Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32/Spy.Ursnif.A trojan


  • This topic is locked This topic is locked
30 replies to this topic

#1 Fausto_III

Fausto_III

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 08 January 2013 - 06:54 PM

Hey guys, like I said in my introduction post, hope you computer gods can bestow your power in me so I can find my laptop from this virus that I ave no clue how I got. -_-
Any ways, I followed the instructions
here's the dds log

DDS (Ver_2012-11-20.01) - FAT32_x86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_37
Run by owner at 16:40:15 on 2013-01-08
#Option MBR scan is disabled.
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.894.408

[GMT -7:00]
.
AV: ESET Smart Security 5.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0

-D96ACA4F34C0}
FW: ESET Personal firewall *Enabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\WINDOWS\system32\ZuneBusEnum.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Common Files\Research In Motion\USB

Drivers\RIMBBLaunchAgent.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = google.com
uSearch Bar = hxxp://www.google.com/ie
uSearch Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
mDefault_Page_URL = hxxp://global.acer.com
mDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com
uSearchURL,(Default) =

hxxp://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.co

m
mSearchAssistant = hxxp://www.google.com
uURLSearchHooks: YTNavAssistPlugin Class: {81017EA9-9AA8-4A6A-9734-

7AF40E7D593F} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} -

c:\program files\yahoo!\companion\installs\cpn0\yt.dll
BHO: {0611E130-E94D-4B66-9606-356AB211143B} - <orphaned>
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-

784B7D6BE0B3} - c:\program files\common

files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {20C3858A-BB41-423F-9990-C966D239FDC0} - <orphaned>
BHO: Yahooo Search Protection: {25BC7718-0BFA-40EA-B381-4B2D9732D686} -

c:\program files\yahoo!\search protection\ysp.dll
BHO: {5872CE8C-4B54-47DB-9D5B-048472C64D3F} - <orphaned>
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: {713A990B-6AF9-4A6A-B56B-2F6A5138BD39} - <orphaned>
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E}

- c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-

D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-

5164760863C6} - c:\program files\common files\microsoft shared\windows

live\WindowsLiveLogin.dll
BHO: {963D3D9D-625A-4E08-807F-1C80DD897CA9} - <orphaned>
BHO: {A0A09041-6EB5-460E-934B-0282A0E7ADE8} - <orphaned>
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} -

c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-

CE66B5AD205D} - c:\program

files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-

9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-

EABFE594F69C} - c:\program files\java\jre6

\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SingleInstance Class: {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -

c:\program files\yahoo!\companion\installs\cpn0\YTSingleInstance.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program

files\google\google toolbar\GoogleToolbar_32.dll
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program

files\yahoo!\companion\installs\cpn0\yt.dll
TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program

files\yahoo!\companion\installs\cpn0\yt.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program

files\google\google toolbar\GoogleToolbar_32.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\program

files\superantispyware\SUPERAntiSpyware.exe
uRun: [swg] "c:\program

files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [LaunchApp] <no file>
dRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
StartupFolder: c:\docume~1\alluse~1\startm~1

\programs\startup\acerem~1.lnk - c:\acer\empowering

technology\Acer.Empowering.Framework.Launcher.exe
StartupFolder: c:\docume~1\alluse~1\startm~1

\programs\startup\adobeg~1.lnk - c:\program files\common

files\adobe\calibration\Adobe Gamma Loader.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12

\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-

F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-

96E929D65503}
IE: {BBF74FB9-ABCD-4678-880A-2511DAABB5E1} - {25BC7718-0BFA-40EA-B381-

4B2D9732D686} - c:\program files\yahoo!\search protection\ysp.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network

Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program

files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains'

option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains'

option.
.
DPF: Microsoft XML Parser for Java -

file://c:\windows\java\classes\xmldso.cab
DPF: {1EF9F042-C2EB-4293-8213-474CAEEF531D} -

hxxp://www.trendsecure.com/framework/control/en-US/activex/TmHcmsX.CAB
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!

\common\Yinsthelper.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} -

hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/cl

ient/wuweb_site.cab?1352866940890
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} -

hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/cl

ient/muweb_site.cab?1342135579488
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} -

hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} -

c:\program files\microsoft office\office12\GrooveSystemServices.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: fccyabyx - <no file>
AppInit_DLLs= jlndrf.dll yrzdix.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} -

c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-

52453494E6CD} - c:\program files\microsoft office\office12

\GrooveShellExtensions.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}

- c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\owner\application

data\mozilla\firefox\profiles\1hs6df54.default\
FF - prefs.js: browser.search.defaulturl -

hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: network.proxy.http_port - 2
FF - prefs.js: network.proxy.type - 0
FF - component: c:\documents and settings\owner\application

data\mozilla\firefox\profiles\1hs6df54.default\extensions\{3112ca9c-

de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\owner\application

data\mozilla\firefox\profiles\1hs6df54.default\extensions\{3112ca9c-

de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll
FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-

6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
FF - plugin: c:\program files\common files\research in

motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\google\update\1.3.21.123

\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1167637.dll
FF - plugin: c:\windows\system32

\macromed\flash\NPSWF32_11_5_502_135.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: !HIDDEN! 2008-01-01 22:30; {3112ca9c-de6d-4884-a869-

9855de68056c}; c:\program files\mozilla firefox\extensions\{3112ca9c-

de6d-4884-a869-9855de68056c}
.
---- FIREFOX POLICIES ----
FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
============= SERVICES / DRIVERS ===============
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2012-3-14 120152]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS

[2010-2-17 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS

[2010-2-17 67664]
R1 Start1Driver;Start1Driver;c:\windows\system32

\drivers\Start1Driver.SYS [2010-4-3 5120]
R2 !SASCORE;SAS Core Service;c:\program

files\superantispyware\SASCORE.EXE [2012-7-30 116608]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe

[2012-3-7 913144]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe

[2010-1-13 233472]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe

[2005-8-5 99328]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2010-1

-13 36608]
S0 DiagnosticScan;DiagnosticScan;c:\windows\system32

\drivers\DiagnosticScan.SYS [2010-4-3 17408]
S2 eLock2BurnerLockDriver;eLock2BurnerLockDriver;\??

\c:\windows\system32\elock2burnerlockdriver.sys -->

c:\windows\system32\eLock2BurnerLockDriver.sys [?]
S2 eLock2FSCTLDriver;eLock2FSCTLDriver;\??\c:\windows\system32

\elock2fsctldriver.sys --> c:\windows\system32\eLock2FSCTLDriver.sys

[?]
S2 NAVAPEL;NAVAPEL;\??\c:\program

files\symantec_client_security\symantec antivirus\navapel.sys -->

c:\program files\symantec_client_security\symantec

antivirus\NAVAPEL.SYS [?]
S3 audiobridge;Virtual Audio Bridge;c:\windows\system32

\drivers\aubridge.sys [2007-7-23 22528]
S3 NAVAP;NAVAP;\??\c:\progra~1\symant~1\symant~1\navap.sys -->

c:\progra~1\symant~1\symant~1\NAVAP.sys [?]
S3 NAVENG;NAVENG;\??\c:\progra~1\common~1\symant~1\virusd~1

\20101018.002\naveng.sys --> c:\progra~1\common~1\symant~1\virusd~1

\20101018.002\NAVENG.sys [?]
S3 NAVEX15;NAVEX15;\??\c:\progra~1\common~1\symant~1\virusd~1

\20101018.002\navex15.sys --> c:\progra~1\common~1\symant~1\virusd~1

\20101018.002\NAVEX15.sys [?]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2010

-2-17 12872]
S3 Symantec Core LC;Symantec Core LC;c:\program files\common

files\symantec shared\ccpd-lc\symlcsvc.exe [2007-12-3 1119888]
.
=============== Created Last 30 ================
.
2012-12-17 07:34:47 16363960 ----a-w-

c:\windows\system32\FlashPlayerInstaller.exe
.
==================== Find3M ====================
.
2013-01-08 19:55:38 530312 ----a-w- c:\windows\system32

\PerfStringBackup.TMP
2012-12-17 07:36:10 697272 ----a-w- c:\windows\system32

\FlashPlayerApp.exe
2012-12-17 07:36:06 73656 ----a-w- c:\windows\system32

\FlashPlayerCPLApp.cpl
2012-12-16 12:24:00 290560 ---ha-w- c:\windows\system32

\atmfd.dll
2012-11-13 01:25:12 1866368 ---ha-w- c:\windows\system32

\win32k.sys
2012-11-06 02:01:40 1371648 ---ha-w- c:\windows\system32

\msxml6.dll
2012-11-02 02:02:42 375296 ---ha-w- c:\windows\system32

\dpnet.dll
2012-10-31 11:33:26 81920 ----a-w- c:\windows\system32

\ieencode.dll
2012-10-31 11:33:26 667136 ----a-w- c:\windows\system32

\wininet.dll
2012-10-31 11:33:26 61952 ----a-w- c:\windows\system32

\tdc.ocx
2012-10-31 09:52:14 369664 ----a-w- c:\windows\system32

\html.iec
.
============= FINISH: 16:41:30.68 ===============


My virus is the Spy.Ursnif.A and its located in
c:\\WINDOWS\system32\winlogon.exe
just adding any critical information that I think will serve you guys well... if it doesn't, then Its because I'm a noob hahaha
thanks guys!

BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:38 PM

Posted 08 January 2013 - 08:36 PM

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us

  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.




These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 08 January 2013 - 09:41 PM

hey Gringo! thanks so much for your help!

here are the logs for what you told me.

security check:

