Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possibly infected by Rootkits, Please Help :)


  • This topic is locked This topic is locked
15 replies to this topic

#1 classyhobo

classyhobo

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 02 April 2013 - 05:53 AM

Hello, I found these forums by chance and read the posting rules.  These forums seem really helpful and hopefully you can help me.  :)  Well, my computer started to act a little slowly out of nowhere so I suspected something was up.  I run both AVG 2013 and Windows security essentials.  At the time only AVG was active.  So I ran the avg rootkit scan and found nine that look like this :

"";"IRP hook, \Driver\hidusb IRP_MJ_PNP -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"

"";"IRP hook, \Driver\hidusb IRP_MJ_SYSTEM_CONTROL -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"
"";"IRP hook, \Driver\hidusb IRP_MJ_POWER -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"
"";"IRP hook, \Driver\hidusb IRP_MJ_INTERNAL_DEVICE_CONTROL -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"

"";"IRP hook, \Driver\hidusb IRP_MJ_DEVICE_CONTROL -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"

"";"IRP hook, \Driver\hidusb IRP_MJ_WRITE -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"

"";"IRP hook, \Driver\hidusb IRP_MJ_READ -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"

"";"IRP hook, \Driver\hidusb IRP_MJ_CLOSE -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"
"";"IRP hook, \Driver\hidusb IRP_MJ_CREATE -> HIDCLASS.SYS +0x1902, C:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS";"Cannot be cleaned
Remove manually"

 

As you can see I can't remove these so I freaked out and started looking around the net for help.  I used Security Essentials next and it found one trojan which it removed.  I then ran a quickscan on MalwareBytes and found nothing.  I then ran Kaspersky TDSSKiller.  It found threats initially that it removed but it has 259 other threats that had the option to delete, disable, or the default (skip).  I did not mess with those as I have read that if you don't know what your doing don't mess with it.  I am going to run gmer as well but I haven't the foggiest what I should mess with on it.  I attatched the dds files.  Any Help would be appreciated.  I fear for my computer.  After I'm done I plan on cleaning it up a bit for more hd space.  Not to mention I have all these antivirus programs ive put in now trying to fix it.  i just want it clean.  I can also post any of the logs from the other virus/rootkit scans I mentioned I did.  I'm not too good at these things.  Thanks in advance .  :)  Help!! 

 

Here is the DDS results :

