Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Big infection;no internet,still have Wifi,nothing in network connect, DeviMang


  • Please log in to reply
20 replies to this topic

#1 FinalStar14

FinalStar14

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 05 March 2013 - 03:49 AM

Hey, so I think I may be infected big time. At first, I had a redirect virus on my computer, and I couldn't get rid of it at all. I used Malwarebytes Anti-Malware, Malwarebytes Anti-Rootkit BETA, Windows Security Essentials, Microsoft Support Emergency Response Tool, SUPERAntiSpyware, and even TDSSKiller....nothing was fixed. But then it gets worse...

 

Now, my start bar reverted back to the standard silver boxy look, I have no internet connection on my desktop; every time I use Firefox, or Safari, I get "server not found"...."You are not connected to the Internet" and when I try IE, it keeps "encountering a problem and needs to close." and it won't stop until I shut it down via task manager.

 

I still have Wifi and I can surf the web fine on my laptop/iPhone. When I check network connections, there's NOTHING there, device manager, same thing. I tried pulling up help and support, it says, Help and Support can't open because a system service is not responding. Tried a system restore and all of my previous dates were wiped out. Completely out of options, need some serious, crucial help!!



BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 07 March 2013 - 12:02 AM

Can you browse in safemode with networking?

 

Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.



#3 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 07 March 2013 - 10:00 AM

I am unable to browse online in "safe mode with networking". The first set of information is result.txt from MiniToolbox.

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Chris (administrator) on 07-03-2013 at 09:49:33
Running from "C:\Documents and Settings\Chris\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration

 

Could not flush the DNS Resolver Cache: Function failed during execution.

 


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 
127.0.0.1       localhost

========================= IP Configuration: ================================


WARNING: Could not obtain host information from machine: [IVORY]. Some commands may not be available.
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

 

# ----------------------------------
# Interface IP Configuration        
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration

 


Windows IP Configuration

 

        Host Name . . . . . . . . . . . . : Ivory

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

 

Ethernet adapter Local Area Connection:

 

        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

        Physical Address. . . . . . . . . : 00-12-3F-75-C3-42

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 0.0.0.0

        Subnet Mask . . . . . . . . . . . : 0.0.0.0

        Default Gateway . . . . . . . . . :

        DHCP Server . . . . . . . . . . . : 192.168.1.1

        DNS Servers . . . . . . . . . . . : 167.206.254.1

                                            167.206.254.2

        NetBIOS over Tcpip. . . . . . . . : Disabled

Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host google.com. Please check the name and try again.

Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.

 

Pinging 127.0.0.1 with 32 bytes of data:

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 12 3f 75 c3 42 ...... Intel® PRO/100 VE Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
  255.255.255.255  255.255.255.255  255.255.255.255               2   1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/04/2013 07:33:52 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:33:43 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:33:34 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:33:26 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:32:45 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:32:31 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:32:24 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:32:17 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]

Error: (03/04/2013 07:32:11 PM) (Source: Application Error) (User: )
Description: Fault bucket -848277254.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (03/04/2013 07:32:10 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module 50c2d1393cb3f.ocx, version 1.0.0.2, fault address 0x00006aa8.
Processing media-specific event for [iexplore.exe!ws!]


System errors:
=============
Error: (03/04/2013 07:28:04 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (03/04/2013 07:27:48 PM) (Source: Service Control Manager) (User: )
Description: The Media Center Extender Service service depends on the SSDP Discovery Service service which failed to start because of the following error:
%%1058

Error: (03/04/2013 07:23:05 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (03/04/2013 07:22:38 PM) (Source: Service Control Manager) (User: )
Description: The Media Center Extender Service service depends on the SSDP Discovery Service service which failed to start because of the following error:
%%1058

Error: (03/04/2013 07:20:39 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (03/04/2013 07:20:33 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error:
%%1056

Error: (03/04/2013 07:20:33 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (03/04/2013 07:20:27 PM) (Source: Service Control Manager) (User: )
Description: The Remote Registry service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1000 milliseconds: Restart the service.

Error: (03/04/2013 07:20:27 PM) (Source: Service Control Manager) (User: )
Description: The TCP/IP NetBIOS Helper service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/04/2013 07:20:25 PM) (Source: Service Control Manager) (User: )
Description: The Terminal Services service terminated unexpectedly.  It has done this 2 time(s).


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.171)
Adobe Flash Player 11 Plugin (Version: 11.6.602.171)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Adobe Shockwave Player 11.5 (Version: 11.5)
Advertising Center (Version: 0.0.0.1)
AIM 7
AOL Coach Version 2.0(Build:20041026.5 en)
AOL Uninstaller (Choose which Products to Remove)
AOLIcon (Version: 1.00.0000)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
ArtistScope Plugin IE 42 (Version: 4.2.0.0)
ASPCA TriMini Reminder by We-Care.com v5.0.0.1 (Version: 5.0.0.1)
ATI Control Panel (Version: 6.14.10.5150)
ATI Display Driver (Version: 8.13-050414a2-023179C-Dell)
AutoUpdate (Version: 1.1)
BitTorrent (Version: 7.6.1)
Bonjour (Version: 3.0.0.10)
Brother MFL-Pro Suite (Version: 1.00.000)
Canon Camera Access Library (Version: 8.4.0.1)
Canon Camera Support Core Library (Version: 7.3.1.6)
Canon G.726 WMP-Decoder (Version: 1.1.0.4)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (Version: 1.7.2.11)
Canon Internet Library for ZoomBrowser EX (Version: 1.6.3.9)
Canon MOV Decoder (Version: 1.5.0.7)
Canon MOV Encoder (Version: 1.3.1.3)
Canon MovieEdit Task for ZoomBrowser EX (Version: 3.4.1.9)
Canon RAW Image Task for ZoomBrowser EX (Version: 0.9.3.9)
Canon Utilities CameraWindow (Version: 7.0.0.8)
Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX (Version: 5.4.5.17)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.4.1.15)
Canon Utilities Digital Photo Professional 3.8 (Version: 3.8.1.0)
Canon Utilities EOS Utility (Version: 2.8.1.0)
Canon Utilities MyCamera (Version: 6.4.0.5)
Canon Utilities Original Data Security Tools (Version: 1.8.0.1)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.7.0.0)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.7.1.9)
Canon Utilities WFT Utility (Version: 3.5.1.1)
Canon Utilities ZoomBrowser EX (Version: 6.5.1.15)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.3.0.4)
CCleaner (Version: 3.02)
Cisco Network Magic (Version: 5.5.09195.0)
CodeBlocks (Version: 10.05)
CourseSmart Bookshelf (Version: 5.02.0040)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell System Restore (Version: 2.00.0000)
DivX Author 1.5 (Version: 1.5.0)
DolbyFiles (Version: 2.0)
Download and Sa (Version: )
Form Fill (Windows Live Toolbar) (Version: 03.01.0146)
Free RAR Extract Frog (Version: 2.50)
Google Chrome (Version: 25.0.1364.97)
Google Earth Plug-in (Version: 6.1.0.5001)
Google Earth Pro (Version: 3.0.0762)
Google Update Helper (Version: 1.3.21.135)
ImagXpress (Version: 7.0.74.0)
iMesh (Version: 10.0.0.94309)
Intel Matrix Storage Manager
Intel® 537EP V9x DF PCI Modem
Intel® PRO Network Connections Software v9.2.4.11
Intel® PROSafe for Wired Connections (Version: 8.00.0005)
Intel® PROSafe for Wired Connections (Version: 99.99.9999)
Internet Explorer Default Page (Version: 1.00.03)
iPhone Configuration Utility (Version: 2.1.0.163)
Itibiti RTC (Version: 0.0.1)
iTunes (Version: 11.0.1.12)
Java 2 Runtime Environment, SE v1.4.2_03 (Version: 1.4.2_03)
Java 7 Update 15 (Version: 7.0.150)
Java Auto Updater (Version: 2.1.9.0)
Java SE Development Kit 7 Update 15 (Version: 1.7.0.150)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
jGRASP (Version: 1.8.6)
Junk Mail filter update (Version: 14.0.8117.416)
Macromedia Flash Player (Version: 7.0.19.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Map Button (Windows Live Toolbar) (Version: 03.01.0146)
Menu Templates - Starter Kit (Version: 9.4.2.0)
MetaFrame Presentation Server Web Client for Win32
Microsoft .NET Framework 1.0 Security Update (KB2742607)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework SDK (English) 1.1 (Version: 1.1.4322)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (SOPHOS) (Version: 9.4.5000.00)
Microsoft SQL Server 2005 Tools Express Edition (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual Basic 6.0 Working Model Edition
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual J# .NET Redistributable Package 1.1 (Version: 1.1.4322)
Microsoft Web Publishing Wizard 1.53
Microsoft Works 2000 (Version: 1.0.0.0000)
Microsoft Works 2000 Setup Launcher
MobileMe Control Panel (Version: 3.1.6.0)
Modem Event Monitor
Modem Helper (Version: 2.40)
Modem On Hold (Version: 1.12)
Movie Templates - Starter Kit (Version: 9.4.2.0)
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB925672) (Version: 4.20.9839.0)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)
Nero 9 Trial
Nero BurnRights (Version: 3.4.10.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero CoverDesigner (Version: 4.4.8.100)
Nero DiscSpeed (Version: 5.4.10.100)
Nero DriveSpeed (Version: 4.4.10.100)
Nero InfoTool (Version: 6.4.10.100)
Nero Installer (Version: 4.4.9.0)
Nero Live (Version: 1.4.40.0)
Nero PhotoSnap (Version: 1.53.2.0)
Nero Recode (Version: 4.4.22.0)
Nero Rescue Agent (Version: 2.4.11.100)
Nero ShowTime (Version: 5.4.13.100)
Nero StartSmart (Version: 9.4.11.100)
Nero Vision (Version: 6.4.9.100)
Nero WaveEditor (Version: 5.4.23.0)
NeroBurningROM (Version: 9.4.13.100)
NeroExpress (Version: 9.4.13.100)
NeroLiveGadget (Version: 1.2.7.100)
neroxml (Version: 1.0.0)
NetBeans IDE 7.2.1 (Version: 7.2.1)
Network Magic (Version: 5.5.9195.0)
Notepad++ (Version: 6.3)
OneCare Advisor (Windows Live Toolbar) (Version: 03.01.0072)
P2P Tv Plugin
PaperPort (Version: 9.02.0814)
PC Connectivity Solution (Version: 7.22.7.1)
Picasa 3 (Version: 3.8)
Popup Blocker (Windows Live Toolbar) (Version: 03.01.0146)
Print Spooler Fix Utility (Version: 1.0.0)
Pure Networks Platform (Version: 11.2.09195.1)
QuickTime (Version: 7.69.80.9)
Safari (Version: 5.33.21.1)
Scrabble Complete
Scratch (Version: 1.3.1.0)
Segoe UI (Version: 14.0.4327.805)
Smart Menus (Windows Live Toolbar) (Version: 03.01.0146)
SolSuite (Version: SolSuite 2002)
Sonic Encoders (Version: 1.00)
Sony USB Driver
Sound Blaster Live! 24-bit
SoundTrax (Version: 4.4.23.0)
SSH Secure Shell
SUPERAntiSpyware (Version: 4.50.1002)
Tweaking.com - Windows Repair (All in One) (Version: 1.9.12)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2767848) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Viewpoint Media Player
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
WD Backup
WD Diagnostics (Version: 1.09.0002)
WD Firewire HID Driver (Version: 1.04.0001)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.7.0018.5)
Windows Genuine Advantage v1.3.0254.0 (Version: 1.3.0254.0)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20061107.210142)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Outlook Toolbar (Windows Live Toolbar) (Version: 03.01.0146)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Toolbar (Version: 14.0.8117.416)
Windows Live Toolbar Extension (Windows Live Toolbar) (Version: 03.01.0146)
Windows Live Toolbar Feed Detector (Windows Live Toolbar) (Version: 03.01.0146)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Format 11 runtime
Windows Media Player 10 (Version: 9.00.3636)
Windows Media Player 11
Windows Search 4.0 (Version: 04.00.6001.503)
Windows XP Media Center Edition 2005 KB895198
Windows XP Service Pack 3 (Version: 20080414.031525)
Word in Works Suite add-in (Version: 1.0.0.0000)
Xbox 360 Controller for Windows
Xvid Video Codec (Version: 1.3.2)

=========================
Windows Management Instrumentation service is not running. Could not scan devices
=========================


========================= Memory info: ===================================

Percentage of memory in use: 8%
Total physical RAM: 3582.09 MB
Available physical RAM: 3260.17 MB
Total Pagefile: 4958.61 MB
Available Pagefile: 4884.37 MB
Total Virtual: 2047.88 MB
Available Virtual: 1978.91 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:144.31 GB) (Free:6.98 GB) NTFS
6 Drive g: (TOBAL FLASH) (Removable) (Total:3.73 GB) (Free:3.14 GB) FAT32

========================= Users: ========================================

User accounts for \\

Administrator            ASPNET                   Beverly                 
Chris                    Guest                    HelpAssistant           
Junior                   SUPPORT_388945a0         Terrence                
Travis                  


**** End of log ****

 

 

 

The next set of information is the FSS.txt from Service Scanner.

 

Farbar Service Scanner Version: 03-03-2013
Ran by Chris (administrator) on 07-03-2013 at 09:54:35
Running from "C:\Documents and Settings\Chris\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Network
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is set to Disabled. The default start type is Auto.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is set to Disabled. The default start type is Auto.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.


Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo IP returned error. Yahoo IP is unreachable
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============
sharedaccess Service is not running. Checking service configuration:
The start type of sharedaccess service is OK.
The ImagePath of sharedaccess service is OK.
The ServiceDll of sharedaccess service is OK.

winmgmt Service is not running. Checking service configuration:
The start type of winmgmt service is set to Disabled. The default start type is Auto.
The ImagePath of winmgmt service is OK.
The ServiceDll of winmgmt service is OK.


Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is set to Disabled. The default start type is Auto.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.

winmgmt Service is not running. Checking service configuration:
The start type of winmgmt service is set to Disabled. The default start type is Auto.
The ImagePath of winmgmt service is OK.
The ServiceDll of winmgmt service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Disabled. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\WINDOWS\system32\wuauserv.dll".

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Disabled. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is set to Disabled. The default start type is 3.
The ImagePath of EventSystem: "C:\WINDOWS\system32\svchost.exe -k netsvcs".
The ServiceDll of EventSystem: "C:\WINDOWS\system32\es.dll".


Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll
[2004-08-19 16:04] - [2008-04-13 19:12] - 0006656 ____A (Microsoft Corporation) 35321FB577CDC98CE3EB3A3EB9E4610A

C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe
[2004-08-19 15:49] - [2009-02-06 06:11] - 0110592 ____A (Microsoft Corporation) 65DF52F5B8B6E9BBD183505225C37315


Extra List:
=======
Gpc(6) IPSec(4) NetBT(5) PSched(7) Tcpip(3)
0x09000000040000000100000002000000030000005600000005000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****

 

 

 

Thank you very much for your assistance!!



#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 07 March 2013 - 11:02 AM

Press Windows+R key and type

 

msconfig and click ok

 

Click on services tab

 

Can you click on ENABLE ALL option ?

 

Press WIndows+R key and type

 

services.msc and click ok

 

Right click on DNS client and DHCP services

 

Select properties.Change the startup type to automatic and start them.

 

Do you receive any errors?



#5 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 07 March 2013 - 11:19 AM

I am able to click "enable all." I switched it on and it prompted me to restart. After restarting, I went to the services screen and both the DNS client and the DHCP client. Their statuses are "started" and both are on "automatic". I received no errors. Still running in safe mode with networking, and I am able to browse online. What should be my next step?



#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 07 March 2013 - 11:21 AM

Good work.

 

    

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters


    tds2.jpg

  • Check Loaded Modules  and Detect TDLFS file systemDo not check Verify file digital signatures (even though it is checked in the example)
  • If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now


    2012081514h0118.png

  • Click Start Scan and allow the scan process to run

  • If threats are detected select Skip for all of them unless I instruct you otherwise
  • Click Continue


    tds6.jpg

  • Click Reboot computer
  • Please post the contents of  TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)in your reply


===================================================


aswMBR

--------------------

  • Download aswMBR and save it to your desktop.
  • Please disable your real time protection of any Antivirus, Antispyware or Antimalware programs temporarily. They will interfere and may cause unexpected results.
  • If you need help to disable your protection programs see here and here.
  • Double click the aswMBR.exe file to run it. Please allow when you are asked to download AVAST antivirus engine defs.
  • Wait until the AV update is done, then click on the Scan button to start. The program will launch a scan.


    aswMBR1.png
  • When done, you will see Scan finished successfully. Please click on Save log and save the file to your desktop.


    aswMBR2.png
  • Please post the contents of the log in your next reply.

NOTE:  aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.


===================================================


ESET Online Scanner

--------------------

I'd like us to scan your machine with ESET OnlineScan  This process may may take several hours, that is normal

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.

    esetsmartinstaller_enu.png

  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:

    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply.   Note:  If no malware was found you will not get a log.
  • Click the Back button.
  • Click the Finish button.


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • TDSSKiller log
  • aswMBR log
  • ESET results


Edited by narenxp, 07 March 2013 - 11:22 AM.


#7 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 07 March 2013 - 01:49 PM

I am running the programs in safe mode with networking. I ran TDSSKiller and there were no infections. I tried to run ASW three times times: the first time is gave me the blue screen crash, and the 2nd and 3rd time it froze at one of the steps for about an hour until I closed it. Should I move onto the next step or use a different program? I am posting the log from TDSS in my next reply



#8 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 07 March 2013 - 01:54 PM

I closed ASW, but saved a log from it. I will post it in this reply along with the log from TDSS. Maybe you can figure something out as to why it keeps freezing on me :(.

 

