12:01.0703 2948 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:12:01.0828 2948 mssmbios - ok
21:12:01.0859 2948 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
21:12:01.0984 2948 MSTEE - ok
21:12:01.0984 2948 [ 2F625D11385B1A94360BFC70AAEFDEE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:12:02.0109 2948 Mup - ok
21:12:02.0125 2948 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:12:02.0265 2948 NABTSFEC - ok
21:12:02.0312 2948 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
21:12:02.0468 2948 napagent - ok
21:12:02.0468 2948 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:12:02.0609 2948 NDIS - ok
21:12:02.0609 2948 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:12:02.0750 2948 NdisIP - ok
21:12:02.0765 2948 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:12:02.0921 2948 NdisTapi - ok
21:12:02.0937 2948 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:12:03.0078 2948 Ndisuio - ok
21:12:03.0078 2948 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:12:03.0203 2948 NdisWan - ok
21:12:03.0218 2948 [ 6215023940CFD3702B46ABC304E1D45A ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:12:03.0343 2948 NDProxy - ok
21:12:03.0343 2948 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:12:03.0484 2948 NetBIOS - ok
21:12:03.0515 2948 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:12:03.0640 2948 NetBT - ok
21:12:03.0687 2948 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
21:12:03.0828 2948 NetDDE - ok
21:12:03.0828 2948 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:12:03.0953 2948 NetDDEdsdm - ok
21:12:04.0000 2948 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:12:04.0125 2948 Netlogon - ok
21:12:04.0187 2948 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
21:12:04.0312 2948 Netman - ok
21:12:04.0421 2948 [ 9DA26B773BD04B867A8E9F427CD048FC ] NetSvc C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
21:12:04.0437 2948 NetSvc ( UnsignedFile.Multi.Generic ) - warning
21:12:04.0437 2948 NetSvc - detected UnsignedFile.Multi.Generic (1)
21:12:04.0453 2948 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:12:04.0578 2948 NIC1394 - ok
21:12:04.0640 2948 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] Nla C:\WINDOWS\System32\mswsock.dll
21:12:04.0671 2948 Nla - ok
21:12:04.0687 2948 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:12:04.0812 2948 Npfs - ok
21:12:04.0875 2948 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:12:05.0015 2948 Ntfs - ok
21:12:05.0015 2948 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:12:05.0140 2948 NtLmSsp - ok
21:12:05.0187 2948 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:12:05.0328 2948 NtmsSvc - ok
21:12:05.0343 2948 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:12:05.0484 2948 Null - ok
21:12:05.0546 2948 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:12:05.0656 2948 nv - ok
21:12:05.0687 2948 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:12:05.0828 2948 NwlnkFlt - ok
21:12:05.0843 2948 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:12:05.0984 2948 NwlnkFwd - ok
21:12:05.0984 2948 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:12:06.0125 2948 ohci1394 - ok
21:12:06.0156 2948 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:12:06.0171 2948 ose - ok
21:12:06.0218 2948 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:12:06.0359 2948 Parport - ok
21:12:06.0359 2948 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:12:06.0500 2948 PartMgr - ok
21:12:06.0531 2948 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:12:06.0671 2948 ParVdm - ok
21:12:06.0687 2948 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:12:06.0812 2948 PCI - ok
21:12:06.0812 2948 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:12:06.0968 2948 PCIIde - ok
21:12:07.0015 2948 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:12:07.0140 2948 Pcmcia - ok
21:12:07.0171 2948 [ 4349C7DC0C982CFFC11946FFF20F8524 ] pepifilter C:\WINDOWS\system32\DRIVERS\lv302af.sys
21:12:07.0218 2948 pepifilter - ok
21:12:07.0234 2948 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
21:12:07.0375 2948 perc2 - ok
21:12:07.0390 2948 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
21:12:07.0531 2948 perc2hib - ok
21:12:07.0656 2948 [ 4FC23DAE30EF4F6A2952CD93104909E7 ] PID_PEPI C:\WINDOWS\system32\DRIVERS\LV302V32.SYS
21:12:07.0765 2948 PID_PEPI - ok
21:12:07.0796 2948 [ 0E776ED5F7CC9F94299E70461B7B8185 ] PlugPlay C:\WINDOWS\system32\services.exe
21:12:07.0921 2948 PlugPlay - ok
21:12:07.0968 2948 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
21:12:08.0000 2948 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:12:08.0000 2948 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
21:12:08.0015 2948 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:12:08.0140 2948 PolicyAgent - ok
21:12:08.0187 2948 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:12:08.0328 2948 PptpMiniport - ok
21:12:08.0328 2948 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:12:08.0453 2948 ProtectedStorage - ok
21:12:08.0468 2948 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:12:08.0609 2948 PSched - ok
21:12:08.0609 2948 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:12:08.0734 2948 Ptilink - ok
21:12:08.0765 2948 [ 86724469CD077901706854974CD13C3E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:12:08.0781 2948 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
21:12:08.0781 2948 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
21:12:08.0812 2948 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
21:12:08.0921 2948 ql1080 - ok
21:12:08.0937 2948 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
21:12:09.0062 2948 Ql10wnt - ok
21:12:09.0093 2948 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
21:12:09.0234 2948 ql12160 - ok
21:12:09.0250 2948 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
21:12:09.0406 2948 ql1240 - ok
21:12:09.0406 2948 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
21:12:09.0546 2948 ql1280 - ok
21:12:09.0578 2948 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:12:09.0687 2948 RasAcd - ok
21:12:09.0750 2948 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:12:09.0921 2948 RasAuto - ok
21:12:09.0937 2948 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:12:10.0093 2948 Rasl2tp - ok
21:12:10.0156 2948 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
21:12:10.0281 2948 RasMan - ok
21:12:10.0312 2948 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:12:10.0453 2948 RasPppoe - ok
21:12:10.0468 2948 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:12:10.0593 2948 Raspti - ok
21:12:10.0671 2948 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:12:10.0812 2948 Rdbss - ok
21:12:10.0859 2948 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:12:10.0984 2948 RDPCDD - ok
21:12:11.0078 2948 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:12:11.0234 2948 rdpdr - ok
21:12:11.0265 2948 [ 6728E45B66F93C08F11DE2E316FC70DD ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:12:11.0406 2948 RDPWD - ok
21:12:11.0421 2948 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:12:11.0562 2948 RDSessMgr - ok
21:12:11.0578 2948 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:12:11.0718 2948 redbook - ok
21:12:11.0765 2948 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:12:11.0906 2948 RemoteAccess - ok
21:12:11.0937 2948 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:12:12.0093 2948 RemoteRegistry - ok
21:12:12.0140 2948 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
21:12:12.0281 2948 RpcLocator - ok
21:12:12.0312 2948 [ 2589FE6015A316C0F5D5112B4DA7B509 ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:12:12.0453 2948 RpcSs - ok
21:12:12.0515 2948 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:12:12.0671 2948 RSVP - ok
21:12:12.0687 2948 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
21:12:12.0812 2948 SamSs - ok
21:12:12.0859 2948 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:12:13.0000 2948 SCardSvr - ok
21:12:13.0046 2948 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:12:13.0187 2948 Schedule - ok
21:12:13.0234 2948 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:12:13.0359 2948 Secdrv - ok
21:12:13.0390 2948 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
21:12:13.0546 2948 seclogon - ok
21:12:13.0562 2948 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
21:12:13.0703 2948 SENS - ok
21:12:13.0734 2948 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:12:13.0875 2948 serenum - ok
21:12:13.0890 2948 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:12:14.0031 2948 Serial - ok
21:12:14.0078 2948 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:12:14.0218 2948 Sfloppy - ok
21:12:14.0250 2948 [ 1926899BF9FFE2602B63074971700412 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:12:14.0375 2948 ShellHWDetection - ok
21:12:14.0375 2948 Simbad - ok
21:12:14.0406 2948 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
21:12:14.0531 2948 sisagp - ok
21:12:14.0562 2948 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:12:14.0687 2948 SLIP - ok
21:12:14.0718 2948 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
21:12:14.0796 2948 Sparrow - ok
21:12:14.0828 2948 [ 658AD50E7B6909F4BB514F7CC1D4F1B2 ] SPCA508A C:\WINDOWS\system32\DRIVERS\SPCA508A.SYS
21:12:14.0859 2948 SPCA508A ( UnsignedFile.Multi.Generic ) - warning
21:12:14.0859 2948 SPCA508A - detected UnsignedFile.Multi.Generic (1)
21:12:14.0875 2948 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:12:15.0015 2948 splitter - ok
21:12:15.0062 2948 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:12:15.0203 2948 Spooler - ok
21:12:15.0234 2948 sprtsvc_dellsupportcenter - ok
21:12:15.0281 2948 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:12:15.0421 2948 sr - ok
21:12:15.0468 2948 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
21:12:15.0609 2948 srservice - ok
21:12:15.0656 2948 [ 3BB03F2BA89D2BE417206C373D2AF17C ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:12:15.0671 2948 Srv - ok
21:12:15.0718 2948 [ D6870895FE46A464A19141440EB6CC1E ] sscdbus C:\WINDOWS\system32\DRIVERS\sscdbus.sys
21:12:15.0750 2948 sscdbus - ok
21:12:15.0781 2948 [ 0FE167362E4689B716CDC8D93ADEDDA8 ] sscdmdfl C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
21:12:15.0812 2948 sscdmdfl - ok
21:12:15.0828 2948 [ 55A15707E32B6709242AD127E62CA55A ] sscdmdm C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
21:12:15.0843 2948 sscdmdm - ok
21:12:15.0859 2948 [ 9FA66E361A99F8920C7609BAE6814A0E ] sscdserd C:\WINDOWS\system32\DRIVERS\sscdserd.sys
21:12:15.0875 2948 sscdserd - ok
21:12:15.0875 2948 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:12:16.0015 2948 SSDPSRV - ok
21:12:16.0078 2948 [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
21:12:16.0125 2948 STHDA - ok
21:12:16.0156 2948 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:12:16.0343 2948 stisvc - ok
21:12:16.0359 2948 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:12:16.0484 2948 streamip - ok
21:12:16.0515 2948 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:12:16.0656 2948 swenum - ok
21:12:16.0687 2948 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:12:16.0828 2948 swmidi - ok
21:12:16.0843 2948 SwPrv - ok
21:12:16.0859 2948 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
21:12:17.0000 2948 symc810 - ok
21:12:17.0015 2948 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
21:12:17.0156 2948 symc8xx - ok
21:12:17.0156 2948 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
21:12:17.0296 2948 sym_hi - ok
21:12:17.0296 2948 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
21:12:17.0437 2948 sym_u3 - ok
21:12:17.0468 2948 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:12:17.0609 2948 sysaudio - ok
21:12:17.0656 2948 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:12:17.0781 2948 SysmonLog - ok
21:12:17.0812 2948 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:12:17.0968 2948 TapiSrv - ok
21:12:18.0015 2948 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:12:18.0046 2948 Tcpip - ok
21:12:18.0078 2948 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:12:18.0218 2948 TDPIPE - ok
21:12:18.0250 2948 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:12:18.0390 2948 TDTCP - ok
21:12:18.0578 2948 [ 851C5080261DFC1FCDC21DF0E5EA3BCB ] TeamViewer8 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
21:12:18.0687 2948 TeamViewer8 - ok
21:12:18.0718 2948 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:12:18.0859 2948 TermDD - ok
21:12:18.0906 2948 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
21:12:19.0031 2948 TermService - ok
21:12:19.0046 2948 [ 1926899BF9FFE2602B63074971700412 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:12:19.0171 2948 Themes - ok
21:12:19.0218 2948 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
21:12:19.0343 2948 TlntSvr - ok