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.7.2
Run by GCC Bookstore at 3:25:29 on 2013-04-02
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.2013.1012 [GMT -7:00]
.
AV: AVG Internet Security 2013 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
FW: AVG Internet Security 2013 *Enabled*
FW: AVG Firewall *Disabled*
.
============== Running Processes ================
.
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\msdtc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Realtek\Diagnostics Utility\8169Diag.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.mail.ru/cnt/8730
uSearch Page = hxxp://www.live.com
uInternet Connection Wizard,ShellNext = iexplore
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\14.2.0.1\AVG Secure Search_toolbar.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: <No Name>: {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - LocalServer32 - <no file>
TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - c:\program files\avg secure search\14.2.0.1\AVG Secure Search_toolbar.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [8169Diag] c:\program files\realtek\diagnostics utility\8169Diag.exe /hw
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [MsmqIntCert] regsvr32 /s mqrt.dll
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [AVG_UI] "c:\program files\avg\avg2013\avgui.exe" /TRAYONLY
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
uPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDriveTypeAutoRun = dword:255
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
IE: {d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\gcc bookstore\start menu\programs\imvu\Run IMVU.lnk
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1349341917953
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1349392367890
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.4.24.0.cab
TCP: NameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{51A200E5-4F8C-4E96-BA10-88CF4596B625} : DHCPNameServer = 209.18.47.61 209.18.47.62
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\14.2.0\ViProtocol.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
Hosts: 127.0.0.1    www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\gcc bookstore\application data\mozilla\firefox\profiles\y3stwony.default-1351997707218\
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\common files\avg secure search\sitesafetyinstaller\14.2.0\npsitesafety.dll
FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1167637.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_6_602_180.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [2012-8-9 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [2012-8-9 245048]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2012-8-10 96568]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2012-8-10 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [2012-8-13 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [2012-8-10 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2012-8-9 170808]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2012-8-10 182072]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [2012-9-10 33112]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-10-24 165264]
R1 MpKsl59d4be55;MpKsl59d4be55;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{82f2e1a1-6c4b-4c66-8c1c-a868b65ec1fb}\MpKsl59d4be55.sys [2013-4-2 29904]
R2 avgfws;AVG Firewall;c:\program files\avg\avg2013\avgfws.exe [2013-2-19 1418184]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2013\avgidsagent.exe [2013-2-27 4937264]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2013\avgwdsvc.exe [2013-2-19 282624]
R2 LANPkt;Realtek LANPkt Protocol Driver;c:\windows\system32\drivers\LANPkt.sys [2009-8-14 8960]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-4-1 398184]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-4-1 682344]
R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\common files\avg secure search\vtoolbarupdater\14.2.0\ToolbarUpdater.exe [2013-2-18 968880]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944]
R3 Diag69xp;Diag69xp;c:\windows\system32\drivers\diag69xp.sys [2009-8-14 11264]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2009-8-15 116224]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-4-1 21104]
S2 Anyplace Control Security;Anyplace Control Security;c:\documents and settings\all users\anyplace control 4\svcadmin.exe [2009-12-16 113152]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2012-1-12 30944]
S3 cpudrv;cpudrv;c:\program files\systemrequirementslab\cpudrv.sys [2009-12-18 11336]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [2009-8-14 16640]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\drivers\tapoas.sys [2012-7-15 26112]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2013-04-02 10:04:59    29904    ----a-w-    c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{82f2e1a1-6c4b-4c66-8c1c-a868b65ec1fb}\MpKsl59d4be55.sys
2013-04-02 08:21:18    256904    ----a-w-    c:\windows\system32\drivers\tmcomm.sys
2013-04-02 03:41:30    21104    ----a-w-    c:\windows\system32\drivers\mbam.sys
2013-04-02 03:41:29    --------    d-----w-    c:\program files\Malwarebytes' Anti-Malware
2013-04-02 02:23:09    7108640    ----a-w-    c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{82f2e1a1-6c4b-4c66-8c1c-a868b65ec1fb}\mpengine.dll
2013-03-25 08:12:00    --------    d-----w-    c:\program files\MPC-HC
2013-03-21 17:54:43    12928    -c----w-    c:\windows\system32\dllcache\usb8023x.sys
2013-03-21 15:49:35    --------    d-----w-    c:\program files\Cryptic Studios
2013-03-15 02:59:42    --------    d-----w-    c:\program files\Grinding Gear Games
.
==================== Find3M  ====================
.
2013-03-13 04:22:42    73432    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-13 04:22:42    693976    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-03-01 17:32:20    22328    ----a-w-    c:\windows\system32\drivers\avgidsshimx.sys
2013-02-27 06:40:46    208184    ----a-w-    c:\windows\system32\drivers\avgidsdriverx.sys
2013-02-19 00:04:31    33112    ----a-w-    c:\windows\system32\drivers\avgtpx86.sys
2013-02-14 10:52:46    182072    ----a-w-    c:\windows\system32\drivers\avgtdix.sys
2013-02-12 00:32:23    12928    ----a-w-    c:\windows\system32\drivers\usb8023.sys
2013-02-08 11:37:56    245048    ----a-w-    c:\windows\system32\drivers\avglogx.sys
2013-02-08 11:37:52    60216    ----a-w-    c:\windows\system32\drivers\avgidshx.sys
2013-02-08 11:37:44    170808    ----a-w-    c:\windows\system32\drivers\avgldx86.sys
2013-02-08 11:37:40    39224    ----a-w-    c:\windows\system32\drivers\avgrkx86.sys
2013-02-05 20:05:47    916480    ----a-w-    c:\windows\system32\wininet.dll
2013-02-05 20:05:46    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-02-05 20:05:46    1469440    ------w-    c:\windows\system32\inetcpl.cpl
2013-02-05 05:53:57    385024    ----a-w-    c:\windows\system32\html.iec
2013-01-30 10:53:21    232336    ------w-    c:\windows\system32\MpSigStub.exe
2013-01-26 03:55:44    552448    ----a-w-    c:\windows\system32\oleaut32.dll
2013-01-07 01:32:34    2148864    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-01-07 00:45:12    2027520    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-01-04 01:32:36    1876224    ----a-w-    c:\windows\system32\win32k.sys
.
============= FINISH:  3:31:50.96 ===============














 

 

 


 

Attached Files



BC AdBot (Login to Remove)

 


#2 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 02 April 2013 - 06:14 AM

Oh Also, my virus scanners were running in the background during the dds program.  is that ok?