TDSSKiller

11:30:16.0826 1180  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:30:17.0530 1180  ============================================================
11:30:17.0530 1180  Current date / time: 2013/03/07 11:30:17.0530
11:30:17.0530 1180  SystemInfo:
11:30:17.0530 1180  
11:30:17.0530 1180  OS Version: 5.1.2600 ServicePack: 3.0
11:30:17.0530 1180  Product type: Workstation
11:30:17.0608 1180  ComputerName: IVORY
11:30:17.0608 1180  UserName: Chris
11:30:17.0608 1180  Windows directory: C:\WINDOWS
11:30:17.0608 1180  System windows directory: C:\WINDOWS
11:30:17.0608 1180  Processor architecture: Intel x86
11:30:17.0608 1180  Number of processors: 2
11:30:17.0608 1180  Page size: 0x1000
11:30:17.0608 1180  Boot type: Normal boot
11:30:17.0608 1180  ============================================================
11:30:20.0248 1180  BG loaded
11:30:20.0936 1180  Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:30:21.0123 1180  ============================================================
11:30:21.0123 1180  \Device\Harddisk0\DR0:
11:30:21.0123 1180  MBR partitions:
11:30:21.0123 1180  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B747, BlocksNum 0x1209CE16
11:30:21.0123 1180  ============================================================
11:30:21.0592 1180  C: <-> \Device\Harddisk0\DR0\Partition1
11:30:21.0592 1180  ============================================================
11:30:21.0592 1180  Initialize success
11:30:21.0592 1180  ============================================================
11:33:47.0916 3336  ============================================================
11:33:47.0916 3336  Scan started
11:33:47.0916 3336  Mode: Manual; TDLFS;
11:33:47.0916 3336  ============================================================
11:33:50.0057 3336  ================ Scan system memory ========================
11:33:50.0057 3336  System memory - ok
11:33:50.0057 3336  ================ Scan services =============================
11:33:50.0463 3336  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
11:33:50.0463 3336  !SASCORE - ok
11:33:53.0729 3336  Abiosdsk - ok
11:33:53.0760 3336  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
11:33:53.0760 3336  abp480n5 - ok
11:33:53.0822 3336  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:33:53.0854 3336  ACPI - ok
11:33:53.0932 3336  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
11:33:53.0932 3336  ACPIEC - ok
11:33:54.0057 3336  [ 9942DC4CC265CDA00486504444EF521D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:33:54.0197 3336  AdobeFlashPlayerUpdateSvc - ok
11:33:54.0260 3336  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
11:33:54.0275 3336  adpu160m - ok
11:33:54.0307 3336  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
11:33:54.0307 3336  aec - ok
11:33:54.0369 3336  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
11:33:54.0369 3336  AFD - ok
11:33:54.0447 3336  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
11:33:54.0447 3336  agp440 - ok
11:33:54.0479 3336  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
11:33:54.0479 3336  agpCPQ - ok
11:33:54.0557 3336  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
11:33:54.0557 3336  Aha154x - ok
11:33:54.0604 3336  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
11:33:54.0604 3336  aic78u2 - ok
11:33:54.0619 3336  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
11:33:54.0619 3336  aic78xx - ok
11:33:54.0666 3336  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
11:33:54.0713 3336  Alerter - ok
11:33:54.0744 3336  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
11:33:54.0744 3336  ALG - ok
11:33:54.0775 3336  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
11:33:54.0775 3336  AliIde - ok
11:33:54.0838 3336  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
11:33:54.0838 3336  alim1541 - ok
11:33:54.0854 3336  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
11:33:54.0854 3336  amdagp - ok
11:33:54.0885 3336  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
11:33:54.0885 3336  amsint - ok
11:33:55.0385 3336  [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS         C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
11:33:55.0385 3336  AOL ACS - ok
11:33:55.0588 3336  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:33:55.0588 3336  Apple Mobile Device - ok
11:33:55.0791 3336  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
11:33:55.0838 3336  AppMgmt - ok
11:33:55.0916 3336  [ 62D318E9A0C8FC9B780008E724283707 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
11:33:55.0916 3336  asc - ok
11:33:55.0932 3336  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
11:33:55.0932 3336  asc3350p - ok
11:33:55.0963 3336  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
11:33:55.0963 3336  asc3550 - ok
11:33:56.0010 3336  [ 54AB078660E536DA72B21A27F56B035B ] Aspi32          C:\WINDOWS\system32\drivers\aspi32.sys
11:33:56.0010 3336  Aspi32 - ok
11:33:56.0338 3336  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
11:33:56.0525 3336  aspnet_state - ok
11:33:56.0572 3336  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:33:56.0572 3336  AsyncMac - ok
11:33:56.0604 3336  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
11:33:56.0635 3336  atapi - ok
11:33:56.0635 3336  Atdisk - ok
11:33:56.0697 3336  [ 2C450E1E3442F3B776B301A67E8C47F0 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
11:33:56.0713 3336  Ati HotKey Poller - ok
11:33:56.0932 3336  [ B8142104502F794689C1C0BCBFB53B98 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:33:56.0932 3336  ati2mtag - ok
11:33:56.0994 3336  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:33:56.0994 3336  Atmarpc - ok
11:33:57.0025 3336  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
11:33:57.0025 3336  AudioSrv - ok
11:33:57.0088 3336  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
11:33:57.0088 3336  audstub - ok
11:33:57.0166 3336  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
11:33:57.0166 3336  Beep - ok
11:33:57.0354 3336  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
11:33:57.0807 3336  BITS - ok
11:33:57.0807 3336  BlueletAudio - ok
11:33:57.0822 3336  BlueletSCOAudio - ok
11:33:58.0057 3336  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:33:58.0057 3336  Bonjour Service - ok
11:33:58.0135 3336  [ BB192385661DAF7F3D48B586F6E1D166 ] brmfrmps        C:\WINDOWS\system32\Brmfrmps.exe
11:33:58.0135 3336  brmfrmps - ok
11:33:58.0182 3336  [ D3FACB34FFF5DB91ADB70987838F8BA7 ] Brother XP spl Service C:\WINDOWS\system32\brsvc01a.exe
11:33:58.0197 3336  Brother XP spl Service - ok
11:33:58.0244 3336  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
11:33:58.0244 3336  Browser - ok
11:33:58.0307 3336  [ 92A964547B96D697E5E9ED43B4297F5A ] BrScnUsb        C:\WINDOWS\system32\Drivers\BrScnUsb.sys
11:33:58.0307 3336  BrScnUsb - ok
11:33:58.0400 3336  [ 9F80879913DC2712FD0C4D734E3F519B ] BrSerIb         C:\WINDOWS\system32\DRIVERS\BrSerIb.sys
11:33:58.0400 3336  BrSerIb - ok
11:33:58.0463 3336  [ B67512DA42C0C90BF236D5485226C1C7 ] BrUsbSIb        C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys
11:33:58.0463 3336  BrUsbSIb - ok
11:33:58.0463 3336  BT - ok
11:33:58.0463 3336  Btcsrusb - ok
11:33:58.0478 3336  BTHidEnum - ok
11:33:58.0478 3336  BTHidMgr - ok
11:33:58.0494 3336  bvrp_pci - ok
11:33:58.0557 3336  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
11:33:58.0557 3336  cbidf - ok
11:33:58.0572 3336  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
11:33:58.0572 3336  cbidf2k - ok
11:33:58.0775 3336  [ 8EF654045E518AC00E52E7A1E2D3AD70 ] CCALib8         C:\Program Files\Canon\CAL\CALMAIN.exe
11:33:58.0822 3336  CCALib8 - ok
11:33:58.0885 3336  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
11:33:58.0885 3336  cd20xrnt - ok
11:33:58.0994 3336  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
11:33:58.0994 3336  Cdaudio - ok
11:33:59.0025 3336  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
11:33:59.0041 3336  Cdfs - ok
11:33:59.0088 3336  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:33:59.0088 3336  Cdrom - ok
11:33:59.0088 3336  Changer - ok
11:33:59.0135 3336  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
11:33:59.0182 3336  CiSvc - ok
11:33:59.0260 3336  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
11:33:59.0291 3336  ClipSrv - ok
11:33:59.0338 3336  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:34:00.0119 3336  clr_optimization_v2.0.50727_32 - ok
11:34:00.0166 3336  [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
11:34:00.0166 3336  CmdIde - ok
11:34:00.0166 3336  COMSysApp - ok
11:34:00.0197 3336  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
11:34:00.0197 3336  Cpqarray - ok
11:34:00.0291 3336  [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
11:34:00.0307 3336  Creative Service for CDROM Access - ok
11:34:00.0338 3336  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
11:34:00.0338 3336  CryptSvc - ok
11:34:00.0385 3336  [ AEFB8558199BD5212B268B09BFA1D71A ] CSHelper        C:\WINDOWS\system32\CSHelper.exe
11:34:00.0385 3336  CSHelper - ok
11:34:00.0494 3336  [ B459AE4AFCA570088ADDDBE55EABBC92 ] ctsfm2k         C:\WINDOWS\system32\DRIVERS\ctsfm2k.sys
11:34:00.0494 3336  ctsfm2k - ok
11:34:00.0588 3336  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
11:34:00.0588 3336  dac2w2k - ok
11:34:00.0635 3336  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
11:34:00.0635 3336  dac960nt - ok
11:34:00.0713 3336  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
11:34:00.0713 3336  DcomLaunch - ok
11:34:00.0760 3336  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
11:34:00.0760 3336  Dhcp - ok
11:34:00.0791 3336  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
11:34:00.0791 3336  Disk - ok
11:34:00.0791 3336  dmadmin - ok
11:34:01.0025 3336  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
11:34:01.0197 3336  dmboot - ok
11:34:01.0260 3336  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
11:34:01.0275 3336  dmio - ok
11:34:01.0307 3336  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
11:34:01.0307 3336  dmload - ok
11:34:01.0338 3336  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
11:34:01.0353 3336  dmserver - ok
11:34:01.0369 3336  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
11:34:01.0369 3336  DMusic - ok
11:34:01.0400 3336  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
11:34:01.0400 3336  Dnscache - ok
11:34:01.0478 3336  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
11:34:01.0478 3336  Dot3svc - ok
11:34:01.0510 3336  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
11:34:01.0510 3336  dpti2o - ok
11:34:01.0541 3336  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
11:34:01.0557 3336  drmkaud - ok
11:34:01.0588 3336  [ 95974E66D3DE4951D29E28E8BC0B644C ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
11:34:01.0588 3336  E100B - ok
11:34:01.0619 3336  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
11:34:01.0619 3336  EapHost - ok
11:34:01.0666 3336  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
11:34:01.0666 3336  ehRecvr - ok
11:34:01.0760 3336  [ A53243709439AC2A4C216B817F8D7411 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
11:34:01.0760 3336  ehSched - ok
11:34:01.0838 3336  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
11:34:01.0838 3336  ERSvc - ok
11:34:01.0916 3336  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
11:34:01.0932 3336  Eventlog - ok
11:34:01.0963 3336  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
11:34:01.0963 3336  EventSystem - ok
11:34:01.0978 3336  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
11:34:01.0978 3336  Fastfat - ok
11:34:02.0010 3336  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
11:34:02.0010 3336  FastUserSwitchingCompatibility - ok
11:34:02.0041 3336  [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax             C:\WINDOWS\system32\fxssvc.exe
11:34:02.0041 3336  Fax - ok
11:34:02.0072 3336  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
11:34:02.0088 3336  Fdc - ok
11:34:02.0103 3336  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
11:34:02.0103 3336  Fips - ok
11:34:02.0150 3336  [ D778107D7C2A19D7E7A884A9F0D79581 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:34:02.0385 3336  FLEXnet Licensing Service - ok
11:34:02.0400 3336  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:34:02.0416 3336  Flpydisk - ok
11:34:02.0463 3336  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
11:34:02.0463 3336  FltMgr - ok
11:34:02.0525 3336  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
11:34:02.0525 3336  FontCache3.0.0.0 - ok
11:34:02.0541 3336  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:34:02.0541 3336  Fs_Rec - ok
11:34:02.0588 3336  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:34:02.0588 3336  Ftdisk - ok
11:34:02.0619 3336  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
11:34:02.0619 3336  GEARAspiWDM - ok
11:34:02.0666 3336  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:34:02.0666 3336  Gpc - ok
11:34:02.0760 3336  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
11:34:02.0760 3336  gupdate - ok
11:34:02.0760 3336  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
11:34:02.0760 3336  gupdatem - ok
11:34:02.0885 3336  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:34:02.0916 3336  gusvc - ok
11:34:02.0994 3336  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
11:34:02.0994 3336  helpsvc - ok
11:34:03.0057 3336  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
11:34:03.0057 3336  HidServ - ok
11:34:03.0088 3336  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:34:03.0103 3336  HidUsb - ok
11:34:03.0182 3336  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
11:34:03.0197 3336  hkmsvc - ok
11:34:03.0228 3336  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
11:34:03.0228 3336  hpn - ok
11:34:03.0291 3336  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
11:34:03.0291 3336  HTTP - ok
11:34:03.0338 3336  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
11:34:03.0353 3336  HTTPFilter - ok
11:34:03.0369 3336  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
11:34:03.0369 3336  i2omgmt - ok
11:34:03.0400 3336  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
11:34:03.0400 3336  i2omp - ok
11:34:03.0478 3336  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:34:03.0478 3336  i8042prt - ok
11:34:03.0603 3336  [ 5400C14134E7D6A0069C46FEBCB2DDDF ] IAANTMon        C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
11:34:03.0603 3336  IAANTMon - ok
11:34:03.0650 3336  [ D593517879E65167DF35F6015814AC59 ] iastor          C:\WINDOWS\system32\drivers\iastor.sys
11:34:03.0666 3336  iastor - ok
11:34:03.0760 3336  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:34:03.0775 3336  IDriverT - ok
11:34:03.0916 3336  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:34:03.0978 3336  idsvc - ok
11:34:03.0994 3336  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
11:34:03.0994 3336  Imapi - ok
11:34:04.0041 3336  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
11:34:04.0041 3336  ImapiService - ok
11:34:04.0072 3336  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
11:34:04.0072 3336  ini910u - ok
11:34:04.0150 3336  [ 7509C548400F4C9E0211E3F6E66ABBE6 ] IntelC51        C:\WINDOWS\system32\DRIVERS\IntelC51.sys
11:34:04.0166 3336  IntelC51 - ok
11:34:04.0228 3336  [ 9584FFDD41D37F2C239681D0DAC2513E ] IntelC52        C:\WINDOWS\system32\DRIVERS\IntelC52.sys
11:34:04.0244 3336  IntelC52 - ok
11:34:04.0260 3336  [ CF0B937710CEC6EF39416EDECD803CBB ] IntelC53        C:\WINDOWS\system32\DRIVERS\IntelC53.sys
11:34:04.0260 3336  IntelC53 - ok
11:34:04.0275 3336  [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
11:34:04.0291 3336  IntelIde - ok
11:34:04.0322 3336  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:34:04.0322 3336  intelppm - ok
11:34:04.0400 3336  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
11:34:04.0431 3336  Ip6Fw - ok
11:34:04.0478 3336  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:34:04.0510 3336  IpFilterDriver - ok
11:34:04.0541 3336  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:34:04.0541 3336  IpInIp - ok
11:34:04.0635 3336  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:34:04.0635 3336  IpNat - ok
11:34:04.0728 3336  [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
11:34:04.0744 3336  iPod Service - ok
11:34:04.0775 3336  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:34:04.0775 3336  IPSec - ok
11:34:04.0806 3336  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
11:34:04.0806 3336  IRENUM - ok
11:34:04.0838 3336  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:34:04.0838 3336  isapnp - ok
11:34:05.0072 3336  [ 1758AF653723679E3746FC7DDD93C69B ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
11:34:05.0072 3336  JavaQuickStarterService - ok
11:34:05.0119 3336  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:34:05.0119 3336  Kbdclass - ok
11:34:05.0135 3336  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:34:05.0135 3336  kbdhid - ok
11:34:05.0150 3336  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
11:34:05.0150 3336  kmixer - ok
11:34:05.0181 3336  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
11:34:05.0197 3336  KSecDD - ok
11:34:05.0244 3336  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
11:34:05.0244 3336  lanmanserver - ok
11:34:05.0322 3336  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
11:34:05.0322 3336  lanmanworkstation - ok
11:34:05.0338 3336  Lavasoft Kernexplorer - ok
11:34:05.0338 3336  Lbd - ok
11:34:05.0353 3336  lbrtfdc - ok
11:34:05.0416 3336  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
11:34:05.0416 3336  LmHosts - ok
11:34:05.0478 3336  [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
11:34:05.0541 3336  McrdSvc - ok
11:34:05.0728 3336  [ E57F1ED6244249AB7C4C306722B05148 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
11:34:05.0744 3336  MDM - ok
11:34:05.0791 3336  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
11:34:05.0822 3336  Messenger - ok
11:34:05.0916 3336  [ B7521F69C0A9B29D356157229376FB21 ] MHN             C:\WINDOWS\System32\mhn.dll
11:34:06.0056 3336  MHN - ok
11:34:06.0166 3336  [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
11:34:06.0166 3336  MHNDRV - ok
11:34:06.0650 3336  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
11:34:06.0728 3336  Microsoft Office Groove Audit Service - ok
11:34:06.0775 3336  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
11:34:06.0775 3336  mnmdd - ok
11:34:06.0822 3336  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
11:34:06.0838 3336  mnmsrvc - ok
11:34:06.0916 3336  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
11:34:06.0916 3336  Modem - ok
11:34:07.0010 3336  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
11:34:07.0010 3336  MODEMCSA - ok
11:34:07.0135 3336  [ 59B8B11FF70728EEC60E72131C58B716 ] mohfilt         C:\WINDOWS\system32\DRIVERS\mohfilt.sys
11:34:07.0135 3336  mohfilt - ok
11:34:07.0166 3336  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:34:07.0166 3336  Mouclass - ok
11:34:07.0588 3336  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:34:07.0603 3336  mouhid - ok
11:34:07.0697 3336  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
11:34:07.0697 3336  MountMgr - ok
11:34:07.0853 3336  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:34:08.0056 3336  MozillaMaintenance - ok
11:34:08.0244 3336  [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
11:34:08.0275 3336  MpFilter - ok
11:34:08.0306 3336  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
11:34:08.0306 3336  mraid35x - ok
11:34:08.0447 3336  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:34:08.0447 3336  MRxDAV - ok
11:34:08.0681 3336  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:34:08.0697 3336  MRxSmb - ok
11:34:08.0838 3336  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
11:34:08.0853 3336  MSDTC - ok
11:34:08.0885 3336  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
11:34:08.0885 3336  Msfs - ok
11:34:08.0900 3336  MSIServer - ok
11:34:08.0916 3336  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:34:08.0916 3336  MSKSSRV - ok
11:34:09.0041 3336  [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:34:09.0041 3336  MsMpSvc - ok
11:34:09.0135 3336  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:34:09.0135 3336  MSPCLOCK - ok
11:34:09.0166 3336  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
11:34:09.0166 3336  MSPQM - ok
11:34:09.0244 3336  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:34:09.0244 3336  mssmbios - ok
11:34:09.0400 3336  MSSQL$SOPHOS - ok
11:34:09.0838 3336  [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
11:34:09.0853 3336  MSSQLServerADHelper - ok
11:34:09.0900 3336  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
11:34:09.0931 3336  Mup - ok
11:34:10.0119 3336  [ 9121D8FFFF773C66BBF4955E4F7AAC23 ] NAL             C:\WINDOWS\system32\Drivers\iqvw32.sys
11:34:10.0119 3336  NAL - ok
11:34:10.0291 3336  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
11:34:10.0447 3336  napagent - ok
11:34:10.0588 3336  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
11:34:10.0635 3336  NDIS - ok
11:34:10.0666 3336  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:34:10.0666 3336  NdisTapi - ok
11:34:10.0681 3336  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:34:10.0697 3336  Ndisuio - ok
11:34:10.0744 3336  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:34:10.0744 3336  NdisWan - ok
11:34:10.0806 3336  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
11:34:10.0806 3336  NDProxy - ok
11:34:11.0150 3336  [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
11:34:11.0166 3336  Nero BackItUp Scheduler 4.0 - ok
11:34:11.0275 3336  [ 1352E1648213551923A0A822E441553C ] Netaapl         C:\WINDOWS\system32\DRIVERS\netaapl.sys
11:34:11.0275 3336  Netaapl - ok
11:34:11.0322 3336  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
11:34:11.0322 3336  NetBIOS - ok
11:34:11.0353 3336  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
11:34:11.0369 3336  NetBT - ok
11:34:11.0478 3336  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
11:34:11.0525 3336  NetDDE - ok
11:34:11.0541 3336  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
11:34:11.0541 3336  NetDDEdsdm - ok
11:34:11.0650 3336  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
11:34:11.0650 3336  Netlogon - ok
11:34:11.0869 3336  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
11:34:11.0869 3336  Netman - ok
11:34:12.0009 3336  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:34:12.0072 3336  NetTcpPortSharing - ok