21:12:19.0375 2948 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
21:12:19.0500 2948 TosIde - ok
21:12:19.0531 2948 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:12:19.0671 2948 TrkWks - ok
21:12:19.0703 2948 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:12:19.0859 2948 Udfs - ok
21:12:19.0875 2948 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
21:12:19.0937 2948 ultra - ok
21:12:19.0984 2948 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:12:20.0125 2948 Update - ok
21:12:20.0156 2948 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:12:20.0312 2948 upnphost - ok
21:12:20.0343 2948 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
21:12:20.0484 2948 UPS - ok
21:12:20.0531 2948 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
21:12:20.0656 2948 usbaudio - ok
21:12:20.0703 2948 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:12:20.0843 2948 usbccgp - ok
21:12:20.0859 2948 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:12:21.0000 2948 usbehci - ok
21:12:21.0031 2948 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:12:21.0171 2948 usbhub - ok
21:12:21.0218 2948 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:12:21.0359 2948 usbprint - ok
21:12:21.0390 2948 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:12:21.0531 2948 usbscan - ok
21:12:21.0546 2948 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:12:21.0687 2948 USBSTOR - ok
21:12:21.0703 2948 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:12:21.0859 2948 usbuhci - ok
21:12:21.0890 2948 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:12:22.0031 2948 VgaSave - ok
21:12:22.0062 2948 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
21:12:22.0187 2948 viaagp - ok
21:12:22.0234 2948 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
21:12:22.0375 2948 ViaIde - ok
21:12:22.0406 2948 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:12:22.0531 2948 VolSnap - ok
21:12:22.0562 2948 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
21:12:22.0687 2948 VSS - ok
21:12:22.0718 2948 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
21:12:22.0859 2948 w32time - ok
21:12:22.0875 2948 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:12:23.0000 2948 Wanarp - ok
21:12:23.0031 2948 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
21:12:23.0062 2948 wanatw - ok
21:12:23.0093 2948 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:12:23.0218 2948 wdmaud - ok
21:12:23.0250 2948 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
21:12:23.0390 2948 WebClient - ok
21:12:23.0421 2948 [ 59D043485A6EDA2ED2685C81489AE5BD ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
21:12:23.0468 2948 winachsf - ok
21:12:23.0546 2948 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:12:23.0671 2948 winmgmt - ok
21:12:23.0718 2948 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:12:23.0734 2948 WmdmPmSN - ok
21:12:23.0781 2948 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] Wmi C:\WINDOWS\System32\advapi32.dll
21:12:23.0937 2948 Wmi - ok
21:12:23.0968 2948 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:12:24.0109 2948 WmiApSrv - ok
21:12:24.0187 2948 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:12:24.0234 2948 WMPNetworkSvc - ok
21:12:24.0265 2948 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:12:24.0406 2948 WSTCODEC - ok
21:12:24.0437 2948 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:12:24.0468 2948 WudfPf - ok
21:12:24.0500 2948 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:12:24.0531 2948 WudfRd - ok
21:12:24.0562 2948 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:12:24.0593 2948 WudfSvc - ok
21:12:24.0640 2948 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:12:24.0781 2948 WZCSVC - ok
21:12:24.0812 2948 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:12:24.0953 2948 xmlprov - ok
21:12:24.0953 2948 ================ Scan global ===============================
21:12:24.0984 2948 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:12:25.0000 2948 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
21:12:25.0015 2948 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
21:12:25.0046 2948 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
21:12:25.0046 2948 [Global] - ok
21:12:25.0046 2948 ================ Scan MBR ==================================
21:12:25.0062 2948 [ 91722E6BC3A2B40FF00222DCA4A3DB3E ] \Device\Harddisk0\DR0
21:12:25.0531 2948 \Device\Harddisk0\DR0 - ok
21:12:25.0531 2948 ================ Scan VBR ==================================
21:12:25.0546 2948 [ 61BEBFC3ECDDB293245631EC4A88E250 ] \Device\Harddisk0\DR0\Partition1
21:12:25.0546 2948 \Device\Harddisk0\DR0\Partition1 - ok
21:12:25.0546 2948 ================ Scan active images ========================
21:12:25.0546 2948 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] C:\WINDOWS\system32\drivers\nic1394.sys
21:12:25.0546 2948 C:\WINDOWS\system32\drivers\nic1394.sys - ok
21:12:25.0546 2948 [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
21:12:25.0546 2948 C:\WINDOWS\system32\drivers\intelppm.sys - ok
21:12:25.0562 2948 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
21:12:25.0562 2948 C:\WINDOWS\system32\drivers\videoprt.sys - ok
21:12:25.0562 2948 [ 5A8E05F1D5C36ABD58CFFA111EB325EA ] C:\WINDOWS\system32\drivers\ialmnt5.sys
21:12:25.0562 2948 C:\WINDOWS\system32\drivers\ialmnt5.sys - ok
21:12:25.0562 2948 [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
21:12:25.0562 2948 C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
21:12:25.0578 2948 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
21:12:25.0578 2948 C:\WINDOWS\system32\drivers\usbport.sys - ok
21:12:25.0578 2948 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
21:12:25.0578 2948 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
21:12:25.0578 2948 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
21:12:25.0578 2948 C:\WINDOWS\system32\drivers\usbehci.sys - ok
21:12:25.0593 2948 [ D57A8FC800B501AC05B10D00F66D127A ] C:\WINDOWS\system32\drivers\e100b325.sys
21:12:25.0593 2948 C:\WINDOWS\system32\drivers\e100b325.sys - ok
21:12:25.0593 2948 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
21:12:25.0593 2948 C:\WINDOWS\system32\drivers\imapi.sys - ok
21:12:25.0593 2948 [ D979BEBCF7EDCC9C9EE1857D1A68C67B ] C:\WINDOWS\system32\drivers\DLACDBHM.SYS
21:12:25.0593 2948 C:\WINDOWS\system32\drivers\DLACDBHM.SYS - ok
21:12:25.0609 2948 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
21:12:25.0609 2948 C:\WINDOWS\system32\drivers\cdrom.sys - ok
21:12:25.0609 2948 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
21:12:25.0609 2948 C:\WINDOWS\system32\drivers\ks.sys - ok
21:12:25.0609 2948 [ 1976FEDF6D7F87135C9B7F5CB4C8C868 ] C:\WINDOWS\system32\drivers\ELacpi.sys
21:12:25.0609 2948 C:\WINDOWS\system32\drivers\ELacpi.sys - ok
21:12:25.0625 2948 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
21:12:25.0625 2948 C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
21:12:25.0625 2948 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
21:12:25.0625 2948 C:\WINDOWS\system32\drivers\redbook.sys - ok
21:12:25.0625 2948 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
21:12:25.0625 2948 C:\WINDOWS\system32\drivers\usbd.sys - ok
21:12:25.0656 2948 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
21:12:25.0656 2948 C:\WINDOWS\system32\drivers\audstub.sys - ok
21:12:25.0656 2948 [ 5F987FC1AAD215EC2C60CF07719B1CCE ] C:\WINDOWS\system32\drivers\LVUSBSta.sys
21:12:25.0656 2948 C:\WINDOWS\system32\drivers\LVUSBSta.sys - ok
21:12:25.0656 2948 [ 1AB3D00C991AB086E69DB84B6C0ED78F ] C:\WINDOWS\system32\drivers\ndistapi.sys
21:12:25.0656 2948 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
21:12:25.0671 2948 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
21:12:25.0671 2948 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
21:12:25.0671 2948 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
21:12:25.0671 2948 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
21:12:25.0671 2948 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
21:12:25.0671 2948 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
21:12:25.0687 2948 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
21:12:25.0687 2948 C:\WINDOWS\system32\drivers\psched.sys - ok
21:12:25.0687 2948 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
21:12:25.0687 2948 C:\WINDOWS\system32\drivers\raspptp.sys - ok
21:12:25.0687 2948 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
21:12:25.0687 2948 C:\WINDOWS\system32\drivers\tdi.sys - ok
21:12:25.0703 2948 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
21:12:25.0703 2948 C:\WINDOWS\system32\drivers\msgpc.sys - ok
21:12:25.0703 2948 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
21:12:25.0703 2948 C:\WINDOWS\system32\drivers\ptilink.sys - ok
21:12:25.0703 2948 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
21:12:25.0703 2948 C:\WINDOWS\system32\drivers\raspti.sys - ok
21:12:25.0718 2948 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
21:12:25.0718 2948 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
21:12:25.0718 2948 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] C:\WINDOWS\system32\drivers\wanatw4.sys
21:12:25.0718 2948 C:\WINDOWS\system32\drivers\wanatw4.sys - ok
21:12:25.0718 2948 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
21:12:25.0718 2948 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
21:12:25.0734 2948 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
21:12:25.0734 2948 C:\WINDOWS\system32\drivers\mouclass.sys - ok
21:12:25.0734 2948 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
21:12:25.0734 2948 C:\WINDOWS\system32\drivers\swenum.sys - ok
21:12:25.0750 2948 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
21:12:25.0750 2948 C:\WINDOWS\system32\drivers\termdd.sys - ok
21:12:25.0750 2948 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
21:12:25.0750 2948 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
21:12:25.0750 2948 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
21:12:25.0750 2948 C:\WINDOWS\system32\drivers\update.sys - ok
21:12:25.0765 2948 [ 6215023940CFD3702B46ABC304E1D45A ] C:\WINDOWS\system32\drivers\ndproxy.sys
21:12:25.0765 2948 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
21:12:25.0765 2948 [ 0D87CB825ED6CB2EBCC147A10A42F1D6 ] C:\WINDOWS\system32\drivers\ELmon.sys
21:12:25.0765 2948 C:\WINDOWS\system32\drivers\ELmon.sys - ok
21:12:25.0765 2948 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
21:12:25.0765 2948 C:\WINDOWS\system32\drivers\usbhub.sys - ok
21:12:25.0781 2948 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
21:12:25.0781 2948 C:\WINDOWS\system32\drivers\drmk.sys - ok
21:12:25.0781 2948 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
21:12:25.0781 2948 C:\WINDOWS\system32\drivers\portcls.sys - ok
21:12:25.0781 2948 [ 2A2DC39623ADEF8AB3703AB9FAC4B440 ] C:\WINDOWS\system32\drivers\sthda.sys
21:12:25.0781 2948 C:\WINDOWS\system32\drivers\sthda.sys - ok
21:12:25.0796 2948 [ 14B15D0D803EF4AB9B525B7E2DA303EF ] C:\WINDOWS\system32\drivers\HSFHWAZL.sys
21:12:25.0796 2948 C:\WINDOWS\system32\drivers\HSFHWAZL.sys - ok
21:12:25.0796 2948 [ CBF6831420A97E8FBB91E5F52B707EF7 ] C:\WINDOWS\system32\drivers\HSF_DPV.SYS
21:12:25.0796 2948 C:\WINDOWS\system32\drivers\HSF_DPV.SYS - ok
21:12:25.0796 2948 [ 59D043485A6EDA2ED2685C81489AE5BD ] C:\WINDOWS\system32\drivers\HSF_CNXT.sys
21:12:25.0796 2948 C:\WINDOWS\system32\drivers\HSF_CNXT.sys - ok
21:12:25.0812 2948 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
21:12:25.0812 2948 C:\WINDOWS\system32\drivers\modem.sys - ok
21:12:25.0812 2948 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
21:12:25.0812 2948 C:\WINDOWS\system32\drivers\beep.sys - ok
21:12:25.0812 2948 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
21:12:25.0812 2948 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
21:12:25.0828 2948 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
21:12:25.0828 2948 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
21:12:25.0828 2948 [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
21:12:25.0828 2948 C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
21:12:25.0828 2948 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
21:12:25.0828 2948 C:\WINDOWS\system32\drivers\null.sys - ok
21:12:25.0843 2948 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
21:12:25.0843 2948 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
21:12:25.0843 2948 [ 7EE0852AE8907689DF25049DCD2342E8 ] C:\WINDOWS\system32\drivers\DLARTL_N.SYS
21:12:25.0843 2948 C:\WINDOWS\system32\drivers\DLARTL_N.SYS - ok
21:12:25.0843 2948 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
21:12:25.0843 2948 C:\WINDOWS\system32\drivers\hidparse.sys - ok
21:12:25.0859 2948 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
21:12:25.0859 2948 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
