Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google links redirecting


  • Please log in to reply
7 replies to this topic

#1 zachkw

zachkw

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:32 PM

Posted 19 February 2013 - 10:24 PM

Hi, just recently all the links on google searches have been redirecting mostly to click.livesearch among others. The browsers that are used by my family are firefox and chrome and this happens on both of them. I've tried malwarebytes but it hasn't found anything. Help would be much appreciated thanks.



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 19 February 2013 - 10:43 PM

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters




  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now




  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue




  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.



  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.



  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the   button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results

 



#3 zachkw

zachkw
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:32 PM

Posted 21 February 2013 - 02:14 AM

Here are the logs...

 

TDSSKiller

 

10:45:23.0343 3716  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

10:45:25.0343 3716  ============================================================
10:45:25.0343 3716  Current date / time: 2013/02/21 10:45:25.0343
10:45:25.0343 3716  SystemInfo:
10:45:25.0343 3716  
10:45:25.0343 3716  OS Version: 5.1.2600 ServicePack: 3.0
10:45:25.0343 3716  Product type: Workstation
10:45:25.0343 3716  ComputerName: TONY-E3DB0B3F25
10:45:25.0343 3716  UserName: Jedtec
10:45:25.0343 3716  Windows directory: C:\WINDOWS
10:45:25.0343 3716  System windows directory: C:\WINDOWS
10:45:25.0343 3716  Processor architecture: Intel x86
10:45:25.0343 3716  Number of processors: 2
10:45:25.0343 3716  Page size: 0x1000
10:45:25.0343 3716  Boot type: Normal boot
10:45:25.0343 3716  ============================================================
10:45:30.0218 3716  BG loaded
10:45:32.0125 3716  Drive \Device\Harddisk0\DR0 - Size: 0x12A1E0DE00 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
10:45:32.0140 3716  ============================================================
10:45:32.0140 3716  \Device\Harddisk0\DR0:
10:45:32.0156 3716  MBR partitions:
10:45:32.0156 3716  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
10:45:32.0156 3716  ============================================================
10:45:32.0625 3716  C: <-> \Device\Harddisk0\DR0\Partition1
10:45:32.0718 3716  ============================================================
10:45:32.0718 3716  Initialize success
10:45:32.0718 3716  ============================================================
10:46:43.0734 2688  ============================================================
10:46:43.0734 2688  Scan started
10:46:43.0734 2688  Mode: Manual; TDLFS; 
10:46:43.0734 2688  ============================================================
10:46:47.0750 2688  ================ Scan system memory ========================
10:46:47.0750 2688  System memory - ok
10:46:47.0781 2688  ================ Scan services =============================
10:46:48.0515 2688  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
10:46:48.0562 2688  !SASCORE - ok
10:46:49.0437 2688  Abiosdsk - ok
10:46:49.0453 2688  abp480n5 - ok
10:46:49.0640 2688  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:46:49.0687 2688  ACPI - ok
10:46:49.0734 2688  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
10:46:50.0093 2688  ACPIEC - ok
10:46:50.0218 2688  [ EC807244904FA170C299AB06D87FBDBE ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:46:50.0671 2688  AdobeFlashPlayerUpdateSvc - ok
10:46:50.0703 2688  adpu160m - ok
10:46:50.0812 2688  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
10:46:50.0953 2688  aec - ok
10:46:51.0453 2688  [ 15E655BAA989444F56787EF558823643 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
10:46:51.0500 2688  AegisP - ok
10:46:51.0703 2688  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
10:46:51.0718 2688  AFD - ok
10:46:51.0765 2688  Aha154x - ok
10:46:51.0812 2688  aic78u2 - ok
10:46:51.0843 2688  aic78xx - ok
10:46:52.0406 2688  [ 34149A136B2B7525113950233F259EC1 ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS
10:47:03.0062 2688  ALCXWDM - ok
10:47:03.0359 2688  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
10:47:03.0515 2688  Alerter - ok
10:47:03.0921 2688  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
10:47:03.0921 2688  ALG - ok
10:47:04.0734 2688  AliIde - ok
10:47:04.0765 2688  amsint - ok
10:47:05.0203 2688  [ F52603B708438E39FF38475807A01CBC ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
10:47:05.0296 2688  Amsp - ok
10:47:05.0562 2688  [ 920298C7AEF97D8168D219D35975D295 ] ANIO            C:\WINDOWS\system32\ANIO.SYS
10:47:05.0593 2688  ANIO - ok
10:47:06.0312 2688  [ AA3D68F26B2A27F660AFC46039B061A4 ] ANIWZCSdService C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
10:47:06.0390 2688  ANIWZCSdService - ok
10:47:07.0031 2688  [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:47:07.0062 2688  Apple Mobile Device - ok
10:47:07.0109 2688  AppMgmt - ok
10:47:07.0125 2688  asc - ok
10:47:07.0156 2688  asc3350p - ok
10:47:07.0187 2688  asc3550 - ok
10:47:09.0343 2688  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
10:47:09.0703 2688  aspnet_state - ok
10:47:09.0750 2688  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:47:09.0843 2688  AsyncMac - ok
10:47:09.0875 2688  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
10:47:09.0890 2688  atapi - ok
10:47:09.0906 2688  Atdisk - ok
10:47:10.0171 2688  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:47:10.0187 2688  Atmarpc - ok
10:47:10.0281 2688  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
10:47:10.0296 2688  AudioSrv - ok
10:47:10.0359 2688  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
10:47:10.0390 2688  audstub - ok
10:47:10.0453 2688  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:47:10.0531 2688  Beep - ok
10:47:11.0000 2688  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
10:47:11.0515 2688  BITS - ok
10:47:12.0750 2688  [ 1C87705CCB2F60172B0FC86B5D82F00D ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:47:12.0750 2688  Bonjour Service - ok
10:47:12.0843 2688  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
10:47:12.0859 2688  Browser - ok
10:47:12.0921 2688  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
10:47:12.0968 2688  cbidf2k - ok
10:47:12.0984 2688  cd20xrnt - ok
10:47:13.0062 2688  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
10:47:13.0078 2688  Cdaudio - ok
10:47:13.0171 2688  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
10:47:13.0203 2688  Cdfs - ok
10:47:13.0281 2688  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:47:13.0296 2688  Cdrom - ok
10:47:13.0312 2688  Changer - ok
10:47:13.0375 2688  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
10:47:13.0390 2688  CiSvc - ok
10:47:13.0468 2688  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
10:47:13.0500 2688  ClipSrv - ok
10:47:13.0609 2688  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:47:13.0718 2688  clr_optimization_v2.0.50727_32 - ok
10:47:13.0968 2688  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:47:14.0000 2688  clr_optimization_v4.0.30319_32 - ok
10:47:14.0015 2688  CmdIde - ok
10:47:14.0046 2688  COMSysApp - ok
10:47:14.0093 2688  Cpqarray - ok
10:47:14.0500 2688  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
10:47:14.0500 2688  CryptSvc - ok
10:47:14.0515 2688  dac2w2k - ok
10:47:14.0546 2688  dac960nt - ok
10:47:14.0937 2688  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:47:14.0937 2688  DcomLaunch - ok
10:47:15.0000 2688  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
10:47:15.0015 2688  Dhcp - ok
10:47:15.0046 2688  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
10:47:15.0078 2688  Disk - ok
10:47:15.0093 2688  dmadmin - ok
10:47:15.0218 2688  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
10:47:15.0406 2688  dmboot - ok
10:47:15.0546 2688  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
10:47:15.0734 2688  dmio - ok
10:47:15.0812 2688  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
10:47:15.0937 2688  dmload - ok
10:47:15.0968 2688  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
10:47:15.0968 2688  dmserver - ok
10:47:16.0062 2688  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
10:47:16.0062 2688  DMusic - ok
10:47:16.0125 2688  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:47:16.0125 2688  Dnscache - ok
10:47:16.0156 2688  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:47:16.0203 2688  Dot3svc - ok
10:47:16.0218 2688  dpti2o - ok
10:47:16.0343 2688  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:47:16.0359 2688  drmkaud - ok
10:47:16.0562 2688  [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01     C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
10:47:16.0875 2688  dtsoftbus01 - ok
10:47:16.0906 2688  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
10:47:16.0921 2688  EapHost - ok
10:47:17.0031 2688  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
10:47:17.0046 2688  ERSvc - ok
10:47:17.0140 2688  esgiguard - ok
10:47:17.0203 2688  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
10:47:17.0250 2688  Eventlog - ok
10:47:17.0390 2688  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
10:47:17.0546 2688  EventSystem - ok
10:47:17.0609 2688  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
10:47:17.0640 2688  Fastfat - ok
10:47:17.0750 2688  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:47:17.0765 2688  FastUserSwitchingCompatibility - ok
10:47:17.0812 2688  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
10:47:17.0828 2688  Fdc - ok
10:47:17.0859 2688  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
10:47:17.0875 2688  Fips - ok
10:47:17.0921 2688  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
10:47:17.0921 2688  Flpydisk - ok
10:47:18.0031 2688  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
10:47:18.0031 2688  FltMgr - ok
10:47:18.0453 2688  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
10:47:18.0531 2688  FontCache3.0.0.0 - ok
10:47:18.0546 2688  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:47:18.0546 2688  Fs_Rec - ok
10:47:18.0609 2688  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:47:18.0656 2688  Ftdisk - ok
10:47:18.0718 2688  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
10:47:18.0781 2688  GEARAspiWDM - ok
10:47:18.0937 2688  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:47:18.0968 2688  Gpc - ok
10:47:19.0187 2688  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
10:47:19.0218 2688  gupdate - ok
10:47:19.0234 2688  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
10:47:19.0234 2688  gupdatem - ok
10:47:19.0359 2688  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:47:19.0359 2688  helpsvc - ok
10:47:19.0484 2688  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
10:47:19.0484 2688  HidServ - ok
10:47:19.0625 2688  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:47:19.0640 2688  HidUsb - ok
10:47:19.0718 2688  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
10:47:19.0750 2688  hkmsvc - ok
10:47:19.0765 2688  hpn - ok
10:47:19.0968 2688  [ CBD09ED9CF6822177EE85AEA4D8816A2 ] HTCAND32        C:\WINDOWS\system32\Drivers\ANDROIDUSB.sys
10:47:20.0015 2688  HTCAND32 - ok
10:47:20.0187 2688  [ 04E3B3554076B8192A668EFE88A682A1 ] htcnprot        C:\WINDOWS\system32\DRIVERS\htcnprot.sys
10:47:20.0203 2688  htcnprot - ok
10:47:20.0437 2688  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
10:47:20.0484 2688  HTTP - ok
10:47:20.0578 2688  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
10:47:20.0640 2688  HTTPFilter - ok
10:47:20.0656 2688  i2omgmt - ok
10:47:20.0687 2688  i2omp - ok
10:47:20.0734 2688  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:47:20.0750 2688  i8042prt - ok
10:47:20.0875 2688  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
10:47:21.0078 2688  IDriverT - ok
10:47:21.0375 2688  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:47:21.0468 2688  idsvc - ok
10:47:21.0484 2688  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
10:47:21.0500 2688  Imapi - ok
10:47:21.0546 2688  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
10:47:21.0578 2688  ImapiService - ok
10:47:21.0593 2688  ini910u - ok
10:47:21.0640 2688  IntelIde - ok
10:47:21.0718 2688  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:47:21.0734 2688  intelppm - ok
10:47:21.0781 2688  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
10:47:21.0812 2688  Ip6Fw - ok
10:47:21.0875 2688  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:47:21.0890 2688  IpFilterDriver - ok
10:47:21.0968 2688  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:47:21.0968 2688  IpInIp - ok
10:47:22.0109 2688  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:47:22.0156 2688  IpNat - ok
10:47:22.0718 2688  [ F62C69376A95795FE7CDB1C778EDACA4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:47:22.0718 2688  iPod Service - ok
10:47:22.0796 2688  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:47:22.0812 2688  IPSec - ok
10:47:22.0875 2688  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
10:47:22.0890 2688  IRENUM - ok
10:47:22.0937 2688  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:47:22.0953 2688  isapnp - ok
10:47:23.0750 2688  [ 80F08F50D248EEEEB9256F6522891D40 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
10:47:23.0765 2688  JavaQuickStarterService - ok
10:47:23.0828 2688  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:47:23.0843 2688  Kbdclass - ok
10:47:23.0968 2688  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
10:47:24.0078 2688  kmixer - ok
10:47:30.0390 2688  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
10:47:30.0453 2688  KSecDD - ok
10:47:30.0687 2688  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
10:47:30.0812 2688  LanmanServer - ok
10:47:30.0968 2688  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:47:30.0984 2688  lanmanworkstation - ok
10:47:31.0000 2688  lbrtfdc - ok
10:47:31.0156 2688  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
10:47:31.0156 2688  LmHosts - ok
10:47:31.0187 2688  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
10:47:31.0234 2688  Messenger - ok
10:47:31.0406 2688  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
10:47:31.0437 2688  mnmdd - ok
10:47:31.0609 2688  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
10:47:31.0640 2688  mnmsrvc - ok
10:47:31.0812 2688  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
10:47:31.0890 2688  Modem - ok
10:47:32.0046 2688  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:47:32.0062 2688  Mouclass - ok
10:47:32.0187 2688  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:47:32.0218 2688  mouhid - ok
10:47:32.0296 2688  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
10:47:32.0312 2688  MountMgr - ok
10:47:32.0484 2688  [ 51A84B690DF519DCF656F780243D953E ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:47:32.0828 2688  MozillaMaintenance - ok
10:47:32.0843 2688  mraid35x - ok
10:47:33.0515 2688  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:47:33.0578 2688  MRxDAV - ok
10:47:41.0109 2688  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:47:41.0343 2688  MRxSmb - ok
10:47:42.0093 2688  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
10:47:42.0140 2688  MSDTC - ok
10:47:42.0312 2688  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:47:42.0328 2688  Msfs - ok
10:47:42.0343 2688  MSIServer - ok
10:47:42.0500 2688  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:47:42.0593 2688  MSKSSRV - ok
10:47:42.0828 2688  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:47:42.0906 2688  MSPCLOCK - ok
10:47:43.0125 2688  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:47:43.0187 2688  MSPQM - ok
10:47:43.0625 2688  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:47:43.0640 2688  mssmbios - ok
10:47:44.0093 2688  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
10:47:44.0125 2688  Mup - ok
10:47:45.0031 2688  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
10:47:45.0203 2688  napagent - ok
10:47:45.0328 2688  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
10:47:45.0421 2688  NDIS - ok
10:47:45.0578 2688  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:47:45.0578 2688  NdisTapi - ok
10:47:45.0687 2688  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:47:45.0703 2688  Ndisuio - ok
10:47:45.0781 2688  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:47:45.0875 2688  NdisWan - ok
10:47:45.0937 2688  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:47:46.0015 2688  NDProxy - ok
10:47:46.0078 2688  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:47:46.0109 2688  NetBIOS - ok
10:47:46.0281 2688  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:47:46.0296 2688  NetBT - ok
10:47:46.0421 2688  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
10:47:46.0437 2688  NetDDE - ok
10:47:46.0468 2688  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
10:47:46.0468 2688  NetDDEdsdm - ok
10:47:46.0578 2688  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:47:46.0578 2688  Netlogon - ok
10:47:46.0812 2688  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
10:47:47.0015 2688  Netman - ok
10:47:47.0281 2688  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:47:47.0312 2688  NetTcpPortSharing - ok
10:47:47.0484 2688  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
10:47:47.0500 2688  Nla - ok
10:47:47.0609 2688  [ CFE3462A9E94A57DCD9676F6B7FE7F67 ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys
10:47:47.0656 2688  nmwcd - ok
10:47:47.0718 2688  [ 8F2A94F991F8C73CEC26B4B5620D1EDC ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys
10:47:47.0765 2688  nmwcdc - ok
10:47:47.0890 2688  [ 99145C5D4B6C4D6F5CE83EE6ABFFE294 ] nmwcdnsu        C:\WINDOWS\system32\drivers\nmwcdnsu.sys
10:47:47.0953 2688  nmwcdnsu - ok
10:47:48.0062 2688  [ FAEE7B61C6885B091CEC1FF06DA2E1AB ] nmwcdnsuc       C:\WINDOWS\system32\drivers\nmwcdnsuc.sys
10:47:48.0078 2688  nmwcdnsuc - ok
10:47:48.0140 2688  [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] npf             C:\WINDOWS\system32\drivers\npf.sys
10:47:48.0218 2688  npf - ok
10:47:48.0578 2688  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:47:48.0593 2688  Npfs - ok
10:47:50.0062 2688  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:47:50.0234 2688  Ntfs - ok
10:47:50.0265 2688  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
10:47:50.0421 2688  NtLmSsp - ok
10:47:50.0828 2688  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
10:47:51.0093 2688  NtmsSvc - ok
10:47:51.0156 2688  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:47:51.0171 2688  Null - ok
10:47:54.0078 2688  [ 4B54DCD6ADEE535DF80F07C59DDD8F14 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
10:47:57.0140 2688  nv - ok
10:47:57.0343 2688  [ 0573C75A2895D973EA6EF2495620BA49 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
10:47:57.0406 2688  NVSvc - ok
10:47:57.0828 2688  [ 9C84945FEEE40EA42D3BCA5C22250D47 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
10:47:57.0890 2688  nvUpdatusService - ok
10:47:57.0921 2688  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:47:57.0968 2688  NwlnkFlt - ok
10:47:58.0000 2688  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:47:58.0015 2688  NwlnkFwd - ok
10:47:58.0328 2688  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:47:58.0578 2688  odserv - ok
10:47:58.0859 2688  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:47:59.0015 2688  ose - ok
10:47:59.0093 2688  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
10:47:59.0156 2688  Parport - ok
10:47:59.0265 2688  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
10:47:59.0312 2688  PartMgr - ok
10:47:59.0359 2688  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
10:47:59.0406 2688  ParVdm - ok
10:47:59.0921 2688  [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
10:48:00.0093 2688  PassThru Service - ok
10:48:00.0250 2688  [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
10:48:00.0296 2688  pccsmcfd - ok
10:48:00.0390 2688  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
10:48:00.0453 2688  PCI - ok
10:48:00.0468 2688  PCIDump - ok
10:48:00.0500 2688  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
10:48:00.0500 2688  PCIIde - ok
10:48:00.0578 2688  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
10:48:00.0625 2688  Pcmcia - ok
10:48:00.0640 2688  PDCOMP - ok
10:48:00.0671 2688  PDFRAME - ok
10:48:00.0687 2688  PDRELI - ok
10:48:00.0703 2688  PDRFRAME - ok
10:48:00.0734 2688  perc2 - ok
10:48:00.0765 2688  perc2hib - ok
10:48:00.0921 2688  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
10:48:00.0921 2688  PlugPlay - ok
10:48:01.0437 2688  [ B597C2C966B447E011B4AE1B4D053677 ] PMBDeviceInfoProvider C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
10:48:01.0578 2688  PMBDeviceInfoProvider - ok
10:48:01.0937 2688  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
10:48:01.0937 2688  PolicyAgent - ok
10:48:02.0015 2688  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:48:02.0046 2688  PptpMiniport - ok
10:48:02.0078 2688  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:48:02.0078 2688  ProtectedStorage - ok
10:48:02.0250 2688  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
10:48:02.0281 2688  PSched - ok
10:48:02.0343 2688  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:48:02.0359 2688  Ptilink - ok
10:48:02.0375 2688  ql1080 - ok
10:48:02.0390 2688  Ql10wnt - ok
10:48:02.0421 2688  ql12160 - ok
10:48:02.0437 2688  ql1240 - ok
10:48:02.0468 2688  ql1280 - ok
10:48:02.0562 2688  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:48:02.0640 2688  RasAcd - ok
10:48:02.0734 2688  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:48:02.0765 2688  RasAuto - ok
10:48:02.0812 2688  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:48:02.0828 2688  Rasl2tp - ok
10:48:02.0921 2688  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:48:03.0062 2688  RasMan - ok
10:48:03.0125 2688  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:48:03.0140 2688  RasPppoe - ok
10:48:03.0187 2688  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
10:48:03.0203 2688  Raspti - ok
10:48:03.0375 2688  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:48:03.0437 2688  Rdbss - ok
10:48:03.0468 2688  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:48:03.0468 2688  RDPCDD - ok
10:48:08.0312 2688  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
10:48:08.0437 2688  RDPWD - ok
10:48:09.0265 2688  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
10:48:09.0390 2688  RDSessMgr - ok
10:48:09.0968 2688  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
10:48:10.0031 2688  redbook - ok
10:48:10.0265 2688  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:48:10.0296 2688  RemoteAccess - ok
10:48:10.0437 2688  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:48:10.0515 2688  RpcLocator - ok
10:48:11.0156 2688  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:48:11.0171 2688  RpcSs - ok
10:48:15.0500 2688  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
10:48:15.0656 2688  RSVP - ok
10:48:16.0218 2688  [ C2A6F7F35E617744A65DBFB0C0A64ADC ] rt2870          C:\WINDOWS\system32\DRIVERS\rt2870.sys
10:48:16.0468 2688  rt2870 - ok
10:48:17.0265 2688  [ 57F390BF7AF0F68BB804387CBC3A4F0D ] RT61            C:\WINDOWS\system32\DRIVERS\RT61.sys
10:48:17.0656 2688  RT61 - ok
10:48:18.0031 2688  [ 3529828EC571FB2F64F6B142F9109993 ] RTL8023xp       C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys
10:48:18.0109 2688  RTL8023xp - ok
10:48:18.0156 2688  [ D507C1400284176573224903819FFDA3 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
10:48:18.0187 2688  rtl8139 - ok
10:48:18.0218 2688  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
10:48:18.0218 2688  SamSs - ok
10:48:18.0250 2688  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
10:48:18.0312 2688  SASDIFSV - ok
10:48:18.0515 2688  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
10:48:18.0562 2688  SASKUTIL - ok
10:48:18.0703 2688  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
10:48:18.0750 2688  SCardSvr - ok
10:48:19.0015 2688  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:48:19.0375 2688  Schedule - ok
10:48:20.0140 2688  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:48:20.0171 2688  Secdrv - ok
10:48:20.0359 2688  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
10:48:20.0406 2688  seclogon - ok
10:48:20.0468 2688  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
10:48:20.0500 2688  SENS - ok
10:48:20.0531 2688  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
10:48:20.0546 2688  serenum - ok
10:48:20.0781 2688  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
10:48:20.0828 2688  Serial - ok
10:48:21.0703 2688  [ 8C1F87F5FDD92229D1754B98F073913F ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
10:48:22.0015 2688  ServiceLayer - ok
10:48:22.0109 2688  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
10:48:22.0125 2688  Sfloppy - ok
10:48:22.0203 2688  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:48:22.0281 2688  SharedAccess - ok
10:48:22.0375 2688  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:48:22.0375 2688  ShellHWDetection - ok
10:48:22.0390 2688  Simbad - ok
10:48:22.0437 2688  Sparrow - ok
10:48:22.0515 2688  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
10:48:22.0515 2688  splitter - ok
10:48:22.0546 2688  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
10:48:22.0562 2688  Spooler - ok
10:48:22.0625 2688  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
10:48:22.0687 2688  sr - ok
10:48:22.0781 2688  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
10:48:22.0906 2688  srservice - ok
10:48:23.0062 2688  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:48:23.0093 2688  Srv - ok
10:48:23.0187 2688  [ 2D4027C46B4C6E45875E3C4BA3F67492 ] sscdbus         C:\WINDOWS\system32\DRIVERS\sscdbus.sys
10:48:23.0187 2688  sscdbus - ok
10:48:23.0218 2688  [ F548F1EBA107BC19E91189E6A460BD0E ] sscdmdfl        C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
10:48:23.0218 2688  sscdmdfl - ok
10:48:23.0250 2688  [ 71D348D53597379DFE1DE255D70AF13C ] sscdmdm         C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
10:48:23.0265 2688  sscdmdm - ok
10:48:23.0312 2688  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:48:23.0343 2688  SSDPSRV - ok
10:48:23.0421 2688  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
10:48:23.0531 2688  stisvc - ok
10:48:23.0593 2688  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
10:48:23.0609 2688  swenum - ok
10:48:23.0640 2688  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
10:48:23.0671 2688  swmidi - ok
10:48:23.0687 2688  SwPrv - ok
10:48:23.0703 2688  symc810 - ok
10:48:23.0734 2688  symc8xx - ok
10:48:23.0750 2688  sym_hi - ok
10:48:23.0781 2688  sym_u3 - ok
10:48:23.0875 2688  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
10:48:23.0890 2688  sysaudio - ok
10:48:23.0953 2688  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
10:48:24.0000 2688  SysmonLog - ok
10:48:24.0187 2688  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:48:24.0218 2688  TapiSrv - ok
10:48:24.0703 2688  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:48:24.0750 2688  Tcpip - ok
10:48:24.0828 2688  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
10:48:24.0843 2688  TDPIPE - ok
10:48:24.0890 2688  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
10:48:24.0937 2688  TDTCP - ok
10:48:25.0093 2688  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
10:48:25.0125 2688  TermDD - ok
10:48:25.0312 2688  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
10:48:25.0390 2688  TermService - ok
10:48:25.0500 2688  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
10:48:25.0500 2688  Themes - ok
10:48:26.0046 2688  [ D0B08F941C0B06846533C6A38DD09B22 ] tmactmon        C:\WINDOWS\system32\DRIVERS\tmactmon.sys
10:48:26.0125 2688  tmactmon - ok
10:48:26.0421 2688  [ 0C9ACEF23B537D6E8B1373C98D066B1C ] tmcomm          C:\WINDOWS\system32\DRIVERS\tmcomm.sys