#3 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:09 AM

Posted 03 April 2013 - 09:22 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===
Please download ComboFix from one of these locations:
Link 1
Link 2
IMPORTANT !!! Save ComboFix.exe to your Desktop
  • Disable your Anti-Virus and Anti-Spyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  • Some Rookit infection may damage your boot sector. The Windows Recovery Console may be needed to restore it. Do not bypass this installation. You may regret it.
**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
RcAuto1.gif
Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
whatnext.png
Click on Yes, to continue scanning for malware.
When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

Note: If you have difficulty properly disabling your protection programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete tab follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).
Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

p.s. Post the TDSSKiller log also for my review.

#4 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 03 April 2013 - 01:47 PM

Thank you very much for your help, I appreciate it.  I will print this out and follow your instructions this afternoon (4ish hours from now, because I do not have access to a printer atm) and post back all the information you requested.  Again thank you so much.  :)


Edited by classyhobo, 03 April 2013 - 01:48 PM.


#5 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 03 April 2013 - 09:47 PM

Hello Nasdaq, and thanks again for your help.  I am including the logs as requested.  One note :  I Lost the original TDSSKiller log so I redownloaded the program and ran it and am including it in my reply as per your request.  Also, I kept the virus/firewall program disabled during each program you told me to run.  I had to break this up into multiple posts because it was too long.  I've done some reading online and have read that AVG has many false positives and I hope that is just what they are.  Anyways here you go :

 

 