21:12:25.0859 2948 [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
21:12:25.0859 2948 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
21:12:25.0859 2948 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
21:12:25.0859 2948 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
21:12:25.0875 2948 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
21:12:25.0875 2948 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
21:12:25.0875 2948 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
21:12:25.0875 2948 C:\WINDOWS\system32\drivers\vga.sys - ok
21:12:25.0875 2948 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
21:12:25.0875 2948 C:\WINDOWS\system32\drivers\ipsec.sys - ok
21:12:25.0890 2948 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
21:12:25.0890 2948 C:\WINDOWS\system32\drivers\msfs.sys - ok
21:12:25.0890 2948 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
21:12:25.0890 2948 C:\WINDOWS\system32\drivers\npfs.sys - ok
21:12:25.0890 2948 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
21:12:25.0890 2948 C:\WINDOWS\system32\drivers\rasacd.sys - ok
21:12:25.0906 2948 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
21:12:25.0906 2948 C:\WINDOWS\system32\drivers\tcpip.sys - ok
21:12:25.0906 2948 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
21:12:25.0906 2948 C:\WINDOWS\system32\drivers\netbt.sys - ok
21:12:25.0906 2948 [ F6C5B9B10EE127ED13063D25B36AAB91 ] C:\WINDOWS\system32\drivers\afd.sys
21:12:25.0906 2948 C:\WINDOWS\system32\drivers\afd.sys - ok
21:12:25.0921 2948 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
21:12:25.0921 2948 C:\WINDOWS\system32\drivers\wanarp.sys - ok
21:12:25.0921 2948 [ B5B8A80875C1DEDEDA8B02765642C32F ] C:\WINDOWS\system32\drivers\arp1394.sys
21:12:25.0921 2948 C:\WINDOWS\system32\drivers\arp1394.sys - ok
21:12:25.0921 2948 [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
21:12:25.0921 2948 C:\WINDOWS\system32\drivers\usbccgp.sys - ok
21:12:25.0937 2948 [ 4FC23DAE30EF4F6A2952CD93104909E7 ] C:\WINDOWS\system32\drivers\LV302V32.SYS
21:12:25.0937 2948 C:\WINDOWS\system32\drivers\LV302V32.SYS - ok
21:12:25.0937 2948 [ 4349C7DC0C982CFFC11946FFF20F8524 ] C:\WINDOWS\system32\drivers\lv302af.sys
21:12:25.0937 2948 C:\WINDOWS\system32\drivers\lv302af.sys - ok
21:12:25.0937 2948 [ E919708DB44ED8543A7C017953148330 ] C:\WINDOWS\system32\drivers\USBAUDIO.sys
21:12:25.0937 2948 C:\WINDOWS\system32\drivers\USBAUDIO.sys - ok
21:12:25.0953 2948 [ E22FD7852E74F04CCEB6B8A684A51F3E ] C:\WINDOWS\system32\drivers\lvrs.sys
21:12:25.0953 2948 C:\WINDOWS\system32\drivers\lvrs.sys - ok
21:12:25.0953 2948 [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
21:12:25.0953 2948 C:\WINDOWS\system32\drivers\hidclass.sys - ok
21:12:25.0953 2948 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
21:12:25.0953 2948 C:\WINDOWS\system32\drivers\hidusb.sys - ok
21:12:25.0968 2948 [ AE65C02444907966378454138B9F99F0 ] C:\WINDOWS\system32\drivers\ELhid.sys
21:12:25.0968 2948 C:\WINDOWS\system32\drivers\ELhid.sys - ok
21:12:25.0968 2948 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] C:\WINDOWS\system32\drivers\usbscan.sys
21:12:25.0968 2948 C:\WINDOWS\system32\drivers\usbscan.sys - ok
21:12:25.0984 2948 [ A717C8721046828520C9EDF31288FC00 ] C:\WINDOWS\system32\drivers\usbprint.sys
21:12:25.0984 2948 C:\WINDOWS\system32\drivers\usbprint.sys - ok
21:12:25.0984 2948 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] C:\WINDOWS\system32\drivers\HPZius12.sys
21:12:25.0984 2948 C:\WINDOWS\system32\drivers\HPZius12.sys - ok
21:12:25.0984 2948 [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1 ] C:\WINDOWS\system32\drivers\ELkbd.sys
21:12:25.0984 2948 C:\WINDOWS\system32\drivers\ELkbd.sys - ok
21:12:26.0000 2948 [ A4ADD3847B67BACAB6FC851A2B60FDB3 ] C:\WINDOWS\system32\drivers\ELmou.sys
21:12:26.0000 2948 C:\WINDOWS\system32\drivers\ELmou.sys - ok
21:12:26.0000 2948 [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
21:12:26.0000 2948 C:\WINDOWS\system32\drivers\mouhid.sys - ok
21:12:26.0000 2948 [ 30CA91E657CEDE2F95359D6EF186F650 ] C:\WINDOWS\system32\drivers\HPZid412.sys
21:12:26.0000 2948 C:\WINDOWS\system32\drivers\HPZid412.sys - ok
21:12:26.0015 2948 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] C:\WINDOWS\system32\drivers\HPZipr12.sys
21:12:26.0015 2948 C:\WINDOWS\system32\drivers\HPZipr12.sys - ok
21:12:26.0015 2948 [ 7E775010EF291DA96AD17CA4B17137D7 ] C:\WINDOWS\system32\drivers\`
21:12:26.0015 2948 C:\WINDOWS\system32\drivers\` - ok
21:12:26.0015 2948 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
21:12:26.0015 2948 C:\WINDOWS\system32\drivers\netbios.sys - ok
21:12:26.0031 2948 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
21:12:26.0031 2948 C:\WINDOWS\system32\drivers\rdbss.sys - ok
21:12:26.0031 2948 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
21:12:26.0031 2948 C:\WINDOWS\system32\drivers\serial.sys - ok
21:12:26.0031 2948 [ 52B115B2BE8987038D56B3B2AEB445F5 ] C:\WINDOWS\system32\drivers\klif.sys
21:12:26.0031 2948 C:\WINDOWS\system32\drivers\klif.sys - ok
21:12:26.0046 2948 [ 60AE98742484E7AB80C3C1450E708148 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
21:12:26.0046 2948 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
21:12:26.0046 2948 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
21:12:26.0046 2948 C:\WINDOWS\system32\drivers\fips.sys - ok
21:12:26.0046 2948 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
21:12:26.0046 2948 C:\WINDOWS\system32\smss.exe - ok
21:12:26.0062 2948 [ 27D9ED8CB8B62D1E0A8E5ACE6CF52E2F ] C:\WINDOWS\system32\ntdll.dll
21:12:26.0062 2948 C:\WINDOWS\system32\ntdll.dll - ok
21:12:26.0062 2948 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
21:12:26.0062 2948 C:\WINDOWS\system32\autochk.exe - ok
21:12:26.0078 2948 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
21:12:26.0078 2948 C:\WINDOWS\system32\sfcfiles.dll - ok
21:12:26.0078 2948 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
21:12:26.0078 2948 C:\WINDOWS\system32\drivers\cdfs.sys - ok
21:12:26.0078 2948 [ 9A65E42664D1534B68512CAAD0EFE963 ] C:\WINDOWS\system32\drivers\iaStor.sys
21:12:26.0078 2948 C:\WINDOWS\system32\drivers\iaStor.sys - ok
21:12:26.0093 2948 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
21:12:26.0093 2948 C:\WINDOWS\system32\drivers\dxapi.sys - ok
21:12:26.0093 2948 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
21:12:26.0093 2948 C:\WINDOWS\system32\watchdog.sys - ok
21:12:26.0093 2948 [ D21A189185D3A74512CC8E68F16E3FCF ] C:\WINDOWS\system32\win32k.sys
21:12:26.0093 2948 C:\WINDOWS\system32\win32k.sys - ok
21:12:26.0109 2948 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
21:12:26.0109 2948 C:\WINDOWS\system32\basesrv.dll - ok
21:12:26.0109 2948 [ 05B100F8DD7073BFD7B3E46D0E36AD0C ] C:\WINDOWS\system32\csrsrv.dll
21:12:26.0109 2948 C:\WINDOWS\system32\csrsrv.dll - ok
21:12:26.0125 2948 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
21:12:26.0125 2948 C:\WINDOWS\system32\csrss.exe - ok
21:12:26.0125 2948 [ 1618F36D4F7F6CCCEB3EE44BA95BE85C ] C:\WINDOWS\system32\winsrv.dll
21:12:26.0125 2948 C:\WINDOWS\system32\winsrv.dll - ok
21:12:26.0140 2948 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
21:12:26.0140 2948 C:\WINDOWS\system32\gdi32.dll - ok
21:12:26.0140 2948 [ C24B983D211C34DA8FCC1AC38477971D ] C:\WINDOWS\system32\kernel32.dll
21:12:26.0140 2948 C:\WINDOWS\system32\kernel32.dll - ok
21:12:26.0140 2948 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
21:12:26.0140 2948 C:\WINDOWS\system32\user32.dll - ok
21:12:26.0156 2948 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
21:12:26.0156 2948 C:\WINDOWS\system32\drivers\dxg.sys - ok
21:12:26.0156 2948 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
21:12:26.0156 2948 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
21:12:26.0156 2948 [ A70E25C193FE92936665617D3B4973D6 ] C:\WINDOWS\system32\ialmdnt5.dll
21:12:26.0156 2948 C:\WINDOWS\system32\ialmdnt5.dll - ok
21:12:26.0171 2948 [ 4C3E431C30F13918B2B624839C5851D4 ] C:\WINDOWS\system32\ialmrnt5.dll
21:12:26.0171 2948 C:\WINDOWS\system32\ialmrnt5.dll - ok
21:12:26.0171 2948 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
21:12:26.0171 2948 C:\WINDOWS\system32\vga.dll - ok
21:12:26.0171 2948 [ D3F8D22ED63CDBB7F535AA4A914296C4 ] C:\WINDOWS\system32\ialmdev5.dll
21:12:26.0171 2948 C:\WINDOWS\system32\ialmdev5.dll - ok
21:12:26.0187 2948 [ ECAF48B8262DCEFCC605FABCBB15B6EF ] C:\WINDOWS\system32\ialmdd5.dll
21:12:26.0187 2948 C:\WINDOWS\system32\ialmdd5.dll - ok
21:12:26.0187 2948 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
21:12:26.0187 2948 C:\WINDOWS\system32\winlogon.exe - ok
21:12:26.0187 2948 [ BAB489A5FE26F2D0C910CF7AF7E4CF92 ] C:\WINDOWS\system32\advapi32.dll
21:12:26.0187 2948 C:\WINDOWS\system32\advapi32.dll - ok
21:12:26.0203 2948 [ B979D9D1C8073DA21A7F80345F306A1D ] C:\WINDOWS\system32\rpcrt4.dll
21:12:26.0203 2948 C:\WINDOWS\system32\rpcrt4.dll - ok
21:12:26.0203 2948 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
21:12:26.0203 2948 C:\WINDOWS\system32\authz.dll - ok
21:12:26.0203 2948 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
21:12:26.0203 2948 C:\WINDOWS\system32\msvcrt.dll - ok
21:12:26.0218 2948 [ 7459C16CC3EF4651CAB7C9260E43FC58 ] C:\WINDOWS\system32\secur32.dll
21:12:26.0218 2948 C:\WINDOWS\system32\secur32.dll - ok
21:12:26.0218 2948 [ BDAAF79DD63F194434D31A74B9BB8B77 ] C:\WINDOWS\system32\crypt32.dll
21:12:26.0218 2948 C:\WINDOWS\system32\crypt32.dll - ok
21:12:26.0234 2948 [ A11F1EA5346165347BF54C1F959C3FBC ] C:\WINDOWS\system32\msasn1.dll
21:12:26.0234 2948 C:\WINDOWS\system32\msasn1.dll - ok
21:12:26.0234 2948 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
21:12:26.0234 2948 C:\WINDOWS\system32\nddeapi.dll - ok
21:12:26.0234 2948 [ 318230E845919255EF3C5D5E1E863631 ] C:\WINDOWS\system32\netapi32.dll
21:12:26.0234 2948 C:\WINDOWS\system32\netapi32.dll - ok
21:12:26.0250 2948 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
21:12:26.0250 2948 C:\WINDOWS\system32\profmap.dll - ok
21:12:26.0250 2948 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
21:12:26.0250 2948 C:\WINDOWS\system32\userenv.dll - ok
21:12:26.0250 2948 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
21:12:26.0250 2948 C:\WINDOWS\system32\psapi.dll - ok
21:12:26.0265 2948 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
21:12:26.0265 2948 C:\WINDOWS\system32\regapi.dll - ok
21:12:26.0265 2948 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
21:12:26.0265 2948 C:\WINDOWS\system32\setupapi.dll - ok
21:12:26.0265 2948 [ CA648BD638245EB83F971FF71B031BEC ] C:\WINDOWS\system32\imagehlp.dll
21:12:26.0265 2948 C:\WINDOWS\system32\imagehlp.dll - ok
21:12:26.0281 2948 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
21:12:26.0281 2948 C:\WINDOWS\system32\version.dll - ok
21:12:26.0281 2948 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
21:12:26.0281 2948 C:\WINDOWS\system32\winsta.dll - ok
21:12:26.0281 2948 [ B25D14DCBBB6623C1A63CD07A97DF32B ] C:\WINDOWS\system32\wintrust.dll
21:12:26.0281 2948 C:\WINDOWS\system32\wintrust.dll - ok
21:12:26.0296 2948 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
21:12:26.0296 2948 C:\WINDOWS\system32\imm32.dll - ok
21:12:26.0296 2948 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
21:12:26.0296 2948 C:\WINDOWS\system32\ws2help.dll - ok
21:12:26.0296 2948 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
21:12:26.0296 2948 C:\WINDOWS\system32\ws2_32.dll - ok
21:12:26.0312 2948 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
21:12:26.0312 2948 C:\WINDOWS\system32\kbdus.dll - ok
21:12:26.0312 2948 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
21:12:26.0312 2948 C:\WINDOWS\system32\msgina.dll - ok
21:12:26.0312 2948 [ 06F247492BC786CE5C24A23E178C711A ] C:\WINDOWS\system32\comctl32.dll
21:12:26.0312 2948 C:\WINDOWS\system32\comctl32.dll - ok
21:12:26.0328 2948 [ 52A5A388661FF3A889593185367B7226 ] C:\WINDOWS\system32\odbc32.dll
21:12:26.0328 2948 C:\WINDOWS\system32\odbc32.dll - ok
21:12:26.0328 2948 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
21:12:26.0328 2948 C:\WINDOWS\system32\comdlg32.dll - ok
21:12:26.0328 2948 [ 0CF50B1F45DAB08430C1DBB79FE2CA5B ] C:\WINDOWS\system32\shell32.dll
21:12:26.0328 2948 C:\WINDOWS\system32\shell32.dll - ok
21:12:26.0343 2948 [ 72EDAE61E761C14714BFD0CB4BA3C0DB ] C:\WINDOWS\system32\shlwapi.dll
21:12:26.0343 2948 C:\WINDOWS\system32\shlwapi.dll - ok
21:12:26.0343 2948 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
21:12:26.0343 2948 C:\WINDOWS\system32\sxs.dll - ok
21:12:26.0343 2948 [ BD38D1EBE24A46BD3EDA059560AFBA12 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
21:12:26.0343 2948 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll - ok
21:12:26.0359 2948 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
21:12:26.0359 2948 C:\WINDOWS\system32\odbcint.dll - ok
21:12:26.0359 2948 [ 1926899BF9FFE2602B63074971700412 ] C:\WINDOWS\system32\shsvcs.dll