10:48:26.0546 2688  tmcomm - ok
10:48:26.0671 2688  [ 21992E703051934DCFA6D1477B12FC41 ] TMEBC           C:\WINDOWS\system32\DRIVERS\TMEBC32.sys
10:48:26.0718 2688  TMEBC - ok
10:48:26.0875 2688  [ 7AC66D3A5BA87C6CD16B457A3786DF64 ] tmeext          C:\WINDOWS\system32\DRIVERS\tmeext.sys
10:48:26.0906 2688  tmeext - ok
10:48:27.0140 2688  [ 63828FBD740F178DE2E2D42C3136FDEE ] tmevtmgr        C:\WINDOWS\system32\DRIVERS\tmevtmgr.sys
10:48:27.0312 2688  tmevtmgr - ok
10:48:28.0375 2688  [ 0C40396F071A8092964C8DC951F62B17 ] tmnciesc        C:\WINDOWS\system32\DRIVERS\tmnciesc.sys
10:48:28.0515 2688  tmnciesc - ok
10:48:28.0671 2688  [ 43C1B7C778B296D492AF6D2ABB2ECF7F ] tmtdi           C:\WINDOWS\system32\DRIVERS\tmtdi.sys
10:48:28.0703 2688  tmtdi - ok
10:48:28.0718 2688  TosIde - ok
10:48:28.0890 2688  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
10:48:28.0906 2688  TrkWks - ok
10:48:28.0984 2688  [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35          C:\WINDOWS\system32\DRIVERS\uagp35.sys
10:48:29.0000 2688  uagp35 - ok
10:48:29.0125 2688  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
10:48:29.0171 2688  Udfs - ok
10:48:29.0187 2688  ultra - ok
10:48:29.0484 2688  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
10:48:29.0546 2688  Update - ok
10:48:29.0578 2688  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:48:29.0609 2688  upnphost - ok
10:48:29.0734 2688  [ EC01DA44B090D2651FC032C8B9257232 ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
10:48:29.0781 2688  upperdev - ok
10:48:29.0828 2688  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
10:48:29.0843 2688  UPS - ok
10:48:29.0921 2688  [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
10:48:30.0062 2688  USBAAPL - ok
10:48:30.0531 2688  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
10:48:30.0562 2688  usbaudio - ok
10:48:30.0734 2688  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:48:30.0796 2688  usbccgp - ok
10:48:31.0015 2688  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:48:31.0031 2688  usbehci - ok
10:48:31.0062 2688  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:48:31.0093 2688  usbhub - ok
10:48:31.0140 2688  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:48:31.0171 2688  usbprint - ok
10:48:31.0359 2688  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
10:48:31.0375 2688  usbscan - ok
10:48:31.0796 2688  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\drivers\usbser.sys
10:48:31.0843 2688  usbser - ok
10:48:32.0140 2688  [ 4ABD37CFBD710E64F01F9DA8710C73F7 ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
10:48:32.0281 2688  UsbserFilt - ok
10:48:32.0437 2688  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:48:32.0453 2688  USBSTOR - ok
10:48:32.0671 2688  [ F9288B919EA3065AD65F33D971604696 ] USBTINSP        C:\WINDOWS\system32\DRIVERS\tinspusb.sys
10:48:32.0718 2688  USBTINSP - ok
10:48:32.0875 2688  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:48:32.0890 2688  usbuhci - ok
10:48:32.0937 2688  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
10:48:32.0953 2688  VgaSave - ok
10:48:33.0015 2688  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
10:48:33.0031 2688  ViaIde - ok
10:48:33.0078 2688  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
10:48:33.0093 2688  VolSnap - ok
10:48:33.0265 2688  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
10:48:33.0281 2688  VSS - ok
10:48:33.0343 2688  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
10:48:33.0375 2688  W32Time - ok
10:48:33.0421 2688  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:48:33.0437 2688  Wanarp - ok
10:48:33.0953 2688  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
10:48:34.0109 2688  Wdf01000 - ok
10:48:34.0125 2688  WDICA - ok
10:48:34.0359 2688  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
10:48:34.0375 2688  wdmaud - ok
10:48:34.0437 2688  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:48:34.0453 2688  WebClient - ok
10:48:34.0750 2688  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:48:34.0750 2688  winmgmt - ok
10:48:35.0781 2688  [ 18F347402DA544A780949B8FDF83351B ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
10:48:36.0078 2688  WinRM - ok
10:48:36.0187 2688  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
10:48:36.0187 2688  WmdmPmSN - ok
10:48:36.0437 2688  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:48:36.0453 2688  WmiApSrv - ok
10:48:36.0843 2688  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
10:48:37.0031 2688  WMPNetworkSvc - ok
10:48:37.0578 2688  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:48:37.0906 2688  WPFFontCache_v0400 - ok
10:48:38.0046 2688  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
10:48:38.0078 2688  wscsvc - ok
10:48:38.0140 2688  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
10:48:38.0156 2688  wuauserv - ok
10:48:38.0343 2688  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:48:38.0343 2688  WudfPf - ok
10:48:38.0390 2688  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:48:38.0437 2688  WudfRd - ok
10:48:38.0468 2688  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
10:48:38.0484 2688  WudfSvc - ok
10:48:38.0515 2688  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
10:48:38.0562 2688  WZCSVC - ok
10:48:38.0609 2688  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
10:48:38.0640 2688  xmlprov - ok
10:48:38.0718 2688  ================ Scan global ===============================
10:48:38.0796 2688  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
10:48:38.0968 2688  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:48:39.0000 2688  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:48:39.0031 2688  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
10:48:39.0031 2688  [Global] - ok
10:48:39.0031 2688  ================ Scan MBR ==================================
10:48:39.0062 2688  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
10:48:42.0218 2688  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
10:48:42.0218 2688  \Device\Harddisk0\DR0 - detected TDSS File System (1)
10:48:42.0218 2688  ================ Scan VBR ==================================
10:48:42.0296 2688  [ 372242F851C6E8D81B1C70418CBE5E35 ] \Device\Harddisk0\DR0\Partition1
10:48:42.0343 2688  \Device\Harddisk0\DR0\Partition1 - ok
10:48:42.0343 2688  ================ Scan active images ========================
10:48:42.0343 2688  [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
10:48:42.0359 2688  C:\WINDOWS\system32\drivers\intelppm.sys - ok
10:48:42.0375 2688  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
10:48:42.0375 2688  C:\WINDOWS\system32\drivers\videoprt.sys - ok
10:48:42.0390 2688  [ 4B54DCD6ADEE535DF80F07C59DDD8F14 ] C:\WINDOWS\system32\drivers\nv4_mini.sys
10:48:42.0390 2688  C:\WINDOWS\system32\drivers\nv4_mini.sys - ok
10:48:42.0421 2688  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
10:48:42.0421 2688  C:\WINDOWS\system32\drivers\imapi.sys - ok
10:48:42.0437 2688  [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
10:48:42.0437 2688  C:\WINDOWS\system32\drivers\cdrom.sys - ok
10:48:42.0453 2688  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
10:48:42.0453 2688  C:\WINDOWS\system32\drivers\ks.sys - ok
10:48:42.0484 2688  [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
10:48:42.0484 2688  C:\WINDOWS\system32\drivers\redbook.sys - ok
10:48:42.0500 2688  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
10:48:42.0500 2688  C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
10:48:42.0531 2688  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
10:48:42.0531 2688  C:\WINDOWS\system32\drivers\usbport.sys - ok
10:48:42.0546 2688  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
10:48:42.0546 2688  C:\WINDOWS\system32\drivers\usbehci.sys - ok
10:48:42.0578 2688  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
10:48:42.0578 2688  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
10:48:42.0593 2688  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
10:48:42.0593 2688  C:\WINDOWS\system32\drivers\drmk.sys - ok
10:48:42.0625 2688  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
10:48:42.0625 2688  C:\WINDOWS\system32\drivers\portcls.sys - ok
10:48:42.0640 2688  [ 34149A136B2B7525113950233F259EC1 ] C:\WINDOWS\system32\drivers\alcxwdm.sys
10:48:42.0640 2688  C:\WINDOWS\system32\drivers\alcxwdm.sys - ok
10:48:42.0671 2688  [ 3529828EC571FB2F64F6B142F9109993 ] C:\WINDOWS\system32\drivers\Rtnicxp.sys
10:48:42.0671 2688  C:\WINDOWS\system32\drivers\Rtnicxp.sys - ok
10:48:42.0687 2688  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
10:48:42.0687 2688  C:\WINDOWS\system32\drivers\serial.sys - ok
10:48:42.0703 2688  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
10:48:42.0703 2688  C:\WINDOWS\system32\drivers\audstub.sys - ok
10:48:42.0718 2688  [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
10:48:42.0718 2688  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
10:48:42.0750 2688  [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
10:48:42.0750 2688  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
10:48:42.0765 2688  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
10:48:42.0765 2688  C:\WINDOWS\system32\drivers\parport.sys - ok
10:48:42.0796 2688  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
10:48:42.0796 2688  C:\WINDOWS\system32\drivers\serenum.sys - ok
10:48:42.0812 2688  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
10:48:42.0812 2688  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
10:48:42.0843 2688  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
10:48:42.0843 2688  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
10:48:42.0859 2688  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
10:48:42.0859 2688  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
10:48:42.0890 2688  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
10:48:42.0890 2688  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
10:48:42.0906 2688  [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
10:48:42.0906 2688  C:\WINDOWS\system32\drivers\tdi.sys - ok
10:48:42.0937 2688  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
10:48:42.0937 2688  C:\WINDOWS\system32\drivers\psched.sys - ok
10:48:42.0937 2688  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
10:48:42.0937 2688  C:\WINDOWS\system32\drivers\raspptp.sys - ok
10:48:42.0968 2688  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
10:48:42.0968 2688  C:\WINDOWS\system32\drivers\msgpc.sys - ok
10:48:42.0984 2688  [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
10:48:42.0984 2688  C:\WINDOWS\system32\drivers\mouclass.sys - ok
10:48:43.0015 2688  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
10:48:43.0015 2688  C:\WINDOWS\system32\drivers\ptilink.sys - ok
10:48:43.0031 2688  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
10:48:43.0031 2688  C:\WINDOWS\system32\drivers\raspti.sys - ok
10:48:43.0062 2688  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
10:48:43.0062 2688  C:\WINDOWS\system32\drivers\swenum.sys - ok
10:48:43.0078 2688  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
10:48:43.0078 2688  C:\WINDOWS\system32\drivers\termdd.sys - ok
10:48:43.0109 2688  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
10:48:43.0109 2688  C:\WINDOWS\system32\drivers\update.sys - ok
10:48:43.0125 2688  [ 687AF6BB383885FF6A64071B189A7F3E ] C:\WINDOWS\system32\drivers\dtsoftbus01.sys
10:48:43.0125 2688  C:\WINDOWS\system32\drivers\dtsoftbus01.sys - ok
10:48:43.0156 2688  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
10:48:43.0156 2688  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
10:48:43.0171 2688  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
10:48:43.0171 2688  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
10:48:43.0187 2688  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
10:48:43.0187 2688  C:\WINDOWS\system32\drivers\usbd.sys - ok
10:48:43.0218 2688  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
10:48:43.0218 2688  C:\WINDOWS\system32\drivers\usbhub.sys - ok
10:48:43.0234 2688  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
10:48:43.0234 2688  C:\WINDOWS\system32\drivers\fdc.sys - ok
10:48:43.0265 2688  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
10:48:43.0265 2688  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
10:48:43.0281 2688  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
10:48:43.0281 2688  C:\WINDOWS\system32\drivers\beep.sys - ok
10:48:43.0312 2688  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
10:48:43.0312 2688  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
10:48:43.0328 2688  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
10:48:43.0328 2688  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
10:48:43.0359 2688  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
10:48:43.0359 2688  C:\WINDOWS\system32\drivers\null.sys - ok
10:48:43.0375 2688  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
10:48:43.0375 2688  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
10:48:43.0406 2688  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
10:48:43.0406 2688  C:\WINDOWS\system32\drivers\vga.sys - ok
10:48:43.0421 2688  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
10:48:43.0421 2688  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
10:48:43.0437 2688  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
10:48:43.0437 2688  C:\WINDOWS\system32\drivers\msfs.sys - ok
10:48:43.0453 2688  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
10:48:43.0453 2688  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
10:48:43.0484 2688  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
10:48:43.0484 2688  C:\WINDOWS\system32\drivers\ipsec.sys - ok
10:48:43.0500 2688  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
10:48:43.0500 2688  C:\WINDOWS\system32\drivers\npfs.sys - ok
10:48:43.0531 2688  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
10:48:43.0531 2688  C:\WINDOWS\system32\drivers\rasacd.sys - ok
10:48:43.0546 2688  [ 7AC66D3A5BA87C6CD16B457A3786DF64 ] C:\WINDOWS\system32\drivers\tmeext.sys
10:48:43.0546 2688  C:\WINDOWS\system32\drivers\tmeext.sys - ok
10:48:43.0562 2688  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
10:48:43.0562 2688  C:\WINDOWS\system32\drivers\tcpip.sys - ok
10:48:43.0593 2688  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
10:48:43.0593 2688  C:\WINDOWS\system32\drivers\netbt.sys - ok
10:48:43.0609 2688  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
10:48:43.0609 2688  C:\WINDOWS\system32\drivers\afd.sys - ok
10:48:43.0640 2688  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
10:48:43.0640 2688  C:\WINDOWS\system32\drivers\ipnat.sys - ok
10:48:43.0671 2688  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
10:48:43.0671 2688  C:\WINDOWS\system32\drivers\netbios.sys - ok
10:48:43.0687 2688  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
10:48:43.0687 2688  C:\WINDOWS\system32\drivers\wanarp.sys - ok
10:48:43.0703 2688  [ 0C9ACEF23B537D6E8B1373C98D066B1C ] C:\WINDOWS\system32\drivers\tmcomm.sys
10:48:43.0703 2688  C:\WINDOWS\system32\drivers\tmcomm.sys - ok
10:48:43.0718 2688  [ 63828FBD740F178DE2E2D42C3136FDEE ] C:\WINDOWS\system32\drivers\tmevtmgr.sys
10:48:43.0718 2688  C:\WINDOWS\system32\drivers\tmevtmgr.sys - ok
10:48:43.0750 2688  [ D0B08F941C0B06846533C6A38DD09B22 ] C:\WINDOWS\system32\drivers\tmactmon.sys
10:48:43.0750 2688  C:\WINDOWS\system32\drivers\tmactmon.sys - ok
10:48:43.0765 2688  [ 43C1B7C778B296D492AF6D2ABB2ECF7F ] C:\WINDOWS\system32\drivers\tmtdi.sys
10:48:43.0765 2688  C:\WINDOWS\system32\drivers\tmtdi.sys - ok
10:48:43.0796 2688  [ 39763504067962108505BFF25F024345 ] C:\Program Files\SUPERAntiSpyware\sasdifsv.sys
10:48:43.0796 2688  C:\Program Files\SUPERAntiSpyware\sasdifsv.sys - ok
10:48:43.0812 2688  [ 77B9FC20084B48408AD3E87570EB4A85 ] C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
10:48:43.0812 2688  C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS - ok
10:48:43.0843 2688  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
10:48:43.0843 2688  C:\WINDOWS\system32\drivers\rdbss.sys - ok
10:48:43.0859 2688  [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
10:48:43.0859 2688  C:\WINDOWS\system32\drivers\fips.sys - ok
10:48:43.0890 2688  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
10:48:43.0890 2688  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
10:48:43.0906 2688  [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
10:48:43.0906 2688  C:\WINDOWS\system32\ntdll.dll - ok
10:48:43.0921 2688  [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
10:48:43.0921 2688  C:\WINDOWS\system32\smss.exe - ok
10:48:43.0937 2688  [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
10:48:43.0937 2688  C:\WINDOWS\system32\autochk.exe - ok
10:48:43.0968 2688  [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
10:48:43.0968 2688  C:\WINDOWS\system32\drivers\cdfs.sys - ok
10:48:43.0984 2688  [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
10:48:43.0984 2688  C:\WINDOWS\system32\sfcfiles.dll - ok
10:48:44.0015 2688  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
10:48:44.0015 2688  C:\WINDOWS\system32\drivers\hidclass.sys - ok
10:48:44.0031 2688  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
10:48:44.0031 2688  C:\WINDOWS\system32\drivers\hidparse.sys - ok
10:48:44.0062 2688  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
10:48:44.0062 2688  C:\WINDOWS\system32\drivers\hidusb.sys - ok
10:48:44.0078 2688  [ C2A6F7F35E617744A65DBFB0C0A64ADC ] C:\WINDOWS\system32\drivers\rt2870.sys
10:48:44.0078 2688  C:\WINDOWS\system32\drivers\rt2870.sys - ok
10:48:44.0109 2688  [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
10:48:44.0109 2688  C:\WINDOWS\system32\drivers\mouhid.sys - ok
10:48:44.0125 2688  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
10:48:44.0125 2688  C:\WINDOWS\system32\drivers\atapi.sys - ok
10:48:44.0156 2688  [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
10:48:44.0156 2688  C:\WINDOWS\system32\drivers\wmilib.sys - ok
10:48:44.0171 2688  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
10:48:44.0171 2688  C:\WINDOWS\system32\drivers\dxapi.sys - ok
10:48:44.0187 2688  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
10:48:44.0187 2688  C:\WINDOWS\system32\watchdog.sys - ok
10:48:44.0218 2688  [ BD39EC6064A1B5DFDABCF312A38A37EE ] C:\WINDOWS\system32\win32k.sys
10:48:44.0234 2688  C:\WINDOWS\system32\win32k.sys - ok
10:48:44.0234 2688  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
10:48:44.0250 2688  C:\WINDOWS\system32\basesrv.dll - ok
10:48:44.0265 2688  [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
10:48:44.0265 2688  C:\WINDOWS\system32\csrsrv.dll - ok
10:48:44.0296 2688  [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
10:48:44.0296 2688  C:\WINDOWS\system32\csrss.exe - ok
10:48:44.0312 2688  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:48:44.0312 2688  C:\WINDOWS\system32\winsrv.dll - ok
10:48:44.0328 2688  [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
10:48:44.0328 2688  C:\WINDOWS\system32\gdi32.dll - ok
10:48:44.0359 2688  [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
10:48:44.0359 2688  C:\WINDOWS\system32\kernel32.dll - ok
10:48:44.0375 2688  [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
10:48:44.0375 2688  C:\WINDOWS\system32\user32.dll - ok
10:48:44.0406 2688  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
10:48:44.0406 2688  C:\WINDOWS\system32\drivers\dxg.sys - ok
10:48:44.0421 2688  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
10:48:44.0421 2688  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
10:48:44.0437 2688  [ 8A067CC459AA9CF7597CEEFE05B35F3B ] C:\WINDOWS\system32\nv4_disp.dll
10:48:44.0437 2688  C:\WINDOWS\system32\nv4_disp.dll - ok
10:48:44.0468 2688  [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
10:48:44.0468 2688  C:\WINDOWS\system32\vga.dll - ok
10:48:44.0484 2688  [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
10:48:44.0484 2688  C:\WINDOWS\system32\winlogon.exe - ok
10:48:44.0515 2688  [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
10:48:44.0515 2688  C:\WINDOWS\system32\advapi32.dll - ok
10:48:44.0531 2688  [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
10:48:44.0531 2688  C:\WINDOWS\system32\rpcrt4.dll - ok
10:48:44.0546 2688  [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
10:48:44.0562 2688  C:\WINDOWS\system32\secur32.dll - ok
10:48:44.0578 2688  [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
10:48:44.0578 2688  C:\WINDOWS\system32\authz.dll - ok
10:48:44.0609 2688  [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
10:48:44.0609 2688  C:\WINDOWS\system32\crypt32.dll - ok
10:48:44.0625 2688  [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
10:48:44.0625 2688  C:\WINDOWS\system32\msvcrt.dll - ok
10:48:44.0656 2688  [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
10:48:44.0656 2688  C:\WINDOWS\system32\msasn1.dll - ok
10:48:44.0671 2688  [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
10:48:44.0671 2688  C:\WINDOWS\system32\nddeapi.dll - ok
10:48:44.0687 2688  [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
10:48:44.0687 2688  C:\WINDOWS\system32\profmap.dll - ok
10:48:44.0703 2688  [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
10:48:44.0703 2688  C:\WINDOWS\system32\netapi32.dll - ok
10:48:44.0734 2688  [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
10:48:44.0734 2688  C:\WINDOWS\system32\userenv.dll - ok
10:48:44.0750 2688  [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
10:48:44.0750 2688  C:\WINDOWS\system32\psapi.dll - ok
10:48:44.0781 2688  [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
10:48:44.0781 2688  C:\WINDOWS\system32\regapi.dll - ok
10:48:44.0796 2688  [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
10:48:44.0796 2688  C:\WINDOWS\system32\setupapi.dll - ok
10:48:44.0828 2688  [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
10:48:44.0828 2688  C:\WINDOWS\system32\imagehlp.dll - ok
10:48:44.0843 2688  [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
10:48:44.0843 2688  C:\WINDOWS\system32\version.dll - ok
10:48:44.0875 2688  [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
10:48:44.0875 2688  C:\WINDOWS\system32\winsta.dll - ok
10:48:44.0890 2688  [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
10:48:44.0890 2688  C:\WINDOWS\system32\wintrust.dll - ok
10:48:44.0921 2688  [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
10:48:44.0921 2688  C:\WINDOWS\system32\imm32.dll - ok
10:48:44.0937 2688  [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
10:48:44.0937 2688  C:\WINDOWS\system32\ws2help.dll - ok
10:48:44.0953 2688  [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
10:48:44.0953 2688  C:\WINDOWS\system32\ws2_32.dll - ok
10:48:44.0968 2688  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
10:48:44.0968 2688  C:\WINDOWS\system32\kbdus.dll - ok
10:48:45.0000 2688  [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
10:48:45.0000 2688  C:\WINDOWS\system32\msgina.dll - ok
10:48:45.0015 2688  [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
10:48:45.0015 2688  C:\WINDOWS\system32\comctl32.dll - ok
10:48:45.0046 2688  [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
10:48:45.0046 2688  C:\WINDOWS\system32\comdlg32.dll - ok
10:48:45.0062 2688  [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
10:48:45.0078 2688  C:\WINDOWS\system32\odbc32.dll - ok
10:48:45.0093 2688  [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
10:48:45.0093 2688  C:\WINDOWS\system32\shell32.dll - ok
10:48:45.0125 2688  [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
10:48:45.0125 2688  C:\WINDOWS\system32\shlwapi.dll - ok
10:48:45.0140 2688  [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
10:48:45.0140 2688  C:\WINDOWS\system32\sxs.dll - ok
10:48:45.0171 2688  [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
10:48:45.0171 2688  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
10:48:45.0187 2688  [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
10:48:45.0187 2688  C:\WINDOWS\system32\odbcint.dll - ok
10:48:45.0203 2688  [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
10:48:45.0203 2688  C:\WINDOWS\system32\shsvcs.dll - ok
10:48:45.0234 2688  [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
10:48:45.0234 2688  C:\WINDOWS\system32\ole32.dll - ok
10:48:45.0250 2688  [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
10:48:45.0250 2688  C:\WINDOWS\system32\sfc.dll - ok
10:48:45.0281 2688  [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
10:48:45.0281 2688  C:\WINDOWS\system32\sfc_os.dll - ok
10:48:45.0296 2688  [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
10:48:45.0296 2688  C:\WINDOWS\system32\apphelp.dll - ok
10:48:45.0328 2688  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
10:48:45.0328 2688  C:\WINDOWS\system32\services.exe - ok
10:48:45.0343 2688  [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
10:48:45.0343 2688  C:\WINDOWS\system32\lsasrv.dll - ok
10:48:45.0375 2688  [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
10:48:45.0375 2688  C:\WINDOWS\system32\lsass.exe - ok
10:48:45.0390 2688  [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
10:48:45.0390 2688  C:\WINDOWS\system32\msvcp60.dll - ok
10:48:45.0421 2688  [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
10:48:45.0421 2688  C:\WINDOWS\system32\ncobjapi.dll - ok
10:48:45.0437 2688  [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
10:48:45.0437 2688  C:\WINDOWS\system32\mpr.dll - ok
10:48:45.0453 2688  [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
10:48:45.0453 2688  C:\WINDOWS\system32\scesrv.dll - ok
10:48:45.0484 2688  [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
10:48:45.0484 2688  C:\WINDOWS\system32\ntdsapi.dll - ok
10:48:45.0500 2688  [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
10:48:45.0500 2688  C:\WINDOWS\system32\dnsapi.dll - ok
10:48:45.0531 2688  [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
10:48:45.0531 2688  C:\WINDOWS\system32\shimeng.dll - ok
10:48:45.0546 2688  [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
10:48:45.0546 2688  C:\WINDOWS\system32\umpnpmgr.dll - ok
10:48:45.0578 2688  [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
10:48:45.0578 2688  C:\WINDOWS\system32\wldap32.dll - ok
10:48:45.0593 2688  [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\AcAdProc.dll
10:48:45.0593 2688  C:\WINDOWS\AppPatch\AcAdProc.dll - ok
10:48:45.0625 2688  [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
10:48:45.0625 2688  C:\WINDOWS\system32\samlib.dll - ok
10:48:45.0640 2688  [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
10:48:45.0640 2688  C:\WINDOWS\system32\samsrv.dll - ok
10:48:45.0671 2688  [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\AcGenral.dll
10:48:45.0671 2688  C:\WINDOWS\AppPatch\AcGenral.dll - ok
10:48:45.0687 2688  [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
10:48:45.0687 2688  C:\WINDOWS\system32\cryptdll.dll - ok
10:48:45.0703 2688  [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
10:48:45.0703 2688  C:\WINDOWS\system32\oleaut32.dll - ok
10:48:45.0734 2688  [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
10:48:45.0734 2688  C:\WINDOWS\system32\winmm.dll - ok
10:48:45.0750 2688  [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
10:48:45.0750 2688  C:\WINDOWS\system32\msacm32.dll - ok
10:48:45.0781 2688  [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
10:48:45.0781 2688  C:\WINDOWS\system32\uxtheme.dll - ok
10:48:45.0796 2688  [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
10:48:45.0796 2688  C:\WINDOWS\system32\msapsspc.dll - ok
10:48:45.0828 2688  [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
10:48:45.0828 2688  C:\WINDOWS\system32\digest.dll - ok
10:48:45.0843 2688  [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
10:48:45.0843 2688  C:\WINDOWS\system32\msnsspc.dll - ok
10:48:45.0875 2688  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
10:48:45.0875 2688  C:\WINDOWS\system32\msvcrt40.dll - ok
10:48:45.0890 2688  [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
10:48:45.0890 2688  C:\WINDOWS\system32\schannel.dll - ok
10:48:45.0921 2688  [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