ComboFix 13-04-02.01 - GCC Bookstore 04/03/2013  19:05:09.1.2 - x86
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.2013.1315 [GMT -7:00]
Running from: c:\documents and settings\GCC Bookstore\Desktop\ComboFix.exe
AV: AVG Internet Security 2013 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
FW: AVG Internet Security 2013 *Disabled* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
ADS - system32: deleted 142 bytes in 1 streams.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\GCC Bookstore\Application Data\Adobe\plugs
c:\documents and settings\GCC Bookstore\Application Data\Adobe\shed
c:\documents and settings\GCC Bookstore\CrypticError.exe
c:\documents and settings\GCC Bookstore\g2mdlhlpx.exe
C:\Documents
C:\Install.exe
c:\windows\system32\Cache
c:\windows\system32\Cache\11b837bbdda8fd4b.fb
c:\windows\system32\Cache\26c630d098e22dd5.fb
c:\windows\system32\Cache\272512937d9e61a4.fb
c:\windows\system32\Cache\287204568329e189.fb
c:\windows\system32\Cache\28bc8f716fd76a47.fb
c:\windows\system32\Cache\31a0997e9a5b5eb3.fb
c:\windows\system32\Cache\32c84fe32bb74d60.fb
c:\windows\system32\Cache\3917078cb68ec657.fb
c:\windows\system32\Cache\590ba23ce359fd0c.fb
c:\windows\system32\Cache\610289e025a3ee9a.fb
c:\windows\system32\Cache\651c5d3cdbfb8bd1.fb
c:\windows\system32\Cache\6c59ac5e7e7a3ad0.fb
c:\windows\system32\Cache\6d03dad1035885d3.fb
c:\windows\system32\Cache\738e4caa83f96b7d.fb
c:\windows\system32\Cache\95f567698be8a182.fb
c:\windows\system32\Cache\a8556537add6dfc5.fb
c:\windows\system32\Cache\ad10a52aff5e038d.fb
c:\windows\system32\Cache\bc203e5a3f0b7c77.fb
c:\windows\system32\Cache\bfd0a4e861f36177.fb
c:\windows\system32\Cache\c1fa887b03019701.fb
c:\windows\system32\Cache\c4d28dca2e7648be.fb
c:\windows\system32\Cache\d201ef9910cd39de.fb
c:\windows\system32\Cache\d2e94710a5708128.fb
c:\windows\system32\Cache\d79b9dfe81484ec4.fb
c:\windows\system32\Cache\f998975c9cc711ee.fb
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_Anyplace_Control_Security
-------\Service_Anyplace Control Security
.
.
(((((((((((((((((((((((((   Files Created from 2013-03-04 to 2013-04-04  )))))))))))))))))))))))))))))))
.
.
2013-04-02 08:21 . 2013-04-02 08:21    256904    ----a-w-    c:\windows\system32\drivers\tmcomm.sys
2013-03-21 17:54 . 2013-02-12 00:32    12928    -c----w-    c:\windows\system32\dllcache\usb8023x.sys
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-13 04:22 . 2012-05-12 00:24    693976    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-03-13 04:22 . 2011-08-05 18:44    73432    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-01 17:32 . 2012-08-10 11:52    22328    ----a-w-    c:\windows\system32\drivers\avgidsshimx.sys
2013-02-27 06:40 . 2012-08-13 23:40    208184    ----a-w-    c:\windows\system32\drivers\avgidsdriverx.sys
2013-02-19 00:04 . 2012-09-11 06:30    33112    ----a-w-    c:\windows\system32\drivers\avgtpx86.sys
2013-02-14 10:52 . 2012-08-10 11:52    182072    ----a-w-    c:\windows\system32\drivers\avgtdix.sys
2013-02-12 00:32 . 2008-04-25 16:16    12928    ----a-w-    c:\windows\system32\drivers\usb8023.sys
2013-02-08 11:37 . 2012-08-10 11:52    96568    ----a-w-    c:\windows\system32\drivers\avgmfx86.sys
2013-02-08 11:37 . 2012-08-09 20:56    245048    ----a-w-    c:\windows\system32\drivers\avglogx.sys
2013-02-08 11:37 . 2012-08-09 20:56    60216    ----a-w-    c:\windows\system32\drivers\avgidshx.sys
2013-02-08 11:37 . 2012-08-09 20:56    170808    ----a-w-    c:\windows\system32\drivers\avgldx86.sys
2013-02-08 11:37 . 2012-08-10 11:52    39224    ----a-w-    c:\windows\system32\drivers\avgrkx86.sys
2013-02-05 20:05 . 2008-04-25 16:16    916480    ----a-w-    c:\windows\system32\wininet.dll
2013-02-05 20:05 . 2008-04-25 16:16    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-02-05 20:05 . 2008-04-25 16:16    1469440    ------w-    c:\windows\system32\inetcpl.cpl