21:12:26.0359 2948 C:\WINDOWS\system32\shsvcs.dll - ok
21:12:26.0359 2948 [ ECCE74BC6168375016450A86A164D976 ] C:\WINDOWS\system32\ole32.dll
21:12:26.0359 2948 C:\WINDOWS\system32\ole32.dll - ok
21:12:26.0375 2948 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
21:12:26.0375 2948 C:\WINDOWS\system32\sfc.dll - ok
21:12:26.0375 2948 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
21:12:26.0375 2948 C:\WINDOWS\system32\sfc_os.dll - ok
21:12:26.0375 2948 [ FA67DFCB786A624D6BE582FA532D8FF2 ] C:\WINDOWS\system32\dcomrint.dll
21:12:26.0375 2948 C:\WINDOWS\system32\dcomrint.dll - ok
21:12:26.0390 2948 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
21:12:26.0390 2948 C:\WINDOWS\system32\apphelp.dll - ok
21:12:26.0390 2948 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
21:12:26.0390 2948 C:\WINDOWS\system32\lsass.exe - ok
21:12:26.0390 2948 [ 0E776ED5F7CC9F94299E70461B7B8185 ] C:\WINDOWS\system32\services.exe
21:12:26.0390 2948 C:\WINDOWS\system32\services.exe - ok
21:12:26.0406 2948 [ EA9AAA0B9BBF9B24FD3CAECC7FD69A1E ] C:\WINDOWS\system32\lsasrv.dll
21:12:26.0406 2948 C:\WINDOWS\system32\lsasrv.dll - ok
21:12:26.0406 2948 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
21:12:26.0406 2948 C:\WINDOWS\system32\ncobjapi.dll - ok
21:12:26.0406 2948 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
21:12:26.0406 2948 C:\WINDOWS\system32\msvcp60.dll - ok
21:12:26.0421 2948 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
21:12:26.0421 2948 C:\WINDOWS\system32\mpr.dll - ok
21:12:26.0421 2948 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
21:12:26.0421 2948 C:\WINDOWS\system32\scesrv.dll - ok
21:12:26.0421 2948 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
21:12:26.0421 2948 C:\WINDOWS\system32\ntdsapi.dll - ok
21:12:26.0437 2948 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
21:12:26.0437 2948 C:\WINDOWS\system32\umpnpmgr.dll - ok
21:12:26.0437 2948 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
21:12:26.0437 2948 C:\WINDOWS\AppPatch\acadproc.dll - ok
21:12:26.0437 2948 [ 5D3FDE8FB2801A2041D1B965372C4928 ] C:\WINDOWS\system32\dnsapi.dll
21:12:26.0437 2948 C:\WINDOWS\system32\dnsapi.dll - ok
21:12:26.0453 2948 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
21:12:26.0453 2948 C:\WINDOWS\system32\shimeng.dll - ok
21:12:26.0453 2948 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
21:12:26.0453 2948 C:\WINDOWS\system32\wldap32.dll - ok
21:12:26.0453 2948 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
21:12:26.0453 2948 C:\WINDOWS\AppPatch\acgenral.dll - ok
21:12:26.0468 2948 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
21:12:26.0468 2948 C:\WINDOWS\system32\cryptdll.dll - ok
21:12:26.0468 2948 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
21:12:26.0468 2948 C:\WINDOWS\system32\samlib.dll - ok
21:12:26.0468 2948 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
21:12:26.0468 2948 C:\WINDOWS\system32\samsrv.dll - ok
21:12:26.0484 2948 [ 387006CF9983000BAB76DD250D424045 ] C:\WINDOWS\system32\oleaut32.dll
21:12:26.0484 2948 C:\WINDOWS\system32\oleaut32.dll - ok
21:12:26.0484 2948 [ F1300D0B4C40754A01DF16F350F0EF60 ] C:\WINDOWS\system32\winmm.dll
21:12:26.0484 2948 C:\WINDOWS\system32\winmm.dll - ok
21:12:26.0484 2948 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
21:12:26.0484 2948 C:\WINDOWS\system32\msacm32.dll - ok
21:12:26.0484 2948 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
21:12:26.0484 2948 C:\WINDOWS\system32\uxtheme.dll - ok
21:12:26.0500 2948 [ B17DEFD576AE373E7A1A2C75665E4549 ] C:\WINDOWS\system32\kerberos.dll
21:12:26.0500 2948 C:\WINDOWS\system32\kerberos.dll - ok
21:12:26.0500 2948 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
21:12:26.0500 2948 C:\WINDOWS\system32\msctfime.ime - ok
21:12:26.0500 2948 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
21:12:26.0500 2948 C:\WINDOWS\system32\msprivs.dll - ok
21:12:26.0515 2948 [ C61E8ECFFDBF05FF71D079BBD35396B3 ] C:\WINDOWS\system32\schannel.dll
21:12:26.0515 2948 C:\WINDOWS\system32\schannel.dll - ok
21:12:26.0515 2948 [ 34EF4739A4D9D09A96069198F42B8D99 ] C:\WINDOWS\system32\atmfd.dll
21:12:26.0515 2948 C:\WINDOWS\system32\atmfd.dll - ok
21:12:26.0515 2948 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
21:12:26.0515 2948 C:\WINDOWS\system32\iphlpapi.dll - ok
21:12:26.0531 2948 [ 0F152F4E57FDF9E8E8BDFEA583A4926B ] C:\WINDOWS\system32\msv1_0.dll
21:12:26.0531 2948 C:\WINDOWS\system32\msv1_0.dll - ok
21:12:26.0531 2948 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
21:12:26.0531 2948 C:\WINDOWS\system32\netlogon.dll - ok
21:12:26.0531 2948 [ 832E4DD8964AB7ACC880B2837CB1ED20 ] C:\WINDOWS\system32\mswsock.dll
21:12:26.0531 2948 C:\WINDOWS\system32\mswsock.dll - ok
21:12:26.0546 2948 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
21:12:26.0546 2948 C:\WINDOWS\system32\w32time.dll - ok
21:12:26.0546 2948 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
21:12:26.0546 2948 C:\WINDOWS\system32\rsaenh.dll - ok
21:12:26.0546 2948 [ CEFCC6A64983EB8119F3A07A0C1EDE30 ] C:\WINDOWS\system32\wdigest.dll
21:12:26.0546 2948 C:\WINDOWS\system32\wdigest.dll - ok
21:12:26.0562 2948 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
21:12:26.0562 2948 C:\WINDOWS\system32\winscard.dll - ok
21:12:26.0562 2948 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
21:12:26.0562 2948 C:\WINDOWS\system32\wtsapi32.dll - ok
21:12:26.0562 2948 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
21:12:26.0562 2948 C:\WINDOWS\system32\scecli.dll - ok
21:12:26.0578 2948 [ B4869D320428CDC5EC4D7F5E808E99B5 ] C:\WINDOWS\system32\drivers\DRVNDDM.SYS
21:12:26.0578 2948 C:\WINDOWS\system32\drivers\DRVNDDM.SYS - ok
21:12:26.0578 2948 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
21:12:26.0578 2948 C:\WINDOWS\system32\cabinet.dll - ok
21:12:26.0578 2948 [ 26A62A18668C58A59C178B76A8CA81EC ] C:\WINDOWS\system32\urlmon.dll
21:12:26.0578 2948 C:\WINDOWS\system32\urlmon.dll - ok
21:12:26.0593 2948 [ 21E9A2407A947EF9D788812A2404D57D ] C:\WINDOWS\system32\iertutil.dll
21:12:26.0593 2948 C:\WINDOWS\system32\iertutil.dll - ok
21:12:26.0593 2948 [ 5F2DBE3CB563741C8084657BF956CE64 ] C:\WINDOWS\system32\oleacc.dll
21:12:26.0593 2948 C:\WINDOWS\system32\oleacc.dll - ok
21:12:26.0593 2948 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
21:12:26.0593 2948 C:\WINDOWS\system32\hnetcfg.dll - ok
21:12:26.0609 2948 [ 83545593E297F50A8E2524B4C071A153 ] C:\WINDOWS\system32\DLA\DLADResN.SYS
21:12:26.0609 2948 C:\WINDOWS\system32\DLA\DLADResN.SYS - ok
21:12:26.0609 2948 [ 96E01D901CDC98C7817155CC057001BF ] C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
21:12:26.0609 2948 C:\WINDOWS\system32\DLA\DLAIFS_M.SYS - ok
21:12:26.0609 2948 [ E2D0DE31442390C35E3163C87CB6A9EB ] C:\WINDOWS\system32\DLA\DLABOIOM.SYS
21:12:26.0609 2948 C:\WINDOWS\system32\DLA\DLABOIOM.SYS - ok
21:12:26.0625 2948 [ 0A60A39CC5E767980A31CA5D7238DFA9 ] C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
21:12:26.0625 2948 C:\WINDOWS\system32\DLA\DLAOPIOM.SYS - ok
21:12:26.0625 2948 [ 9FE2B72558FC808357F427FD83314375 ] C:\WINDOWS\system32\DLA\DLAPoolM.SYS
21:12:26.0625 2948 C:\WINDOWS\system32\DLA\DLAPoolM.SYS - ok
21:12:26.0625 2948 [ F08E1DAFAC457893399E03430A6A1397 ] C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
21:12:26.0625 2948 C:\WINDOWS\system32\DLA\DLAUDFAM.SYS - ok
21:12:26.0640 2948 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
21:12:26.0640 2948 C:\WINDOWS\system32\wshtcpip.dll - ok
21:12:26.0640 2948 [ E7D105ED1E694449D444A9933DF8E060 ] C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
21:12:26.0640 2948 C:\WINDOWS\system32\DLA\DLAUDF_M.SYS - ok
21:12:26.0640 2948 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
21:12:26.0640 2948 C:\WINDOWS\system32\svchost.exe - ok
21:12:26.0656 2948 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
21:12:26.0656 2948 C:\WINDOWS\system32\logonui.exe - ok
21:12:26.0656 2948 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
21:12:26.0656 2948 C:\WINDOWS\system32\ntmarta.dll - ok
21:12:26.0656 2948 [ 2589FE6015A316C0F5D5112B4DA7B509 ] C:\WINDOWS\system32\rpcss.dll
21:12:26.0656 2948 C:\WINDOWS\system32\rpcss.dll - ok
21:12:26.0671 2948 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
21:12:26.0671 2948 C:\WINDOWS\system32\xpsp2res.dll - ok
21:12:26.0671 2948 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
21:12:26.0671 2948 C:\WINDOWS\system32\duser.dll - ok
21:12:26.0687 2948 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
21:12:26.0687 2948 C:\WINDOWS\system32\msimg32.dll - ok
21:12:26.0687 2948 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
21:12:26.0687 2948 C:\WINDOWS\system32\eventlog.dll - ok
21:12:26.0687 2948 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
21:12:26.0687 2948 C:\WINDOWS\system32\clbcatq.dll - ok
21:12:26.0703 2948 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
21:12:26.0703 2948 C:\WINDOWS\system32\comres.dll - ok
21:12:26.0703 2948 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
21:12:26.0703 2948 C:\WINDOWS\system32\shgina.dll - ok
21:12:26.0703 2948 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
21:12:26.0703 2948 C:\WINDOWS\system32\winrnr.dll - ok
21:12:26.0718 2948 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
21:12:26.0718 2948 C:\WINDOWS\system32\rasadhlp.dll - ok
21:12:26.0718 2948 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
21:12:26.0718 2948 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
21:12:26.0718 2948 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
21:12:26.0718 2948 C:\WINDOWS\system32\dhcpcsvc.dll - ok
21:12:26.0734 2948 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
21:12:26.0734 2948 C:\WINDOWS\system32\cscdll.dll - ok
21:12:26.0734 2948 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
21:12:26.0734 2948 C:\WINDOWS\system32\dimsntfy.dll - ok
21:12:26.0734 2948 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
21:12:26.0734 2948 C:\WINDOWS\system32\winspool.drv - ok
21:12:26.0750 2948 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
21:12:26.0750 2948 C:\WINDOWS\system32\wlnotify.dll - ok
21:12:26.0750 2948 [ 474B4DC3983173E4B4C9740B0DAC98A6 ] C:\WINDOWS\system32\dnsrslvr.dll
21:12:26.0750 2948 C:\WINDOWS\system32\dnsrslvr.dll - ok
21:12:26.0750 2948 [ D7DCFB4D0C58FFB569DE93E1681FD37A ] C:\WINDOWS\system32\WgaLogon.dll
21:12:26.0750 2948 C:\WINDOWS\system32\WgaLogon.dll - ok
21:12:26.0765 2948 [ 9FC3049701123BB618976F01F5702B00 ] C:\WINDOWS\system32\msxml3.dll
21:12:26.0765 2948 C:\WINDOWS\system32\msxml3.dll - ok
21:12:26.0765 2948 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
21:12:26.0765 2948 C:\WINDOWS\system32\lmhsvc.dll - ok
21:12:26.0765 2948 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
21:12:26.0765 2948 C:\WINDOWS\system32\wzcsvc.dll - ok
21:12:26.0781 2948 [ 14EE0E012E7298FC1448A88E9FE53322 ] C:\WINDOWS\system32\atl.dll
21:12:26.0781 2948 C:\WINDOWS\system32\atl.dll - ok
21:12:26.0781 2948 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
21:12:26.0781 2948 C:\WINDOWS\system32\eapolqec.dll - ok
21:12:26.0781 2948 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
21:12:26.0781 2948 C:\WINDOWS\system32\rtutils.dll - ok
21:12:26.0796 2948 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
21:12:26.0796 2948 C:\WINDOWS\system32\wmi.dll - ok
21:12:26.0796 2948 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
21:12:26.0796 2948 C:\WINDOWS\system32\dot3api.dll - ok
21:12:26.0812 2948 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
21:12:26.0812 2948 C:\WINDOWS\system32\qutil.dll - ok
21:12:26.0828 2948 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
21:12:26.0828 2948 C:\WINDOWS\system32\esent.dll - ok
21:12:26.0828 2948 [ 036D3962F2086BF2A98E2873CE153828 ] C:\WINDOWS\system32\rastls.dll
21:12:26.0828 2948 C:\WINDOWS\system32\rastls.dll - ok
21:12:26.0828 2948 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
21:12:26.0828 2948 C:\WINDOWS\system32\cryptui.dll - ok
21:12:26.0843 2948 [ 6741EAF7B7F110E803A6E38F6E5FA6B0 ] C:\WINDOWS\system32\wininet.dll
21:12:26.0843 2948 C:\WINDOWS\system32\wininet.dll - ok
21:12:26.0843 2948 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
21:12:26.0843 2948 C:\WINDOWS\system32\normaliz.dll - ok
21:12:26.0843 2948 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
21:12:26.0843 2948 C:\WINDOWS\system32\mprapi.dll - ok
21:12:26.0859 2948 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
21:12:26.0859 2948 C:\WINDOWS\system32\activeds.dll - ok
21:12:26.0859 2948 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
21:12:26.0859 2948 C:\WINDOWS\system32\adsldpc.dll - ok
21:12:26.0859 2948 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
21:12:26.0859 2948 C:\WINDOWS\system32\rasapi32.dll - ok
21:12:26.0890 2948 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
21:12:26.0890 2948 C:\WINDOWS\system32\rasman.dll - ok