10:48:45.0921 2688  C:\WINDOWS\system32\kerberos.dll - ok
10:48:45.0937 2688  [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\MSCTFIME.IME
10:48:45.0937 2688  C:\WINDOWS\system32\MSCTFIME.IME - ok
10:48:45.0953 2688  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
10:48:45.0953 2688  C:\WINDOWS\system32\msprivs.dll - ok
10:48:45.0984 2688  [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
10:48:45.0984 2688  C:\WINDOWS\system32\atmfd.dll - ok
10:48:46.0000 2688  [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
10:48:46.0000 2688  C:\WINDOWS\system32\msv1_0.dll - ok
10:48:46.0031 2688  [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
10:48:46.0031 2688  C:\WINDOWS\system32\iphlpapi.dll - ok
10:48:46.0062 2688  [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
10:48:46.0062 2688  C:\WINDOWS\system32\netlogon.dll - ok
10:48:46.0078 2688  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
10:48:46.0078 2688  C:\WINDOWS\system32\rsaenh.dll - ok
10:48:46.0109 2688  [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
10:48:46.0109 2688  C:\WINDOWS\system32\w32time.dll - ok
10:48:46.0125 2688  [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
10:48:46.0125 2688  C:\WINDOWS\system32\wdigest.dll - ok
10:48:46.0156 2688  [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
10:48:46.0156 2688  C:\WINDOWS\system32\winscard.dll - ok
10:48:46.0171 2688  [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
10:48:46.0171 2688  C:\WINDOWS\system32\wtsapi32.dll - ok
10:48:46.0187 2688  [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
10:48:46.0187 2688  C:\WINDOWS\system32\scecli.dll - ok
10:48:46.0218 2688  [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
10:48:46.0218 2688  C:\WINDOWS\system32\svchost.exe - ok
10:48:46.0250 2688  [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
10:48:46.0250 2688  C:\WINDOWS\system32\ntmarta.dll - ok
10:48:46.0265 2688  [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
10:48:46.0265 2688  C:\WINDOWS\system32\rpcss.dll - ok
10:48:46.0296 2688  [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
10:48:46.0296 2688  C:\WINDOWS\system32\xpsp2res.dll - ok
10:48:46.0312 2688  [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
10:48:46.0312 2688  C:\WINDOWS\system32\eventlog.dll - ok
10:48:46.0343 2688  [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
10:48:46.0343 2688  C:\WINDOWS\system32\mswsock.dll - ok
10:48:46.0359 2688  [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
10:48:46.0359 2688  C:\WINDOWS\system32\hnetcfg.dll - ok
10:48:46.0390 2688  [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
10:48:46.0390 2688  C:\WINDOWS\system32\wshtcpip.dll - ok
10:48:46.0406 2688  [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
10:48:46.0406 2688  C:\WINDOWS\system32\winrnr.dll - ok
10:48:46.0437 2688  [ 2B81226910F765A9191EB9DB93743237 ] C:\Program Files\Bonjour\mdnsNSP.dll
10:48:46.0437 2688  C:\Program Files\Bonjour\mdnsNSP.dll - ok
10:48:46.0453 2688  [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
10:48:46.0453 2688  C:\WINDOWS\system32\rasadhlp.dll - ok
10:48:46.0468 2688  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] C:\WINDOWS\system32\WudfSvc.dll
10:48:46.0468 2688  C:\WINDOWS\system32\WudfSvc.dll - ok
10:48:46.0500 2688  [ 708E6997420592E033CF01B60E6E4223 ] C:\WINDOWS\system32\WudfPlatform.dll
10:48:46.0500 2688  C:\WINDOWS\system32\WudfPlatform.dll - ok
10:48:46.0515 2688  [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
10:48:46.0515 2688  C:\WINDOWS\system32\dhcpcsvc.dll - ok
10:48:46.0546 2688  [ 15E655BAA989444F56787EF558823643 ] C:\WINDOWS\system32\drivers\AegisP.sys
10:48:46.0546 2688  C:\WINDOWS\system32\drivers\AegisP.sys - ok
10:48:46.0562 2688  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
10:48:46.0562 2688  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
10:48:46.0593 2688  [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
10:48:46.0593 2688  C:\WINDOWS\system32\dnsrslvr.dll - ok
10:48:46.0609 2688  [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
10:48:46.0609 2688  C:\WINDOWS\system32\lmhsvc.dll - ok
10:48:46.0640 2688  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
10:48:46.0640 2688  C:\WINDOWS\system32\wzcsvc.dll - ok
10:48:46.0656 2688  [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
10:48:46.0656 2688  C:\WINDOWS\system32\atl.dll - ok
10:48:46.0687 2688  [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
10:48:46.0687 2688  C:\WINDOWS\system32\dot3api.dll - ok
10:48:46.0703 2688  [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
10:48:46.0703 2688  C:\WINDOWS\system32\eapolqec.dll - ok
10:48:46.0718 2688  [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
10:48:46.0718 2688  C:\WINDOWS\system32\esent.dll - ok
10:48:46.0750 2688  [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
10:48:46.0750 2688  C:\WINDOWS\system32\qutil.dll - ok
10:48:46.0765 2688  [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
10:48:46.0765 2688  C:\WINDOWS\system32\rtutils.dll - ok
10:48:46.0796 2688  [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
10:48:46.0796 2688  C:\WINDOWS\system32\wmi.dll - ok
10:48:46.0812 2688  [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
10:48:46.0812 2688  C:\WINDOWS\system32\clbcatq.dll - ok
10:48:46.0843 2688  [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
10:48:46.0843 2688  C:\WINDOWS\system32\comres.dll - ok
10:48:46.0859 2688  [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
10:48:46.0859 2688  C:\WINDOWS\system32\mlang.dll - ok
10:48:46.0890 2688  [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
10:48:46.0890 2688  C:\WINDOWS\system32\cryptui.dll - ok
10:48:46.0906 2688  [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
10:48:46.0906 2688  C:\WINDOWS\system32\rastls.dll - ok
10:48:46.0937 2688  [ D175F91A4C98B8848818C9B5089F88A2 ] C:\WINDOWS\system32\wininet.dll
10:48:46.0937 2688  C:\WINDOWS\system32\wininet.dll - ok
10:48:46.0953 2688  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
10:48:46.0953 2688  C:\WINDOWS\system32\normaliz.dll - ok
10:48:46.0968 2688  [ 84A5C7B9B1B82F94A8245781FD44D8BA ] C:\WINDOWS\system32\urlmon.dll
10:48:46.0968 2688  C:\WINDOWS\system32\urlmon.dll - ok
10:48:47.0000 2688  [ D1B3D1E05BEDC8F9B0BBBC03D6033F82 ] C:\WINDOWS\system32\iertutil.dll
10:48:47.0000 2688  C:\WINDOWS\system32\iertutil.dll - ok
10:48:47.0015 2688  [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
10:48:47.0015 2688  C:\WINDOWS\system32\activeds.dll - ok
10:48:47.0046 2688  [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
10:48:47.0046 2688  C:\WINDOWS\system32\adsldpc.dll - ok
10:48:47.0062 2688  [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
10:48:47.0062 2688  C:\WINDOWS\system32\mprapi.dll - ok
10:48:47.0093 2688  [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
10:48:47.0093 2688  C:\WINDOWS\system32\rasapi32.dll - ok
10:48:47.0109 2688  [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
10:48:47.0109 2688  C:\WINDOWS\system32\rasman.dll - ok
10:48:47.0125 2688  [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
10:48:47.0125 2688  C:\WINDOWS\system32\tapi32.dll - ok
10:48:47.0156 2688  [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
10:48:47.0156 2688  C:\WINDOWS\system32\riched20.dll - ok
10:48:47.0187 2688  [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
10:48:47.0187 2688  C:\WINDOWS\system32\raschap.dll - ok
10:48:47.0187 2688  [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
10:48:47.0187 2688  C:\WINDOWS\system32\wzcsapi.dll - ok
10:48:47.0218 2688  [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\system32\xmlprovi.dll
10:48:47.0359 2688  C:\WINDOWS\system32\xmlprovi.dll - ok
10:48:47.0359 2688  [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
10:48:47.0359 2688  C:\WINDOWS\system32\cscdll.dll - ok
10:48:47.0390 2688  [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
10:48:47.0390 2688  C:\WINDOWS\system32\logonui.exe - ok
10:48:47.0406 2688  [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
10:48:47.0406 2688  C:\WINDOWS\system32\dimsntfy.dll - ok
10:48:47.0437 2688  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
10:48:47.0437 2688  C:\WINDOWS\system32\schedsvc.dll - ok
10:48:47.0453 2688  [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
10:48:47.0453 2688  C:\WINDOWS\system32\duser.dll - ok
10:48:47.0468 2688  [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
10:48:47.0468 2688  C:\WINDOWS\system32\wlnotify.dll - ok
10:48:47.0500 2688  [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
10:48:47.0500 2688  C:\WINDOWS\system32\winspool.drv - ok
10:48:47.0515 2688  [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
10:48:47.0515 2688  C:\WINDOWS\system32\msimg32.dll - ok
10:48:47.0546 2688  [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
10:48:47.0546 2688  C:\WINDOWS\system32\msidle.dll - ok
10:48:47.0562 2688  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
10:48:47.0562 2688  C:\WINDOWS\system32\oleacc.dll - ok
10:48:47.0578 2688  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
10:48:47.0578 2688  C:\WINDOWS\system32\spoolsv.exe - ok
10:48:47.0609 2688  [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
10:48:47.0609 2688  C:\WINDOWS\system32\rundll32.exe - ok
10:48:47.0625 2688  [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
10:48:47.0625 2688  C:\WINDOWS\system32\audiosrv.dll - ok
10:48:47.0656 2688  [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
10:48:47.0656 2688  C:\WINDOWS\system32\shgina.dll - ok
10:48:47.0671 2688  [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
10:48:47.0671 2688  C:\WINDOWS\system32\wkssvc.dll - ok
10:48:47.0687 2688  [ F20336491F78445E748A5BE2A032F698 ] C:\WINDOWS\system32\verifierf.dll
10:48:47.0687 2688  C:\WINDOWS\system32\verifierf.dll - ok
10:48:47.0718 2688  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
10:48:47.0718 2688  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
10:48:47.0734 2688  [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
10:48:47.0734 2688  C:\WINDOWS\system32\webclnt.dll - ok
10:48:47.0765 2688  [ F52603B708438E39FF38475807A01CBC ] C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
10:48:47.0765 2688  C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe - ok
10:48:47.0781 2688  [ 9E054D04721F4BA4ACB0C0D189C9B1CD ] C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll
10:48:47.0781 2688  C:\Program Files\Trend Micro\AMSP\utilGenericLoader.dll - ok
10:48:47.0812 2688  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
10:48:47.0812 2688  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
10:48:47.0828 2688  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
10:48:47.0828 2688  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
10:48:47.0843 2688  [ CFBF24322AF177B3C3A81A862B4C3353 ] C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_49.dll
10:48:47.0843 2688  C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_49.dll - ok
10:48:47.0875 2688  [ 7AD47F1F78EB1AEC7D8F262878204DEC ] C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll
10:48:47.0875 2688  C:\Program Files\Trend Micro\AMSP\utilDebugLog.dll - ok
10:48:47.0890 2688  [ 78CD7BD82E678C0A239010D8B2FAE4FD ] C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll
10:48:47.0890 2688  C:\Program Files\Trend Micro\AMSP\utilComponentInfo.dll - ok
10:48:47.0921 2688  [ DEB46802F1183A90D3E029566B690E84 ] C:\Program Files\Trend Micro\AMSP\utilInstallation.dll
10:48:47.0921 2688  C:\Program Files\Trend Micro\AMSP\utilInstallation.dll - ok
10:48:47.0937 2688  [ 3F59765B24EB6770252ACC314BD69D97 ] C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll
10:48:47.0937 2688  C:\Program Files\Trend Micro\AMSP\utilMsgBuffer.dll - ok
10:48:47.0953 2688  [ 25D83BC8E4CA8C757AB648573E94B57C ] C:\Program Files\Trend Micro\AMSP\utilThread.dll
10:48:47.0953 2688  C:\Program Files\Trend Micro\AMSP\utilThread.dll - ok
10:48:47.0984 2688  [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
10:48:47.0984 2688  C:\WINDOWS\system32\cscui.dll - ok
10:48:48.0015 2688  [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
10:48:48.0015 2688  C:\WINDOWS\system32\powrprof.dll - ok
10:48:48.0031 2688  [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
10:48:48.0031 2688  C:\WINDOWS\system32\dbghelp.dll - ok
10:48:48.0062 2688  [ 3E2F3E2F4A82B7FAE23BAB864FB0F837 ] C:\WINDOWS\system32\dpcdll.dll
10:48:48.0062 2688  C:\WINDOWS\system32\dpcdll.dll - ok
10:48:48.0093 2688  [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
10:48:48.0093 2688  C:\WINDOWS\system32\wdmaud.drv - ok
10:48:48.0109 2688  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] C:\WINDOWS\system32\drivers\parvdm.sys
10:48:48.0109 2688  C:\WINDOWS\system32\drivers\parvdm.sys - ok
10:48:48.0140 2688  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] C:\Program Files\SUPERAntiSpyware\SASCore.exe
10:48:48.0140 2688  C:\Program Files\SUPERAntiSpyware\SASCore.exe - ok
10:48:48.0171 2688  [ 7F9454A776CA6BFB655D8F49CA6110F6 ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe
10:48:48.0171 2688  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe - ok
10:48:48.0187 2688  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
10:48:48.0187 2688  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
10:48:48.0203 2688  [ 02AFDA1F5BFF989560B3C8BD7D8F355E ] C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe
10:48:48.0203 2688  C:\Program Files\Trend Micro\AMSP\coreFrameworkHost.exe - ok
10:48:48.0234 2688  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
10:48:48.0234 2688  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
10:48:48.0250 2688  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
10:48:48.0250 2688  C:\WINDOWS\system32\drivers\splitter.sys - ok
10:48:48.0281 2688  [ 920298C7AEF97D8168D219D35975D295 ] C:\WINDOWS\system32\ANIO.sys
10:48:48.0281 2688  C:\WINDOWS\system32\ANIO.sys - ok
10:48:48.0296 2688  [ 37864FB65C85C28BB928A9972A02F186 ] C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe
10:48:48.0296 2688  C:\Program Files\Trend Micro\AMSP\AMSP_LogServer.exe - ok
10:48:48.0328 2688  [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
10:48:48.0328 2688  C:\WINDOWS\system32\userinit.exe - ok
10:48:48.0343 2688  [ AA3D68F26B2A27F660AFC46039B061A4 ] C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
10:48:48.0343 2688  C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe - ok
10:48:48.0375 2688  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
10:48:48.0375 2688  C:\WINDOWS\system32\drivers\aec.sys - ok
10:48:48.0390 2688  [ 09588529557D695FA74275AF7C69219F ] C:\Program Files\Trend Micro\AMSP\sqlite3.dll
10:48:48.0390 2688  C:\Program Files\Trend Micro\AMSP\sqlite3.dll - ok
10:48:48.0421 2688  [ C9511069D6A481E6ABF2C5F42C96CE50 ] C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSd.dll
10:48:48.0421 2688  C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSd.dll - ok
10:48:48.0437 2688  [ 20F6F19FE9E753F2780DC2FA083AD597 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:48:48.0437 2688  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
10:48:48.0453 2688  [ 506708142BC63DABA64F2D3AD1DCD5BF ] C:\Program Files\Google\Update\GoogleUpdate.exe
10:48:48.0453 2688  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
10:48:48.0484 2688  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\DMusic.sys
10:48:48.0484 2688  C:\WINDOWS\system32\drivers\DMusic.sys - ok
10:48:48.0500 2688  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
10:48:48.0500 2688  C:\WINDOWS\system32\drivers\swmidi.sys - ok
10:48:48.0531 2688  [ DDDD1D04D5F4360371BC99C7C476F70D ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
10:48:48.0531 2688  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
10:48:48.0546 2688  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
10:48:48.0546 2688  C:\WINDOWS\system32\drivers\kmixer.sys - ok
10:48:48.0578 2688  [ DC70310B3D079D667B67F0C7067209F3 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
10:48:48.0578 2688  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
10:48:48.0593 2688  [ 9FF47CD8A3787C8FD3CDFE40441C722E ] C:\Program Files\Google\Update\1.3.21.123\goopdate.dll
10:48:48.0593 2688  C:\Program Files\Google\Update\1.3.21.123\goopdate.dll - ok
10:48:48.0625 2688  [ E1C96532E5FA95FE0FE5B9DD6784B221 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe
10:48:48.0625 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe - ok
10:48:48.0640 2688  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
10:48:48.0640 2688  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
10:48:48.0671 2688  [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
10:48:48.0671 2688  C:\WINDOWS\system32\wsock32.dll - ok
10:48:48.0687 2688  [ 47EC0EDC425B954EBF3B4E6A1311BFE4 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\rtl160.bpl
10:48:48.0687 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\rtl160.bpl - ok
10:48:48.0703 2688  [ DE4835A2DE88D3597FDC92B863333F05 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
10:48:48.0703 2688  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
10:48:48.0718 2688  [ F1B967838DBAD78327434D36A447E183 ] C:\WINDOWS\system32\ANIOApi.dll
10:48:48.0718 2688  C:\WINDOWS\system32\ANIOApi.dll - ok
10:48:48.0750 2688  [ 76848CB1AA5818DB47D5F5986E0A7485 ] C:\WINDOWS\system32\mfc42.dll
10:48:48.0750 2688  C:\WINDOWS\system32\mfc42.dll - ok
10:48:48.0765 2688  [ 97476BB3F51FBD0A944ACC9BFAFD97D8 ] C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll
10:48:48.0765 2688  C:\Program Files\Trend Micro\AMSP\outer_AMSP_ClientLibrary.dll - ok
10:48:48.0796 2688  [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
10:48:48.0796 2688  C:\WINDOWS\explorer.exe - ok
10:48:48.0812 2688  [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
10:48:48.0812 2688  C:\WINDOWS\system32\msacm32.drv - ok
10:48:48.0843 2688  [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
10:48:48.0843 2688  C:\WINDOWS\system32\midimap.dll - ok
10:48:48.0859 2688  [ 21095E7FAE3EC5E927F54E19CC63BA2A ] C:\Program Files\Trend Micro\AMSP\utilIPC.dll
10:48:48.0859 2688  C:\Program Files\Trend Micro\AMSP\utilIPC.dll - ok
10:48:48.0890 2688  [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
10:48:48.0890 2688  C:\WINDOWS\system32\msi.dll - ok
10:48:48.0906 2688  [ E1EBB4C5F1D0680EA3E4E7A77ADCA391 ] C:\Program Files\Trend Micro\AMSP\utilRPC.dll
10:48:48.0906 2688  C:\Program Files\Trend Micro\AMSP\utilRPC.dll - ok
10:48:48.0937 2688  [ 0EEE814627F4384291687671F76419F6 ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
10:48:48.0937 2688  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
10:48:48.0937 2688  [ 258D35F5F5F5F3F6045488ECDC14FAAB ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
10:48:48.0937 2688  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
10:48:48.0968 2688  [ 931356DB912B57E1D6F49399853F8954 ] C:\WINDOWS\system32\WlanApp.dll
10:48:48.0968 2688  C:\WINDOWS\system32\WlanApp.dll - ok
10:48:48.0984 2688  [ 7EF0C8A9A1A57756F4868E3693173C08 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
10:48:48.0984 2688  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
10:48:49.0015 2688  [ F1ABAB991229965F9150E41D9DEE8428 ] C:\WINDOWS\system32\browseui.dll
10:48:49.0015 2688  C:\WINDOWS\system32\browseui.dll - ok
10:48:49.0031 2688  [ 38711BB50D27B7145186F61CE31B3336 ] C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll
10:48:49.0031 2688  C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll - ok
10:48:49.0062 2688  [ F6E4572AEEEDA9850A8E54393B155556 ] C:\WINDOWS\system32\wnicapi.dll
10:48:49.0062 2688  C:\WINDOWS\system32\wnicapi.dll - ok
10:48:49.0078 2688  [ 400A67E55C3D54A1993EB4C7241B8ABB ] C:\WINDOWS\system32\shdocvw.dll
10:48:49.0078 2688  C:\WINDOWS\system32\shdocvw.dll - ok
10:48:49.0109 2688  [ 9E515554A3EA7B70C975F61971C6977D ] C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll
10:48:49.0109 2688  C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll - ok
10:48:49.0140 2688  [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
10:48:49.0140 2688  C:\WINDOWS\system32\shfolder.dll - ok
10:48:49.0156 2688  [ D30DD708F05FB85EF2C53727ED3573D2 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll
10:48:49.0156 2688  C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll - ok
10:48:49.0187 2688  [ AE5A69F44C1F97EDC83237FC0B29B6FB ] C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe
10:48:49.0187 2688  C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler.exe - ok
10:48:49.0187 2688  [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
10:48:49.0187 2688  C:\WINDOWS\system32\mstask.dll - ok
10:48:49.0218 2688  [ 6D74290856347CF8682277A54B433D4B ] C:\Documents and Settings\Jedtec\Application Data\Dropbox\bin\DropboxExt.14.dll
10:48:49.0250 2688  C:\Documents and Settings\Jedtec\Application Data\Dropbox\bin\DropboxExt.14.dll - ok
10:48:49.0265 2688  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Documents and Settings\Jedtec\Application Data\Dropbox\bin\msvcp71.dll
10:48:49.0265 2688  C:\Documents and Settings\Jedtec\Application Data\Dropbox\bin\msvcp71.dll - ok
10:48:49.0281 2688  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Documents and Settings\Jedtec\Application Data\Dropbox\bin\msvcr71.dll
10:48:49.0281 2688  C:\Documents and Settings\Jedtec\Application Data\Dropbox\bin\msvcr71.dll - ok
10:48:49.0312 2688  [ 9BBEE3A800B5D3B82E45C84DBAC637AD ] C:\Program Files\Auslogics\Auslogics BoostSpeed\vcl160.bpl
10:48:49.0312 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\vcl160.bpl - ok
10:48:49.0328 2688  [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
10:48:49.0328 2688  C:\WINDOWS\system32\desk.cpl - ok
10:48:49.0359 2688  [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
10:48:49.0359 2688  C:\WINDOWS\system32\themeui.dll - ok
10:48:49.0375 2688  [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
10:48:49.0375 2688  C:\WINDOWS\system32\actxprxy.dll - ok
10:48:49.0406 2688  [ 2975C66459C426C20BC22D639DF6B611 ] C:\Program Files\SUPERAntiSpyware\SASSEH.DLL
10:48:49.0406 2688  C:\Program Files\SUPERAntiSpyware\SASSEH.DLL - ok
10:48:49.0421 2688  [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
10:48:49.0421 2688  C:\WINDOWS\system32\cmd.exe - ok
10:48:49.0437 2688  [ 53249B2147DDC8212B290ACF80570290 ] C:\WINDOWS\system32\ieframe.dll
10:48:49.0437 2688  C:\WINDOWS\system32\ieframe.dll - ok
10:48:49.0453 2688  [ 0B467F470CC9918FDCEEDCFD7DC4D697 ] C:\WINDOWS\system32\oledlg.dll
10:48:49.0453 2688  C:\WINDOWS\system32\oledlg.dll - ok
10:48:49.0484 2688  [ 7F2AC03C861504A9CBD40F0727621769 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\vclimg160.bpl
10:48:49.0484 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\vclimg160.bpl - ok
10:48:49.0500 2688  [ CDB9A5F09B7F979E1839F1FBA1DDCC49 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\AxComponents20.bpl
10:48:49.0500 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\AxComponents20.bpl - ok
10:48:49.0531 2688  [ 1C87705CCB2F60172B0FC86B5D82F00D ] C:\Program Files\Bonjour\mDNSResponder.exe
10:48:49.0531 2688  C:\Program Files\Bonjour\mDNSResponder.exe - ok
10:48:49.0546 2688  [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
10:48:49.0546 2688  C:\WINDOWS\system32\cryptnet.dll - ok
10:48:49.0578 2688  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:48:49.0578 2688  C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
10:48:49.0593 2688  [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
10:48:49.0593 2688  C:\WINDOWS\system32\sensapi.dll - ok
10:48:49.0625 2688  [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
10:48:49.0625 2688  C:\WINDOWS\system32\winhttp.dll - ok
10:48:49.0640 2688  [ E5F7C30EDF0892667933BE879F067D67 ] C:\WINDOWS\system32\msvcr100_clr0400.dll
10:48:49.0640 2688  C:\WINDOWS\system32\msvcr100_clr0400.dll - ok
10:48:49.0671 2688  [ 08A73B0E7EE6E32983B5F9E540A8E380 ] C:\WINDOWS\system32\mscoree.dll
10:48:49.0671 2688  C:\WINDOWS\system32\mscoree.dll - ok
10:48:49.0687 2688  [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
10:48:49.0687 2688  C:\WINDOWS\system32\cryptsvc.dll - ok
10:48:49.0703 2688  [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
10:48:49.0703 2688  C:\WINDOWS\system32\cabinet.dll - ok
10:48:49.0734 2688  [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
10:48:49.0734 2688  C:\WINDOWS\system32\certcli.dll - ok
10:48:49.0750 2688  [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
10:48:49.0750 2688  C:\WINDOWS\system32\es.dll - ok
10:48:49.0781 2688  [ 80F08F50D248EEEEB9256F6522891D40 ] C:\Program Files\Java\jre7\bin\jqs.exe
10:48:49.0781 2688  C:\Program Files\Java\jre7\bin\jqs.exe - ok
10:48:49.0796 2688  [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
10:48:49.0796 2688  C:\WINDOWS\system32\ersvc.dll - ok
10:48:49.0812 2688  [ 00BE44CB48124F96547E72C7B4A48E45 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\Localizer.dll
10:48:49.0812 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\Localizer.dll - ok
10:48:49.0843 2688  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
10:48:49.0843 2688  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
10:48:49.0859 2688  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
10:48:49.0859 2688  C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
10:48:49.0890 2688  [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
10:48:49.0890 2688  C:\WINDOWS\system32\hidserv.dll - ok
10:48:49.0906 2688  [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
10:48:49.0906 2688  C:\WINDOWS\system32\hid.dll - ok
10:48:49.0937 2688  [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
10:48:49.0937 2688  C:\WINDOWS\system32\pdh.dll - ok
10:48:49.0953 2688  [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
10:48:49.0953 2688  C:\WINDOWS\system32\odbcbcp.dll - ok
10:48:49.0968 2688  [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] C:\WINDOWS\system32\drivers\npf.sys
10:48:49.0968 2688  C:\WINDOWS\system32\drivers\npf.sys - ok
10:48:50.0000 2688  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
10:48:50.0000 2688  C:\WINDOWS\system32\srvsvc.dll - ok
10:48:50.0015 2688  [ 0573C75A2895D973EA6EF2495620BA49 ] C:\WINDOWS\system32\nvsvc32.exe
10:48:50.0015 2688  C:\WINDOWS\system32\nvsvc32.exe - ok
10:48:50.0046 2688  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
10:48:50.0046 2688  C:\WINDOWS\system32\netman.dll - ok
10:48:50.0062 2688  [ 1B3B381E1AAB46F7B321A46150D890CB ] C:\WINDOWS\system32\xpsp3res.dll
10:48:50.0062 2688  C:\WINDOWS\system32\xpsp3res.dll - ok
10:48:50.0093 2688  [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
10:48:50.0093 2688  C:\WINDOWS\system32\perfdisk.dll - ok
10:48:50.0109 2688  [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
10:48:50.0109 2688  C:\WINDOWS\system32\perfos.dll - ok
10:48:50.0140 2688  [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
10:48:50.0140 2688  C:\WINDOWS\system32\netshell.dll - ok
10:48:50.0156 2688  [ 7A50E919F9CF6D3850A40C18F92C5E03 ] C:\WINDOWS\system32\nvcpl.dll
10:48:50.0156 2688  C:\WINDOWS\system32\nvcpl.dll - ok
10:48:50.0187 2688  [ 9C84945FEEE40EA42D3BCA5C22250D47 ] C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
10:48:50.0187 2688  C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe - ok
10:48:50.0203 2688  [ 9341C24D95D0B04621191924970B30E9 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\Helper.dll
10:48:50.0203 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\Helper.dll - ok
10:48:50.0234 2688  [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
10:48:50.0234 2688  C:\WINDOWS\system32\credui.dll - ok
10:48:50.0250 2688  [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
10:48:50.0250 2688  C:\WINDOWS\system32\dot3dlg.dll - ok
10:48:50.0281 2688  [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
10:48:50.0281 2688  C:\WINDOWS\system32\onex.dll - ok
10:48:50.0296 2688  [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
10:48:50.0296 2688  C:\WINDOWS\system32\eappcfg.dll - ok
10:48:50.0328 2688  [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
10:48:50.0328 2688  C:\WINDOWS\system32\eappprxy.dll - ok
10:48:50.0343 2688  [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
10:48:50.0343 2688  C:\WINDOWS\system32\netmsg.dll - ok
10:48:50.0375 2688  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
10:48:50.0375 2688  C:\WINDOWS\system32\drivers\srv.sys - ok