11:34:12.0228 3336  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
11:34:12.0228 3336  Nla - ok
11:34:12.0541 3336  [ CD569FA91EC6F59D045C19D0D3850F44 ] nmservice       C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
11:34:12.0556 3336  nmservice - ok
11:34:12.0697 3336  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
11:34:12.0697 3336  Npfs - ok
11:34:12.0775 3336  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
11:34:13.0166 3336  Ntfs - ok
11:34:13.0197 3336  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
11:34:13.0197 3336  NtLmSsp - ok
11:34:13.0509 3336  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
11:34:13.0853 3336  NtmsSvc - ok
11:34:13.0869 3336  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
11:34:13.0869 3336  Null - ok
11:34:14.0416 3336  [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:34:15.0275 3336  nv - ok
11:34:15.0338 3336  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:34:15.0338 3336  NwlnkFlt - ok
11:34:15.0369 3336  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:34:15.0369 3336  NwlnkFwd - ok
11:34:15.0884 3336  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:34:16.0213 3336  odserv - ok
11:34:16.0275 3336  [ 53D5F1278D9EDB21689BBBCECC09108D ] omci            C:\WINDOWS\system32\DRIVERS\omci.sys
11:34:16.0275 3336  omci - ok
11:34:16.0634 3336  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:34:16.0759 3336  ose - ok
11:34:16.0806 3336  [ C720C25B2D0C93DC425155F5B6A707F3 ] ossrv           C:\WINDOWS\system32\DRIVERS\ctoss2k.sys
11:34:16.0806 3336  ossrv - ok
11:34:16.0994 3336  [ 3A7290F2C423B80BA95BECAE015B9B1B ] P17             C:\WINDOWS\system32\drivers\P17.sys
11:34:16.0994 3336  P17 - ok
11:34:16.0994 3336  PalmUSBD - ok
11:34:17.0088 3336  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
11:34:17.0088 3336  Parport - ok
11:34:17.0119 3336  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
11:34:17.0119 3336  PartMgr - ok
11:34:17.0197 3336  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
11:34:17.0197 3336  ParVdm - ok
11:34:17.0228 3336  PCAMPR5 - ok
11:34:17.0259 3336  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
11:34:17.0291 3336  PCI - ok
11:34:17.0306 3336  PCIDump - ok
11:34:17.0322 3336  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
11:34:17.0337 3336  PCIIde - ok
11:34:17.0447 3336  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
11:34:17.0462 3336  Pcmcia - ok
11:34:17.0509 3336  [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin        C:\WINDOWS\system32\Drivers\pcouffin.sys
11:34:17.0509 3336  pcouffin - ok
11:34:17.0509 3336  PDCOMP - ok
11:34:17.0525 3336  PDFRAME - ok
11:34:17.0525 3336  PDRELI - ok
11:34:17.0525 3336  PDRFRAME - ok
11:34:17.0556 3336  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
11:34:17.0556 3336  perc2 - ok
11:34:17.0634 3336  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
11:34:17.0634 3336  perc2hib - ok
11:34:17.0681 3336  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
11:34:17.0681 3336  PlugPlay - ok
11:34:17.0822 3336  [ 36FCAC4FA28B462CA867742DEA59B0D0 ] pnarp           C:\WINDOWS\system32\DRIVERS\pnarp.sys
11:34:17.0822 3336  pnarp - ok
11:34:17.0884 3336  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
11:34:17.0884 3336  PolicyAgent - ok
11:34:17.0978 3336  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:34:17.0978 3336  PptpMiniport - ok
11:34:17.0978 3336  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
11:34:17.0994 3336  ProtectedStorage - ok
11:34:18.0072 3336  [ 64E413BA0C529AA40C3924BBCC4153DB ] ProtexisLicensing C:\WINDOWS\system32\PSIService.exe
11:34:18.0072 3336  ProtexisLicensing - ok
11:34:18.0150 3336  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
11:34:18.0150 3336  PSched - ok
11:34:18.0259 3336  [ A283E768FA12EF33087F07B01F82D6DD ] PSEXESVC        C:\WINDOWS\PSEXESVC.EXE
11:34:19.0275 3336  PSEXESVC - ok
11:34:19.0337 3336  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:34:19.0337 3336  Ptilink - ok
11:34:19.0384 3336  [ D8AC00388262B1A4878A7EE12F31D376 ] purendis        C:\WINDOWS\system32\DRIVERS\purendis.sys
11:34:19.0384 3336  purendis - ok
11:34:19.0478 3336  [ D86B4A68565E444D76457F14172C875A ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
11:34:19.0478 3336  PxHelp20 - ok
11:34:19.0541 3336  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
11:34:19.0556 3336  ql1080 - ok
11:34:19.0619 3336  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
11:34:19.0634 3336  Ql10wnt - ok
11:34:19.0666 3336  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
11:34:19.0681 3336  ql12160 - ok
11:34:19.0791 3336  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
11:34:19.0791 3336  ql1240 - ok
11:34:19.0837 3336  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
11:34:19.0837 3336  ql1280 - ok
11:34:19.0869 3336  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:34:19.0869 3336  RasAcd - ok
11:34:20.0009 3336  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
11:34:20.0072 3336  RasAuto - ok
11:34:20.0119 3336  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:34:20.0119 3336  Rasl2tp - ok
11:34:20.0212 3336  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
11:34:20.0212 3336  RasMan - ok
11:34:20.0275 3336  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:34:20.0275 3336  RasPppoe - ok
11:34:20.0322 3336  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
11:34:20.0322 3336  Raspti - ok
11:34:20.0416 3336  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:34:20.0416 3336  Rdbss - ok
11:34:20.0462 3336  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:34:20.0462 3336  RDPCDD - ok
11:34:20.0556 3336  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:34:20.0556 3336  rdpdr - ok
11:34:20.0775 3336  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
11:34:20.0837 3336  RDPWD - ok
11:34:20.0994 3336  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
11:34:21.0119 3336  RDSessMgr - ok
11:34:21.0181 3336  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
11:34:21.0181 3336  redbook - ok
11:34:21.0306 3336  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
11:34:21.0337 3336  RemoteAccess - ok
11:34:21.0400 3336  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
11:34:21.0400 3336  RemoteRegistry - ok
11:34:21.0431 3336  [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM       C:\WINDOWS\system32\Drivers\RootMdm.sys
11:34:21.0431 3336  ROOTMODEM - ok
11:34:21.0478 3336  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
11:34:21.0494 3336  RpcLocator - ok
11:34:21.0712 3336  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll
11:34:21.0712 3336  RpcSs - ok
11:34:21.0869 3336  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
11:34:21.0947 3336  RSVP - ok
11:34:21.0994 3336  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
11:34:21.0994 3336  SamSs - ok
11:34:22.0166 3336  [ 39763504067962108505BFF25F024345 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:34:22.0166 3336  SASDIFSV - ok
11:34:22.0212 3336  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:34:22.0212 3336  SASKUTIL - ok
11:34:22.0259 3336  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
11:34:22.0337 3336  SCardSvr - ok
11:34:22.0400 3336  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
11:34:22.0400 3336  Schedule - ok
11:34:22.0447 3336  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:34:22.0447 3336  Secdrv - ok
11:34:22.0541 3336  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
11:34:22.0541 3336  seclogon - ok
11:34:22.0587 3336  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
11:34:22.0587 3336  SENS - ok
11:34:22.0634 3336  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
11:34:22.0634 3336  serenum - ok
11:34:22.0666 3336  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
11:34:22.0666 3336  Serial - ok
11:34:22.0931 3336  [ 019AB047B932AD277A4DA2673E5CC19C ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
11:34:23.0119 3336  ServiceLayer - ok
11:34:23.0181 3336  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
11:34:23.0181 3336  Sfloppy - ok
11:34:23.0337 3336  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
11:34:23.0337 3336  SharedAccess - ok
11:34:23.0431 3336  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
11:34:23.0431 3336  ShellHWDetection - ok
11:34:23.0431 3336  Simbad - ok
11:34:23.0509 3336  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
11:34:23.0509 3336  sisagp - ok
11:34:23.0587 3336  [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1        C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
11:34:23.0587 3336  SONYPVU1 - ok
11:34:23.0650 3336  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
11:34:23.0666 3336  Sparrow - ok
11:34:23.0775 3336  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
11:34:23.0775 3336  splitter - ok
11:34:23.0822 3336  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
11:34:23.0837 3336  Spooler - ok
11:34:23.0931 3336  [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser      C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
11:34:23.0931 3336  SQLBrowser - ok
11:34:23.0978 3336  [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
11:34:23.0978 3336  SQLWriter - ok
11:34:24.0025 3336  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
11:34:24.0072 3336  sr - ok
11:34:24.0197 3336  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
11:34:24.0197 3336  srservice - ok
11:34:24.0275 3336  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
11:34:24.0290 3336  Srv - ok
11:34:24.0353 3336  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
11:34:24.0431 3336  SSDPSRV - ok
11:34:24.0556 3336  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
11:34:24.0556 3336  stisvc - ok
11:34:24.0603 3336  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
11:34:24.0603 3336  swenum - ok
11:34:24.0634 3336  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
11:34:24.0634 3336  swmidi - ok
11:34:24.0634 3336  SwPrv - ok
11:34:24.0665 3336  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
11:34:24.0665 3336  symc810 - ok
11:34:24.0759 3336  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
11:34:24.0759 3336  symc8xx - ok
11:34:24.0775 3336  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
11:34:24.0775 3336  sym_hi - ok
11:34:24.0790 3336  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
11:34:24.0806 3336  sym_u3 - ok
11:34:24.0822 3336  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
11:34:24.0822 3336  sysaudio - ok
11:34:24.0884 3336  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
11:34:24.0900 3336  SysmonLog - ok
11:34:24.0978 3336  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
11:34:24.0978 3336  TapiSrv - ok
11:34:25.0103 3336  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:34:25.0103 3336  Tcpip - ok
11:34:25.0150 3336  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
11:34:25.0150 3336  TDPIPE - ok
11:34:25.0228 3336  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
11:34:25.0228 3336  TDTCP - ok
11:34:25.0244 3336  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
11:34:25.0244 3336  TermDD - ok
11:34:25.0462 3336  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
11:34:25.0478 3336  TermService - ok
11:34:25.0540 3336  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
11:34:25.0540 3336  Themes - ok
11:34:25.0603 3336  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
11:34:25.0681 3336  TlntSvr - ok
11:34:25.0790 3336  [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
11:34:25.0790 3336  TosIde - ok
11:34:25.0822 3336  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
11:34:25.0822 3336  TrkWks - ok
11:34:25.0853 3336  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
11:34:25.0869 3336  Udfs - ok
11:34:25.0884 3336  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
11:34:25.0884 3336  ultra - ok
11:34:26.0009 3336  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
11:34:26.0009 3336  Update - ok
11:34:26.0040 3336  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
11:34:26.0056 3336  upnphost - ok
11:34:26.0087 3336  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
11:34:26.0103 3336  UPS - ok
11:34:26.0134 3336  [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
11:34:26.0134 3336  USBAAPL - ok
11:34:26.0181 3336  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:34:26.0197 3336  usbccgp - ok
11:34:26.0212 3336  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:34:26.0212 3336  usbehci - ok
11:34:26.0244 3336  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:34:26.0244 3336  usbhub - ok
11:34:26.0306 3336  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:34:26.0306 3336  usbprint - ok
11:34:26.0306 3336  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:34:26.0306 3336  usbscan - ok
11:34:26.0415 3336  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\DRIVERS\usbser.sys
11:34:26.0415 3336  usbser - ok
11:34:26.0509 3336  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:34:26.0509 3336  USBSTOR - ok
11:34:26.0556 3336  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:34:26.0556 3336  usbuhci - ok
11:34:26.0556 3336  VComm - ok
11:34:26.0556 3336  VcommMgr - ok
11:34:26.0603 3336  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
11:34:26.0619 3336  VgaSave - ok
11:34:26.0650 3336  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
11:34:26.0665 3336  viaagp - ok
11:34:26.0681 3336  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
11:34:26.0697 3336  ViaIde - ok
11:34:26.0697 3336  VMnetAdapter - ok
11:34:26.0744 3336  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
11:34:26.0744 3336  VolSnap - ok
11:34:26.0884 3336  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
11:34:26.0962 3336  VSS - ok
11:34:27.0056 3336  [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time         C:\WINDOWS\system32\w32time.dll
11:34:27.0056 3336  w32time - ok
11:34:27.0056 3336  W8335XP - ok
11:34:27.0087 3336  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:34:27.0087 3336  Wanarp - ok
11:34:27.0181 3336  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw          C:\WINDOWS\system32\DRIVERS\wanatw4.sys
11:34:27.0181 3336  wanatw - ok
11:34:27.0540 3336  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
11:34:27.0759 3336  Wdf01000 - ok
11:34:27.0775 3336  WDICA - ok
11:34:27.0822 3336  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
11:34:27.0822 3336  wdmaud - ok
11:34:27.0915 3336  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
11:34:27.0915 3336  WebClient - ok
11:34:28.0181 3336  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
11:34:28.0181 3336  winmgmt - ok
11:34:28.0415 3336  [ 581176F60885AEF8F78C6E38DCC3CDF9 ] WMDM PMSP Service C:\WINDOWS\system32\MsPMSPSv.exe
11:34:28.0415 3336  WMDM PMSP Service - ok
11:34:28.0540 3336  [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
11:34:28.0572 3336  WmdmPmSN - ok
11:34:28.0681 3336  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
11:34:28.0697 3336  Wmi - ok
11:34:28.0728 3336  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
11:34:28.0806 3336  WmiApSrv - ok
11:34:29.0040 3336  [ 6BAB4DC65515A098505F8B3D01FB6FE5 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
11:34:29.0275 3336  WMPNetworkSvc - ok
11:34:29.0322 3336  [ C60DC16D4E406810FAD54B98DC92D5EC ] WpdUsb          C:\WINDOWS\system32\Drivers\wpdusb.sys
11:34:29.0322 3336  WpdUsb - ok
11:34:29.0337 3336  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
11:34:29.0369 3336  WS2IFSL - ok
11:34:29.0494 3336  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
11:34:29.0494 3336  wscsvc - ok
11:34:29.0494 3336  WSearch - ok
11:34:29.0540 3336  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
11:34:29.0540 3336  wuauserv - ok
11:34:29.0681 3336  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:34:29.0728 3336  WudfPf - ok
11:34:29.0806 3336  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:34:29.0822 3336  WudfRd - ok
11:34:29.0853 3336  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
11:34:29.0869 3336  WudfSvc - ok
11:34:30.0040 3336  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
11:34:30.0056 3336  WZCSVC - ok
11:34:30.0150 3336  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
11:34:30.0212 3336  xmlprov - ok
11:34:30.0322 3336  [ A640C90B007762939507C28A021BE3B3 ] xusb21          C:\WINDOWS\system32\DRIVERS\xusb21.sys
11:34:30.0337 3336  xusb21 - ok
11:34:30.0337 3336  ================ Scan global ===============================
11:34:30.0462 3336  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
11:34:30.0587 3336  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
11:34:30.0697 3336  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
11:34:30.0806 3336  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
11:34:30.0822 3336  [Global] - ok
11:34:30.0822 3336  ================ Scan MBR ==================================
11:34:30.0853 3336  [ 49A546210C3E024EAC559A37A6BF499A ] \Device\Harddisk0\DR0
11:34:43.0837 3336  \Device\Harddisk0\DR0 - ok
11:34:43.0837 3336  ================ Scan VBR ==================================
11:34:43.0868 3336  [ 81D45D784ECA237A68975E900D872AA4 ] \Device\Harddisk0\DR0\Partition1
11:34:43.0931 3336  \Device\Harddisk0\DR0\Partition1 - ok
11:34:43.0931 3336  ================ Scan active images ========================
11:34:43.0931 3336  [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
11:34:43.0931 3336  C:\WINDOWS\system32\drivers\intelppm.sys - ok
11:34:43.0946 3336  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
11:34:43.0946 3336  C:\WINDOWS\system32\drivers\videoprt.sys - ok
11:34:43.0946 3336  [ B8142104502F794689C1C0BCBFB53B98 ] C:\WINDOWS\system32\drivers\ati2mtag.sys
11:34:43.0946 3336  C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
11:34:43.0946 3336  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
11:34:43.0946 3336  C:\WINDOWS\system32\drivers\usbport.sys - ok
11:34:43.0962 3336  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
11:34:43.0962 3336  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
11:34:43.0962 3336  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
11:34:43.0962 3336  C:\WINDOWS\system32\drivers\usbehci.sys - ok
11:34:43.0962 3336  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
11:34:43.0962 3336  C:\WINDOWS\system32\drivers\ks.sys - ok
11:34:43.0978 3336  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
11:34:43.0978 3336  C:\WINDOWS\system32\drivers\drmk.sys - ok
11:34:43.0978 3336  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
11:34:43.0978 3336  C:\WINDOWS\system32\drivers\portcls.sys - ok
11:34:43.0978 3336  [ 3A7290F2C423B80BA95BECAE015B9B1B ] C:\WINDOWS\system32\drivers\P17.sys
11:34:43.0978 3336  C:\WINDOWS\system32\drivers\P17.sys - ok
11:34:43.0993 3336  [ C720C25B2D0C93DC425155F5B6A707F3 ] C:\WINDOWS\system32\drivers\ctoss2k.sys
11:34:43.0993 3336  C:\WINDOWS\system32\drivers\ctoss2k.sys - ok
11:34:43.0993 3336  [ B459AE4AFCA570088ADDDBE55EABBC92 ] C:\WINDOWS\system32\drivers\ctsfm2k.sys
11:34:43.0993 3336  C:\WINDOWS\system32\drivers\ctsfm2k.sys - ok
11:34:43.0993 3336  [ CF0B937710CEC6EF39416EDECD803CBB ] C:\WINDOWS\system32\drivers\IntelC53.sys
11:34:43.0993 3336  C:\WINDOWS\system32\drivers\IntelC53.sys - ok
11:34:44.0009 3336  [ 7509C548400F4C9E0211E3F6E66ABBE6 ] C:\WINDOWS\system32\drivers\IntelC51.sys
11:34:44.0009 3336  C:\WINDOWS\system32\drivers\IntelC51.sys - ok
11:34:44.0009 3336  [ 9584FFDD41D37F2C239681D0DAC2513E ] C:\WINDOWS\system32\drivers\IntelC52.sys
11:34:44.0009 3336  C:\WINDOWS\system32\drivers\IntelC52.sys - ok
11:34:44.0009 3336  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
11:34:44.0009 3336  C:\WINDOWS\system32\drivers\modem.sys - ok
11:34:44.0024 3336  [ 59B8B11FF70728EEC60E72131C58B716 ] C:\WINDOWS\system32\drivers\mohfilt.sys
11:34:44.0024 3336  C:\WINDOWS\system32\drivers\mohfilt.sys - ok
11:34:44.0024 3336  [ 95974E66D3DE4951D29E28E8BC0B644C ] C:\WINDOWS\system32\drivers\e100b325.sys
11:34:44.0024 3336  C:\WINDOWS\system32\drivers\e100b325.sys - ok
11:34:44.0024 3336  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
11:34:44.0024 3336  C:\WINDOWS\system32\drivers\fdc.sys - ok
11:34:44.0040 3336  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
11:34:44.0040 3336  C:\WINDOWS\system32\drivers\imapi.sys - ok
11:34:44.0040 3336  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] C:\WINDOWS\system32\drivers\cdrom.sys
11:34:44.0040 3336  C:\WINDOWS\system32\drivers\cdrom.sys - ok
11:34:44.0040 3336  [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
11:34:44.0040 3336  C:\WINDOWS\system32\drivers\redbook.sys - ok
11:34:44.0056 3336  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
11:34:44.0056 3336  C:\WINDOWS\system32\drivers\audstub.sys - ok
11:34:44.0056 3336  [ 185ADA973B5020655CEE342059A86CBB ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
11:34:44.0056 3336  C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
11:34:44.0056 3336  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
11:34:44.0056 3336  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
11:34:44.0071 3336  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
11:34:44.0071 3336  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
11:34:44.0071 3336  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
11:34:44.0071 3336  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
11:34:44.0071 3336  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
11:34:44.0071 3336  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
11:34:44.0087 3336  [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
11:34:44.0087 3336  C:\WINDOWS\system32\drivers\tdi.sys - ok
11:34:44.0087 3336  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
11:34:44.0087 3336  C:\WINDOWS\system32\drivers\raspptp.sys - ok
11:34:44.0087 3336  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
11:34:44.0087 3336  C:\WINDOWS\system32\drivers\psched.sys - ok
11:34:44.0103 3336  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
11:34:44.0103 3336  C:\WINDOWS\system32\drivers\msgpc.sys - ok
11:34:44.0103 3336  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
11:34:44.0103 3336  C:\WINDOWS\system32\drivers\ptilink.sys - ok
11:34:44.0103 3336  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
11:34:44.0103 3336  C:\WINDOWS\system32\drivers\raspti.sys - ok
11:34:44.0118 3336  [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
11:34:44.0118 3336  C:\WINDOWS\system32\drivers\rdpdr.sys - ok