21:12:26.0890 2948 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
21:12:26.0890 2948 C:\WINDOWS\system32\riched20.dll - ok
21:12:26.0890 2948 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
21:12:26.0890 2948 C:\WINDOWS\system32\tapi32.dll - ok
21:12:26.0906 2948 [ ED43F00CD77E72483A8625AC4F32D8D8 ] C:\WINDOWS\system32\raschap.dll
21:12:26.0906 2948 C:\WINDOWS\system32\raschap.dll - ok
21:12:26.0906 2948 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
21:12:26.0906 2948 C:\WINDOWS\system32\schedsvc.dll - ok
21:12:26.0906 2948 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
21:12:26.0906 2948 C:\WINDOWS\system32\msidle.dll - ok
21:12:26.0921 2948 [ D8E14A61ACC1D4A6CD0D38AEBAC7FA3B ] C:\WINDOWS\system32\spoolsv.exe
21:12:26.0921 2948 C:\WINDOWS\system32\spoolsv.exe - ok
21:12:26.0921 2948 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
21:12:26.0921 2948 C:\WINDOWS\system32\audiosrv.dll - ok
21:12:26.0921 2948 [ 1B67B632786FEF1C1BBAEF46C2F3F2E6 ] C:\WINDOWS\system32\wkssvc.dll
21:12:26.0921 2948 C:\WINDOWS\system32\wkssvc.dll - ok
21:12:26.0937 2948 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
21:12:26.0937 2948 C:\WINDOWS\system32\cscui.dll - ok
21:12:26.0937 2948 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
21:12:26.0937 2948 C:\WINDOWS\system32\powrprof.dll - ok
21:12:26.0937 2948 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
21:12:26.0937 2948 C:\WINDOWS\system32\dpcdll.dll - ok
21:12:26.0953 2948 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
21:12:26.0953 2948 C:\WINDOWS\system32\wdmaud.drv - ok
21:12:26.0953 2948 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
21:12:26.0953 2948 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
21:12:26.0968 2948 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
21:12:26.0968 2948 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
21:12:26.0968 2948 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
21:12:26.0968 2948 C:\WINDOWS\system32\drivers\splitter.sys - ok
21:12:26.0968 2948 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
21:12:26.0968 2948 C:\WINDOWS\system32\drivers\aec.sys - ok
21:12:26.0984 2948 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
21:12:26.0984 2948 C:\WINDOWS\system32\drivers\swmidi.sys - ok
21:12:26.0984 2948 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
21:12:26.0984 2948 C:\WINDOWS\system32\drivers\dmusic.sys - ok
21:12:26.0984 2948 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
21:12:26.0984 2948 C:\WINDOWS\system32\drivers\kmixer.sys - ok
21:12:27.0015 2948 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
21:12:27.0015 2948 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
21:12:27.0015 2948 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
21:12:27.0015 2948 C:\WINDOWS\system32\userinit.exe - ok
21:12:27.0015 2948 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
21:12:27.0015 2948 C:\WINDOWS\system32\msacm32.drv - ok
21:12:27.0031 2948 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
21:12:27.0031 2948 C:\WINDOWS\system32\midimap.dll - ok
21:12:27.0031 2948 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
21:12:27.0031 2948 C:\WINDOWS\explorer.exe - ok
21:12:27.0031 2948 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
21:12:27.0031 2948 C:\WINDOWS\system32\browseui.dll - ok
21:12:27.0046 2948 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
21:12:27.0046 2948 C:\WINDOWS\system32\shdocvw.dll - ok
21:12:27.0046 2948 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
21:12:27.0046 2948 C:\WINDOWS\system32\desk.cpl - ok
21:12:27.0062 2948 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
21:12:27.0062 2948 C:\WINDOWS\system32\themeui.dll - ok
21:12:27.0062 2948 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
21:12:27.0062 2948 C:\WINDOWS\system32\actxprxy.dll - ok
21:12:27.0062 2948 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
21:12:27.0062 2948 C:\WINDOWS\system32\cmd.exe - ok
21:12:27.0078 2948 [ 23DD2287BA2630805E16571CB5E4E3EB ] C:\WINDOWS\system32\ieframe.dll
21:12:27.0078 2948 C:\WINDOWS\system32\ieframe.dll - ok
21:12:27.0078 2948 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
21:12:27.0078 2948 C:\WINDOWS\system32\cryptnet.dll - ok
21:12:27.0078 2948 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
21:12:27.0078 2948 C:\WINDOWS\system32\sensapi.dll - ok
21:12:27.0078 2948 [ D29F2889BAA10E19AD9FF70C8D5ECF50 ] C:\WINDOWS\system32\winhttp.dll
21:12:27.0078 2948 C:\WINDOWS\system32\winhttp.dll - ok
21:12:27.0093 2948 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
21:12:27.0093 2948 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
21:12:27.0093 2948 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
21:12:27.0093 2948 C:\WINDOWS\system32\webclnt.dll - ok
21:12:27.0109 2948 [ 8FA646F0E639D9A8C8B98E217D471DC0 ] C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
21:12:27.0109 2948 C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe - ok
21:12:27.0109 2948 [ 25912CC032CB14C299CEC9D2034A49F4 ] C:\WINDOWS\system32\msvcr71.dll
21:12:27.0109 2948 C:\WINDOWS\system32\msvcr71.dll - ok
21:12:27.0109 2948 [ 20607EE4886D78DD95286F2D14E9FF2F ] C:\WINDOWS\system32\msvcp71.dll
21:12:27.0109 2948 C:\WINDOWS\system32\msvcp71.dll - ok
21:12:27.0125 2948 [ C6B2AD321E6C12E12898D1CAE587D0D5 ] C:\Program Files\Common Files\AOL\ACS\shfolder.dll
21:12:27.0125 2948 C:\Program Files\Common Files\AOL\ACS\shfolder.dll - ok
21:12:27.0125 2948 [ 20F6F19FE9E753F2780DC2FA083AD597 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:12:27.0125 2948 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
21:12:27.0125 2948 [ 8C53CCD787C381CD535D8DCCA12584D8 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll
21:12:27.0125 2948 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80.dll - ok
21:12:27.0140 2948 [ 1169436EE42F860C7DB37A4692B38F0E ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll
21:12:27.0140 2948 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80.dll - ok
21:12:27.0140 2948 [ DDDD1D04D5F4360371BC99C7C476F70D ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
21:12:27.0140 2948 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
21:12:27.0140 2948 [ DC70310B3D079D667B67F0C7067209F3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
21:12:27.0140 2948 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
21:12:27.0156 2948 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
21:12:27.0156 2948 C:\WINDOWS\system32\wsock32.dll - ok
21:12:27.0156 2948 [ 749CF03BADC40453F61FD7025E2BA2F5 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
21:12:27.0156 2948 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
21:12:27.0156 2948 [ 258D35F5F5F5F3F6045488ECDC14FAAB ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
21:12:27.0156 2948 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
21:12:27.0171 2948 [ 152F8772D5A5CD7883305C3B8D28470E ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
21:12:27.0171 2948 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
21:12:27.0171 2948 [ C7B2C357F485A3046DA50DA779068648 ] C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll
21:12:27.0171 2948 C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll - ok
21:12:27.0171 2948 [ 7EF0C8A9A1A57756F4868E3693173C08 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
21:12:27.0171 2948 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
21:12:27.0187 2948 [ 0EF9D6C6C04CAB0B87C57330910D20A6 ] C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll
21:12:27.0187 2948 C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll - ok
21:12:27.0187 2948 [ 90E11D62F692F5A0B7DFC548F776BAAF ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll
21:12:27.0187 2948 C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll - ok
21:12:27.0187 2948 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
21:12:27.0187 2948 C:\WINDOWS\system32\cryptsvc.dll - ok
21:12:27.0203 2948 [ D880831279ED91F9A4190A2DB9539EA9 ] C:\WINDOWS\system32\drivers\asctrm.sys
21:12:27.0203 2948 C:\WINDOWS\system32\drivers\asctrm.sys - ok
21:12:27.0203 2948 [ DFEABB7CFFFADEA4A912AB95BDC3177A ] C:\WINDOWS\system32\drivers\dsunidrv.sys
21:12:27.0203 2948 C:\WINDOWS\system32\drivers\dsunidrv.sys - ok
21:12:27.0203 2948 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
21:12:27.0203 2948 C:\WINDOWS\system32\certcli.dll - ok
21:12:27.0218 2948 [ F6AACF5BCE2893E0C1754AFEB672E5C9 ] C:\WINDOWS\system32\drivers\http.sys
21:12:27.0218 2948 C:\WINDOWS\system32\drivers\http.sys - ok
21:12:27.0218 2948 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
21:12:27.0218 2948 C:\WINDOWS\system32\ersvc.dll - ok
21:12:27.0218 2948 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
21:12:27.0218 2948 C:\WINDOWS\system32\es.dll - ok
21:12:27.0234 2948 [ D43E91E271C041BB86A6223462A41D28 ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:12:27.0234 2948 C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe - ok
21:12:27.0234 2948 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
21:12:27.0234 2948 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
21:12:27.0234 2948 [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
21:12:27.0234 2948 C:\WINDOWS\system32\dmserver.dll - ok
21:12:27.0250 2948 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
21:12:27.0250 2948 C:\WINDOWS\system32\hid.dll - ok
21:12:27.0250 2948 [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
21:12:27.0250 2948 C:\WINDOWS\system32\hidserv.dll - ok
21:12:27.0250 2948 [ 54F694C6CD3A1149BA3A8BDACC83BADC ] C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
21:12:27.0250 2948 C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe - ok
21:12:27.0265 2948 [ 362529BA150768AD05DFEEE9EA4B6C07 ] C:\Program Files\CA\PPRT\bin\CAServer.dll
21:12:27.0265 2948 C:\Program Files\CA\PPRT\bin\CAServer.dll - ok
21:12:27.0265 2948 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files\CA\PPRT\bin\msvcp71.dll
21:12:27.0265 2948 C:\Program Files\CA\PPRT\bin\msvcp71.dll - ok
21:12:27.0265 2948 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\CA\PPRT\bin\msvcr71.dll
21:12:27.0265 2948 C:\Program Files\CA\PPRT\bin\msvcr71.dll - ok
21:12:27.0281 2948 [ 9DBA73C2F1E76EC4CB837E67C5743596 ] C:\Program Files\Java\jre6\bin\jqs.exe
21:12:27.0281 2948 C:\Program Files\Java\jre6\bin\jqs.exe - ok
21:12:27.0281 2948 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\Java\jre6\bin\msvcr71.dll
21:12:27.0281 2948 C:\Program Files\Java\jre6\bin\msvcr71.dll - ok
21:12:27.0281 2948 [ 5454607F90878D7CD0BCDB6E0D3F235F ] C:\WINDOWS\system32\pdh.dll
21:12:27.0281 2948 C:\WINDOWS\system32\pdh.dll - ok
21:12:27.0296 2948 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
21:12:27.0296 2948 C:\WINDOWS\system32\odbcbcp.dll - ok
21:12:27.0296 2948 [ FF23862146A682FCC3DBAA002E22F958 ] C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
21:12:27.0296 2948 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe - ok
21:12:27.0296 2948 [ F385F4B02C535BFFE1D70CAB80838123 ] C:\WINDOWS\system32\srvsvc.dll
21:12:27.0296 2948 C:\WINDOWS\system32\srvsvc.dll - ok
21:12:27.0312 2948 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
21:12:27.0312 2948 C:\WINDOWS\system32\netmsg.dll - ok
21:12:27.0312 2948 [ 3BB03F2BA89D2BE417206C373D2AF17C ] C:\WINDOWS\system32\drivers\srv.sys
21:12:27.0312 2948 C:\WINDOWS\system32\drivers\srv.sys - ok
21:12:27.0312 2948 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
21:12:27.0312 2948 C:\WINDOWS\system32\perfos.dll - ok
21:12:27.0328 2948 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
21:12:27.0328 2948 C:\WINDOWS\system32\perfdisk.dll - ok
21:12:27.0328 2948 [ 2241BA95626E55BE848A455273DDB018 ] C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe
21:12:27.0328 2948 C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe - ok
21:12:27.0328 2948 [ 11F714F85530A2BD134074DC30E99FCA ] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
21:12:27.0328 2948 C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE - ok
21:12:27.0343 2948 [ 5DE4A76726A61FB735FE009CB61EA35D ] C:\PROGRA~1\McAfee\SITEAD~1\SaSSHMod.dll
21:12:27.0343 2948 C:\PROGRA~1\McAfee\SITEAD~1\SaSSHMod.dll - ok
21:12:27.0343 2948 [ 80490E9285C373B991E4EEE7D1228C6A ] C:\PROGRA~1\McAfee\SITEAD~1\saupkeep.dll
21:12:27.0343 2948 C:\PROGRA~1\McAfee\SITEAD~1\saupkeep.dll - ok
21:12:27.0343 2948 [ 3C318B9CD391371BED62126581EE9961 ] C:\WINDOWS\system32\drivers\mdmxsdk.sys
21:12:27.0343 2948 C:\WINDOWS\system32\drivers\mdmxsdk.sys - ok
21:12:27.0359 2948 [ 2D091A99624FB9E7EEF0A86D872EC0C3 ] C:\WINDOWS\system32\HPZipm12.exe
21:12:27.0359 2948 C:\WINDOWS\system32\HPZipm12.exe - ok
21:12:27.0359 2948 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
21:12:27.0359 2948 C:\WINDOWS\system32\ipsecsvc.dll - ok
21:12:27.0359 2948 [ 33CEB89B62589E8B12AEE9E2D523DADE ] C:\WINDOWS\system32\oakley.dll
21:12:27.0359 2948 C:\WINDOWS\system32\oakley.dll - ok