10:48:50.0390 2688  [ AFADA8B97BE3C9398DC6C770409C3544 ] C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
10:48:50.0390 2688  C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe - ok
10:48:50.0421 2688  [ 80776884E7A05D6DA5040926F82B0273 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
10:48:50.0421 2688  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
10:48:50.0437 2688  [ B597C2C966B447E011B4AE1B4D053677 ] C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
10:48:50.0437 2688  C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe - ok
10:48:50.0453 2688  [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
10:48:50.0453 2688  C:\WINDOWS\system32\spoolss.dll - ok
10:48:50.0468 2688  [ C85670AB64068F8080998AEBA6C5019C ] C:\WINDOWS\system32\atl100.dll
10:48:50.0468 2688  C:\WINDOWS\system32\atl100.dll - ok
10:48:50.0500 2688  [ BC83108B18756547013ED443B8CDB31B ] C:\WINDOWS\system32\msvcp100.dll
10:48:50.0500 2688  C:\WINDOWS\system32\msvcp100.dll - ok
10:48:50.0515 2688  [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
10:48:50.0515 2688  C:\WINDOWS\system32\localspl.dll - ok
10:48:50.0546 2688  [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
10:48:50.0546 2688  C:\WINDOWS\system32\cnbjmon.dll - ok
10:48:50.0562 2688  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\WINDOWS\system32\msvcr100.dll
10:48:50.0562 2688  C:\WINDOWS\system32\msvcr100.dll - ok
10:48:50.0593 2688  [ 0264E74C080A52D0DF1272FEFC44A92C ] C:\WINDOWS\system32\CNMLMA1.DLL
10:48:50.0593 2688  C:\WINDOWS\system32\CNMLMA1.DLL - ok
10:48:50.0609 2688  [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
10:48:50.0609 2688  C:\WINDOWS\system32\pjlmon.dll - ok
10:48:50.0625 2688  [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
10:48:50.0625 2688  C:\WINDOWS\system32\tcpmon.dll - ok
10:48:50.0656 2688  [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
10:48:50.0656 2688  C:\WINDOWS\system32\usbmon.dll - ok
10:48:50.0671 2688  [ F4BF27A9DBB69FDC3D19C2BEC1A7FA9C ] C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPDA1.DLL
10:48:50.0671 2688  C:\WINDOWS\system32\spool\prtprocs\w32x86\CNMPDA1.DLL - ok
10:48:50.0687 2688  [ B272773D43BD734E5E97E1D7E6372406 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\commonforms.dll
10:48:50.0687 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\commonforms.dll - ok
10:48:50.0718 2688  [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
10:48:50.0718 2688  C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
10:48:50.0734 2688  [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
10:48:50.0734 2688  C:\WINDOWS\system32\ipsecsvc.dll - ok
10:48:50.0765 2688  [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
10:48:50.0765 2688  C:\WINDOWS\system32\win32spl.dll - ok
10:48:50.0781 2688  [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
10:48:50.0781 2688  C:\WINDOWS\system32\netrap.dll - ok
10:48:50.0812 2688  [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
10:48:50.0812 2688  C:\WINDOWS\system32\inetpp.dll - ok
10:48:50.0828 2688  [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
10:48:50.0828 2688  C:\WINDOWS\system32\oakley.dll - ok
10:48:50.0843 2688  [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
10:48:50.0843 2688  C:\WINDOWS\system32\seclogon.dll - ok
10:48:50.0875 2688  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
10:48:50.0875 2688  C:\WINDOWS\system32\sens.dll - ok
10:48:50.0890 2688  [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
10:48:50.0890 2688  C:\WINDOWS\system32\srsvc.dll - ok
10:48:50.0921 2688  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
10:48:50.0921 2688  C:\WINDOWS\system32\wiaservc.dll - ok
10:48:50.0937 2688  [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
10:48:50.0937 2688  C:\WINDOWS\system32\trkwks.dll - ok
10:48:50.0953 2688  [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
10:48:50.0953 2688  C:\WINDOWS\system32\winipsec.dll - ok
10:48:50.0984 2688  [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
10:48:50.0984 2688  C:\WINDOWS\system32\pstorsvc.dll - ok
10:48:51.0000 2688  [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
10:48:51.0000 2688  C:\WINDOWS\system32\psbase.dll - ok
10:48:51.0031 2688  [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
10:48:51.0031 2688  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
10:48:51.0046 2688  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
10:48:51.0046 2688  C:\WINDOWS\system32\dssenh.dll - ok
10:48:51.0078 2688  [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
10:48:51.0078 2688  C:\WINDOWS\system32\cfgmgr32.dll - ok
10:48:51.0093 2688  [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
10:48:51.0093 2688  C:\WINDOWS\system32\mscms.dll - ok
10:48:51.0125 2688  [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
10:48:51.0125 2688  C:\WINDOWS\system32\vssapi.dll - ok
10:48:51.0140 2688  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
10:48:51.0140 2688  C:\WINDOWS\system32\wuaueng.dll - ok
10:48:51.0171 2688  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
10:48:51.0171 2688  C:\WINDOWS\system32\wuauserv.dll - ok
10:48:51.0187 2688  [ 78BD0E3A736B7DEC7869721BB80FEAF0 ] C:\Program Files\Auslogics\Auslogics BoostSpeed\aushelper.dll
10:48:51.0187 2688  C:\Program Files\Auslogics\Auslogics BoostSpeed\aushelper.dll - ok
10:48:51.0203 2688  [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
10:48:51.0203 2688  C:\WINDOWS\system32\mspatcha.dll - ok
10:48:51.0218 2688  [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
10:48:51.0234 2688  C:\WINDOWS\system32\browser.dll - ok
10:48:51.0250 2688  [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
10:48:51.0250 2688  C:\WINDOWS\system32\ipnathlp.dll - ok
10:48:51.0265 2688  [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
10:48:51.0265 2688  C:\WINDOWS\system32\comsvcs.dll - ok
10:48:51.0296 2688  [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
10:48:51.0296 2688  C:\WINDOWS\system32\colbact.dll - ok
10:48:51.0312 2688  [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
10:48:51.0312 2688  C:\WINDOWS\system32\mtxclu.dll - ok
10:48:51.0343 2688  [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
10:48:51.0343 2688  C:\WINDOWS\system32\clusapi.dll - ok
10:48:51.0359 2688  [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
10:48:51.0359 2688  C:\WINDOWS\system32\resutils.dll - ok
10:48:51.0390 2688  [ 2B8B64AA14F817BDF3E3204FB041A61D ] C:\WINDOWS\system32\mtxoci.dll
10:48:51.0390 2688  C:\WINDOWS\system32\mtxoci.dll - ok
10:48:51.0406 2688  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
10:48:51.0406 2688  C:\WINDOWS\system32\wups.dll - ok
10:48:51.0437 2688  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
10:48:51.0437 2688  C:\WINDOWS\system32\wups2.dll - ok
10:48:51.0453 2688  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
10:48:51.0453 2688  C:\WINDOWS\system32\wuauclt.exe - ok
10:48:51.0468 2688  [ 63E8D944AFBEEBB243F25C4ED07E74C5 ] C:\WINDOWS\system32\inetmib1.dll
10:48:51.0468 2688  C:\WINDOWS\system32\inetmib1.dll - ok
10:48:51.0500 2688  [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
10:48:51.0500 2688  C:\WINDOWS\system32\snmpapi.dll - ok
10:48:51.0515 2688  [ 2161B0A46C4F57FA3645DD881572962C ] C:\WINDOWS\system32\nvapi.dll
10:48:51.0515 2688  C:\WINDOWS\system32\nvapi.dll - ok
10:48:51.0546 2688  [ 6B227D8DDFEF9546F393DF255C9BA6DF ] C:\Program Files\NVIDIA Corporation\Display\nvdisps.dll
10:48:51.0546 2688  C:\Program Files\NVIDIA Corporation\Display\nvdisps.dll - ok
10:48:51.0562 2688  [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
10:48:51.0562 2688  C:\WINDOWS\system32\termsrv.dll - ok
10:48:51.0593 2688  [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
10:48:51.0593 2688  C:\WINDOWS\system32\icaapi.dll - ok
10:48:51.0609 2688  [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
10:48:51.0609 2688  C:\WINDOWS\system32\mstlsapi.dll - ok
10:48:51.0640 2688  [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
10:48:51.0640 2688  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
10:48:51.0656 2688  [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
10:48:51.0656 2688  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
10:48:51.0687 2688  [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
10:48:51.0687 2688  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
10:48:51.0687 2688  [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
10:48:51.0687 2688  C:\WINDOWS\system32\wbem\esscli.dll - ok
10:48:51.0718 2688  [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
10:48:51.0718 2688  C:\WINDOWS\system32\wbem\fastprox.dll - ok
10:48:51.0750 2688  [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
10:48:51.0750 2688  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
10:48:51.0765 2688  [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
10:48:51.0765 2688  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
10:48:51.0796 2688  [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
10:48:51.0796 2688  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
10:48:51.0812 2688  [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
10:48:51.0812 2688  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
10:48:51.0843 2688  [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
10:48:51.0843 2688  C:\WINDOWS\system32\wbem\wbemess.dll - ok
10:48:51.0859 2688  [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
10:48:51.0859 2688  C:\WINDOWS\system32\alg.exe - ok
10:48:51.0890 2688  [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
10:48:51.0890 2688  C:\WINDOWS\system32\netcfgx.dll - ok
10:48:51.0906 2688  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
10:48:51.0906 2688  C:\WINDOWS\system32\rasmans.dll - ok
10:48:51.0937 2688  [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
10:48:51.0937 2688  C:\WINDOWS\system32\tapisrv.dll - ok
10:48:51.0937 2688  [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
10:48:51.0937 2688  C:\WINDOWS\system32\rastapi.dll - ok
10:48:51.0968 2688  [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
10:48:51.0968 2688  C:\WINDOWS\system32\unimdm.tsp - ok
10:48:51.0984 2688  [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
10:48:51.0984 2688  C:\WINDOWS\system32\uniplat.dll - ok
10:48:52.0015 2688  [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
10:48:52.0015 2688  C:\WINDOWS\system32\kmddsp.tsp - ok
10:48:52.0031 2688  [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
10:48:52.0031 2688  C:\WINDOWS\system32\ndptsp.tsp - ok
10:48:52.0062 2688  [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
10:48:52.0062 2688  C:\WINDOWS\system32\h323.tsp - ok
10:48:52.0078 2688  [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
10:48:52.0078 2688  C:\WINDOWS\system32\ipconf.tsp - ok
10:48:52.0109 2688  [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
10:48:52.0109 2688  C:\WINDOWS\system32\hidphone.tsp - ok
10:48:52.0125 2688  [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
10:48:52.0125 2688  C:\WINDOWS\system32\ntlsapi.dll - ok
10:48:52.0156 2688  [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
10:48:52.0156 2688  C:\WINDOWS\system32\rasppp.dll - ok
10:48:52.0171 2688  [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
10:48:52.0171 2688  C:\WINDOWS\system32\rasqec.dll - ok
10:48:52.0187 2688  [ 467CFC0FE895D9FD08B27188CDE02063 ] C:\Program Files\Java\jre7\bin\awt.dll
10:48:52.0187 2688  C:\Program Files\Java\jre7\bin\awt.dll - ok
10:48:52.0218 2688  [ 95AC512898A8E9F0E76740EB259E4C31 ] C:\Program Files\Java\jre7\bin\client\jvm.dll
10:48:52.0218 2688  C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
10:48:52.0234 2688  [ 87E6543D1CB0D386AC7AC287828E5B07 ] C:\Program Files\Java\jre7\bin\dcpr.dll
10:48:52.0234 2688  C:\Program Files\Java\jre7\bin\dcpr.dll - ok
10:48:52.0265 2688  [ 21F53789F627FF735F54E17BDA1DFD81 ] C:\Program Files\Java\jre7\bin\deploy.dll
10:48:52.0265 2688  C:\Program Files\Java\jre7\bin\deploy.dll - ok
10:48:52.0281 2688  [ 28661294ADE35EF4170615FD43A8A406 ] C:\Program Files\Java\jre7\bin\fontmanager.dll
10:48:52.0281 2688  C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
10:48:52.0312 2688  [ 1E15EAF07C548430B88620AAFD75EB6A ] C:\Program Files\Java\jre7\bin\java.dll
10:48:52.0312 2688  C:\Program Files\Java\jre7\bin\java.dll - ok
10:48:52.0328 2688  [ A8F3C0659931724881347F586730827C ] C:\Program Files\Java\jre7\bin\javaw.exe
10:48:52.0328 2688  C:\Program Files\Java\jre7\bin\javaw.exe - ok
10:48:52.0359 2688  [ 567E9566ABB3590D5AABA395E76CE6BD ] C:\Program Files\Java\jre7\bin\jp2native.dll
10:48:52.0359 2688  C:\Program Files\Java\jre7\bin\jp2native.dll - ok
10:48:52.0375 2688  [ 0A93AD186EDBAFA06F60712C16063AC6 ] C:\Program Files\Java\jre7\bin\jpeg.dll
10:48:52.0375 2688  C:\Program Files\Java\jre7\bin\jpeg.dll - ok
10:48:52.0406 2688  [ CFFAD68E72DD41D207CBD0A77956989E ] C:\Program Files\Java\jre7\bin\net.dll
10:48:52.0406 2688  C:\Program Files\Java\jre7\bin\net.dll - ok
10:48:52.0421 2688  [ 96257A7FB009579DE9DC3A58D626BB47 ] C:\Program Files\Java\jre7\bin\nio.dll
10:48:52.0421 2688  C:\Program Files\Java\jre7\bin\nio.dll - ok
10:48:52.0437 2688  [ F613C1A517B04533C6DA1813200E2A95 ] C:\Program Files\Java\jre7\bin\verify.dll
10:48:52.0437 2688  C:\Program Files\Java\jre7\bin\verify.dll - ok
10:48:52.0453 2688  [ CFDBFCD763E3612E41E198D6AA3CB09A ] C:\Program Files\Java\jre7\bin\zip.dll
10:48:52.0453 2688  C:\Program Files\Java\jre7\bin\zip.dll - ok
10:48:52.0484 2688  [ 09CCF5197D054C9DCE4116DC9A04C211 ] C:\Program Files\Trend Micro\AMSP\coreConfigRepository.dll
10:48:52.0484 2688  C:\Program Files\Trend Micro\AMSP\coreConfigRepository.dll - ok
10:48:52.0500 2688  [ C1630C379C86AF26E8071F918F48637C ] C:\Program Files\Trend Micro\AMSP\module\1\2.5.1342\coreFrameworkBuilder.dll
10:48:52.0500 2688  C:\Program Files\Trend Micro\AMSP\module\1\2.5.1342\coreFrameworkBuilder.dll - ok
10:48:52.0531 2688  [ 0F3CE8CD921AC76BA344CA35921FCC90 ] C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_49.dll
10:48:52.0531 2688  C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_49.dll - ok
10:48:52.0546 2688  [ 09CCF5197D054C9DCE4116DC9A04C211 ] C:\Program Files\Trend Micro\AMSP\module\5\2.5.1331\coreConfigRepository.dll
10:48:52.0546 2688  C:\Program Files\Trend Micro\AMSP\module\5\2.5.1331\coreConfigRepository.dll - ok
10:48:52.0578 2688  [ 767FD31EC6BD6173756ED46400BD0394 ] C:\Program Files\Trend Micro\AMSP\module\7\2.5.1331\coreUpdateManager.dll
10:48:52.0578 2688  C:\Program Files\Trend Micro\AMSP\module\7\2.5.1331\coreUpdateManager.dll - ok
10:48:52.0593 2688  [ 166C8CEB569EF57626A1466BFE5DDFBC ] C:\Program Files\Trend Micro\AMSP\utilAccessControl.dll
10:48:52.0593 2688  C:\Program Files\Trend Micro\AMSP\utilAccessControl.dll - ok
10:48:52.0625 2688  [ 7B97CD8C5ABA843D82114B77A4CB9FB5 ] C:\Program Files\Trend Micro\AMSP\module\10\2.5.1374\coreActionManager.dll
10:48:52.0625 2688  C:\Program Files\Trend Micro\AMSP\module\10\2.5.1374\coreActionManager.dll - ok
10:48:52.0640 2688  [ 48F2986BAFC9A7BDB694AE6FF8E0157E ] C:\Program Files\Trend Micro\AMSP\module\11\2.5.1374\coreScanManager.dll
10:48:52.0640 2688  C:\Program Files\Trend Micro\AMSP\module\11\2.5.1374\coreScanManager.dll - ok
10:48:52.0671 2688  [ A60E337E5C366AFAFAE5E0751826BEFD ] C:\Program Files\Trend Micro\AMSP\libprotobuf.dll
10:48:52.0671 2688  C:\Program Files\Trend Micro\AMSP\libprotobuf.dll - ok
10:48:52.0687 2688  [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
10:48:52.0687 2688  C:\WINDOWS\system32\msxml3.dll - ok
10:48:52.0703 2688  [ B95D1CEC2EF487CFF16FF5D4B058294A ] C:\Program Files\Trend Micro\AMSP\boost_system-vc80-mt-1_49.dll
10:48:52.0703 2688  C:\Program Files\Trend Micro\AMSP\boost_system-vc80-mt-1_49.dll - ok
10:48:52.0734 2688  [ BF2222B87C8761A9D4B78F1BACFF0E87 ] C:\Program Files\Trend Micro\AMSP\module\2\2.5.1374\coreCommandManager.dll
10:48:52.0734 2688  C:\Program Files\Trend Micro\AMSP\module\2\2.5.1374\coreCommandManager.dll - ok
10:48:52.0750 2688  [ 4796E57D857ED1B3C8D00712E9DBC40A ] C:\Program Files\Trend Micro\AMSP\module\3\2.5.1374\coreEventManager.dll
10:48:52.0750 2688  C:\Program Files\Trend Micro\AMSP\module\3\2.5.1374\coreEventManager.dll - ok
10:48:52.0781 2688  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
10:48:52.0781 2688  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
10:48:52.0796 2688  [ 8102BAB3919F8D627808916294A7CB91 ] C:\Program Files\Trend Micro\AMSP\module\4\2.5.1374\coreTaskManager.dll
10:48:52.0796 2688  C:\Program Files\Trend Micro\AMSP\module\4\2.5.1374\coreTaskManager.dll - ok
10:48:52.0828 2688  [ 3A8269C4062B46EF6C7075CA29F8FB86 ] C:\Program Files\Trend Micro\AMSP\module\6\2.5.1374\coreReportManager.dll
10:48:52.0828 2688  C:\Program Files\Trend Micro\AMSP\module\6\2.5.1374\coreReportManager.dll - ok
10:48:52.0843 2688  [ 9F7BA8C8D12FFEC4DCF35070B894D018 ] C:\Program Files\Trend Micro\AMSP\module\1000001\2.5.1331\paCoreProductAdaptor.dll
10:48:52.0843 2688  C:\Program Files\Trend Micro\AMSP\module\1000001\2.5.1331\paCoreProductAdaptor.dll - ok
10:48:52.0875 2688  [ 5D13AAA8BC57278BFD45F6FC94AE74ED ] C:\Program Files\Trend Micro\AMSP\utilJsonHandle.dll
10:48:52.0875 2688  C:\Program Files\Trend Micro\AMSP\utilJsonHandle.dll - ok
10:48:52.0890 2688  [ 8A9A1C50BBBF159ADC16397550180470 ] C:\Program Files\Trend Micro\AMSP\inner_AMSP_ClientLibrary.dll
10:48:52.0890 2688  C:\Program Files\Trend Micro\AMSP\inner_AMSP_ClientLibrary.dll - ok
10:48:52.0921 2688  [ 55295E10ED6D63B778908C5DEE1B65C4 ] C:\Program Files\Trend Micro\AMSP\module\20017\1.0.1030\plugAdapterTMEBC.dll
10:48:52.0921 2688  C:\Program Files\Trend Micro\AMSP\module\20017\1.0.1030\plugAdapterTMEBC.dll - ok
10:48:52.0937 2688  [ 3F5F21B9B4A2CA16D2825147395220DF ] C:\Program Files\Trend Micro\AMSP\module\10000\2.5.1331\9.700.1001\plugEngineVSAPI.dll
10:48:52.0937 2688  C:\Program Files\Trend Micro\AMSP\module\10000\2.5.1331\9.700.1001\plugEngineVSAPI.dll - ok
10:48:52.0953 2688  [ DB23CB8ED6D0459BE01DF87F3AE48CB8 ] C:\Program Files\Trend Micro\AMSP\module\10001\2.5.1331\6.2.1039\plugEngineSSAPI.dll
10:48:52.0953 2688  C:\Program Files\Trend Micro\AMSP\module\10001\2.5.1331\6.2.1039\plugEngineSSAPI.dll - ok
10:48:52.0984 2688  [ E5276D9A384609679C6925021E1C606A ] C:\Program Files\Trend Micro\AMSP\module\10002\2.5.1331\7.0.1028\plugEngineDCE.dll
10:48:52.0984 2688  C:\Program Files\Trend Micro\AMSP\module\10002\2.5.1331\7.0.1028\plugEngineDCE.dll - ok
10:48:53.0000 2688  [ 6DCC9211C76C380DCABB53F62DDB0BDF ] C:\Program Files\Trend Micro\AMSP\module\10004\6.0.1056\6.0.1056\plugEngineAEGIS.dll
10:48:53.0000 2688  C:\Program Files\Trend Micro\AMSP\module\10004\6.0.1056\6.0.1056\plugEngineAEGIS.dll - ok
10:48:53.0031 2688  [ 3117843D22D54AAF379C19CA7D612C76 ] C:\Program Files\Trend Micro\AMSP\module\10005\2.5.1331\3.6.1008\plugEngineTMUFE.dll
10:48:53.0031 2688  C:\Program Files\Trend Micro\AMSP\module\10005\2.5.1331\3.6.1008\plugEngineTMUFE.dll - ok
10:48:53.0046 2688  [ D7D81782F793C417CA7EC22EB7852A34 ] C:\Program Files\Trend Micro\AMSP\module\10007\2.5.1331\2.51.1006\plugEngineTMFBE.dll
10:48:53.0046 2688  C:\Program Files\Trend Micro\AMSP\module\10007\2.5.1331\2.51.1006\plugEngineTMFBE.dll - ok
10:48:53.0078 2688  [ DACC9B0A1134E5AE263F8AE69E13AB0B ] C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\plugEngineICRC.dll
10:48:53.0078 2688  C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\plugEngineICRC.dll - ok
10:48:53.0093 2688  [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
10:48:53.0093 2688  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
10:48:53.0125 2688  [ 3485D3E48434930A4992329FFAB7C7B8 ] C:\Program Files\Trend Micro\AMSP\module\20001\2.5.1339\5.50.1043\plugAdapterSystem.dll
10:48:53.0125 2688  C:\Program Files\Trend Micro\AMSP\module\20001\2.5.1339\5.50.1043\plugAdapterSystem.dll - ok
10:48:53.0140 2688  [ 5E6162C9E9B56ECB4EB323436165ABA6 ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\plugAdapterProxy.dll
10:48:53.0140 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\plugAdapterProxy.dll - ok
10:48:53.0171 2688  [ 661CC094EA4E63D00E97AE1AF1A58F07 ] C:\Program Files\Trend Micro\AMSP\module\30000\2.5.1402\plugRealtimeScanFlow.dll
10:48:53.0171 2688  C:\Program Files\Trend Micro\AMSP\module\30000\2.5.1402\plugRealtimeScanFlow.dll - ok
10:48:53.0187 2688  [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
10:48:53.0187 2688  C:\WINDOWS\system32\wbem\framedyn.dll - ok
10:48:53.0203 2688  [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
10:48:53.0203 2688  C:\WINDOWS\system32\security.dll - ok
10:48:53.0234 2688  [ 9CAE50E7E5F4513151C4394EF0ADBD18 ] C:\Program Files\Trend Micro\AMSP\module\30001\2.5.1331\plugManualScanFlow.dll
10:48:53.0234 2688  C:\Program Files\Trend Micro\AMSP\module\30001\2.5.1331\plugManualScanFlow.dll - ok
10:48:53.0250 2688  [ 19738D06F0FEA843409C456F07F68DF9 ] C:\Program Files\Trend Micro\AMSP\module\30004\2.5.1331\plugRealTimeScanCache.dll
10:48:53.0250 2688  C:\Program Files\Trend Micro\AMSP\module\30004\2.5.1331\plugRealTimeScanCache.dll - ok
10:48:53.0281 2688  [ BA579C58DB2E90B1309D594776480E41 ] C:\Program Files\Trend Micro\AMSP\module\40000\2.5.1331\5.50.1043\plugUtilRCM.dll
10:48:53.0281 2688  C:\Program Files\Trend Micro\AMSP\module\40000\2.5.1331\5.50.1043\plugUtilRCM.dll - ok
10:48:53.0296 2688  [ 1941132AB20E4DCAB2D877A9CE3C5064 ] C:\Program Files\Trend Micro\AMSP\module\40001\2.6.1190\plugUtilEnum.dll
10:48:53.0296 2688  C:\Program Files\Trend Micro\AMSP\module\40001\2.6.1190\plugUtilEnum.dll - ok
10:48:53.0328 2688  [ C033C4A259CFE9D392455755C6F5D44F ] C:\Program Files\Trend Micro\AMSP\module\20002\7.5.1125\7.5.1125\plugAdapterBP.dll
10:48:53.0328 2688  C:\Program Files\Trend Micro\AMSP\module\20002\7.5.1125\7.5.1125\plugAdapterBP.dll - ok
10:48:53.0343 2688  [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
10:48:53.0343 2688  C:\WINDOWS\system32\wbem\wmipcima.dll - ok
10:48:53.0375 2688  [ 7B40AE9B3B9D6F1A3CC2A42F8A809F45 ] C:\Program Files\Trend Micro\AMSP\module\10009\3.6.1029\3.6.1029\plugEngineLCE.dll
10:48:53.0375 2688  C:\Program Files\Trend Micro\AMSP\module\10009\3.6.1029\3.6.1029\plugEngineLCE.dll - ok
10:48:53.0390 2688  [ EE8681F8FF1A3BC2ABB8FCDAFE62A8A2 ] C:\Program Files\Trend Micro\AMSP\module\10010\3.6.1029\3.6.1029\plugEngineLES.dll
10:48:53.0390 2688  C:\Program Files\Trend Micro\AMSP\module\10010\3.6.1029\3.6.1029\plugEngineLES.dll - ok
10:48:53.0421 2688  [ 92D4DBB6EDC86CA11866B72977B88574 ] C:\Program Files\Trend Micro\AMSP\module\40002\2.5.1402\plugUtilSysInfo.dll
10:48:53.0421 2688  C:\Program Files\Trend Micro\AMSP\module\40002\2.5.1402\plugUtilSysInfo.dll - ok
10:48:53.0437 2688  [ 16722F83B978ACA86EB4B9AD3E2BB773 ] C:\Program Files\Trend Micro\AMSP\module\30005\3.0.1052\plugLocalCorrelationFlow.dll
10:48:53.0437 2688  C:\Program Files\Trend Micro\AMSP\module\30005\3.0.1052\plugLocalCorrelationFlow.dll - ok
10:48:53.0453 2688  [ 36D4F70629990ABEAD2F52BAAA1B8C19 ] C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\plugEngineTMSA.dll
10:48:53.0453 2688  C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\plugEngineTMSA.dll - ok
10:48:53.0468 2688  [ 3852FF230E9ABA1E18C670FA891BA409 ] C:\Program Files\Trend Micro\AMSP\module\40003\2.5.1331\2.5.1331\plugUtilException.dll
10:48:53.0468 2688  C:\Program Files\Trend Micro\AMSP\module\40003\2.5.1331\2.5.1331\plugUtilException.dll - ok
10:48:53.0500 2688  [ 8990207AE499C7D8ED5BE62DBCF02283 ] C:\Program Files\Trend Micro\AMSP\module\30006\2.5.1331\plugCommonScanCache.dll
10:48:53.0500 2688  C:\Program Files\Trend Micro\AMSP\module\30006\2.5.1331\plugCommonScanCache.dll - ok
10:48:53.0515 2688  [ C6755C665A01532D3C771FB0CC929EEF ] C:\Program Files\Trend Micro\AMSP\module\10012\1.6.1018\1.6.1018\plugEngineDre.dll
10:48:53.0515 2688  C:\Program Files\Trend Micro\AMSP\module\10012\1.6.1018\1.6.1018\plugEngineDre.dll - ok
10:48:53.0546 2688  [ 71AA893314D164F483EA6E9FBE815B87 ] C:\Program Files\Trend Micro\AMSP\module\20009\1.5.1012\1.5.1012\plugAdapterNCIE.dll
10:48:53.0546 2688  C:\Program Files\Trend Micro\AMSP\module\20009\1.5.1012\1.5.1012\plugAdapterNCIE.dll - ok
10:48:53.0562 2688  [ B7423E099AE3DDCE20E5AD3CAD4B71F9 ] C:\Program Files\Trend Micro\AMSP\module\20011\1.5.1107\1.5.1104\plugAdapterEagleEye.dll
10:48:53.0562 2688  C:\Program Files\Trend Micro\AMSP\module\20011\1.5.1107\1.5.1104\plugAdapterEagleEye.dll - ok
10:48:53.0593 2688  [ 9DA1F44786834B4961309BFD60F18248 ] C:\Program Files\Trend Micro\AMSP\module\10015\6.0.1056\6.0.1056\plugEngineWL.dll
10:48:53.0593 2688  C:\Program Files\Trend Micro\AMSP\module\10015\6.0.1056\6.0.1056\plugEngineWL.dll - ok
10:48:53.0609 2688  [ 11262E9F8455E5F30C69E917E0103E01 ] C:\Program Files\Trend Micro\AMSP\module\10013\2.5.1331\1.0.1069\plugEnginePeDif.dll
10:48:53.0609 2688  C:\Program Files\Trend Micro\AMSP\module\10013\2.5.1331\1.0.1069\plugEnginePeDif.dll - ok
10:48:53.0640 2688  [ 9EA2D216C448D570A12694743D1F3518 ] C:\Program Files\Trend Micro\AMSP\module\10014\1.6.1085\1.6.1085\plugEngineTmCDE.dll
10:48:53.0640 2688  C:\Program Files\Trend Micro\AMSP\module\10014\1.6.1085\1.6.1085\plugEngineTmCDE.dll - ok
10:48:53.0656 2688  [ 3FE418C9408EA5FC2B740B2CAABC71E1 ] C:\Program Files\Trend Micro\AMSP\module\40004\2.5.1331\plugUtilLowConfDB.dll
10:48:53.0656 2688  C:\Program Files\Trend Micro\AMSP\module\40004\2.5.1331\plugUtilLowConfDB.dll - ok
10:48:53.0687 2688  [ DA4569BF80F3AEF8D09A7E01C2DD8FB8 ] C:\Program Files\Trend Micro\AMSP\module\30007\2.5.1371\2.5.1371\plugCensus.dll
10:48:53.0687 2688  C:\Program Files\Trend Micro\AMSP\module\30007\2.5.1371\2.5.1371\plugCensus.dll - ok
10:48:53.0703 2688  [ 988A84A1E59647390044170E33D5337F ] C:\Program Files\Trend Micro\AMSP\module\10016\2.5.1331\2.0.1001\plugEngineSMV.dll
10:48:53.0703 2688  C:\Program Files\Trend Micro\AMSP\module\10016\2.5.1331\2.0.1001\plugEngineSMV.dll - ok
10:48:53.0718 2688  [ 260B5930258C7CBEEDDF8A4F4568D1A8 ] C:\Program Files\Trend Micro\AMSP\module\10000\2.5.1331\9.700.1001\vsapi32.dll
10:48:53.0718 2688  C:\Program Files\Trend Micro\AMSP\module\10000\2.5.1331\9.700.1001\vsapi32.dll - ok
10:48:53.0750 2688  [ 56156E48B13063DC738BC43C38645274 ] C:\Program Files\Trend Micro\AMSP\module\10002\2.5.1331\7.0.1028\tscdll32.dll
10:48:53.0750 2688  C:\Program Files\Trend Micro\AMSP\module\10002\2.5.1331\7.0.1028\tscdll32.dll - ok
10:48:53.0765 2688  [ D352A5B17D2D1EF0835FC642C4FAB5A0 ] C:\Program Files\Trend Micro\AMSP\module\10004\6.0.1056\6.0.1056\TMPEM.dll
10:48:53.0765 2688  C:\Program Files\Trend Micro\AMSP\module\10004\6.0.1056\6.0.1056\TMPEM.dll - ok
10:48:53.0796 2688  [ 5C65AF15EB7AA0253E3A4354EA0A5B53 ] C:\Program Files\Trend Micro\AMSP\module\10005\2.5.1331\3.6.1008\tmufeng.dll
10:48:53.0796 2688  C:\Program Files\Trend Micro\AMSP\module\10005\2.5.1331\3.6.1008\tmufeng.dll - ok
10:48:53.0812 2688  [ E5B734ABBB67328D782E777E68033A04 ] C:\Program Files\Trend Micro\AMSP\module\10007\2.5.1331\2.51.1006\tmfbeng.dll
10:48:53.0812 2688  C:\Program Files\Trend Micro\AMSP\module\10007\2.5.1331\2.51.1006\tmfbeng.dll - ok
10:48:53.0843 2688  [ C761E87AC8B1FA40DFDA05B53263B521 ] C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\ICRCHdler.dll
10:48:53.0843 2688  C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\ICRCHdler.dll - ok
10:48:53.0859 2688  [ B7286517D36D5880707253465DEB081D ] C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\perfiCrcPerfMonMgr.dll
10:48:53.0859 2688  C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\perfiCrcPerfMonMgr.dll - ok
10:48:53.0875 2688  [ 6358C181BF021970A897C1FAB0ECF5D2 ] C:\WINDOWS\system32\loadperf.dll
10:48:53.0875 2688  C:\WINDOWS\system32\loadperf.dll - ok
10:48:53.0906 2688  [ 0845C3CC96F657D8A214DBEB14566699 ] C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\libeay32.dll
10:48:53.0906 2688  C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\libeay32.dll - ok
10:48:53.0937 2688  [ 38AD638A604A03F8AE2120CAAC4B440A ] C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\libcurl.dll
10:48:53.0937 2688  C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\libcurl.dll - ok
10:48:53.0937 2688  [ 71DA59B280AA2F40A289BD9D29FC0C6D ] C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\ssleay32.dll
10:48:53.0937 2688  C:\Program Files\Trend Micro\AMSP\module\10008\2.5.1331\2.01.1025\ssleay32.dll - ok
10:48:53.0968 2688  [ 820DE20BE7354636F847B08E2FA3B5DD ] C:\Program Files\Trend Micro\AMSP\module\10009\3.6.1029\3.6.1029\TMLCE32.dll