2013-02-05 05:53 . 2008-04-25 16:16    385024    ----a-w-    c:\windows\system32\html.iec
2013-01-30 10:53 . 2011-05-27 22:29    232336    ------w-    c:\windows\system32\MpSigStub.exe
2013-01-26 03:55 . 2008-04-25 16:16    552448    ----a-w-    c:\windows\system32\oleaut32.dll
2013-01-07 01:32 . 2008-04-25 16:16    2148864    ----a-w-    c:\windows\system32\ntoskrnl.exe
2013-01-07 00:45 . 2008-04-14 00:01    2027520    ----a-w-    c:\windows\system32\ntkrnlpa.exe
2013-04-03 03:39 . 2013-04-03 03:39    263064    ----a-w-    c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\atapi.sys
[-] 2008-04-14 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\system32\drivers\atapi.sys
.
[-] 2008-04-14 . B153AFFAC761E7F5FCFA822B9C4E97BC . 14336 . . [5.1.2600.5512] . . c:\windows\system32\drivers\asyncmac.sys
.
[-] 2008-04-14 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys
.
[-] 2008-04-14 . 463C1EC80CD17420A542B7F36A36F128 . 24576 . . [5.1.2600.5512] . . c:\windows\system32\drivers\kbdclass.sys
.
[-] 2008-04-14 . 1DF7F42665C94B825322FAE71721130D . 182656 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ndis.sys
.
[-] 2008-04-14 . 78A08DD6A8D65E697C18E1DB01C5CDCA . 574976 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ntfs.sys
.
[-] 2008-04-14 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys
.
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\tcpip.sys
[-] 2008-06-20 . AD978A1B783B5719720CFF204B666C8E . 361600 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\tcpip.sys
[-] 2008-06-20 . 9AEFA14BD6B182D61E3119FA5F436D3D . 361600 . . [5.1.2600.5625] . . c:\windows\system32\drivers\tcpip.sys
.
[-] 2012-07-06 . CFD4E51402DA9838B5A04AE680AF54A0 . 78336 . . [5.1.2600.6260] . . c:\windows\system32\browser.dll
[-] 2012-07-06 . CFD4E51402DA9838B5A04AE680AF54A0 . 78336 . . [5.1.2600.6260] . . c:\windows\system32\dllcache\browser.dll
[-] 2012-07-06 . FC6D1D80588D371F0321E15A75B2F8F2 . 78336 . . [5.1.2600.6260] . . c:\windows\$hf_mig$\KB2705219\SP3QFE\browser.dll
.
[-] 2008-04-14 . BF2466B3E18E970D8A976FB95FC1CA85 . 13312 . . [5.1.2600.5512] . . c:\windows\system32\lsass.exe
.
[-] 2008-04-14 . 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE . 198144 . . [5.1.2600.5512] . . c:\windows\system32\netman.dll
.
[-] 2008-04-14 12:00 . 1280A158C722FA95A80FB7AEBE78FA7D . 792064 . . [2001.12.4414.700] . . c:\windows\system32\comres.dll
.
[-] 2008-04-14 . 574738F61FCA2935F5265DC4E5691314 . 409088 . . [6.7.2600.5512] . . c:\windows\system32\qmgr.dll
.
[-] 2009-02-09 . 6B27A5C03DFB94B4245739065431322C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\rpcss.dll
[-] 2009-02-09 . 6B27A5C03DFB94B4245739065431322C . 401408 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\rpcss.dll
[-] 2009-02-09 . 9222562D44021B988B9F9F62207FB6F2 . 401408 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\rpcss.dll
.
[-] 2009-02-06 . 65DF52F5B8B6E9BBD183505225C37315 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\services.exe
[-] 2009-02-06 . 65DF52F5B8B6E9BBD183505225C37315 . 110592 . . [5.1.2600.5755] . . c:\windows\system32\dllcache\services.exe
[-] 2009-02-06 . 020CEAAEDC8EB655B6506B8C70D53BB6 . 110592 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\services.exe
.
[-] 2010-08-17 . 258DD5D4283FD9F9A7166BE9AE45CE73 . 58880 . . [5.1.2600.6024] . . c:\windows\$hf_mig$\KB2347290\SP3QFE\spoolsv.exe
[-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\spoolsv.exe
[-] 2010-08-17 . 60784F891563FB1B767F70117FC2428F . 58880 . . [5.1.2600.6024] . . c:\windows\system32\dllcache\spoolsv.exe
.
[-] 2008-04-14 . ED0EF0A136DEC83DF69F04118870003E . 507904 . . [5.1.2600.5512] . . c:\windows\system32\winlogon.exe
.
[-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[-] 2010-08-23 . 93AFB83FBC1F9443CAC722FCA63D73BF . 617472 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2010-08-23 . 93AFB83FBC1F9443CAC722FCA63D73BF . 617472 . . [5.82] . . c:\windows\system32\dllcache\comctl32.dll