21:12:27.0375 2948 [ 5B19B557B0C188210A56A6B699D90B8F ] C:\WINDOWS\system32\regsvc.dll
21:12:27.0375 2948 C:\WINDOWS\system32\regsvc.dll - ok
21:12:27.0375 2948 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
21:12:27.0375 2948 C:\WINDOWS\system32\seclogon.dll - ok
21:12:27.0375 2948 [ 777115C9CC675BD98127660712D2F784 ] C:\Program Files\Dell Support Center\bin\sprtsvc.exe
21:12:27.0375 2948 C:\Program Files\Dell Support Center\bin\sprtsvc.exe - ok
21:12:27.0390 2948 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
21:12:27.0390 2948 C:\WINDOWS\system32\sens.dll - ok
21:12:27.0390 2948 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
21:12:27.0390 2948 C:\WINDOWS\system32\winipsec.dll - ok
21:12:27.0390 2948 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
21:12:27.0390 2948 C:\WINDOWS\system32\pstorsvc.dll - ok
21:12:27.0406 2948 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
21:12:27.0406 2948 C:\WINDOWS\system32\psbase.dll - ok
21:12:27.0406 2948 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
21:12:27.0406 2948 C:\WINDOWS\system32\srsvc.dll - ok
21:12:27.0406 2948 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
21:12:27.0406 2948 C:\WINDOWS\system32\ssdpsrv.dll - ok
21:12:27.0421 2948 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
21:12:27.0421 2948 C:\WINDOWS\system32\wiaservc.dll - ok
21:12:27.0421 2948 [ 8E8D1251C52DE0256C076CAAA79AF327 ] C:\Program Files\Dell Support Center\bin\sprtsched.dll
21:12:27.0421 2948 C:\Program Files\Dell Support Center\bin\sprtsched.dll - ok
21:12:27.0421 2948 [ 851C5080261DFC1FCDC21DF0E5EA3BCB ] C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
21:12:27.0421 2948 C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe - ok
21:12:27.0437 2948 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
21:12:27.0437 2948 C:\WINDOWS\system32\cfgmgr32.dll - ok
21:12:27.0437 2948 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
21:12:27.0437 2948 C:\WINDOWS\system32\tapisrv.dll - ok
21:12:27.0437 2948 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
21:12:27.0437 2948 C:\WINDOWS\system32\dssenh.dll - ok
21:12:27.0453 2948 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
21:12:27.0453 2948 C:\WINDOWS\system32\mscms.dll - ok
21:12:27.0453 2948 [ 0AB6629467D8F073B762FCA1D416BF2D ] C:\Program Files\Dell Support Center\bin\sprtfod.dll
21:12:27.0453 2948 C:\Program Files\Dell Support Center\bin\sprtfod.dll - ok
21:12:27.0453 2948 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files\Dell Support Center\bin\libeay32.dll
21:12:27.0453 2948 C:\Program Files\Dell Support Center\bin\libeay32.dll - ok
21:12:27.0468 2948 [ A340CD71EB535A3DD751B5F28723E50C ] C:\WINDOWS\system32\ddraw.dll
21:12:27.0468 2948 C:\WINDOWS\system32\ddraw.dll - ok
21:12:27.0468 2948 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
21:12:27.0468 2948 C:\WINDOWS\system32\trkwks.dll - ok
21:12:27.0468 2948 [ E97D6A8684466DF94FF3BC24FB787A07 ] C:\WINDOWS\system32\fxssvc.exe
21:12:27.0468 2948 C:\WINDOWS\system32\fxssvc.exe - ok
21:12:27.0484 2948 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
21:12:27.0484 2948 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
21:12:27.0484 2948 [ D8B91D94ECB123862B390FDE3250D3BB ] C:\WINDOWS\system32\dciman32.dll
21:12:27.0484 2948 C:\WINDOWS\system32\dciman32.dll - ok
21:12:27.0484 2948 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
21:12:27.0484 2948 C:\WINDOWS\system32\vssapi.dll - ok
21:12:27.0500 2948 [ 869FF988D4582D616D49CFBE7D84C1B4 ] C:\WINDOWS\system32\hpowiax2.dll
21:12:27.0500 2948 C:\WINDOWS\system32\hpowiax2.dll - ok
21:12:27.0500 2948 [ A08EF2FC9B3E688128E89D9C193F7652 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\GdiPlus.dll
21:12:27.0500 2948 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\GdiPlus.dll - ok
21:12:27.0500 2948 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
21:12:27.0500 2948 C:\WINDOWS\system32\credui.dll - ok
21:12:27.0515 2948 [ BDB83C844EDEC9BD01A94750D2C38DDF ] C:\WINDOWS\system32\fxsevent.dll
21:12:27.0515 2948 C:\WINDOWS\system32\fxsevent.dll - ok
21:12:27.0515 2948 [ 1144EF6B4BB72E33B41912AE1AE4F97A ] C:\WINDOWS\system32\fxstiff.dll
21:12:27.0515 2948 C:\WINDOWS\system32\fxstiff.dll - ok
21:12:27.0515 2948 [ A06CE3399D16DB864F55FAEB1F1927A9 ] C:\WINDOWS\system32\browser.dll
21:12:27.0515 2948 C:\WINDOWS\system32\browser.dll - ok
21:12:27.0531 2948 [ 39DD0C97932CDFDCF006569E1A942728 ] C:\WINDOWS\system32\wiavusd.dll
21:12:27.0531 2948 C:\WINDOWS\system32\wiavusd.dll - ok
21:12:27.0531 2948 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
21:12:27.0531 2948 C:\WINDOWS\system32\comsvcs.dll - ok
21:12:27.0531 2948 [ 0329D0A4F230094B669A87BB3B85606E ] C:\WINDOWS\system32\fxsapi.dll
21:12:27.0531 2948 C:\WINDOWS\system32\fxsapi.dll - ok
21:12:27.0546 2948 [ 27DF2E313052DB2270972AD7CB15C8DB ] C:\Program Files\Dell Support Center\bin\sprtsync.dll
21:12:27.0546 2948 C:\Program Files\Dell Support Center\bin\sprtsync.dll - ok
21:12:27.0546 2948 [ DF0A511F38F16016BF658FCA0090CB87 ] C:\WINDOWS\ehome\mcrdsvc.exe
21:12:27.0546 2948 C:\WINDOWS\ehome\mcrdsvc.exe - ok
21:12:27.0546 2948 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
21:12:27.0546 2948 C:\WINDOWS\system32\spoolss.dll - ok
21:12:27.0562 2948 [ D8AD3D7F927C686B8C233221513DA628 ] C:\WINDOWS\system32\localspl.dll
21:12:27.0562 2948 C:\WINDOWS\system32\localspl.dll - ok
21:12:27.0562 2948 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
21:12:27.0562 2948 C:\WINDOWS\system32\ssdpapi.dll - ok
21:12:27.0562 2948 [ E4D3F600CFF1E76950ABB0D790F2A1EF ] C:\Program Files\Dell Support Center\bin\sprtupdate.dll
21:12:27.0562 2948 C:\Program Files\Dell Support Center\bin\sprtupdate.dll - ok
21:12:27.0578 2948 [ 6D280BC969218AE4A72180F907C32913 ] C:\WINDOWS\ehome\ehTrace.dll
21:12:27.0578 2948 C:\WINDOWS\ehome\ehTrace.dll - ok
21:12:27.0578 2948 [ D1DE16926C682DCD3D99AE5500CA5522 ] C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
21:12:27.0578 2948 C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe - ok
21:12:27.0578 2948 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
21:12:27.0578 2948 C:\WINDOWS\system32\cnbjmon.dll - ok
21:12:27.0593 2948 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
21:12:27.0593 2948 C:\WINDOWS\system32\colbact.dll - ok
21:12:27.0593 2948 [ E965160B09675E027EF8235EF90EB405 ] C:\WINDOWS\system32\HPTcpMon.dll
21:12:27.0593 2948 C:\WINDOWS\system32\HPTcpMon.dll - ok
21:12:27.0593 2948 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
21:12:27.0593 2948 C:\WINDOWS\system32\msi.dll - ok
21:12:27.0609 2948 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
21:12:27.0609 2948 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
21:12:27.0609 2948 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
21:12:27.0609 2948 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
21:12:27.0609 2948 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
21:12:27.0609 2948 C:\WINDOWS\system32\shfolder.dll - ok
21:12:27.0625 2948 [ 72CD04A8789BEFAB99F06658A41D10C9 ] C:\WINDOWS\system32\mtxclu.dll
21:12:27.0625 2948 C:\WINDOWS\system32\mtxclu.dll - ok
21:12:27.0625 2948 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
21:12:27.0625 2948 C:\WINDOWS\system32\clusapi.dll - ok
21:12:27.0625 2948 [ B85EC14C7A5F7B2C8D70D4443486DD77 ] C:\WINDOWS\system32\hpzjrd01.dll
21:12:27.0625 2948 C:\WINDOWS\system32\hpzjrd01.dll - ok
21:12:27.0640 2948 [ 219541B30B162B7BD1202A252C56F941 ] C:\WINDOWS\system32\HPTcpMUI.dll
21:12:27.0640 2948 C:\WINDOWS\system32\HPTcpMUI.dll - ok
21:12:27.0640 2948 [ FA784AFE3925C4D1E7EB65CA3A9CC72F ] C:\Program Files\Java\jre6\bin\awt.dll
21:12:27.0640 2948 C:\Program Files\Java\jre6\bin\awt.dll - ok
21:12:27.0640 2948 [ E5A93F799298147E169D689969D5C73F ] C:\WINDOWS\system32\HPTcpMib.dll
21:12:27.0640 2948 C:\WINDOWS\system32\HPTcpMib.dll - ok
21:12:27.0656 2948 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
21:12:27.0656 2948 C:\WINDOWS\system32\resutils.dll - ok
21:12:27.0656 2948 [ 1E744353BD534405187A404667DA3DC3 ] C:\WINDOWS\system32\mgmtapi.dll
21:12:27.0656 2948 C:\WINDOWS\system32\mgmtapi.dll - ok
21:12:27.0656 2948 [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
21:12:27.0656 2948 C:\WINDOWS\system32\snmpapi.dll - ok
21:12:27.0671 2948 [ 277F3E3333F1D10CA428568197FCCE70 ] C:\WINDOWS\system32\wsnmp32.dll
21:12:27.0671 2948 C:\WINDOWS\system32\wsnmp32.dll - ok
21:12:27.0671 2948 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
21:12:27.0671 2948 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
21:12:27.0671 2948 [ 8DE42B399DA44BFC936F7D850613FC72 ] C:\WINDOWS\system32\hpzll43a.dll
21:12:27.0671 2948 C:\WINDOWS\system32\hpzll43a.dll - ok
21:12:27.0687 2948 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
21:12:27.0687 2948 C:\WINDOWS\system32\wbem\esscli.dll - ok
21:12:27.0687 2948 [ 15A9294B81D0FF0E4AC75276C13FD04B ] C:\WINDOWS\system32\mdimon.dll
21:12:27.0687 2948 C:\WINDOWS\system32\mdimon.dll - ok
21:12:27.0687 2948 [ 60027BEA3E76D7DD8D96C02432BFDE82 ] C:\WINDOWS\system32\wbem\fastprox.dll
21:12:27.0687 2948 C:\WINDOWS\system32\wbem\fastprox.dll - ok
21:12:27.0703 2948 [ CC6292CA575E851E5B74BF8883AB967A ] C:\WINDOWS\system32\fxsmon.dll
21:12:27.0703 2948 C:\WINDOWS\system32\fxsmon.dll - ok
21:12:27.0703 2948 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
21:12:27.0703 2948 C:\WINDOWS\system32\pjlmon.dll - ok
21:12:27.0703 2948 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
21:12:27.0703 2948 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
21:12:27.0718 2948 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
21:12:27.0718 2948 C:\WINDOWS\system32\tcpmon.dll - ok
21:12:27.0718 2948 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
21:12:27.0718 2948 C:\WINDOWS\system32\usbmon.dll - ok
21:12:27.0718 2948 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
21:12:27.0718 2948 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
21:12:27.0734 2948 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
21:12:27.0734 2948 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
21:12:27.0734 2948 [ C2A4FDBD76953411000A01EB047DDC12 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
21:12:27.0734 2948 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
21:12:27.0734 2948 [ E039FEC74CD7CF8C664138ADE6B688F4 ] C:\Program Files\Java\jre6\bin\client\jvm.dll
21:12:27.0734 2948 C:\Program Files\Java\jre6\bin\client\jvm.dll - ok
21:12:27.0750 2948 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
21:12:27.0750 2948 C:\WINDOWS\system32\wbem\wbemess.dll - ok
21:12:27.0765 2948 [ EA1B063208E4AE322BDF3F2FA235CC9D ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp43a.dll
21:12:27.0765 2948 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp43a.dll - ok
21:12:27.0765 2948 [ 063457262374B224226710D8DB74C37C ] C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
21:12:27.0765 2948 C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll - ok
21:12:27.0765 2948 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
21:12:27.0765 2948 C:\WINDOWS\system32\win32spl.dll - ok
21:12:27.0781 2948 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
21:12:27.0781 2948 C:\WINDOWS\system32\inetpp.dll - ok
21:12:27.0781 2948 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
21:12:27.0781 2948 C:\WINDOWS\system32\netrap.dll - ok
21:12:27.0781 2948 [ 0CE5F8AE9C371A965D17E3F2ED134809 ] C:\WINDOWS\system32\fxst30.dll
21:12:27.0781 2948 C:\WINDOWS\system32\fxst30.dll - ok
21:12:27.0796 2948 [ 2D583E2844FDD592D1629EB6B10E5702 ] C:\WINDOWS\system32\fxsroute.dll
21:12:27.0796 2948 C:\WINDOWS\system32\fxsroute.dll - ok
21:12:27.0796 2948 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
21:12:27.0796 2948 C:\WINDOWS\system32\unimdm.tsp - ok
21:12:27.0796 2948 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
21:12:27.0796 2948 C:\WINDOWS\system32\uniplat.dll - ok
21:12:27.0812 2948 [ 0FFAE66E6D5B1C87CBD22D1F3B6079FD ] C:\WINDOWS\system32\wbem\wmiprvse.exe
21:12:27.0812 2948 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
21:12:27.0812 2948 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
21:12:27.0812 2948 C:\WINDOWS\system32\unimdmat.dll - ok
21:12:27.0812 2948 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
21:12:27.0812 2948 C:\WINDOWS\system32\modemui.dll - ok
21:12:27.0828 2948 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
21:12:27.0828 2948 C:\WINDOWS\system32\kmddsp.tsp - ok
21:12:27.0828 2948 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
21:12:27.0828 2948 C:\WINDOWS\system32\ndptsp.tsp - ok
21:12:27.0843 2948 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
21:12:27.0843 2948 C:\WINDOWS\system32\h323.tsp - ok
21:12:27.0843 2948 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
21:12:27.0843 2948 C:\WINDOWS\system32\ipconf.tsp - ok
21:12:27.0843 2948 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
21:12:27.0843 2948 C:\WINDOWS\system32\hidphone.tsp - ok