10:48:53.0968 2688  C:\Program Files\Trend Micro\AMSP\module\10009\3.6.1029\3.6.1029\TMLCE32.dll - ok
10:48:53.0984 2688  [ 96B08044DC46287E46AC42ADB2E2A71C ] C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\tmsa32.dll
10:48:54.0000 2688  C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\tmsa32.dll - ok
10:48:54.0015 2688  [ 63EDAF98C4232AB94763E1FDCD519C44 ] C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\tmwk32.dll
10:48:54.0015 2688  C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\tmwk32.dll - ok
10:48:54.0046 2688  [ 7B82992A619AD5EB329DE1804B5B5E0A ] C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\muyu32.dll
10:48:54.0046 2688  C:\Program Files\Trend Micro\AMSP\module\10011\2.5.1141\2.5.1141\muyu32.dll - ok
10:48:54.0062 2688  [ 70DFEE4A73B196EE070C4B493DBB7A29 ] C:\Program Files\Trend Micro\AMSP\module\10013\2.5.1331\1.0.1069\PeDifEng32.dll
10:48:54.0062 2688  C:\Program Files\Trend Micro\AMSP\module\10013\2.5.1331\1.0.1069\PeDifEng32.dll - ok
10:48:54.0093 2688  [ 1384545232D06982A3D65ED3E80E3DB4 ] C:\Program Files\Trend Micro\AMSP\module\10015\6.0.1056\6.0.1056\tmwlchk.dll
10:48:54.0093 2688  C:\Program Files\Trend Micro\AMSP\module\10015\6.0.1056\6.0.1056\tmwlchk.dll - ok
10:48:54.0109 2688  [ E627CDF75DADC9D5AB15393611733110 ] C:\Program Files\Trend Micro\AMSP\module\10015\6.0.1056\6.0.1056\tmtap.dll
10:48:54.0109 2688  C:\Program Files\Trend Micro\AMSP\module\10015\6.0.1056\6.0.1056\tmtap.dll - ok
10:48:54.0125 2688  [ 0CB22F4D3FB77BA73FE30D6634131E3C ] C:\Program Files\Trend Micro\AMSP\module\10016\2.5.1331\2.0.1001\smv.dll
10:48:54.0125 2688  C:\Program Files\Trend Micro\AMSP\module\10016\2.5.1331\2.0.1001\smv.dll - ok
10:48:54.0156 2688  [ C9E5BAFFD3227E9BDB716B2C8A61474B ] C:\Program Files\Trend Micro\AMSP\module\20001\2.5.1339\5.50.1043\TmSysEvt.dll
10:48:54.0156 2688  C:\Program Files\Trend Micro\AMSP\module\20001\2.5.1339\5.50.1043\TmSysEvt.dll - ok
10:48:54.0187 2688  [ F4B00C2136ADFDC736C7B18F744AA88A ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmNscDbg.dll
10:48:54.0187 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmNscDbg.dll - ok
10:48:54.0203 2688  [ 021D65E320934A34E8FECAEAAB0E34EC ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpxCfg.dll
10:48:54.0203 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpxCfg.dll - ok
10:48:54.0218 2688  [ 9D2E11A1F27A6B14E0850C9099CC326A ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpxCtl.dll
10:48:54.0234 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpxCtl.dll - ok
10:48:54.0250 2688  [ 339B720EFFE9FDCF9147C2E474951CA4 ] C:\Program Files\Trend Micro\AMSP\module\20009\1.5.1012\1.5.1012\tmncieco.dll
10:48:54.0250 2688  C:\Program Files\Trend Micro\AMSP\module\20009\1.5.1012\1.5.1012\tmncieco.dll - ok
10:48:54.0265 2688  [ 846C48516F0FF537861EB8D4DC074264 ] C:\Program Files\Trend Micro\AMSP\module\20011\1.5.1107\1.5.1104\tmeedbg.dll
10:48:54.0265 2688  C:\Program Files\Trend Micro\AMSP\module\20011\1.5.1107\1.5.1104\tmeedbg.dll - ok
10:48:54.0296 2688  [ B0FE0939329C39A8F76FE60076972390 ] C:\Program Files\Trend Micro\AMSP\module\20011\1.5.1107\1.5.1104\tmeectx.dll
10:48:54.0296 2688  C:\Program Files\Trend Micro\AMSP\module\20011\1.5.1107\1.5.1104\tmeectx.dll - ok
10:48:54.0312 2688  [ 8FED1E0A491D4990853D23F21C59C730 ] C:\WINDOWS\system32\advpack.dll
10:48:54.0312 2688  C:\WINDOWS\system32\advpack.dll - ok
10:48:54.0328 2688  [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
10:48:54.0328 2688  C:\WINDOWS\system32\wbem\ncprov.dll - ok
10:48:54.0359 2688  [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
10:48:54.0359 2688  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
10:48:54.0375 2688  [ 14DF0F459BEBEB276F809ACAAF9BFE0E ] C:\Program Files\Trend Micro\AMSP\module\10001\2.5.1331\6.2.1039\Ssapi32.dll
10:48:54.0375 2688  C:\Program Files\Trend Micro\AMSP\module\10001\2.5.1331\6.2.1039\Ssapi32.dll - ok
10:48:54.0406 2688  [ DA969B2773F02E3D6FE3E5A668DCD332 ] C:\WINDOWS\system32\occache.dll
10:48:54.0406 2688  C:\WINDOWS\system32\occache.dll - ok
10:48:54.0421 2688  [ 0EFE50DBFA83FFCDF0AEC1A27E2C05C7 ] C:\Program Files\Trend Micro\AMSP\module\10010\3.6.1029\3.6.1029\TMLES32.dll
10:48:54.0421 2688  C:\Program Files\Trend Micro\AMSP\module\10010\3.6.1029\3.6.1029\TMLES32.dll - ok
10:48:54.0437 2688  [ 91361E6614462AD210C9FF44128DDF2F ] C:\Program Files\Trend Micro\AMSP\module\10012\1.6.1018\1.6.1018\DRE.dll
10:48:54.0437 2688  C:\Program Files\Trend Micro\AMSP\module\10012\1.6.1018\1.6.1018\DRE.dll - ok
10:48:54.0468 2688  [ 266E2513EB060D5864087E7DCDCFD308 ] C:\Program Files\Trend Micro\AMSP\module\10012\1.6.1018\1.6.1018\DCEBootConfig.dll
10:48:54.0468 2688  C:\Program Files\Trend Micro\AMSP\module\10012\1.6.1018\1.6.1018\DCEBootConfig.dll - ok
10:48:54.0484 2688  [ DBEB8253D2421DB6981604110751DD5A ] C:\Program Files\Trend Micro\AMSP\module\10014\1.6.1085\1.6.1085\TmCDEngine.dll
10:48:54.0484 2688  C:\Program Files\Trend Micro\AMSP\module\10014\1.6.1085\1.6.1085\TmCDEngine.dll - ok
10:48:54.0515 2688  [ 62B75DEF8F7359978271021E2E7FE52C ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\tmtdi.dll
10:48:54.0515 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\tmtdi.dll - ok
10:48:54.0531 2688  [ 62E19D64A5666ADA5679E8F19C4B492B ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmsmHttp.dll
10:48:54.0531 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmsmHttp.dll - ok
10:48:54.0562 2688  [ 075AFF12EDD5525AA26E98FCF93B2747 ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeUrlF.dll
10:48:54.0562 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeUrlF.dll - ok
10:48:54.0593 2688  [ 509AF4F7D74723A53916AD7BA5779710 ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeHosF.dll
10:48:54.0593 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeHosF.dll - ok
10:48:54.0609 2688  [ 62272B23B82F4E2FD4E14D752A85E5DB ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeEvts.dll
10:48:54.0609 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeEvts.dll - ok
10:48:54.0640 2688  [ DC7042F81C16F256D8A4EAA5604461DD ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeSAL.dll
10:48:54.0640 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmpeSAL.dll - ok
10:48:54.0656 2688  [ CBC91900740B58F63AB3834CA3D92FC6 ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmphHttp.dll
10:48:54.0656 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmphHttp.dll - ok
10:48:54.0687 2688  [ CFDB69A1C310D9FC0DDDC54C81BEFC0C ] C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmPlgAdp.dll
10:48:54.0687 2688  C:\Program Files\Trend Micro\AMSP\module\20004\2.5.1331\6.8.1094\TmPlgAdp.dll - ok
10:48:54.0703 2688  [ 0C40396F071A8092964C8DC951F62B17 ] C:\WINDOWS\system32\drivers\tmnciesc.sys
10:48:54.0703 2688  C:\WINDOWS\system32\drivers\tmnciesc.sys - ok
10:48:54.0718 2688  [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Jedtec\LOCALS~1\Temp\05050B73-4728-4E1B-9C06-44A99F807052.exe
10:48:54.0718 2688  C:\DOCUME~1\Jedtec\LOCALS~1\Temp\05050B73-4728-4E1B-9C06-44A99F807052.exe - ok
10:48:54.0750 2688  [ D90B1558602CCF951F7D0FB21E30723E ] C:\Program Files\Trend Micro\AMSP\instInstallationLibrary.dll
10:48:54.0750 2688  C:\Program Files\Trend Micro\AMSP\instInstallationLibrary.dll - ok
10:48:54.0781 2688  [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
10:48:54.0781 2688  C:\WINDOWS\system32\ntshrui.dll - ok
10:48:54.0796 2688  [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
10:48:54.0796 2688  C:\WINDOWS\system32\linkinfo.dll - ok
10:48:54.0828 2688  [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
10:48:54.0828 2688  C:\WINDOWS\system32\verclsid.exe - ok
10:48:54.0843 2688  [ 315E0578EF0A1AF9C221AD764FAD5A93 ] C:\Program Files\Trend Micro\AMSP\module\1000001\2.5.1331\utilUniClient.dll
10:48:54.0843 2688  C:\Program Files\Trend Micro\AMSP\module\1000001\2.5.1331\utilUniClient.dll - ok
10:48:54.0875 2688  [ 6B24F55B03D4FB1F6EF47D06CD244791 ] C:\Program Files\Trend Micro\UniClient\plugins\plugEventHub.dll
10:48:54.0875 2688  C:\Program Files\Trend Micro\UniClient\plugins\plugEventHub.dll - ok
10:48:54.0890 2688  [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
10:48:54.0890 2688  C:\WINDOWS\system32\drprov.dll - ok
10:48:54.0906 2688  [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
10:48:54.0906 2688  C:\WINDOWS\system32\ntlanman.dll - ok
10:48:54.0937 2688  [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
10:48:54.0937 2688  C:\WINDOWS\system32\netui0.dll - ok
10:48:54.0953 2688  [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
10:48:54.0953 2688  C:\WINDOWS\system32\netui1.dll - ok
10:48:54.0968 2688  [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
10:48:54.0968 2688  C:\WINDOWS\system32\davclnt.dll - ok
10:48:55.0000 2688  [ 1D6B225A17D22839B35907881E959C59 ] C:\Program Files\Trend Micro\UniClient\plugins\plugWorkflowHost.dll
10:48:55.0000 2688  C:\Program Files\Trend Micro\UniClient\plugins\plugWorkflowHost.dll - ok
10:48:55.0015 2688  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\96323847.sys
10:48:55.0015 2688  C:\WINDOWS\system32\drivers\96323847.sys - ok
10:48:55.0046 2688  [ D7ACABD3D5E1AE9471FC1F9D63B97E82 ] C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll
10:48:55.0046 2688  C:\Program Files\Trend Micro\UniClient\plugins\LUADLL.dll - ok
10:48:55.0062 2688  [ 922C1A1BB80845A29E9EAD99FD42BC4E ] C:\Program Files\Trend Micro\Titanium\plugin\plugHttpSrv.dll
10:48:55.0062 2688  C:\Program Files\Trend Micro\Titanium\plugin\plugHttpSrv.dll - ok
10:48:55.0093 2688  [ 64038B8687AB578D283D8E9335058737 ] C:\Program Files\Trend Micro\Titanium\plugin\plugTMAS.dll
10:48:55.0093 2688  C:\Program Files\Trend Micro\Titanium\plugin\plugTMAS.dll - ok
10:48:55.0109 2688  [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
10:48:55.0109 2688  C:\WINDOWS\system32\webcheck.dll - ok
10:48:55.0140 2688  [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
10:48:55.0140 2688  C:\WINDOWS\system32\stobject.dll - ok
10:48:55.0171 2688  [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
10:48:55.0171 2688  C:\WINDOWS\system32\batmeter.dll - ok
10:48:55.0187 2688  [ 1665EDB123D4F39A38F506F32F8EA766 ] C:\Program Files\Trend Micro\UniClient\plugins\plugUpdater.dll
10:48:55.0187 2688  C:\Program Files\Trend Micro\UniClient\plugins\plugUpdater.dll - ok
10:48:55.0203 2688  [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\system32\WPDShServiceObj.dll
10:48:55.0203 2688  C:\WINDOWS\system32\WPDShServiceObj.dll - ok
10:48:55.0218 2688  [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
10:48:55.0218 2688  C:\WINDOWS\system32\upnp.dll - ok
10:48:55.0250 2688  [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\system32\mydocs.dll
10:48:55.0250 2688  C:\WINDOWS\system32\mydocs.dll - ok
10:48:55.0265 2688  [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
10:48:55.0265 2688  C:\WINDOWS\system32\ssdpapi.dll - ok
10:48:55.0296 2688  [ 5D999BF519415D1C8EE0B97FF6A254DB ] C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL
10:48:55.0296 2688  C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL - ok
10:48:55.0312 2688  [ 14B7E5CE5AB47CC1D31D67A13D97668E ] C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
10:48:55.0312 2688  C:\Program Files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll - ok
10:48:55.0343 2688  [ 6AA7540C3645BEB6BBB75138465C887F ] C:\Program Files\Trend Micro\UniClient\plugins\plugCfgProxy.dll
10:48:55.0343 2688  C:\Program Files\Trend Micro\UniClient\plugins\plugCfgProxy.dll - ok
10:48:55.0359 2688  [ 5061B30A831CD8F25A9A8DA155276214 ] C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll
10:48:55.0359 2688  C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll - ok
10:48:55.0390 2688  [ 5652F6CE1D9E9D8068B9D29BC21B5409 ] C:\WINDOWS\system32\olepro32.dll
10:48:55.0390 2688  C:\WINDOWS\system32\olepro32.dll - ok
10:48:55.0406 2688  [ ED8DA2697F1C720EF26AE4B291A04497 ] C:\WINDOWS\soundman.exe
10:48:55.0406 2688  C:\WINDOWS\soundman.exe - ok
10:48:55.0437 2688  [ B98471074DB81DF02ABF721F14CA351D ] C:\Program Files\Nokia\Nokia PC Suite 6\PCSL.dll
10:48:55.0437 2688  C:\Program Files\Nokia\Nokia PC Suite 6\PCSL.dll - ok
10:48:55.0437 2688  [ 3421E8436963F92CC62C1E1C2A32879A ] C:\Program Files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_eng.NLR
10:48:55.0437 2688  C:\Program Files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_eng.NLR - ok
10:48:55.0468 2688  [ 2569B507B1661F208420598D7323B969 ] C:\Program Files\Trend Micro\UniClient\plugins\plugFeatureToggle.dll
10:48:55.0468 2688  C:\Program Files\Trend Micro\UniClient\plugins\plugFeatureToggle.dll - ok
10:48:55.0484 2688  [ 8714A1783C04BB1979E678DFE1601619 ] C:\Program Files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.NGR
10:48:55.0484 2688  C:\Program Files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.NGR - ok
10:48:55.0515 2688  [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
10:48:55.0515 2688  C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
10:48:55.0531 2688  [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\system32\PortableDeviceApi.dll
10:48:55.0531 2688  C:\WINDOWS\system32\PortableDeviceApi.dll - ok
10:48:55.0562 2688  [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
10:48:55.0562 2688  C:\WINDOWS\system32\rasdlg.dll - ok
10:48:55.0578 2688  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
10:48:55.0578 2688  C:\WINDOWS\system32\imapi.exe - ok
10:48:55.0609 2688  [ 184399F3EDC6B65DF9484D7B89ED56EB ] C:\Program Files\D-Link\AirPlus G DWL-G510\AirGCFG.exe
10:48:55.0609 2688  C:\Program Files\D-Link\AirPlus G DWL-G510\AirGCFG.exe - ok
10:48:55.0625 2688  [ FF200EA9E1792C8F29A5DC9F65378F22 ] C:\Program Files\Trend Micro\UniClient\workflows\util\utilTitaniumLuaHelper.dll
10:48:55.0625 2688  C:\Program Files\Trend Micro\UniClient\workflows\util\utilTitaniumLuaHelper.dll - ok
10:48:55.0656 2688  [ 6AFD3970A41F48306874DB23991A4955 ] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
10:48:55.0656 2688  C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe - ok
10:48:55.0671 2688  [ 12CD9543BFBB39484601A0962635B8A6 ] C:\Program Files\Trend Micro\Titanium\plugin\plugLicense.dll
10:48:55.0671 2688  C:\Program Files\Trend Micro\Titanium\plugin\plugLicense.dll - ok
10:48:55.0687 2688  [ 0282F454BF380AF26EFC3913C6D435FF ] C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
10:48:55.0687 2688  C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE - ok
10:48:55.0718 2688  [ 957040B435290EC266730EDE69EE4585 ] C:\Program Files\Trend Micro\Titanium\plugin\Corridor.dll
10:48:55.0718 2688  C:\Program Files\Trend Micro\Titanium\plugin\Corridor.dll - ok
10:48:55.0734 2688  [ D4B4F17632230555719E13302BBF2B4D ] C:\WINDOWS\system32\AQCKGen.dll
10:48:55.0734 2688  C:\WINDOWS\system32\AQCKGen.dll - ok
10:48:55.0765 2688  [ 223AD0CA4092AEFFE0D0DE25502A3DB6 ] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.EXE
10:48:55.0765 2688  C:\Program Files\Canon\SolutionMenu\CNSLMAIN.EXE - ok
10:48:55.0781 2688  [ 73430E79D6DF4DE9055E2A7742B881D3 ] C:\Program Files\QuickTime\QTTask.exe
10:48:55.0781 2688  C:\Program Files\QuickTime\QTTask.exe - ok
10:48:55.0812 2688  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
10:48:55.0812 2688  C:\WINDOWS\system32\drivers\http.sys - ok
10:48:55.0828 2688  [ 160FDD6D303F428CA55030B263E07DFE ] C:\WINDOWS\system32\ANIWZCS2.dll
10:48:55.0828 2688  C:\WINDOWS\system32\ANIWZCS2.dll - ok
10:48:55.0859 2688  [ 879D74337173A6D630D3D06184D354C1 ] C:\Program Files\iTunes\iTunesHelper.exe
10:48:55.0859 2688  C:\Program Files\iTunes\iTunesHelper.exe - ok
10:48:55.0875 2688  [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
10:48:55.0875 2688  C:\WINDOWS\system32\ssdpsrv.dll - ok
10:48:55.0906 2688  [ FEE2BA1AD38F457F418E82EA30724053 ] C:\WINDOWS\system32\msfeedssync.exe
10:48:55.0906 2688  C:\WINDOWS\system32\msfeedssync.exe - ok
10:48:55.0921 2688  [ 9E03DC5AB51CFD0190541CE2038D819D ] C:\WINDOWS\system32\usp10.dll
10:48:55.0921 2688  C:\WINDOWS\system32\usp10.dll - ok
10:48:55.0937 2688  [ 762982E3EFED750552E4ED852BF7D7C2 ] C:\Program Files\Canon\MyPrinter\BJMYRES.DLL
10:48:55.0937 2688  C:\Program Files\Canon\MyPrinter\BJMYRES.DLL - ok
10:48:55.0968 2688  [ D081C72A6A33B6B7127D17B66FFDF995 ] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe
10:48:55.0968 2688  C:\Program Files\NVIDIA Corporation\nView\nwiz.exe - ok
10:48:55.0984 2688  [ 0600CB2613BEA0C6C0987B58D56D77B9 ] C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
10:48:55.0984 2688  C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
10:48:56.0015 2688  [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:48:56.0015 2688  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
10:48:56.0031 2688  [ 6705043F0BB486E666D57DBBB5D389D0 ] C:\Program Files\NVIDIA Corporation\nView\nView.dll
10:48:56.0031 2688  C:\Program Files\NVIDIA Corporation\nView\nView.dll - ok
10:48:56.0062 2688  [ 28E494B3876CB33097C10EF1DB54FB08 ] C:\Program Files\iTunes\iTunesHelper.dll
10:48:56.0062 2688  C:\Program Files\iTunes\iTunesHelper.dll - ok
10:48:56.0078 2688  [ BCD9591E1B2FEE41178E84556A4D3998 ] C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe
10:48:56.0078 2688  C:\Program Files\HTC\HTC Sync 3.0\htcUPCTLoader.exe - ok
10:48:56.0109 2688  [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
10:48:56.0109 2688  C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
10:48:56.0125 2688  [ 84BD091511BB994664D33EC313645BF9 ] C:\WINDOWS\system32\nvwddi.dll
10:48:56.0125 2688  C:\WINDOWS\system32\nvwddi.dll - ok
10:48:56.0156 2688  [ 7B93C623333F121DC9E689CCB1B7A733 ] C:\Program Files\HTC\HTC Sync 3.0\MFC71u.dll
10:48:56.0156 2688  C:\Program Files\HTC\HTC Sync 3.0\MFC71u.dll - ok
10:48:56.0171 2688  [ 36D9D26C61D77E4223B6D763B28CB29D ] C:\Program Files\Adobe\Reader 9.0\Reader\logsession.dll
10:48:56.0171 2688  C:\Program Files\Adobe\Reader 9.0\Reader\logsession.dll - ok
10:48:56.0187 2688  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\HTC\HTC Sync 3.0\msvcr71.dll
10:48:56.0187 2688  C:\Program Files\HTC\HTC Sync 3.0\msvcr71.dll - ok
10:48:56.0218 2688  [ 55C8678F4246A5D3F211E47C358B029A ] C:\Program Files\Adobe\Reader 9.0\Reader\LogTransport2.dll
10:48:56.0218 2688  C:\Program Files\Adobe\Reader 9.0\Reader\LogTransport2.dll - ok
10:48:56.0234 2688  [ 25A25D0567946FF4F6808477A4B14C7A ] C:\WINDOWS\system32\msfeeds.dll
10:48:56.0234 2688  C:\WINDOWS\system32\msfeeds.dll - ok
10:48:56.0265 2688  [ 102596AFB271F540E0C77C3634775FE6 ] C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe
10:48:56.0265 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\uiWinMgr.exe - ok
10:48:56.0281 2688  [ 8E16BF5600797E678EA97051CF93E6BF ] C:\WINDOWS\system32\dumprep.exe
10:48:56.0281 2688  C:\WINDOWS\system32\dumprep.exe - ok
10:48:56.0312 2688  [ 7AD47F1F78EB1AEC7D8F262878204DEC ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilDebugLog.dll
10:48:56.0312 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilDebugLog.dll - ok
10:48:56.0328 2688  [ CFBF24322AF177B3C3A81A862B4C3353 ] C:\Program Files\Trend Micro\Titanium\UIFramework\boost_date_time-vc80-mt-1_49.dll
10:48:56.0328 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\boost_date_time-vc80-mt-1_49.dll - ok
10:48:56.0359 2688  [ 6BD2C65C3CC612891B552EBB3A7F5370 ] C:\Program Files\Trend Micro\Titanium\UIFramework\libcef.dll
10:48:56.0359 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\libcef.dll - ok
10:48:56.0375 2688  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files\HTC\HTC Sync 3.0\msvcp71.dll
10:48:56.0375 2688  C:\Program Files\HTC\HTC Sync 3.0\msvcp71.dll - ok
10:48:56.0406 2688  [ 6C15AA98FDD8731CE9560A36F5771986 ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe
10:48:56.0406 2688  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiSeAgnt.exe - ok
10:48:56.0421 2688  [ 42A856A908650C695C7E0E6F9D56295A ] C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
10:48:56.0421 2688  C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe - ok
10:48:56.0437 2688  [ 7DEA54CE6051D36D6B56ADFD95467082 ] C:\Program Files\HTC\HTC Sync 3.0\UPCT_DB.dll
10:48:56.0437 2688  C:\Program Files\HTC\HTC Sync 3.0\UPCT_DB.dll - ok
10:48:56.0453 2688  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3 ] C:\WINDOWS\system32\ctfmon.exe
10:48:56.0453 2688  C:\WINDOWS\system32\ctfmon.exe - ok
10:48:56.0484 2688  [ 6C042101B066B536005F65992C4D4F30 ] C:\Program Files\Trend Micro\UniClient\plugins\plugEventLog.dll
10:48:56.0484 2688  C:\Program Files\Trend Micro\UniClient\plugins\plugEventLog.dll - ok
10:48:56.0500 2688  [ 6515C8E7AA6787CD9672ECE6F9BB6C0A ] C:\Program Files\HTC\HTC Sync 3.0\sqlite3.dll
10:48:56.0500 2688  C:\Program Files\HTC\HTC Sync 3.0\sqlite3.dll - ok
10:48:56.0531 2688  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
10:48:56.0531 2688  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll - ok
10:48:56.0546 2688  [ 0607CBC6FA20114CB491EFE4B2F9EFAD ] C:\WINDOWS\system32\d3d9.dll
10:48:56.0546 2688  C:\WINDOWS\system32\d3d9.dll - ok
10:48:56.0578 2688  [ 31B067C412FA1A9BAD3CA2A63D7DA440 ] C:\WINDOWS\system32\d3d8thk.dll
10:48:56.0578 2688  C:\WINDOWS\system32\d3d8thk.dll - ok
10:48:56.0593 2688  [ 5F269C46A99F9B461D7B17B3EDEA1BB6 ] C:\Program Files\HTC\HTC Sync 3.0\OutputLog.dll
10:48:56.0593 2688  C:\Program Files\HTC\HTC Sync 3.0\OutputLog.dll - ok
10:48:56.0625 2688  [ 531CAB5C685794185C40C93DE4E99441 ] C:\Program Files\Trend Micro\Titanium\plugin\plugVizor.dll
10:48:56.0625 2688  C:\Program Files\Trend Micro\Titanium\plugin\plugVizor.dll - ok
10:48:56.0640 2688  [ 0F3CE8CD921AC76BA344CA35921FCC90 ] C:\Program Files\Trend Micro\Titanium\UIFramework\boost_thread-vc80-mt-1_49.dll
10:48:56.0640 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\boost_thread-vc80-mt-1_49.dll - ok
10:48:56.0671 2688  [ 28A09777D2D952122567A8A82F1A2C7B ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
10:48:56.0671 2688  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll - ok
10:48:56.0687 2688  [ 3F5A73A49355241E5D9D5CF3EE14DBB8 ] C:\Program Files\HTC\HTC Sync 3.0\PIMAccess.dll
10:48:56.0687 2688  C:\Program Files\HTC\HTC Sync 3.0\PIMAccess.dll - ok
10:48:56.0703 2688  [ 97476BB3F51FBD0A944ACC9BFAFD97D8 ] C:\Program Files\Trend Micro\Titanium\UIFramework\outer_AMSP_ClientLibrary.dll
10:48:56.0703 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\outer_AMSP_ClientLibrary.dll - ok
10:48:56.0718 2688  [ 1E114E34D8C1F6C0C061EAECCC2B7848 ] C:\Program Files\HTC\HTC Sync 3.0\UpdateHelper.dll
10:48:56.0718 2688  C:\Program Files\HTC\HTC Sync 3.0\UpdateHelper.dll - ok
10:48:56.0750 2688  [ 3F59765B24EB6770252ACC314BD69D97 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilMsgBuffer.dll
10:48:56.0750 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilMsgBuffer.dll - ok
10:48:56.0781 2688  [ F02A533F517EB38333CB12A9E8963773 ] C:\Documents and Settings\Jedtec\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
10:48:56.0781 2688  C:\Documents and Settings\Jedtec\Local Settings\Application Data\Google\Update\GoogleUpdate.exe - ok
10:48:56.0796 2688  [ 21095E7FAE3EC5E927F54E19CC63BA2A ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilIPC.dll
10:48:56.0796 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilIPC.dll - ok
10:48:56.0828 2688  [ 574738F61FCA2935F5265DC4E5691314 ] C:\WINDOWS\system32\qmgr.dll
10:48:56.0828 2688  C:\WINDOWS\system32\qmgr.dll - ok
10:48:56.0843 2688  [ 25D83BC8E4CA8C757AB648573E94B57C ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilThread.dll
10:48:56.0843 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilThread.dll - ok
10:48:56.0875 2688  [ E1EBB4C5F1D0680EA3E4E7A77ADCA391 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilRPC.dll
10:48:56.0875 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilRPC.dll - ok
10:48:56.0890 2688  [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\WINDOWS\system32\MFC71ENU.DLL
10:48:56.0890 2688  C:\WINDOWS\system32\MFC71ENU.DLL - ok
10:48:56.0921 2688  [ DEB46802F1183A90D3E029566B690E84 ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilInstallation.dll
10:48:56.0921 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilInstallation.dll - ok
10:48:56.0937 2688  [ 8FEDBE7A5D3E5F91FD4B96DAFA4DD197 ] C:\Documents and Settings\Jedtec\Application Data\Spotify\Data\SpotifyWebHelper.exe
10:48:56.0937 2688  C:\Documents and Settings\Jedtec\Application Data\Spotify\Data\SpotifyWebHelper.exe - ok
10:48:56.0953 2688  [ 78CD7BD82E678C0A239010D8B2FAE4FD ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilComponentInfo.dll
10:48:56.0953 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilComponentInfo.dll - ok
10:48:56.0968 2688  [ 41EFA82C864083025ED9FF17482CBA53 ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\utilUIProfile.dll
10:48:56.0968 2688  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\utilUIProfile.dll - ok
10:48:57.0000 2688  [ F1DAC7969C1337AF790BD1D981AA780C ] C:\WINDOWS\system32\qmgrprxy.dll
10:48:57.0000 2688  C:\WINDOWS\system32\qmgrprxy.dll - ok
10:48:57.0015 2688  [ 9E054D04721F4BA4ACB0C0D189C9B1CD ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilGenericLoader.dll
10:48:57.0015 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilGenericLoader.dll - ok
10:48:57.0046 2688  [ C529CFA5E9714032D411236F43BBCC07 ] C:\Program Files\Trend Micro\Titanium\plugin\plugScan.dll
10:48:57.0046 2688  C:\Program Files\Trend Micro\Titanium\plugin\plugScan.dll - ok
10:48:57.0062 2688  [ 57E51C6347165622C69D456B96B1EB46 ] C:\WINDOWS\system32\dxdiagn.dll
10:48:57.0062 2688  C:\WINDOWS\system32\dxdiagn.dll - ok
10:48:57.0093 2688  [ 5D13AAA8BC57278BFD45F6FC94AE74ED ] C:\Program Files\Trend Micro\Titanium\UIFramework\utilJsonHandle.dll
10:48:57.0093 2688  C:\Program Files\Trend Micro\Titanium\UIFramework\utilJsonHandle.dll - ok
10:48:57.0109 2688  [ 605C6370240FC79CADBCD34960A741D2 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
10:48:57.0109 2688  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
10:48:57.0140 2688  [ 51201F338ABCB964F79BE0FAB97D4941 ] C:\Program Files\HTC\HTC Sync 3.0\fdHttpd.dll
10:48:57.0140 2688  C:\Program Files\HTC\HTC Sync 3.0\fdHttpd.dll - ok
10:48:57.0156 2688  [ C3C3C665D4CB8460F45C92C87FF5AD63 ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
10:48:57.0156 2688  C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
10:48:57.0187 2688  [ BED23C787DF1F672959BF29F6AEBE68A ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
10:48:57.0187 2688  C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
10:48:57.0203 2688  [ 3C527026BBA2E7F295FD7FC83FD759AD ] C:\WINDOWS\system32\msfeedsbs.dll
10:48:57.0203 2688  C:\WINDOWS\system32\msfeedsbs.dll - ok
10:48:57.0218 2688  [ 2424231BBD703A677D115C29983B4293 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
10:48:57.0218 2688  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
10:48:57.0250 2688  [ A4BB970D51FF548864AEBB850C830EDB ] C:\Program Files\Trend Micro\UniClient\UiFrmwrk\WSCStatusController.exe
10:48:57.0250 2688  C:\Program Files\Trend Micro\UniClient\UiFrmwrk\WSCStatusController.exe - ok
10:48:57.0265 2688  [ E5244A5462FA1F0267D8923538530AF4 ] C:\WINDOWS\system32\nlsdl.dll
10:48:57.0265 2688  C:\WINDOWS\system32\nlsdl.dll - ok
10:48:57.0296 2688  [ 6DEC53576FFD514FC1FE0688796370D5 ] C:\Program Files\HTC\HTC Sync 3.0\htcDetect.dll
10:48:57.0296 2688  C:\Program Files\HTC\HTC Sync 3.0\htcDetect.dll - ok
10:48:57.0312 2688  [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\MSCTF.dll
10:48:57.0312 2688  C:\WINDOWS\system32\MSCTF.dll - ok
10:48:57.0343 2688  [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
10:48:57.0343 2688  C:\WINDOWS\system32\msutb.dll - ok
10:48:57.0359 2688  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Documents and Settings\Jedtec\Local Settings\Application Data\Google\Update\1.3.21.135\goopdate.dll
10:48:57.0359 2688  C:\Documents and Settings\Jedtec\Local Settings\Application Data\Google\Update\1.3.21.135\goopdate.dll - ok
10:48:57.0375 2688  ============================================================
10:48:57.0375 2688  Scan finished
10:48:57.0375 2688  ============================================================
10:48:57.0421 2680  Detected object count: 1
10:48:57.0421 2680  Actual detected object count: 1
10:49:19.0656 2680  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
10:49:19.0656 2680  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
10:51:36.0984 3684  Deinitialize success
 