[-] 2010-08-23 . 736B12B725AEB2B07F0241A9F680CB10 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
[-] 2008-04-14 . AEF3D788DBF40C7C4D204EA45EB0C505 . 921088 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.0.0_x-ww_1382d70a\comctl32.dll
[-] 2008-04-14 . BD38D1EBE24A46BD3EDA059560AFBA12 . 1054208 . . [6.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
.
[-] 2008-04-14 . 3D4E199942E29207970E04315D02AD3B . 62464 . . [5.1.2600.5512] . . c:\windows\system32\cryptsvc.dll
.
[-] 2008-07-07 20:26 . D4991D98F2DB73C60D042F1AEF79EFAE . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll
[-] 2008-07-07 20:26 . D4991D98F2DB73C60D042F1AEF79EFAE . 253952 . . [2001.12.4414.706] . . c:\windows\system32\dllcache\es.dll
[-] 2008-07-07 20:23 . F17F6226BDC0CD5F0BEF0DAF84D29BEC . 253952 . . [2001.12.4414.706] . . c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll
.
[-] 2008-04-14 . 0DA85218E92526972A821587E6A8BF8F . 110080 . . [5.1.2600.5512] . . c:\windows\system32\imm32.dll
.
[-] 2008-04-14 . 2DC5A8019E2387987905F77C664E4BE2 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\linkinfo.dll
.
[-] 2008-04-14 . 012DF358CEBAA23ACB26D82077820817 . 22016 . . [5.1.2600.5512] . . c:\windows\system32\lpk.dll
.
[-] 2008-04-14 . 355EDBB4D412B01F1740C17E3F50FA00 . 343040 . . [7.0.2600.5512] . . c:\windows\system32\msvcrt.dll
[-] 2008-04-14 . 4200BE3808F6406DBE45A7B88DAE5035 . 322560 . . [7.0.2600.0] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.0.0_x-ww_2726e76a\msvcrt.dll
[-] 2008-04-14 . D7075E95AA599EE77B7A89D39296BD3D . 343040 . . [7.0.2600.5512] . . c:\windows\WinSxS\x86_Microsoft.Windows.CPlusPlusRuntime_6595b64144ccf1df_7.0.2600.5512_x-ww_3fd60d63\msvcrt.dll
.
[-] 2008-06-20 . FCEE5FCB99F7C724593365C706D28388 . 245248 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB2509553\SP3QFE\mswsock.dll
[-] 2008-06-20 . FCEE5FCB99F7C724593365C706D28388 . 245248 . . [5.1.2600.5625] . . c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll
[-] 2008-06-20 . 943337D786A56729263071623BBB9DE5 . 245248 . . [5.1.2600.5625] . . c:\windows\system32\mswsock.dll
[-] 2008-06-20 . 943337D786A56729263071623BBB9DE5 . 245248 . . [5.1.2600.5625] . . c:\windows\system32\dllcache\mswsock.dll
.
[-] 2008-04-14 . 1B7F071C51B77C272875C3A23E1E4550 . 407040 . . [5.1.2600.5512] . . c:\windows\system32\netlogon.dll
.
[-] 2008-04-14 . 50A166237A0FA771261275A405646CC0 . 17408 . . [6.00.2900.5512] . . c:\windows\system32\powrprof.dll
.
[-] 2008-04-14 . A86BB5E61BF3E39B62AB4C7E7085A084 . 181248 . . [5.1.2600.5512] . . c:\windows\system32\scecli.dll
.
[-] 2008-04-14 . 96E1C926F22EE1BFBAE82901A35F6BF3 . 5120 . . [5.1.2600.5512] . . c:\windows\system32\sfc.dll
.
[-] 2008-04-14 . 27C6D03BCDB8CFEB96B716F3D8BE3E18 . 14336 . . [5.1.2600.5512] . . c:\windows\system32\svchost.exe
.
[-] 2008-04-14 . 3CB78C17BB664637787C9A1C98F79C38 . 249856 . . [5.1.2600.5512] . . c:\windows\system32\tapisrv.dll
.
[-] 2008-04-14 . B26B135FF1B9F60C9388B4A7D16F600B . 578560 . . [5.1.2600.5512] . . c:\windows\system32\user32.dll
.
[-] 2011-06-29 . A93AEE1928A9D7CE3E16D24EC7380F89 . 26112 . . [5.1.2600.5512] . . c:\windows\system32\userinit.exe
.
[-] 2008-04-14 . 2CCC474EB85CEAA3E1FA1726580A3E5A . 82432 . . [5.1.2600.5512] . . c:\windows\system32\ws2_32.dll
.
[-] 2008-04-14 . 9789E95E1D88EEB4B922BF3EA7779C28 . 19968 . . [5.1.2600.5512] . . c:\windows\system32\ws2help.dll
.
[-] 2008-04-14 . 12896823FB95BFB3DC9B46BCAEDC9923 . 1033728 . . [6.00.2900.5512] . . c:\windows\explorer.exe
.
[-] 2008-04-14 . 058710B720282CA82B909912D3EF28DB . 146432 . . [5.1.2600.5512] . . c:\windows\regedit.exe
[-] 2008-04-14 . 058710B720282CA82B909912D3EF28DB . 146432 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\regedit.exe
.