Results of screen317's Security Check version 0.99.56
Windows XP Service Pack 3 x86
Internet Explorer 6 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
ESET Smart Security 5.2
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Out of date HijackThis installed!
SUPERAntiSpyware Free Edition
Malwarebytes Anti-Malware version 1.62.0.1300
HijackThis 2.0.2
CCleaner
Java™ 6 Update 37
Java version out of Date!
Adobe Flash Player 11.5.502.135
Adobe Reader 8 Adobe Reader out of Date!
Mozilla Firefox (17.0.1)
````````Process Check: objlist.exe by Laurent````````
ESET NOD32 Antivirus egui.exe
ESET NOD32 Antivirus ekrn.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 30% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````

heres the one for AdwCleaner[R1] the one that popped out after the scan.

# AdwCleaner v2.105 - Logfile created 01/08/2013 at 18:57:19
# Updated 08/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : owner - ACER-C28991BD48
# Boot Mode : Normal
# Running from : C:\Documents and Settings\owner\Desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{D08D9F98-1C78-4704-87E6-368B0023D831}
Key Found : HKU\S-1-5-21-4227920123-69581258-2356383507-1005\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v6.0.2900.5512

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\1hs6df54.default\prefs.js

Found : user_pref("extensions.opensearch@ask.com.install-event-fired", true);

*************************

AdwCleaner[R1].txt - [1457 octets] - [08/01/2013 18:57:19]

########## EOF - C:\AdwCleaner[R1].txt - [1517 octets] ##########

heres the one from Adwcleaner[s1]

# AdwCleaner v2.105 - Logfile created 01/08/2013 at 19:00:26
# Updated 08/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : owner - ACER-C28991BD48
# Boot Mode : Normal
# Running from : C:\Documents and Settings\owner\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{D08D9F98-1C78-4704-87E6-368B0023D831}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v6.0.2900.5512

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

File : C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\1hs6df54.default\prefs.js

C:\Documents and Settings\owner\Application Data\Mozilla\Firefox\Profiles\1hs6df54.default\user.js ... Deleted !

Deleted : user_pref("extensions.opensearch@ask.com.install-event-fired", true);

*************************

AdwCleaner[R1].txt - [1586 octets] - [08/01/2013 18:57:19]
AdwCleaner[R2].txt - [1646 octets] - [08/01/2013 18:59:48]
AdwCleaner[S1].txt - [1554 octets] - [08/01/2013 19:00:26]

########## EOF - C:\AdwCleaner[S1].txt - [1614 octets] ##########

And lastly, the roguekiller log (I had two that came out, this one is the first one)

RogueKiller V8.4.3 [Jan 8 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : owner [Admin rights]
Mode : Scan -- Date : 01/08/2013 19:19:37

Bad processes : 0

Registry Entries : 2
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowRecentDocs (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

Particular Files / Folders:

Driver : [LOADED]
SSDT[257] : NtTerminateProcess @ 0x805D22D8 -> HOOKED (\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS @ 0xEDF51640)

HOSTS File:
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost


MBR Check:

+++++ PhysicalDrive0: HTS541080G9AT00 +++++
--- User ---
[MBR] a860a57d78fa1fe81399f01f9c0fea35
[BSP] 4cdd229e0fb46ed595dba7a1ff87a910 : Acer tatooed MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 4996 Mo
1 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 10233405 | Size: 35408 Mo
2 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 82750815 | Size: 35910 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_01082013_02d1919.txt >>
RKreport[1]_S_01082013_02d1919.txt


this is the second report that I got from roguekiller

RogueKiller V8.4.3 [Jan 8 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : owner [Admin rights]
Mode : Remove -- Date : 01/08/2013 19:20:51

Bad processes : 0

Registry Entries : 2
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowRecentDocs (0) -> REPLACED (1)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Particular Files / Folders:

Driver : [LOADED]
SSDT[257] : NtTerminateProcess @ 0x805D22D8 -> HOOKED (\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS @ 0xEDF51640)

HOSTS File:
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost


MBR Check:

+++++ PhysicalDrive0: HTS541080G9AT00 +++++
--- User ---
[MBR] a860a57d78fa1fe81399f01f9c0fea35
[BSP] 4cdd229e0fb46ed595dba7a1ff87a910 : Acer tatooed MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 4996 Mo
1 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 10233405 | Size: 35408 Mo
2 - [XXXXXX] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 82750815 | Size: 35910 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_01082013_02d1920.txt >>
RKreport[1]_S_01082013_02d1919.txt ; RKreport[2]_D_01082013_02d1920.txt


Do your magic Gringo! :D

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:38 PM

Posted 08 January 2013 - 09:50 PM

Hello

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 09 January 2013 - 12:37 AM

Gringo,

I did all you told me,
disabled my antiviruses
ran combofix. it ran all levels, I believed it got to 50 or stage 50

however, when it restarted itself, it didnt give me a log.
But I did saw that my winlogon was infected and it got replaced.

The computer has been running excellent. I do not receive any pop ups from eset telling about spyursniff virus anymore. I'm guessing it got rid of the infected files.

My main question is, do you want me to run another combofix so I can try to get the log??

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:38 PM

Posted 09 January 2013 - 12:39 AM

Hello

I would like to see the report so lets see if we can find the report this way.

extra combofix report

  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box
C:\ComboFix.txt
  • click ok
  • copy and paste the report into this topic for me to review

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 09 January 2013 - 12:42 AM

its telling me the file does not exist or its spelled wrong.

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:38 PM

Posted 09 January 2013 - 12:59 AM

Hello

Ok lets try this, I want you to run combofix in safe mode but it is very important that when combofix reboots the computer for you to direct it back into safe mode so it can finish the scan.

Boot into Safe Mode

Reboot your computer in Safe Mode.
  • If the computer is running, shut down Windows, and then turn off the power.
  • Wait 30 seconds, and then turn the computer on.
  • Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
  • Ensure that the Safe Mode option is selected.
  • Press Enter. The computer then begins to start in Safe mode.
  • Login on your usual account.

after combofix has finished its scan please post the report back here.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 09 January 2013 - 07:05 PM

Hey Gringo,

I tried to do what you told me too.
I got into safe mode, however, when I logged into my account (in safe mode) and was about to use combofix, it shut down unexpectedly. I waited a while, tried again, but it didnt allow me too. I tried again this morning, I selected safe mode once again. It began loading the drivers saying something about partition 2 driver something on a black screen with white letters.
Any way, it stayed that way for about 3 minutes, then once again, shut down unexpectedly.

What do I do know?

the computer runs excellent. Eset does not give me a warning anymore. You tell me what I got to do Gringo. All ears.

#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:38 PM

Posted 09 January 2013 - 11:32 PM

Greetings

I want you to run these next,

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.



Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 10 January 2013 - 03:23 AM

Here is both logs that tdsskiller gave me

00:24:53.0250 0868 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
00:24:54.0062 0868 ============================================================
00:24:54.0062 0868 Current date / time: 2013/01/10 00:24:54.0062
00:24:54.0062 0868 SystemInfo:
00:24:54.0062 0868
00:24:54.0062 0868 OS Version: 5.1.2600 ServicePack: 3.0
00:24:54.0062 0868 Product type: Workstation
00:24:54.0062 0868 ComputerName: ACER-C28991BD48
00:24:54.0062 0868 UserName: owner
00:24:54.0062 0868 Windows directory: C:\WINDOWS
00:24:54.0062 0868 System windows directory: C:\WINDOWS
00:24:54.0062 0868 Processor architecture: Intel x86
00:24:54.0062 0868 Number of processors: 1
00:24:54.0062 0868 Page size: 0x1000
00:24:54.0062 0868 Boot type: Normal boot
00:24:54.0062 0868 ============================================================
00:24:56.0578 0868 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
00:24:56.0578 0868 ============================================================
00:24:56.0578 0868 \Device\Harddisk0\DR0:
00:24:56.0578 0868 MBR partitions:
00:24:56.0578 0868 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x9C263D, BlocksNum 0x4528722
00:24:56.0578 0868 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x4EEAD5F, BlocksNum 0x4623762
00:24:56.0578 0868 ============================================================
00:24:56.0609 0868 C: <-> \Device\Harddisk0\DR0\Partition1
00:24:56.0640 0868 D: <-> \Device\Harddisk0\DR0\Partition2
00:24:56.0703 0868 ============================================================
00:24:56.0703 0868 Initialize success
00:24:56.0703 0868 ============================================================
00:26:19.0546 2424 Deinitialize success


doing it in three parts, post was too long Gringo

#12 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 10 January 2013 - 03:26 AM

here is the second log from tdsskiller

00:30:27.0546 0212 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
00:30:28.0687 0212 ============================================================
00:30:28.0687 0212 Current date / time: 2013/01/10 00:30:28.0687
00:30:28.0687 0212 SystemInfo:
00:30:28.0687 0212
00:30:28.0687 0212 OS Version: 5.1.2600 ServicePack: 3.0
00:30:28.0687 0212 Product type: Workstation
00:30:28.0687 0212 ComputerName: ACER-C28991BD48
00:30:28.0687 0212 UserName: owner
00:30:28.0687 0212 Windows directory: C:\WINDOWS
00:30:28.0687 0212 System windows directory: C:\WINDOWS
00:30:28.0703 0212 Processor architecture: Intel x86
00:30:28.0703 0212 Number of processors: 1
00:30:28.0703 0212 Page size: 0x1000
00:30:28.0703 0212 Boot type: Normal boot
00:30:28.0703 0212 ============================================================
00:30:31.0156 0212 BG loaded
00:30:31.0937 0212 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
00:30:31.0953 0212 ============================================================
00:30:31.0953 0212 \Device\Harddisk0\DR0:
00:30:31.0953 0212 MBR partitions:
00:30:31.0953 0212 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x9C263D, BlocksNum 0x4528722
00:30:31.0953 0212 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x4EEAD5F, BlocksNum 0x4623762
00:30:31.0953 0212 ============================================================
00:30:32.0015 0212 C: <-> \Device\Harddisk0\DR0\Partition1
00:30:32.0031 0212 D: <-> \Device\Harddisk0\DR0\Partition2
00:30:32.0546 0212 ============================================================
00:30:32.0546 0212 Initialize success
00:30:32.0546 0212 ============================================================
00:32:59.0906 0808 ============================================================
00:32:59.0906 0808 Scan started
00:32:59.0906 0808 Mode: Manual; SigCheck; TDLFS;
00:32:59.0906 0808 ============================================================
00:33:19.0640 0808 ================ Scan system memory ========================
00:33:19.0640 0808 System memory - ok
00:33:19.0656 0808 ================ Scan services =============================
00:33:20.0796 0808 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
00:33:21.0218 0808 !SASCORE - ok
00:33:21.0421 0808 Abiosdsk - ok
00:33:21.0640 0808 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
00:33:33.0437 0808 abp480n5 - ok
00:33:33.0437 0808 AcerMemUsageCheckService - ok
00:33:33.0609 0808 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
00:33:34.0250 0808 ACPI - ok
00:33:34.0296 0808 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
00:33:34.0796 0808 ACPIEC - ok
00:33:35.0000 0808 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
00:33:35.0078 0808 AdobeFlashPlayerUpdateSvc - ok
00:33:35.0234 0808 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
00:33:35.0906 0808 adpu160m - ok
00:33:36.0031 0808 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
00:33:36.0671 0808 aec - ok
00:33:36.0796 0808 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
00:33:37.0140 0808 AFD - ok
00:33:37.0156 0808 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
00:33:37.0671 0808 agp440 - ok
00:33:37.0765 0808 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
00:33:38.0281 0808 agpCPQ - ok
00:33:38.0296 0808 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
00:33:38.0718 0808 Aha154x - ok
00:33:38.0890 0808 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
00:33:39.0593 0808 aic78u2 - ok
00:33:39.0640 0808 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
00:33:40.0078 0808 aic78xx - ok
00:33:40.0546 0808 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
00:33:40.0875 0808 Alerter - ok
00:33:40.0984 0808 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
00:33:41.0562 0808 ALG - ok
00:33:41.0609 0808 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
00:33:42.0187 0808 AliIde - ok
00:33:42.0203 0808 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
00:33:42.0734 0808 alim1541 - ok
00:33:42.0796 0808 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
00:33:43.0234 0808 amdagp - ok
00:33:43.0265 0808 [ FF8562F78B45A811C1EE23431622D4CC ] AmdK8 C:\WINDOWS\system32\DRIVERS\AmdK8.sys
00:33:43.0390 0808 AmdK8 - ok
00:33:43.0421 0808 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
00:33:43.0656 0808 amsint - ok
00:33:43.0984 0808 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
00:33:44.0343 0808 AppMgmt - ok
00:33:44.0656 0808 [ BAA6B3CC74A4377D063C5A92DD9C4098 ] AR5211 C:\WINDOWS\system32\DRIVERS\ar5211.sys
00:33:44.0859 0808 AR5211 - ok
00:33:45.0015 0808 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
00:33:45.0515 0808 Arp1394 - ok
00:33:45.0625 0808 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
00:33:46.0046 0808 asc - ok
00:33:46.0125 0808 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
00:33:46.0656 0808 asc3350p - ok
00:33:46.0812 0808 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
00:33:47.0453 0808 asc3550 - ok
00:33:47.0578 0808 [ B979979AB8027F7F53FB16EC4229B7DB ] Aspi32 C:\WINDOWS\system32\drivers\aspi32.sys
00:33:47.0656 0808 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
00:33:47.0656 0808 Aspi32 - detected UnsignedFile.Multi.Generic (1)
00:33:48.0046 0808 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
00:33:48.0125 0808 aspnet_state - ok
00:33:48.0203 0808 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:33:48.0718 0808 AsyncMac - ok
00:33:48.0765 0808 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
00:33:49.0140 0808 atapi - ok
00:33:49.0171 0808 Atdisk - ok
00:33:49.0937 0808 [ B2906F9E62A6AC6AD7F5F35DE9656098 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
00:33:50.0375 0808 Ati HotKey Poller - ok
00:33:51.0093 0808 [ 669A8717DBE1A6B03898A190E4708B2F ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
00:33:51.0359 0808 ati2mtag - ok
00:33:51.0500 0808 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
00:33:51.0843 0808 Atmarpc - ok
00:33:51.0953 0808 [ 3C391503E59C88DA73B8C74097147BC9 ] audiobridge C:\WINDOWS\system32\DRIVERS\aubridge.sys
00:33:52.0031 0808 audiobridge ( UnsignedFile.Multi.Generic ) - warning
00:33:52.0031 0808 audiobridge - detected UnsignedFile.Multi.Generic (1)
00:33:53.0578 0808 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
00:33:54.0031 0808 AudioSrv - ok
00:33:54.0078 0808 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
00:33:54.0906 0808 audstub - ok
00:33:55.0218 0808 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
00:33:55.0656 0808 Beep - ok
00:33:59.0031 0808 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
00:33:59.0625 0808 BITS - ok
00:33:59.0937 0808 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
00:34:00.0109 0808 Browser - ok
00:34:00.0171 0808 [ 248DFA5762DDE38DFDDBBD44149E9D7A ] BVRPMPR5 C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
00:34:00.0312 0808 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - warning
00:34:00.0312 0808 BVRPMPR5 - detected UnsignedFile.Multi.Generic (1)
00:34:00.0859 0808 catchme - ok
00:34:00.0937 0808 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
00:34:01.0484 0808 cbidf - ok
00:34:01.0531 0808 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
00:34:02.0000 0808 cbidf2k - ok
00:34:02.0093 0808 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
00:34:02.0546 0808 CCDECODE - ok
00:34:02.0578 0808 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
00:34:02.0765 0808 cd20xrnt - ok
00:34:02.0875 0808 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
00:34:03.0281 0808 Cdaudio - ok
00:34:03.0312 0808 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
00:34:03.0671 0808 Cdfs - ok
00:34:03.0718 0808 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
00:34:03.0796 0808 Cdrom - ok
00:34:03.0828 0808 Changer - ok
00:34:04.0421 0808 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
00:34:04.0781 0808 CiSvc - ok
00:34:04.0937 0808 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
00:34:05.0265 0808 ClipSrv - ok
00:34:05.0437 0808 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:34:05.0500 0808 clr_optimization_v2.0.50727_32 - ok
00:34:05.0562 0808 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
00:34:05.0937 0808 CmBatt - ok
00:34:05.0968 0808 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
00:34:06.0375 0808 CmdIde - ok
00:34:06.0406 0808 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
00:34:06.0750 0808 Compbatt - ok
00:34:06.0875 0808 COMSysApp - ok
00:34:06.0937 0808 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
00:34:07.0375 0808 Cpqarray - ok
00:34:07.0578 0808 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
00:34:07.0921 0808 CryptSvc - ok
00:34:07.0984 0808 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
00:34:08.0406 0808 dac2w2k - ok
00:34:08.0453 0808 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
00:34:08.0890 0808 dac960nt - ok
00:34:09.0109 0808 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
00:34:09.0359 0808 DcomLaunch - ok
00:34:09.0437 0808 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
00:34:09.0765 0808 Dhcp - ok
00:34:09.0875 0808 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
00:34:10.0171 0808 Disk - ok
00:34:10.0218 0808 [ 08D30AF92C270F2E76787C81589DBAD6 ] DKbFltr C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
00:34:10.0296 0808 DKbFltr - ok
00:34:10.0406 0808 dmadmin - ok
00:34:10.0593 0808 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
00:34:11.0062 0808 dmboot - ok
00:34:11.0109 0808 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
00:34:11.0437 0808 dmio - ok
00:34:11.0453 0808 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
00:34:11.0875 0808 dmload - ok
00:34:12.0031 0808 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
00:34:12.0328 0808 dmserver - ok
00:34:12.0406 0808 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
00:34:12.0718 0808 DMusic - ok
00:34:12.0890 0808 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
00:34:13.0031 0808 Dnscache - ok
00:34:13.0328 0808 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
00:34:13.0687 0808 Dot3svc - ok
00:34:13.0734 0808 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
00:34:14.0109 0808 dpti2o - ok
00:34:14.0187 0808 [ 5BEB3BDAECC6C9348FC0D169CE65ECC6 ] DritekPortIO C:\PROGRA~1\LAUNCH~1\DPortIO.sys
00:34:14.0203 0808 DritekPortIO ( UnsignedFile.Multi.Generic ) - warning
00:34:14.0203 0808 DritekPortIO - detected UnsignedFile.Multi.Generic (1)
00:34:14.0250 0808 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
00:34:14.0578 0808 drmkaud - ok
00:34:14.0687 0808 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
00:34:25.0765 0808 eamon - ok
00:34:25.0859 0808 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
00:34:26.0218 0808 EapHost - ok
00:34:26.0296 0808 [ 5412ED24FFFCA64E2F0168399B86C952 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
00:34:26.0343 0808 ehdrv - ok
00:34:26.0453 0808 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
00:34:26.0562 0808 ehRecvr - ok
00:34:26.0609 0808 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
00:34:26.0687 0808 ehSched - ok
00:34:26.0812 0808 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
00:34:26.0953 0808 ekrn - ok
00:34:27.0109 0808 eLock2BurnerLockDriver - ok
00:34:27.0250 0808 eLock2FSCTLDriver - ok
00:34:27.0343 0808 [ 5AEE9EEDCFBF2B0F9DEC53C27EE722A3 ] EMSCR C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
00:34:27.0421 0808 EMSCR - ok
00:34:27.0484 0808 [ 774BABCB1144513DC86992003740B774 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
00:34:27.0531 0808 epfw - ok
00:34:27.0609 0808 [ 4B86DA2C58063B647577CD669CFFAEEB ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
00:34:27.0640 0808 Epfwndis - ok
00:34:27.0687 0808 [ 1B36748EA9E25549EBE5D8EA105BD981 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
00:34:27.0718 0808 epfwtdi - ok
00:34:27.0937 0808 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
00:34:28.0265 0808 ERSvc - ok
00:34:28.0312 0808 [ 8E56AB21D10C368029CEA57DE47D79C2 ] ESDCR C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
00:34:28.0375 0808 ESDCR - ok
00:34:28.0406 0808 [ 0A58FADE5E12D3A611427292073362CB ] ESMCR C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
00:34:28.0484 0808 ESMCR - ok
00:34:28.0593 0808 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
00:34:28.0656 0808 Eventlog - ok
00:34:28.0750 0808 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
00:34:28.0812 0808 EventSystem - ok
00:34:28.0859 0808 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
00:34:29.0171 0808 Fastfat - ok
00:34:29.0281 0808 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
00:34:29.0343 0808 FastUserSwitchingCompatibility - ok
00:34:29.0562 0808 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
00:34:29.0937 0808 Fax - ok
00:34:29.0968 0808 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
00:34:30.0265 0808 Fdc - ok
00:34:30.0312 0808 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
00:34:30.0640 0808 Fips - ok
00:34:30.0671 0808 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
00:34:30.0968 0808 Flpydisk - ok
00:34:31.0000 0808 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
00:34:31.0328 0808 FltMgr - ok
00:34:31.0484 0808 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
00:34:31.0562 0808 FontCache3.0.0.0 - ok
00:34:31.0687 0808 [ 790A4CA68F44BE35967B3DF61F3E4675 ] FsUsbExDisk C:\WINDOWS\system32\FsUsbExDisk.SYS
00:34:31.0687 0808 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
00:34:31.0687 0808 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
00:34:31.0843 0808 [ D3F9205CC4CB07553F2F9472C767EA87 ] FsUsbExService C:\WINDOWS\system32\FsUsbExService.Exe
00:34:31.0906 0808 FsUsbExService ( UnsignedFile.Multi.Generic ) - warning
00:34:31.0906 0808 FsUsbExService - detected UnsignedFile.Multi.Generic (1)
00:34:31.0937 0808 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:34:32.0328 0808 Fs_Rec - ok
00:34:32.0375 0808 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
00:34:32.0718 0808 Ftdisk - ok
00:34:32.0828 0808 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
00:34:33.0109 0808 Gpc - ok
00:34:33.0250 0808 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
00:34:33.0296 0808 gupdate - ok
00:34:33.0328 0808 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
00:34:33.0359 0808 gupdatem - ok
00:34:33.0453 0808 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
00:34:33.0515 0808 gusvc - ok
00:34:33.0546 0808 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
00:34:33.0859 0808 HDAudBus - ok
00:34:33.0953 0808 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
00:34:34.0250 0808 helpsvc - ok
00:34:34.0375 0808 HidServ - ok
00:34:34.0421 0808 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
00:34:34.0765 0808 HidUsb - ok
00:34:34.0921 0808 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
00:34:35.0234 0808 hkmsvc - ok
00:34:35.0281 0808 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
00:34:35.0703 0808 hpn - ok
00:34:35.0828 0808 [ 358AE1D350E05F5C45F65DCA0BE6BA40 ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
00:34:35.0906 0808 HSFHWAZL - ok
00:34:36.0046 0808 [ C17B97F331A08BED979961245331413D ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
00:34:36.0156 0808 HSF_DPV - ok
00:34:36.0218 0808 [ 83F221DDAE2D2353B41F0227E6E411D7 ] HSXHWAZL C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
00:34:36.0281 0808 HSXHWAZL - ok
00:34:36.0359 0808 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
00:34:36.0406 0808 HTTP - ok
00:34:36.0531 0808 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
00:34:36.0828 0808 HTTPFilter - ok
00:34:36.0859 0808 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
00:34:37.0156 0808 i2omgmt - ok
00:34:37.0203 0808 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
00:34:37.0515 0808 i2omp - ok
00:34:37.0562 0808 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
00:34:37.0875 0808 i8042prt - ok
00:34:38.0093 0808 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
00:34:38.0218 0808 idsvc - ok
00:34:38.0250 0808 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
00:34:38.0625 0808 Imapi - ok
00:34:38.0875 0808 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
00:34:39.0234 0808 ImapiService - ok
00:34:39.0312 0808 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
00:34:39.0750 0808 ini910u - ok
00:34:39.0828 0808 [ 4D8D5B1C895EA0F2A721B98A7CE198F1 ] int15 C:\WINDOWS\system32\drivers\int15.sys
00:34:39.0875 0808 int15 ( UnsignedFile.Multi.Generic ) - warning
00:34:39.0875 0808 int15 - detected UnsignedFile.Multi.Generic (1)
00:34:40.0281 0808 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
00:34:40.0750 0808 IntcAzAudAddService - ok
00:34:40.0859 0808 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
00:34:41.0140 0808 IntelIde - ok
00:34:41.0187 0808 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
00:34:41.0500 0808 Ip6Fw - ok