 
 
aswMBR
 
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-02-21 11:11:57
-----------------------------
11:11:57.515    OS Version: Windows 5.1.2600 Service Pack 3
11:11:57.515    Number of processors: 2 586 0x604
11:11:57.515    ComputerName: TONY-E3DB0B3F25  UserName: Jedtec
11:11:59.390    Initialize success
11:45:36.578    AVAST engine defs: 13022001
11:59:10.968    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-5
11:59:10.968    Disk 0 Vendor: WDC_WD800JD-00MSA1 10.01E01 Size: 76318MB BusType: 3
11:59:11.000    Disk 0 MBR read successfully
11:59:11.000    Disk 0 MBR scan
11:59:11.062    Disk 0 Windows XP default MBR code
11:59:11.062    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS        76308 MB offset 63
11:59:11.062    Disk 0 scanning sectors +156280320
11:59:11.187    Disk 0 scanning C:\WINDOWS\system32\drivers
11:59:22.843    Service scanning
11:59:42.937    Modules scanning
11:59:47.921    Disk 0 trace - called modules:
11:59:47.953    ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS 
11:59:47.953    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86f3dab8]
11:59:47.953    3 CLASSPNP.SYS[f766efd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-5[0x86fe73f8]
11:59:48.890    AVAST engine scan C:\WINDOWS
11:59:56.093    AVAST engine scan C:\WINDOWS\system32
12:01:51.000    File: C:\WINDOWS\system32\verifierf.dll  **INFECTED** Win32:Medfos-AX [Trj]
12:03:20.468    AVAST engine scan C:\WINDOWS\system32\drivers
12:03:34.328    AVAST engine scan C:\Documents and Settings\Jedtec
12:17:19.375    AVAST engine scan C:\Documents and Settings\All Users
12:19:06.281    Scan finished successfully
12:20:48.937    Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Jedtec\Desktop\MBR.dat"
12:20:48.953    The log file has been saved successfully to "C:\Documents and Settings\Jedtec\Desktop\aswMBR.txt"
 
 
 
ESET
 
C:\BACKUP\User\Application Data\66A846BAAE01F325F9F349C0C72C4650\enemies-names.txt    Win32/Adware.AntimalwareDoctor.AE.Gen application    cleaned by deleting - quarantined
C:\BACKUP\User\Application Data\66A846BAAE01F325F9F349C0C72C4650\local.ini    Win32/Adware.AntimalwareDoctor.AE.Gen application    cleaned by deleting - quarantined
C:\BACKUP\User\Application Data\Sun\Java\Deployment\cache\6.0\38\1c0702e6-6cd4d084    multiple threats    deleted - quarantined
C:\Documents and Settings\Annelise Joyce\My Documents\Downloads\FreeYouTubeDownload.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Documents and Settings\Annelise Joyce\My Documents\Downloads\SoftonicDownloader_for_windows-movie-maker.exe    Win32/SoftonicDownloader application    cleaned by deleting - quarantined
C:\Documents and Settings\Jedtec\My Documents\Downloads\DTLite4461-0328.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
C:\Documents and Settings\Jedtec\My Documents\Downloads\winamp563_full_emusic-7plus_all.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
Operating memory    probably a variant of Win32/Ponmocup.AA trojan    
 

 

Thanks for this



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 21 February 2013 - 02:30 AM

Please run TDSSkiller once again and select DELETE for

 

10:49:19.0656 2680  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user

 

 

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log

 



#5 zachkw

zachkw
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:32 PM

Posted 21 February 2013 - 05:35 AM

Malwarebytes

 

 

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org
 
Database version: v2013.02.21.03
 
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Jedtec :: TONY-E3DB0B3F25 [administrator]
 
21/02/2013 8:40:37 PM
mbam-log-2013-02-21 (20-40-37).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 278902
Time elapsed: 17 minute(s), 30 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 
 
MiniToolBox
 
MiniToolBox by Farbar  Version:10-01-2013
Ran by Jedtec (administrator) on 21-02-2013 at 21:03:46
Running from "C:\Documents and Settings\Jedtec\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
 
Windows IP Configuration
 
 
 
Successfully flushed the DNS Resolver Cache.
 