11:34:44.0118 3336  [ 0A716C08CB13C3A8F4F51E882DBF7416 ] C:\WINDOWS\system32\drivers\wanatw4.sys
11:34:44.0118 3336  C:\WINDOWS\system32\drivers\wanatw4.sys - ok
11:34:44.0118 3336  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
11:34:44.0118 3336  C:\WINDOWS\system32\drivers\termdd.sys - ok
11:34:44.0134 3336  [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
11:34:44.0134 3336  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
11:34:44.0134 3336  [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
11:34:44.0134 3336  C:\WINDOWS\system32\drivers\mouclass.sys - ok
11:34:44.0134 3336  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
11:34:44.0134 3336  C:\WINDOWS\system32\drivers\swenum.sys - ok
11:34:44.0149 3336  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
11:34:44.0149 3336  C:\WINDOWS\system32\drivers\update.sys - ok
11:34:44.0149 3336  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
11:34:44.0149 3336  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
11:34:44.0149 3336  [ 53D5F1278D9EDB21689BBBCECC09108D ] C:\WINDOWS\system32\drivers\omci.sys
11:34:44.0149 3336  C:\WINDOWS\system32\drivers\omci.sys - ok
11:34:44.0149 3336  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
11:34:44.0149 3336  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
11:34:44.0165 3336  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
11:34:44.0165 3336  C:\WINDOWS\system32\drivers\usbd.sys - ok
11:34:44.0165 3336  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
11:34:44.0165 3336  C:\WINDOWS\system32\drivers\usbhub.sys - ok
11:34:44.0165 3336  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] C:\WINDOWS\system32\drivers\MODEMCSA.sys
11:34:44.0165 3336  C:\WINDOWS\system32\drivers\MODEMCSA.sys - ok
11:34:44.0181 3336  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
11:34:44.0181 3336  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
11:34:44.0181 3336  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
11:34:44.0181 3336  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
11:34:44.0181 3336  [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
11:34:44.0181 3336  C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
11:34:44.0196 3336  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
11:34:44.0196 3336  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
11:34:44.0196 3336  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
11:34:44.0196 3336  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
11:34:44.0196 3336  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
11:34:44.0196 3336  C:\WINDOWS\system32\drivers\null.sys - ok
11:34:44.0212 3336  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
11:34:44.0212 3336  C:\WINDOWS\system32\drivers\beep.sys - ok
11:34:44.0212 3336  [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
11:34:44.0212 3336  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
11:34:44.0212 3336  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
11:34:44.0212 3336  C:\WINDOWS\system32\drivers\hidparse.sys - ok
11:34:44.0228 3336  [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
11:34:44.0228 3336  C:\WINDOWS\system32\drivers\kbdhid.sys - ok
11:34:44.0228 3336  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
11:34:44.0228 3336  C:\WINDOWS\system32\drivers\vga.sys - ok
11:34:44.0228 3336  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
11:34:44.0228 3336  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
11:34:44.0243 3336  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
11:34:44.0243 3336  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
11:34:44.0243 3336  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
11:34:44.0243 3336  C:\WINDOWS\system32\drivers\msfs.sys - ok
11:34:44.0243 3336  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
11:34:44.0243 3336  C:\WINDOWS\system32\drivers\npfs.sys - ok
11:34:44.0259 3336  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
11:34:44.0259 3336  C:\WINDOWS\system32\drivers\rasacd.sys - ok
11:34:44.0259 3336  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
11:34:44.0259 3336  C:\WINDOWS\system32\drivers\ipsec.sys - ok
11:34:44.0259 3336  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
11:34:44.0259 3336  C:\WINDOWS\system32\drivers\tcpip.sys - ok
11:34:44.0274 3336  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
11:34:44.0274 3336  C:\WINDOWS\system32\drivers\ipnat.sys - ok
11:34:44.0274 3336  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
11:34:44.0274 3336  C:\WINDOWS\system32\drivers\netbt.sys - ok
11:34:44.0274 3336  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
11:34:44.0274 3336  C:\WINDOWS\system32\drivers\wanarp.sys - ok
11:34:44.0290 3336  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
11:34:44.0290 3336  C:\WINDOWS\system32\drivers\afd.sys - ok
11:34:44.0290 3336  [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
11:34:44.0290 3336  C:\WINDOWS\system32\drivers\usbccgp.sys - ok
11:34:44.0290 3336  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
11:34:44.0290 3336  C:\WINDOWS\system32\drivers\netbios.sys - ok
11:34:44.0306 3336  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
11:34:44.0306 3336  C:\WINDOWS\system32\drivers\serial.sys - ok
11:34:44.0306 3336  [ 77B9FC20084B48408AD3E87570EB4A85 ] C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:34:44.0306 3336  C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS - ok
11:34:44.0306 3336  [ 39763504067962108505BFF25F024345 ] C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:34:44.0306 3336  C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS - ok
11:34:44.0321 3336  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
11:34:44.0321 3336  C:\WINDOWS\system32\drivers\rdbss.sys - ok
11:34:44.0321 3336  [ A717C8721046828520C9EDF31288FC00 ] C:\WINDOWS\system32\drivers\usbprint.sys
11:34:44.0321 3336  C:\WINDOWS\system32\drivers\usbprint.sys - ok
11:34:44.0321 3336  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
11:34:44.0321 3336  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
11:34:44.0337 3336  [ 92A964547B96D697E5E9ED43B4297F5A ] C:\WINDOWS\system32\drivers\BrScnUsb.sys
11:34:44.0337 3336  C:\WINDOWS\system32\drivers\BrScnUsb.sys - ok
11:34:44.0337 3336  [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
11:34:44.0337 3336  C:\WINDOWS\system32\drivers\fips.sys - ok
11:34:44.0337 3336  [ B67512DA42C0C90BF236D5485226C1C7 ] C:\WINDOWS\system32\drivers\BrUsbSib.sys
11:34:44.0337 3336  C:\WINDOWS\system32\drivers\BrUsbSib.sys - ok
11:34:44.0353 3336  [ 9F80879913DC2712FD0C4D734E3F519B ] C:\WINDOWS\system32\drivers\BrSerIb.sys
11:34:44.0353 3336  C:\WINDOWS\system32\drivers\BrSerIb.sys - ok
11:34:44.0353 3336  [ A32426D9B14A089EAA1D922E0C5801A9 ] C:\WINDOWS\system32\drivers\usbstor.sys
11:34:44.0353 3336  C:\WINDOWS\system32\drivers\usbstor.sys - ok
11:34:44.0353 3336  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
11:34:44.0353 3336  C:\WINDOWS\system32\drivers\hidclass.sys - ok
11:34:44.0368 3336  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
11:34:44.0368 3336  C:\WINDOWS\system32\drivers\hidusb.sys - ok
11:34:44.0368 3336  [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
11:34:44.0368 3336  C:\WINDOWS\system32\drivers\mouhid.sys - ok
11:34:44.0368 3336  [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
11:34:44.0368 3336  C:\WINDOWS\system32\smss.exe - ok
11:34:44.0384 3336  [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
11:34:44.0384 3336  C:\WINDOWS\system32\ntdll.dll - ok
11:34:44.0384 3336  [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
11:34:44.0384 3336  C:\WINDOWS\system32\autochk.exe - ok
11:34:44.0384 3336  [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
11:34:44.0384 3336  C:\WINDOWS\system32\sfcfiles.dll - ok
11:34:44.0399 3336  [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
11:34:44.0399 3336  C:\WINDOWS\system32\drivers\cdfs.sys - ok
11:34:44.0399 3336  [ D593517879E65167DF35F6015814AC59 ] C:\WINDOWS\system32\drivers\iaStor.sys
11:34:44.0399 3336  C:\WINDOWS\system32\drivers\iaStor.sys - ok
11:34:44.0399 3336  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
11:34:44.0399 3336  C:\WINDOWS\system32\drivers\dxapi.sys - ok
11:34:44.0415 3336  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
11:34:44.0415 3336  C:\WINDOWS\system32\watchdog.sys - ok
11:34:44.0415 3336  [ BD39EC6064A1B5DFDABCF312A38A37EE ] C:\WINDOWS\system32\win32k.sys
11:34:44.0415 3336  C:\WINDOWS\system32\win32k.sys - ok
11:34:44.0415 3336  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
11:34:44.0415 3336  C:\WINDOWS\system32\basesrv.dll - ok
11:34:44.0431 3336  [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
11:34:44.0431 3336  C:\WINDOWS\system32\csrsrv.dll - ok
11:34:44.0431 3336  [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
11:34:44.0431 3336  C:\WINDOWS\system32\csrss.exe - ok
11:34:44.0431 3336  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
11:34:44.0431 3336  C:\WINDOWS\system32\winsrv.dll - ok
11:34:44.0431 3336  [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
11:34:44.0431 3336  C:\WINDOWS\system32\gdi32.dll - ok
11:34:44.0446 3336  [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
11:34:44.0446 3336  C:\WINDOWS\system32\kernel32.dll - ok
11:34:44.0446 3336  [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
11:34:44.0446 3336  C:\WINDOWS\system32\user32.dll - ok
11:34:44.0446 3336  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
11:34:44.0446 3336  C:\WINDOWS\system32\drivers\dxg.sys - ok
11:34:44.0462 3336  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
11:34:44.0462 3336  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
11:34:44.0462 3336  [ A3F0DD4757BB2A42C6FF10974C6B7541 ] C:\WINDOWS\system32\ati2cqag.dll
11:34:44.0462 3336  C:\WINDOWS\system32\ati2cqag.dll - ok
11:34:44.0462 3336  [ 04AE0DBDB7A84193F4397F55EF12F452 ] C:\WINDOWS\system32\ati2dvag.dll
11:34:44.0462 3336  C:\WINDOWS\system32\ati2dvag.dll - ok
11:34:44.0478 3336  [ BF0D21DE3C4234293F8A809CF8594035 ] C:\WINDOWS\system32\atikvmag.dll
11:34:44.0478 3336  C:\WINDOWS\system32\atikvmag.dll - ok
11:34:44.0478 3336  [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
11:34:44.0478 3336  C:\WINDOWS\system32\vga.dll - ok
11:34:44.0478 3336  [ 28049365F9AEF76339E114408519D1F6 ] C:\WINDOWS\system32\ati3duag.dll
11:34:44.0478 3336  C:\WINDOWS\system32\ati3duag.dll - ok
11:34:44.0493 3336  [ C609BC4AF03AC12BAE54E947AA3B3429 ] C:\WINDOWS\system32\ativvaxx.dll
11:34:44.0493 3336  C:\WINDOWS\system32\ativvaxx.dll - ok
11:34:44.0493 3336  [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
11:34:44.0493 3336  C:\WINDOWS\system32\winlogon.exe - ok
11:34:44.0493 3336  [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
11:34:44.0493 3336  C:\WINDOWS\system32\advapi32.dll - ok
11:34:44.0509 3336  [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
11:34:44.0509 3336  C:\WINDOWS\system32\rpcrt4.dll - ok
11:34:44.0509 3336  [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
11:34:44.0509 3336  C:\WINDOWS\system32\authz.dll - ok
11:34:44.0509 3336  [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
11:34:44.0509 3336  C:\WINDOWS\system32\secur32.dll - ok
11:34:44.0524 3336  [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
11:34:44.0524 3336  C:\WINDOWS\system32\crypt32.dll - ok
11:34:44.0524 3336  [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
11:34:44.0524 3336  C:\WINDOWS\system32\msvcrt.dll - ok
11:34:44.0524 3336  [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
11:34:44.0524 3336  C:\WINDOWS\system32\msasn1.dll - ok
11:34:44.0540 3336  [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
11:34:44.0540 3336  C:\WINDOWS\system32\nddeapi.dll - ok
11:34:44.0540 3336  [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
11:34:44.0540 3336  C:\WINDOWS\system32\profmap.dll - ok
11:34:44.0540 3336  [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
11:34:44.0540 3336  C:\WINDOWS\system32\netapi32.dll - ok
11:34:44.0556 3336  [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
11:34:44.0556 3336  C:\WINDOWS\system32\userenv.dll - ok
11:34:44.0556 3336  [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
11:34:44.0556 3336  C:\WINDOWS\system32\psapi.dll - ok
11:34:44.0556 3336  [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
11:34:44.0556 3336  C:\WINDOWS\system32\regapi.dll - ok
11:34:44.0571 3336  [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
11:34:44.0571 3336  C:\WINDOWS\system32\setupapi.dll - ok
11:34:44.0571 3336  [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
11:34:44.0571 3336  C:\WINDOWS\system32\version.dll - ok
11:34:44.0571 3336  [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
11:34:44.0571 3336  C:\WINDOWS\system32\winsta.dll - ok
11:34:44.0587 3336  [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
11:34:44.0587 3336  C:\WINDOWS\system32\wintrust.dll - ok
11:34:44.0587 3336  [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
11:34:44.0587 3336  C:\WINDOWS\system32\imagehlp.dll - ok
11:34:44.0587 3336  [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
11:34:44.0587 3336  C:\WINDOWS\system32\ws2_32.dll - ok
11:34:44.0603 3336  [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
11:34:44.0603 3336  C:\WINDOWS\system32\imm32.dll - ok
11:34:44.0603 3336  [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
11:34:44.0603 3336  C:\WINDOWS\system32\ws2help.dll - ok
11:34:44.0603 3336  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
11:34:44.0603 3336  C:\WINDOWS\system32\kbdus.dll - ok
11:34:44.0618 3336  [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
11:34:44.0618 3336  C:\WINDOWS\system32\msgina.dll - ok
11:34:44.0618 3336  [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
11:34:44.0618 3336  C:\WINDOWS\system32\comctl32.dll - ok
11:34:44.0618 3336  [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
11:34:44.0618 3336  C:\WINDOWS\system32\odbc32.dll - ok
11:34:44.0634 3336  [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
11:34:44.0634 3336  C:\WINDOWS\system32\comdlg32.dll - ok
11:34:44.0634 3336  [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
11:34:44.0634 3336  C:\WINDOWS\system32\shell32.dll - ok
11:34:44.0634 3336  [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
11:34:44.0634 3336  C:\WINDOWS\system32\shlwapi.dll - ok
11:34:44.0649 3336  [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
11:34:44.0649 3336  C:\WINDOWS\system32\sxs.dll - ok
11:34:44.0649 3336  [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
11:34:44.0649 3336  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
11:34:44.0649 3336  [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
11:34:44.0649 3336  C:\WINDOWS\system32\odbcint.dll - ok
11:34:44.0665 3336  [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
11:34:44.0665 3336  C:\WINDOWS\system32\shsvcs.dll - ok
11:34:44.0665 3336  [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
11:34:44.0665 3336  C:\WINDOWS\system32\sfc.dll - ok
11:34:44.0665 3336  [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
11:34:44.0665 3336  C:\WINDOWS\system32\ole32.dll - ok
11:34:44.0681 3336  [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
11:34:44.0681 3336  C:\WINDOWS\system32\sfc_os.dll - ok
11:34:44.0681 3336  [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
11:34:44.0681 3336  C:\WINDOWS\system32\apphelp.dll - ok
11:34:44.0681 3336  [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
11:34:44.0681 3336  C:\WINDOWS\system32\lsass.exe - ok
11:34:44.0681 3336  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
11:34:44.0681 3336  C:\WINDOWS\system32\services.exe - ok
11:34:44.0696 3336  [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
11:34:44.0696 3336  C:\WINDOWS\system32\lsasrv.dll - ok
11:34:44.0696 3336  [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
11:34:44.0696 3336  C:\WINDOWS\system32\msvcp60.dll - ok
11:34:44.0696 3336  [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
11:34:44.0696 3336  C:\WINDOWS\system32\ncobjapi.dll - ok
11:34:44.0712 3336  [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
11:34:44.0712 3336  C:\WINDOWS\system32\scesrv.dll - ok
11:34:44.0712 3336  [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
11:34:44.0712 3336  C:\WINDOWS\system32\mpr.dll - ok
11:34:44.0712 3336  [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
11:34:44.0712 3336  C:\WINDOWS\system32\umpnpmgr.dll - ok
11:34:44.0728 3336  [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
11:34:44.0728 3336  C:\WINDOWS\system32\ntdsapi.dll - ok
11:34:44.0728 3336  [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
11:34:44.0728 3336  C:\WINDOWS\system32\shimeng.dll - ok
11:34:44.0728 3336  [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
11:34:44.0728 3336  C:\WINDOWS\AppPatch\acadproc.dll - ok
11:34:44.0743 3336  [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
11:34:44.0743 3336  C:\WINDOWS\system32\dnsapi.dll - ok
11:34:44.0743 3336  [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
11:34:44.0743 3336  C:\WINDOWS\system32\wldap32.dll - ok
11:34:44.0743 3336  [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
11:34:44.0743 3336  C:\WINDOWS\system32\samlib.dll - ok
11:34:44.0759 3336  [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
11:34:44.0759 3336  C:\WINDOWS\system32\samsrv.dll - ok
11:34:44.0759 3336  [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
11:34:44.0759 3336  C:\WINDOWS\system32\cryptdll.dll - ok
11:34:44.0759 3336  [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
11:34:44.0759 3336  C:\WINDOWS\AppPatch\acgenral.dll - ok
11:34:44.0774 3336  [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
11:34:44.0774 3336  C:\WINDOWS\system32\winmm.dll - ok
11:34:44.0774 3336  [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
11:34:44.0774 3336  C:\WINDOWS\system32\oleaut32.dll - ok
11:34:44.0774 3336  [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
11:34:44.0774 3336  C:\WINDOWS\system32\msacm32.dll - ok
11:34:44.0790 3336  [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
11:34:44.0790 3336  C:\WINDOWS\system32\uxtheme.dll - ok
11:34:44.0790 3336  [ E73F18195CCF4AAAA87B2D22E83F791C ] C:\WINDOWS\system32\serwvdrv.dll
11:34:44.0790 3336  C:\WINDOWS\system32\serwvdrv.dll - ok
11:34:44.0790 3336  [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
11:34:44.0790 3336  C:\WINDOWS\system32\msapsspc.dll - ok
11:34:44.0806 3336  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
11:34:44.0806 3336  C:\WINDOWS\system32\msvcrt40.dll - ok
11:34:44.0806 3336  [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
11:34:44.0806 3336  C:\WINDOWS\system32\schannel.dll - ok
11:34:44.0806 3336  [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
11:34:44.0806 3336  C:\WINDOWS\system32\digest.dll - ok
11:34:44.0821 3336  [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
11:34:44.0821 3336  C:\WINDOWS\system32\msnsspc.dll - ok
11:34:44.0821 3336  [ 3F790874A85819E94574F3E7AF9C5806 ] C:\WINDOWS\system32\msctfime.ime
11:34:44.0821 3336  C:\WINDOWS\system32\msctfime.ime - ok
11:34:44.0821 3336  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
11:34:44.0821 3336  C:\WINDOWS\system32\msprivs.dll - ok
11:34:44.0837 3336  [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
11:34:44.0837 3336  C:\WINDOWS\system32\kerberos.dll - ok
11:34:44.0837 3336  [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
11:34:44.0837 3336  C:\WINDOWS\system32\msv1_0.dll - ok
11:34:44.0837 3336  [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
11:34:44.0837 3336  C:\WINDOWS\system32\iphlpapi.dll - ok
11:34:44.0853 3336  [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
11:34:44.0853 3336  C:\WINDOWS\system32\atmfd.dll - ok
11:34:44.0853 3336  [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
11:34:44.0853 3336  C:\WINDOWS\system32\netlogon.dll - ok
11:34:44.0853 3336  [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
11:34:44.0853 3336  C:\WINDOWS\system32\w32time.dll - ok
11:34:44.0868 3336  [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
11:34:44.0868 3336  C:\WINDOWS\system32\wdigest.dll - ok
11:34:44.0868 3336  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
11:34:44.0868 3336  C:\WINDOWS\system32\rsaenh.dll - ok
11:34:44.0868 3336  [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
11:34:44.0868 3336  C:\WINDOWS\system32\winscard.dll - ok
11:34:44.0884 3336  [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
11:34:44.0884 3336  C:\WINDOWS\system32\wtsapi32.dll - ok
11:34:44.0884 3336  [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
11:34:44.0884 3336  C:\WINDOWS\system32\scecli.dll - ok
11:34:44.0884 3336  [ 2C450E1E3442F3B776B301A67E8C47F0 ] C:\WINDOWS\system32\ati2evxx.exe
11:34:44.0884 3336  C:\WINDOWS\system32\ati2evxx.exe - ok
11:34:44.0899 3336  [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
11:34:44.0899 3336  C:\WINDOWS\system32\svchost.exe - ok
11:34:44.0899 3336  [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
11:34:44.0899 3336  C:\WINDOWS\system32\ntmarta.dll - ok
11:34:44.0899 3336  [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
11:34:44.0899 3336  C:\WINDOWS\system32\rpcss.dll - ok
11:34:44.0915 3336  [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
11:34:44.0915 3336  C:\WINDOWS\system32\xpsp2res.dll - ok
11:34:44.0915 3336  [ 21DB9630D459C360C1E7C22F333C20B7 ] C:\WINDOWS\system32\ati2edxx.dll
11:34:44.0915 3336  C:\WINDOWS\system32\ati2edxx.dll - ok
11:34:44.0915 3336  [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
11:34:44.0915 3336  C:\WINDOWS\system32\eventlog.dll - ok
11:34:44.0931 3336  [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
11:34:44.0931 3336  C:\WINDOWS\system32\mswsock.dll - ok
11:34:44.0931 3336  [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
11:34:44.0931 3336  C:\WINDOWS\system32\hnetcfg.dll - ok
11:34:44.0931 3336  [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
11:34:44.0931 3336  C:\WINDOWS\system32\wshtcpip.dll - ok
11:34:44.0946 3336  [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
11:34:44.0946 3336  C:\WINDOWS\system32\winrnr.dll - ok
11:34:44.0946 3336  [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:34:44.0946 3336  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
11:34:44.0946 3336  [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
11:34:44.0946 3336  C:\WINDOWS\system32\rasadhlp.dll - ok
11:34:44.0962 3336  [ 9AC7F31404F784753C4C04296E48CFAB ] C:\Program Files\Microsoft Security Client\MpSvc.dll
11:34:44.0962 3336  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