[-] 2011-11-01 . 6BAD1BED9872E62049E487FB91AE2F3A . 1288704 . . [5.1.2600.6168] . . c:\windows\system32\ole32.dll
[-] 2011-11-01 . 6BAD1BED9872E62049E487FB91AE2F3A . 1288704 . . [5.1.2600.6168] . . c:\windows\system32\dllcache\ole32.dll
[-] 2011-11-01 . 7D9DDE1AB4B00DDB173F5A16E9206517 . 1289216 . . [5.1.2600.6168] . . c:\windows\$hf_mig$\KB2624667\SP3QFE\ole32.dll
[-] 2010-07-16 . 8D51FB47062F2A1A9EFECCEF338A4C46 . 1289216 . . [5.1.2600.6010] . . c:\windows\$hf_mig$\KB979687\SP3QFE\ole32.dll
.
[-] 2010-04-16 . 9E03DC5AB51CFD0190541CE2038D819D . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\usp10.dll
[-] 2010-04-16 . 9E03DC5AB51CFD0190541CE2038D819D . 406016 . . [1.0420.2600.5969] . . c:\windows\system32\dllcache\usp10.dll
[-] 2010-04-16 . F8894BCC961D461674002B4BAE7AECC1 . 406016 . . [1.0420.2600.5969] . . c:\windows\$hf_mig$\KB981322\SP3QFE\usp10.dll
.
[-] 2008-04-14 . 9B9F1C38D559047B8AC0DBA2D5FEBDE9 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ksuser.dll
[-] 2008-04-14 . 9B9F1C38D559047B8AC0DBA2D5FEBDE9 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\dllcache\ksuser.dll
[-] 2008-04-14 . 9B9F1C38D559047B8AC0DBA2D5FEBDE9 . 4096 . . [5.3.2600.5512] . . c:\windows\system32\ReinstallBackups\0015\DriverFiles\i386\ksuser.dll
.
[-] 2008-04-14 . 5F1D5F88303D4A4DBC8E5F97BA967CC3 . 15360 . . [5.1.2600.5512] . . c:\windows\system32\ctfmon.exe
.
[-] 2009-07-27 . 99BC0B50F511924348BE19C7C7313BBF . 135168 . . [6.00.2900.5853] . . c:\windows\system32\shsvcs.dll
[-] 2009-07-27 . 99BC0B50F511924348BE19C7C7313BBF . 135168 . . [6.00.2900.5853] . . c:\windows\system32\dllcache\shsvcs.dll
[-] 2009-07-27 . 888CD7B39C37E13A2419BECFAAF0A28C . 135168 . . [6.00.2900.5853] . . c:\windows\$hf_mig$\KB971029\SP3QFE\shsvcs.dll
.
[-] 2008-04-14 . AFFC87E2501FCE8F09D4C10BA6421CCF . 4608 . . [5.1.2600.5512] . . c:\windows\system32\msimg32.dll
.
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
.
[-] 2008-04-14 . F92E1076C42FCD6DB3D72D8CFE9816D5 . 13824 . . [5.1.2600.5512] . . c:\windows\system32\wscntfy.exe
.
[-] 2008-04-14 . 295D21F14C335B53CB8154E5B1F892B9 . 129024 . . [5.1.2600.5512] . . c:\windows\system32\xmlprov.dll
.
[-] 2010-12-09 . 15CE4DBC22FAB90B3CA5352AF1FFF81C . 718336 . . [5.1.2600.6055] . . c:\windows\$hf_mig$\KB2393802\SP3QFE\ntdll.dll
[-] 2010-12-09 . F8F0D25CA553E39DDE485D8FC7FCCE89 . 718336 . . [5.1.2600.6055] . . c:\windows\system32\ntdll.dll
[-] 2010-12-09 . F8F0D25CA553E39DDE485D8FC7FCCE89 . 718336 . . [5.1.2600.6055] . . c:\windows\system32\dllcache\ntdll.dll
[-] 2009-02-09 . B0913005EE3FC15D7F72472D0B8A30EB . 715264 . . [5.1.2600.5755] . . c:\windows\$hf_mig$\KB956572\SP3QFE\ntdll.dll
.
[-] 2008-04-14 . 5733177BCF16EE78B99543C9B0AB81EA . 177152 . . [5.1.2600.5512] . . c:\windows\system32\MSCTFIME.IME
.
[-] 2008-04-14 . 6D4FEB43EE538FC5428CC7F0565AA656 . 56320 . . [5.1.2600.5512] . . c:\windows\system32\eventlog.dll
.
[-] 2008-04-14 . 9DD07AF82244867CA36681EA2D29CE79 . 1614848 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
[-] 2008-04-14 . 23C74D75E36E7158768DD63D92789A91 . 75264 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ipsec.sys
.
[-] 2008-04-14 . 5B19B557B0C188210A56A6B699D90B8F . 59904 . . [5.1.2600.5512] . . c:\windows\system32\regsvc.dll
.
[-] 2008-04-14 . 0A9A7365A1CA4319AA7C1D6CD8E4EAFA . 192512 . . [5.1.2600.5512] . . c:\windows\system32\schedsvc.dll
.
[-] 2008-04-14 . 0A5679B3714EDAB99E357057EE88FCA6 . 71680 . . [5.1.2600.5512] . . c:\windows\system32\ssdpsrv.dll
.
[-] 2008-04-14 . FF3477C03BE7201C294C35F684B3479F . 295424 . . [5.1.2600.5512] . . c:\windows\system32\termsrv.dll
.
[-] 2008-04-14 . 3CB32D3B8CBE79899D63280BB7A83CD9 . 344064 . . [5.1.2600.5512] . . c:\windows\system32\hnetcfg.dll
.
[-] 2008-04-14 . D8849F77C0B66226335A59D26CB4EDC6 . 167936 . . [5.1.2600.5512] . . c:\windows\system32\appmgmts.dll
.