00:34:41.0546 0808 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:34:41.0937 0808 IpFilterDriver - ok
00:34:41.0984 0808 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
00:34:42.0296 0808 IpInIp - ok
00:34:42.0343 0808 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
00:34:42.0687 0808 IpNat - ok
00:34:42.0734 0808 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
00:34:43.0062 0808 IPSec - ok
00:34:43.0109 0808 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
00:34:43.0421 0808 irda - ok
00:34:43.0468 0808 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
00:34:43.0765 0808 IRENUM - ok
00:34:43.0921 0808 [ 49CC4533CE897CB2E93C1E84A818FDE5 ] Irmon C:\WINDOWS\System32\irmon.dll
00:34:44.0218 0808 Irmon - ok
00:34:44.0281 0808 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
00:34:44.0437 0808 irsir - ok
00:34:44.0500 0808 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
00:34:44.0781 0808 isapnp - ok
00:34:44.0921 0808 [ 691B9B7C0CC1653732717D292D6B305D ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
00:34:44.0968 0808 JavaQuickStarterService - ok
00:34:45.0015 0808 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
00:34:45.0312 0808 Kbdclass - ok
00:34:45.0359 0808 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
00:34:45.0671 0808 kmixer - ok
00:34:45.0718 0808 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
00:34:45.0843 0808 KSecDD - ok
00:34:45.0953 0808 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
00:34:46.0031 0808 lanmanserver - ok
00:34:46.0203 0808 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
00:34:46.0281 0808 lanmanworkstation - ok
00:34:46.0312 0808 lbrtfdc - ok
00:34:46.0421 0808 [ AB8134127F786C9603817B5318DCEEAA ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
00:34:46.0453 0808 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
00:34:46.0453 0808 LightScribeService - detected UnsignedFile.Multi.Generic (1)
00:34:46.0562 0808 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
00:34:46.0843 0808 LmHosts - ok
00:34:46.0937 0808 [ A1857FBB9B4930EEB2FD92386C45C529 ] LVRS C:\WINDOWS\system32\DRIVERS\lvrs.sys
00:34:46.0984 0808 LVRS - ok
00:34:47.0453 0808 [ 3703406AF0726BADD24C5E552493E5B1 ] LVUVC C:\WINDOWS\system32\DRIVERS\lvuvc.sys
00:34:47.0859 0808 LVUVC - ok
00:34:48.0000 0808 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
00:34:48.0078 0808 McrdSvc - ok
00:34:48.0140 0808 [ D7010580BF4E45D5E793A1FE75758C69 ] MDC8021X C:\WINDOWS\system32\DRIVERS\mdc8021x.sys
00:34:48.0171 0808 MDC8021X ( UnsignedFile.Multi.Generic ) - warning
00:34:48.0171 0808 MDC8021X - detected UnsignedFile.Multi.Generic (1)
00:34:48.0218 0808 [ 74F4372AF97A587ECEC527EC34955712 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
00:34:48.0265 0808 mdmxsdk - ok
00:34:48.0343 0808 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
00:34:48.0656 0808 Messenger - ok
00:34:48.0843 0808 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
00:34:48.0875 0808 MHN ( UnsignedFile.Multi.Generic ) - warning
00:34:48.0875 0808 MHN - detected UnsignedFile.Multi.Generic (1)
00:34:48.0906 0808 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
00:34:48.0937 0808 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
00:34:48.0937 0808 MHNDRV - detected UnsignedFile.Multi.Generic (1)
00:34:49.0078 0808 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
00:34:49.0125 0808 Microsoft Office Groove Audit Service - ok
00:34:49.0171 0808 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
00:34:49.0562 0808 mnmdd - ok
00:34:49.0640 0808 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
00:34:49.0906 0808 mnmsrvc - ok
00:34:49.0968 0808 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
00:34:50.0250 0808 Modem - ok
00:34:50.0296 0808 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
00:34:50.0593 0808 Mouclass - ok
00:34:50.0656 0808 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
00:34:51.0015 0808 mouhid - ok
00:34:51.0062 0808 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
00:34:51.0343 0808 MountMgr - ok
00:34:51.0437 0808 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
00:34:51.0546 0808 MozillaMaintenance - ok
00:34:51.0578 0808 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
00:34:52.0000 0808 mraid35x - ok
00:34:52.0046 0808 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
00:34:52.0359 0808 MRxDAV - ok
00:34:52.0453 0808 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:34:52.0546 0808 MRxSmb - ok
00:34:52.0687 0808 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
00:34:53.0000 0808 MSDTC - ok
00:34:53.0062 0808 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
00:34:53.0359 0808 Msfs - ok
00:34:53.0531 0808 MSIServer - ok
00:34:53.0593 0808 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:34:53.0875 0808 MSKSSRV - ok
00:34:53.0906 0808 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:34:54.0203 0808 MSPCLOCK - ok
00:34:54.0250 0808 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
00:34:54.0562 0808 MSPQM - ok
00:34:54.0656 0808 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
00:34:54.0953 0808 mssmbios - ok
00:34:55.0015 0808 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
00:34:55.0312 0808 MSTEE - ok
00:34:55.0375 0808 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
00:34:55.0421 0808 Mup - ok
00:34:55.0500 0808 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
00:34:55.0812 0808 NABTSFEC - ok
00:34:55.0984 0808 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
00:34:56.0312 0808 napagent - ok
00:34:56.0343 0808 NAVAP - ok
00:34:56.0359 0808 NAVAPEL - ok
00:34:56.0468 0808 NAVENG - ok
00:34:56.0515 0808 NAVEX15 - ok
00:34:56.0750 0808 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
00:34:57.0046 0808 NDIS - ok
00:34:57.0109 0808 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
00:34:57.0437 0808 NdisIP - ok
00:34:57.0515 0808 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:34:57.0625 0808 NdisTapi - ok
00:34:57.0687 0808 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:34:57.0968 0808 Ndisuio - ok
00:34:58.0031 0808 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:34:58.0343 0808 NdisWan - ok
00:34:58.0375 0808 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
00:34:58.0437 0808 NDProxy - ok
00:34:58.0484 0808 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
00:34:58.0828 0808 NetBIOS - ok
00:34:58.0906 0808 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
00:34:59.0234 0808 NetBT - ok
00:34:59.0359 0808 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
00:34:59.0671 0808 NetDDE - ok
00:34:59.0687 0808 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
00:35:00.0015 0808 NetDDEdsdm - ok
00:35:00.0093 0808 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
00:35:00.0390 0808 Netlogon - ok
00:35:00.0515 0808 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
00:35:00.0859 0808 Netman - ok
00:35:01.0000 0808 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:35:01.0046 0808 NetTcpPortSharing - ok
00:35:01.0140 0808 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
00:35:01.0437 0808 NIC1394 - ok
00:35:01.0656 0808 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
00:35:01.0703 0808 Nla - ok
00:35:01.0750 0808 [ 1E421A6BCF2203CC61B821ADA9DE878B ] nm C:\WINDOWS\system32\DRIVERS\NMnt.sys
00:35:02.0078 0808 nm - ok
00:35:02.0156 0808 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
00:35:02.0484 0808 Npfs - ok
00:35:02.0609 0808 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
00:35:02.0953 0808 Ntfs - ok
00:35:03.0015 0808 [ 7F1C1F78D709C4A54CBB46EDE7E0B48D ] NTIDrvr C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys
00:35:03.0031 0808 NTIDrvr ( UnsignedFile.Multi.Generic ) - warning
00:35:03.0031 0808 NTIDrvr - detected UnsignedFile.Multi.Generic (1)
00:35:03.0093 0808 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
00:35:03.0406 0808 NtLmSsp - ok
00:35:03.0687 0808 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
00:35:04.0015 0808 NtmsSvc - ok
00:35:04.0062 0808 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
00:35:04.0500 0808 Null - ok
00:35:04.0562 0808 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
00:35:05.0031 0808 NwlnkFlt - ok
00:35:05.0062 0808 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
00:35:05.0453 0808 NwlnkFwd - ok
00:35:05.0640 0808 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:35:05.0718 0808 odserv - ok
00:35:05.0765 0808 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
00:35:06.0062 0808 ohci1394 - ok
00:35:06.0140 0808 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:35:06.0218 0808 ose - ok
00:35:06.0281 0808 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\drivers\Parport.sys
00:35:06.0609 0808 Parport - ok
00:35:06.0640 0808 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
00:35:06.0937 0808 PartMgr - ok
00:35:07.0000 0808 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
00:35:07.0359 0808 ParVdm - ok
00:35:07.0421 0808 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
00:35:07.0750 0808 PCI - ok
00:35:07.0781 0808 PCIDump - ok
00:35:07.0812 0808 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
00:35:08.0218 0808 PCIIde - ok
00:35:08.0281 0808 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
00:35:08.0578 0808 Pcmcia - ok
00:35:08.0609 0808 PDCOMP - ok
00:35:08.0656 0808 PDFRAME - ok
00:35:08.0687 0808 PDRELI - ok
00:35:08.0734 0808 PDRFRAME - ok
00:35:08.0765 0808 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
00:35:09.0140 0808 perc2 - ok
00:35:09.0187 0808 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
00:35:09.0593 0808 perc2hib - ok
00:35:09.0750 0808 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
00:35:09.0796 0808 PlugPlay - ok
00:35:09.0875 0808 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
00:35:10.0156 0808 PolicyAgent - ok
00:35:10.0203 0808 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:35:10.0515 0808 PptpMiniport - ok
00:35:10.0562 0808 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
00:35:10.0859 0808 Processor - ok
00:35:10.0937 0808 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
00:35:11.0234 0808 ProtectedStorage - ok
00:35:11.0265 0808 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
00:35:11.0578 0808 PSched - ok
00:35:11.0609 0808 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
00:35:11.0968 0808 Ptilink - ok
00:35:12.0000 0808 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
00:35:12.0046 0808 PxHelp20 - ok
00:35:12.0078 0808 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
00:35:12.0468 0808 ql1080 - ok
00:35:12.0515 0808 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
00:35:12.0843 0808 Ql10wnt - ok
00:35:12.0906 0808 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
00:35:13.0250 0808 ql12160 - ok
00:35:13.0281 0808 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
00:35:13.0625 0808 ql1240 - ok
00:35:13.0671 0808 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
00:35:14.0000 0808 ql1280 - ok
00:35:14.0031 0808 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:35:14.0375 0808 RasAcd - ok
00:35:14.0500 0808 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
00:35:14.0812 0808 RasAuto - ok
00:35:14.0859 0808 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
00:35:15.0015 0808 Rasirda - ok
00:35:15.0046 0808 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:35:15.0359 0808 Rasl2tp - ok
00:35:15.0515 0808 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
00:35:15.0843 0808 RasMan - ok
00:35:15.0875 0808 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:35:16.0171 0808 RasPppoe - ok
00:35:16.0218 0808 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
00:35:16.0546 0808 Raspti - ok
00:35:16.0656 0808 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:35:16.0953 0808 Rdbss - ok
00:35:16.0984 0808 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
00:35:17.0328 0808 RDPCDD - ok
00:35:17.0406 0808 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
00:35:17.0750 0808 rdpdr - ok
00:35:17.0890 0808 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
00:35:17.0968 0808 RDPWD - ok
00:35:18.0078 0808 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
00:35:18.0390 0808 RDSessMgr - ok
00:35:18.0453 0808 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
00:35:18.0765 0808 redbook - ok
00:35:18.0984 0808 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
00:35:19.0296 0808 RemoteAccess - ok
00:35:19.0375 0808 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
00:35:19.0703 0808 RemoteRegistry - ok
00:35:19.0781 0808 [ 616EAC1B0E48B236A5A9B8AE07FDB81C ] RimUsb C:\WINDOWS\system32\Drivers\RimUsb.sys
00:35:20.0078 0808 RimUsb - ok
00:35:20.0140 0808 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
00:35:20.0218 0808 RimVSerPort - ok
00:35:20.0250 0808 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
00:35:20.0640 0808 ROOTMODEM - ok
00:35:20.0781 0808 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
00:35:21.0093 0808 RpcLocator - ok
00:35:21.0218 0808 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
00:35:21.0296 0808 RpcSs - ok
00:35:21.0375 0808 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
00:35:21.0750 0808 RSVP - ok
00:35:21.0828 0808 [ 911E07056B865760C0762F6221145999 ] RTL8023xp C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
00:35:21.0968 0808 RTL8023xp - ok
00:35:22.0062 0808 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
00:35:22.0359 0808 SamSs - ok
00:35:22.0453 0808 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
00:35:22.0484 0808 SASDIFSV - ok
00:35:22.0562 0808 [ 7CE61C25C159F50F9EAF6D77FC83FA35 ] SASENUM C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
00:35:22.0609 0808 SASENUM - ok
00:35:22.0640 0808 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
00:35:22.0703 0808 SASKUTIL - ok
00:35:22.0843 0808 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
00:35:23.0171 0808 SCardSvr - ok
00:35:23.0281 0808 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
00:35:23.0609 0808 Schedule - ok
00:35:23.0687 0808 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
00:35:23.0984 0808 sdbus - ok
00:35:24.0078 0808 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
00:35:24.0375 0808 Secdrv - ok
00:35:24.0531 0808 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
00:35:24.0859 0808 seclogon - ok
00:35:24.0937 0808 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
00:35:25.0234 0808 SENS - ok
00:35:25.0281 0808 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
00:35:25.0609 0808 Serial - ok
00:35:25.0703 0808 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
00:35:26.0015 0808 Sfloppy - ok
00:35:26.0140 0808 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
00:35:26.0656 0808 SharedAccess - ok
00:35:26.0750 0808 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:35:26.0796 0808 ShellHWDetection - ok
00:35:26.0828 0808 Simbad - ok
00:35:26.0859 0808 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
00:35:27.0171 0808 sisagp - ok
00:35:27.0234 0808 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
00:35:27.0359 0808 SLIP - ok
00:35:27.0421 0808 [ 62556D170F22C43A544481E4EE16D2E2 ] SMCIRDA C:\WINDOWS\system32\DRIVERS\smcirda.sys
00:35:27.0484 0808 SMCIRDA - ok
00:35:27.0531 0808 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
00:35:27.0703 0808 Sparrow - ok
00:35:27.0843 0808 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
00:35:28.0109 0808 splitter - ok
00:35:28.0250 0808 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
00:35:28.0328 0808 Spooler - ok
00:35:28.0437 0808 [ 71E276F6D189413266EA22171806597B ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
00:35:28.0437 0808 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B
00:35:28.0437 0808 sptd ( LockedFile.Multi.Generic ) - warning
00:35:28.0437 0808 sptd - detected LockedFile.Multi.Generic (1)
00:35:28.0484 0808 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
00:35:28.0781 0808 sr - ok
00:35:28.0921 0808 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
00:35:29.0218 0808 srservice - ok
00:35:29.0296 0808 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
00:35:29.0390 0808 Srv - ok
00:35:29.0546 0808 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
00:35:29.0828 0808 SSDPSRV - ok
00:35:29.0906 0808 [ A9573045BAA16EAB9B1085205B82F1ED ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys
00:35:30.0218 0808 StillCam - ok
00:35:30.0390 0808 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
00:35:30.0734 0808 stisvc - ok
00:35:30.0828 0808 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
00:35:30.0937 0808 streamip - ok
00:35:30.0984 0808 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
00:35:31.0281 0808 swenum - ok
00:35:31.0343 0808 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
00:35:31.0640 0808 swmidi - ok
00:35:31.0859 0808 SwPrv - ok
00:35:32.0125 0808 [ 2DCEF866D958573DE3D9960CD72E9A0C ] Symantec Core LC C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
00:35:32.0281 0808 Symantec Core LC - ok
00:35:32.0328 0808 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
00:35:32.0656 0808 symc810 - ok
00:35:32.0687 0808 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
00:35:33.0046 0808 symc8xx - ok
00:35:33.0109 0808 [ B226F8A4D780ACDF76145B58BB791D5B ] symlcbrd C:\WINDOWS\system32\drivers\symlcbrd.sys
00:35:33.0140 0808 symlcbrd - ok
00:35:33.0171 0808 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
00:35:33.0562 0808 sym_hi - ok
00:35:33.0609 0808 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
00:35:33.0937 0808 sym_u3 - ok
00:35:34.0000 0808 [ 66F680409FC3BDDF62741E3E920A8454 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
00:35:34.0078 0808 SynTP - ok
00:35:34.0140 0808 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
00:35:34.0421 0808 sysaudio - ok
00:35:34.0578 0808 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
00:35:34.0921 0808 SysmonLog - ok
00:35:35.0062 0808 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
00:35:35.0406 0808 TapiSrv - ok
00:35:35.0531 0808 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:35:35.0609 0808 Tcpip - ok
00:35:35.0687 0808 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
00:35:36.0000 0808 TDPIPE - ok
00:35:36.0031 0808 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
00:35:36.0359 0808 TDTCP - ok
00:35:36.0421 0808 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
00:35:36.0718 0808 TermDD - ok
00:35:36.0828 0808 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
00:35:37.0125 0808 TermService - ok
00:35:37.0234 0808 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
00:35:37.0265 0808 Themes - ok
00:35:37.0390 0808 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
00:35:37.0703 0808 TlntSvr - ok
00:35:37.0812 0808 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
00:35:38.0109 0808 TosIde - ok
00:35:38.0265 0808 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
00:35:38.0609 0808 TrkWks - ok
00:35:38.0671 0808 [ 97DD70FECA64FB4F63DE7BB7E66A80B1 ] tvicport C:\WINDOWS\system32\drivers\tvicport.sys
00:35:38.0687 0808 tvicport ( UnsignedFile.Multi.Generic ) - warning
00:35:38.0687 0808 tvicport - detected UnsignedFile.Multi.Generic (1)
00:35:38.0734 0808 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
00:35:39.0031 0808 Udfs - ok
00:35:39.0062 0808 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
00:35:39.0218 0808 ultra - ok
00:35:39.0343 0808 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
00:35:39.0671 0808 Update - ok
00:35:39.0828 0808 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
00:35:40.0109 0808 upnphost - ok
00:35:40.0281 0808 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
00:35:40.0609 0808 UPS - ok
00:35:40.0703 0808 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
00:35:41.0015 0808 usbaudio - ok
00:35:41.0062 0808 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
00:35:41.0203 0808 usbccgp - ok
00:35:41.0296 0808 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
00:35:41.0609 0808 usbehci - ok
00:35:41.0671 0808 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
00:35:41.0968 0808 usbhub - ok
00:35:42.0031 0808 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
00:35:42.0343 0808 usbohci - ok
00:35:42.0421 0808 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
00:35:42.0734 0808 usbprint - ok
00:35:42.0812 0808 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
00:35:43.0109 0808 usbscan - ok
00:35:43.0203 0808 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
00:35:43.0531 0808 USBSTOR - ok
00:35:43.0609 0808 [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys
00:35:43.0906 0808 usbvideo - ok
00:35:44.0015 0808 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
00:35:44.0281 0808 VgaSave - ok
00:35:44.0343 0808 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
00:35:44.0640 0808 viaagp - ok
00:35:44.0671 0808 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
00:35:44.0984 0808 ViaIde - ok
00:35:45.0046 0808 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
00:35:45.0328 0808 VolSnap - ok
00:35:45.0359 0808 vpnva - ok
00:35:45.0546 0808 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
00:35:45.0843 0808 VSS - ok
00:35:45.0953 0808 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
00:35:46.0250 0808 W32Time - ok
00:35:46.0312 0808 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:35:46.0625 0808 Wanarp - ok
00:35:46.0703 0808 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
00:35:46.0781 0808 Wdf01000 - ok
00:35:46.0812 0808 WDICA - ok
00:35:46.0875 0808 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
00:35:47.0171 0808 wdmaud - ok
00:35:47.0281 0808 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
00:35:47.0609 0808 WebClient - ok
00:35:47.0718 0808 [ 6F25B08EBBAC9E02E6A0829F2C28999B ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
00:35:47.0812 0808 winachsf - ok
00:35:47.0906 0808 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
00:35:48.0234 0808 winmgmt - ok
00:35:48.0312 0808 [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
00:35:48.0343 0808 WinUSB - ok
00:35:48.0484 0808 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
00:35:48.0578 0808 WmdmPmSN - ok
00:35:48.0687 0808 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
00:35:48.0781 0808 Wmi - ok
00:35:48.0859 0808 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
00:35:49.0140 0808 WmiAcpi - ok
00:35:49.0218 0808 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
00:35:49.0515 0808 WmiApSrv - ok
00:35:49.0734 0808 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
00:35:49.0843 0808 WMPNetworkSvc - ok
00:35:49.0859 0808 WMZuneComm - ok
00:35:49.0937 0808 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
00:35:49.0984 0808 WpdUsb - ok
00:35:50.0015 0808 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
00:35:50.0359 0808 WS2IFSL - ok
00:35:50.0468 0808 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
00:35:50.0765 0808 wscsvc - ok
00:35:50.0906 0808 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
00:35:51.0187 0808 WSTCODEC - ok
00:35:51.0375 0808 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
00:35:51.0671 0808 wuauserv - ok
00:35:51.0734 0808 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
00:35:51.0796 0808 WudfPf - ok
00:35:51.0875 0808 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
00:35:51.0921 0808 WUDFRd - ok
00:35:52.0000 0808 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
00:35:52.0046 0808 WudfSvc - ok
00:35:52.0187 0808 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
00:35:52.0484 0808 WZCSVC - ok
00:35:52.0718 0808 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
00:35:53.0046 0808 xmlprov - ok
00:35:53.0234 0808 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
00:35:53.0312 0808 YahooAUService - ok
00:35:53.0375 0808 [ FBE1F182E13596B1E4E0BAC89DD8BCEC ] YMIDUSB C:\WINDOWS\system32\Drivers\ymidusb.sys
00:35:53.0406 0808 YMIDUSB ( UnsignedFile.Multi.Generic ) - warning
00:35:53.0406 0808 YMIDUSB - detected UnsignedFile.Multi.Generic (1)
00:35:53.0468 0808 [ 40AC8590CC9006DBB99FFCB37879D4C6 ] zntport C:\WINDOWS\system32\drivers\zntport.sys
00:35:53.0484 0808 zntport ( UnsignedFile.Multi.Generic ) - warning
00:35:53.0484 0808 zntport - detected UnsignedFile.Multi.Generic (1)
00:35:53.0546 0808 [ 337B9607F041B77824411750069AFF2D ] zumbus C:\WINDOWS\system32\DRIVERS\zumbus.sys
00:35:53.0593 0808 zumbus - ok
00:35:53.0718 0808 [ 7F2AC17F35667661E1F9B8D4AE7CB447 ] ZuneBusEnum C:\WINDOWS\system32\ZuneBusEnum.exe
00:35:53.0765 0808 ZuneBusEnum - ok
00:35:53.0781 0808 ZuneNetworkSvc - ok
00:35:53.0937 0808 [ 945EBA97CB6C85F5BAEA4DD2E8410C81 ] ZuneWlanCfgSvc C:\WINDOWS\system32\ZuneWlanCfgSvc.exe
00:35:54.0015 0808 ZuneWlanCfgSvc - ok
00:35:54.0046 0808 ================ Scan global ===============================
00:35:54.0390 0808 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
00:35:54.0687 0808 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
00:35:54.0906 0808 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
00:35:55.0031 0808 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
00:35:55.0031 0808 [Global] - ok
00:35:55.0046 0808 ================ Scan MBR ==================================
00:35:55.0062 0808 [ 99852D5C3A78447C3D6D82B6155FE848 ] \Device\Harddisk0\DR0
00:36:05.0671 0808 \Device\Harddisk0\DR0 - ok
00:36:05.0671 0808 ================ Scan VBR ==================================
00:36:05.0703 0808 [ 5E9550563B1BF84D46733F1280F9C100 ] \Device\Harddisk0\DR0\Partition1
00:36:05.0718 0808 \Device\Harddisk0\DR0\Partition1 - ok
00:36:05.0750 0808 [ CE1E419A6D0704F1A6488455606E219E ] \Device\Harddisk0\DR0\Partition2
00:36:05.0750 0808 \Device\Harddisk0\DR0\Partition2 - ok
00:36:05.0750 0808 ================ Scan active images ========================
00:36:05.0765 0808 [ FF8562F78B45A811C1EE23431622D4CC ] C:\WINDOWS\System32\DRIVERS\AmdK8.sys
00:36:05.0765 0808 C:\WINDOWS\System32\DRIVERS\AmdK8.sys - ok
00:36:05.0796 0808 [ C42584FD66CE9E17403AEBCA199F7BDB ] C:\WINDOWS\System32\DRIVERS\WMIACPI.SYS
00:36:05.0796 0808 C:\WINDOWS\System32\DRIVERS\WMIACPI.SYS - ok
00:36:05.0812 0808 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\System32\DRIVERS\VIDEOPRT.SYS
00:36:05.0812 0808 C:\WINDOWS\System32\DRIVERS\VIDEOPRT.SYS - ok
00:36:05.0828 0808 [ 669A8717DBE1A6B03898A190E4708B2F ] C:\WINDOWS\System32\DRIVERS\ATI2MTAG.SYS
00:36:05.0828 0808 C:\WINDOWS\System32\DRIVERS\ATI2MTAG.SYS - ok
00:36:05.0843 0808 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\System32\DRIVERS\USBPORT.SYS
00:36:05.0843 0808 C:\WINDOWS\System32\DRIVERS\USBPORT.SYS - ok