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
127.0.0.1       localhost
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
D-Link AirPlus G DWL-G510 Wireless PCI Adapter(rev.C) = Wireless Network Connection (Disconnected)
Belkin F5D8053 N Wireless USB Adapter = Wireless Network Connection 6 (Connected)
Realtek RTL8139/810x Family Fast Ethernet NIC = Local Area Connection (Media disconnected)
 
 
# ---------------------------------- 
# Interface IP Configuration         
# ---------------------------------- 
pushd interface ip
 
 
# Interface IP Configuration for "Local Area Connection"
 
set address name="Local Area Connection" source=dhcp 
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp
 
# Interface IP Configuration for "Wireless Network Connection 6"
 
set address name="Wireless Network Connection 6" source=dhcp 
set dns name="Wireless Network Connection 6" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 6" source=dhcp
 
 
popd
# End of interface IP configuration
 
 
 
 
Windows IP Configuration
 
 
 
        Host Name . . . . . . . . . . . . : tony-e3db0b3f25
 
        Primary Dns Suffix  . . . . . . . : 
 
        Node Type . . . . . . . . . . . . : Unknown
 
        IP Routing Enabled. . . . . . . . : No
 
        WINS Proxy Enabled. . . . . . . . : No
 
        DNS Suffix Search List. . . . . . : BigPond
 
 
 
Ethernet adapter Local Area Connection:
 
 
 
        Media State . . . . . . . . . . . : Media disconnected
 
        Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC
 
        Physical Address. . . . . . . . . : 00-16-E6-69-39-30
 
 
 
Ethernet adapter Wireless Network Connection 6:
 
 
 
        Connection-specific DNS Suffix  . : BigPond
 
        Description . . . . . . . . . . . : Belkin F5D8053 N Wireless USB Adapter #5
 
        Physical Address. . . . . . . . . : 00-22-75-8E-C4-C8
 
        Dhcp Enabled. . . . . . . . . . . : Yes
 
        Autoconfiguration Enabled . . . . : Yes
 
        IP Address. . . . . . . . . . . . : 10.0.0.11
 
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
 
        Default Gateway . . . . . . . . . : 10.0.0.138
 
        DHCP Server . . . . . . . . . . . : 10.0.0.138
 
        DNS Servers . . . . . . . . . . . : 10.0.0.138
 
        Lease Obtained. . . . . . . . . . : Thursday, 21 February 2013 8:36:53 PM
 
        Lease Expires . . . . . . . . . . : Friday, 22 February 2013 8:36:53 PM
 
Server:  BigPond.BigPond
Address:  10.0.0.138
 
Name:    google.com
Addresses:  74.125.237.132, 74.125.237.133, 74.125.237.137, 74.125.237.130
      74.125.237.128, 74.125.237.136, 74.125.237.131, 74.125.237.129, 74.125.237.134
      74.125.237.135, 74.125.237.142
 
 
 
Pinging google.com [74.125.237.142] with 32 bytes of data:
 
 
 
Reply from 74.125.237.142: bytes=32 time=43ms TTL=52
 
Reply from 74.125.237.142: bytes=32 time=43ms TTL=52
 
 
 
Ping statistics for 74.125.237.142:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 43ms, Maximum = 43ms, Average = 43ms
 
Server:  BigPond.BigPond
Address:  10.0.0.138
 
Name:    yahoo.com
Addresses:  206.190.36.45, 98.138.253.109, 98.139.183.24
 
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
 
 
 
Reply from 98.139.183.24: bytes=32 time=358ms TTL=43
 
Reply from 98.139.183.24: bytes=32 time=249ms TTL=43
 
 
 
Ping statistics for 98.139.183.24:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 249ms, Maximum = 358ms, Average = 303ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 16 e6 69 39 30 ...... Realtek RTL8139 Family PCI Fast Ethernet NIC - Packet Scheduler Miniport
0x10004 ...00 22 75 8e c4 c8 ...... Belkin F5D8053 N Wireless USB Adapter #5 - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0       10.0.0.138       10.0.0.11      25
         10.0.0.0    255.255.255.0        10.0.0.11       10.0.0.11      25
        10.0.0.11  255.255.255.255        127.0.0.1       127.0.0.1      25
   10.255.255.255  255.255.255.255        10.0.0.11       10.0.0.11      25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0        10.0.0.11       10.0.0.11      20
        224.0.0.0        240.0.0.0        10.0.0.11       10.0.0.11      25
  255.255.255.255  255.255.255.255        10.0.0.11               2      1
  255.255.255.255  255.255.255.255        10.0.0.11       10.0.0.11      1
Default Gateway:        10.0.0.138
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/20/2013 01:23:50 PM) (Source: Application Error) (User: )
Description: Faulting application ANIWZCSdS.exe, version 1.0.3.7034, faulting module user32.dll, version 5.1.2600.5512, fault address 0x00014acd.
Processing media-specific event for [ANIWZCSdS.exe!ws!]
 
Error: (02/19/2013 03:31:18 PM) (Source: MsiInstaller) (User: TONY-E3DB0B3F25)
Description: Product: Windows Defender -- Error 1920. Service 'Windows Defender' (WinDefend) failed to start.  Verify that you have sufficient privileges to start system services.
 
Error: (02/19/2013 03:30:47 PM) (Source: MsiInstaller) (User: TONY-E3DB0B3F25)
Description: Product: Windows Defender -- Error 1920. Service 'Windows Defender' (WinDefend) failed to start.  Verify that you have sufficient privileges to start system services.
 
Error: (02/19/2013 03:30:14 PM) (Source: MsiInstaller) (User: TONY-E3DB0B3F25)
Description: Product: Windows Defender -- Error 1920. Service 'Windows Defender' (WinDefend) failed to start.  Verify that you have sufficient privileges to start system services.
 
Error: (02/19/2013 01:46:55 PM) (Source: Application Hang) (User: )
Description: Hanging application explorer.exe, version 6.0.2900.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (02/16/2013 03:42:22 PM) (Source: Chrome) (User: TONY-E3DB0B3F25)
Description: Chrome has encountered a fatal error.
ver=24.0.1312.57;lang=;id=;is_machine=0;upload=1;minidump=C:\Documents and Settings\Jedtec\Local Settings\Application Data\Google\CrashReports\8efcc141-0cde-4db4-9988-d5c4b6215cf6.dmp
 
Error: (02/10/2013 08:16:56 PM) (Source: Bonjour Service) (User: )
Description: 408: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)
 
Error: (02/10/2013 08:16:56 PM) (Source: Bonjour Service) (User: )
Description: 388: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)
 
Error: (02/10/2013 08:16:56 PM) (Source: Bonjour Service) (User: )
Description: 212: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)
 
Error: (02/10/2013 08:05:31 PM) (Source: Bonjour Service) (User: )
Description: 212: ERROR: read_msg errno 10054 (An existing connection was forcibly closed by the remote host.)
 
 
System errors:
=============
Error: (02/21/2013 08:36:56 PM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume1
 
Error: (02/21/2013 08:36:51 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
SASDIFSV
SASKUTIL
 
Error: (02/21/2013 08:31:19 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
SASDIFSV
SASKUTIL
 
Error: (02/21/2013 08:06:54 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
SASDIFSV
SASKUTIL
 
Error: (02/21/2013 11:06:57 AM) (Source: Service Control Manager) (User: )
Description: The Windows Installer service failed to start due to the following error: 
%%1053
 
Error: (02/21/2013 11:06:56 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Windows Installer service to connect.
 
Error: (02/21/2013 11:06:47 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1053" attempting to start the service MSIServer with arguments ""
in order to run the server:
{000C101C-0000-0000-C000-000000000046}
 
Error: (02/20/2013 02:32:53 PM) (Source: Service Control Manager) (User: )
Description: The Spybot-S&D 2 Security Center Service service failed to start due to the following error: 
%%1053
 
Error: (02/20/2013 02:32:53 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Spybot-S&D 2 Security Center Service service to connect.
 
Error: (02/20/2013 01:24:58 PM) (Source: Service Control Manager) (User: )
Description: The ANIWZCSd Service service terminated unexpectedly.  It has done this 1 time(s).
 
 
Microsoft Office Sessions:
=========================
Error: (03/14/2011 03:01:07 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 163 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (03/14/2011 02:58:14 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (03/14/2011 02:57:30 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5835 seconds with 1800 seconds of active time.  This session ended with a crash.
 
 
=========================== Installed Programs ============================
 
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.2.0.2070)
Adobe Download Assistant (Version: 1.2.2)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.149)
Adobe Flash Player 11 Plugin (Version: 11.5.502.149)
Adobe Reader 9.5.2 (Version: 9.5.2)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
Age of Empires III - The WarChiefs (Version: 1.00.0000)
Age of Empires III (Version: 1.00.0000)
AirPlus G DWL-G510
ANIO Service
ANIWZCS2 Service
Apple Application Support (Version: 1.5.2)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
µTorrent (Version: 3.0.0)
Auslogics BoostSpeed (Version: 5.4)
AusLogics Disk Defrag (Version: version 1.4)
Belkin F5D8053 N Wireless USB Adapter (Version: 2.0.0.04)
BigPond Broadband ADSL (Version: 9.2)
Bonjour (Version: 3.0.0.2)
Canon Easy-WebPrint EX
Canon iP4700 series Printer Driver
Canon Utilities Easy-PhotoPrint EX
Canon Utilities My Printer
Canon Utilities Solution Menu
CCleaner (Version: 3.08)
CopyTrans Suite Remove Only (Version: 2.36)
Cucusoft DVD to iPod + iPod Video Converter Suite 8.8.8.8
DAEMON Tools Lite (Version: 4.46.1.0328)
DivX Setup (Version: 2.1.2.2)
Dropbox (Version: 1.4.7)
ESET Online Scanner v3
EZ Vinyl/Tape Converter 1.5.2.0 by MixMeister
FREE Hi-Q Recorder 1.92
Free M4a to MP3 Converter 7.0
Free YouTube Download version 3.1.37.918 (Version: 3.1.37.918)
Google Chrome (Version: 24.0.1312.57)
Google Earth (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.135)
HandBrake 0.9.6 (Version: 0.9.6)
Hazard Perception Test Demo
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.021)
HTC Sync (Version: 3.2.10)
iTunes (Version: 10.4.1.10)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 23 (Version: 6.0.230)
JavaFX 2.1.1 (Version: 2.1.1)
Jazz Jackrabbit 2-Christmas Chronicles
Last.fm 1.5.4.27091
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office PowerPoint 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher 2007 (Version: 12.0.6612.1000)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.9
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Mozilla Firefox 18.0.2 (x86 en-GB) (Version: 18.0.2)
Mozilla Maintenance Service (Version: 18.0.2)
MSN
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x86 (Version: 1.0.1.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nokia Connectivity Cable Driver (Version: 7.1.45.0)
Nokia Ovi Suite (Version: 3.1.1.78)
Nokia Ovi Suite Software Updater (Version: 02.07.004.45780)
Nokia PC Suite (Version: 6.83.14.1)
NVIDIA Control Panel 285.58 (Version: 285.58)
NVIDIA Display Control Panel (Version: 6.14.12.5721)
NVIDIA Graphics Driver 285.58 (Version: 285.58)
NVIDIA Install Application (Version: 2.1002.46.235)
NVIDIA nView 135.95 (Version: 135.95)
NVIDIA nView Desktop Manager (Version: 6.14.10.13585)
NVIDIA Update 1.5.20 (Version: 1.5.20)
NVIDIA Update Components (Version: 1.5.20)
Ovi Desktop Sync Engine (Version: 1.5.266.0)
OviMPlatform (Version: 2.7.72.0)
Paint.NET v3.5.8 (Version: 3.58.0)
PC Connectivity Solution (Version: 11.4.19.0)
PC Inspector smart recovery (Version: 4.50)
PlayMemories Home (Version: 6.0.02.14151)
Project64 1.6 (Version: 1.6)
QuickTime (Version: 7.70.80.34)
Realtek AC'97 Audio (Version: 5.28)
RGSS-RTP Standard (Version: 1.0.0)
RPG Maker VX (Version: 1.02)
RPG Maker VX RTP (Version: 1.02)
RPGXP (Version: 1.0.0)
SAMSUNG CDMA Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio (Version: 3.0.0.60812)
Spotify (Version: 0.8.5.1333.g822e0de8)
Starcraft
SUPERAntiSpyware (Version: 5.6.1014)
The Sims Unleashed
Tony Hawk's Underground 2 (Version: 1.00.0000)
Tony Hawks Pro Skater 4 Demo (Version: 1.00.0000)
Trend Micro Titanium (Version: 6.00)
Trend Micro Titanium Internet Security (Version: 6.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Atheros (arusb(Atheros)) Net  (09/23/2008 3.0.0.131) (Version: 09/23/2008 3.0.0.131)
Windows Driver Package - NETGEAR (W8335XP) Net  (02/22/2005 3.1.1.7) (Version: 02/22/2005 3.1.1.7)
Windows Driver Package - NETGEAR Inc. (RTLWUSB) Net  (02/07/2007 5.1283.0207.2007) (Version: 02/07/2007 5.1283.0207.2007)
Windows Driver Package - Nokia Modem  (02/15/2007 3.1) (Version: 02/15/2007 3.1)
Windows Driver Package - Nokia Modem  (11/03/2006 6.82.0.1) (Version: 11/03/2006 6.82.0.1)
Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Driver Package - Thomson (USB_RNDIS) Net  (02/16/2004 1.0.0.3) (Version: 02/16/2004 1.0.0.3)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR 4.10 (32-bit) (Version: 4.10.0)
Zero Assumption Recovery Version 9
 
========================= Devices: ================================
 
Name: D-Link AirPlus G DWL-G510 Wireless PCI Adapter(rev.C)
Description: D-Link AirPlus G DWL-G510 Wireless PCI Adapter(rev.C)
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: D-Link
Service: RT61
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Nokia 6120 classic
Description: Nokia Windows Portable Device Driver
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Nokia 6120 classic
Description: Nokia Windows Portable Device Driver
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
Name: Nokia 6120 classic
Description: Nokia 6120 classic
Class Guid: {EEC5AD98-8080-425F-922A-DABF3DE3F69A}
Manufacturer: Nokia
Service: WUDFRd
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 51%
Total physical RAM: 1023.48 MB
Available physical RAM: 500.49 MB
Total Pagefile: 2464.22 MB
Available Pagefile: 1820.3 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.96 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:74.52 GB) (Free:25.66 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\TONY-E3DB0B3F25
 
Administrator            Annelise Joyce           ASPNET                   
Guest                    HelpAssistant            Jedtec                   
SUPPORT_388945a0         UpdatusUser              
 
 
**** End of log ****
 
 
Farbar's Service Scanner
 
Farbar Service Scanner Version: 20-02-2013
Ran by Jedtec (administrator) on 21-02-2013 at 21:05:33
Running from "C:\Documents and Settings\Jedtec\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Yahoo.com is offline
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll
[2010-08-23 13:49] - [2008-04-14 23:00] - 0006656 ____A (Microsoft Corporation) 35321FB577CDC98CE3EB3A3EB9E4610A
 
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe
[2008-04-14 23:00] - [2009-02-06 22:11] - 0110592 ____A (Microsoft Corporation) 65DF52F5B8B6E9BBD183505225C37315
 
 
Extra List:
=======
AegisP(8) Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4) tmeext(9) 
0x09000000090000000500000001000000020000000300000004000000060000000700000008000000
 
 
**** End of log ****
 
 
AdwCleaner
 
# AdwCleaner v2.112 - Logfile created 02/21/2013 at 21:06:51
# Updated 10/02/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Jedtec - TONY-E3DB0B3F25
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Jedtec\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v18.0.2 (en-GB)
 
File : C:\Documents and Settings\Jedtec\Application Data\Mozilla\Firefox\Profiles\luocf9ki.default\prefs.js
 
[OK] File is clean.
 
File : C:\Documents and Settings\Annelise Joyce\Application Data\Mozilla\Firefox\Profiles\z2tamtu4.default\prefs.js
 
[OK] File is clean.
 
-\\ Google Chrome v24.0.1312.57
 
File : C:\Documents and Settings\Jedtec\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [1235 octets] - [20/02/2013 13:14:15]
AdwCleaner[S1].txt - [2474 octets] - [20/02/2013 12:33:04]
AdwCleaner[S2].txt - [1280 octets] - [21/02/2013 20:03:14]
AdwCleaner[S3].txt - [1211 octets] - [21/02/2013 21:06:51]
 
########## EOF - C:\AdwCleaner[S3].txt - [1271 octets] ##########
 
 
Junkware Removal Tool
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Microsoft Windows XP x86
Ran by Jedtec on Thu 21/02/2013 at 21:14:25.18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73-e35ea1ea9990}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ FireFox
 
Emptied folder: C:\Documents and Settings\Jedtec\Application Data\mozilla\firefox\profiles\luocf9ki.default\minidumps [29 files]
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 21/02/2013 at 21:22:21.54
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
Rkill
 
Rkill 2.4.7 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 02/21/2013 09:24:20 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
Checking Windows Service Integrity: 
 
 * Security Center (wscsvc) is not Running.
   Startup Type set to: Disabled
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
 
Program finished at: 02/21/2013 09:24:50 PM
Execution time: 0 hours(s), 0 minute(s), and 30 seconds(s)
 
 
Autoruns
 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher"    "Adobe Acrobat SpeedLauncher"    "Adobe Systems Incorporated"    "c:\program files\adobe\reader 9.0\reader\reader_sl.exe"
+ "ANIWZCS2Service"    "ANIWZCS2 launcher for Windows."    "Wireless Service"    "c:\program files\ani\aniwzcs2 service\wzcsldr2.exe"
+ "CanonMyPrinter"    "Canon My Printer"    "CANON INC."    "c:\program files\canon\myprinter\bjmyprt.exe"
+ "CanonSolutionMenu"    "CNSLMAIN"    "CANON INC."    "c:\program files\canon\solutionmenu\cnslmain.exe"
+ "D-Link AirPlus G DWL-G510"    "D-Link Wireless LAN Monitor"    "D-Link"    "c:\program files\d-link\airplus g dwl-g510\airgcfg.exe"
+ "HTC Sync Loader"    "HTC UPCT Loader"    ""    "c:\program files\htc\htc sync 3.0\htcupctloader.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files\itunes\ituneshelper.exe"
+ "NvCplDaemon"    "NVIDIA Display Properties Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvcpl.dll"
+ "NvMediaCenter"    "NVIDIA Media Center Library"    "NVIDIA Corporation"    "c:\windows\system32\nvmctray.dll"
+ "nwiz"    "NVIDIA nView Wizard, Version 135.95 "    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nview\nwiz.exe"
+ "PMBVolumeWatcher"    "Media Check Tool"    "Sony Corporation"    "c:\program files\sony\playmemories home\pmbvolumewatcher.exe"
+ "QuickTime Task"    "QuickTime Task"    "Apple Inc."    "c:\program files\quicktime\qttask.exe"
+ "SoundMan"    "Realtek Sound Manager"    "Realtek Semiconductor Corp."    "c:\windows\soundman.exe"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\program files\common files\java\java update\jusched.exe"
+ "Trend Micro Client Framework"    "Trend Micro Client Session Agent Monitor"    "Trend Micro Inc."    "c:\program files\trend micro\uniclient\uifrmwrk\uiwatchdog.exe"
+ "Trend Micro Titanium"    "Trend Micro Client Main Console"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\uiwinmgr.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Address Book 6"    "Outlook Express Setup Library"    "Microsoft Corporation"    "c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6"    "Outlook Express Setup Library"    "Microsoft Corporation"    "c:\program files\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "DAEMON Tools Lite"    ""    ""    "File not found: E:\DAEMON Tools Lite\DTLite.exe"
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\documents and settings\jedtec\local settings\application data\google\update\googleupdate.exe"
+ "Spotify Web Helper"    "SpotifyWebHelper"    "Spotify Ltd"    "c:\documents and settings\jedtec\application data\spotify\data\spotifywebhelper.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "ms-help"    "Microsoft® Help Data Services Module"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "tmbp"    "Trend Micro Browser Plug-In (IE)"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20002\7.5.1125\7.5.1125\tmbpie32.dll"
+ "tmpx"    "Trend Micro NSC IE Plug-In"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20004\2.5.1331\6.8.1094\tmieplg.dll"
+ "tmtb"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\toolbarie.dll"
+ "tmtbim"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\protoolbarimratingactivex.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components"    ""    ""    ""
+ "0"    ""    ""    "File not found: About:Home"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "SABShellExecuteHook Class"    "ShellExecuteHook"    "SuperAdBlocker.com"    "c:\program files\superantispyware\sasseh.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn.dll"
+ "TmdshellExt Class"    "Trend Micro Client Shell Extension"    "Trend Micro Inc."    "c:\program files\trend micro\uniclient\uifrmwrk\tmdshell.dll"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn.dll"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers"    ""    ""    ""
+ "Nokia"    "Phone Browser"    "Nokia"    "c:\program files\nokia\nokia pc suite 6\phonebrowser.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "00nView"    "NVIDIA Desktop Explorer, Version 135.95 "    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nview\nvshell.dll"
+ "NvCplDesktopContext"    "NVIDIA Display Properties Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvcpl.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "TmdshellExt Class"    "Trend Micro Client Shell Extension"    "Trend Micro Inc."    "c:\program files\trend micro\uniclient\uifrmwrk\tmdshell.dll"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Canon Easy-WebPrint EX BHO"    "Easy-WebPrint EX"    "CANON INC."    "c:\program files\canon\easy-webprint ex\ewpexbho.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\ssv.dll"
+ "TmBpIeBHO Class"    "Trend Micro Browser Plug-In (IE)"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20002\7.5.1125\7.5.1125\tmbpie32.dll"
+ "TmIEPlugInBHO Class"    "Trend Micro NSC IE Plug-In"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20004\2.5.1331\6.8.1094\tmieplg.dll"
+ "TSToolbarBHO"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\toolbarie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "Canon Easy-WebPrint EX"    "Easy-WebPrint EX"    "CANON INC."    "c:\program files\canon\easy-webprint ex\ewpexhlp.dll"
+ "Trend Micro Toolbar"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\toolbarie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "Windows Messenger"    "Windows Messenger"    "Microsoft Corporation"    "c:\program files\messenger\msmsgs.exe"
"Task Scheduler"    ""    ""    ""
+ "Adobe Flash Player Updater.job"    "Adobe® Flash® Player Update Service 11.5 r502"    "Adobe Systems Incorporated"    "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AppleSoftwareUpdate.job"    "Apple Software Update"    "Apple Inc."    "c:\program files\apple software update\softwareupdate.exe"
+ "Auslogics BoostSpeed Integrator Start On Jedtec Logon.job"    "Boost Speed"    "Auslogics"    "c:\program files\auslogics\auslogics boostspeed\boostspeed.exe"
+ "GoogleUpdateTaskMachineCore.job"    "Google Installer"    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA.job"    "Google Installer"    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskUserS-1-5-21-842925246-1123561945-1801674531-1008Core.job"    "Google Installer"    "Google Inc."    "c:\documents and settings\jedtec\local settings\application data\google\update\googleupdate.exe"
+ "GoogleUpdateTaskUserS-1-5-21-842925246-1123561945-1801674531-1008UA.job"    "Google Installer"    "Google Inc."    "c:\documents and settings\jedtec\local settings\application data\google\update\googleupdate.exe"
+ "RegistryBooster.job"    ""    ""    "File not found: C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe"
+ "Yotc.job"    ""    ""    "c:\windows\system32\verifierf.dll"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "!SASCORE"    "SUPERAntiSpyware Core Service"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sascore.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Amsp"    "Manages Trend Micro security modules"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\coreserviceshell.exe"
+ "ANIWZCSdService"    "ANIWZCS2 Service Launcher"    "Wireless Service"    "c:\program files\ani\aniwzcs2 service\aniwzcsds.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AppMgmt"    "Provides software installation services such as Assign, Publish, and Remove."    ""    "File not found: C:\WINDOWS\System32\appmgmts.dll"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "IDriverT"    "Provides support for the Running Object Table for InstallShield Drivers"    "Macrovision Corporation"    "c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "JavaQuickStarterService"    "Prefetches JRE files for faster startup of Java applets and applications"    "Oracle Corporation"    "c:\program files\java\jre7\bin\jqs.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "NVSvc"    "NVIDIA Driver Helper Service, Version 285.58"    "NVIDIA Corporation"    "c:\windows\system32\nvsvc32.exe"
+ "nvUpdatusService"    "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server."    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nvidia updatus\daemonu.exe"
+ "odserv"    "Run portions of Microsoft Office Diagnostics."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "PassThru Service"    "Detect HTC Android device for internet pass-through function."    ""    "c:\program files\htc\internet pass-through\passthrusvr.exe"
+ "PMBDeviceInfoProvider"    "Device Information Provider"    "Sony Corporation"    "c:\program files\sony\playmemories home\pmbdeviceinfoprovider.exe"
+ "ServiceLayer"    "ServiceLayer Module"    "Nokia"    "c:\program files\pc connectivity solution\servicelayer.exe"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AegisP"    "AEGIS Protocol (IEEE 802.1x) v3.5.3.0"    "Meetinghouse Data Communications"    "c:\windows\system32\drivers\aegisp.sys"
+ "ALCXWDM"    "Realtek AC'97 Audio Driver (WDM)"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\alcxwdm.sys"
+ "ANIO"    "ANIO (NT5) Driver "    "Alpha Networks Inc."    "c:\windows\system32\anio.sys"
+ "Changer"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "dtsoftbus01"    "DAEMON Tools Virtual Bus Driver"    "DT Soft Ltd"    "c:\windows\system32\drivers\dtsoftbus01.sys"
+ "esgiguard"    ""    ""    "File not found: C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "HTCAND32"    "ADB Interface"    "HTC, Corporation"    "c:\windows\system32\drivers\androidusb.sys"
+ "htcnprot"    "HTC NDIS Protocol Driver"    "Windows ® Win 7 DDK provider"    "c:\windows\system32\drivers\htcnprot.sys"
+ "i2omgmt"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys"
+ "lbrtfdc"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "nmwcd"    "Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\ccdcmb.sys"
+ "nmwcdc"    "Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\ccdcmbo.sys"
+ "nmwcdnsu"    "Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\nmwcdnsu.sys"
+ "nmwcdnsuc"    "Nokia USB Phone Generic Client"    "Nokia"    "c:\windows\system32\drivers\nmwcdnsuc.sys"
+ "npf"    "npf.sys (NT5/6 x86) Kernel Driver"    "CACE Technologies, Inc."    "c:\windows\system32\drivers\npf.sys"
+ "nv"    "NVIDIA Windows XP Miniport Driver, Version 285.58 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nv4_mini.sys"
+ "pccsmcfd"    "PCCS Mode Change Filter Driver"    "Nokia"    "c:\windows\system32\drivers\pccsmcfd.sys"
+ "PCIDump"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PDCOMP"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "Ptilink"    "Direct Parallel Link Driver"    "Parallel Technologies, Inc."    "c:\windows\system32\drivers\ptilink.sys"
+ "rt2870"    "Ralink 802.11 USB Wireless Adapter Driver"    "Ralink Technology, Corp."    "c:\windows\system32\drivers\rt2870.sys"
+ "RT61"    "Ralink 802.11 Wireless Adapter Driver"    "Ralink Technology, Corp."    "c:\windows\system32\drivers\rt61.sys"
+ "RTL8023xp"    "Realtek 10/100/1000 NDIS 5.1 Driver                         "    "Realtek Semiconductor Corporation                           "    "c:\windows\system32\drivers\rtnicxp.sys"
+ "rtl8139"    "Realtek RTL8139 NDIS 5.0 Driver"    "Realtek Semiconductor Corporation"    "c:\windows\system32\drivers\rtl8139.sys"
+ "SASDIFSV"    ""    ""    "File not found: C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS"
+ "SASKUTIL"    ""    ""    "File not found: C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS"
+ "Secdrv"    "SafeDisc driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "sscdbus"    "SAMSUNG USB Composite Device Driver"    "MCCI"    "c:\windows\system32\drivers\sscdbus.sys"
+ "sscdmdfl"    "SAMSUNG CDMA Modem Filter"    "MCCI"    "c:\windows\system32\drivers\sscdmdfl.sys"
+ "sscdmdm"    "SAMSUNG CDMA Modem Drivers"    "MCCI"    "c:\windows\system32\drivers\sscdmdm.sys"
+ "tmactmon"    "Trend Micro Activity Monitor Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmactmon.sys"
+ "tmcomm"    "Trend Micro Common Engine Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmcomm.sys"
+ "TMEBC"    "Trend Micro Boot Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmebc32.sys"
+ "tmeext"    "Trend Micro Network Hook Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmeext.sys"
+ "tmevtmgr"    "Trend Micro Event Manager Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmevtmgr.sys"
+ "tmnciesc"    "Trend Micro NCIE scanner of EagleEye hook"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmnciesc.sys"
+ "tmtdi"    "Trend Micro TDI Driver (i386-fre)"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmtdi.sys"
+ "upperdev"    "Filter Driver for Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\usbser_lowerflt.sys"
+ "USBAAPL"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl.sys"
+ "UsbserFilt"    "Filter Driver for Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\usbser_lowerfltj.sys"
+ "USBTINSP"    "tinspusb.sys"    "Texas Instruments"    "c:\windows\system32\drivers\tinspusb.sys"
+ "WDICA"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.iac2"    "Indeo® audio software"    "Intel Corporation"    "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
+ "msacm.sl_anet"    "Audio codec for MS ACM"    "Sipro Lab Telecom Inc."    "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch"    "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50"    "DSP GROUP, INC."    "c:\windows\system32\tssoft32.acm"
+ "msacm.vorbis"    "Ogg Vorbis CODEC for MSACM"    "HMS http://hp.vector.co.jp/authors/VA012897/"    "c:\windows\system32\vorbis.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\system32\iccvid.dll"
+ "vidc.iv31"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
"HKLM\Software\Classes\Filter"    ""    ""    ""
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "9x8Resize"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "AC3Filter"    "ac3filter"    ""    "c:\ipod-converter\filter\ac3filter.ax"
+ "ACELP.net Audio Decoder"    "ACELP.net Audio Decoder"    "Sipro Lab Telecom Inc."    "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    "c:\program files\google\google earth\client\wavdest.ax"
+ "Bitmap"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Cucusoft DataExtractor 6 (2010.10)"    "Data Extractor"    "Cucusoft, Inc."    "c:\ipod-converter\dataext.dll"
+ "Cucusoft Transparent 7 (2010.10)"    ""    "Cucusoft Inc."    "c:\windows\system32\cdg.dll"
+ "Cucusoft Transparent A"    "Cucusoft Audio Transparent Filter"    ""    "c:\windows\system32\cdga.dll"
+ "CyberLink Video/SP Decoder (PDVD7)"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\windows\system32\clvsd.ax"
+ "Emuzed AAC/AAC+ Decoder TFilter"    "Emuzed AAC/AAC+ Decoder Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzaacdecfilter.dll"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter"    "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\ezdmp4muxfilter.dll"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter"    "Emuzed MP4/3GP2/AMR/QCP Source Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzmp4source.dll"
+ "Emuzed MP3 Source/Decoder Filter"    "Emuzed MP3 Source/Decoder Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzmp3sourcefilter.dll"
+ "Emuzed MP4SP/H263 Video Decoder-Filter"    "Emuzed MP4SP/H.263 Video Transform Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzdecmp4_h263.dll"
+ "ffdshow Audio Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow Audio Processor"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow raw video filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow subtitles filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow Video Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "FLV Source"    "FLV Splitter"    "Gabest"    "c:\ipod-converter\filter\flvsplitter.ax"
+ "FLV Splitter"    "FLV Splitter"    "Gabest"    "c:\ipod-converter\filter\flvsplitter.ax"
+ "FLV4 Video Decoder"    "FLV Splitter"    "Gabest"    "c:\ipod-converter\filter\flvsplitter.ax"
+ "Frame Eater"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Indeo® audio software"    "Indeo® audio software"    "Intel Corporation"    "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "MP4 Source"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "MP4 Splitter"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "MPEG Layer-3 Decoder"    "MPEG Layer-3 Audio Decoder"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codecx.ax"
+ "MPEG4 Video Source"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "MPEG4 Video Splitter"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "Nokia H264Dec HP/MP Filter"    "NokiaH264HPMPDecTFilter"    "Nokia"    "c:\program files\common files\nokia\codecs\nokiah264hpmpdectfilter.dll"
+ "Nokia MPEG4ASP Decoder Filter"    "MPEG4ASP H263 Decoder Filter"    "Nokia"    "c:\program files\common files\nokia\codecs\nokiadecmp4asp_h263.dll"
+ "QTSrc"    "CLQTSrc"    "Cyberlink"    "c:\ipod-converter\filter\quicktime.dll"
+ "Record Queue"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "ShotDetect"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WIA Stream Snapshot Filter"    "WIA Stream Snapshot Filter"    "MyCompanyName"    "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "XviD MPEG-4 Video Decoder"    ""    ""    "c:\windows\system32\xvid.ax"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "Canon BJ Language Monitor iP4700 series"    "IJ Language Monitor"    "CANON INC."    "c:\windows\system32\cnmlma1.dll"
 