21:12:27.0859 2948 [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
21:12:27.0859 2948 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
21:12:27.0859 2948 [ FC384144E1C6390B6E576C641A9D9F99 ] C:\Program Files\Java\jre6\bin\dcpr.dll
21:12:27.0859 2948 C:\Program Files\Java\jre6\bin\dcpr.dll - ok
21:12:27.0859 2948 [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
21:12:27.0859 2948 C:\WINDOWS\system32\wbem\framedyn.dll - ok
21:12:27.0875 2948 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
21:12:27.0875 2948 C:\WINDOWS\system32\security.dll - ok
21:12:27.0875 2948 [ 2D3E7A71A93D6D6D063CB391D225AF08 ] C:\Program Files\Java\jre6\bin\deploy.dll
21:12:27.0875 2948 C:\Program Files\Java\jre6\bin\deploy.dll - ok
21:12:27.0875 2948 [ 4B267FFF6BA9E985D7964440A69E8146 ] C:\Program Files\Java\jre6\bin\fontmanager.dll
21:12:27.0875 2948 C:\Program Files\Java\jre6\bin\fontmanager.dll - ok
21:12:27.0890 2948 [ 97AD9A55A6F4D8D825A718081BFD72EA ] C:\Program Files\Java\jre6\bin\hpi.dll
21:12:27.0890 2948 C:\Program Files\Java\jre6\bin\hpi.dll - ok
21:12:27.0906 2948 [ BD1D0F150C25F972951FF1E7381CFB67 ] C:\Program Files\Java\jre6\bin\java.dll
21:12:27.0906 2948 C:\Program Files\Java\jre6\bin\java.dll - ok
21:12:27.0906 2948 [ FD8AB373BD7834A65114DD899199D00B ] C:\Program Files\Java\jre6\bin\javaw.exe
21:12:27.0906 2948 C:\Program Files\Java\jre6\bin\javaw.exe - ok
21:12:27.0906 2948 [ A75020E93E606BEF7609E9AF061A2117 ] C:\Program Files\Java\jre6\bin\jp2native.dll
21:12:27.0906 2948 C:\Program Files\Java\jre6\bin\jp2native.dll - ok
21:12:27.0921 2948 [ C3F7A1E52F753EB5D0AF61A0C0AF9F67 ] C:\Program Files\Java\jre6\bin\jpeg.dll
21:12:27.0921 2948 C:\Program Files\Java\jre6\bin\jpeg.dll - ok
21:12:27.0921 2948 [ F00769B92D4FBBCC66AC298658BBCB69 ] C:\Program Files\Java\jre6\bin\net.dll
21:12:27.0921 2948 C:\Program Files\Java\jre6\bin\net.dll - ok
21:12:27.0921 2948 [ D5DEC0FE419EF7FDE0691E876518C74C ] C:\Program Files\Java\jre6\bin\nio.dll
21:12:27.0921 2948 C:\Program Files\Java\jre6\bin\nio.dll - ok
21:12:27.0937 2948 [ 655E7B6BBA29D1AA5A024C580C7FC9C8 ] C:\Program Files\Java\jre6\bin\regutils.dll
21:12:27.0937 2948 C:\Program Files\Java\jre6\bin\regutils.dll - ok
21:12:27.0937 2948 [ 048DFF56FAF13418A4883EBA57E0F532 ] C:\Program Files\Java\jre6\bin\verify.dll
21:12:27.0937 2948 C:\Program Files\Java\jre6\bin\verify.dll - ok
21:12:27.0937 2948 [ 9649B2B14C6AA0B4AD02BBA93CA7DC0F ] C:\Program Files\Java\jre6\bin\zip.dll
21:12:27.0937 2948 C:\Program Files\Java\jre6\bin\zip.dll - ok
21:12:27.0953 2948 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
21:12:27.0953 2948 C:\WINDOWS\system32\termsrv.dll - ok
21:12:27.0953 2948 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
21:12:27.0953 2948 C:\WINDOWS\system32\icaapi.dll - ok
21:12:27.0953 2948 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
21:12:27.0953 2948 C:\WINDOWS\system32\mstlsapi.dll - ok
21:12:27.0968 2948 [ F96CFB47903854F228BAAF3E2D41A0A3 ] C:\WINDOWS\system32\drivers\LVPr2Mon.sys
21:12:27.0968 2948 C:\WINDOWS\system32\drivers\LVPr2Mon.sys - ok
21:12:27.0968 2948 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
21:12:27.0968 2948 C:\WINDOWS\system32\rasmans.dll - ok
21:12:27.0968 2948 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
21:12:27.0968 2948 C:\WINDOWS\system32\netcfgx.dll - ok
21:12:27.0984 2948 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
21:12:27.0984 2948 C:\WINDOWS\system32\rastapi.dll - ok
21:12:27.0984 2948 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
21:12:27.0984 2948 C:\WINDOWS\system32\rasppp.dll - ok
21:12:27.0984 2948 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
21:12:27.0984 2948 C:\WINDOWS\system32\ntlsapi.dll - ok
21:12:28.0000 2948 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
21:12:28.0000 2948 C:\WINDOWS\system32\rasqec.dll - ok
21:12:28.0000 2948 [ D20DA789C445936988C8B83F53522374 ] C:\WINDOWS\Temp\logishrd\LVPrcInj02.dll
21:12:28.0000 2948 C:\WINDOWS\Temp\logishrd\LVPrcInj02.dll - ok
21:12:28.0000 2948 [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
21:12:28.0000 2948 C:\WINDOWS\system32\rundll32.exe - ok
21:12:28.0015 2948 [ F795ABFBCE29C843D7EB7110722D18D0 ] C:\PROGRA~1\McAfee\SITEAD~1\sahook.dll
21:12:28.0015 2948 C:\PROGRA~1\McAfee\SITEAD~1\sahook.dll - ok
21:12:28.0015 2948 [ 047CD344AC7B76BA3C224FAE1A4627C9 ] C:\WINDOWS\system32\WgaTray.exe
21:12:28.0015 2948 C:\WINDOWS\system32\WgaTray.exe - ok
21:12:28.0015 2948 [ D1CB99ADBA9397D7D02B0B2DCFE47F1A ] C:\WINDOWS\system32\LegitCheckControl.dll
21:12:28.0015 2948 C:\WINDOWS\system32\LegitCheckControl.dll - ok
21:12:28.0031 2948 [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\system32\licwmi.dll
21:12:28.0031 2948 C:\WINDOWS\system32\licwmi.dll - ok
21:12:28.0031 2948 [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\system32\licdll.dll
21:12:28.0031 2948 C:\WINDOWS\system32\licdll.dll - ok
21:12:28.0031 2948 [ 6A740DF0429C794517F44125E9E1DA05 ] C:\Program Files\CA\PPRT\bin\ITMRTSVC_NT.dll
21:12:28.0031 2948 C:\Program Files\CA\PPRT\bin\ITMRTSVC_NT.dll - ok
21:12:28.0046 2948 [ CF7460002344F4DD680FE4AED1994252 ] C:\Program Files\CA\PPRT\bin\CAHook.dll
21:12:28.0046 2948 C:\Program Files\CA\PPRT\bin\CAHook.dll - ok
21:12:28.0046 2948 [ 1CD99FDB466276D79C8D47753EF4AACB ] C:\Program Files\CA\PPRT\bin\CACheck.dll
21:12:28.0046 2948 C:\Program Files\CA\PPRT\bin\CACheck.dll - ok
21:12:28.0062 2948 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\DOCUME~1\michael\LOCALS~1\Temp\8895CE5F-8D51-4BA9-8392-84C2C77822EF.exe
21:12:28.0062 2948 C:\DOCUME~1\michael\LOCALS~1\Temp\8895CE5F-8D51-4BA9-8392-84C2C77822EF.exe - ok
21:12:28.0062 2948 [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
21:12:28.0062 2948 C:\WINDOWS\system32\msutb.dll - ok
21:12:28.0062 2948 [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
21:12:28.0062 2948 C:\WINDOWS\system32\msctf.dll - ok
21:12:28.0078 2948 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
21:12:28.0078 2948 C:\WINDOWS\system32\ntshrui.dll - ok
21:12:28.0078 2948 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
21:12:28.0078 2948 C:\WINDOWS\system32\imapi.exe - ok
21:12:28.0078 2948 [ C444B433A340C24B51A2DACE9D13FC70 ] C:\WINDOWS\system32\zipfldr.dll
21:12:28.0078 2948 C:\WINDOWS\system32\zipfldr.dll - ok
21:12:28.0093 2948 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\29146980.sys
21:12:28.0093 2948 C:\WINDOWS\system32\drivers\29146980.sys - ok
21:12:28.0093 2948 [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
21:12:28.0093 2948 C:\WINDOWS\system32\verclsid.exe - ok
21:12:28.0109 2948 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
21:12:28.0109 2948 C:\WINDOWS\system32\linkinfo.dll - ok
21:12:28.0109 2948 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
21:12:28.0109 2948 C:\WINDOWS\system32\mlang.dll - ok
21:12:28.0125 2948 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
21:12:28.0125 2948 C:\WINDOWS\system32\netshell.dll - ok
21:12:28.0125 2948 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
21:12:28.0125 2948 C:\WINDOWS\system32\dot3dlg.dll - ok
21:12:28.0125 2948 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
21:12:28.0125 2948 C:\WINDOWS\system32\eappcfg.dll - ok
21:12:28.0140 2948 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
21:12:28.0140 2948 C:\WINDOWS\system32\eappprxy.dll - ok
21:12:28.0140 2948 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
21:12:28.0140 2948 C:\WINDOWS\system32\onex.dll - ok
21:12:28.0140 2948 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
21:12:28.0140 2948 C:\WINDOWS\system32\wbem\ncprov.dll - ok
21:12:28.0156 2948 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
21:12:28.0156 2948 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
21:12:28.0156 2948 [ C25782BBE380C33C5E34AEAAEE607BEE ] C:\PROGRA~1\McAfee\SITEAD~1\MCSACO~1.DLL
21:12:28.0156 2948 C:\PROGRA~1\McAfee\SITEAD~1\MCSACO~1.DLL - ok
21:12:28.0156 2948 [ E4A5301E7683F4B012CC7BF84E15BB48 ] C:\WINDOWS\system32\msxml6.dll
21:12:28.0156 2948 C:\WINDOWS\system32\msxml6.dll - ok
21:12:28.0171 2948 [ B0EC253506BEE5CC1B004CD0E7A698E9 ] C:\Program Files\Ask.com\UpdateTask.exe
21:12:28.0171 2948 C:\Program Files\Ask.com\UpdateTask.exe - ok
21:12:28.0171 2948 [ CD7CFCCECC1EF1CC2D05CFB396B7C354 ] C:\Program Files\Ask.com\SaUpdate.exe
21:12:28.0171 2948 C:\Program Files\Ask.com\SaUpdate.exe - ok
21:12:28.0187 2948 [ 121EC39A64D64205A88C2C45B034B455 ] C:\WINDOWS\system32\mshtml.dll
21:12:28.0187 2948 C:\WINDOWS\system32\mshtml.dll - ok
21:12:28.0187 2948 [ 2D15E1C7CD0BC1A9B7F9660E39A0CE3E ] C:\WINDOWS\system32\msls31.dll
21:12:28.0187 2948 C:\WINDOWS\system32\msls31.dll - ok
21:12:28.0187 2948 [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\msimtf.dll
21:12:28.0187 2948 C:\WINDOWS\system32\msimtf.dll - ok
21:12:28.0203 2948 [ 7C6B20F70F427ABE9C9F490B50E3D736 ] C:\WINDOWS\system32\jscript.dll
21:12:28.0203 2948 C:\WINDOWS\system32\jscript.dll - ok
21:12:28.0203 2948 [ 25DEF2EF843275862FFBF55487CEFDDD ] C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_135.ocx
21:12:28.0203 2948 C:\WINDOWS\system32\Macromed\Flash\Flash32_11_5_502_135.ocx - ok
21:12:28.0203 2948 [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
21:12:28.0203 2948 C:\WINDOWS\system32\dsound.dll - ok
21:12:28.0218 2948 [ 7469B9D06F0299273769C3E5365F5469 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
21:12:28.0218 2948 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL - ok
21:12:28.0218 2948 [ 22A252B03462457AF8D1A22EC64AADBF ] C:\WINDOWS\system32\wmp.dll
21:12:28.0218 2948 C:\WINDOWS\system32\wmp.dll - ok
21:12:28.0218 2948 [ 235B2311786AC007AD644B12A2DA8AC7 ] C:\WINDOWS\system32\msvfw32.dll
21:12:28.0218 2948 C:\WINDOWS\system32\msvfw32.dll - ok
21:12:28.0234 2948 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
21:12:28.0234 2948 C:\WINDOWS\system32\dbghelp.dll - ok
21:12:28.0234 2948 [ E8885A533A3D46209851433E3B9B3BC4 ] C:\WINDOWS\system32\wmploc.dll
21:12:28.0234 2948 C:\WINDOWS\system32\wmploc.dll - ok
21:12:28.0234 2948 [ 55C30168142479C602BD456AC4E230B0 ] C:\WINDOWS\system32\MFPLAT.dll
21:12:28.0234 2948 C:\WINDOWS\system32\MFPLAT.dll - ok
21:12:28.0250 2948 [ 1D21DB64E6C815925B6A3617C9EBFA72 ] C:\WINDOWS\system32\dxtrans.dll
21:12:28.0250 2948 C:\WINDOWS\system32\dxtrans.dll - ok
21:12:28.0250 2948 [ A47F6A13202AA54541CA46D6CED79F5F ] C:\WINDOWS\system32\ddrawex.dll
21:12:28.0250 2948 C:\WINDOWS\system32\ddrawex.dll - ok
21:12:28.0250 2948 [ 6F50DCD4184538F6742043D45E396C03 ] C:\WINDOWS\system32\dxtmsft.dll
21:12:28.0250 2948 C:\WINDOWS\system32\dxtmsft.dll - ok
21:12:28.0265 2948 [ C4EFFBE602CE2ADC047AF5CC1F858707 ] C:\WINDOWS\system32\vbscript.dll
21:12:28.0265 2948 C:\WINDOWS\system32\vbscript.dll - ok
21:12:28.0265 2948 [ F9CCDEBD2C487BC2438680D7C9AE4C76 ] C:\WINDOWS\system32\mshtmled.dll
21:12:28.0265 2948 C:\WINDOWS\system32\mshtmled.dll - ok
21:12:28.0265 2948 [ 7D7D8501F3CB45D0408CDEFA08CDAEFF ] C:\WINDOWS\system32\usp10.dll
21:12:28.0265 2948 C:\WINDOWS\system32\usp10.dll - ok
21:12:28.0281 2948 [ 0607CBC6FA20114CB491EFE4B2F9EFAD ] C:\WINDOWS\system32\d3d9.dll
21:12:28.0281 2948 C:\WINDOWS\system32\d3d9.dll - ok
21:12:28.0281 2948 [ 31B067C412FA1A9BAD3CA2A63D7DA440 ] C:\WINDOWS\system32\d3d8thk.dll
21:12:28.0281 2948 C:\WINDOWS\system32\d3d8thk.dll - ok
21:12:28.0281 2948 [ 14AFCC6A059DA5AD83139C4C52CCB2FE ] C:\WINDOWS\system32\iepeers.dll
21:12:28.0281 2948 C:\WINDOWS\system32\iepeers.dll - ok
21:12:28.0296 2948 [ 2246D3D0C6AEB40F21528A1C3101812E ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll
21:12:28.0296 2948 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll - ok
21:12:28.0296 2948 [ 51F323636C1FE5ECDD6B64A14FE96DCC ] C:\WINDOWS\system32\t2embed.dll
21:12:28.0296 2948 C:\WINDOWS\system32\t2embed.dll - ok
21:12:28.0296 2948 [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
21:12:28.0296 2948 C:\WINDOWS\system32\lz32.dll - ok
21:12:28.0312 2948 [ DD6CD8C0CB560DB70B655A008AED7A49 ] C:\PROGRA~1\McAfee\SITEAD~1\saUI.exe
21:12:28.0312 2948 C:\PROGRA~1\McAfee\SITEAD~1\saUI.exe - ok
21:12:28.0312 2948 [ 2E172308F1F109BD7B71EE1C093A8961 ] C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll
21:12:28.0312 2948 C:\Program Files\Common Files\Microsoft Shared\VGX\vgx.dll - ok
21:12:28.0312 2948 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:12:28.0312 2948 C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe - ok
21:12:28.0328 2948 [ C2D6A721EDF79456B0E74FAFF6713026 ] C:\WINDOWS\system32\imgutil.dll
21:12:28.0328 2948 C:\WINDOWS\system32\imgutil.dll - ok
21:12:28.0328 2948 [ B0F994795297BA5EA38A488EDFF63DFD ] C:\WINDOWS\system32\pngfilt.dll
21:12:28.0328 2948 C:\WINDOWS\system32\pngfilt.dll - ok
21:12:28.0328 2948 ============================================================
21:12:28.0328 2948 Scan finished
21:12:28.0328 2948 ============================================================
21:12:28.0343 2988 Detected object count: 29
21:12:28.0343 2988 Actual detected object count: 29