11:34:44.0962 3336  [ 84204FDA617A3611D510A1DCBAE64004 ] C:\Program Files\Microsoft Security Client\MpClient.dll
11:34:44.0962 3336  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
11:34:44.0962 3336  [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042 ] C:\Program Files\Microsoft Security Client\sqmapi.dll
11:34:44.0962 3336  C:\Program Files\Microsoft Security Client\sqmapi.dll - ok
11:34:44.0978 3336  [ 7C29BC74635524E13FAA556A5FD48968 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
11:34:44.0978 3336  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
11:34:44.0978 3336  [ 5D43C9A33F18C707BA169AFDA88BDF30 ] C:\WINDOWS\system32\fltlib.dll
11:34:44.0978 3336  C:\WINDOWS\system32\fltlib.dll - ok
11:34:44.0978 3336  [ 05231C04253C5BC30B26CBAAE680ED89 ] C:\WINDOWS\system32\WudfSvc.dll
11:34:44.0978 3336  C:\WINDOWS\system32\WudfSvc.dll - ok
11:34:44.0993 3336  [ 5650B193FD9F06274BA17311DEACC5A8 ] C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{62280074-96C1-411B-94C7-7A15CAB8EC3D}\mpengine.dll
11:34:44.0993 3336  C:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{62280074-96C1-411B-94C7-7A15CAB8EC3D}\mpengine.dll - ok
11:34:44.0993 3336  [ 5CAF91E865FE0C85048A233E594544D2 ] C:\WINDOWS\system32\WudfPlatform.dll
11:34:44.0993 3336  C:\WINDOWS\system32\WudfPlatform.dll - ok
11:34:44.0993 3336  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
11:34:44.0993 3336  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
11:34:45.0009 3336  [ 36FCAC4FA28B462CA867742DEA59B0D0 ] C:\WINDOWS\system32\drivers\pnarp.sys
11:34:45.0009 3336  C:\WINDOWS\system32\drivers\pnarp.sys - ok
11:34:45.0009 3336  [ D8AC00388262B1A4878A7EE12F31D376 ] C:\WINDOWS\system32\drivers\purendis.sys
11:34:45.0009 3336  C:\WINDOWS\system32\drivers\purendis.sys - ok
11:34:45.0009 3336  [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
11:34:45.0009 3336  C:\WINDOWS\system32\dhcpcsvc.dll - ok
11:34:45.0024 3336  [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
11:34:45.0024 3336  C:\WINDOWS\system32\dnsrslvr.dll - ok
11:34:45.0024 3336  [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
11:34:45.0024 3336  C:\WINDOWS\system32\lmhsvc.dll - ok
11:34:45.0024 3336  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
11:34:45.0024 3336  C:\WINDOWS\system32\wzcsvc.dll - ok
11:34:45.0040 3336  [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
11:34:45.0040 3336  C:\WINDOWS\system32\rtutils.dll - ok
11:34:45.0040 3336  [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
11:34:45.0040 3336  C:\WINDOWS\system32\eapolqec.dll - ok
11:34:45.0040 3336  [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
11:34:45.0040 3336  C:\WINDOWS\system32\wmi.dll - ok
11:34:45.0056 3336  [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
11:34:45.0056 3336  C:\WINDOWS\system32\atl.dll - ok
11:34:45.0056 3336  [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
11:34:45.0056 3336  C:\WINDOWS\system32\qutil.dll - ok
11:34:45.0056 3336  [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
11:34:45.0056 3336  C:\WINDOWS\system32\dot3api.dll - ok
11:34:45.0071 3336  [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
11:34:45.0071 3336  C:\WINDOWS\system32\esent.dll - ok
11:34:45.0071 3336  [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
11:34:45.0071 3336  C:\WINDOWS\system32\clbcatq.dll - ok
11:34:45.0071 3336  [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
11:34:45.0071 3336  C:\WINDOWS\system32\cscdll.dll - ok
11:34:45.0087 3336  [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
11:34:45.0087 3336  C:\WINDOWS\system32\logonui.exe - ok
11:34:45.0087 3336  [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
11:34:45.0087 3336  C:\WINDOWS\system32\dimsntfy.dll - ok
11:34:45.0087 3336  [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
11:34:45.0087 3336  C:\WINDOWS\system32\wlnotify.dll - ok
11:34:45.0103 3336  [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
11:34:45.0103 3336  C:\WINDOWS\system32\duser.dll - ok
11:34:45.0103 3336  [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
11:34:45.0103 3336  C:\WINDOWS\system32\winspool.drv - ok
11:34:45.0103 3336  [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
11:34:45.0103 3336  C:\WINDOWS\system32\msimg32.dll - ok
11:34:45.0118 3336  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
11:34:45.0118 3336  C:\WINDOWS\system32\oleacc.dll - ok
11:34:45.0118 3336  [ D7DCFB4D0C58FFB569DE93E1681FD37A ] C:\WINDOWS\system32\WgaLogon.dll
11:34:45.0118 3336  C:\WINDOWS\system32\WgaLogon.dll - ok
11:34:45.0118 3336  [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
11:34:45.0118 3336  C:\WINDOWS\system32\comres.dll - ok
11:34:45.0134 3336  [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
11:34:45.0134 3336  C:\WINDOWS\system32\msxml3.dll - ok
11:34:45.0134 3336  [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
11:34:45.0134 3336  C:\WINDOWS\system32\rastls.dll - ok
11:34:45.0134 3336  [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
11:34:45.0134 3336  C:\WINDOWS\system32\shgina.dll - ok
11:34:45.0134 3336  [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
11:34:45.0134 3336  C:\WINDOWS\system32\cryptui.dll - ok
11:34:45.0149 3336  [ D175F91A4C98B8848818C9B5089F88A2 ] C:\WINDOWS\system32\wininet.dll
11:34:45.0149 3336  C:\WINDOWS\system32\wininet.dll - ok
11:34:45.0149 3336  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
11:34:45.0149 3336  C:\WINDOWS\system32\normaliz.dll - ok
11:34:45.0149 3336  [ 84A5C7B9B1B82F94A8245781FD44D8BA ] C:\WINDOWS\system32\urlmon.dll
11:34:45.0149 3336  C:\WINDOWS\system32\urlmon.dll - ok
11:34:45.0165 3336  [ D1B3D1E05BEDC8F9B0BBBC03D6033F82 ] C:\WINDOWS\system32\iertutil.dll
11:34:45.0165 3336  C:\WINDOWS\system32\iertutil.dll - ok
11:34:45.0165 3336  [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
11:34:45.0165 3336  C:\WINDOWS\system32\mprapi.dll - ok
11:34:45.0165 3336  [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
11:34:45.0165 3336  C:\WINDOWS\system32\activeds.dll - ok
11:34:45.0181 3336  [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
11:34:45.0181 3336  C:\WINDOWS\system32\adsldpc.dll - ok
11:34:45.0181 3336  [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
11:34:45.0181 3336  C:\WINDOWS\system32\rasapi32.dll - ok
11:34:45.0181 3336  [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
11:34:45.0181 3336  C:\WINDOWS\system32\rasman.dll - ok
11:34:45.0196 3336  [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
11:34:45.0196 3336  C:\WINDOWS\system32\tapi32.dll - ok
11:34:45.0196 3336  [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
11:34:45.0196 3336  C:\WINDOWS\system32\riched20.dll - ok
11:34:45.0196 3336  [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
11:34:45.0196 3336  C:\WINDOWS\system32\raschap.dll - ok
11:34:45.0212 3336  [ FC5372FD2DEB28E847C8394C58BC76FA ] C:\Program Files\Microsoft Security Client\MpCmdRun.exe
11:34:45.0212 3336  C:\Program Files\Microsoft Security Client\MpCmdRun.exe - ok
11:34:45.0212 3336  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
11:34:45.0212 3336  C:\WINDOWS\system32\schedsvc.dll - ok
11:34:45.0212 3336  [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
11:34:45.0212 3336  C:\WINDOWS\system32\msidle.dll - ok
11:34:45.0228 3336  [ D3FACB34FFF5DB91ADB70987838F8BA7 ] C:\WINDOWS\system32\brsvc01a.exe
11:34:45.0228 3336  C:\WINDOWS\system32\brsvc01a.exe - ok
11:34:45.0228 3336  [ 9E646CD378D4D0C996BAF9BCB18237C7 ] C:\WINDOWS\system32\brss01a.exe
11:34:45.0228 3336  C:\WINDOWS\system32\brss01a.exe - ok
11:34:45.0228 3336  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
11:34:45.0228 3336  C:\WINDOWS\system32\spoolsv.exe - ok
11:34:45.0243 3336  [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
11:34:45.0243 3336  C:\WINDOWS\system32\cabinet.dll - ok
11:34:45.0243 3336  [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
11:34:45.0243 3336  C:\WINDOWS\system32\audiosrv.dll - ok
11:34:45.0243 3336  [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
11:34:45.0243 3336  C:\WINDOWS\system32\wkssvc.dll - ok
11:34:45.0259 3336  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
11:34:45.0259 3336  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
11:34:45.0259 3336  [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
11:34:45.0259 3336  C:\WINDOWS\system32\webclnt.dll - ok
11:34:45.0259 3336  [ 3B47E60E1012B23873ED2E4A9B4F2310 ] C:\Program Files\Microsoft Security Client\MsseWat.dll
11:34:45.0259 3336  C:\Program Files\Microsoft Security Client\MsseWat.dll - ok
11:34:45.0274 3336  [ A26E0A6A7EBB45815A3583E170C27031 ] C:\Program Files\Microsoft Security Client\LegitLib.dll
11:34:45.0274 3336  C:\Program Files\Microsoft Security Client\LegitLib.dll - ok
11:34:45.0274 3336  [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
11:34:45.0274 3336  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
11:34:45.0274 3336  [ 01E81C84AD1D0ACC61CF3CFD06632210 ] C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
11:34:45.0274 3336  C:\Program Files\SUPERAntiSpyware\SASCORE.EXE - ok
11:34:45.0290 3336  [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
11:34:45.0290 3336  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
11:34:45.0290 3336  [ 85180CF88C5EBAD73B452A43A004CA51 ] C:\Program Files\Common Files\AOL\acs\AOLacsd.exe
11:34:45.0290 3336  C:\Program Files\Common Files\AOL\acs\AOLacsd.exe - ok
11:34:45.0290 3336  [ 6DBD8C6D28EEB5BC16C730FF07AE5979 ] C:\Program Files\Common Files\AOL\acs\AOLacsd.dll
11:34:45.0290 3336  C:\Program Files\Common Files\AOL\acs\AOLacsd.dll - ok
11:34:45.0290 3336  [ 7332AED6A02FE37C4356C40628E175CE ] C:\Program Files\Common Files\AOL\acs\xpat.dll
11:34:45.0290 3336  C:\Program Files\Common Files\AOL\acs\xpat.dll - ok
11:34:45.0306 3336  [ C6B2AD321E6C12E12898D1CAE587D0D5 ] C:\Program Files\Common Files\AOL\acs\shfolder.dll
11:34:45.0306 3336  C:\Program Files\Common Files\AOL\acs\shfolder.dll - ok
11:34:45.0306 3336  [ A5299D04ED225D64CF07A568A3E1BF8C ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:34:45.0306 3336  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
11:34:45.0321 3336  [ 0B5EDD2871209EA886A9B48A36828D65 ] C:\Program Files\Common Files\AOL\acs\ACSMDiag.dll
11:34:45.0321 3336  C:\Program Files\Common Files\AOL\acs\ACSMDiag.dll - ok
11:34:45.0321 3336  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
11:34:45.0321 3336  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
11:34:45.0321 3336  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
11:34:45.0321 3336  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
11:34:45.0337 3336  [ 6C63DC384A15E2AFD4A860031EF40267 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
11:34:45.0337 3336  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
11:34:45.0337 3336  [ E01945331345F678AFAE3ECD5369D61A ] C:\Program Files\Common Files\AOL\AOLDiag\tbdiag.dll
11:34:45.0337 3336  C:\Program Files\Common Files\AOL\AOLDiag\tbdiag.dll - ok
11:34:45.0337 3336  [ EF8CD3C64EE9C08980D6D06CCCE46C68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
11:34:45.0337 3336  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
11:34:45.0353 3336  [ 64894527838C86454E2F378FF39FA336 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
11:34:45.0353 3336  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
11:34:45.0353 3336  [ 3924B7B6258D8F35D9BEE1F61D453553 ] C:\Program Files\Common Files\AOL\acs\ACSCmn.dll
11:34:45.0353 3336  C:\Program Files\Common Files\AOL\acs\ACSCmn.dll - ok
11:34:45.0353 3336  [ C9680F06E51DB8B9A0772C20F3E10DB6 ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
11:34:45.0353 3336  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
11:34:45.0353 3336  [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
11:34:45.0353 3336  C:\WINDOWS\system32\wsock32.dll - ok
11:34:45.0368 3336  [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
11:34:45.0368 3336  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
11:34:45.0368 3336  [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
11:34:45.0368 3336  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
11:34:45.0368 3336  [ 5A963C340DE1A01BA6E24945CE05D16A ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
11:34:45.0368 3336  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
11:34:45.0384 3336  [ F4BC62990E7E5C29799A895B80FC3177 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
11:34:45.0384 3336  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
11:34:45.0384 3336  [ 149D74E1128A86DC9CFB2851FBEA11EB ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
11:34:45.0384 3336  C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
11:34:45.0384 3336  [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
11:34:45.0384 3336  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
11:34:45.0399 3336  [ 4E4EDF9CA82E95BAB2977DD9F21B00F6 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
11:34:45.0399 3336  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
11:34:45.0399 3336  [ 062373995EAE5F0EAC9EAA9192136BFB ] C:\WINDOWS\system32\dnssd.dll
11:34:45.0399 3336  C:\WINDOWS\system32\dnssd.dll - ok
11:34:45.0399 3336  [ 0E1B02C9CC352A1F61703B7D1A8A2C45 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
11:34:45.0399 3336  C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
11:34:45.0415 3336  [ 54AB078660E536DA72B21A27F56B035B ] C:\WINDOWS\system32\drivers\ASPI32.SYS
11:34:45.0415 3336  C:\WINDOWS\system32\drivers\ASPI32.SYS - ok
11:34:45.0415 3336  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
11:34:45.0415 3336  C:\Program Files\Bonjour\mDNSResponder.exe - ok
11:34:45.0415 3336  [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
11:34:45.0415 3336  C:\WINDOWS\system32\powrprof.dll - ok
11:34:45.0431 3336  [ BB192385661DAF7F3D48B586F6E1D166 ] C:\WINDOWS\system32\Brmfrmps.exe
11:34:45.0431 3336  C:\WINDOWS\system32\Brmfrmps.exe - ok
11:34:45.0431 3336  [ E53B389AABC47A86A41884E94C9A3012 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
11:34:45.0431 3336  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
11:34:45.0431 3336  [ 2E14406E05789F91C9282AE7CFCA3A07 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
11:34:45.0431 3336  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
11:34:45.0446 3336  [ 3C8B6609712F4FF78E521F6DCFC4032B ] C:\WINDOWS\system32\CTSVCCDA.EXE
11:34:45.0446 3336  C:\WINDOWS\system32\CTSVCCDA.EXE - ok
11:34:45.0446 3336  [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
11:34:45.0446 3336  C:\WINDOWS\system32\cryptsvc.dll - ok
11:34:45.0446 3336  [ AEFB8558199BD5212B268B09BFA1D71A ] C:\WINDOWS\system32\CSHelper.exe
11:34:45.0446 3336  C:\WINDOWS\system32\CSHelper.exe - ok
11:34:45.0462 3336  [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
11:34:45.0462 3336  C:\WINDOWS\system32\certcli.dll - ok
11:34:45.0462 3336  [ 8BA9851E671E8B5E49E303748FFD530C ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
11:34:45.0462 3336  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
11:34:45.0462 3336  [ 73862FF693168369A90F046E7F227B83 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
11:34:45.0462 3336  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
11:34:45.0478 3336  [ 626D283FA9F763E7E1ED9EDCEED9E93C ] C:\WINDOWS\system32\CSInstru.DLL
11:34:45.0478 3336  C:\WINDOWS\system32\CSInstru.DLL - ok
11:34:45.0478 3336  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9 ] C:\WINDOWS\ehome\ehrecvr.exe
11:34:45.0478 3336  C:\WINDOWS\ehome\ehrecvr.exe - ok
11:34:45.0478 3336  [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
11:34:45.0478 3336  C:\WINDOWS\system32\dmserver.dll - ok
11:34:45.0493 3336  [ 0099D24356585743B0B35C222092FD8F ] C:\WINDOWS\system32\faultrep.dll
11:34:45.0493 3336  C:\WINDOWS\system32\faultrep.dll - ok
11:34:45.0493 3336  [ 6D280BC969218AE4A72180F907C32913 ] C:\WINDOWS\ehome\ehTrace.dll
11:34:45.0493 3336  C:\WINDOWS\ehome\ehTrace.dll - ok
11:34:45.0493 3336  [ A53243709439AC2A4C216B817F8D7411 ] C:\WINDOWS\ehome\ehSched.exe
11:34:45.0493 3336  C:\WINDOWS\ehome\ehSched.exe - ok
11:34:45.0509 3336  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files\Google\Update\GoogleUpdate.exe
11:34:45.0509 3336  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
11:34:45.0509 3336  [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
11:34:45.0509 3336  C:\WINDOWS\system32\ersvc.dll - ok
11:34:45.0509 3336  [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
11:34:45.0509 3336  C:\WINDOWS\system32\es.dll - ok
11:34:45.0524 3336  [ 008DF0C9D81BD814480DD9C052893E8C ] C:\WINDOWS\ehome\ehRec.exe
11:34:45.0524 3336  C:\WINDOWS\ehome\ehRec.exe - ok
11:34:45.0524 3336  [ 08A73B0E7EE6E32983B5F9E540A8E380 ] C:\WINDOWS\system32\mscoree.dll
11:34:45.0524 3336  C:\WINDOWS\system32\mscoree.dll - ok
11:34:45.0524 3336  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files\Google\Update\1.3.21.135\goopdate.dll
11:34:45.0524 3336  C:\Program Files\Google\Update\1.3.21.135\goopdate.dll - ok
11:34:45.0540 3336  [ D8CDD29F05F2545D72F714089AEC6FD8 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
11:34:45.0540 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll - ok
11:34:45.0540 3336  [ 926AFC4848FF3297BB264333BF51E21F ] C:\WINDOWS\system32\sbe.dll
11:34:45.0540 3336  C:\WINDOWS\system32\sbe.dll - ok
11:34:45.0540 3336  [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
11:34:45.0540 3336  C:\WINDOWS\system32\msi.dll - ok
11:34:45.0556 3336  [ E325BCDBB6DED6C89F679B8AE89E975C ] C:\WINDOWS\system32\msvidctl.dll
11:34:45.0556 3336  C:\WINDOWS\system32\msvidctl.dll - ok
11:34:45.0556 3336  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
11:34:45.0556 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll - ok
11:34:45.0556 3336  [ BF107ACF2CDD552AABE14E8C3E62E3FC ] C:\WINDOWS\system32\quartz.dll
11:34:45.0556 3336  C:\WINDOWS\system32\quartz.dll - ok
11:34:45.0571 3336  [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
11:34:45.0571 3336  C:\WINDOWS\system32\dbghelp.dll - ok
11:34:45.0571 3336  [ 7C87A5FB95777E4132B11FC3D92CAAF5 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll
11:34:45.0571 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll - ok
11:34:45.0571 3336  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
11:34:45.0571 3336  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
11:34:45.0587 3336  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
11:34:45.0587 3336  C:\WINDOWS\system32\drivers\http.sys - ok
11:34:45.0587 3336  [ C0A447BCA69D9661D1EF7EDF4C700FE3 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
11:34:45.0587 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll - ok
11:34:45.0587 3336  [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
11:34:45.0587 3336  C:\WINDOWS\system32\hidserv.dll - ok
11:34:45.0603 3336  [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
11:34:45.0603 3336  C:\WINDOWS\system32\hid.dll - ok
11:34:45.0603 3336  [ 5400C14134E7D6A0069C46FEBCB2DDDF ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
11:34:45.0603 3336  C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe - ok
11:34:45.0603 3336  [ 30DB64D316F502558DB2380F7343C9FD ] C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
11:34:45.0603 3336  C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
11:34:45.0618 3336  [ 1758AF653723679E3746FC7DDD93C69B ] C:\Program Files\Java\jre7\bin\jqs.exe
11:34:45.0618 3336  C:\Program Files\Java\jre7\bin\jqs.exe - ok
11:34:45.0618 3336  [ AA5E22854F56C68148EB3345DBD62970 ] C:\WINDOWS\system32\devenum.dll
11:34:45.0618 3336  C:\WINDOWS\system32\devenum.dll - ok
11:34:45.0618 3336  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
11:34:45.0618 3336  C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
11:34:45.0634 3336  [ D25C03D04159D462D69F294BA7142BDB ] C:\WINDOWS\system32\msdmo.dll
11:34:45.0634 3336  C:\WINDOWS\system32\msdmo.dll - ok
11:34:45.0634 3336  [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
11:34:45.0634 3336  C:\WINDOWS\system32\pdh.dll - ok
11:34:45.0634 3336  [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
11:34:45.0634 3336  C:\WINDOWS\system32\odbcbcp.dll - ok
11:34:45.0649 3336  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
11:34:45.0649 3336  C:\WINDOWS\system32\srvsvc.dll - ok
11:34:45.0649 3336  [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
11:34:45.0649 3336  C:\WINDOWS\system32\netmsg.dll - ok
11:34:45.0649 3336  [ 71BFE006FA33D2D40C5CD5D03DB47F98 ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_acf8ef3d\mscorlib.dll
11:34:45.0649 3336  C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_acf8ef3d\mscorlib.dll - ok
11:34:45.0665 3336  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
11:34:45.0665 3336  C:\WINDOWS\system32\drivers\srv.sys - ok
11:34:45.0665 3336  [ ADE43E6677BA2D52413DDDAB38438555 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
11:34:45.0665 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll - ok
11:34:45.0665 3336  [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
11:34:45.0665 3336  C:\WINDOWS\system32\perfos.dll - ok
11:34:45.0681 3336  [ E57F1ED6244249AB7C4C306722B05148 ] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
11:34:45.0681 3336  C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe - ok
11:34:45.0681 3336  [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
11:34:45.0681 3336  C:\WINDOWS\system32\perfdisk.dll - ok
11:34:45.0681 3336  [ 837608240884733792DDAE81E50B802A ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
11:34:45.0681 3336  C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe - ok
11:34:45.0696 3336  [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
11:34:45.0696 3336  C:\WINDOWS\system32\spoolss.dll - ok
11:34:45.0696 3336  [ 207204AF80505AF51271FE164B56F662 ] C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
11:34:45.0696 3336  C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll - ok
11:34:45.0696 3336  [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
11:34:45.0696 3336  C:\WINDOWS\system32\localspl.dll - ok
11:34:45.0712 3336  [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
11:34:45.0712 3336  C:\WINDOWS\system32\cnbjmon.dll - ok
11:34:45.0712 3336  [ CC6292CA575E851E5B74BF8883AB967A ] C:\WINDOWS\system32\fxsmon.dll
11:34:45.0712 3336  C:\WINDOWS\system32\fxsmon.dll - ok
11:34:45.0712 3336  [ BDB83C844EDEC9BD01A94750D2C38DDF ] C:\WINDOWS\system32\fxsevent.dll
11:34:45.0712 3336  C:\WINDOWS\system32\fxsevent.dll - ok
11:34:45.0712 3336  [ AE8028E980FCAB6CCAF68E6850D8FE50 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
11:34:45.0728 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll - ok
11:34:45.0728 3336  [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