00:36:05.0859 0808 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\System32\DRIVERS\IMAPI.SYS
00:36:05.0859 0808 C:\WINDOWS\System32\DRIVERS\IMAPI.SYS - ok
00:36:05.0875 0808 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\System32\DRIVERS\USBEHCI.SYS
00:36:05.0875 0808 C:\WINDOWS\System32\DRIVERS\USBEHCI.SYS - ok
00:36:05.0906 0808 [ 0DAECCE65366EA32B162F85F07C6753B ] C:\WINDOWS\System32\DRIVERS\USBOHCI.SYS
00:36:05.0906 0808 C:\WINDOWS\System32\DRIVERS\USBOHCI.SYS - ok
00:36:05.0921 0808 [ 4B0A100EAF5C49EF3CCA8C641431EACC ] C:\WINDOWS\System32\DRIVERS\CDROM.SYS
00:36:05.0921 0808 C:\WINDOWS\System32\DRIVERS\CDROM.SYS - ok
00:36:05.0937 0808 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\System32\DRIVERS\KS.SYS
00:36:05.0937 0808 C:\WINDOWS\System32\DRIVERS\KS.SYS - ok
00:36:05.0953 0808 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\System32\DRIVERS\REDBOOK.SYS
00:36:05.0953 0808 C:\WINDOWS\System32\DRIVERS\REDBOOK.SYS - ok
00:36:05.0968 0808 [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\System32\DRIVERS\Hdaudbus.sys
00:36:05.0968 0808 C:\WINDOWS\System32\DRIVERS\Hdaudbus.sys - ok
00:36:05.0984 0808 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\System32\DRIVERS\I8042PRT.SYS
00:36:05.0984 0808 C:\WINDOWS\System32\DRIVERS\I8042PRT.SYS - ok
00:36:06.0000 0808 [ 7F1C1F78D709C4A54CBB46EDE7E0B48D ] C:\WINDOWS\System32\DRIVERS\NTIDrvr.sys
00:36:06.0000 0808 C:\WINDOWS\System32\DRIVERS\NTIDrvr.sys - ok
00:36:06.0031 0808 [ 08D30AF92C270F2E76787C81589DBAD6 ] C:\WINDOWS\System32\DRIVERS\DKbFltr.SYS
00:36:06.0031 0808 C:\WINDOWS\System32\DRIVERS\DKbFltr.SYS - ok
00:36:06.0046 0808 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\System32\DRIVERS\KBDCLASS.SYS
00:36:06.0046 0808 C:\WINDOWS\System32\DRIVERS\KBDCLASS.SYS - ok
00:36:06.0062 0808 [ 66F680409FC3BDDF62741E3E920A8454 ] C:\WINDOWS\System32\DRIVERS\SynTP.sys
00:36:06.0062 0808 C:\WINDOWS\System32\DRIVERS\SynTP.sys - ok
00:36:06.0093 0808 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\System32\DRIVERS\USBD.SYS
00:36:06.0093 0808 C:\WINDOWS\System32\DRIVERS\USBD.SYS - ok
00:36:06.0109 0808 [ 0F6C187D38D98F8DF904589A5F94D411 ] C:\WINDOWS\System32\DRIVERS\CmBatt.sys
00:36:06.0109 0808 C:\WINDOWS\System32\DRIVERS\CmBatt.sys - ok
00:36:06.0125 0808 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\System32\DRIVERS\MOUCLASS.SYS
00:36:06.0125 0808 C:\WINDOWS\System32\DRIVERS\MOUCLASS.SYS - ok
00:36:06.0140 0808 [ 911E07056B865760C0762F6221145999 ] C:\WINDOWS\System32\DRIVERS\Rtnicxp.sys
00:36:06.0140 0808 C:\WINDOWS\System32\DRIVERS\Rtnicxp.sys - ok
00:36:06.0156 0808 [ BAA6B3CC74A4377D063C5A92DD9C4098 ] C:\WINDOWS\System32\DRIVERS\AR5211.SYS
00:36:06.0156 0808 C:\WINDOWS\System32\DRIVERS\AR5211.SYS - ok
00:36:06.0171 0808 [ 5AEE9EEDCFBF2B0F9DEC53C27EE722A3 ] C:\WINDOWS\System32\DRIVERS\EMS7SK.SYS
00:36:06.0171 0808 C:\WINDOWS\System32\DRIVERS\EMS7SK.SYS - ok
00:36:06.0203 0808 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] C:\WINDOWS\System32\DRIVERS\SDBUS.SYS
00:36:06.0203 0808 C:\WINDOWS\System32\DRIVERS\SDBUS.SYS - ok
00:36:06.0218 0808 [ 4B86DA2C58063B647577CD669CFFAEEB ] C:\WINDOWS\System32\DRIVERS\EPFWNDIS.SYS
00:36:06.0218 0808 C:\WINDOWS\System32\DRIVERS\EPFWNDIS.SYS - ok
00:36:06.0234 0808 [ 8E56AB21D10C368029CEA57DE47D79C2 ] C:\WINDOWS\System32\DRIVERS\ESD7SK.SYS
00:36:06.0234 0808 C:\WINDOWS\System32\DRIVERS\ESD7SK.SYS - ok
00:36:06.0250 0808 [ 0A58FADE5E12D3A611427292073362CB ] C:\WINDOWS\System32\DRIVERS\ESM7SK.SYS
00:36:06.0250 0808 C:\WINDOWS\System32\DRIVERS\ESM7SK.SYS - ok
00:36:06.0265 0808 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\System32\DRIVERS\AUDSTUB.SYS
00:36:06.0265 0808 C:\WINDOWS\System32\DRIVERS\AUDSTUB.SYS - ok
00:36:06.0281 0808 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] C:\WINDOWS\System32\DRIVERS\ROOTMDM.SYS
00:36:06.0281 0808 C:\WINDOWS\System32\DRIVERS\ROOTMDM.SYS - ok
00:36:06.0296 0808 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\System32\DRIVERS\MODEM.SYS
00:36:06.0296 0808 C:\WINDOWS\System32\DRIVERS\MODEM.SYS - ok
00:36:06.0312 0808 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\System32\DRIVERS\TDI.SYS
00:36:06.0312 0808 C:\WINDOWS\System32\DRIVERS\TDI.SYS - ok
00:36:06.0343 0808 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\System32\DRIVERS\NDISTAPI.SYS
00:36:06.0343 0808 C:\WINDOWS\System32\DRIVERS\NDISTAPI.SYS - ok
00:36:06.0359 0808 [ 0207D26DDF796A193CCD9F83047BB5FC ] C:\WINDOWS\System32\DRIVERS\RASIRDA.SYS
00:36:06.0359 0808 C:\WINDOWS\System32\DRIVERS\RASIRDA.SYS - ok
00:36:06.0375 0808 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\System32\DRIVERS\RASL2TP.SYS
00:36:06.0375 0808 C:\WINDOWS\System32\DRIVERS\RASL2TP.SYS - ok
00:36:06.0390 0808 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\System32\DRIVERS\NDISWAN.SYS
00:36:06.0390 0808 C:\WINDOWS\System32\DRIVERS\NDISWAN.SYS - ok
00:36:06.0406 0808 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\System32\DRIVERS\RASPPPOE.SYS
00:36:06.0406 0808 C:\WINDOWS\System32\DRIVERS\RASPPPOE.SYS - ok
00:36:06.0421 0808 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\System32\DRIVERS\RASPPTP.SYS
00:36:06.0421 0808 C:\WINDOWS\System32\DRIVERS\RASPPTP.SYS - ok
00:36:06.0437 0808 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\System32\DRIVERS\MSGPC.SYS
00:36:06.0437 0808 C:\WINDOWS\System32\DRIVERS\MSGPC.SYS - ok
00:36:06.0453 0808 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\System32\DRIVERS\PSCHED.SYS
00:36:06.0453 0808 C:\WINDOWS\System32\DRIVERS\PSCHED.SYS - ok
00:36:06.0468 0808 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\System32\DRIVERS\PTILINK.SYS
00:36:06.0468 0808 C:\WINDOWS\System32\DRIVERS\PTILINK.SYS - ok
00:36:06.0484 0808 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\System32\DRIVERS\RASPTI.SYS
00:36:06.0484 0808 C:\WINDOWS\System32\DRIVERS\RASPTI.SYS - ok
00:36:06.0515 0808 [ 2C4FB2E9F039287767C384E46EE91030 ] C:\WINDOWS\System32\DRIVERS\RimSerial.sys
00:36:06.0515 0808 C:\WINDOWS\System32\DRIVERS\RimSerial.sys - ok
00:36:06.0531 0808 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\System32\DRIVERS\RDPDR.SYS
00:36:06.0531 0808 C:\WINDOWS\System32\DRIVERS\RDPDR.SYS - ok
00:36:06.0546 0808 [ 88155247177638048422893737429D9E ] C:\WINDOWS\System32\DRIVERS\TERMDD.SYS
00:36:06.0546 0808 C:\WINDOWS\System32\DRIVERS\TERMDD.SYS - ok
00:36:06.0562 0808 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\System32\DRIVERS\SWENUM.SYS
00:36:06.0562 0808 C:\WINDOWS\System32\DRIVERS\SWENUM.SYS - ok
00:36:06.0578 0808 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\System32\DRIVERS\UPDATE.SYS
00:36:06.0578 0808 C:\WINDOWS\System32\DRIVERS\UPDATE.SYS - ok
00:36:06.0593 0808 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\System32\DRIVERS\MSSMBIOS.SYS
00:36:06.0593 0808 C:\WINDOWS\System32\DRIVERS\MSSMBIOS.SYS - ok
00:36:06.0609 0808 [ D918617B46457B9AC28027722E30F647 ] C:\WINDOWS\System32\DRIVERS\WDF01000.SYS
00:36:06.0609 0808 C:\WINDOWS\System32\DRIVERS\WDF01000.SYS - ok
00:36:06.0625 0808 [ 399C974DDA25FD3E59F22BAB787F662B ] C:\WINDOWS\System32\DRIVERS\WDFLDR.SYS
00:36:06.0625 0808 C:\WINDOWS\System32\DRIVERS\WDFLDR.SYS - ok
00:36:06.0640 0808 [ 337B9607F041B77824411750069AFF2D ] C:\WINDOWS\System32\DRIVERS\ZUMBUS.SYS
00:36:06.0640 0808 C:\WINDOWS\System32\DRIVERS\ZUMBUS.SYS - ok
00:36:06.0656 0808 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\System32\DRIVERS\NDPROXY.SYS
00:36:06.0656 0808 C:\WINDOWS\System32\DRIVERS\NDPROXY.SYS - ok
00:36:06.0671 0808 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\System32\DRIVERS\USBHUB.SYS
00:36:06.0687 0808 C:\WINDOWS\System32\DRIVERS\USBHUB.SYS - ok
00:36:06.0703 0808 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\System32\DRIVERS\DRMK.SYS
00:36:06.0703 0808 C:\WINDOWS\System32\DRIVERS\DRMK.SYS - ok
00:36:06.0718 0808 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\System32\DRIVERS\PORTCLS.SYS
00:36:06.0718 0808 C:\WINDOWS\System32\DRIVERS\PORTCLS.SYS - ok
00:36:06.0734 0808 [ 909D03B3B7FB7C830B74F74F4D0EA7CE ] C:\WINDOWS\System32\DRIVERS\RtkHDAud.Sys
00:36:06.0734 0808 C:\WINDOWS\System32\DRIVERS\RtkHDAud.Sys - ok
00:36:06.0750 0808 [ 358AE1D350E05F5C45F65DCA0BE6BA40 ] C:\WINDOWS\System32\DRIVERS\HSFHWAZL.SYS
00:36:06.0750 0808 C:\WINDOWS\System32\DRIVERS\HSFHWAZL.SYS - ok
00:36:06.0765 0808 [ C17B97F331A08BED979961245331413D ] C:\WINDOWS\System32\DRIVERS\HSF_DPV.SYS
00:36:06.0765 0808 C:\WINDOWS\System32\DRIVERS\HSF_DPV.SYS - ok
00:36:06.0781 0808 [ 6F25B08EBBAC9E02E6A0829F2C28999B ] C:\WINDOWS\System32\DRIVERS\HSF_CNXT.SYS
00:36:06.0781 0808 C:\WINDOWS\System32\DRIVERS\HSF_CNXT.SYS - ok
00:36:06.0796 0808 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\System32\DRIVERS\FDC.SYS
00:36:06.0796 0808 C:\WINDOWS\System32\DRIVERS\FDC.SYS - ok
00:36:06.0812 0808 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\System32\DRIVERS\FLPYDISK.SYS
00:36:06.0812 0808 C:\WINDOWS\System32\DRIVERS\FLPYDISK.SYS - ok
00:36:06.0828 0808 [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\System32\DRIVERS\I2OMGMT.SYS
00:36:06.0828 0808 C:\WINDOWS\System32\DRIVERS\I2OMGMT.SYS - ok
00:36:06.0859 0808 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\System32\DRIVERS\SFLOPPY.SYS
00:36:06.0859 0808 C:\WINDOWS\System32\DRIVERS\SFLOPPY.SYS - ok
00:36:06.0875 0808 [ 8C2B6BBC82AD12CD9A2E73E5DCBBA705 ] C:\WINDOWS\System32\DRIVERS\EAMON.SYS
00:36:06.0875 0808 C:\WINDOWS\System32\DRIVERS\EAMON.SYS - ok
00:36:06.0890 0808 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\System32\DRIVERS\CDAUDIO.SYS
00:36:06.0890 0808 C:\WINDOWS\System32\DRIVERS\CDAUDIO.SYS - ok
00:36:06.0921 0808 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\System32\DRIVERS\FS_REC.SYS
00:36:06.0921 0808 C:\WINDOWS\System32\DRIVERS\FS_REC.SYS - ok
00:36:06.0937 0808 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\System32\DRIVERS\NULL.SYS
00:36:06.0937 0808 C:\WINDOWS\System32\DRIVERS\NULL.SYS - ok
00:36:06.0953 0808 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\System32\DRIVERS\BEEP.SYS
00:36:06.0953 0808 C:\WINDOWS\System32\DRIVERS\BEEP.SYS - ok
00:36:06.0968 0808 [ 5412ED24FFFCA64E2F0168399B86C952 ] C:\WINDOWS\System32\DRIVERS\EHDRV.SYS
00:36:06.0968 0808 C:\WINDOWS\System32\DRIVERS\EHDRV.SYS - ok
00:36:06.0984 0808 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\System32\DRIVERS\VGA.SYS
00:36:06.0984 0808 C:\WINDOWS\System32\DRIVERS\VGA.SYS - ok
00:36:07.0000 0808 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\System32\DRIVERS\MNMDD.SYS
00:36:07.0000 0808 C:\WINDOWS\System32\DRIVERS\MNMDD.SYS - ok
00:36:07.0015 0808 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\System32\DRIVERS\RDPCDD.SYS
00:36:07.0015 0808 C:\WINDOWS\System32\DRIVERS\RDPCDD.SYS - ok
00:36:07.0031 0808 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\System32\DRIVERS\MSFS.SYS
00:36:07.0031 0808 C:\WINDOWS\System32\DRIVERS\MSFS.SYS - ok
00:36:07.0046 0808 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\System32\DRIVERS\NPFS.SYS
00:36:07.0046 0808 C:\WINDOWS\System32\DRIVERS\NPFS.SYS - ok
00:36:07.0062 0808 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\System32\DRIVERS\RASACD.SYS
00:36:07.0062 0808 C:\WINDOWS\System32\DRIVERS\RASACD.SYS - ok
00:36:07.0078 0808 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\System32\DRIVERS\IPSEC.SYS
00:36:07.0078 0808 C:\WINDOWS\System32\DRIVERS\IPSEC.SYS - ok
00:36:07.0093 0808 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\System32\DRIVERS\TCPIP.SYS
00:36:07.0093 0808 C:\WINDOWS\System32\DRIVERS\TCPIP.SYS - ok
00:36:07.0109 0808 [ 1B36748EA9E25549EBE5D8EA105BD981 ] C:\WINDOWS\System32\DRIVERS\EPFWTDI.SYS
00:36:07.0109 0808 C:\WINDOWS\System32\DRIVERS\EPFWTDI.SYS - ok
00:36:07.0125 0808 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\System32\DRIVERS\NETBT.SYS
00:36:07.0125 0808 C:\WINDOWS\System32\DRIVERS\NETBT.SYS - ok
00:36:07.0140 0808 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\System32\DRIVERS\IPNAT.SYS
00:36:07.0140 0808 C:\WINDOWS\System32\DRIVERS\IPNAT.SYS - ok
00:36:07.0156 0808 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\System32\DRIVERS\WS2IFSL.SYS
00:36:07.0156 0808 C:\WINDOWS\System32\DRIVERS\WS2IFSL.SYS - ok
00:36:07.0171 0808 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\System32\DRIVERS\AFD.SYS
00:36:07.0187 0808 C:\WINDOWS\System32\DRIVERS\AFD.SYS - ok
00:36:07.0203 0808 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\System32\DRIVERS\WANARP.SYS
00:36:07.0203 0808 C:\WINDOWS\System32\DRIVERS\WANARP.SYS - ok
00:36:07.0218 0808 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\System32\DRIVERS\NETBIOS.SYS
00:36:07.0218 0808 C:\WINDOWS\System32\DRIVERS\NETBIOS.SYS - ok
00:36:07.0234 0808 [ A32BEBAF723557681BFC6BD93E98BD26 ] C:\WINDOWS\System32\DRIVERS\PROCESSR.SYS
00:36:07.0234 0808 C:\WINDOWS\System32\DRIVERS\PROCESSR.SYS - ok
00:36:07.0250 0808 [ 39763504067962108505BFF25F024345 ] C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
00:36:07.0250 0808 C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS - ok
00:36:07.0265 0808 [ 77B9FC20084B48408AD3E87570EB4A85 ] C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
00:36:07.0265 0808 C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS - ok
00:36:07.0281 0808 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\System32\DRIVERS\RDBSS.SYS
00:36:07.0281 0808 C:\WINDOWS\System32\DRIVERS\RDBSS.SYS - ok
00:36:07.0296 0808 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\System32\DRIVERS\MRXSMB.SYS
00:36:07.0296 0808 C:\WINDOWS\System32\DRIVERS\MRXSMB.SYS - ok
00:36:07.0312 0808 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\System32\DRIVERS\FIPS.SYS
00:36:07.0312 0808 C:\WINDOWS\System32\DRIVERS\FIPS.SYS - ok
00:36:07.0328 0808 [ B979979AB8027F7F53FB16EC4229B7DB ] C:\WINDOWS\System32\DRIVERS\ASPI32.SYS
00:36:07.0328 0808 C:\WINDOWS\System32\DRIVERS\ASPI32.SYS - ok
00:36:07.0343 0808 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\System32\SMSS.EXE
00:36:07.0343 0808 C:\WINDOWS\System32\SMSS.EXE - ok
00:36:07.0359 0808 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\System32\ntdll.dll
00:36:07.0359 0808 C:\WINDOWS\System32\ntdll.dll - ok
00:36:07.0375 0808 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\System32\AUTOCHK.EXE
00:36:07.0375 0808 C:\WINDOWS\System32\AUTOCHK.EXE - ok
00:36:07.0390 0808 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\System32\SFCFILES.DLL
00:36:07.0390 0808 C:\WINDOWS\System32\SFCFILES.DLL - ok
00:36:07.0406 0808 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\System32\DRIVERS\CDFS.SYS
00:36:07.0406 0808 C:\WINDOWS\System32\DRIVERS\CDFS.SYS - ok
00:36:07.0421 0808 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\System32\DRIVERS\WMILIB.SYS
00:36:07.0421 0808 C:\WINDOWS\System32\DRIVERS\WMILIB.SYS - ok
00:36:07.0437 0808 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\System32\DRIVERS\ATAPI.SYS
00:36:07.0437 0808 C:\WINDOWS\System32\DRIVERS\ATAPI.SYS - ok
00:36:07.0453 0808 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\System32\DRIVERS\DXAPI.SYS
00:36:07.0453 0808 C:\WINDOWS\System32\DRIVERS\DXAPI.SYS - ok
00:36:07.0468 0808 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\System32\WATCHDOG.SYS
00:36:07.0468 0808 C:\WINDOWS\System32\WATCHDOG.SYS - ok
00:36:07.0484 0808 [ F984CAE54E536681B209F7816D8F68DA ] C:\WINDOWS\System32\WIN32K.SYS
00:36:07.0484 0808 C:\WINDOWS\System32\WIN32K.SYS - ok
00:36:07.0515 0808 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\System32\CSRSS.EXE
00:36:07.0515 0808 C:\WINDOWS\System32\CSRSS.EXE - ok
00:36:07.0531 0808 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\System32\CSRSRV.DLL
00:36:07.0531 0808 C:\WINDOWS\System32\CSRSRV.DLL - ok
00:36:07.0546 0808 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\System32\BASESRV.DLL
00:36:07.0546 0808 C:\WINDOWS\System32\BASESRV.DLL - ok
00:36:07.0562 0808 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\System32\WINSRV.DLL
00:36:07.0562 0808 C:\WINDOWS\System32\WINSRV.DLL - ok
00:36:07.0578 0808 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\System32\GDI32.DLL
00:36:07.0578 0808 C:\WINDOWS\System32\GDI32.DLL - ok
00:36:07.0609 0808 [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\System32\KERNEL32.DLL
00:36:07.0609 0808 C:\WINDOWS\System32\KERNEL32.DLL - ok
00:36:07.0625 0808 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\System32\USER32.DLL
00:36:07.0625 0808 C:\WINDOWS\System32\USER32.DLL - ok
00:36:07.0640 0808 [ 012DF358CEBAA23ACB26D82077820817 ] C:\WINDOWS\System32\LPK.DLL
00:36:07.0640 0808 C:\WINDOWS\System32\LPK.DLL - ok
00:36:07.0656 0808 [ 9E03DC5AB51CFD0190541CE2038D819D ] C:\WINDOWS\System32\USP10.DLL
00:36:07.0656 0808 C:\WINDOWS\System32\USP10.DLL - ok
00:36:07.0671 0808 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\System32\ADVAPI32.DLL
00:36:07.0671 0808 C:\WINDOWS\System32\ADVAPI32.DLL - ok
00:36:07.0687 0808 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\System32\RPCRT4.DLL
00:36:07.0687 0808 C:\WINDOWS\System32\RPCRT4.DLL - ok
00:36:07.0703 0808 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\System32\SECUR32.DLL
00:36:07.0703 0808 C:\WINDOWS\System32\SECUR32.DLL - ok
00:36:07.0718 0808 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\System32\DRIVERS\DXG.SYS
00:36:07.0718 0808 C:\WINDOWS\System32\DRIVERS\DXG.SYS - ok
00:36:07.0750 0808 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\System32\DRIVERS\DXGTHK.SYS
00:36:07.0750 0808 C:\WINDOWS\System32\DRIVERS\DXGTHK.SYS - ok
00:36:07.0765 0808 [ AB0A258559563F2A275FF118BFF7AA9B ] C:\WINDOWS\System32\ATI2DVAG.DLL
00:36:07.0765 0808 C:\WINDOWS\System32\ATI2DVAG.DLL - ok
00:36:07.0765 0808 [ 05B36139264FF01A523F58075D1A275C ] C:\WINDOWS\System32\ATI2CQAG.DLL
00:36:07.0765 0808 C:\WINDOWS\System32\ATI2CQAG.DLL - ok
00:36:07.0781 0808 [ A4DF64B55E431A83DC890D8D9C8F0EAB ] C:\WINDOWS\System32\ATIKVMAG.DLL
00:36:07.0781 0808 C:\WINDOWS\System32\ATIKVMAG.DLL - ok
00:36:07.0796 0808 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\System32\VGA.DLL
00:36:07.0796 0808 C:\WINDOWS\System32\VGA.DLL - ok
00:36:07.0812 0808 [ 94C2A385C5F207FFF20E1A082A773E6D ] C:\WINDOWS\System32\ATI3DUAG.DLL
00:36:07.0812 0808 C:\WINDOWS\System32\ATI3DUAG.DLL - ok
00:36:07.0828 0808 [ 96F79BDD1058569975188F8539330EC4 ] C:\WINDOWS\System32\ATIVVAXX.DLL
00:36:07.0828 0808 C:\WINDOWS\System32\ATIVVAXX.DLL - ok
00:36:07.0859 0808 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\System32\WINLOGON.EXE
00:36:07.0859 0808 C:\WINDOWS\System32\WINLOGON.EXE - ok
00:36:07.0875 0808 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\System32\AUTHZ.DLL
00:36:07.0875 0808 C:\WINDOWS\System32\AUTHZ.DLL - ok
00:36:07.0890 0808 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\System32\MSVCRT.DLL
00:36:07.0890 0808 C:\WINDOWS\System32\MSVCRT.DLL - ok
00:36:07.0906 0808 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\System32\CRYPT32.DLL
00:36:07.0906 0808 C:\WINDOWS\System32\CRYPT32.DLL - ok
00:36:07.0921 0808 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\System32\MSASN1.DLL
00:36:07.0921 0808 C:\WINDOWS\System32\MSASN1.DLL - ok
00:36:07.0937 0808 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\System32\NDDEAPI.DLL
00:36:07.0937 0808 C:\WINDOWS\System32\NDDEAPI.DLL - ok
00:36:07.0953 0808 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\System32\PROFMAP.DLL
00:36:07.0953 0808 C:\WINDOWS\System32\PROFMAP.DLL - ok
00:36:07.0968 0808 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\System32\NETAPI32.DLL
00:36:07.0968 0808 C:\WINDOWS\System32\NETAPI32.DLL - ok
00:36:07.0984 0808 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\System32\USERENV.DLL
00:36:07.0984 0808 C:\WINDOWS\System32\USERENV.DLL - ok
00:36:08.0000 0808 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\System32\PSAPI.DLL
00:36:08.0000 0808 C:\WINDOWS\System32\PSAPI.DLL - ok
00:36:08.0015 0808 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\System32\REGAPI.DLL
00:36:08.0015 0808 C:\WINDOWS\System32\REGAPI.DLL - ok
00:36:08.0031 0808 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\System32\SETUPAPI.DLL
00:36:08.0031 0808 C:\WINDOWS\System32\SETUPAPI.DLL - ok
00:36:08.0046 0808 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\System32\VERSION.DLL
00:36:08.0046 0808 C:\WINDOWS\System32\VERSION.DLL - ok
00:36:08.0062 0808 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\System32\WINSTA.DLL
00:36:08.0062 0808 C:\WINDOWS\System32\WINSTA.DLL - ok
00:36:08.0078 0808 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\System32\WINTRUST.DLL
00:36:08.0078 0808 C:\WINDOWS\System32\WINTRUST.DLL - ok
00:36:08.0093 0808 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\System32\IMAGEHLP.DLL
00:36:08.0093 0808 C:\WINDOWS\System32\IMAGEHLP.DLL - ok
00:36:08.0109 0808 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\System32\WS2_32.DLL
00:36:08.0109 0808 C:\WINDOWS\System32\WS2_32.DLL - ok
00:36:08.0125 0808 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\System32\WS2HELP.DLL
00:36:08.0125 0808 C:\WINDOWS\System32\WS2HELP.DLL - ok
00:36:08.0140 0808 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\System32\IMM32.DLL
00:36:08.0140 0808 C:\WINDOWS\System32\IMM32.DLL - ok
00:36:08.0156 0808 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\System32\KBDUS.DLL
00:36:08.0156 0808 C:\WINDOWS\System32\KBDUS.DLL - ok
00:36:08.0187 0808 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\System32\MSGINA.DLL
00:36:08.0187 0808 C:\WINDOWS\System32\MSGINA.DLL - ok
00:36:08.0203 0808 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\System32\COMCTL32.DLL
00:36:08.0203 0808 C:\WINDOWS\System32\COMCTL32.DLL - ok
00:36:08.0218 0808 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\System32\ODBC32.DLL
00:36:08.0218 0808 C:\WINDOWS\System32\ODBC32.DLL - ok
00:36:08.0234 0808 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\System32\COMDLG32.DLL
00:36:08.0234 0808 C:\WINDOWS\System32\COMDLG32.DLL - ok
00:36:08.0250 0808 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\System32\SHELL32.DLL
00:36:08.0250 0808 C:\WINDOWS\System32\SHELL32.DLL - ok
00:36:08.0265 0808 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\System32\SHLWAPI.DLL
00:36:08.0265 0808 C:\WINDOWS\System32\SHLWAPI.DLL - ok
00:36:08.0281 0808 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\System32\SXS.DLL
00:36:08.0281 0808 C:\WINDOWS\System32\SXS.DLL - ok
00:36:08.0296 0808 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\COMCTL32.DLL
00:36:08.0296 0808 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\COMCTL32.DLL - ok
00:36:08.0312 0808 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\System32\ODBCINT.DLL
00:36:08.0312 0808 C:\WINDOWS\System32\ODBCINT.DLL - ok
00:36:08.0328 0808 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\System32\SHSVCS.DLL
00:36:08.0328 0808 C:\WINDOWS\System32\SHSVCS.DLL - ok
00:36:08.0343 0808 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\System32\SFC.DLL
00:36:08.0343 0808 C:\WINDOWS\System32\SFC.DLL - ok
00:36:08.0359 0808 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\System32\SFC_OS.DLL
00:36:08.0359 0808 C:\WINDOWS\System32\SFC_OS.DLL - ok
00:36:08.0390 0808 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\System32\OLE32.DLL
00:36:08.0390 0808 C:\WINDOWS\System32\OLE32.DLL - ok
00:36:08.0406 0808 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\System32\APPHELP.DLL
00:36:08.0406 0808 C:\WINDOWS\System32\APPHELP.DLL - ok
00:36:08.0421 0808 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\System32\LSASS.EXE
00:36:08.0421 0808 C:\WINDOWS\System32\LSASS.EXE - ok
00:36:08.0437 0808 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\System32\SERVICES.EXE
00:36:08.0437 0808 C:\WINDOWS\System32\SERVICES.EXE - ok
00:36:08.0453 0808 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\System32\LSASRV.DLL
00:36:08.0453 0808 C:\WINDOWS\System32\LSASRV.DLL - ok
00:36:08.0468 0808 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\System32\NCOBJAPI.DLL
00:36:08.0468 0808 C:\WINDOWS\System32\NCOBJAPI.DLL - ok
00:36:08.0484 0808 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\System32\MSVCP60.DLL
00:36:08.0484 0808 C:\WINDOWS\System32\MSVCP60.DLL - ok
00:36:08.0515 0808 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\System32\SCESRV.DLL
00:36:08.0515 0808 C:\WINDOWS\System32\SCESRV.DLL - ok
00:36:08.0531 0808 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\System32\MPR.DLL
00:36:08.0531 0808 C:\WINDOWS\System32\MPR.DLL - ok
00:36:08.0562 0808 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\System32\NTDSAPI.DLL
00:36:08.0562 0808 C:\WINDOWS\System32\NTDSAPI.DLL - ok
00:36:08.0578 0808 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\System32\UMPNPMGR.DLL
00:36:08.0578 0808 C:\WINDOWS\System32\UMPNPMGR.DLL - ok
00:36:08.0593 0808 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\System32\DNSAPI.DLL
00:36:08.0593 0808 C:\WINDOWS\System32\DNSAPI.DLL - ok
00:36:08.0609 0808 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\System32\SHIMENG.DLL
00:36:08.0609 0808 C:\WINDOWS\System32\SHIMENG.DLL - ok
00:36:08.0625 0808 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\ACADPROC.DLL
00:36:08.0625 0808 C:\WINDOWS\AppPatch\ACADPROC.DLL - ok
00:36:08.0640 0808 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\System32\WLDAP32.DLL
00:36:08.0640 0808 C:\WINDOWS\System32\WLDAP32.DLL - ok
00:36:08.0656 0808 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\System32\SAMLIB.DLL
00:36:08.0656 0808 C:\WINDOWS\System32\SAMLIB.DLL - ok
00:36:08.0671 0808 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\System32\SAMSRV.DLL
00:36:08.0671 0808 C:\WINDOWS\System32\SAMSRV.DLL - ok
00:36:08.0687 0808 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\System32\CRYPTDLL.DLL
00:36:08.0687 0808 C:\WINDOWS\System32\CRYPTDLL.DLL - ok
00:36:08.0703 0808 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\AcGenral.dll
00:36:08.0703 0808 C:\WINDOWS\AppPatch\AcGenral.dll - ok
00:36:08.0718 0808 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\System32\WINMM.DLL
00:36:08.0718 0808 C:\WINDOWS\System32\WINMM.DLL - ok
00:36:08.0734 0808 [ 1B2BE5777F69A71778F52FFEE1C798D6 ] C:\WINDOWS\System32\OLEAUT32.DLL
00:36:08.0734 0808 C:\WINDOWS\System32\OLEAUT32.DLL - ok
00:36:08.0750 0808 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\System32\MSACM32.DLL
00:36:08.0750 0808 C:\WINDOWS\System32\MSACM32.DLL - ok
00:36:08.0765 0808 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\System32\UXTHEME.DLL
00:36:08.0765 0808 C:\WINDOWS\System32\UXTHEME.DLL - ok
00:36:08.0781 0808 [ 68A7D1B469203EACBD54131C5FC937C1 ] C:\WINDOWS\System32\XGUSB.CPL
00:36:08.0781 0808 C:\WINDOWS\System32\XGUSB.CPL - ok
00:36:08.0796 0808 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\System32\MSAPSSPC.DLL
00:36:08.0796 0808 C:\WINDOWS\System32\MSAPSSPC.DLL - ok