#7 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:15 PM

Posted 17 December 2012 - 11:16 PM

Hello,

Go ahead and run Combofix in Safemode with Networking please.

Now reboot into Safe Mode with Networking.
This can be done tapping the F8 key as soon as you start your computer
You will be brought to a menu where you can choose to boot into safe mode.
Make sure you choose the option with networking support.
Please see here for additional details.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#8 gf1701

gf1701
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:15 PM

Posted 19 December 2012 - 10:38 PM

I believe my friend's computer has been cleaned of malware! I will have him report back to me in the next couple of days to verify that no symptoms have occurred, but it looks good so far. And his Windows Firewall is working again. I have copied the ComboFix log into this posting. Thanks you very much. Would you like feedback on your instructions? There were a couple of places where I got got confused, or where I saw something happen that was not mentioned in the instructions. If you're interested, I'll write something up for you. In any event, thanks again.

Gary

ComboFix 12-12-19.02 - michael 12/19/2012 21:20:22.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.706 [GMT -5:00]
Running from: c:\documents and settings\michael\My Documents\Downloads\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\AVG\avgmfapx.exe
c:\documents and settings\All Users\Application Data\TEMP\AVG\avgmfarx.dll
c:\documents and settings\All Users\Application Data\TEMP\AVG\avgntdumpx.exe
c:\documents and settings\All Users\Application Data\TEMP\AVG\avgrunasx.exe
c:\documents and settings\All Users\Application Data\TEMP\AVG\avi7.avg
c:\documents and settings\All Users\Application Data\TEMP\AVG\htmlayout.dll
c:\documents and settings\All Users\Application Data\TEMP\AVG\incavi.avm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_cz.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_da.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_es.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_fr.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_ge.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_hu.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_id.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_in.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_it.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_jp.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_ko.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_ms.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_nl.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_pb.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_pl.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_pt.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_ru.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_sc.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_sk.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_sp.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_tr.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_us.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_zh.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\license_zt.htm
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfaconf.txt
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfacz.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfada.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfaes.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfafr.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfage.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfahu.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfaid.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfain.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfait.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfajp.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfako.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfams.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfanl.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfapb.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfapl.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfapt.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfaru.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfasc.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfask.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfasp.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfatr.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfaus.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfavera.txt
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfaverx.txt
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfazh.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\mfazt.lns
c:\documents and settings\All Users\Application Data\TEMP\AVG\microavi.avg
c:\documents and settings\All Users\Application Data\TEMP\AVG\miniavi.avg
c:\documents and settings\All Users\Application Data\TEMP\AVG\setup.exe
c:\documents and settings\All Users\Application Data\TEMP\AVG\setup.ini
c:\documents and settings\michael\Application Data\cacdx.dll
c:\documents and settings\michael\g2mdlhlpx.exe
c:\documents and settings\michael\WINDOWS
c:\program files\Seekmo Programs
c:\windows\$NtUninstallKB7807$
c:\windows\$NtUninstallKB7807$\2250217568\@
c:\windows\$NtUninstallKB7807$\2250217568\Desktop.ini
c:\windows\$NtUninstallKB7807$\2250217568\L\00000004.@
c:\windows\$NtUninstallKB7807$\2250217568\L\201d3dde
c:\windows\$NtUninstallKB7807$\2250217568\L\76603ac3
c:\windows\$NtUninstallKB7807$\2250217568\L\pdmzmplg
c:\windows\$NtUninstallKB7807$\2250217568\U\00000004.@
c:\windows\$NtUninstallKB7807$\2250217568\U\00000008.@
c:\windows\$NtUninstallKB7807$\2250217568\U\000000cb.@
c:\windows\$NtUninstallKB7807$\2250217568\U\80000000.@
c:\windows\$NtUninstallKB7807$\2250217568\U\80000032.@
c:\windows\$NtUninstallKB7807$\672398411
c:\windows\system32\bdcIQqru.ini
c:\windows\system32\bdcIQqru.ini2
c:\windows\system32\noYJknnn.ini
c:\windows\system32\noYJknnn.ini2
c:\windows\system32\SET24F.tmp
c:\windows\system32\SET250.tmp
c:\windows\system32\SET2A5.tmp
c:\windows\system32\SET2A7.tmp
c:\windows\system32\SET2B6.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
Infected copy of c:\windows\system32\drivers\afd.sys was found and disinfected
Restored copy from - The cat found it :)
.
((((((((((((((((((((((((( Files Created from 2012-11-20 to 2012-12-20 )))))))))))))))))))))))))))))))
.
.
2012-12-20 02:16 . 2008-08-14 10:04 138496 ----a-w- c:\windows\system32\drivers\afd.sys
2012-12-20 02:16 . 2008-08-14 10:04 138496 ----a-w- c:\windows\system32\dllcache\afd.sys
2012-12-20 01:59 . 2012-12-20 01:59 -------- d-----w- c:\documents and settings\michael\Application Data\TeamViewer
2012-12-18 02:20 . 2012-12-18 02:20 -------- d-----w- C:\TDSSKiller_Quarantine
2012-12-12 14:37 . 2012-12-12 14:37 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Adobe
2012-12-10 02:30 . 2012-12-10 02:30 -------- d-----w- c:\program files\TeamViewer
2012-12-09 21:03 . 2012-12-09 21:03 -------- d-----w- c:\documents and settings\michael\Application Data\Malwarebytes
2012-12-09 21:03 . 2012-12-09 21:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-12-09 21:03 . 2012-12-12 03:21 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-12-09 21:03 . 2012-09-30 00:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-12-08 21:29 . 2012-12-08 21:43 -------- d-----w- c:\documents and settings\All Users\Application Data\DD013086505F36930000DD00538C3CD3
2012-12-08 21:28 . 2012-12-08 21:28 59904 ---ha-w- c:\windows\system32\dcomrint.dll
2012-12-01 16:55 . 2012-12-01 16:55 -------- d-----w- c:\documents and settings\michael\Application Data\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-12 14:10 . 2012-04-23 16:25 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-12-12 14:10 . 2011-08-17 03:01 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-09-28 19:32 . 2012-09-28 19:32 8552 ----a-w- c:\windows\system32\drivers\asctrm.sys
2012-09-28 19:32 . 2012-09-28 19:32 24576 ----a-w- c:\windows\system32\prefscpl.cpl
2012-12-10 02:22 . 2012-12-10 02:21 262112 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-07 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Desktop Software"="c:\program files\Common Files\SupportSoft\bin\bcont.exe" [2009-05-21 1025264]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-09-29 67584]
"igfxtray"="c:\windows\system32\igfxtray.exe" [2005-10-15 94208]
"igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-10-15 77824]
"igfxpers"="c:\windows\system32\igfxpers.exe" [2005-10-15 114688]
"SigmatelSysTrayApp"="stsystra.exe" [2005-03-23 339968]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2005-06-17 139264]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-12-20 2656528]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2006-8-2 24576]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-12-15 282624]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
.
[HKLM\~\startupfolder\C:^Documents and Settings^michael^Start Menu^Programs^Startup^ZooskMessenger.lnk]
path=c:\documents and settings\michael\Start Menu\Programs\Startup\ZooskMessenger.lnk
backup=c:\windows\pss\ZooskMessenger.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]
2004-04-07 17:07 496752 ----a-w- c:\program files\Common Files\AOL\ACS\AOLDial.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater]
2012-06-07 01:33 1564872 ----a-w- c:\program files\Ask.com\Updater\Updater.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ComcastAntispyClient]
2009-08-19 17:25 1589208 ----a-w- c:\program files\comcasttb\ComcastSpywareScan\ComcastAntiSpy.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
2009-05-21 14:55 206064 ----a-w- c:\program files\Dell Support Center\bin\sprtcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher]
2005-10-05 08:12 94208 ----a-w- c:\program files\Dell\Media Experience\DMXLauncher.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dscactivate]
2007-11-15 14:24 16384 ----a-w- c:\program files\Dell Support Center\gs_agent\custom\dsca.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2007-05-08 21:24 54840 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
2005-06-10 15:44 249856 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\ISUSPM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
2005-06-10 15:44 81920 ----a-w- c:\program files\Common Files\InstallShield\UpdateService\issch.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2011-03-07 19:33 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ModemOnHold]
2003-09-10 07:24 20480 ------w- c:\program files\NetWaiting\netwaiting.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
2008-04-14 00:12 1695232 ----a-w- c:\program files\Messenger\msmsgs.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-29 21:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray]
2012-09-28 19:32 26112 ----a-w- c:\program files\real\realplayer\realplay.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-04-08 16:59 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"MBAMService"=2 (0x2)
"MBAMScheduler"=2 (0x2)
"ehSched"=2 (0x2)
"ehRecvr"=2 (0x2)
"AntiSpywareService"=2 (0x2)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
.
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~1\mcafee\SITEAD~1\mcsacore.exe [4/27/2012 4:22 PM 95232]
R2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [12/9/2012 9:30 PM 3463080]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [12/9/2012 4:03 PM 22856]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [1/15/2010 7:49 AM 227232]
S3 SPCA508A;Micro WebCam;c:\windows\system32\drivers\SPCA508A.SYS [8/24/2007 1:45 PM 99014]
S4 AntiSpywareService;Comcast AntiSpyware;c:\program files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe [6/17/2009 12:49 PM 616408]
S4 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [12/9/2012 4:03 PM 399432]
S4 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [12/9/2012 4:03 PM 676936]
.
Contents of the 'Scheduled Tasks' folder
.
2012-12-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-23 14:10]
.
2012-03-06 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 22:57]
.
2012-12-20 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-06-07 01:33]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Connection Wizard,ShellNext = hxxp://facebook.com/_ylt=3648C868A1DB;d3d3LmZhY2Vib29rLmNvbS9kaWFsb2cvb2F1dGg/Y2xpZW50X2lkPTE2MjY4Mzk4NzEwMzM4NCZyZXNwb25zZV90eXBlPXRva2VuJTJDc2lnbmVkX3JlcXVlc3QlMkNjb2RlJmRpc3BsYXk9bm9uZSZkb21haW49YXBud2lkZ2V0cy5hc2suY29tJm9yaWdpbj0xJnJlZGlyZWN0X3VyaT1odHRwJTNBJTJGJTJGc3RhdGljLmFrLmZhY2Vib29rLmNvbSUyRmNvbm5lY3QlMkZ4ZF9hcmJpdGVyLnBocCUzRnZlcnNpb24lM0QxNyUyM2NiJTNEZjJiNTA1OTMxYTUzYzlhJTI2b3JpZ2luJTNEaHR0cCUyNTNBJTI1MkYlMjUyRmFwbndpZGdldHMuYXNrLmNvbSUyNTJGZjQ0MzBmOTRhYjRhZmQlMjZkb21haW4lM0RhcG53aWRnZXRzLmFzay5jb20lMjZyZWxhdGlvbiUzRHBhcmVudCZzZGs9am9leQ==-MTg4LjQwLjExNC4xOTUvYy9Wek40T1ptWDh3M3FHbXU1NGU2NDljNjc5NjkyNDkxZGE5ZmM2N2U3YzA5YmIyOGIxN2c=
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: internet
Trusted Zone: mcafee.com
Trusted Zone: musicmatch.com\online
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\michael\Application Data\Mozilla\Firefox\Profiles\pvga5qer.default\
FF - prefs.js: browser.search.selectedEngine - Secure Search
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=mcafee&p=
FF - ExtSQL: 2012-12-19 16:58; {dc0dbcf2-57b1-4eaf-bfed-f98d653e92b3}; c:\documents and settings\michael\Application Data\Mozilla\Firefox\Profiles\pvga5qer.default\extensions\{dc0dbcf2-57b1-4eaf-bfed-f98d653e92b3}.xpi
FF - user.js: dom.disable_open_during_load - true // Popupblocker control handled by McAfee Privacy Service
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
.
- - - - ORPHANS REMOVED - - - -
.
BHO-{3CC85A18-1289-4D60-9DC8-BCC7550A0C61} - (no file)
Toolbar-10 - (no file)
HKLM-Run-cacdx - c:\documents and settings\michael\Application Data\cacdx.dll
SafeBoot-03293200.sys
AddRemove-WebCyberCoach_wtrb - c:\program files\WebCyberCoach\b_Dell\WCC_Wipe.exe WebCyberCoach ext\wtrb
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-12-19 21:41
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(532)
c:\program files\CA\PPRT\bin\CACheck.dll
c:\program files\CA\PPRT\bin\CAHook.dll
c:\program files\CA\PPRT\bin\CAServer.dll
.
- - - - - - - > 'explorer.exe'(7444)
c:\program files\CA\PPRT\bin\CACheck.dll
c:\program files\CA\PPRT\bin\CAHook.dll
c:\program files\CA\PPRT\bin\CAServer.dll
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\progra~1\mcafee\SITEAD~1\saHook.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\progra~1\COMMON~1\AOL\ACS\AOLacsd.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Intel\Intel Matrix Storage Manager\iaantmon.exe
c:\program files\CA\PPRT\bin\ITMRTSVC.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\windows\stsystra.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\system32\HPZipm12.exe
c:\program files\Dell Support Center\bin\sprtsvc.exe
c:\program files\Common Files\Logishrd\LQCVFX\COCIManager.exe
c:\windows\system32\fxssvc.exe
c:\windows\ehome\mcrdsvc.exe
c:\program files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\wscntfy.exe
c:\windows\eHome\ehmsas.exe
.
**************************************************************************
.
Completion time: 2012-12-19 21:44:33 - machine was rebooted
ComboFix-quarantined-files.txt 2012-12-20 02:44
.
Pre-Run: 212,470,345,728 bytes free
Post-Run: 214,702,862,336 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect
.
- - End Of File - - C63B3A864126746F8D2E72CCB885D710

#9 gf1701

gf1701
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:15 PM

Posted 19 December 2012 - 10:40 PM

P.S. I used the Fast Reply instead of the full editor, and failed to proofread my last posting; the results could have been predicted.

#10 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:15 PM

Posted 20 December 2012 - 04:25 PM

Hello,

Glad to hear the machine is running better. Let's run a couple other scanners to check for any leftovers.

1.
Please download Malwarebytes Anti-Malware and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

2.
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Things to include in your next reply::
MBAM log
Eset log
How is your machine running now?

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#11 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:15 PM

Posted 30 December 2012 - 12:40 AM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users