11:34:45.0728 3336  C:\WINDOWS\system32\pjlmon.dll - ok
11:34:45.0728 3336  [ C52CE534397E1D3A442FB4C88A3CBE42 ] C:\WINDOWS\system32\msonpmon.dll
11:34:45.0728 3336  C:\WINDOWS\system32\msonpmon.dll - ok
11:34:45.0728 3336  [ 73B44FE5423982B2709D6EA2F674B807 ] C:\WINDOWS\assembly\GAC\ehepg\6.0.3000.0__31bf3856ad364e35\ehepg.dll
11:34:45.0728 3336  C:\WINDOWS\assembly\GAC\ehepg\6.0.3000.0__31bf3856ad364e35\ehepg.dll - ok
11:34:45.0743 3336  [ E59FA564C31A0045308470A86DC92ABA ] C:\WINDOWS\system32\smfaxmon.dll
11:34:45.0743 3336  C:\WINDOWS\system32\smfaxmon.dll - ok
11:34:45.0743 3336  [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
11:34:45.0743 3336  C:\WINDOWS\system32\tcpmon.dll - ok
11:34:45.0743 3336  [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
11:34:45.0743 3336  C:\WINDOWS\system32\usbmon.dll - ok
11:34:45.0759 3336  [ D5C949AF42DC0A7E3D26CF63D43604BD ] C:\WINDOWS\system32\spool\prtprocs\w32x86\brmfpp1.dll
11:34:45.0759 3336  C:\WINDOWS\system32\spool\prtprocs\w32x86\brmfpp1.dll - ok
11:34:45.0759 3336  [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
11:34:45.0759 3336  C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
11:34:45.0759 3336  [ 30EFEBDC960A482E3E188B9960B286E2 ] C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
11:34:45.0759 3336  C:\Program Files\Microsoft Office\Office12\GrooveNew.dll - ok
11:34:45.0774 3336  [ D5E459BED3DB9CF7FC6CC1455F177D2D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
11:34:45.0774 3336  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll - ok
11:34:45.0774 3336  [ F348280907B38FDBDB3CEF55D456E149 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
11:34:45.0774 3336  C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll - ok
11:34:45.0790 3336  [ 091BAF6A902261F235B734DEFE0473EC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\ppbiPr.dll
11:34:45.0790 3336  C:\WINDOWS\system32\spool\prtprocs\w32x86\ppbiPr.dll - ok
11:34:45.0790 3336  [ D8C2B95BC2353E1F18850D6B8F5DBA13 ] C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
11:34:45.0790 3336  C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll - ok
11:34:45.0790 3336  [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
11:34:45.0790 3336  C:\WINDOWS\system32\win32spl.dll - ok
11:34:45.0806 3336  [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
11:34:45.0806 3336  C:\WINDOWS\system32\netrap.dll - ok
11:34:45.0806 3336  [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
11:34:45.0806 3336  C:\WINDOWS\system32\inetpp.dll - ok
11:34:45.0806 3336  [ 994AD0D8550B8B26990A6E3AA0791502 ] C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll
11:34:45.0806 3336  C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll - ok
11:34:45.0821 3336  [ AB9AAC01AC223F03707748C038A03244 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
11:34:45.0821 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll - ok
11:34:45.0821 3336  [ 8BA39E5F79366F45AF9759C1DAE346AE ] C:\WINDOWS\assembly\GAC\ehRecObj\6.0.3000.0__31bf3856ad364e35\ehRecObj.dll
11:34:45.0821 3336  C:\WINDOWS\assembly\GAC\ehRecObj\6.0.3000.0__31bf3856ad364e35\ehRecObj.dll - ok
11:34:45.0821 3336  [ 2975C66459C426C20BC22D639DF6B611 ] C:\Program Files\SUPERAntiSpyware\SASSEH.DLL
11:34:45.0821 3336  C:\Program Files\SUPERAntiSpyware\SASSEH.DLL - ok
11:34:45.0837 3336  [ 0967D9749326622FA8FDE688CA126736 ] C:\WINDOWS\assembly\GAC\ehepgdat\6.0.3000.0__31bf3856ad364e35\ehepgdat.dll
11:34:45.0837 3336  C:\WINDOWS\assembly\GAC\ehepgdat\6.0.3000.0__31bf3856ad364e35\ehepgdat.dll - ok
11:34:45.0837 3336  [ CF9EEA7F51101A281B99FCA7AFFA2524 ] C:\WINDOWS\assembly\GAC\ehCIR\6.0.3000.0__31bf3856ad364e35\ehCIR.dll
11:34:45.0837 3336  C:\WINDOWS\assembly\GAC\ehCIR\6.0.3000.0__31bf3856ad364e35\ehCIR.dll - ok
11:34:45.0837 3336  [ B6335A2EFBF0B4B7D4080E8B933A9F9B ] C:\WINDOWS\assembly\GAC\ehiProxy\6.0.3000.0__31bf3856ad364e35\ehiProxy.dll
11:34:45.0837 3336  C:\WINDOWS\assembly\GAC\ehiProxy\6.0.3000.0__31bf3856ad364e35\ehiProxy.dll - ok
11:34:45.0853 3336  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
11:34:45.0853 3336  C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
11:34:45.0853 3336  [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
11:34:45.0853 3336  C:\WINDOWS\system32\mstask.dll - ok
11:34:45.0853 3336  [ 6D0A021A23A281AB9F212CF1E2BD3757 ] C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
11:34:45.0853 3336  C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll - ok
11:34:45.0868 3336  [ 52ABC8C57DFEE5A7AAA210CE2E9DFE73 ] C:\WINDOWS\assembly\GAC\EhCM\6.0.3000.0__31bf3856ad364e35\EhCM.dll
11:34:45.0868 3336  C:\WINDOWS\assembly\GAC\EhCM\6.0.3000.0__31bf3856ad364e35\EhCM.dll - ok
11:34:45.0868 3336  [ A28DBB3D3B5FDD821E43AAFB941E35AB ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_c34d8cc2\System.dll
11:34:45.0868 3336  C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_c34d8cc2\System.dll - ok
11:34:45.0868 3336  [ 66946DE593185983B6D05F837D452262 ] C:\WINDOWS\ehome\ehui.dll
11:34:45.0868 3336  C:\WINDOWS\ehome\ehui.dll - ok
11:34:45.0884 3336  [ 855F6333E3A4DFC6F3C8B0520C261FCD ] C:\WINDOWS\system32\msftedit.dll
11:34:45.0884 3336  C:\WINDOWS\system32\msftedit.dll - ok
11:34:45.0884 3336  [ 7AC813E17BD960987C5DA788AF295361 ] C:\WINDOWS\ehome\ehdebug.dll
11:34:45.0884 3336  C:\WINDOWS\ehome\ehdebug.dll - ok
11:34:45.0884 3336  [ 254CCDC043DFADC5D5EF99B533BB1DC2 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll
11:34:45.0884 3336  C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll - ok
11:34:45.0899 3336  [ A5205B3AF85B1477AB2C2A1E12201598 ] C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
11:34:45.0899 3336  C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll - ok
11:34:45.0899 3336  [ D6D4130C0BBC0D18C2DA703CC38260A9 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll
11:34:45.0899 3336  C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlos.dll - ok
11:34:45.0899 3336  [ E111CED19D6A9FF9BBA5C219D0C5A3CE ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll
11:34:45.0899 3336  C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\opends60.dll - ok
11:34:45.0899 3336  [ 7B193BA3F0245D5867B71AD1CF631474 ] C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll
11:34:45.0899 3336  C:\Program Files\Microsoft SQL Server\90\Shared\instapi.dll - ok
11:34:45.0915 3336  [ B90E093E7A7250906F1054418B5339C0 ] C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
11:34:45.0915 3336  C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe - ok
11:34:45.0915 3336  [ 1AF54261C283BAFB021B3D84A7BAE978 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll
11:34:45.0915 3336  C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\SQLBOOT.dll - ok
11:34:45.0915 3336  [ 247FE8DEFBB95A4319C7B4B215F92891 ] C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll
11:34:45.0915 3336  C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\Resources\1033\sqlevn70.rll - ok
11:34:45.0931 3336  [ D167CA427516B8C416B746117F69B870 ] C:\Program Files\Common Files\Nero\Nero BackItUp 4\NB.dll
11:34:45.0931 3336  C:\Program Files\Common Files\Nero\Nero BackItUp 4\NB.dll - ok
11:34:45.0931 3336  [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
11:34:45.0931 3336  C:\WINDOWS\system32\shfolder.dll - ok
11:34:45.0931 3336  [ 44CF192FCFB4F2D2D417E465429048CD ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_b75064be\System.Xml.dll
11:34:45.0931 3336  C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_b75064be\System.Xml.dll - ok
11:34:45.0946 3336  [ 3550DFA6FFFBD7604DABB28DF4ABF096 ] C:\WINDOWS\ehome\custsat.dll
11:34:45.0946 3336  C:\WINDOWS\ehome\custsat.dll - ok
11:34:45.0946 3336  [ 576FF75D51B79536C3AE7659B482B7D5 ] C:\WINDOWS\assembly\GAC\BDATunePIA\6.0.3000.0__31bf3856ad364e35\bdatunepia.dll
11:34:45.0946 3336  C:\WINDOWS\assembly\GAC\BDATunePIA\6.0.3000.0__31bf3856ad364e35\bdatunepia.dll - ok
11:34:45.0946 3336  [ 0F0F5B564C5A3C9B38A6220230252567 ] C:\WINDOWS\ehome\ehProxy.dll
11:34:45.0946 3336  C:\WINDOWS\ehome\ehProxy.dll - ok
11:34:45.0962 3336  [ 6F640DC052CF77161A23E29261593793 ] C:\WINDOWS\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll
11:34:45.0962 3336  C:\WINDOWS\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll - ok
11:34:45.0962 3336  [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
11:34:45.0962 3336  C:\WINDOWS\system32\winhttp.dll - ok
11:34:45.0962 3336  [ 5F5360825D2B829121E78E84D4CB8785 ] C:\Program Files\Common Files\Nero\Nero BackItUp 4\LBFC.dll
11:34:45.0962 3336  C:\Program Files\Common Files\Nero\Nero BackItUp 4\LBFC.dll - ok
11:34:45.0978 3336  [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
11:34:45.0978 3336  C:\WINDOWS\system32\ipsecsvc.dll - ok
11:34:45.0978 3336  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
11:34:45.0978 3336  C:\WINDOWS\system32\netman.dll - ok
11:34:45.0978 3336  [ 81DA72712DF46480E6248AEB35E15FCC ] C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBBurn.dll
11:34:45.0978 3336  C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBBurn.dll - ok
11:34:45.0993 3336  [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
11:34:45.0993 3336  C:\WINDOWS\system32\oakley.dll - ok
11:34:45.0993 3336  [ 64E413BA0C529AA40C3924BBCC4153DB ] C:\WINDOWS\system32\PSIService.exe
11:34:45.0993 3336  C:\WINDOWS\system32\PSIService.exe - ok
11:34:45.0993 3336  [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
11:34:45.0993 3336  C:\WINDOWS\system32\netshell.dll - ok
11:34:46.0009 3336  [ 8E2D68A36FCB58A8DA57DE3E064F39CC ] C:\Program Files\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll
11:34:46.0009 3336  C:\Program Files\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll - ok
11:34:46.0009 3336  [ 3A0F7D74187101B0DFF01D5B460FDAF3 ] C:\WINDOWS\system32\PSIKey.dll
11:34:46.0009 3336  C:\WINDOWS\system32\PSIKey.dll - ok
11:34:46.0009 3336  [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
11:34:46.0009 3336  C:\WINDOWS\system32\winipsec.dll - ok
11:34:46.0024 3336  [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
11:34:46.0024 3336  C:\WINDOWS\system32\pstorsvc.dll - ok
11:34:46.0024 3336  [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
11:34:46.0024 3336  C:\WINDOWS\system32\psbase.dll - ok
11:34:46.0024 3336  [ 30D9CFDDDE206082A5A3CF71AAB6C9C3 ] C:\WINDOWS\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll
11:34:46.0024 3336  C:\WINDOWS\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - ok
11:34:46.0040 3336  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
11:34:46.0040 3336  C:\WINDOWS\system32\dssenh.dll - ok
11:34:46.0040 3336  [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
11:34:46.0040 3336  C:\WINDOWS\system32\security.dll - ok
11:34:46.0040 3336  [ EA08C74D9BE05E53D3C92456413AA656 ] C:\WINDOWS\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.Thunk.dll
11:34:46.0040 3336  C:\WINDOWS\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.Thunk.dll - ok
11:34:46.0056 3336  [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
11:34:46.0056 3336  C:\WINDOWS\system32\comsvcs.dll - ok
11:34:46.0056 3336  [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
11:34:46.0056 3336  C:\WINDOWS\system32\credui.dll - ok
11:34:46.0056 3336  [ 5B19B557B0C188210A56A6B699D90B8F ] C:\WINDOWS\system32\regsvc.dll
11:34:46.0056 3336  C:\WINDOWS\system32\regsvc.dll - ok
11:34:46.0071 3336  [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
11:34:46.0071 3336  C:\WINDOWS\system32\dot3dlg.dll - ok
11:34:46.0071 3336  [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
11:34:46.0071 3336  C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe - ok
11:34:46.0071 3336  [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
11:34:46.0071 3336  C:\WINDOWS\system32\onex.dll - ok
11:34:46.0087 3336  [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
11:34:46.0087 3336  C:\WINDOWS\system32\eappcfg.dll - ok
11:34:46.0087 3336  [ D89083C4EB02DACA8F944B0E05E57F9D ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
11:34:46.0087 3336  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe - ok
11:34:46.0087 3336  [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
11:34:46.0087 3336  C:\WINDOWS\system32\eappprxy.dll - ok
11:34:46.0103 3336  [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
11:34:46.0103 3336  C:\WINDOWS\system32\colbact.dll - ok
11:34:46.0103 3336  [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
11:34:46.0103 3336  C:\WINDOWS\system32\wzcsapi.dll - ok
11:34:46.0103 3336  [ D1E2786D29A34009A54868B6B0449296 ] C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss_xp.dll
11:34:46.0103 3336  C:\Program Files\Microsoft SQL Server\90\Shared\sqlwvss_xp.dll - ok
11:34:46.0103 3336  [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
11:34:46.0103 3336  C:\WINDOWS\system32\mtxclu.dll - ok
11:34:46.0118 3336  [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
11:34:46.0118 3336  C:\WINDOWS\system32\clusapi.dll - ok
11:34:46.0118 3336  [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
11:34:46.0118 3336  C:\WINDOWS\system32\seclogon.dll - ok
11:34:46.0118 3336  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
11:34:46.0118 3336  C:\WINDOWS\system32\sens.dll - ok
11:34:46.0134 3336  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
11:34:46.0134 3336  C:\WINDOWS\system32\wiaservc.dll - ok
11:34:46.0134 3336  [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
11:34:46.0134 3336  C:\WINDOWS\system32\resutils.dll - ok
11:34:46.0134 3336  [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
11:34:46.0134 3336  C:\WINDOWS\system32\vssapi.dll - ok
11:34:46.0149 3336  [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
11:34:46.0149 3336  C:\WINDOWS\system32\srsvc.dll - ok
11:34:46.0149 3336  [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
11:34:46.0149 3336  C:\WINDOWS\system32\termsrv.dll - ok
11:34:46.0149 3336  [ 581176F60885AEF8F78C6E38DCC3CDF9 ] C:\WINDOWS\system32\MsPMSPSv.exe
11:34:46.0149 3336  C:\WINDOWS\system32\MsPMSPSv.exe - ok
11:34:46.0165 3336  [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
11:34:46.0165 3336  C:\WINDOWS\system32\tapisrv.dll - ok
11:34:46.0165 3336  [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
11:34:46.0165 3336  C:\WINDOWS\system32\cfgmgr32.dll - ok
11:34:46.0165 3336  [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
11:34:46.0165 3336  C:\WINDOWS\system32\mscms.dll - ok
11:34:46.0181 3336  [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
11:34:46.0181 3336  C:\WINDOWS\system32\icaapi.dll - ok
11:34:46.0181 3336  [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
11:34:46.0181 3336  C:\WINDOWS\system32\mstlsapi.dll - ok
11:34:46.0181 3336  [ 7778BDFA3F6F6FBA0E75B9594098F737 ] C:\WINDOWS\system32\searchindexer.exe
11:34:46.0181 3336  C:\WINDOWS\system32\searchindexer.exe - ok
11:34:46.0196 3336  [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
11:34:46.0196 3336  C:\WINDOWS\system32\trkwks.dll - ok
11:34:46.0196 3336  [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
11:34:46.0196 3336  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
11:34:46.0196 3336  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
11:34:46.0196 3336  C:\WINDOWS\system32\wuauserv.dll - ok
11:34:46.0212 3336  [ 0CBD1906F74BEB539FCEF6493095B933 ] C:\WINDOWS\system32\tquery.dll
11:34:46.0212 3336  C:\WINDOWS\system32\tquery.dll - ok
11:34:46.0212 3336  [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
11:34:46.0212 3336  C:\WINDOWS\system32\browser.dll - ok
11:34:46.0212 3336  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
11:34:46.0212 3336  C:\WINDOWS\system32\wuaueng.dll - ok
11:34:46.0228 3336  [ FB8015C72005252F1CF672E221070CBE ] C:\WINDOWS\system32\BrWia09c.dll
11:34:46.0228 3336  C:\WINDOWS\system32\BrWia09c.dll - ok
11:34:46.0228 3336  [ 89D74683C859B7982056D15938BACA3E ] C:\WINDOWS\system32\propsys.dll
11:34:46.0228 3336  C:\WINDOWS\system32\propsys.dll - ok
11:34:46.0228 3336  [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
11:34:46.0228 3336  C:\WINDOWS\system32\mspatcha.dll - ok
11:34:46.0243 3336  [ 01733ECBBE18A301EBBA170ABD710A24 ] C:\WINDOWS\system32\BrUsi09c.dll
11:34:46.0243 3336  C:\WINDOWS\system32\BrUsi09c.dll - ok
11:34:46.0243 3336  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
11:34:46.0243 3336  C:\WINDOWS\system32\wups.dll - ok
11:34:46.0243 3336  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
11:34:46.0243 3336  C:\WINDOWS\system32\wups2.dll - ok
11:34:46.0259 3336  [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
11:34:46.0259 3336  C:\WINDOWS\system32\actxprxy.dll - ok
11:34:46.0259 3336  [ E65C5F612400B39D7AA83E7057D798C2 ] C:\WINDOWS\system32\mssrch.dll
11:34:46.0259 3336  C:\WINDOWS\system32\mssrch.dll - ok
11:34:46.0259 3336  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
11:34:46.0259 3336  C:\WINDOWS\system32\wuauclt.exe - ok
11:34:46.0259 3336  [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
11:34:46.0259 3336  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
11:34:46.0274 3336  [ 43E4758953F454090CAD65C303796ED5 ] C:\WINDOWS\system32\query.dll
11:34:46.0274 3336  C:\WINDOWS\system32\query.dll - ok
11:34:46.0274 3336  [ 8EF654045E518AC00E52E7A1E2D3AD70 ] C:\Program Files\Canon\CAL\CALMAIN.exe
11:34:46.0274 3336  C:\Program Files\Canon\CAL\CALMAIN.exe - ok
11:34:46.0274 3336  [ E97D6A8684466DF94FF3BC24FB787A07 ] C:\WINDOWS\system32\fxssvc.exe
11:34:46.0274 3336  C:\WINDOWS\system32\fxssvc.exe - ok
11:34:46.0290 3336  [ 3CAEAE7608F1BD7BA873A3B02895B106 ] C:\WINDOWS\system32\sti.dll
11:34:46.0290 3336  C:\WINDOWS\system32\sti.dll - ok
11:34:46.0290 3336  [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
11:34:46.0290 3336  C:\WINDOWS\system32\wbem\esscli.dll - ok
11:34:46.0290 3336  [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
11:34:46.0290 3336  C:\WINDOWS\system32\wbem\fastprox.dll - ok
11:34:46.0306 3336  [ 1144EF6B4BB72E33B41912AE1AE4F97A ] C:\WINDOWS\system32\fxstiff.dll
11:34:46.0306 3336  C:\WINDOWS\system32\fxstiff.dll - ok
11:34:46.0306 3336  [ 0329D0A4F230094B669A87BB3B85606E ] C:\WINDOWS\system32\fxsapi.dll
11:34:46.0306 3336  C:\WINDOWS\system32\fxsapi.dll - ok
11:34:46.0306 3336  [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
11:34:46.0306 3336  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
11:34:46.0321 3336  [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
11:34:46.0321 3336  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
11:34:46.0321 3336  [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
11:34:46.0321 3336  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
11:34:46.0321 3336  [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
11:34:46.0321 3336  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
11:34:46.0337 3336  [ CD569FA91EC6F59D045C19D0D3850F44 ] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
11:34:46.0337 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe - ok
11:34:46.0337 3336  [ 0CE5F8AE9C371A965D17E3F2ED134809 ] C:\WINDOWS\system32\fxst30.dll
11:34:46.0337 3336  C:\WINDOWS\system32\fxst30.dll - ok
11:34:46.0337 3336  [ 8BEAF2B4BCDE405AF7EC46A9E03B2D65 ] C:\WINDOWS\system32\mssprxy.dll
11:34:46.0337 3336  C:\WINDOWS\system32\mssprxy.dll - ok
11:34:46.0353 3336  [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
11:34:46.0353 3336  C:\WINDOWS\system32\wbem\wbemess.dll - ok
11:34:46.0353 3336  [ 2D583E2844FDD592D1629EB6B10E5702 ] C:\WINDOWS\system32\fxsroute.dll
11:34:46.0353 3336  C:\WINDOWS\system32\fxsroute.dll - ok
11:34:46.0353 3336  [ D1E18F4AE94FFEC7270BE0A10C0B295E ] C:\WINDOWS\system32\xmllite.dll
11:34:46.0353 3336  C:\WINDOWS\system32\xmllite.dll - ok
11:34:46.0368 3336  [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
11:34:46.0368 3336  C:\WINDOWS\system32\unimdm.tsp - ok
11:34:46.0368 3336  [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
11:34:46.0368 3336  C:\WINDOWS\system32\uniplat.dll - ok
11:34:46.0368 3336  [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
11:34:46.0368 3336  C:\WINDOWS\system32\unimdmat.dll - ok
11:34:46.0384 3336  [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
11:34:46.0384 3336  C:\WINDOWS\system32\modemui.dll - ok
11:34:46.0384 3336  [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
11:34:46.0384 3336  C:\WINDOWS\system32\kmddsp.tsp - ok
11:34:46.0384 3336  [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
11:34:46.0384 3336  C:\WINDOWS\system32\ndptsp.tsp - ok
11:34:46.0399 3336  [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
11:34:46.0399 3336  C:\WINDOWS\system32\ipconf.tsp - ok
11:34:46.0399 3336  [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
11:34:46.0399 3336  C:\WINDOWS\system32\h323.tsp - ok
11:34:46.0399 3336  [ FFB3115AA757ABEFBA7FBA90BAD5DD0A ] C:\WINDOWS\system32\en-US\tquery.dll.mui
11:34:46.0399 3336  C:\WINDOWS\system32\en-US\tquery.dll.mui - ok
11:34:46.0415 3336  [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
11:34:46.0415 3336  C:\WINDOWS\system32\hidphone.tsp - ok
11:34:46.0415 3336  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
11:34:46.0415 3336  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
11:34:46.0415 3336  [ 8F580BCC5296ECC9DC8A649D75BE6BA5 ] C:\WINDOWS\system32\msscb.dll
11:34:46.0415 3336  C:\WINDOWS\system32\msscb.dll - ok
11:34:46.0431 3336  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
11:34:46.0431 3336  C:\WINDOWS\system32\drivers\splitter.sys - ok
11:34:46.0431 3336  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
11:34:46.0431 3336  C:\WINDOWS\system32\drivers\aec.sys - ok
11:34:46.0431 3336  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
11:34:46.0431 3336  C:\WINDOWS\system32\drivers\swmidi.sys - ok
11:34:46.0431 3336  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
11:34:46.0431 3336  C:\WINDOWS\system32\drivers\dmusic.sys - ok
11:34:46.0446 3336  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
11:34:46.0446 3336  C:\WINDOWS\system32\drivers\kmixer.sys - ok
11:34:46.0446 3336  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
11:34:46.0446 3336  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
11:34:46.0446 3336  [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
11:34:46.0446 3336  C:\WINDOWS\system32\cryptnet.dll - ok
11:34:46.0462 3336  [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
11:34:46.0462 3336  C:\WINDOWS\system32\sensapi.dll - ok
11:34:46.0462 3336  [ 75C1CA5B61414748CE9BCF3C7A52C39F ] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll
11:34:46.0462 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvclb.dll - ok
11:34:46.0462 3336  [ 53249B2147DDC8212B290ACF80570290 ] C:\WINDOWS\system32\ieframe.dll
11:34:46.0462 3336  C:\WINDOWS\system32\ieframe.dll - ok