00:36:08.0812 0808 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\System32\MSVCRT40.DLL
00:36:08.0812 0808 C:\WINDOWS\System32\MSVCRT40.DLL - ok
00:36:08.0828 0808 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\System32\SCHANNEL.DLL
00:36:08.0828 0808 C:\WINDOWS\System32\SCHANNEL.DLL - ok
00:36:08.0843 0808 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\System32\DIGEST.DLL
00:36:08.0843 0808 C:\WINDOWS\System32\DIGEST.DLL - ok
00:36:08.0859 0808 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\System32\MSNSSPC.DLL
00:36:08.0859 0808 C:\WINDOWS\System32\MSNSSPC.DLL - ok
00:36:08.0875 0808 [ 3F790874A85819E94574F3E7AF9C5806 ] C:\WINDOWS\System32\MSCTFIME.IME
00:36:08.0875 0808 C:\WINDOWS\System32\MSCTFIME.IME - ok
00:36:08.0890 0808 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\System32\MSPRIVS.DLL
00:36:08.0890 0808 C:\WINDOWS\System32\MSPRIVS.DLL - ok
00:36:08.0906 0808 [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\System32\ATMFD.DLL
00:36:08.0906 0808 C:\WINDOWS\System32\ATMFD.DLL - ok
00:36:08.0921 0808 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\System32\KERBEROS.DLL
00:36:08.0921 0808 C:\WINDOWS\System32\KERBEROS.DLL - ok
00:36:08.0937 0808 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\System32\MSV1_0.DLL
00:36:08.0937 0808 C:\WINDOWS\System32\MSV1_0.DLL - ok
00:36:08.0968 0808 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\System32\IPHLPAPI.DLL
00:36:08.0968 0808 C:\WINDOWS\System32\IPHLPAPI.DLL - ok
00:36:08.0984 0808 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\System32\NETLOGON.DLL
00:36:08.0984 0808 C:\WINDOWS\System32\NETLOGON.DLL - ok
00:36:09.0000 0808 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\System32\W32TIME.DLL
00:36:09.0000 0808 C:\WINDOWS\System32\W32TIME.DLL - ok
00:36:09.0015 0808 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\System32\WDIGEST.DLL
00:36:09.0015 0808 C:\WINDOWS\System32\WDIGEST.DLL - ok
00:36:09.0015 0808 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\System32\RSAENH.DLL
00:36:09.0015 0808 C:\WINDOWS\System32\RSAENH.DLL - ok
00:36:09.0031 0808 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\System32\WINSCARD.DLL
00:36:09.0031 0808 C:\WINDOWS\System32\WINSCARD.DLL - ok
00:36:09.0046 0808 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\System32\WTSAPI32.DLL
00:36:09.0046 0808 C:\WINDOWS\System32\WTSAPI32.DLL - ok
00:36:09.0062 0808 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\System32\SCECLI.DLL
00:36:09.0062 0808 C:\WINDOWS\System32\SCECLI.DLL - ok
00:36:09.0093 0808 [ B2906F9E62A6AC6AD7F5F35DE9656098 ] C:\WINDOWS\System32\ATI2EVXX.EXE
00:36:09.0093 0808 C:\WINDOWS\System32\ATI2EVXX.EXE - ok
00:36:09.0109 0808 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\System32\POWRPROF.DLL
00:36:09.0109 0808 C:\WINDOWS\System32\POWRPROF.DLL - ok
00:36:09.0125 0808 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\System32\SVCHOST.EXE
00:36:09.0125 0808 C:\WINDOWS\System32\SVCHOST.EXE - ok
00:36:09.0140 0808 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\System32\NTMARTA.DLL
00:36:09.0140 0808 C:\WINDOWS\System32\NTMARTA.DLL - ok
00:36:09.0156 0808 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\System32\RPCSS.DLL
00:36:09.0156 0808 C:\WINDOWS\System32\RPCSS.DLL - ok
00:36:09.0171 0808 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\System32\EVENTLOG.DLL
00:36:09.0171 0808 C:\WINDOWS\System32\EVENTLOG.DLL - ok
00:36:09.0187 0808 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\System32\XPSP2RES.DLL
00:36:09.0187 0808 C:\WINDOWS\System32\XPSP2RES.DLL - ok
00:36:09.0218 0808 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\System32\LOGONUI.EXE
00:36:09.0218 0808 C:\WINDOWS\System32\LOGONUI.EXE - ok
00:36:09.0234 0808 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\System32\DUSER.DLL
00:36:09.0234 0808 C:\WINDOWS\System32\DUSER.DLL - ok
00:36:09.0250 0808 [ F4CD481801DDF646C937A975C94C3345 ] C:\WINDOWS\System32\ATI2EDXX.DLL
00:36:09.0250 0808 C:\WINDOWS\System32\ATI2EDXX.DLL - ok
00:36:09.0265 0808 [ 5197EB2E14BE618BCA1C07F87406D67A ] C:\WINDOWS\System32\ATIPDLXX.DLL
00:36:09.0265 0808 C:\WINDOWS\System32\ATIPDLXX.DLL - ok
00:36:09.0265 0808 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\System32\MSIMG32.DLL
00:36:09.0265 0808 C:\WINDOWS\System32\MSIMG32.DLL - ok
00:36:09.0281 0808 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\System32\OLEACC.DLL
00:36:09.0281 0808 C:\WINDOWS\System32\OLEACC.DLL - ok
00:36:09.0296 0808 [ 774BABCB1144513DC86992003740B774 ] C:\WINDOWS\System32\DRIVERS\EPFW.SYS
00:36:09.0296 0808 C:\WINDOWS\System32\DRIVERS\EPFW.SYS - ok
00:36:09.0328 0808 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\System32\CLBCATQ.DLL
00:36:09.0328 0808 C:\WINDOWS\System32\CLBCATQ.DLL - ok
00:36:09.0343 0808 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\System32\COMRES.DLL
00:36:09.0343 0808 C:\WINDOWS\System32\COMRES.DLL - ok
00:36:09.0359 0808 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\System32\SHGINA.DLL
00:36:09.0359 0808 C:\WINDOWS\System32\SHGINA.DLL - ok
00:36:09.0375 0808 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\System32\MSWSOCK.DLL
00:36:09.0375 0808 C:\WINDOWS\System32\MSWSOCK.DLL - ok
00:36:09.0390 0808 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\System32\HNETCFG.DLL
00:36:09.0390 0808 C:\WINDOWS\System32\HNETCFG.DLL - ok
00:36:09.0406 0808 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\System32\WSHTCPIP.DLL
00:36:09.0406 0808 C:\WINDOWS\System32\WSHTCPIP.DLL - ok
00:36:09.0421 0808 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\System32\WINRNR.DLL
00:36:09.0421 0808 C:\WINDOWS\System32\WINRNR.DLL - ok
00:36:09.0437 0808 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\System32\RASADHLP.DLL
00:36:09.0437 0808 C:\WINDOWS\System32\RASADHLP.DLL - ok
00:36:09.0453 0808 [ 482E8F6FD557D5A0DF7363F72DF145FE ] C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
00:36:09.0453 0808 C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - ok
00:36:09.0468 0808 [ E3C6062F89195673F7C9D629F4CAEE47 ] C:\WINDOWS\System32\WININET.DLL
00:36:09.0468 0808 C:\WINDOWS\System32\WININET.DLL - ok
00:36:09.0484 0808 [ 628E44C38648683527C1B45122D552E4 ] C:\WINDOWS\System32\ATI2EVXX.DLL
00:36:09.0484 0808 C:\WINDOWS\System32\ATI2EVXX.DLL - ok
00:36:09.0515 0808 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\System32\CSCDLL.DLL
00:36:09.0515 0808 C:\WINDOWS\System32\CSCDLL.DLL - ok
00:36:09.0531 0808 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\System32\DIMSNTFY.DLL
00:36:09.0531 0808 C:\WINDOWS\System32\DIMSNTFY.DLL - ok
00:36:09.0546 0808 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\System32\WLNOTIFY.DLL
00:36:09.0546 0808 C:\WINDOWS\System32\WLNOTIFY.DLL - ok
00:36:09.0562 0808 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\System32\WINSPOOL.DRV
00:36:09.0562 0808 C:\WINDOWS\System32\WINSPOOL.DRV - ok
00:36:09.0578 0808 [ D7DCFB4D0C58FFB569DE93E1681FD37A ] C:\WINDOWS\System32\WgaLogon.dll
00:36:09.0578 0808 C:\WINDOWS\System32\WgaLogon.dll - ok
00:36:09.0593 0808 [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\System32\MSXML3.DLL
00:36:09.0593 0808 C:\WINDOWS\System32\MSXML3.DLL - ok
00:36:09.0609 0808 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] C:\WINDOWS\System32\WudfSvc.dll
00:36:09.0609 0808 C:\WINDOWS\System32\WudfSvc.dll - ok
00:36:09.0625 0808 [ 708E6997420592E033CF01B60E6E4223 ] C:\WINDOWS\System32\WudfPlatform.dll
00:36:09.0625 0808 C:\WINDOWS\System32\WudfPlatform.dll - ok
00:36:09.0640 0808 [ ACA5E7B54409F9CB5EED97ED0C81120E ] C:\WINDOWS\System32\DRIVERS\IRDA.SYS
00:36:09.0640 0808 C:\WINDOWS\System32\DRIVERS\IRDA.SYS - ok
00:36:09.0656 0808 [ D7010580BF4E45D5E793A1FE75758C69 ] C:\WINDOWS\System32\DRIVERS\MDC8021X.SYS
00:36:09.0656 0808 C:\WINDOWS\System32\DRIVERS\MDC8021X.SYS - ok
00:36:09.0687 0808 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\System32\DRIVERS\NDISUIO.SYS
00:36:09.0687 0808 C:\WINDOWS\System32\DRIVERS\NDISUIO.SYS - ok
00:36:09.0703 0808 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\System32\DHCPCSVC.DLL
00:36:09.0703 0808 C:\WINDOWS\System32\DHCPCSVC.DLL - ok
00:36:09.0718 0808 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\System32\DNSRSLVR.DLL
00:36:09.0718 0808 C:\WINDOWS\System32\DNSRSLVR.DLL - ok
00:36:09.0734 0808 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\System32\LMHSVC.DLL
00:36:09.0734 0808 C:\WINDOWS\System32\LMHSVC.DLL - ok
00:36:09.0750 0808 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\System32\TERMSRV.DLL
00:36:09.0750 0808 C:\WINDOWS\System32\TERMSRV.DLL - ok
00:36:09.0765 0808 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\System32\WZCSVC.DLL
00:36:09.0765 0808 C:\WINDOWS\System32\WZCSVC.DLL - ok
00:36:09.0781 0808 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\System32\ICAAPI.DLL
00:36:09.0781 0808 C:\WINDOWS\System32\ICAAPI.DLL - ok
00:36:09.0812 0808 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\System32\MSTLSAPI.DLL
00:36:09.0812 0808 C:\WINDOWS\System32\MSTLSAPI.DLL - ok
00:36:09.0828 0808 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\System32\RTUTILS.DLL
00:36:09.0828 0808 C:\WINDOWS\System32\RTUTILS.DLL - ok
00:36:09.0843 0808 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\System32\ACTIVEDS.DLL
00:36:09.0843 0808 C:\WINDOWS\System32\ACTIVEDS.DLL - ok
00:36:09.0859 0808 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\System32\WMI.DLL
00:36:09.0859 0808 C:\WINDOWS\System32\WMI.DLL - ok
00:36:09.0875 0808 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\System32\EAPOLQEC.DLL
00:36:09.0875 0808 C:\WINDOWS\System32\EAPOLQEC.DLL - ok
00:36:09.0890 0808 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\System32\ADSLDPC.DLL
00:36:09.0890 0808 C:\WINDOWS\System32\ADSLDPC.DLL - ok
00:36:09.0906 0808 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\System32\ATL.DLL
00:36:09.0906 0808 C:\WINDOWS\System32\ATL.DLL - ok
00:36:09.0921 0808 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\System32\QUTIL.DLL
00:36:09.0921 0808 C:\WINDOWS\System32\QUTIL.DLL - ok
00:36:09.0937 0808 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\System32\DOT3API.DLL
00:36:09.0937 0808 C:\WINDOWS\System32\DOT3API.DLL - ok
00:36:09.0953 0808 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\System32\ESENT.DLL
00:36:09.0953 0808 C:\WINDOWS\System32\ESENT.DLL - ok
00:36:09.0968 0808 [ 49CC4533CE897CB2E93C1E84A818FDE5 ] C:\WINDOWS\System32\IRMON.DLL
00:36:09.0968 0808 C:\WINDOWS\System32\IRMON.DLL - ok
00:36:09.0984 0808 [ 52778FCE46E510B60F513B8882A65CD6 ] C:\WINDOWS\System32\WSHIRDA.DLL
00:36:09.0984 0808 C:\WINDOWS\System32\WSHIRDA.DLL - ok
00:36:10.0000 0808 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\System32\RASTLS.DLL
00:36:10.0000 0808 C:\WINDOWS\System32\RASTLS.DLL - ok
00:36:10.0015 0808 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\System32\CRYPTUI.DLL
00:36:10.0015 0808 C:\WINDOWS\System32\CRYPTUI.DLL - ok
00:36:10.0031 0808 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\System32\MPRAPI.DLL
00:36:10.0031 0808 C:\WINDOWS\System32\MPRAPI.DLL - ok
00:36:10.0046 0808 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\System32\RASAPI32.DLL
00:36:10.0046 0808 C:\WINDOWS\System32\RASAPI32.DLL - ok
00:36:10.0062 0808 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\System32\RASMAN.DLL
00:36:10.0062 0808 C:\WINDOWS\System32\RASMAN.DLL - ok
00:36:10.0078 0808 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\System32\TAPI32.DLL
00:36:10.0078 0808 C:\WINDOWS\System32\TAPI32.DLL - ok
00:36:10.0093 0808 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\System32\RICHED20.DLL
00:36:10.0093 0808 C:\WINDOWS\System32\RICHED20.DLL - ok
00:36:10.0109 0808 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\System32\MLANG.DLL
00:36:10.0109 0808 C:\WINDOWS\System32\MLANG.DLL - ok
00:36:10.0140 0808 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\System32\RASCHAP.DLL
00:36:10.0140 0808 C:\WINDOWS\System32\RASCHAP.DLL - ok
00:36:10.0156 0808 [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\System32\XMLPROVI.DLL
00:36:10.0156 0808 C:\WINDOWS\System32\XMLPROVI.DLL - ok
00:36:10.0171 0808 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\System32\WZCSAPI.DLL
00:36:10.0171 0808 C:\WINDOWS\System32\WZCSAPI.DLL - ok
00:36:10.0187 0808 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\System32\SCHEDSVC.DLL
00:36:10.0187 0808 C:\WINDOWS\System32\SCHEDSVC.DLL - ok
00:36:10.0203 0808 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\System32\MSIDLE.DLL
00:36:10.0203 0808 C:\WINDOWS\System32\MSIDLE.DLL - ok
00:36:10.0218 0808 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\System32\SPOOLSV.EXE
00:36:10.0218 0808 C:\WINDOWS\System32\SPOOLSV.EXE - ok
00:36:10.0234 0808 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\System32\AUDIOSRV.DLL
00:36:10.0234 0808 C:\WINDOWS\System32\AUDIOSRV.DLL - ok
00:36:10.0250 0808 [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\System32\WKSSVC.DLL
00:36:10.0250 0808 C:\WINDOWS\System32\WKSSVC.DLL - ok
00:36:10.0265 0808 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\System32\CSCUI.DLL
00:36:10.0265 0808 C:\WINDOWS\System32\CSCUI.DLL - ok
00:36:10.0281 0808 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\System32\DPCDLL.DLL
00:36:10.0281 0808 C:\WINDOWS\System32\DPCDLL.DLL - ok
00:36:10.0296 0808 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\System32\WDMAUD.DRV
00:36:10.0296 0808 C:\WINDOWS\System32\WDMAUD.DRV - ok
00:36:10.0312 0808 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\System32\DRIVERS\WDMAUD.SYS
00:36:10.0312 0808 C:\WINDOWS\System32\DRIVERS\WDMAUD.SYS - ok
00:36:10.0328 0808 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\System32\DRIVERS\SYSAUDIO.SYS
00:36:10.0343 0808 C:\WINDOWS\System32\DRIVERS\SYSAUDIO.SYS - ok
00:36:10.0359 0808 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\System32\DRIVERS\SPLITTER.SYS
00:36:10.0359 0808 C:\WINDOWS\System32\DRIVERS\SPLITTER.SYS - ok
00:36:10.0375 0808 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\System32\DRIVERS\AEC.SYS
00:36:10.0375 0808 C:\WINDOWS\System32\DRIVERS\AEC.SYS - ok
00:36:10.0390 0808 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\System32\USERINIT.EXE
00:36:10.0390 0808 C:\WINDOWS\System32\USERINIT.EXE - ok
00:36:10.0406 0808 [ 8F0DE4FEF8201E306F9938B0905AC96A ] C:\Program Files\Google\Update\GoogleUpdate.exe
00:36:10.0406 0808 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
00:36:10.0421 0808 [ 047CD344AC7B76BA3C224FAE1A4627C9 ] C:\WINDOWS\System32\WgaTray.exe
00:36:10.0421 0808 C:\WINDOWS\System32\WgaTray.exe - ok
00:36:10.0437 0808 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\System32\DRIVERS\SWMIDI.SYS
00:36:10.0437 0808 C:\WINDOWS\System32\DRIVERS\SWMIDI.SYS - ok
00:36:10.0453 0808 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\System32\DRIVERS\DMusic.sys
00:36:10.0453 0808 C:\WINDOWS\System32\DRIVERS\DMusic.sys - ok
00:36:10.0468 0808 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\System32\DRIVERS\KMIXER.SYS
00:36:10.0468 0808 C:\WINDOWS\System32\DRIVERS\KMIXER.SYS - ok
00:36:10.0484 0808 [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\GOOPDATE.DLL
00:36:10.0484 0808 C:\Program Files\Google\Update\1.3.21.123\GOOPDATE.DLL - ok
00:36:10.0515 0808 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\System32\DRIVERS\DRMKAUD.SYS
00:36:10.0515 0808 C:\WINDOWS\System32\DRIVERS\DRMKAUD.SYS - ok
00:36:10.0531 0808 [ 8C22083ED515DC94D575438662F0BE6A ] C:\WINDOWS\System32\MSI.DLL
00:36:10.0531 0808 C:\WINDOWS\System32\MSI.DLL - ok
00:36:10.0546 0808 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\System32\MSACM32.DRV
00:36:10.0546 0808 C:\WINDOWS\System32\MSACM32.DRV - ok
00:36:10.0562 0808 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\System32\MIDIMAP.DLL
00:36:10.0562 0808 C:\WINDOWS\System32\MIDIMAP.DLL - ok
00:36:10.0578 0808 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\EXPLORER.EXE
00:36:10.0578 0808 C:\WINDOWS\EXPLORER.EXE - ok
00:36:10.0593 0808 [ 3FB23A33267123AD64CCA4A284E85624 ] C:\WINDOWS\System32\BROWSEUI.DLL
00:36:10.0593 0808 C:\WINDOWS\System32\BROWSEUI.DLL - ok
00:36:10.0625 0808 [ 2877FA0BE5B45E8A6A5A54C77B9B4DB9 ] C:\WINDOWS\System32\SHDOCVW.DLL
00:36:10.0625 0808 C:\WINDOWS\System32\SHDOCVW.DLL - ok
00:36:10.0640 0808 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\System32\DBGHELP.DLL
00:36:10.0640 0808 C:\WINDOWS\System32\DBGHELP.DLL - ok
00:36:10.0656 0808 [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
00:36:10.0656 0808 C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
00:36:10.0671 0808 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\System32\CRYPTNET.DLL
00:36:10.0671 0808 C:\WINDOWS\System32\CRYPTNET.DLL - ok
00:36:10.0687 0808 [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
00:36:10.0687 0808 C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
00:36:10.0718 0808 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.DLL
00:36:10.0718 0808 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.DLL - ok
00:36:10.0734 0808 [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
00:36:10.0734 0808 C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
00:36:10.0765 0808 [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.DLL
00:36:10.0765 0808 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.DLL - ok
00:36:10.0781 0808 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\System32\DESK.CPL
00:36:10.0781 0808 C:\WINDOWS\System32\DESK.CPL - ok
00:36:10.0796 0808 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\System32\THEMEUI.DLL
00:36:10.0796 0808 C:\WINDOWS\System32\THEMEUI.DLL - ok
00:36:10.0812 0808 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\System32\SENSAPI.DLL
00:36:10.0812 0808 C:\WINDOWS\System32\SENSAPI.DLL - ok
00:36:10.0828 0808 [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
00:36:10.0828 0808 C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
00:36:10.0843 0808 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\System32\ACTXPRXY.DLL
00:36:10.0843 0808 C:\WINDOWS\System32\ACTXPRXY.DLL - ok
00:36:10.0859 0808 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\System32\WINHTTP.DLL
00:36:10.0859 0808 C:\WINDOWS\System32\WINHTTP.DLL - ok
00:36:10.0890 0808 [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\System32\MSTASK.DLL
00:36:10.0890 0808 C:\WINDOWS\System32\MSTASK.DLL - ok
00:36:10.0906 0808 [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
00:36:10.0906 0808 C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
00:36:10.0921 0808 [ 2975C66459C426C20BC22D639DF6B611 ] C:\Program Files\SUPERAntiSpyware\SASSEH.DLL
00:36:10.0921 0808 C:\Program Files\SUPERAntiSpyware\SASSEH.DLL - ok
00:36:10.0937 0808 [ 5951565A53AEF39C958EB11C6101D365 ] C:\WINDOWS\System32\URLMON.DLL
00:36:10.0937 0808 C:\WINDOWS\System32\URLMON.DLL - ok
00:36:10.0953 0808 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\System32\WSOCK32.DLL
00:36:10.0953 0808 C:\WINDOWS\System32\WSOCK32.DLL - ok
00:36:10.0968 0808 [ E058C4821D48E0A67F6069CB50818D44 ] C:\WINDOWS\System32\LegitCheckControl.dll
00:36:10.0968 0808 C:\WINDOWS\System32\LegitCheckControl.dll - ok
00:36:10.0984 0808 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\System32\WBEM\WBEMPROX.DLL
00:36:10.0984 0808 C:\WINDOWS\System32\WBEM\WBEMPROX.DLL - ok
00:36:11.0000 0808 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\System32\WBEM\WBEMCOMN.DLL
00:36:11.0000 0808 C:\WINDOWS\System32\WBEM\WBEMCOMN.DLL - ok
00:36:11.0015 0808 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\System32\CMD.EXE
00:36:11.0015 0808 C:\WINDOWS\System32\CMD.EXE - ok
00:36:11.0031 0808 [ EBC984F0CE40E0DAF0454D806EC2A7EC ] C:\Documents and Settings\OWNER\Local Settings\Temp\C784E626-05CC-40C0-BE37-8831C2D9E9BA.exe
00:36:11.0031 0808 C:\Documents and Settings\OWNER\Local Settings\Temp\C784E626-05CC-40C0-BE37-8831C2D9E9BA.exe - ok
00:36:11.0062 0808 [ 0E3D30F8CDD82E7E64938459CA90D9F0 ] C:\Program Files\Windows Media Player\WMPBAND.DLL
00:36:11.0062 0808 C:\Program Files\Windows Media Player\WMPBAND.DLL - ok
00:36:11.0078 0808 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\System32\LINKINFO.DLL
00:36:11.0078 0808 C:\WINDOWS\System32\LINKINFO.DLL - ok
00:36:11.0093 0808 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\System32\NTSHRUI.DLL
00:36:11.0093 0808 C:\WINDOWS\System32\NTSHRUI.DLL - ok
00:36:11.0109 0808 [ 5D999BF519415D1C8EE0B97FF6A254DB ] C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL
00:36:11.0109 0808 C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL - ok
00:36:11.0125 0808 [ 7A21E06385E748E9CB0252F1BBC493F1 ] C:\WINDOWS\EHOME\EHTRAY.EXE
00:36:11.0125 0808 C:\WINDOWS\EHOME\EHTRAY.EXE - ok
00:36:11.0140 0808 [ AE09A7FAD521DA4E5781CB93F594FD3C ] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
00:36:11.0140 0808 C:\Program Files\Realtek\InstallShield\AzMixerSel.exe - ok

part two from second log of tdss since it was too long

00:36:11.0171 0808 [ F2DB3672A8D4BA1A1FA2E02B47B5A240 ] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
00:36:11.0171 0808 C:\Acer\Empowering Technology\ePresentation\ePresentation.exe - ok
00:36:11.0187 0808 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\System32\HID.DLL
00:36:11.0187 0808 C:\WINDOWS\System32\HID.DLL - ok
00:36:11.0203 0808 [ 08A73B0E7EE6E32983B5F9E540A8E380 ] C:\WINDOWS\System32\MSCOREE.DLL
00:36:11.0203 0808 C:\WINDOWS\System32\MSCOREE.DLL - ok
00:36:11.0218 0808 [ 7BBE4CF421AECC7F0226EDD75F12079F ] C:\WINDOWS\IME\IMJP8_1\IMJPMIG.EXE
00:36:11.0218 0808 C:\WINDOWS\IME\IMJP8_1\IMJPMIG.EXE - ok
00:36:11.0234 0808 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\System32\DRIVERS\13729669.sys
00:36:11.0234 0808 C:\WINDOWS\System32\DRIVERS\13729669.sys - ok
00:36:11.0250 0808 [ 1B17E09C1223F6D17336D2DD7A1AF4F4 ] C:\WINDOWS\System32\IME\PINTLGNT\IMSCINST.EXE
00:36:11.0250 0808 C:\WINDOWS\System32\IME\PINTLGNT\IMSCINST.EXE - ok
00:36:11.0265 0808 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\System32\NETSHELL.DLL
00:36:11.0265 0808 C:\WINDOWS\System32\NETSHELL.DLL - ok
00:36:11.0281 0808 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\System32\CREDUI.DLL
00:36:11.0281 0808 C:\WINDOWS\System32\CREDUI.DLL - ok
00:36:11.0296 0808 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\System32\DOT3DLG.DLL
00:36:11.0296 0808 C:\WINDOWS\System32\DOT3DLG.DLL - ok
00:36:11.0312 0808 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\System32\ONEX.DLL
00:36:11.0312 0808 C:\WINDOWS\System32\ONEX.DLL - ok
00:36:11.0328 0808 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\System32\EAPPCFG.DLL
00:36:11.0328 0808 C:\WINDOWS\System32\EAPPCFG.DLL - ok
00:36:11.0359 0808 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\System32\EAPPPRXY.DLL
00:36:11.0359 0808 C:\WINDOWS\System32\EAPPPRXY.DLL - ok
00:36:11.0375 0808 [ ADE43E6677BA2D52413DDDAB38438555 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORWKS.DLL
00:36:11.0375 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORWKS.DLL - ok
00:36:11.0390 0808 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.DLL
00:36:11.0390 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.DLL - ok
00:36:11.0421 0808 [ 7C87A5FB95777E4132B11FC3D92CAAF5 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\FUSION.DLL
00:36:11.0421 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\FUSION.DLL - ok
00:36:11.0437 0808 [ E535E0A413655208D7180154150881C6 ] C:\WINDOWS\System32\WEBCHECK.DLL
00:36:11.0437 0808 C:\WINDOWS\System32\WEBCHECK.DLL - ok
00:36:11.0453 0808 [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\System32\STOBJECT.DLL
00:36:11.0453 0808 C:\WINDOWS\System32\STOBJECT.DLL - ok
00:36:11.0468 0808 [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\System32\BATMETER.DLL
00:36:11.0468 0808 C:\WINDOWS\System32\BATMETER.DLL - ok
00:36:11.0484 0808 [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\System32\WPDShServiceObj.dll
00:36:11.0484 0808 C:\WINDOWS\System32\WPDShServiceObj.dll - ok
00:36:11.0515 0808 [ C0A447BCA69D9661D1EF7EDF4C700FE3 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORLIB.DLL
00:36:11.0515 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORLIB.DLL - ok
00:36:11.0531 0808 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\System32\DRIVERS\MRXDAV.SYS
00:36:11.0531 0808 C:\WINDOWS\System32\DRIVERS\MRXDAV.SYS - ok
00:36:11.0546 0808 [ 024DC0F68DF5FD6AE9DD82DFBAF479D6 ] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE
00:36:11.0546 0808 C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE - ok
00:36:11.0562 0808 [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\System32\MYDOCS.DLL
00:36:11.0562 0808 C:\WINDOWS\System32\MYDOCS.DLL - ok
00:36:11.0578 0808 [ 26A836A2AA3D982AFD3152796C10E055 ] C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\MSCORLIB\1.0.5000.0__b77a5c561934e089_b05060fa\MSCORLIB.DLL
00:36:11.0578 0808 C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\MSCORLIB\1.0.5000.0__b77a5c561934e089_b05060fa\MSCORLIB.DLL - ok
00:36:11.0609 0808 [ 03A905FBA1D62317087DB5C21C0F8F62 ] C:\WINDOWS\EHOME\EHMSAS.EXE
00:36:11.0609 0808 C:\WINDOWS\EHOME\EHMSAS.EXE - ok
00:36:11.0625 0808 [ AE8028E980FCAB6CCAF68E6850D8FE50 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORSN.DLL
00:36:11.0625 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORSN.DLL - ok
00:36:11.0656 0808 [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\System32\PortableDeviceTypes.dll
00:36:11.0656 0808 C:\WINDOWS\System32\PortableDeviceTypes.dll - ok
00:36:11.0671 0808 [ AB9AAC01AC223F03707748C038A03244 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL
00:36:11.0671 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL - ok
00:36:11.0687 0808 [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\System32\PortableDeviceApi.dll
00:36:11.0687 0808 C:\WINDOWS\System32\PortableDeviceApi.dll - ok
00:36:11.0703 0808 [ 33F7659872C1C2CE295FBD1754B63957 ] C:\WINDOWS\RTHDCPL.EXE
00:36:11.0703 0808 C:\WINDOWS\RTHDCPL.EXE - ok
00:36:11.0734 0808 [ 22D71D1DB6FC789A1CE8AC6963580259 ] C:\WINDOWS\System32\HHCTRL.OCX
00:36:11.0734 0808 C:\WINDOWS\System32\HHCTRL.OCX - ok
00:36:11.0750 0808 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\System32\WEBCLNT.DLL
00:36:11.0750 0808 C:\WINDOWS\System32\WEBCLNT.DLL - ok
00:36:11.0765 0808 [ 3DC324435E21870CC3AFE5B178D4EC8E ] C:\WINDOWS\ASSEMBLY\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
00:36:11.0765 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll - ok
00:36:11.0781 0808 [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\System32\DSOUND.DLL
00:36:11.0781 0808 C:\WINDOWS\System32\DSOUND.DLL - ok
00:36:11.0796 0808 [ C74B86642F131D76C0EDE673FDF137B2 ] C:\WINDOWS\SkyTel.exe
00:36:11.0796 0808 C:\WINDOWS\SkyTel.exe - ok