 



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 21 February 2013 - 08:42 AM

Launch Autoruns and uncheck this entry
 
+ "Yotc.job"    ""    ""    "c:\windows\system32\verifierf.dll"
 

 

Restart the PC,press Windows+R key and type

 

cmd and click ok and run these commands

 

cd \windows\system32

attrib -s -h -r verifierf.dll

cacls verifierf.dll /p everyone:f

 

Press Y and <ENTER>

 

Now go to C\windows\system32 and delete the file.Do not delete the wrong one.

 

Re run Autoruns and post the new log



#7 zachkw

zachkw
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:32 PM

Posted 21 February 2013 - 09:18 PM

Autoruns

 

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""

+ "Adobe ARM"    "Adobe Reader and Acrobat Manager"    "Adobe Systems Incorporated"    "c:\program files\common files\adobe\arm\1.0\adobearm.exe"
+ "Adobe Reader Speed Launcher"    "Adobe Acrobat SpeedLauncher"    "Adobe Systems Incorporated"    "c:\program files\adobe\reader 9.0\reader\reader_sl.exe"
+ "ANIWZCS2Service"    "ANIWZCS2 launcher for Windows."    "Wireless Service"    "c:\program files\ani\aniwzcs2 service\wzcsldr2.exe"
+ "CanonMyPrinter"    "Canon My Printer"    "CANON INC."    "c:\program files\canon\myprinter\bjmyprt.exe"
+ "CanonSolutionMenu"    "CNSLMAIN"    "CANON INC."    "c:\program files\canon\solutionmenu\cnslmain.exe"
+ "D-Link AirPlus G DWL-G510"    "D-Link Wireless LAN Monitor"    "D-Link"    "c:\program files\d-link\airplus g dwl-g510\airgcfg.exe"
+ "HTC Sync Loader"    "HTC UPCT Loader"    ""    "c:\program files\htc\htc sync 3.0\htcupctloader.exe"
+ "iTunesHelper"    "iTunesHelper"    "Apple Inc."    "c:\program files\itunes\ituneshelper.exe"
+ "NvCplDaemon"    "NVIDIA Display Properties Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvcpl.dll"
+ "NvMediaCenter"    "NVIDIA Media Center Library"    "NVIDIA Corporation"    "c:\windows\system32\nvmctray.dll"
+ "nwiz"    "NVIDIA nView Wizard, Version 135.95 "    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nview\nwiz.exe"
+ "PMBVolumeWatcher"    "Media Check Tool"    "Sony Corporation"    "c:\program files\sony\playmemories home\pmbvolumewatcher.exe"
+ "QuickTime Task"    "QuickTime Task"    "Apple Inc."    "c:\program files\quicktime\qttask.exe"
+ "SoundMan"    "Realtek Sound Manager"    "Realtek Semiconductor Corp."    "c:\windows\soundman.exe"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Sun Microsystems, Inc."    "c:\program files\common files\java\java update\jusched.exe"
+ "Trend Micro Client Framework"    "Trend Micro Client Session Agent Monitor"    "Trend Micro Inc."    "c:\program files\trend micro\uniclient\uifrmwrk\uiwatchdog.exe"
+ "Trend Micro Titanium"    "Trend Micro Client Main Console"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\uiwinmgr.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""
+ "Address Book 6"    "Outlook Express Setup Library"    "Microsoft Corporation"    "c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6"    "Outlook Express Setup Library"    "Microsoft Corporation"    "c:\program files\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""
+ "DAEMON Tools Lite"    ""    ""    "File not found: E:\DAEMON Tools Lite\DTLite.exe"
+ "Google Update"    "Google Installer"    "Google Inc."    "c:\documents and settings\jedtec\local settings\application data\google\update\googleupdate.exe"
+ "Spotify Web Helper"    "SpotifyWebHelper"    "Spotify Ltd"    "c:\documents and settings\jedtec\application data\spotify\data\spotifywebhelper.exe"
+ "Steam"    ""    ""    "File not found: C:\Program Files\Steam\Steam.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter"    ""    ""    ""
+ "text/xml"    "Microsoft Office XML MIME Filter"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler"    ""    ""    ""
+ "ms-help"    "Microsoft® Help Data Services Module"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\help\hxds.dll"
+ "tmbp"    "Trend Micro Browser Plug-In (IE)"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20002\7.5.1125\7.5.1125\tmbpie32.dll"
+ "tmpx"    "Trend Micro NSC IE Plug-In"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20004\2.5.1331\6.8.1094\tmieplg.dll"
+ "tmtb"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\toolbarie.dll"
+ "tmtbim"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\protoolbarimratingactivex.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components"    ""    ""    ""
+ "0"    ""    ""    "File not found: About:Home"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks"    ""    ""    ""
+ "SABShellExecuteHook Class"    "ShellExecuteHook"    "SuperAdBlocker.com"    "c:\program files\superantispyware\sasseh.dll"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn.dll"
+ "TmdshellExt Class"    "Trend Micro Client Shell Extension"    "Trend Micro Inc."    "c:\program files\trend micro\uniclient\uifrmwrk\tmdshell.dll"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn.dll"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers"    ""    ""    ""
+ "Nokia"    "Phone Browser"    "Nokia"    "c:\program files\nokia\nokia pc suite 6\phonebrowser.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "DropboxExt"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "00nView"    "NVIDIA Desktop Explorer, Version 135.95 "    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nview\nvshell.dll"
+ "NvCplDesktopContext"    "NVIDIA Display Properties Extension"    "NVIDIA Corporation"    "c:\windows\system32\nvcpl.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files\malwarebytes' anti-malware\mbamext.dll"
+ "TmdshellExt Class"    "Trend Micro Client Shell Extension"    "Trend Micro Inc."    "c:\program files\trend micro\uniclient\uifrmwrk\tmdshell.dll"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers"    ""    ""    ""
+ "DropboxExt1"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4"    "Dropbox Shell Extension"    "Dropbox, Inc."    "c:\documents and settings\jedtec\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""
+ "Adobe PDF Link Helper"    "Adobe PDF Helper for Internet Explorer"    "Adobe Systems Incorporated"    "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Canon Easy-WebPrint EX BHO"    "Easy-WebPrint EX"    "CANON INC."    "c:\program files\canon\easy-webprint ex\ewpexbho.dll"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files\java\jre7\bin\ssv.dll"
+ "TmBpIeBHO Class"    "Trend Micro Browser Plug-In (IE)"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20002\7.5.1125\7.5.1125\tmbpie32.dll"
+ "TmIEPlugInBHO Class"    "Trend Micro NSC IE Plug-In"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\module\20004\2.5.1331\6.8.1094\tmieplg.dll"
+ "TSToolbarBHO"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\toolbarie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar"    ""    ""    ""
+ "Canon Easy-WebPrint EX"    "Easy-WebPrint EX"    "CANON INC."    "c:\program files\canon\easy-webprint ex\ewpexhlp.dll"
+ "Trend Micro Toolbar"    "Trend Micro TrendSecure"    "Trend Micro Inc."    "c:\program files\trend micro\titanium\uiframework\toolbarie.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""
+ "Windows Messenger"    "Windows Messenger"    "Microsoft Corporation"    "c:\program files\messenger\msmsgs.exe"
"Task Scheduler"    ""    ""    ""
+ "Adobe Flash Player Updater.job"    "Adobe® Flash® Player Update Service 11.5 r502"    "Adobe Systems Incorporated"    "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "AppleSoftwareUpdate.job"    "Apple Software Update"    "Apple Inc."    "c:\program files\apple software update\softwareupdate.exe"
+ "Auslogics BoostSpeed Integrator Start On Jedtec Logon.job"    "Boost Speed"    "Auslogics"    "c:\program files\auslogics\auslogics boostspeed\boostspeed.exe"
+ "GoogleUpdateTaskMachineCore.job"    "Google Installer"    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA.job"    "Google Installer"    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskUserS-1-5-21-842925246-1123561945-1801674531-1008Core.job"    "Google Installer"    "Google Inc."    "c:\documents and settings\jedtec\local settings\application data\google\update\googleupdate.exe"
+ "GoogleUpdateTaskUserS-1-5-21-842925246-1123561945-1801674531-1008UA.job"    "Google Installer"    "Google Inc."    "c:\documents and settings\jedtec\local settings\application data\google\update\googleupdate.exe"
+ "RegistryBooster.job"    ""    ""    "File not found: C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe"
X "Yotc.job"    ""    ""    "File not found: C:\WINDOWS\system32\verifierf.dll"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "!SASCORE"    "SUPERAntiSpyware Core Service"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sascore.exe"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe"
+ "Amsp"    "Manages Trend Micro security modules"    "Trend Micro Inc."    "c:\program files\trend micro\amsp\coreserviceshell.exe"
+ "ANIWZCSdService"    "ANIWZCS2 Service Launcher"    "Wireless Service"    "c:\program files\ani\aniwzcs2 service\aniwzcsds.exe"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AppMgmt"    "Provides software installation services such as Assign, Publish, and Remove."    ""    "File not found: C:\WINDOWS\System32\appmgmts.dll"
+ "Bonjour Service"    "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"
+ "gupdate"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "gupdatem"    "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it."    "Google Inc."    "c:\program files\google\update\googleupdate.exe"
+ "IDriverT"    "Provides support for the Running Object Table for InstallShield Drivers"    "Macrovision Corporation"    "c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe"
+ "iPod Service"    "iPod hardware management services"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"
+ "JavaQuickStarterService"    "Prefetches JRE files for faster startup of Java applets and applications"    "Oracle Corporation"    "c:\program files\java\jre7\bin\jqs.exe"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "NVSvc"    "NVIDIA Driver Helper Service, Version 285.58"    "NVIDIA Corporation"    "c:\windows\system32\nvsvc32.exe"
+ "nvUpdatusService"    "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server."    "NVIDIA Corporation"    "c:\program files\nvidia corporation\nvidia updatus\daemonu.exe"
+ "odserv"    "Run portions of Microsoft Office Diagnostics."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\office12\odserv.exe"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "PassThru Service"    "Detect HTC Android device for internet pass-through function."    ""    "c:\program files\htc\internet pass-through\passthrusvr.exe"
+ "PMBDeviceInfoProvider"    "Device Information Provider"    "Sony Corporation"    "c:\program files\sony\playmemories home\pmbdeviceinfoprovider.exe"
+ "ServiceLayer"    "ServiceLayer Module"    "Nokia"    "c:\program files\pc connectivity solution\servicelayer.exe"
+ "Steam Client Service"    "Steam Client Service monitors and updates Steam content"    "Valve Corporation"    "c:\program files\common files\steam\steamservice.exe"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""
+ "AegisP"    "AEGIS Protocol (IEEE 802.1x) v3.5.3.0"    "Meetinghouse Data Communications"    "c:\windows\system32\drivers\aegisp.sys"
+ "ALCXWDM"    "Realtek AC'97 Audio Driver (WDM)"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\alcxwdm.sys"
+ "ANIO"    "ANIO (NT5) Driver "    "Alpha Networks Inc."    "c:\windows\system32\anio.sys"
+ "Changer"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "dtsoftbus01"    "DAEMON Tools Virtual Bus Driver"    "DT Soft Ltd"    "c:\windows\system32\drivers\dtsoftbus01.sys"
+ "esgiguard"    ""    ""    "File not found: C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "HTCAND32"    "ADB Interface"    "HTC, Corporation"    "c:\windows\system32\drivers\androidusb.sys"
+ "htcnprot"    "HTC NDIS Protocol Driver"    "Windows ® Win 7 DDK provider"    "c:\windows\system32\drivers\htcnprot.sys"
+ "i2omgmt"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\i2omgmt.sys"
+ "lbrtfdc"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "nmwcd"    "Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\ccdcmb.sys"
+ "nmwcdc"    "Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\ccdcmbo.sys"
+ "nmwcdnsu"    "Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\nmwcdnsu.sys"
+ "nmwcdnsuc"    "Nokia USB Phone Generic Client"    "Nokia"    "c:\windows\system32\drivers\nmwcdnsuc.sys"
+ "npf"    "npf.sys (NT5/6 x86) Kernel Driver"    "CACE Technologies, Inc."    "c:\windows\system32\drivers\npf.sys"
+ "nv"    "NVIDIA Windows XP Miniport Driver, Version 285.58 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nv4_mini.sys"
+ "pccsmcfd"    "PCCS Mode Change Filter Driver"    "Nokia"    "c:\windows\system32\drivers\pccsmcfd.sys"
+ "PCIDump"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PDCOMP"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "Ptilink"    "Direct Parallel Link Driver"    "Parallel Technologies, Inc."    "c:\windows\system32\drivers\ptilink.sys"
+ "rt2870"    "Ralink 802.11 USB Wireless Adapter Driver"    "Ralink Technology, Corp."    "c:\windows\system32\drivers\rt2870.sys"
+ "RT61"    "Ralink 802.11 Wireless Adapter Driver"    "Ralink Technology, Corp."    "c:\windows\system32\drivers\rt61.sys"
+ "RTL8023xp"    "Realtek 10/100/1000 NDIS 5.1 Driver                         "    "Realtek Semiconductor Corporation                           "    "c:\windows\system32\drivers\rtnicxp.sys"
+ "rtl8139"    "Realtek RTL8139 NDIS 5.0 Driver"    "Realtek Semiconductor Corporation"    "c:\windows\system32\drivers\rtl8139.sys"
+ "SASDIFSV"    ""    ""    "File not found: C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS"
+ "SASKUTIL"    ""    ""    "File not found: C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS"
+ "Secdrv"    "SafeDisc driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"
+ "sscdbus"    "SAMSUNG USB Composite Device Driver"    "MCCI"    "c:\windows\system32\drivers\sscdbus.sys"
+ "sscdmdfl"    "SAMSUNG CDMA Modem Filter"    "MCCI"    "c:\windows\system32\drivers\sscdmdfl.sys"
+ "sscdmdm"    "SAMSUNG CDMA Modem Drivers"    "MCCI"    "c:\windows\system32\drivers\sscdmdm.sys"
+ "tmactmon"    "Trend Micro Activity Monitor Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmactmon.sys"
+ "tmcomm"    "Trend Micro Common Engine Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmcomm.sys"
+ "TMEBC"    "Trend Micro Boot Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmebc32.sys"
+ "tmeext"    "Trend Micro Network Hook Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmeext.sys"
+ "tmevtmgr"    "Trend Micro Event Manager Driver"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmevtmgr.sys"
+ "tmnciesc"    "Trend Micro NCIE scanner of EagleEye hook"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmnciesc.sys"
+ "tmtdi"    "Trend Micro TDI Driver (i386-fre)"    "Trend Micro Inc."    "c:\windows\system32\drivers\tmtdi.sys"
+ "upperdev"    "Filter Driver for Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\usbser_lowerflt.sys"
+ "USBAAPL"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl.sys"
+ "UsbserFilt"    "Filter Driver for Nokia USB Phone Bus Driver"    "Nokia"    "c:\windows\system32\drivers\usbser_lowerfltj.sys"
+ "USBTINSP"    "tinspusb.sys"    "Texas Instruments"    "c:\windows\system32\drivers\tinspusb.sys"
+ "WDICA"    ""    ""    "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""
+ "msacm.iac2"    "Indeo® audio software"    "Intel Corporation"    "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"
+ "msacm.sl_anet"    "Audio codec for MS ACM"    "Sipro Lab Telecom Inc."    "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch"    "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50"    "DSP GROUP, INC."    "c:\windows\system32\tssoft32.acm"
+ "msacm.vorbis"    "Ogg Vorbis CODEC for MSACM"    "HMS http://hp.vector.co.jp/authors/VA012897/"    "c:\windows\system32\vorbis.acm"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\system32\iccvid.dll"
+ "vidc.iv31"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32"    ""    ""    "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
"HKLM\Software\Classes\Filter"    ""    ""    ""
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter"    "Intel Indeo® Video 4.5"    "Intel Corporation"    "c:\windows\system32\ir41_32.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""
+ "9x8Resize"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "AC3Filter"    "ac3filter"    ""    "c:\ipod-converter\filter\ac3filter.ax"
+ "ACELP.net Audio Decoder"    "ACELP.net Audio Decoder"    "Sipro Lab Telecom Inc."    "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Audio Destination"    "WAVDest Filter (Sample)"    "Microsoft Corporation"    "c:\program files\google\google earth\client\wavdest.ax"
+ "Bitmap"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Cucusoft DataExtractor 6 (2010.10)"    "Data Extractor"    "Cucusoft, Inc."    "c:\ipod-converter\dataext.dll"
+ "Cucusoft Transparent 7 (2010.10)"    ""    "Cucusoft Inc."    "c:\windows\system32\cdg.dll"
+ "Cucusoft Transparent A"    "Cucusoft Audio Transparent Filter"    ""    "c:\windows\system32\cdga.dll"
+ "CyberLink Video/SP Decoder (PDVD7)"    "CyberLink Video/SP Filter"    "CyberLink Corp."    "c:\windows\system32\clvsd.ax"
+ "Emuzed AAC/AAC+ Decoder TFilter"    "Emuzed AAC/AAC+ Decoder Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzaacdecfilter.dll"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter"    "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\ezdmp4muxfilter.dll"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter"    "Emuzed MP4/3GP2/AMR/QCP Source Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzmp4source.dll"
+ "Emuzed MP3 Source/Decoder Filter"    "Emuzed MP3 Source/Decoder Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzmp3sourcefilter.dll"
+ "Emuzed MP4SP/H263 Video Decoder-Filter"    "Emuzed MP4SP/H.263 Video Transform Filter"    "Emuzed Inc. "    "c:\program files\common files\nokia\codecs\emzdecmp4_h263.dll"
+ "ffdshow Audio Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow Audio Processor"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow raw video filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow subtitles filter"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "ffdshow Video Decoder"    "DirectShow and VFW video and audio decoding/encoding/processing filter"    ""    "c:\ipod-converter\filter\ffdshow.ax"
+ "FLV Source"    "FLV Splitter"    "Gabest"    "c:\ipod-converter\filter\flvsplitter.ax"
+ "FLV Splitter"    "FLV Splitter"    "Gabest"    "c:\ipod-converter\filter\flvsplitter.ax"
+ "FLV4 Video Decoder"    "FLV Splitter"    "Gabest"    "c:\ipod-converter\filter\flvsplitter.ax"
+ "Frame Eater"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Indeo® audio software"    "Indeo® audio software"    "Intel Corporation"    "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter"    "Intel Indeo® video 5.10"    "Intel Corporation"    "c:\windows\system32\ir50_32.dll"
+ "MP4 Source"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "MP4 Splitter"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "MPEG Layer-3 Decoder"    "MPEG Layer-3 Audio Decoder"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codecx.ax"
+ "MPEG4 Video Source"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "MPEG4 Video Splitter"    "MP4 Splitter"    "Gabest"    "c:\ipod-converter\filter\mp4splitter.ax"
+ "Nokia H264Dec HP/MP Filter"    "NokiaH264HPMPDecTFilter"    "Nokia"    "c:\program files\common files\nokia\codecs\nokiah264hpmpdectfilter.dll"
+ "Nokia MPEG4ASP Decoder Filter"    "MPEG4ASP H263 Decoder Filter"    "Nokia"    "c:\program files\common files\nokia\codecs\nokiadecmp4asp_h263.dll"
+ "QTSrc"    "CLQTSrc"    "Cyberlink"    "c:\ipod-converter\filter\quicktime.dll"
+ "Record Queue"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "ShotDetect"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WIA Stream Snapshot Filter"    "WIA Stream Snapshot Filter"    "MyCompanyName"    "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume"    "Movie Maker Filters"    "Microsoft Corporation"    "c:\program files\movie maker\wmm2filt.dll"
+ "XviD MPEG-4 Video Decoder"    ""    ""    "c:\windows\system32\xvid.ax"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"    ""    ""    ""
+ "Canon BJ Language Monitor iP4700 series"    "IJ Language Monitor"    "CANON INC."    "c:\windows\system32\cnmlma1.dll"
 


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 21 February 2013 - 09:37 PM

Press Windows+R key and type

 

tasks and click ok

 

Delete Yotc.job

 

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users