11:34:46.0478 3336  [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
11:34:46.0478 3336  C:\WINDOWS\system32\cscui.dll - ok
11:34:46.0478 3336  [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
11:34:46.0478 3336  C:\WINDOWS\system32\wdmaud.drv - ok
11:34:46.0478 3336  [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
11:34:46.0478 3336  C:\WINDOWS\system32\dpcdll.dll - ok
11:34:46.0493 3336  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
11:34:46.0493 3336  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
11:34:46.0493 3336  [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
11:34:46.0493 3336  C:\WINDOWS\system32\userinit.exe - ok
11:34:46.0493 3336  [ 047CD344AC7B76BA3C224FAE1A4627C9 ] C:\WINDOWS\system32\WgaTray.exe
11:34:46.0493 3336  C:\WINDOWS\system32\WgaTray.exe - ok
11:34:46.0509 3336  [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
11:34:46.0509 3336  C:\WINDOWS\system32\msacm32.drv - ok
11:34:46.0509 3336  [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
11:34:46.0509 3336  C:\WINDOWS\system32\midimap.dll - ok
11:34:46.0509 3336  [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
11:34:46.0509 3336  C:\WINDOWS\explorer.exe - ok
11:34:46.0524 3336  [ 1F174A1BF0B7718ECB8D1821AD1D3166 ] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmagnt.dll
11:34:46.0524 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\nmagnt.dll - ok
11:34:46.0524 3336  [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
11:34:46.0524 3336  C:\WINDOWS\system32\ipnathlp.dll - ok
11:34:46.0524 3336  [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
11:34:46.0524 3336  C:\WINDOWS\system32\wscsvc.dll - ok
11:34:46.0540 3336  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
11:34:46.0540 3336  C:\WINDOWS\system32\wuapi.dll - ok
11:34:46.0540 3336  [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
11:34:46.0540 3336  C:\WINDOWS\system32\browseui.dll - ok
11:34:46.0540 3336  [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
11:34:46.0540 3336  C:\WINDOWS\system32\wbem\ncprov.dll - ok
11:34:46.0556 3336  [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
11:34:46.0556 3336  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
11:34:46.0556 3336  [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
11:34:46.0556 3336  C:\WINDOWS\system32\shdocvw.dll - ok
11:34:46.0556 3336  [ 1793CC660605F63B14FB96C7707F75BA ] C:\WINDOWS\system32\perfproc.dll
11:34:46.0556 3336  C:\WINDOWS\system32\perfproc.dll - ok
11:34:46.0571 3336  [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
11:34:46.0571 3336  C:\WINDOWS\system32\desk.cpl - ok
11:34:46.0571 3336  [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
11:34:46.0571 3336  C:\WINDOWS\system32\themeui.dll - ok
11:34:46.0571 3336  [ 54E18ADDC60A2054CF99B2E847A6D378 ] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmcore.dll
11:34:46.0571 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\nmcore.dll - ok
11:34:46.0587 3336  [ 3307A07B81206F354F0D4BEFEE922437 ] C:\WINDOWS\system32\LegitCheckControl.DLL
11:34:46.0587 3336  C:\WINDOWS\system32\LegitCheckControl.DLL - ok
11:34:46.0587 3336  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
11:34:46.0587 3336  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
11:34:46.0587 3336  [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
11:34:46.0587 3336  C:\WINDOWS\system32\cmd.exe - ok
11:34:46.0603 3336  [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\system32\licwmi.dll
11:34:46.0603 3336  C:\WINDOWS\system32\licwmi.dll - ok
11:34:46.0603 3336  [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
11:34:46.0603 3336  C:\WINDOWS\system32\wbem\framedyn.dll - ok
11:34:46.0603 3336  [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\system32\licdll.dll
11:34:46.0603 3336  C:\WINDOWS\system32\licdll.dll - ok
11:34:46.0618 3336  [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9 ] C:\WINDOWS\system32\msxml6.dll
11:34:46.0618 3336  C:\WINDOWS\system32\msxml6.dll - ok
11:34:46.0618 3336  [ 6BCBED73231F5D30B92DEE591B6679E9 ] C:\Program Files\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll
11:34:46.0618 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\CFirewallCOM.dll - ok
11:34:46.0618 3336  [ B2EEE3DEE31F50E082E9C720A6D7757D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
11:34:46.0618 3336  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll - ok
11:34:46.0634 3336  [ 7538050656FE5D63CB4B80349DD1CFE3 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
11:34:46.0634 3336  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll - ok
11:34:46.0634 3336  [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
11:34:46.0634 3336  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
11:34:46.0634 3336  [ B80933A7E3D63277A23F9882BF839DB5 ] C:\Program Files\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll
11:34:46.0634 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll - ok
11:34:46.0649 3336  [ 9EEFE69139FDBB4A3C327630F8EB993A ] C:\WINDOWS\system32\wlanapi.dll
11:34:46.0649 3336  C:\WINDOWS\system32\wlanapi.dll - ok
11:34:46.0649 3336  [ DE35EFF35C9EB0B381709CF979537E2A ] C:\Program Files\Common Files\Pure Networks Shared\Platform\nmrasv.dll
11:34:46.0649 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\nmrasv.dll - ok
11:34:46.0649 3336  [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
11:34:46.0649 3336  C:\WINDOWS\system32\netcfgx.dll - ok
11:34:46.0681 3336  [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
11:34:46.0681 3336  C:\WINDOWS\system32\upnp.dll - ok
11:34:46.0681 3336  [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
11:34:46.0681 3336  C:\WINDOWS\system32\ssdpapi.dll - ok
11:34:46.0681 3336  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
11:34:46.0681 3336  C:\WINDOWS\system32\rasmans.dll - ok
11:34:46.0696 3336  [ E01A3A0B77F1C01F0C1289AC29114AEE ] C:\Program Files\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmcorePS.dll
11:34:46.0696 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\11.2.09195.1.nmcorePS.dll - ok
11:34:46.0696 3336  [ 0A9BA6AF531AFE7FA5E4FB973852D863 ] C:\WINDOWS\system32\dllhost.exe
11:34:46.0696 3336  C:\WINDOWS\system32\dllhost.exe - ok
11:34:46.0696 3336  [ 1444EE8815B6EB99DE6937D2E7313DF6 ] C:\Program Files\Common Files\Pure Networks Shared\Platform\Linksys.dll
11:34:46.0696 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\Linksys.dll - ok
11:34:46.0712 3336  [ D0AA2987178AAF134D011C4CC7364B8B ] C:\Program Files\Common Files\Pure Networks Shared\Platform\UPnPGW.dll
11:34:46.0712 3336  C:\Program Files\Common Files\Pure Networks Shared\Platform\UPnPGW.dll - ok
11:34:46.0712 3336  [ 17E0CF9C8CBB717D05948656BCD86EFA ] C:\WINDOWS\system32\txflog.dll
11:34:46.0712 3336  C:\WINDOWS\system32\txflog.dll - ok
11:34:46.0712 3336  [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Chris\LOCALS~1\temp\573565C9-8669-417C-AF62-47079AAE652D.exe
11:34:46.0712 3336  C:\DOCUME~1\Chris\LOCALS~1\temp\573565C9-8669-417C-AF62-47079AAE652D.exe - ok
11:34:46.0728 3336  [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
11:34:46.0728 3336  C:\WINDOWS\system32\rastapi.dll - ok
11:34:46.0728 3336  [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
11:34:46.0728 3336  C:\WINDOWS\system32\alg.exe - ok
11:34:46.0728 3336  [ 9627EE26C7F3FD023D87DB50C62F5111 ] C:\WINDOWS\ehome\sqldb20.dll
11:34:46.0728 3336  C:\WINDOWS\ehome\sqldb20.dll - ok
11:34:46.0743 3336  [ 160762386084A0BB69F91BB694114D14 ] C:\WINDOWS\ehome\sqlse20.dll
11:34:46.0743 3336  C:\WINDOWS\ehome\sqlse20.dll - ok
11:34:46.0743 3336  [ A3AE51C21160328EA11F734392A0F269 ] C:\WINDOWS\ehome\sqlqp20.dll
11:34:46.0743 3336  C:\WINDOWS\ehome\sqlqp20.dll - ok
11:34:46.0743 3336  [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
11:34:46.0743 3336  C:\WINDOWS\system32\linkinfo.dll - ok
11:34:46.0743 3336  [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
11:34:46.0743 3336  C:\WINDOWS\system32\ntshrui.dll - ok
11:34:46.0759 3336  [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
11:34:46.0759 3336  C:\WINDOWS\system32\wbem\wmipcima.dll - ok
11:34:46.0759 3336  [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
11:34:46.0759 3336  C:\WINDOWS\system32\verclsid.exe - ok
11:34:46.0759 3336  [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
11:34:46.0759 3336  C:\WINDOWS\system32\rasppp.dll - ok
11:34:46.0774 3336  [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
11:34:46.0774 3336  C:\WINDOWS\system32\ntlsapi.dll - ok
11:34:46.0774 3336  [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
11:34:46.0774 3336  C:\WINDOWS\system32\rasqec.dll - ok
11:34:46.0774 3336  [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
11:34:46.0774 3336  C:\WINDOWS\system32\mlang.dll - ok
11:34:46.0790 3336  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\35312912.sys
11:34:46.0790 3336  C:\WINDOWS\system32\drivers\35312912.sys - ok
11:34:46.0790 3336  [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
11:34:46.0790 3336  C:\WINDOWS\system32\webcheck.dll - ok
11:34:46.0790 3336  [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
11:34:46.0790 3336  C:\WINDOWS\system32\stobject.dll - ok
11:34:46.0806 3336  [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
11:34:46.0806 3336  C:\WINDOWS\system32\batmeter.dll - ok
11:34:46.0806 3336  [ D7D69F304A604387B86BE991CBF07663 ] C:\WINDOWS\system32\WPDShServiceObj.dll
11:34:46.0806 3336  C:\WINDOWS\system32\WPDShServiceObj.dll - ok
11:34:46.0806 3336  [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\system32\mydocs.dll
11:34:46.0806 3336  C:\WINDOWS\system32\mydocs.dll - ok
11:34:46.0821 3336  [ 8E16BF5600797E678EA97051CF93E6BF ] C:\WINDOWS\system32\dumprep.exe
11:34:46.0821 3336  C:\WINDOWS\system32\dumprep.exe - ok
11:34:46.0821 3336  [ A687C458B80C7D55CBE39649D952ED2A ] C:\WINDOWS\system32\PortableDeviceTypes.dll
11:34:46.0821 3336  C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
11:34:46.0821 3336  [ E132AD94798E72ACB650E985984C7F58 ] C:\WINDOWS\system32\PortableDeviceApi.dll
11:34:46.0821 3336  C:\WINDOWS\system32\PortableDeviceApi.dll - ok
11:34:46.0837 3336  [ A81135541C9D4EBCE43EFA8AD31395B4 ] C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe
11:34:46.0837 3336  C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe - ok
11:34:46.0837 3336  [ F6F2BFC17069EB335ACCEEF7595F9302 ] C:\WINDOWS\system32\mfc42u.dll
11:34:46.0837 3336  C:\WINDOWS\system32\mfc42u.dll - ok
11:34:46.0837 3336  [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
11:34:46.0837 3336  C:\WINDOWS\system32\rasdlg.dll - ok
11:34:46.0853 3336  [ 751184DF487A1B3C95CB29B0D0069C28 ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
11:34:46.0853 3336  C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
11:34:46.0853 3336  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3 ] C:\WINDOWS\system32\ctfmon.exe
11:34:46.0853 3336  C:\WINDOWS\system32\ctfmon.exe - ok
11:34:46.0853 3336  [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
11:34:46.0853 3336  C:\WINDOWS\system32\msctf.dll - ok
11:34:46.0868 3336  [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
11:34:46.0868 3336  C:\WINDOWS\system32\msutb.dll - ok
11:34:46.0868 3336  [ F6FAEC07446A78A9C5AF4558FF5BD118 ] C:\WINDOWS\ime\sptip.dll
11:34:46.0868 3336  C:\WINDOWS\ime\sptip.dll - ok
11:34:46.0868 3336  [ 779B6F868721C10E94631316A2AA9867 ] C:\WINDOWS\system32\mfc42loc.dll
11:34:46.0868 3336  C:\WINDOWS\system32\mfc42loc.dll - ok
11:34:46.0884 3336  [ 727C9E97CB26879C17A30484C2C76E98 ] C:\WINDOWS\system32\mshtml.dll
11:34:46.0884 3336  C:\WINDOWS\system32\mshtml.dll - ok
11:34:46.0884 3336  [ 2ACCD352451EC0F99AF2AD9DB6DB4439 ] C:\WINDOWS\system32\msls31.dll
11:34:46.0884 3336  C:\WINDOWS\system32\msls31.dll - ok
11:34:46.0884 3336  [ 90A9B542C9300E540864D9FE1C42A130 ] C:\WINDOWS\system32\fxsst.dll
11:34:46.0884 3336  C:\WINDOWS\system32\fxsst.dll - ok
11:34:46.0899 3336  [ 5D999BF519415D1C8EE0B97FF6A254DB ] C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL
11:34:46.0899 3336  C:\Program Files\Microsoft Office\Office12\MSOHEVI.DLL - ok
11:34:46.0899 3336  [ 477E08FE0114AFEA114FC954C983D4DB ] C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL
11:34:46.0899 3336  C:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL - ok
11:34:46.0899 3336  [ 6B447F5802D67E20220BE91917F76033 ] C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
11:34:46.0899 3336  C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL - ok
11:34:46.0915 3336  [ 22D71D1DB6FC789A1CE8AC6963580259 ] C:\WINDOWS\system32\hhctrl.ocx
11:34:46.0915 3336  C:\WINDOWS\system32\hhctrl.ocx - ok
11:34:46.0915 3336  [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
11:34:46.0915 3336  C:\WINDOWS\system32\drprov.dll - ok
11:34:46.0915 3336  [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
11:34:46.0915 3336  C:\WINDOWS\system32\ntlanman.dll - ok
11:34:46.0931 3336  [ 77A54BDFBAD4604E6131AE68E3CF76D6 ] C:\WINDOWS\system32\srclient.dll
11:34:46.0931 3336  C:\WINDOWS\system32\srclient.dll - ok
11:34:46.0931 3336  [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
11:34:46.0931 3336  C:\WINDOWS\system32\netui0.dll - ok
11:34:46.0931 3336  [ 846300110A32ACDEE7CB60E54C7F693A ] C:\WINDOWS\system32\catsrvut.dll
11:34:46.0931 3336  C:\WINDOWS\system32\catsrvut.dll - ok
11:34:46.0946 3336  [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
11:34:46.0946 3336  C:\WINDOWS\system32\netui1.dll - ok
11:34:46.0946 3336  [ 28CDB50D882D3BAD993D25BE596307EA ] C:\WINDOWS\system32\catsrv.dll
11:34:46.0946 3336  C:\WINDOWS\system32\catsrv.dll - ok
11:34:46.0946 3336  [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
11:34:46.0946 3336  C:\WINDOWS\system32\davclnt.dll - ok
11:34:46.0962 3336  [ 5ED071407F58C1BE06AE8D251D6CCC6C ] C:\WINDOWS\system32\mfcsubs.dll
11:34:46.0962 3336  C:\WINDOWS\system32\mfcsubs.dll - ok
11:34:46.0962 3336  [ 8FED1E0A491D4990853D23F21C59C730 ] C:\WINDOWS\system32\advpack.dll
11:34:46.0962 3336  C:\WINDOWS\system32\advpack.dll - ok
11:34:46.0962 3336  [ 86042F6F6A5287EAF9379C91D0BF72B6 ] C:\WINDOWS\system32\dwwin.exe
11:34:46.0962 3336  C:\WINDOWS\system32\dwwin.exe - ok
11:34:46.0978 3336  [ C4894B3B448B647BEDC9E916D181BDBE ] C:\WINDOWS\system32\searchprotocolhost.exe
11:34:46.0978 3336  C:\WINDOWS\system32\searchprotocolhost.exe - ok
11:34:46.0978 3336  [ EF32415C2755E66CA1B345DF68C71243 ] C:\WINDOWS\system32\1033\dwintl.dll
11:34:46.0978 3336  C:\WINDOWS\system32\1033\dwintl.dll - ok
11:34:46.0978 3336  [ 4774D83BE60B7F47C612E25D6FE0F010 ] C:\WINDOWS\system32\msshooks.dll
11:34:46.0978 3336  C:\WINDOWS\system32\msshooks.dll - ok
11:34:46.0993 3336  [ 6E914EEDD145C5ACCE56F4D5F3D606FC ] C:\WINDOWS\system32\mssph.dll
11:34:46.0993 3336  C:\WINDOWS\system32\mssph.dll - ok
11:34:46.0993 3336  [ E81BBE78A8EF85ACD490B3E64EF63A7C ] C:\WINDOWS\system32\mapi32.dll
11:34:46.0993 3336  C:\WINDOWS\system32\mapi32.dll - ok
11:34:46.0993 3336  [ A1CD5CE96F0A5426DB9A2F793854D1B8 ] C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL
11:34:46.0993 3336  C:\Program Files\Microsoft Office\Office12\ONFILTER.DLL - ok
11:34:47.0009 3336  [ D59A7119054D70FC745A1BF9C06DCC65 ] C:\WINDOWS\system32\oeph.dll
11:34:47.0009 3336  C:\WINDOWS\system32\oeph.dll - ok
11:34:47.0009 3336  [ 79ED352549EB6D5B1A454916C37D2E85 ] C:\WINDOWS\system32\UncPH.dll
11:34:47.0009 3336  C:\WINDOWS\system32\UncPH.dll - ok
11:34:47.0009 3336  [ 25A25D0567946FF4F6808477A4B14C7A ] C:\WINDOWS\system32\msfeeds.dll
11:34:47.0009 3336  C:\WINDOWS\system32\msfeeds.dll - ok
11:34:47.0024 3336  [ 87889A983C015080FA813D7E32910D1E ] C:\WINDOWS\system32\searchfilterhost.exe
11:34:47.0024 3336  C:\WINDOWS\system32\searchfilterhost.exe - ok
11:34:47.0024 3336  [ 20FA028CB6506591A99C51432A3C0174 ] C:\WINDOWS\system32\langwrbk.dll
11:34:47.0024 3336  C:\WINDOWS\system32\langwrbk.dll - ok
11:34:47.0024 3336  [ B6932761058DC21BEAA7A1245B1B20E6 ] C:\WINDOWS\system32\infosoft.dll
11:34:47.0024 3336  C:\WINDOWS\system32\infosoft.dll - ok
11:34:47.0040 3336  [ B60DDDD2D63CE41CB8C487FCFBB6419E ] C:\Program Files\Internet Explorer\iexplore.exe
11:34:47.0040 3336  C:\Program Files\Internet Explorer\iexplore.exe - ok
11:34:47.0040 3336  [ 35355BEDAEF1E12912DFC8F07A6E7DC7 ] C:\Program Files\Internet Explorer\xpshims.dll
11:34:47.0040 3336  C:\Program Files\Internet Explorer\xpshims.dll - ok
11:34:47.0040 3336  [ 11734790410900D2CD6B7839020E4DD9 ] C:\WINDOWS\system32\ieui.dll
11:34:47.0040 3336  C:\WINDOWS\system32\ieui.dll - ok
11:34:47.0040 3336  [ 739591BE466B2246144308825CE7D2EF ] C:\Program Files\Internet Explorer\ieproxy.dll
11:34:47.0040 3336  C:\Program Files\Internet Explorer\ieproxy.dll - ok
11:34:47.0056 3336  [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\msimtf.dll
11:34:47.0056 3336  C:\WINDOWS\system32\msimtf.dll - ok
11:34:47.0056 3336  [ 40986A81053401E5379154818FA8733C ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
11:34:47.0056 3336  C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll - ok
11:34:47.0056 3336  [ 569A07C4395AB391D0D0E437654D871A ] C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
11:34:47.0056 3336  C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll - ok
11:34:47.0071 3336  [ C797FF930E512C0EF5EC5B4335534030 ] C:\Program Files\Java\jre7\bin\awt.dll
11:34:47.0071 3336  C:\Program Files\Java\jre7\bin\awt.dll - ok
11:34:47.0071 3336  [ DD44698A92280B41D2140B7C9B4DBAB7 ] C:\Program Files\Java\jre7\bin\client\jvm.dll
11:34:47.0071 3336  C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
11:34:47.0071 3336  [ 35ED0DBE578F30F68211BA22A8D16857 ] C:\Program Files\Java\jre7\bin\dcpr.dll
11:34:47.0071 3336  C:\Program Files\Java\jre7\bin\dcpr.dll - ok
11:34:47.0087 3336  [ 04B0CFF85D5225ADE066C4AD233ACD89 ] C:\Program Files\Java\jre7\bin\deploy.dll
11:34:47.0087 3336  C:\Program Files\Java\jre7\bin\deploy.dll - ok
11:34:47.0087 3336  [ B0BB987E66461EADFB4333C87BB357E2 ] C:\Program Files\Java\jre7\bin\fontmanager.dll
11:34:47.0087 3336  C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
11:34:47.0087 3336  [ E760BA96E51505EFD60144B7AFEF3BDD ] C:\Program Files\Java\jre7\bin\java.dll
11:34:47.0087 3336  C:\Program Files\Java\jre7\bin\java.dll - ok
11:34:47.0103 3336  [ 959063AAAC7E288B1AF52F94D9C22188 ] C:\Program Files\Java\jre7\bin\javaw.exe
11:34:47.0103 3336  C:\Program Files\Java\jre7\bin\javaw.exe - ok
11:34:47.0103 3336  [ 03CF355CD7346F4A03FA253C64E07E70 ] C:\Program Files\Java\jre7\bin\jp2native.dll
11:34:47.0103 3336  C:\Program Files\Java\jre7\bin\jp2native.dll - ok
11:34:47.0103 3336  [ 173D39D9DAF591BD735631DD2EADD2F1 ] C:\Program Files\Java\jre7\bin\jpeg.dll
11:34:47.0103 3336  C:\Program Files\Java\jre7\bin\jpeg.dll - ok
11:34:47.0118 3336  [ E30A866E61A0947F947ED89D973D0EAE ] C:\Program Files\Java\jre7\bin\net.dll
11:34:47.0118 3336  C:\Program Files\Java\jre7\bin\net.dll - ok
11:34:47.0118 3336  [ 992A7A3B2B0E8552DF00C811ECF4E859 ] C:\Program Files\Java\jre7\bin\nio.dll
11:34:47.0118 3336  C:\Program Files\Java\jre7\bin\nio.dll - ok
11:34:47.0118 3336  [ A952235FF6F4AA10BFC0D78F7C1616A1 ] C:\Program Files\Java\jre7\bin\verify.dll
11:34:47.0118 3336  C:\Program Files\Java\jre7\bin\verify.dll - ok
11:34:47.0134 3336  [ 473F2FD44322C71C48BF67D593FCA07D ] C:\Program Files\Java\jre7\bin\zip.dll
11:34:47.0134 3336  C:\Program Files\Java\jre7\bin\zip.dll - ok
11:34:47.0134 3336  [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
11:34:47.0134 3336  C:\WINDOWS\system32\rundll32.exe - ok
11:34:47.0134 3336  [ C6958AD2091238B71237D73358CEC2AB ] C:\Program Files\SUPERAntiSpyware\SSUPDATE.EXE
11:34:47.0134 3336  C:\Program Files\SUPERAntiSpyware\SSUPDATE.EXE - ok
11:34:47.0149 3336  [ 7043D485AEAE435312659FF1461F1491 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSO.DLL
11:34:47.0149 3336  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSO.DLL - ok
11:34:47.0149 3336  [ C7D010BD8BCEF2EB3FCA8F7CD3C08D9F ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSORES.DLL
11:34:47.0149 3336  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSORES.DLL - ok
11:34:47.0149 3336  [ 4C5D603A632023BFDB8EDD4436882ABF ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\1033\MSOINTL.DLL
11:34:47.0149 3336  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\1033\MSOINTL.DLL - ok
11:34:47.0165 3336  [ D291FA0A37901E5E5A687813FA2AF2B5 ] C:\Program Files\Microsoft Office\Office12\1033\GrooveIntlResource.dll
11:34:47.0165 3336  C:\Program Files\Microsoft Office\Office12\1033\GrooveIntlResource.dll - ok
11:34:47.0165 3336  [ 533AECD1B5356870AE2D905B4D3B42B7 ] C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
11:34:47.0165 3336  C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll - ok
11:34:47.0165 3336  [ 12D0A8895CB4DCCF28BC69DF7D4CA3BF ] C:\Program Files\Java\jre7\bin\ssv.dll
11:34:47.0165 3336  C:\Program Files\Java\jre7\bin\ssv.dll - ok
11:34:47.0181 3336  [ 582DCA19BC19EE74E58625692D055B11 ] C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d0a9b835b.ocx
11:34:47.0181 3336  C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d0a9b835b.ocx - ok
11:34:47.0181 3336  [ 1A82C1B9BB43385695EFC3A84F6756A2 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
11:34:47.0181 3336  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll - ok
11:34:47.0181 3336  [ 7CFC00B4501A14CF369F869AB8E79E68 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\msidcrl40.dll
11:34:47.0181 3336  C:\Program Files\Common Files\Microsoft Shared\Windows Live\msidcrl40.dll - ok
11:34:47.0196 3336  [ 582DCA19BC19EE74E58625692D055B11 ] C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d1393cb3f.ocx
11:34:47.0196 3336  C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d1393cb3f.ocx - ok
11:34:47.0196 3336  [ 66F1C930F4572816BB15C3A863590305 ] C:\WINDOWS\system32\ieapfltr.dll
11:34:47.0196 3336  C:\WINDOWS\system32\ieapfltr.dll - ok
11:34:47.0196 3336  [ 0689622E6484934EB6E5F4D3A96311F9 ] C:\WINDOWS\system32\jscript.dll
11:34:47.0196 3336  C:\WINDOWS\system32\jscript.dll - ok
11:34:47.0212 3336  [ F62606494714C2C4B074C578F99F89FD ] C:\Documents and Settings\All Users\Application Data\WeCareReminder\IEHelperv2.5.0.dll
11:34:47.0212 3336  C:\Documents and Settings\All Users\Application Data\WeCareReminder\IEHelperv2.5.0.dll - ok
11:34:47.0212 3336  [ 02DDC8B36926A760E2D7EDCCEB828E42 ] C:\Program Files\Java\jre7\bin\jp2ssv.dll
11:34:47.0212 3336  C:\Program Files\Java\jre7\bin\jp2ssv.dll - ok
11:34:47.0212 3336  ============================================================
11:34:47.0212 3336  Scan finished
11:34:47.0212 3336  ============================================================
11:34:47.0228 0216  Detected object count: 0
11:34:47.0228 0216  Actual detected object count: 0
11:35:09.0555 3780  Deinitialize success
 