00:36:11.0812 0808 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\System32\DRIVERS\SERIAL.SYS
00:36:11.0812 0808 C:\WINDOWS\System32\DRIVERS\SERIAL.SYS - ok
00:36:11.0828 0808 [ 60CC2860DDB150A2D8C9A74D614C5190 ] C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_f087864d\System.Windows.Forms.dll
00:36:11.0828 0808 C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_f087864d\System.Windows.Forms.dll - ok
00:36:11.0843 0808 [ 8B4CBBA1EA526830C7F97E7822E2493A ] C:\WINDOWS\Alcmtr.exe
00:36:11.0843 0808 C:\WINDOWS\Alcmtr.exe - ok
00:36:11.0859 0808 [ C0393EB99A6C72C6BEF9BFC4A72B33A6 ] C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
00:36:11.0859 0808 C:\Program Files\SUPERAntiSpyware\SASCORE.EXE - ok
00:36:11.0890 0808 [ 3CAABC2D0F87413EB1E0C7E0B3245E67 ] C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
00:36:11.0890 0808 C:\Acer\Empowering Technology\ePerformance\MemCheck.exe - ok
00:36:11.0906 0808 [ 3B743D7A1B3C2162D475D4E34E5C6070 ] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
00:36:11.0906 0808 C:\Acer\Empowering Technology\ePower\ePower_DMC.exe - ok
00:36:11.0937 0808 [ 0716C52D0A75F8A3CDB120875F523A43 ] C:\WINDOWS\ASSEMBLY\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
00:36:11.0937 0808 C:\WINDOWS\ASSEMBLY\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\System.ServiceProcess.dll - ok
00:36:11.0953 0808 [ 6D0A021A23A281AB9F212CF1E2BD3757 ] C:\WINDOWS\ASSEMBLY\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
00:36:11.0953 0808 C:\WINDOWS\ASSEMBLY\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll - ok
00:36:12.0000 0808 [ 8E9FD12B8BF5DAA502CE78CDEC6F5516 ] C:\Acer\Empowering Technology\ePower\Boot.exe
00:36:12.0000 0808 C:\Acer\Empowering Technology\ePower\Boot.exe - ok
00:36:12.0015 0808 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\System32\ES.DLL
00:36:12.0015 0808 C:\WINDOWS\System32\ES.DLL - ok
00:36:12.0031 0808 [ 0738BFD454919438B36CB3FC0FEB925A ] C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_d9b45053\System.dll
00:36:12.0031 0808 C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_d9b45053\System.dll - ok
00:36:12.0062 0808 [ B551BA7E3EB363FC312E6D00DEFE3030 ] C:\Acer\Empowering Technology\ePerformance\acer.empowering.shared.dll
00:36:12.0062 0808 C:\Acer\Empowering Technology\ePerformance\acer.empowering.shared.dll - ok
00:36:12.0078 0808 [ 74F02BC1911EE611A6D44DD74A89FD1D ] C:\Acer\Empowering Technology\ePerformance\acermemusagecheckservinterface.dll
00:36:12.0078 0808 C:\Acer\Empowering Technology\ePerformance\acermemusagecheckservinterface.dll - ok
00:36:12.0093 0808 [ 1E1B73FC9C17EFFE04F5676A40C82026 ] C:\WINDOWS\ASSEMBLY\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll
00:36:12.0093 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll - ok
00:36:12.0109 0808 [ 59307A84CACE50B66089DBD5F74EA17A ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
00:36:12.0109 0808 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
00:36:12.0125 0808 [ 09DEF3ABB6A196749299359AC5578DD8 ] C:\WINDOWS\System32\msxml4.dll
00:36:12.0125 0808 C:\WINDOWS\System32\msxml4.dll - ok
00:36:12.0156 0808 [ 703C3BE2C306BBAB49D231504DE6E7EF ] C:\WINDOWS\ASSEMBLY\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
00:36:12.0156 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
00:36:12.0171 0808 [ 0B68E36CED9376729F2B170F4739D013 ] C:\WINDOWS\System32\SynCOM.dll
00:36:12.0171 0808 C:\WINDOWS\System32\SynCOM.dll - ok
00:36:12.0187 0808 [ 5BEB3BDAECC6C9348FC0D169CE65ECC6 ] C:\Program Files\Launch Manager\DPortIO.sys
00:36:12.0187 0808 C:\Program Files\Launch Manager\DPortIO.sys - ok
00:36:12.0218 0808 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\System32\CRYPTSVC.DLL
00:36:12.0218 0808 C:\WINDOWS\System32\CRYPTSVC.DLL - ok
00:36:12.0234 0808 [ 3FD55016CA34850ED208F1A0D3FFD2DE ] C:\Program Files\Launch Manager\LManager.exe
00:36:12.0234 0808 C:\Program Files\Launch Manager\LManager.exe - ok
00:36:12.0250 0808 [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] C:\WINDOWS\EHOME\ehRecvr.exe
00:36:12.0250 0808 C:\WINDOWS\EHOME\ehRecvr.exe - ok
00:36:12.0265 0808 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\System32\CERTCLI.DLL
00:36:12.0265 0808 C:\WINDOWS\System32\CERTCLI.DLL - ok
00:36:12.0265 0808 [ 1C22A3866112ED41E1F3684DAE9AD5D2 ] C:\WINDOWS\System32\mmcshext.dll
00:36:12.0265 0808 C:\WINDOWS\System32\mmcshext.dll - ok
00:36:12.0296 0808 [ 0099D24356585743B0B35C222092FD8F ] C:\WINDOWS\System32\FAULTREP.DLL
00:36:12.0296 0808 C:\WINDOWS\System32\FAULTREP.DLL - ok
00:36:12.0312 0808 [ 1A83CEAF2F3021770075EE1BDA42C471 ] C:\WINDOWS\System32\SynTPAPI.dll
00:36:12.0312 0808 C:\WINDOWS\System32\SynTPAPI.dll - ok
00:36:12.0328 0808 [ 6D280BC969218AE4A72180F907C32913 ] C:\WINDOWS\EHOME\ehTrace.dll
00:36:12.0328 0808 C:\WINDOWS\EHOME\ehTrace.dll - ok
00:36:12.0343 0808 [ D3E868700D9B5E3C54B7EED060215CC1 ] C:\WINDOWS\System32\hhsetup.dll
00:36:12.0343 0808 C:\WINDOWS\System32\hhsetup.dll - ok
00:36:12.0359 0808 [ 6C8C5AB5326A5F5A891E9F4D69076FD3 ] C:\Program Files\Launch Manager\COMFNUTL.DLL
00:36:12.0359 0808 C:\Program Files\Launch Manager\COMFNUTL.DLL - ok
00:36:12.0375 0808 [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\System32\DMSERVER.DLL
00:36:12.0375 0808 C:\WINDOWS\System32\DMSERVER.DLL - ok
00:36:12.0390 0808 [ 80776884E7A05D6DA5040926F82B0273 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
00:36:12.0390 0808 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
00:36:12.0421 0808 [ A53243709439AC2A4C216B817F8D7411 ] C:\WINDOWS\EHOME\ehSched.exe
00:36:12.0421 0808 C:\WINDOWS\EHOME\ehSched.exe - ok
00:36:12.0437 0808 [ 926AFC4848FF3297BB264333BF51E21F ] C:\WINDOWS\System32\SBE.DLL
00:36:12.0437 0808 C:\WINDOWS\System32\SBE.DLL - ok
00:36:12.0453 0808 [ 47CA3A7D84BB122940216E7E7A633E9C ] C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_885513ec\System.Drawing.dll
00:36:12.0453 0808 C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_885513ec\System.Drawing.dll - ok
00:36:12.0468 0808 [ AD4FAADE819E0DA9933BEA7C01D2C763 ] C:\Program Files\ESET\ESET Smart Security\EKRN.EXE
00:36:12.0468 0808 C:\Program Files\ESET\ESET Smart Security\EKRN.EXE - ok
00:36:12.0500 0808 [ 0DC2E1B6951BD2170BC47F0EEBF629B3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe
00:36:12.0500 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe - ok
00:36:12.0515 0808 [ E325BCDBB6DED6C89F679B8AE89E975C ] C:\WINDOWS\System32\MSVIDCTL.DLL
00:36:12.0515 0808 C:\WINDOWS\System32\MSVIDCTL.DLL - ok
00:36:12.0531 0808 [ 008DF0C9D81BD814480DD9C052893E8C ] C:\WINDOWS\EHOME\ehRec.exe
00:36:12.0531 0808 C:\WINDOWS\EHOME\ehRec.exe - ok
00:36:12.0546 0808 [ 64C4C17BF6A40FF1CD21205E6FD415B8 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
00:36:12.0546 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE - ok
00:36:12.0578 0808 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCP80.DLL
00:36:12.0578 0808 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCP80.DLL - ok
00:36:12.0609 0808 [ 35EAFA4F987A2B05F110C54173836066 ] C:\Program Files\Launch Manager\SZUPFUTL.DLL
00:36:12.0609 0808 C:\Program Files\Launch Manager\SZUPFUTL.DLL - ok
00:36:12.0625 0808 [ 9FCE388428CB6466534AE7A12ACDF60C ] C:\Program Files\Launch Manager\OSDUTL.DLL
00:36:12.0625 0808 C:\Program Files\Launch Manager\OSDUTL.DLL - ok
00:36:12.0656 0808 [ C67E00C1DCA52FB369DC54E9EE653D47 ] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
00:36:12.0656 0808 C:\Acer\Empowering Technology\eRecovery\eRAgent.exe - ok
00:36:12.0671 0808 [ 5A1822B18FEE8807EB7EB33BA8CF9B0F ] C:\Program Files\Launch Manager\RGNMAKER.DLL
00:36:12.0671 0808 C:\Program Files\Launch Manager\RGNMAKER.DLL - ok
00:36:12.0687 0808 [ 34FFB6ABA2DA398BB33422E1E9275BA9 ] C:\WINDOWS\System32\QUARTZ.DLL
00:36:12.0687 0808 C:\WINDOWS\System32\QUARTZ.DLL - ok
00:36:12.0718 0808 [ 1D45A7FF7949628D466E0E884EECAA85 ] C:\Program Files\Launch Manager\CDROMUTL.DLL
00:36:12.0718 0808 C:\Program Files\Launch Manager\CDROMUTL.DLL - ok
00:36:12.0734 0808 [ 8E3122A02C3981A9681C814E2AE102F1 ] C:\Program Files\Launch Manager\MIXERUTL.DLL
00:36:12.0734 0808 C:\Program Files\Launch Manager\MIXERUTL.DLL - ok
00:36:12.0750 0808 [ C9A8F1D76F468EB1C6E05949F5485B0D ] C:\Program Files\Launch Manager\WND2FILE.DLL
00:36:12.0750 0808 C:\Program Files\Launch Manager\WND2FILE.DLL - ok
00:36:12.0765 0808 [ 2367D7249207580FD4C25B840014B5B8 ] C:\Acer\Empowering Technology\eRecovery\IT41.DLL
00:36:12.0765 0808 C:\Acer\Empowering Technology\eRecovery\IT41.DLL - ok
00:36:12.0781 0808 [ 5D2BB75DD7B79D7C5CFDAA3DFB2C7B4F ] C:\Program Files\Launch Manager\SzPtcUtl.dll
00:36:12.0781 0808 C:\Program Files\Launch Manager\SzPtcUtl.dll - ok
00:36:12.0796 0808 [ AA5E22854F56C68148EB3345DBD62970 ] C:\WINDOWS\System32\DEVENUM.DLL
00:36:12.0796 0808 C:\WINDOWS\System32\DEVENUM.DLL - ok
00:36:12.0812 0808 [ D25C03D04159D462D69F294BA7142BDB ] C:\WINDOWS\System32\MSDMO.DLL
00:36:12.0812 0808 C:\WINDOWS\System32\MSDMO.DLL - ok
00:36:12.0843 0808 [ 5B2F136FFB0291EFB259F2AB22CD35A2 ] C:\Program Files\Launch Manager\PowerUtl.dll
00:36:12.0843 0808 C:\Program Files\Launch Manager\PowerUtl.dll - ok
00:36:12.0859 0808 [ D4C9FE4558F087177C7C4F5B928FAE15 ] C:\Acer\Empowering Technology\ePower\Acer.Empowering.Windows.Forms.dll
00:36:12.0859 0808 C:\Acer\Empowering Technology\ePower\Acer.Empowering.Windows.Forms.dll - ok
00:36:12.0875 0808 [ 73B44FE5423982B2709D6EA2F674B807 ] C:\WINDOWS\ASSEMBLY\GAC\EHEPG\6.0.3000.0__31bf3856ad364e35\EHEPG.DLL
00:36:12.0875 0808 C:\WINDOWS\ASSEMBLY\GAC\EHEPG\6.0.3000.0__31bf3856ad364e35\EHEPG.DLL - ok
00:36:12.0906 0808 [ 0E34B7BB1FCF22BCC1E394D16F9E992B ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
00:36:12.0906 0808 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe - ok
00:36:12.0921 0808 [ 203D5ECB5CCDA683053CDA42DFF03573 ] C:\WINDOWS\System32\netfxperf.dll
00:36:12.0921 0808 C:\WINDOWS\System32\netfxperf.dll - ok
00:36:12.0937 0808 [ 0B467F470CC9918FDCEEDCFD7DC4D697 ] C:\WINDOWS\System32\OLEDLG.DLL
00:36:12.0937 0808 C:\WINDOWS\System32\OLEDLG.DLL - ok
00:36:12.0953 0808 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\System32\DSSENH.DLL
00:36:12.0953 0808 C:\WINDOWS\System32\DSSENH.DLL - ok
00:36:12.0968 0808 [ FFFB49BA718EB2D100E58129265D002C ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll
00:36:12.0968 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll - ok
00:36:12.0984 0808 [ 1EE99ABDCFD51F0B72C8CC57EDC99B46 ] C:\Acer\Empowering Technology\eRecovery\imagefile.dll
00:36:12.0984 0808 C:\Acer\Empowering Technology\eRecovery\imagefile.dll - ok
00:36:13.0015 0808 [ 82FF736B78E7FEE40BFA8E029A5A66C5 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
00:36:13.0015 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll - ok
00:36:13.0015 0808 [ D3F9205CC4CB07553F2F9472C767EA87 ] C:\WINDOWS\System32\FsUsbExService.Exe
00:36:13.0015 0808 C:\WINDOWS\System32\FsUsbExService.Exe - ok
00:36:13.0046 0808 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\System32\ERSVC.DLL
00:36:13.0046 0808 C:\WINDOWS\System32\ERSVC.DLL - ok
00:36:13.0062 0808 [ 0EDF40E039D92EA5EB26BF01BE9ECC50 ] C:\Program Files\Launch Manager\LGKCUTL.DLL
00:36:13.0062 0808 C:\Program Files\Launch Manager\LGKCUTL.DLL - ok
00:36:13.0078 0808 [ 5652F6CE1D9E9D8068B9D29BC21B5409 ] C:\WINDOWS\System32\OLEPRO32.DLL
00:36:13.0078 0808 C:\WINDOWS\System32\OLEPRO32.DLL - ok
00:36:13.0093 0808 [ CF9EEA7F51101A281B99FCA7AFFA2524 ] C:\WINDOWS\ASSEMBLY\GAC\ehCIR\6.0.3000.0__31bf3856ad364e35\ehCIR.dll
00:36:13.0093 0808 C:\WINDOWS\ASSEMBLY\GAC\ehCIR\6.0.3000.0__31bf3856ad364e35\ehCIR.dll - ok
00:36:13.0125 0808 [ 8EEEF4C038A3FF7E56D47D9C0B912EAC ] C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
00:36:13.0125 0808 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe - ok
00:36:13.0140 0808 [ D208280F5AE538A4AF526DBD758B97F7 ] C:\Program Files\Launch Manager\PtIOUTL.dll
00:36:13.0140 0808 C:\Program Files\Launch Manager\PtIOUTL.dll - ok
00:36:13.0171 0808 [ 8BA39E5F79366F45AF9759C1DAE346AE ] C:\WINDOWS\ASSEMBLY\GAC\ehRecObj\6.0.3000.0__31bf3856ad364e35\ehRecObj.dll
00:36:13.0171 0808 C:\WINDOWS\ASSEMBLY\GAC\ehRecObj\6.0.3000.0__31bf3856ad364e35\ehRecObj.dll - ok
00:36:13.0187 0808 [ F1430F5D20F4BB71A003209C3DB3ADDF ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
00:36:13.0187 0808 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll - ok
00:36:13.0218 0808 [ FD3CF7D8D08F00ED110A1F3771D50981 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll
00:36:13.0218 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll - ok
00:36:13.0234 0808 [ 963158EBB0701EC0E93E09CBB4B75C9E ] C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll
00:36:13.0234 0808 C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll - ok
00:36:13.0250 0808 [ 0967D9749326622FA8FDE688CA126736 ] C:\WINDOWS\ASSEMBLY\GAC\EHEPGDAT\6.0.3000.0__31bf3856ad364e35\EHEPGDAT.DLL
00:36:13.0250 0808 C:\WINDOWS\ASSEMBLY\GAC\EHEPGDAT\6.0.3000.0__31bf3856ad364e35\EHEPGDAT.DLL - ok
00:36:13.0265 0808 [ C198EBF19B85F182F2515F4C926EF30E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll
00:36:13.0265 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll - ok
00:36:13.0281 0808 [ C92D20A6E35E232004D83DC10A78878A ] C:\Program Files\Microsoft Office\Office12\USP10.DLL
00:36:13.0281 0808 C:\Program Files\Microsoft Office\Office12\USP10.DLL - ok
00:36:13.0312 0808 [ 0645AAAD99C516182EA6CBAD0D3238EC ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
00:36:13.0312 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll - ok
00:36:13.0328 0808 [ 3EA311A9C49047E6FC3B3FCF5B4BCDDC ] C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll
00:36:13.0328 0808 C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll - ok
00:36:13.0359 0808 [ E7BAA541793F289F71AB1E32D7BF9360 ] C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll
00:36:13.0359 0808 C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll - ok
00:36:13.0375 0808 [ B6335A2EFBF0B4B7D4080E8B933A9F9B ] C:\WINDOWS\ASSEMBLY\GAC\ehiProxy\6.0.3000.0__31bf3856ad364e35\ehiProxy.dll
00:36:13.0375 0808 C:\WINDOWS\ASSEMBLY\GAC\ehiProxy\6.0.3000.0__31bf3856ad364e35\ehiProxy.dll - ok
00:36:13.0390 0808 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\System32\SHFOLDER.DLL
00:36:13.0390 0808 C:\WINDOWS\System32\SHFOLDER.DLL - ok
00:36:13.0421 0808 [ 7ABCE518D36D6D1749FADB5A3825C976 ] C:\Program Files\ESET\ESET Smart Security\ekrnHips.dll
00:36:13.0421 0808 C:\Program Files\ESET\ESET Smart Security\ekrnHips.dll - ok
00:36:13.0437 0808 [ FFDB4D14C94459EA2F8864276942B5A2 ] C:\Program Files\ESET\ESET Smart Security\ekrnScan.dll
00:36:13.0437 0808 C:\Program Files\ESET\ESET Smart Security\ekrnScan.dll - ok
00:36:13.0453 0808 [ E7E294C689C28FE463AB4F94AADEE3A6 ] C:\Program Files\ESET\ESET Smart Security\ekrnAmon.dll
00:36:13.0453 0808 C:\Program Files\ESET\ESET Smart Security\ekrnAmon.dll - ok
00:36:13.0468 0808 [ 1656D5759B75480A1EF340B6AC49430D ] C:\Program Files\Launch Manager\DialCnt.dll
00:36:13.0468 0808 C:\Program Files\Launch Manager\DialCnt.dll - ok
00:36:13.0484 0808 [ 79339E3137BDE041230F28B2E562179A ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll
00:36:13.0484 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll - ok
00:36:13.0515 0808 [ A5205B3AF85B1477AB2C2A1E12201598 ] C:\WINDOWS\ASSEMBLY\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
00:36:13.0515 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll - ok
00:36:13.0531 0808 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\System32\CFGMGR32.DLL
00:36:13.0531 0808 C:\WINDOWS\System32\CFGMGR32.DLL - ok
00:36:13.0546 0808 [ 43E4758953F454090CAD65C303796ED5 ] C:\WINDOWS\System32\QUERY.DLL
00:36:13.0546 0808 C:\WINDOWS\System32\QUERY.DLL - ok
00:36:13.0562 0808 [ 69A406B6BDA95A18A1B4E6A88B0AF2D8 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll
00:36:13.0562 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll - ok
00:36:13.0593 0808 [ 3224B80217D8B32657E10F730687CEBE ] C:\Program Files\ESET\ESET Smart Security\ekrnEmon.dll
00:36:13.0593 0808 C:\Program Files\ESET\ESET Smart Security\ekrnEmon.dll - ok
00:36:13.0609 0808 [ FD0022023FB4553CB8AACAB928D9CF20 ] C:\Program Files\ESET\ESET Smart Security\ekrnDmon.dll
00:36:13.0609 0808 C:\Program Files\ESET\ESET Smart Security\ekrnDmon.dll - ok
00:36:13.0640 0808 [ 52ABC8C57DFEE5A7AAA210CE2E9DFE73 ] C:\WINDOWS\ASSEMBLY\GAC\EhCM\6.0.3000.0__31bf3856ad364e35\EhCM.dll
00:36:13.0640 0808 C:\WINDOWS\ASSEMBLY\GAC\EhCM\6.0.3000.0__31bf3856ad364e35\EhCM.dll - ok
00:36:13.0656 0808 [ 1E9A5FBCA5CCA945EE4708D2986364AC ] C:\Program Files\ESET\ESET Smart Security\ekrnEpfw.dll
00:36:13.0656 0808 C:\Program Files\ESET\ESET Smart Security\ekrnEpfw.dll - ok
00:36:13.0671 0808 [ A13B5F974652F33F9DF6BB94C7F88ABE ] C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_0899bf3b\System.Xml.dll
00:36:13.0671 0808 C:\WINDOWS\ASSEMBLY\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_0899bf3b\System.Xml.dll - ok
00:36:13.0703 0808 [ A59403B417D247CB578C4C94987F0EAB ] C:\Program Files\ESET\ESET Smart Security\ekrnSmon.dll
00:36:13.0703 0808 C:\Program Files\ESET\ESET Smart Security\ekrnSmon.dll - ok
00:36:13.0718 0808 [ 95C3026E5FBD9E8700F07EBEDAD9E6BA ] C:\Program Files\ESET\ESET Smart Security\ekrnUpdate.dll
00:36:13.0718 0808 C:\Program Files\ESET\ESET Smart Security\ekrnUpdate.dll - ok
00:36:13.0734 0808 [ DE0D00C9CB3368C49BBB8B9BCA7B3D34 ] C:\Program Files\ESET\ESET Smart Security\UPDATER.DLL
00:36:13.0750 0808 C:\Program Files\ESET\ESET Smart Security\UPDATER.DLL - ok
00:36:13.0765 0808 [ 53867EB71ECDDCC5A11844ECAC6E7C7C ] C:\Program Files\ESET\ESET Smart Security\ekrnMailPlugins.dll
00:36:13.0765 0808 C:\Program Files\ESET\ESET Smart Security\ekrnMailPlugins.dll - ok
00:36:13.0781 0808 [ 9C16C9ECC7D98123808F1D760655DCA7 ] C:\Program Files\ESET\ESET Smart Security\ekrnParental.dll
00:36:13.0781 0808 C:\Program Files\ESET\ESET Smart Security\ekrnParental.dll - ok
00:36:13.0796 0808 [ 8E091559EE14792D81B47BA26501FF42 ] C:\WINDOWS\System32\FXSPERF.DLL
00:36:13.0796 0808 C:\WINDOWS\System32\FXSPERF.DLL - ok
00:36:13.0812 0808 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\System32\DRIVERS\HTTP.SYS
00:36:13.0812 0808 C:\WINDOWS\System32\DRIVERS\HTTP.SYS - ok
00:36:13.0828 0808 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\PCHEALTH\HELPCTR\BINARIES\PCHSVC.DLL
00:36:13.0828 0808 C:\WINDOWS\PCHEALTH\HELPCTR\BINARIES\PCHSVC.DLL - ok
00:36:13.0843 0808 [ 47C1DE0A890613FFCFF1D67648EEDF90 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:36:13.0843 0808 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
00:36:13.0859 0808 [ 2C88B7A18EE8FDB4135B64C603CCBD16 ] C:\Program Files\Microsoft Office\Office12\OLMAPI32.DLL
00:36:13.0859 0808 C:\Program Files\Microsoft Office\Office12\OLMAPI32.DLL - ok
00:36:13.0875 0808 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\System32\SPOOLSS.DLL
00:36:13.0890 0808 C:\WINDOWS\System32\SPOOLSS.DLL - ok
00:36:13.0906 0808 [ 4D8D5B1C895EA0F2A721B98A7CE198F1 ] C:\WINDOWS\System32\DRIVERS\INT15.SYS
00:36:13.0906 0808 C:\WINDOWS\System32\DRIVERS\INT15.SYS - ok
00:36:13.0921 0808 [ 691B9B7C0CC1653732717D292D6B305D ] C:\Program Files\Java\JRE6\BIN\JQS.EXE
00:36:13.0921 0808 C:\Program Files\Java\JRE6\BIN\JQS.EXE - ok
00:36:13.0937 0808 [ 66946DE593185983B6D05F837D452262 ] C:\WINDOWS\EHOME\EHUI.DLL
00:36:13.0937 0808 C:\WINDOWS\EHOME\EHUI.DLL - ok
00:36:13.0953 0808 [ 2891B205E8F17AC9BC6DC217B49CC6A1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll
00:36:13.0953 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll - ok
00:36:13.0984 0808 [ 71652EC3797708BC7D86674E4F26EC15 ] C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll
00:36:13.0984 0808 C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll - ok
00:36:14.0000 0808 [ FC94D575B91692432A1400F569A0F98B ] C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll
00:36:14.0000 0808 C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll - ok
00:36:14.0015 0808 [ 52D28AE9E168BA60F2DFA00EDD101B14 ] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
00:36:14.0015 0808 C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe - ok
00:36:14.0031 0808 [ 855F6333E3A4DFC6F3C8B0520C261FCD ] C:\WINDOWS\System32\MSFTEDIT.DLL
00:36:14.0031 0808 C:\WINDOWS\System32\MSFTEDIT.DLL - ok
00:36:14.0062 0808 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\Java\JRE6\BIN\MSVCR71.DLL
00:36:14.0062 0808 C:\Program Files\Java\JRE6\BIN\MSVCR71.DLL - ok
00:36:14.0078 0808 [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\System32\LOCALSPL.DLL
00:36:14.0078 0808 C:\WINDOWS\System32\LOCALSPL.DLL - ok
00:36:14.0093 0808 [ 7043D485AEAE435312659FF1461F1491 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSO.DLL
00:36:14.0093 0808 C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSO.DLL - ok
00:36:14.0109 0808 [ 7AC813E17BD960987C5DA788AF295361 ] C:\WINDOWS\EHOME\EhDebug.dll
00:36:14.0109 0808 C:\WINDOWS\EHOME\EhDebug.dll - ok
00:36:14.0140 0808 [ D658AB1B55127D18DCFBCAC8CAAEA522 ] C:\Program Files\Hp\HP Software Update\hpwuschd2.exe
00:36:14.0140 0808 C:\Program Files\Hp\HP Software Update\hpwuschd2.exe - ok
00:36:14.0156 0808 [ 3550DFA6FFFBD7604DABB28DF4ABF096 ] C:\WINDOWS\EHOME\CUSTSAT.DLL
00:36:14.0156 0808 C:\WINDOWS\EHOME\CUSTSAT.DLL - ok
00:36:14.0171 0808 [ 7A7E20FBC4CC3FC28EFA2CF05706C9F8 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll
00:36:14.0171 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll - ok
00:36:14.0187 0808 [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\System32\PDH.DLL
00:36:14.0187 0808 C:\WINDOWS\System32\PDH.DLL - ok
00:36:14.0218 0808 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\System32\CNBJMON.DLL
00:36:14.0218 0808 C:\WINDOWS\System32\CNBJMON.DLL - ok
00:36:14.0234 0808 [ 498FA54C6F5B0BA1D03CBDCDDF2D7DE2 ] C:\WINDOWS\System32\CNMLM9D.DLL
00:36:14.0234 0808 C:\WINDOWS\System32\CNMLM9D.DLL - ok
00:36:14.0250 0808 [ 576FF75D51B79536C3AE7659B482B7D5 ] C:\WINDOWS\ASSEMBLY\GAC\BDATunePIA\6.0.3000.0__31bf3856ad364e35\bdatunepia.dll
00:36:14.0250 0808 C:\WINDOWS\ASSEMBLY\GAC\BDATunePIA\6.0.3000.0__31bf3856ad364e35\bdatunepia.dll - ok
00:36:14.0265 0808 [ 8BFDC238B5D61D9D19B0FFEFD249EEC1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Runtime.dll
00:36:14.0265 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Runtime.dll - ok
00:36:14.0296 0808 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\System32\ODBCBCP.DLL
00:36:14.0296 0808 C:\WINDOWS\System32\ODBCBCP.DLL - ok
00:36:14.0312 0808 [ 0F0F5B564C5A3C9B38A6220230252567 ] C:\WINDOWS\EHOME\ehProxy.dll
00:36:14.0312 0808 C:\WINDOWS\EHOME\ehProxy.dll - ok
00:36:14.0328 0808 [ 4A09096FB4DA7E8A8F3DCECA0B78FFEB ] C:\WINDOWS\System32\CNMNPPM.DLL
00:36:14.0328 0808 C:\WINDOWS\System32\CNMNPPM.DLL - ok
00:36:14.0343 0808 [ 5F0B7C746935E585BB9ABD0DF20DF600 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.Shared.dll
00:36:14.0343 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.Shared.dll - ok
00:36:14.0359 0808 [ AB8134127F786C9603817B5318DCEEAA ] C:\Program Files\Common Files\LightScribe\LSSrvc.exe
00:36:14.0359 0808 C:\Program Files\Common Files\LightScribe\LSSrvc.exe - ok
00:36:14.0375 0808 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\System32\SRVSVC.DLL
00:36:14.0375 0808 C:\WINDOWS\System32\SRVSVC.DLL - ok
00:36:14.0406 0808 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\Common Files\LightScribe\MSVCR71.DLL
00:36:14.0406 0808 C:\Program Files\Common Files\LightScribe\MSVCR71.DLL - ok
00:36:14.0421 0808 [ 6F640DC052CF77161A23E29261593793 ] C:\WINDOWS\ASSEMBLY\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll
00:36:14.0421 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll - ok
00:36:14.0437 0808 [ 32CE7014A0E11A2D04DF69CA3BA8D6C8 ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Foundation.dll
00:36:14.0437 0808 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Foundation.dll - ok
00:36:14.0468 0808 [ 7850F06C708FAAC5A2DE1A704C1875E9 ] C:\Program Files\Launch Manager\MMDUtl.dll
00:36:14.0468 0808 C:\Program Files\Launch Manager\MMDUtl.dll - ok
00:36:14.0484 0808 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\System32\NETMSG.DLL
00:36:14.0484 0808 C:\WINDOWS\System32\NETMSG.DLL - ok
00:36:14.0515 0808 [ 8744C65FCCD56310D0FDBF3ADBF39C4D ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0601.dll
00:36:14.0515 0808 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0601.dll - ok
00:36:14.0531 0808 [ B51D29A14B4EDEB4ED0AD864A3FF9556 ] C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll
00:36:14.0531 0808 C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll - ok
00:36:14.0546 0808 [ 8E229002C6857D538178C42B5D1741A3 ] C:\WINDOWS\System32\hpinksts8811LM.dll
00:36:14.0546 0808 C:\WINDOWS\System32\hpinksts8811LM.dll - ok
00:36:14.0562 0808 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files\Common Files\LightScribe\MSVCP71.DLL
00:36:14.0562 0808 C:\Program Files\Common Files\LightScribe\MSVCP71.DLL - ok
00:36:14.0578 0808 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\System32\DRIVERS\SRV.SYS
00:36:14.0578 0808 C:\WINDOWS\System32\DRIVERS\SRV.SYS - ok
00:36:14.0609 0808 [ CC6292CA575E851E5B74BF8883AB967A ] C:\WINDOWS\System32\FXSMON.DLL
00:36:14.0609 0808 C:\WINDOWS\System32\FXSMON.DLL - ok
00:36:14.0625 0808 [ BDB83C844EDEC9BD01A94750D2C38DDF ] C:\WINDOWS\System32\FXSEVENT.DLL
00:36:14.0625 0808 C:\WINDOWS\System32\FXSEVENT.DLL - ok
00:36:14.0640 0808 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\System32\PJLMON.DLL
00:36:14.0640 0808 C:\WINDOWS\System32\PJLMON.DLL - ok
00:36:14.0656 0808 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\System32\TCPMON.DLL
00:36:14.0656 0808 C:\WINDOWS\System32\TCPMON.DLL - ok
00:36:14.0687 0808 [ 74F4372AF97A587ECEC527EC34955712 ] C:\WINDOWS\System32\DRIVERS\MDMXSDK.SYS
00:36:14.0687 0808 C:\WINDOWS\System32\DRIVERS\MDMXSDK.SYS - ok
00:36:14.0703 0808 [ 30D9CFDDDE206082A5A3CF71AAB6C9C3 ] C:\WINDOWS\ASSEMBLY\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
00:36:14.0703 0808 C:\WINDOWS\ASSEMBLY\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - ok
00:36:14.0718 0808 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\System32\USBMON.DLL
00:36:14.0718 0808 C:\WINDOWS\System32\USBMON.DLL - ok
00:36:14.0750 0808 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\System32\IPSECSVC.DLL
00:36:14.0750 0808 C:\WINDOWS\System32\IPSECSVC.DLL - ok
00:36:14.0765 0808 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\System32\NETMAN.DLL
00:36:14.0765 0808 C:\WINDOWS\System32\NETMAN.DLL - ok
00:36:14.0781 0808 [ 8142E515094D06FB6710912ACCBD1C67 ] C:\WINDOWS\System32\SPOOL\PRTPROCS\W32X86\CNMPD9D.DLL
00:36:14.0781 0808 C:\WINDOWS\System32\SPOOL\PRTPROCS\W32X86\CNMPD9D.DLL - ok
00:36:14.0796 0808 [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\System32\OAKLEY.DLL
00:36:14.0796 0808 C:\WINDOWS\System32\OAKLEY.DLL - ok
00:36:14.0812 0808 [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\System32\SPOOL\PRTPROCS\W32X86\filterpipelineprintproc.dll
00:36:14.0812 0808 C:\WINDOWS\System32\SPOOL\PRTPROCS\W32X86\filterpipelineprintproc.dll - ok
00:36:14.0843 0808 [ 5B19B557B0C188210A56A6B699D90B8F ] C:\WINDOWS\System32\REGSVC.DLL
00:36:14.0843 0808 C:\WINDOWS\System32\REGSVC.DLL - ok
00:36:14.0859 0808 [ EA08C74D9BE05E53D3C92456413AA656 ] C:\WINDOWS\ASSEMBLY\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.Thunk.dll
00:36:14.0859 0808 C:\WINDOWS\ASSEMBLY\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.Thunk.dll - ok
00:36:14.0875 0808 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\System32\SRSVC.DLL
00:36:14.0875 0808 C:\WINDOWS\System32\SRSVC.DLL - ok
00:36:14.0890 0808 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\System32\PERFDISK.DLL
00:36:14.0890 0808 C:\WINDOWS\System32\PERFDISK.DLL - ok
00:36:14.0921 0808 [ F348280907B38FDBDB3CEF55D456E149 ] C:\WINDOWS\System32\SPOOL\PRTPROCS\W32X86\MSONPPPR.DLL
00:36:14.0921 0808 C:\WINDOWS\System32\SPOOL\PRTPROCS\W32X86\MSONPPPR.DLL - ok
00:36:14.0937 0808 [ 19B50BEC9935BB66C61E6EC36D17BE23 ] C:\WINDOWS\ASSEMBLY\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
00:36:14.0937 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll - ok
00:36:14.0968 0808 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\System32\COMSVCS.DLL
00:36:14.0968 0808 C:\WINDOWS\System32\COMSVCS.DLL - ok
00:36:14.0984 0808 [ 913AF88B0291D7D3A0FDC92F5E1CC7D7 ] C:\WINDOWS\System32\PERFNET.DLL
00:36:14.0984 0808 C:\WINDOWS\System32\PERFNET.DLL - ok
00:36:15.0000 0808 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\System32\SENS.DLL
00:36:15.0000 0808 C:\WINDOWS\System32\SENS.DLL - ok
00:36:15.0015 0808 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\System32\WINIPSEC.DLL
00:36:15.0015 0808 C:\WINDOWS\System32\WINIPSEC.DLL - ok
00:36:15.0031 0808 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\System32\SECLOGON.DLL
00:36:15.0031 0808 C:\WINDOWS\System32\SECLOGON.DLL - ok
00:36:15.0046 0808 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\System32\PSTORSVC.DLL
00:36:15.0046 0808 C:\WINDOWS\System32\PSTORSVC.DLL - ok
00:36:15.0062 0808 [ 8F27080C762E074B8F39A904FD630B7D ] C:\Program Files\ESET\ESET Smart Security\egui.exe
00:36:15.0062 0808 C:\Program Files\ESET\ESET Smart Security\egui.exe - ok
00:36:15.0078 0808 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\System32\WIN32SPL.DLL
00:36:15.0078 0808 C:\WINDOWS\System32\WIN32SPL.DLL - ok
00:36:15.0093 0808 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\System32\NETRAP.DLL
00:36:15.0093 0808 C:\WINDOWS\System32\NETRAP.DLL - ok
00:36:15.0125 0808 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80U.DLL
00:36:15.0125 0808 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80U.DLL - ok
00:36:15.0156 0808 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\System32\INETPP.DLL
00:36:15.0156 0808 C:\WINDOWS\System32\INETPP.DLL - ok
00:36:15.0171 0808 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\System32\PSBASE.DLL
00:36:15.0171 0808 C:\WINDOWS\System32\PSBASE.DLL - ok
00:36:15.0187 0808 [ B77081F8221968C7DAB794B0BA55C43E ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
00:36:15.0187 0808 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
00:36:15.0203 0808 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\System32\PERFOS.DLL
00:36:15.0203 0808 C:\WINDOWS\System32\PERFOS.DLL - ok
00:36:15.0218 0808 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\System32\ssdpsrv.dll
00:36:15.0218 0808 C:\WINDOWS\System32\ssdpsrv.dll - ok
00:36:15.0234 0808 [ 1793CC660605F63B14FB96C7707F75BA ] C:\WINDOWS\System32\PERFPROC.DLL
00:36:15.0234 0808 C:\WINDOWS\System32\PERFPROC.DLL - ok
00:36:15.0265 0808 [ B4459D13473D07FCB43365C02732DE16 ] C:\WINDOWS\System32\PSCHDPRF.DLL
00:36:15.0265 0808 C:\WINDOWS\System32\PSCHDPRF.DLL - ok
00:36:15.0281 0808 [ 1F3A82333046F4B97B2BB148ABF38D54 ] C:\WINDOWS\System32\TRAFFIC.DLL
00:36:15.0281 0808 C:\WINDOWS\System32\TRAFFIC.DLL - ok
00:36:15.0296 0808 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\System32\wiaservc.dll
00:36:15.0296 0808 C:\WINDOWS\System32\wiaservc.dll - ok
00:36:15.0312 0808 [ 5F1D5F88303D4A4DBC8E5F97BA967CC3 ] C:\WINDOWS\System32\ctfmon.exe
00:36:15.0312 0808 C:\WINDOWS\System32\ctfmon.exe - ok
00:36:15.0328 0808 [ B0B0D7905AC71BC278F17F455E182611 ] C:\WINDOWS\System32\RASCTRS.DLL
00:36:15.0328 0808 C:\WINDOWS\System32\RASCTRS.DLL - ok
00:36:15.0343 0808 [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\System32\MSCTF.DLL
00:36:15.0343 0808 C:\WINDOWS\System32\MSCTF.DLL - ok
00:36:15.0375 0808 [ F9DD799E07ED5028DB2F1FFEA72C9357 ] C:\WINDOWS\System32\RSVPPERF.DLL
00:36:15.0375 0808 C:\WINDOWS\System32\RSVPPERF.DLL - ok
00:36:15.0390 0808 [ B226F8A4D780ACDF76145B58BB791D5B ] C:\WINDOWS\System32\DRIVERS\symlcbrd.sys
00:36:15.0390 0808 C:\WINDOWS\System32\DRIVERS\symlcbrd.sys - ok
00:36:15.0406 0808 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\System32\COLBACT.DLL
00:36:15.0406 0808 C:\WINDOWS\System32\COLBACT.DLL - ok
00:36:15.0421 0808 [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\System32\MTXCLU.DLL
00:36:15.0421 0808 C:\WINDOWS\System32\MTXCLU.DLL - ok
00:36:15.0437 0808 [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\System32\MSUTB.DLL
00:36:15.0437 0808 C:\WINDOWS\System32\MSUTB.DLL - ok
00:36:15.0468 0808 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\System32\MSCMS.DLL
00:36:15.0468 0808 C:\WINDOWS\System32\MSCMS.DLL - ok
00:36:15.0484 0808 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\System32\tapisrv.dll
00:36:15.0484 0808 C:\WINDOWS\System32\tapisrv.dll - ok
00:36:15.0515 0808 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\System32\CLUSAPI.DLL
00:36:15.0515 0808 C:\WINDOWS\System32\CLUSAPI.DLL - ok
00:36:15.0531 0808 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\System32\RESUTILS.DLL
00:36:15.0531 0808 C:\WINDOWS\System32\RESUTILS.DLL - ok
00:36:15.0546 0808 [ 6951B89B4F591AA694048A6CD0E5224A ] C:\WINDOWS\System32\tapiperf.dll
00:36:15.0546 0808 C:\WINDOWS\System32\tapiperf.dll - ok
00:36:15.0562 0808 [ DBE2B62353660ECCA0D75EA307A717E9 ] C:\WINDOWS\System32\Perfctrs.dll
00:36:15.0562 0808 C:\WINDOWS\System32\Perfctrs.dll - ok
00:36:15.0578 0808 [ 97DD70FECA64FB4F63DE7BB7E66A80B1 ] C:\WINDOWS\System32\DRIVERS\TVicPort.sys
00:36:15.0578 0808 C:\WINDOWS\System32\DRIVERS\TVicPort.sys - ok
00:36:15.0593 0808 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\System32\trkwks.dll
00:36:15.0593 0808 C:\WINDOWS\System32\trkwks.dll - ok
00:36:15.0609 0808 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
00:36:15.0609 0808 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe - ok
00:36:15.0640 0808 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
00:36:15.0640 0808 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll - ok
00:36:15.0671 0808 [ A5E7A68CA8E60B677D75221A200214A7 ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
00:36:15.0671 0808 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
00:36:15.0687 0808 [ 031459FE62E445EDDF5EDFA7C9837849 ] C:\Program Files\ATI Technologies\ATI.ACE\ATIDEMGR.dll
00:36:15.0687 0808 C:\Program Files\ATI Technologies\ATI.ACE\ATIDEMGR.dll - ok
00:36:15.0703 0808 [ F6FAEC07446A78A9C5AF4558FF5BD118 ] C:\WINDOWS\IME\SPTIP.DLL
00:36:15.0703 0808 C:\WINDOWS\IME\SPTIP.DLL - ok
00:36:15.0718 0808 [ 7EFD2114EAD1AC72342610D7192BFB32 ] C:\WINDOWS\System32\perfts.dll
00:36:15.0718 0808 C:\WINDOWS\System32\perfts.dll - ok
00:36:15.0750 0808 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\System32\WBEM\wmisvc.dll
00:36:15.0750 0808 C:\WINDOWS\System32\WBEM\wmisvc.dll - ok
00:36:15.0765 0808 [ 7A9DFD6D5E2EFCA43AC1F231DF2E1D96 ] C:\WINDOWS\ASSEMBLY\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll
00:36:15.0765 0808 C:\WINDOWS\ASSEMBLY\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll - ok
00:36:15.0781 0808 [ 9D39D9E07C180127252E176EC2B41487 ] C:\WINDOWS\System32\UTILDLL.dll
00:36:15.0781 0808 C:\WINDOWS\System32\UTILDLL.dll - ok
00:36:15.0796 0808 [ 99EC655E7D79FF515991FF322F30CB70 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll
00:36:15.0796 0808 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll - ok
00:36:15.0828 0808 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\System32\WBEM\WMIUTILS.DLL
00:36:15.0828 0808 C:\WINDOWS\System32\WBEM\WMIUTILS.DLL - ok
00:36:15.0843 0808 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\System32\VSSAPI.DLL
00:36:15.0843 0808 C:\WINDOWS\System32\VSSAPI.DLL - ok
00:36:15.0859 0808 [ 40AC8590CC9006DBB99FFCB37879D4C6 ] C:\WINDOWS\System32\DRIVERS\zntport.sys
00:36:15.0859 0808 C:\WINDOWS\System32\DRIVERS\zntport.sys - ok
00:36:15.0875 0808 [ E616A6A6E91B0A86F2F6217CDE835FFE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
00:36:15.0875 0808 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe - ok
00:36:15.0906 0808 [ 75EE1625AD8B52C5FAA1CCB1B82FB750 ] C:\WINDOWS\System32\WBEM\wmiaprpl.dll
00:36:15.0906 0808 C:\WINDOWS\System32\WBEM\wmiaprpl.dll - ok
00:36:15.0921 0808 [ 7F2AC17F35667661E1F9B8D4AE7CB447 ] C:\WINDOWS\System32\ZuneBusEnum.exe
00:36:15.0921 0808 C:\WINDOWS\System32\ZuneBusEnum.exe - ok
00:36:15.0937 0808 [ BE56D0547E24644DEEB19397521B1EAA ] C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\GTN.DLL
00:36:15.0937 0808 C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\GTN.DLL - ok
00:36:15.0953 0808 [ 6358C181BF021970A897C1FAB0ECF5D2 ] C:\WINDOWS\System32\loadperf.dll
00:36:15.0953 0808 C:\WINDOWS\System32\loadperf.dll - ok
00:36:15.0968 0808 [ 566636B4EE2F9A36AE5AF78B60ADF631 ] C:\Program Files\Launch Manager\ScnODvis.exe
00:36:15.0968 0808 C:\Program Files\Launch Manager\ScnODvis.exe - ok
00:36:16.0000 0808 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\MSVCR90.DLL
00:36:16.0000 0808 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\MSVCR90.DLL - ok
00:36:16.0015 0808 [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
00:36:16.0015 0808 C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
00:36:16.0031 0808 [ D1E18F4AE94FFEC7270BE0A10C0B295E ] C:\WINDOWS\System32\XMLLITE.DLL
00:36:16.0031 0808 C:\WINDOWS\System32\XMLLITE.DLL - ok
00:36:16.0046 0808 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\System32\wuauserv.dll
00:36:16.0046 0808 C:\WINDOWS\System32\wuauserv.dll - ok
00:36:16.0062 0808 [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\System32\browser.dll
00:36:16.0062 0808 C:\WINDOWS\System32\browser.dll - ok
00:36:16.0093 0808 [ E97D6A8684466DF94FF3BC24FB787A07 ] C:\WINDOWS\System32\fxssvc.exe
00:36:16.0093 0808 C:\WINDOWS\System32\fxssvc.exe - ok
00:36:16.0109 0808 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\System32\wuaueng.dll
00:36:16.0109 0808 C:\WINDOWS\System32\wuaueng.dll - ok
00:36:16.0125 0808 [ 1144EF6B4BB72E33B41912AE1AE4F97A ] C:\WINDOWS\System32\FXSTIFF.DLL
00:36:16.0125 0808 C:\WINDOWS\System32\FXSTIFF.DLL - ok
00:36:16.0140 0808 [ 9B9F1C38D559047B8AC0DBA2D5FEBDE9 ] C:\WINDOWS\System32\KsUser.dll
00:36:16.0140 0808 C:\WINDOWS\System32\KsUser.dll - ok
00:36:16.0156 0808 [ 0329D0A4F230094B669A87BB3B85606E ] C:\WINDOWS\System32\FXSAPI.DLL
00:36:16.0156 0808 C:\WINDOWS\System32\FXSAPI.DLL - ok
00:36:16.0171 0808 [ DF0A511F38F16016BF658FCA0090CB87 ] C:\WINDOWS\EHOME\mcrdsvc.exe
00:36:16.0171 0808 C:\WINDOWS\EHOME\mcrdsvc.exe - ok
00:36:16.0203 0808 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\System32\Cabinet.dll
00:36:16.0203 0808 C:\WINDOWS\System32\Cabinet.dll - ok
00:36:16.0218 0808 [ 0CE5F8AE9C371A965D17E3F2ED134809 ] C:\WINDOWS\System32\FXST30.DLL
00:36:16.0218 0808 C:\WINDOWS\System32\FXST30.DLL - ok
00:36:16.0250 0808 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\System32\SSDPAPI.DLL
00:36:16.0250 0808 C:\WINDOWS\System32\SSDPAPI.DLL - ok
00:36:16.0265 0808 [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\System32\mspatcha.dll
00:36:16.0265 0808 C:\WINDOWS\System32\mspatcha.dll - ok
00:36:16.0281 0808 [ 317C54DCAB9EE29CD4B9F55D197A90D1 ] C:\WINDOWS\System32\MSISIP.DLL
00:36:16.0281 0808 C:\WINDOWS\System32\MSISIP.DLL - ok
00:36:16.0296 0808 [ 2D583E2844FDD592D1629EB6B10E5702 ] C:\WINDOWS\System32\FXSROUTE.DLL
00:36:16.0296 0808 C:\WINDOWS\System32\FXSROUTE.DLL - ok
00:36:16.0328 0808 [ 3A6D465F379E5C815F4AD565391E654C ] C:\WINDOWS\System32\wshext.dll
00:36:16.0328 0808 C:\WINDOWS\System32\wshext.dll - ok
00:36:16.0359 0808 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\System32\unimdm.tsp
00:36:16.0359 0808 C:\WINDOWS\System32\unimdm.tsp - ok
00:36:16.0375 0808 [ CC5CB8DC9144F3D3F86BC9FEA6843EAA ] C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
00:36:16.0375 0808 C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe - ok
00:36:16.0390 0808 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\System32\uniplat.dll
00:36:16.0390 0808 C:\WINDOWS\System32\uniplat.dll - ok
00:36:16.0421 0808 [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\System32\wscsvc.dll
00:36:16.0421 0808 C:\WINDOWS\System32\wscsvc.dll - ok
00:36:16.0437 0808 [ C2FF17734176CD15221C10044EF0BA1A ] C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
00:36:16.0437 0808 C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe - ok
00:36:16.0453 0808 [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\System32\ipnathlp.dll
00:36:16.0453 0808 C:\WINDOWS\System32\ipnathlp.dll - ok
00:36:16.0468 0808 [ CA8C34CFB6573800B9D6AF99C419228C ] C:\Acer\Empowering Technology\LOG4NET.DLL
00:36:16.0468 0808 C:\Acer\Empowering Technology\LOG4NET.DLL - ok
00:36:16.0484 0808 [ 9129E0F3F7C21F80BBD5652362DED395 ] C:\Acer\Empowering Technology\acer.empowering.shared.dll
00:36:16.0484 0808 C:\Acer\Empowering Technology\acer.empowering.shared.dll - ok
00:36:16.0531 0808 [ 3CAEAE7608F1BD7BA873A3B02895B106 ] C:\WINDOWS\System32\STI.DLL
00:36:16.0531 0808 C:\WINDOWS\System32\STI.DLL - ok
00:36:16.0531 0808 [ 60EC6D713F6609139CE4A86C62C893D7 ] C:\Acer\Empowering Technology\acer.empowering.framework.presenter.dll
00:36:16.0531 0808 C:\Acer\Empowering Technology\acer.empowering.framework.presenter.dll - ok
00:36:16.0546 0808 [ 6C3A325150C86FA04471B9009F50A066 ] C:\Acer\Empowering Technology\acer.empowering.framework.launchbarview.dll
00:36:16.0546 0808 C:\Acer\Empowering Technology\acer.empowering.framework.launchbarview.dll - ok
00:36:16.0578 0808 [ 0888D7BE5DFF0B3C180893E17C159F9C ] C:\Acer\Empowering Technology\acer.empowering.windows.forms.dll
00:36:16.0578 0808 C:\Acer\Empowering Technology\acer.empowering.windows.forms.dll - ok
00:36:16.0593 0808 [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\System32\upnp.dll
00:36:16.0593 0808 C:\WINDOWS\System32\upnp.dll - ok
00:36:16.0609 0808 [ 068A417682C74CD91F20F73398623430 ] C:\Acer\Empowering Technology\acer.empowering.framework.host.dll
00:36:16.0609 0808 C:\Acer\Empowering Technology\acer.empowering.framework.host.dll - ok
00:36:16.0640 0808 [ 0BE36F6DAF64E10825D0DB481EA0C4BA ] C:\Acer\Empowering Technology\acer.empowering.framework.passwordsetting.dll
00:36:16.0640 0808 C:\Acer\Empowering Technology\acer.empowering.framework.passwordsetting.dll - ok
00:36:16.0656 0808 [ B0F266EF7AE30D9B8F5D456225A6CC29 ] C:\Acer\Empowering Technology\acer.empowering.framework.interface.dll
00:36:16.0656 0808 C:\Acer\Empowering Technology\acer.empowering.framework.interface.dll - ok
00:36:16.0687 0808 [ C94106C2520AA38922C6B3E0D41A85D0 ] C:\Acer\Empowering Technology\ePerformance\Acer.Empowering.ePerformance.Plugin.dll
00:36:16.0687 0808 C:\Acer\Empowering Technology\ePerformance\Acer.Empowering.ePerformance.Plugin.dll - ok
00:36:16.0703 0808 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\System32\unimdmat.dll
00:36:16.0703 0808 C:\WINDOWS\System32\unimdmat.dll - ok
00:36:16.0718 0808 [ 2916A2365F940C9DE054B7F21F8880F2 ] C:\Acer\Empowering Technology\ePerformance\VIEWS.DLL
00:36:16.0718 0808 C:\Acer\Empowering Technology\ePerformance\VIEWS.DLL - ok
00:36:16.0750 0808 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\System32\modemui.dll
00:36:16.0750 0808 C:\WINDOWS\System32\modemui.dll - ok
00:36:16.0765 0808 [ 8BEE8AADC99C2E380FF1E2138BA1FA44 ] C:\Acer\Empowering Technology\ePerformance\presenters.dll
00:36:16.0765 0808 C:\Acer\Empowering Technology\ePerformance\presenters.dll - ok
00:36:16.0781 0808 [ 5FF9DA61D5D88410EB048B1046401517 ] C:\Acer\Empowering Technology\ePerformance\WIDGET.DLL
00:36:16.0781 0808 C:\Acer\Empowering Technology\ePerformance\WIDGET.DLL - ok
00:36:16.0796 0808 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\System32\WBEM\wbemcore.dll
00:36:16.0796 0808 C:\WINDOWS\System32\WBEM\wbemcore.dll - ok
00:36:16.0812 0808 [ 45A7DB897DAFB35AAF6E9AE41E1FD6D6 ] C:\Acer\Empowering Technology\ePerformance\acer.empowering.shared.patterns.dll
00:36:16.0812 0808 C:\Acer\Empowering Technology\ePerformance\acer.empowering.shared.patterns.dll - ok
00:36:16.0828 0808 [ 034BE4668A45720F9CA957DE9F8F8396 ] C:\Acer\Empowering Technology\ePerformance\MODELS.DLL
00:36:16.0828 0808 C:\Acer\Empowering Technology\ePerformance\MODELS.DLL - ok
00:36:16.0859 0808 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\System32\WBEM\esscli.dll
00:36:16.0859 0808 C:\WINDOWS\System32\WBEM\esscli.dll - ok
00:36:16.0875 0808 [ 8666B3666623AC74726FDE39A329AF0E ] C:\Acer\Empowering Technology\ePerformance\acer.empowering.eperformance.eperformancelibrary.dll
00:36:16.0875 0808 C:\Acer\Empowering Technology\ePerformance\acer.empowering.eperformance.eperformancelibrary.dll - ok
00:36:16.0890 0808 [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\System32\WBEM\FASTPROX.DLL
00:36:16.0890 0808 C:\WINDOWS\System32\WBEM\FASTPROX.DLL - ok
00:36:16.0906 0808 [ 4E98E1D2A8DE50BBEE43B3F0C592559F ] C:\Acer\Empowering Technology\ePower\ePower_UI.dll
00:36:16.0906 0808 C:\Acer\Empowering Technology\ePower\ePower_UI.dll - ok
00:36:16.0921 0808 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\System32\kmddsp.tsp
00:36:16.0921 0808 C:\WINDOWS\System32\kmddsp.tsp - ok
00:36:16.0953 0808 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\System32\ndptsp.tsp
00:36:16.0953 0808 C:\WINDOWS\System32\ndptsp.tsp - ok
00:36:16.0968 0808 [ 1D326842006C4BE77ECD848CF89F01AB ] C:\WINDOWS\System32\wups.dll
00:36:16.0968 0808 C:\WINDOWS\System32\wups.dll - ok
00:36:16.0984 0808 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\System32\WBEM\WBEMSVC.DLL
00:36:16.0984 0808 C:\WINDOWS\System32\WBEM\WBEMSVC.DLL - ok
00:36:17.0000 0808 [ 5BD1234E11B39C63BBA87022AF6D43C2 ] C:\WINDOWS\System32\wups2.dll
00:36:17.0000 0808 C:\WINDOWS\System32\wups2.dll - ok
00:36:17.0031 0808 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\System32\ipconf.tsp
00:36:17.0031 0808 C:\WINDOWS\System32\ipconf.tsp - ok
00:36:17.0046 0808 [ 28EA727BA1968E0F3C7A01C1C6A42269 ] C:\Acer\Empowering Technology\ePower\ePM_Widget.dll
00:36:17.0046 0808 C:\Acer\Empowering Technology\ePower\ePM_Widget.dll - ok
00:36:17.0078 0808 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\System32\h323.tsp
00:36:17.0078 0808 C:\WINDOWS\System32\h323.tsp - ok
00:36:17.0093 0808 [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\System32\drprov.dll
00:36:17.0093 0808 C:\WINDOWS\System32\drprov.dll - ok
00:36:17.0109 0808 [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\System32\ntlanman.dll
00:36:17.0109 0808 C:\WINDOWS\System32\ntlanman.dll - ok
00:36:17.0125 0808 [ ADF1E04EC48A8E12288A7AEC7575D46E ] C:\Acer\Empowering Technology\ePower\ePMWidget.dll
00:36:17.0125 0808 C:\Acer\Empowering Technology\ePower\ePMWidget.dll - ok
00:36:17.0140 0808 [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\System32\NETUI0.dll
00:36:17.0140 0808 C:\WINDOWS\System32\NETUI0.dll - ok
00:36:17.0171 0808 [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\System32\NETUI1.dll
00:36:17.0171 0808 C:\WINDOWS\System32\NETUI1.dll - ok
00:36:17.0187 0808 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\System32\WBEM\repdrvfs.dll
00:36:17.0187 0808 C:\WINDOWS\System32\WBEM\repdrvfs.dll - ok
00:36:17.0203 0808 [ 2A379BEC96EFDDF5629CC7055E56FFF6 ] C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll
00:36:17.0203 0808 C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll - ok
00:36:17.0218 0808 [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\System32\davclnt.dll
00:36:17.0218 0808 C:\WINDOWS\System32\davclnt.dll - ok
00:36:17.0234 0808 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\System32\hidphone.tsp
00:36:17.0234 0808 C:\WINDOWS\System32\hidphone.tsp - ok
00:36:17.0265 0808 [ B253621A9295C68416F095261AAB7047 ] C:\Acer\Empowering Technology\eRecovery\eRecoveryUI.dll
00:36:17.0265 0808 C:\Acer\Empowering Technology\eRecovery\eRecoveryUI.dll - ok
00:36:17.0281 0808 [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\System32\wuauclt.exe
00:36:17.0281 0808 C:\WINDOWS\System32\wuauclt.exe - ok
00:36:17.0296 0808 [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\System32\WBEM\wmiprvsd.dll
00:36:17.0296 0808 C:\WINDOWS\System32\WBEM\wmiprvsd.dll - ok
00:36:17.0312 0808 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\System32\WBEM\wbemess.dll
00:36:17.0312 0808 C:\WINDOWS\System32\WBEM\wbemess.dll - ok
00:36:17.0328 0808 [ 15E8E36A8D93C8C6989BA5295DB70280 ] C:\Acer\Empowering Technology\eSettings\Acer.Empowering.eSettings.Plugin.dll
00:36:17.0328 0808 C:\Acer\Empowering Technology\eSettings\Acer.Empowering.eSettings.Plugin.dll - ok
00:36:17.0343 0808 [ 6C5BBDFFA43EF7847EA7AE71FEB9BEDE ] C:\Acer\Empowering Technology\eSettings\Acer.Empowering.eSettings.Interfaces.dll
00:36:17.0343 0808 C:\Acer\Empowering Technology\eSettings\Acer.Empowering.eSettings.Interfaces.dll - ok
00:36:17.0375 0808 [ 0F3288201E879C88A223EF06D1F7A910 ] C:\Acer\Empowering Technology\eSettings\acer.empowering.esettings.model.dll
00:36:17.0375 0808 C:\Acer\Empowering Technology\eSettings\acer.empowering.esettings.model.dll - ok
00:36:17.0390 0808 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\System32\netcfgx.dll
00:36:17.0390 0808 C:\WINDOWS\System32\netcfgx.dll - ok
00:36:17.0406 0808 [ C6C566BFDA66BE628E63D913AEE7A540 ] C:\Acer\Empowering Technology\eSettings\acer.empowering.esettings.views.dll
00:36:17.0406 0808 C:\Acer\Empowering Technology\eSettings\acer.empowering.esettings.views.dll - ok
00:36:17.0421 0808 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\System32\wuapi.dll
00:36:17.0421 0808 C:\WINDOWS\System32\wuapi.dll - ok
00:36:17.0437 0808 [ BF34C3C998E50BE6ECF78BF61825A231 ] C:\Acer\Empowering Technology\eSettings\acer.empowering.esettings.presenter.dll
00:36:17.0437 0808 C:\Acer\Empowering Technology\eSettings\acer.empowering.esettings.presenter.dll - ok
00:36:17.0468 0808 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\System32\WBEM\NCPROV.DLL
00:36:17.0468 0808 C:\WINDOWS\System32\WBEM\NCPROV.DLL - ok
00:36:17.0484 0808 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\System32\WBEM\WBEMCONS.DLL
00:36:17.0484 0808 C:\WINDOWS\System32\WBEM\WBEMCONS.DLL - ok
00:36:17.0515 0808 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\System32\rasmans.dll
00:36:17.0515 0808 C:\WINDOWS\System32\rasmans.dll - ok
00:36:17.0531 0808 [ 1BC95F18864237F21F149538C8A1B17C ] C:\Acer\Empowering Technology\eSettings\CPUID.dll
00:36:17.0531 0808 C:\Acer\Empowering Technology\eSettings\CPUID.dll - ok
00:36:17.0546 0808 [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\System32\WBEM\WMIPRVSE.EXE
00:36:17.0546 0808 C:\WINDOWS\System32\WBEM\WMIPRVSE.EXE - ok
00:36:17.0562 0808 [ 9EEFE69139FDBB4A3C327630F8EB993A ] C:\WINDOWS\System32\wlanapi.dll
00:36:17.0562 0808 C:\WINDOWS\System32\wlanapi.dll - ok
00:36:17.0578 0808 [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\System32\RASDLG.dll
00:36:17.0578 0808 C:\WINDOWS\System32\RASDLG.dll - ok
00:36:17.0609 0808 [ 53658F8E11D9E72F50FD9E1CF34AB0CC ] C:\Program Files\ESET\ESET Smart Security\eplgOE.dll
00:36:17.0609 0808 C:\Program Files\ESET\ESET Smart Security\eplgOE.dll - ok
00:36:17.0625 0808 [ 589111142A71B427D3BBD01288291AFF ] C:\Acer\Empowering Technology\ePower\en\ePower_UI.resources.dll
00:36:17.0625 0808 C:\Acer\Empowering Technology\ePower\en\ePower_UI.resources.dll - ok
00:36:17.0656 0808 [ 49BEF08FBBB556430D77E71383B79C6D ] C:\Program Files\ESET\ESET Smart Security\eguiHips.dll
00:36:17.0656 0808 C:\Program Files\ESET\ESET Smart Security\eguiHips.dll - ok
00:36:17.0671 0808 [ A006B1CA7AFCF7C3FB558978A0C876EC ] C:\Program Files\ESET\ESET Smart Security\eguiScan.dll
00:36:17.0671 0808 C:\Program Files\ESET\ESET Smart Security\eguiScan.dll - ok
00:36:17.0687 0808 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\System32\imapi.exe
00:36:17.0687 0808 C:\WINDOWS\System32\imapi.exe - ok
00:36:17.0718 0808 [ 11887A67D467C897DB989877A879A960 ] C:\Program Files\ESET\ESET Smart Security\eguiAmon.dll
00:36:17.0718 0808 C:\Program Files\ESET\ESET Smart Security\eguiAmon.dll - ok
00:36:17.0734 0808 [ A1C0C7BCA95BF0362F71043F40FB2A98 ] C:\Program Files\ESET\ESET Smart Security\eguiEmon.dll
00:36:17.0734 0808 C:\Program Files\ESET\ESET Smart Security\eguiEmon.dll - ok
00:36:17.0750 0808 [ D4B2976A10F134DA9D0F23C4EFAA6D29 ] C:\Program Files\ESET\ESET Smart Security\eguiDmon.dll
00:36:17.0750 0808 C:\Program Files\ESET\ESET Smart Security\eguiDmon.dll - ok
00:36:17.0781 0808 [ 15805123F863DC8E550155279E40FB77 ] C:\Program Files\Java\JRE6\BIN\awt.dll
00:36:17.0781 0808 C:\Program Files\Java\JRE6\BIN\awt.dll - ok
00:36:17.0781 0808 [ 01195115B5112AD401748C38F8BAFAEA ] C:\Program Files\ESET\ESET Smart Security\eguiEpfw.dll
00:36:17.0781 0808 C:\Program Files\ESET\ESET Smart Security\eguiEpfw.dll - ok
00:36:17.0812 0808 [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\System32\WBEM\CIMWIN32.DLL
00:36:17.0812 0808 C:\WINDOWS\System32\WBEM\CIMWIN32.DLL - ok
00:36:17.0828 0808 [ 0A9BA6AF531AFE7FA5E4FB973852D863 ] C:\WINDOWS\System32\dllhost.exe
00:36:17.0828 0808 C:\WINDOWS\System32\dllhost.exe - ok
00:36:17.0843 0808 [ 574738F61FCA2935F5265DC4E5691314 ] C:\WINDOWS\System32\qmgr.dll
00:36:17.0843 0808 C:\WINDOWS\System32\qmgr.dll - ok
00:36:17.0859 0808 [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\System32\WBEM\FRAMEDYN.DLL
00:36:17.0859 0808 C:\WINDOWS\System32\WBEM\FRAMEDYN.DLL - ok
00:36:17.0875 0808 [ 960F6D3CD9A1BA6435D7AADD102B297F ] C:\WINDOWS\System32\WBEM\WMIPROV.DLL
00:36:17.0875 0808 C:\WINDOWS\System32\WBEM\WMIPROV.DLL - ok
00:36:17.0890 0808 [ 1EA3E142320661A4068BCD613AF116A1 ] C:\Program Files\ESET\ESET Smart Security\eguiSmon.dll
00:36:17.0890 0808 C:\Program Files\ESET\ESET Smart Security\eguiSmon.dll - ok
00:36:17.0921 0808 [ E0673F1106E62A68D2257E376079F821 ] C:\WINDOWS\System32\WBEM\WMIAPSRV.EXE
00:36:17.0921 0808 C:\WINDOWS\System32\WBEM\WMIAPSRV.EXE - ok
00:36:17.0937 0808 [ EB7494ECFE01B70B83E781EEB8F88C8A ] C:\WINDOWS\System32\WBEM\WMIAPRES.DLL
00:36:17.0937 0808 C:\WINDOWS\System32\WBEM\WMIAPRES.DLL - ok