ASW

 

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-03-07 12:48:05
-----------------------------
12:48:05.718    OS Version: Windows 5.1.2600 Service Pack 3
12:48:05.718    Number of processors: 2 586 0x404
12:48:05.718    ComputerName: IVORY  UserName: Chris
12:48:07.031    Initialize success
12:48:21.578    AVAST engine defs: 13030700
12:48:34.546    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-0
12:48:34.562    Disk 0 Vendor: ST316002 8.12 Size: 152587MB BusType: 3
12:48:34.625    Disk 0 MBR read successfully
12:48:34.625    Disk 0 MBR scan
12:48:34.671    Disk 0 Windows XP default MBR code
12:48:34.703    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       54 MB offset 63
12:48:34.750    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS       147769 MB offset 112455
12:48:34.796    Disk 0 Partition 3 00     DB  CP/M / CTOS Dell 8.0     4753 MB offset 302760990
12:48:34.812    Disk 0 scanning sectors +312496380
12:48:35.015    Disk 0 scanning C:\WINDOWS\system32\drivers
12:49:10.234    Service scanning
12:49:35.406    Modules scanning
12:49:56.515    Disk 0 trace - called modules:
12:49:58.140    ntoskrnl.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
12:49:58.218    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b6b3ab8]
12:49:58.281    3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-0[0x8b6d3030]
12:49:59.640    AVAST engine scan C:\WINDOWS
12:50:37.546    AVAST engine scan C:\WINDOWS\system32
12:59:33.953    AVAST engine scan C:\WINDOWS\system32\drivers
13:00:56.625    AVAST engine scan C:\Documents and Settings\Chris
13:50:17.812    Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Chris\Desktop\MBR.dat"
13:50:17.843    The log file has been saved successfully to "C:\Documents and Settings\Chris\Desktop\aswMBR.txt"

 



#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 07 March 2013 - 02:22 PM

Ignore ASWMBR..



#10 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 08 March 2013 - 02:37 PM

Sorry for the late reply. This is Eset; it stated it found 56 infections. Here's the log:

 

C:\Documents and Settings\All Users\Application Data\coNttienuetoosaavee\51341bccb26bd.dll a variant of Win32/Adware.MultiPlug.I application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d0a9b835b.ocx Win32/Adware.MultiPlug.E application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d0a9b8394.html Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d1393cb3f.ocx Win32/Adware.MultiPlug.E application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\Download and Sa\50c2d1393cb77.html Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\All Users\Application Data\Download and Sa\abafihdeifiafhkgbhbnmgbjheimogan.crx Win32/Adware.MultiPlug.H application deleted - quarantined
C:\Documents and Settings\All Users\Application Data\Download and Sa\jllgindhmnegboihglfdkcggniocddho.crx Win32/Adware.MultiPlug.H application deleted - quarantined
C:\Documents and Settings\Beverly\Application Data\Mozilla\Firefox\Profiles\fi3dtboj.default\extensions\fbmuyvcaxi@fbmuyvcaxi.org.xpi JS/Redirector.NBX trojan deleted - quarantined
C:\Documents and Settings\Beverly\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\abafihdeifiafhkgbhbnmgbjheimogan\7.1_0\50c2d1393c91c6.90452782.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Beverly\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jllgindhmnegboihglfdkcggniocddho\7.1_0\50c2d0a9b81448.19511455.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\a4ook7dt.default\extensions\fbmuyvcaxi@fbmuyvcaxi.org.xpi JS/Redirector.NBX trojan deleted - quarantined
C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\a4ook7dt.default\extensions\50c2d0a9b81d9@50c2d0a9b8212.com\content\bg.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\a4ook7dt.default\extensions\50c2d1393c9b1@50c2d1393c9e7.com\content\bg.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\a4ook7dt.default\extensions\rtooauj@gdtap-.net\content\bg.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aadaddgcdfdfdededdgedcdjdededbdd\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aadaddgcdfdfdededdgedcdjdededbdd\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aamhjoploikcdchabplhogkcnomecmfh\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hihfjdcfiddolblikdppfaglaipgndfc\1\51341bccb245a9.99024753.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\temp\7zS46.tmp\51341bccb26bd.dll a variant of Win32/Adware.MultiPlug.I application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\temp\7zS46.tmp\hihfjdcfiddolblikdppfaglaipgndfc\51341bccb245a9.99024753.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\temp\7zS46.tmp\rtooauj@gdtap-.net\content\bg.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Chris\Local Settings\temp\{0A133D12-CEB3-0BAB-E940-8691D1F01FE4}\Addons\whitesmoke_setup.exe Win32/Amonetize application cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\Application Data\Mozilla\Firefox\Profiles\ffp73e9m.default\extensions\fbmuyvcaxi@fbmuyvcaxi.org.xpi JS/Redirector.NBX trojan deleted - quarantined
C:\Documents and Settings\Terrence\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aadaddgcdfdfdededdgedcdjdededbdd\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aadaddgcdfdfdededdgedcdjdededbdd\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\Local Settings\Application Data\Google\Chrome\User Data\Default\Default\aamhjoploikcdchabplhogkcnomecmfh\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\abafihdeifiafhkgbhbnmgbjheimogan\7.1_0\50c2d1393c91c6.90452782.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jllgindhmnegboihglfdkcggniocddho\7.1_0\50c2d0a9b81448.19511455.js Win32/Adware.MultiPlug.H application cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\My Documents\Downloads\games (1).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\My Documents\Downloads\games (2).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\My Documents\Downloads\games (3).exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Documents and Settings\Terrence\My Documents\Downloads\games.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Documents and Settings\Travis\Application Data\Mozilla\Firefox\Profiles\5wnyt1dz.default\extensions\fbmuyvcaxi@fbmuyvcaxi.org.xpi JS/Redirector.NBX trojan deleted - quarantined
C:\Program Files\TotalRecipeSearch_14EI\Installr\1.bin\14EIPlug.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files\TotalRecipeSearch_14EI\Installr\1.bin\14EZSETP.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files\TotalRecipeSearch_14EI\Installr\1.bin\NP14EISb.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_21.06.51\tdlfs0000\tsk0003.dta Win32/Olmarik.ADZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_21.06.51\tdlfs0000\tsk0005.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_21.06.51\tdlfs0000\tsk0006.dta Win64/Olmarik.Q trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_21.06.51\tdlfs0000\tsk0007.dta Win64/Olmarik.A trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_21.06.51\tdlfs0000\tsk0009.dta probably a variant of Win32/Agent.GVKNWIR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_21.06.51\tdlfs0000\tsk0010.dta Win32/TrojanProxy.Agent.NJZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_23.34.28\tdlfs0000\tsk0003.dta Win32/Olmarik.ADZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_23.34.28\tdlfs0000\tsk0005.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_23.34.28\tdlfs0000\tsk0006.dta Win64/Olmarik.Q trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_23.34.28\tdlfs0000\tsk0007.dta Win64/Olmarik.A trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_23.34.28\tdlfs0000\tsk0009.dta probably a variant of Win32/Agent.GVKNWIR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\03.03.2013_23.34.28\tdlfs0000\tsk0010.dta Win32/TrojanProxy.Agent.NJZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.03.2013_14.15.01\tdlfs0000\tsk0003.dta Win32/Olmarik.ADZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.03.2013_14.15.01\tdlfs0000\tsk0005.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.03.2013_14.15.01\tdlfs0000\tsk0006.dta Win64/Olmarik.Q trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.03.2013_14.15.01\tdlfs0000\tsk0007.dta Win64/Olmarik.A trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.03.2013_14.15.01\tdlfs0000\tsk0009.dta probably a variant of Win32/Agent.GVKNWIR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\05.03.2013_14.15.01\tdlfs0000\tsk0010.dta Win32/TrojanProxy.Agent.NJZ trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2011_22.54.57\tdlfs0000\tsk0009.dta probably a variant of Win32/Agent.GVKNWIR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.11.2011_22.54.57\tdlfs0000\tsk0010.dta Win32/TrojanProxy.Agent.NJZ trojan cleaned by deleting - quarantined
 



#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 08 March 2013 - 02:43 PM

Malwarebytes

--------------------

Please download Malwarebytes Anti-Malware and save it to your desktop.  If you already have it installed launch the program and update the database.

  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.  You can also right click on the link and select Save Link As

Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
    For instructions with screenshots, please refer to this .
  • When the installation begins, follow the prompts and do not make any changes to default settings except to uncheck any offer for a free Pro trial version
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.

Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.


===================================================


Farbar's MiniToolBox

--------------------

  • Please download MiniToolBox, save it to your desktop
  • Please close any Firefox browsers you may have open
  • Double click the MiniToolBox.jpg icon to launch the program
  • Make sure the following options are checked:

    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Devices
    • List Users, Partitions and Memory size.
  • Click Go and once the scan is completed a Result.txt Notepad document will open on your desktop
  • Please copy and paste the contents in your reply


===================================================


Farbar's Service Scanner

--------------------

Please download Farbar Service Scanner, save it to your desktop, and run it.

  • Make sure the following options are checked:

    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


===================================================


AdwCleaner by Xplode - Search for Adware

-------------------

  • Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe, select OK, then Run
  • Click on DELETE
  • A logfile will automatically open after the scan has finished
  • Copy and paste the contents in your reply
  • You can find the logfile at C:\AdwCleaner[R1].txt as well


===================================================


Junkware Removal Tooll by thisisu

-------------------

  • Please download Junkware Removal Tool and save it to your desktop.
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  • Right-mouse click JRT.exe and select Run as administrator (Windows XP double click the icon)
  • Please allow the program time to run
  • Once completed a Notepad document will open on your desktop
  • Copy and paste the contents in your reply


===================================================


Rkill

-------------------

Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:


  • In order for Rkill to run properly you must disable your anti-malware software.  Please refer to this page if you are not sure how.
  • Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
    • Note:  You may have to run Rkill a few times before it is successful.  You may also have to download Rkill from a different link which will save it as a different file name.
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • An Rkill.log will appear.  Please copy and paste the contents in your reply (file also located at c:\rkill.log)
  • Do not reboot your computer after running Rkill as the malware programs will start again.  If your computer reboots, run Rkill again before continuing on to the next step.
  • If nothing happens or if the tool does not run, please let me know in your next reply.


===================================================


Autoruns

--------------------

  • Please download AutoRuns and save it to your desktop
  • Double click the AutoRuns.zip folder
  • Double click autoruns.exe (not autorunsc.exe), select Run, then Run again and allow the information to populate
  • Select File, Save, Desktop (in the left hand pane), then Save filename as Autoruns.txt and change Save as type to  Text(*.txt).
  • Double click on the text file,copy and paste the contents in your reply


===================================================


Things I would like to see in your next reply. Please be sure to copy and paste the information rather than send an attachment. :thumbsup2:

  • Malwarebytes log
  • MiniToolBox log
  • Farbar's Service Scanner log
  • AdwCleaner log
  • Junkware Removal Tool log
  • Rkill log
  • Autoruns log



#12 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 08 March 2013 - 07:17 PM

So far I'm able to do all of the scans. I'm up to JRT, and when I right click it, it asks "run as..." and the options are either me (current user) or (the following user) and when I click into administrator, it asks for a password. I never had an admin password and it doesn't allow me to continue. I tried running from "current user" which is my name and it said "access denied". Should I just click and run the program, or skip this procedure? 



#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 08 March 2013 - 07:56 PM

Try to run it from safemode



#14 FinalStar14

FinalStar14
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:03:18 AM

Posted 08 March 2013 - 08:15 PM

It is unable to run in safe mode :(



#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:18 AM

Posted 08 March 2013 - 08:28 PM

Skip it and move to other scans.


Edited by narenxp, 08 March 2013 - 08:28 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users