00:36:17.0953 0808 [ 3BE4893704E7D2CD929FA632F1E6C17F ] C:\Program Files\ESET\ESET Smart Security\eguiUpdate.dll
00:36:17.0953 0808 C:\Program Files\ESET\ESET Smart Security\eguiUpdate.dll - ok
00:36:17.0968 0808 [ 790A4CA68F44BE35967B3DF61F3E4675 ] C:\WINDOWS\System32\FsUsbExDisk.Sys
00:36:17.0968 0808 C:\WINDOWS\System32\FsUsbExDisk.Sys - ok
00:36:17.0984 0808 [ 3F8411328E808A8794A41DA9ACB22DD9 ] C:\WINDOWS\System32\tapi3.dll
00:36:17.0984 0808 C:\WINDOWS\System32\tapi3.dll - ok
00:36:18.0000 0808 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\System32\rastapi.dll
00:36:18.0000 0808 C:\WINDOWS\System32\rastapi.dll - ok
00:36:18.0031 0808 [ 17E0CF9C8CBB717D05948656BCD86EFA ] C:\WINDOWS\System32\txflog.dll
00:36:18.0031 0808 C:\WINDOWS\System32\txflog.dll - ok
00:36:18.0031 0808 [ F1DAC7969C1337AF790BD1D981AA780C ] C:\WINDOWS\System32\qmgrprxy.dll
00:36:18.0031 0808 C:\WINDOWS\System32\qmgrprxy.dll - ok
00:36:18.0062 0808 [ A49D704DD8F99A09A70684F78D47591B ] C:\Program Files\ESET\ESET Smart Security\eguiMailPlugins.dll
00:36:18.0062 0808 C:\Program Files\ESET\ESET Smart Security\eguiMailPlugins.dll - ok
00:36:18.0078 0808 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\System32\rasppp.dll
00:36:18.0078 0808 C:\WINDOWS\System32\rasppp.dll - ok
00:36:18.0093 0808 [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\System32\alg.exe
00:36:18.0093 0808 C:\WINDOWS\System32\alg.exe - ok
00:36:18.0109 0808 [ 8BD7CC974701C885714CD9A6EAD96774 ] C:\Program Files\ESET\ESET Smart Security\eguiParental.dll
00:36:18.0109 0808 C:\Program Files\ESET\ESET Smart Security\eguiParental.dll - ok
00:36:18.0125 0808 [ F5430B03E141E098C78D5DB46B00F8FC ] C:\WINDOWS\System32\confmsp.dll
00:36:18.0125 0808 C:\WINDOWS\System32\confmsp.dll - ok
00:36:18.0140 0808 [ C7000F2DB2A5515C64C257478769A481 ] C:\WINDOWS\System32\WBEM\unsecapp.exe
00:36:18.0140 0808 C:\WINDOWS\System32\WBEM\unsecapp.exe - ok
00:36:18.0171 0808 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\System32\ntlsapi.dll
00:36:18.0171 0808 C:\WINDOWS\System32\ntlsapi.dll - ok
00:36:18.0187 0808 [ 8EDD9DCD5196B6C54A622E9549F667B8 ] C:\WINDOWS\System32\termmgr.dll
00:36:18.0187 0808 C:\WINDOWS\System32\termmgr.dll - ok
00:36:18.0203 0808 [ D1D05E408030CE682392662933BCA671 ] C:\Program Files\Java\JRE6\BIN\client\jvm.dll
00:36:18.0203 0808 C:\Program Files\Java\JRE6\BIN\client\jvm.dll - ok
00:36:18.0234 0808 [ CE8C3BC1377B83DBCD7304AB2D0A4735 ] C:\WINDOWS\System32\h323msp.dll
00:36:18.0234 0808 C:\WINDOWS\System32\h323msp.dll - ok
00:36:18.0250 0808 [ 9627EE26C7F3FD023D87DB50C62F5111 ] C:\WINDOWS\EHOME\SQLDB20.DLL
00:36:18.0250 0808 C:\WINDOWS\EHOME\SQLDB20.DLL - ok
00:36:18.0265 0808 [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\System32\licwmi.dll
00:36:18.0265 0808 C:\WINDOWS\System32\licwmi.dll - ok
00:36:18.0281 0808 [ AAC3E45B573A9199C6D2E4CA6D5980CE ] C:\Program Files\Java\JRE6\BIN\dcpr.dll
00:36:18.0281 0808 C:\Program Files\Java\JRE6\BIN\dcpr.dll - ok
00:36:18.0296 0808 [ 160762386084A0BB69F91BB694114D14 ] C:\WINDOWS\EHOME\SQLSE20.DLL
00:36:18.0296 0808 C:\WINDOWS\EHOME\SQLSE20.DLL - ok
00:36:18.0312 0808 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\System32\SECURITY.DLL
00:36:18.0312 0808 C:\WINDOWS\System32\SECURITY.DLL - ok
00:36:18.0328 0808 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\System32\RASQEC.DLL
00:36:18.0328 0808 C:\WINDOWS\System32\RASQEC.DLL - ok
00:36:18.0359 0808 [ 477E08FE0114AFEA114FC954C983D4DB ] C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL
00:36:18.0359 0808 C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL - ok
00:36:18.0375 0808 [ A3AE51C21160328EA11F734392A0F269 ] C:\WINDOWS\EHOME\sqlqp20.dll
00:36:18.0375 0808 C:\WINDOWS\EHOME\sqlqp20.dll - ok
00:36:18.0390 0808 [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\System32\licdll.dll
00:36:18.0390 0808 C:\WINDOWS\System32\licdll.dll - ok
00:36:18.0406 0808 [ 20BBDEC22713040AF3A8D6DFE61CFA54 ] C:\Program Files\Java\JRE6\BIN\deploy.dll
00:36:18.0406 0808 C:\Program Files\Java\JRE6\BIN\deploy.dll - ok
00:36:18.0421 0808 [ D8B91D94ECB123862B390FDE3250D3BB ] C:\WINDOWS\System32\dciman32.dll
00:36:18.0421 0808 C:\WINDOWS\System32\dciman32.dll - ok
00:36:18.0453 0808 [ EF9F69074FF0A48DD30FEF5A33518D86 ] C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
00:36:18.0453 0808 C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll - ok
00:36:18.0468 0808 [ 63D151A73679BB5BD7CF98BDA1AE5F5B ] C:\WINDOWS\System32\WBEM\stdprov.dll
00:36:18.0468 0808 C:\WINDOWS\System32\WBEM\stdprov.dll - ok
00:36:18.0484 0808 [ 90A9B542C9300E540864D9FE1C42A130 ] C:\WINDOWS\System32\fxsst.dll
00:36:18.0484 0808 C:\WINDOWS\System32\fxsst.dll - ok
00:36:18.0515 0808 [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\System32\WBEM\wmipcima.dll
00:36:18.0515 0808 C:\WINDOWS\System32\WBEM\wmipcima.dll - ok
00:36:18.0531 0808 [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9 ] C:\WINDOWS\System32\msxml6.dll
00:36:18.0531 0808 C:\WINDOWS\System32\msxml6.dll - ok
00:36:18.0546 0808 [ 20744A88413C4CFE5F18A00786718ADE ] C:\Acer\Empowering Technology\ePower\SysHook.dll
00:36:18.0546 0808 C:\Acer\Empowering Technology\ePower\SysHook.dll - ok
00:36:18.0562 0808 [ 76848CB1AA5818DB47D5F5986E0A7485 ] C:\WINDOWS\System32\mfc42.dll
00:36:18.0562 0808 C:\WINDOWS\System32\mfc42.dll - ok
00:36:18.0578 0808 [ 3812C2B8737B89C17BCEFC85E96A9C03 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Runtime.dll
00:36:18.0578 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Runtime.dll - ok
00:36:18.0609 0808 [ 52B53CD458AE8424CDD4B587623680E1 ] C:\Program Files\Java\JRE6\BIN\fontmanager.dll
00:36:18.0609 0808 C:\Program Files\Java\JRE6\BIN\fontmanager.dll - ok
00:36:18.0640 0808 [ A32501FD4452F30235A3B82C99BC3B94 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Shared.dll
00:36:18.0640 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Shared.dll - ok
00:36:18.0656 0808 [ E45547F3509E106C9BC2835DB34EFBA7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll
00:36:18.0656 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll - ok
00:36:18.0687 0808 [ D3D9693161A8EEF2102B032D5669EA23 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
00:36:18.0687 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Shared.dll - ok
00:36:18.0703 0808 [ DB43890CE1D6C2409ADD9BE984685F44 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Runtime.dll
00:36:18.0703 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Runtime.dll - ok
00:36:18.0718 0808 [ 1649E7247D5644CC058ED101C917DC62 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Shared.dll
00:36:18.0718 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Shared.dll - ok
00:36:18.0750 0808 [ 86BF337B6F66AC4D49A96575E0CC7818 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Runtime.dll
00:36:18.0750 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Runtime.dll - ok
00:36:18.0765 0808 [ CED3DE6514D23ACA10A70111150C3D4E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll
00:36:18.0765 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll - ok
00:36:18.0781 0808 [ BF0ACE96DBC580C107691BAE85861D29 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
00:36:18.0781 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Runtime.dll - ok
00:36:18.0796 0808 [ 7C65C3560F3C5EFF75431348C339016B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Runtime.dll
00:36:18.0796 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Runtime.dll - ok
00:36:18.0828 0808 [ CA14FEA0880D6727C2A18E05DD0BDB67 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
00:36:18.0828 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll - ok
00:36:18.0843 0808 [ 94FF632D9867E739A676575DDDEFEC77 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
00:36:18.0843 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll - ok
00:36:18.0875 0808 [ 491C0BFC93B3E8844C3A7FAE39C5F9D1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Runtime.dll
00:36:18.0875 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Runtime.dll - ok
00:36:18.0890 0808 [ C326B58A26A6E8E564B66762AF14D7A5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Shared.dll
00:36:18.0890 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Shared.dll - ok
00:36:18.0921 0808 [ 059360159BF5C49A118824D9157E729A ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Runtime.dll
00:36:18.0921 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Runtime.dll - ok
00:36:18.0937 0808 [ 65D39D2F8205F901DC8B1A43735CFD49 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Shared.dll
00:36:18.0937 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Shared.dll - ok
00:36:18.0953 0808 [ EA13C2309BBA56F02AE1624B9401CF99 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Runtime.dll
00:36:18.0953 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Runtime.dll - ok
00:36:18.0984 0808 [ 8F64F1DBF00F1921A5D346BCE4842CBE ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Shared.dll
00:36:18.0984 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Shared.dll - ok
00:36:19.0000 0808 [ 66A038F6E700A063380DF8D51BDCE7F8 ] C:\Acer\Empowering Technology\ePower\DialogDLL.dll
00:36:19.0000 0808 C:\Acer\Empowering Technology\ePower\DialogDLL.dll - ok
00:36:19.0015 0808 [ 350D38B367D413F65EE0BABD3966D9BC ] C:\Program Files\Java\JRE6\BIN\hpi.dll
00:36:19.0015 0808 C:\Program Files\Java\JRE6\BIN\hpi.dll - ok
00:36:19.0031 0808 [ 535625AE679F3A34FB5C52EA25D409FA ] C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.VideoOverlay.Shared.dll
00:36:19.0031 0808 C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.VideoOverlay.Shared.dll - ok
00:36:19.0046 0808 [ BD752457FE2D0F63D2497192C991A892 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Runtime.dll
00:36:19.0046 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Runtime.dll - ok
00:36:19.0062 0808 [ D5F9526169F381CF1E22592AE175E6B7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Runtime.dll
00:36:19.0062 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Runtime.dll - ok
00:36:19.0093 0808 [ BDF109A414DA6BC415F8B13B88E5A18F ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Shared.dll
00:36:19.0093 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Shared.dll - ok
00:36:19.0109 0808 [ 7D87A4513B3C123A32F1CC27FE9253FF ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
00:36:19.0109 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll - ok
00:36:19.0140 0808 [ 482A370CBFEC48F5B26D978710752682 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Runtime.dll
00:36:19.0140 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Runtime.dll - ok
00:36:19.0156 0808 [ 7604C29D87E6623A75A442BA20E8465B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
00:36:19.0156 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Shared.dll - ok
00:36:19.0171 0808 [ 011979C83AD818506E82D8997312D591 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Runtime.dll
00:36:19.0171 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Runtime.dll - ok
00:36:19.0203 0808 [ 16D3373FE82561C16B7C119686E66A3B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Shared.dll
00:36:19.0203 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Shared.dll - ok
00:36:19.0218 0808 [ 6651729ABEC42DAB2280392019AB2A77 ] C:\Program Files\Java\JRE6\BIN\java.dll
00:36:19.0218 0808 C:\Program Files\Java\JRE6\BIN\java.dll - ok
00:36:19.0250 0808 [ 4CF57B96311DCEECADC7A87501797D4A ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
00:36:19.0250 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll - ok
00:36:19.0265 0808 [ 0267397F18A15C5952C2797C1DFF6D09 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
00:36:19.0265 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Shared.dll - ok
00:36:19.0281 0808 [ 9C4788783C578EA9BEF400AFC35D10D5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Runtime.dll
00:36:19.0281 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Runtime.dll - ok
00:36:19.0296 0808 [ 2E1E7DAFA74D129551C8A1B6CF445428 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Shared.dll
00:36:19.0296 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Shared.dll - ok
00:36:19.0328 0808 [ FA1CFA4C943F8BF595D5DB7FDDA98AB1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
00:36:19.0328 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Runtime.dll - ok
00:36:19.0343 0808 [ A109C40C04D7EE2D78DFC2268D4ED57F ] C:\Program Files\Java\JRE6\BIN\javaw.exe
00:36:19.0343 0808 C:\Program Files\Java\JRE6\BIN\javaw.exe - ok
00:36:19.0359 0808 [ 814DBD4F4CF6A5743CB8333F93C44453 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Shared.dll
00:36:19.0359 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Shared.dll - ok
00:36:19.0390 0808 [ 3F13E6382E19BC6CCB575B9A3FC8A121 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.CustomFormats.Graphics.Shared.dll
00:36:19.0390 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.CustomFormats.Graphics.Shared.dll - ok
00:36:19.0406 0808 [ FFDD7253B66F89D98D0647FA66EB824C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Runtime.dll
00:36:19.0406 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Runtime.dll - ok
00:36:19.0437 0808 [ 23A6396370DC9EA15C7038A8193CB375 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Shared.dll
00:36:19.0437 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Shared.dll - ok
00:36:19.0453 0808 [ 8DE2F24DAB5149518543ABC4D6329DEF ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Runtime.dll
00:36:19.0453 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Runtime.dll - ok
00:36:19.0468 0808 [ 4687D7B69DA5B4045A7ABA8FF58F7E62 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
00:36:19.0468 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Runtime.dll - ok
00:36:19.0500 0808 [ B9EAE52AD69546EFDBA1EA3E00C7288B ] C:\Program Files\Java\JRE6\BIN\jp2native.dll
00:36:19.0500 0808 C:\Program Files\Java\JRE6\BIN\jp2native.dll - ok
00:36:19.0531 0808 [ D7C36AB877D619C7A57D741F727C5479 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
00:36:19.0531 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll - ok
00:36:19.0546 0808 [ 17DDB65DADA10D778FF75C06FC749894 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
00:36:19.0546 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Shared.dll - ok
00:36:19.0562 0808 [ EE7C6F2BDE716518C67FCD8651C144AA ] C:\Program Files\Java\JRE6\BIN\jpeg.dll
00:36:19.0562 0808 C:\Program Files\Java\JRE6\BIN\jpeg.dll - ok
00:36:19.0578 0808 [ 32C08C1E4FF1D0B9351433480515D23B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Runtime.dll
00:36:19.0578 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Runtime.dll - ok
00:36:19.0609 0808 [ 5754810DD0B2B2AD091801784D09DB14 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Shared.dll
00:36:19.0609 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Shared.dll - ok
00:36:19.0625 0808 [ BCD511F4055C4BB65CD52CE7B0363080 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Runtime.dll
00:36:19.0625 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Runtime.dll - ok
00:36:19.0640 0808 [ B4605D6BCE13294CBB614C76E7C8D2AF ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Shared.dll
00:36:19.0640 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Shared.dll - ok
00:36:19.0671 0808 [ C1DE40C0DBF0D61818145306B03D6286 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Runtime.dll
00:36:19.0671 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Runtime.dll - ok
00:36:19.0687 0808 [ 0344D5ECECA1A82D958048753249A0AE ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll
00:36:19.0687 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll - ok
00:36:19.0718 0808 [ 3C33B6903EC9749E20875BF87A2AB46C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Shared.dll
00:36:19.0718 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Shared.dll - ok
00:36:19.0734 0808 [ BF065EF1978D83145303DD11F75832C9 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
00:36:19.0734 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll - ok
00:36:19.0765 0808 [ E58B1CF6E57B0D71BFC939057EC7456D ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll
00:36:19.0765 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll - ok
00:36:19.0781 0808 [ 8D1A2D76495C812C420E60A61451FDD7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Runtime.dll
00:36:19.0781 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Runtime.dll - ok
00:36:19.0796 0808 [ 3202371F4C4E74DFFA17D34FC48AE0CF ] C:\Program Files\Java\JRE6\BIN\net.dll
00:36:19.0796 0808 C:\Program Files\Java\JRE6\BIN\net.dll - ok
00:36:19.0812 0808 [ F53D7142A810C8B4CCECE284F0A4ABF5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Shared.dll
00:36:19.0812 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Shared.dll - ok
00:36:19.0843 0808 [ F42C55D659758AA87D9F193A04D95726 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
00:36:19.0843 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll - ok
00:36:19.0875 0808 [ 83ECA7B46A22B6E6328BAF67D3D9BA8B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
00:36:19.0875 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll - ok
00:36:19.0906 0808 [ B1E405D0706B464CD3E064FA770FE4C7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Shared.dll
00:36:19.0906 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Shared.dll - ok
00:36:19.0921 0808 [ 601C6ECF58491E1190E9C2777421A733 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Shared.dll
00:36:19.0921 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Shared.dll - ok
00:36:19.0937 0808 [ 6B65A0FC01857D928054906AC6699269 ] C:\Program Files\Java\JRE6\BIN\nio.dll
00:36:19.0937 0808 C:\Program Files\Java\JRE6\BIN\nio.dll - ok
00:36:19.0968 0808 [ B679AA0E8454A5076064140F33BE11F6 ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0600.dll
00:36:19.0968 0808 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0600.dll - ok
00:36:19.0984 0808 [ CCE066EA2F7DB17B6DFF7855ADBAF3EC ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Shared.dll
00:36:19.0984 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Shared.dll - ok
00:36:20.0015 0808 [ 7940B8E971752702169B3C7916A2405B ] C:\Program Files\Java\JRE6\BIN\regutils.dll
00:36:20.0015 0808 C:\Program Files\Java\JRE6\BIN\regutils.dll - ok
00:36:20.0031 0808 [ 209CF6282C9966B2C0519898679614F6 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Shared.dll
00:36:20.0031 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Shared.dll - ok
00:36:20.0046 0808 [ A87E956BC090F889920C521845A58A05 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
00:36:20.0046 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty.Graphics.Shared.dll - ok
00:36:20.0062 0808 [ A6FEB6CB256EC4FFEEE749938C99C30F ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0602.dll
00:36:20.0062 0808 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0602.dll - ok
00:36:20.0078 0808 [ BEEADC2EFDF152B8A519ED501D51721B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Shared.dll
00:36:20.0078 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Shared.dll - ok
00:36:20.0109 0808 [ 3F2D83FABF2550205B9884B6DC18E530 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Shared.dll
00:36:20.0109 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Shared.dll - ok
00:36:20.0125 0808 [ 377894D74056C545F25188952E7113E7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Shared.dll
00:36:20.0125 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Shared.dll - ok
00:36:20.0156 0808 [ 1EFA97F590F0DC0726146B4AB81C9339 ] C:\Program Files\Java\JRE6\BIN\verify.dll
00:36:20.0156 0808 C:\Program Files\Java\JRE6\BIN\verify.dll - ok
00:36:20.0171 0808 [ E5885921F1C3BA167E55ED06C9121BB3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Shared.dll
00:36:20.0171 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Shared.dll - ok
00:36:20.0187 0808 [ 6596C86F80CBD2CF831383CA7210876D ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
00:36:20.0187 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll - ok
00:36:20.0218 0808 [ C9A8F1F08D8CA4E538CFA937B13423F7 ] C:\Program Files\Java\JRE6\BIN\zip.dll
00:36:20.0218 0808 C:\Program Files\Java\JRE6\BIN\zip.dll - ok
00:36:20.0234 0808 [ D95D875405BA657A6C21BE65ABA589D1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll
00:36:20.0234 0808 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll - ok
00:36:20.0250 0808 [ C6F64AE6F9F7DE23EE538D5C80A5C362 ] C:\Program Files\ATI Technologies\ATI.ACE\APM.Foundation.dll
00:36:20.0250 0808 C:\Program Files\ATI Technologies\ATI.ACE\APM.Foundation.dll - ok
00:36:20.0281 0808 [ 621822F2F2BDE521D3FC687B62659B76 ] C:\WINDOWS\System32\mnmdd.dll
00:36:20.0281 0808 C:\WINDOWS\System32\mnmdd.dll - ok
00:36:20.0281 0808 [ A3C0A42C88C7C1E3C65AB2DA3A5E6B0C ] C:\WINDOWS\System32\RDPDD.dll
00:36:20.0281 0808 C:\WINDOWS\System32\RDPDD.dll - ok
00:36:20.0296 0808 ============================================================
00:36:20.0296 0808 Scan finished
00:36:20.0296 0808 ============================================================
00:36:20.0515 1816 Detected object count: 16
00:36:20.0515 1816 Actual detected object count: 16
00:38:13.0484 1816 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0484 1816 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0484 1816 audiobridge ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0484 1816 audiobridge ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0515 1816 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0515 1816 BVRPMPR5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0531 1816 DritekPortIO ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0531 1816 DritekPortIO ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0531 1816 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0531 1816 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0546 1816 FsUsbExService ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0546 1816 FsUsbExService ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0546 1816 int15 ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0546 1816 int15 ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0562 1816 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0562 1816 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0562 1816 MDC8021X ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0562 1816 MDC8021X ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0578 1816 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0578 1816 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0578 1816 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0578 1816 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0578 1816 NTIDrvr ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0578 1816 NTIDrvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0593 1816 sptd ( LockedFile.Multi.Generic ) - skipped by user
00:38:13.0593 1816 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
00:38:13.0609 1816 tvicport ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0609 1816 tvicport ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0609 1816 YMIDUSB ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0609 1816 YMIDUSB ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:13.0625 1816 zntport ( UnsignedFile.Multi.Generic ) - skipped by user
00:38:13.0625 1816 zntport ( UnsignedFile.Multi.Generic ) - User select action: Skip
00:38:18.0578 2004 Deinitialize success

#13 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 10 January 2013 - 03:27 AM

here is the aswMBR log

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-10 00:39:32
-----------------------------
00:39:32.171 OS Version: Windows 5.1.2600 Service Pack 3
00:39:32.171 Number of processors: 1 586 0x4C02
00:39:32.171 ComputerName: ACER-C28991BD48 UserName: owner
00:39:33.015 Initialize success
00:56:00.866 AVAST engine defs: 13010901
00:57:56.257 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
00:57:56.257 Disk 0 Vendor: HTS541080G9AT00 MB4OA60A Size: 76319MB BusType: 3
00:57:56.288 Disk 0 MBR read successfully
00:57:56.304 Disk 0 MBR scan
00:57:56.429 Disk 0 unknown MBR code
00:57:56.444 Disk 0 Partition 1 00 12 Compaq diag MSWIN4.1 4996 MB offset 63
00:57:56.476 Disk 0 Partition 2 80 (A) 0C FAT32 LBA MSWIN4.1 35408 MB offset 10233405
00:57:56.523 Disk 0 Partition 3 00 0C FAT32 LBA MSWIN4.1 35910 MB offset 82750815
00:57:56.538 Disk 0 scanning sectors +156296385
00:57:56.601 Disk 0 scanning C:\WINDOWS\system32\drivers
00:58:38.507 Service scanning
00:59:13.304 Service sptd C:\WINDOWS\System32\Drivers\sptd.sys **LOCKED** 32
00:59:26.179 Modules scanning
00:59:42.476 Disk 0 trace - called modules:
00:59:42.523 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spvo.sys >>UNKNOWN [0x85891938]<<
00:59:42.554 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85777030]
00:59:42.569 3 CLASSPNP.SYS[f7567fd7] -> nt!IofCallDriver -> \Device\000000ba[0x857f49e8]
00:59:42.601 5 ACPI.sys[f7218620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x857f4d98]
00:59:43.210 AVAST engine scan C:\WINDOWS
01:00:29.179 AVAST engine scan C:\WINDOWS\system32
01:08:15.226 AVAST engine scan C:\WINDOWS\system32\drivers
01:08:51.523 AVAST engine scan C:\Documents and Settings\owner
01:09:43.523 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\owner\Desktop\MBR.dat"
01:09:43.585 The log file has been saved successfully to "C:\Documents and Settings\owner\Desktop\aswMBR.txt"
01:13:24.679 AVAST engine scan C:\Documents and Settings\All Users
01:14:04.741 Scan finished successfully
01:14:32.741 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\owner\Desktop\MBR.dat"
01:14:32.773 The log file has been saved successfully to "C:\Documents and Settings\owner\Desktop\aswMBR.txt"

#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:12:38 PM

Posted 10 January 2013 - 04:33 AM

Hello

Lets get a deeper look into the system and see if something shows up.

Download and run OTL

Download OTL by Old Timer and save it to your Desktop.
  • Double click on OTL.exe to run it.
  • Under Output, ensure that Minimal Output is selected.
  • Under Extra Registry section, select Use SafeList.
  • Click the Scan All Users checkbox.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened and the that I need posted back here
    • Extra.txt <-- Will be minimized - save this one on your desktop in case I ask for it later
  • Please post the contents of OTL.txt in your next reply.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 Fausto_III

Fausto_III
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 10 January 2013 - 07:21 PM

Gringo,
I'm trying to post the OTL log but its not letting me.
Its telling me I do not have permission to post on this post.. how come its telling me this??




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users