[-] 2008-04-14 . 9859C0F6936E723E4892D7141B1327D5 . 11648 . . [5.1.2600.0] . . c:\windows\system32\dllcache\acpiec.sys
[-] 2008-04-14 . 9859C0F6936E723E4892D7141B1327D5 . 11648 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys
.
[-] 2008-04-14 10:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\dllcache\aec.sys
[-] 2008-04-14 10:09 . 8BED39E3C35D6A489438B8141717A557 . 142592 . . [5.1.2601.3142] . . c:\windows\system32\drivers\aec.sys
.
[-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\agp440.sys
[-] 2008-04-14 . 08FD04AA961BDC77FB983F328334E3D7 . 42368 . . [5.1.2600.5512] . . c:\windows\system32\drivers\AGP440.SYS
.
[-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\dllcache\ip6fw.sys
[-] 2008-04-14 . 3BB22519A194418D5FEC05D800A19AD0 . 36608 . . [5.1.2600.5512] . . c:\windows\system32\drivers\ip6fw.sys
.
[-] 2010-09-18 07:18 . 842900DEDBC8E3E8DBCCCB298FD88F65 . 953856 . . [4.1.6151] . . c:\windows\$hf_mig$\KB2387149\SP3QFE\mfc40u.dll
[-] 2010-09-18 06:53 . E76A5C202E68AF5A322D16B5A78F48B9 . 953856 . . [4.1.6151] . . c:\windows\system32\mfc40u.dll
[-] 2010-09-18 06:53 . E76A5C202E68AF5A322D16B5A78F48B9 . 953856 . . [4.1.6151] . . c:\windows\system32\dllcache\mfc40u.dll
.
[-] 2008-04-14 . 986B1FF5814366D71E0AC5755C88F2D3 . 33792 . . [5.1.2600.5512] . . c:\windows\system32\msgsvc.dll
.
[-] 2009-01-31 03:33 . 051B1BDECD6DEE18C771B5D5EC7F044D . 27136 . . [11.0.5721.5262] . . c:\windows\system32\mspmsnsv.dll
.
[-] 2008-04-14 12:00 . 156F64A3345BD23C600655FB4D10BC08 . 435200 . . [5.1.2400.5512] . . c:\windows\system32\ntmssvc.dll
.
[-] 2008-04-14 . 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 . 185856 . . [5.1.2600.5512] . . c:\windows\system32\upnphost.dll
.
[-] 2008-04-14 . 4D83ED8BDDEC431FC8AD907B47CFB6E3 . 367616 . . [5.3.2600.5512] . . c:\windows\system32\dsound.dll
.
[-] 2008-04-14 . 0607CBC6FA20114CB491EFE4B2F9EFAD . 1689088 . . [5.03.2600.5512] . . c:\windows\system32\d3d9.dll
.
[-] 2008-04-14 . A340CD71EB535A3DD751B5F28723E50C . 279552 . . [5.03.2600.5512] . . c:\windows\system32\ddraw.dll
.
[-] 2008-04-14 12:00 . 5652F6CE1D9E9D8068B9D29BC21B5409 . 84992 . . [5.1.2600.5512] . . c:\windows\system32\olepro32.dll
.
[-] 2008-04-14 . DBE2B62353660ECCA0D75EA307A717E9 . 39936 . . [5.1.2600.5512] . . c:\windows\system32\perfctrs.dll
.
[-] 2008-04-14 . C7CE131408739B0B3A318BE2D0032719 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\version.dll
.
[-] 2008-04-14 . 3805DF0AC4296A34BA4BF93B346CC378 . 171008 . . [5.1.2600.5512] . . c:\windows\system32\srsvc.dll
.
[-] 2008-04-14 . 54AF4B1D5459500EF0937F6D33B1914F . 175104 . . [5.1.2600.5512] . . c:\windows\system32\w32time.dll
.
[-] 2008-04-14 . 8BAD69CBAC032D4BBACFCE0306174C30 . 333824 . . [5.1.2600.5512] . . c:\windows\system32\wiaservc.dll
.
[-] 2008-04-14 . 5C12660A97822F6E61576943B49AAAD6 . 18944 . . [5.1.2600.5512] . . c:\windows\system32\midimap.dll
.
[-] 2008-04-14 . 6F9BEF24C578D5D6740E080BEDD6A448 . 7680 . . [5.1.2600.5512] . . c:\windows\system32\rasadhlp.dll
.
[-] 2008-04-14 . 4E3D06D6E68EEDB52565080F55B460D3 . 19456 . . [5.1.2600.5512] . . c:\windows\system32\wshtcpip.dll
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2013-02-19 00:04    1929392    ----a-w-    c:\program files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll" [2013-02-19 1929392]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2008-08-18 16806912]
"8169Diag"="c:\program files\Realtek\Diagnostics Utility\8169Diag.exe" [2008-02-26 909312]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-02-11 186904]
"PDVDDXSrv"="c:\program files\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-02-05 128232]
"Microsoft Default Manager"="c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2009-07-17 288080]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"MsmqIntCert"="mqrt.dll" [2008-04-14 177152]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2013-02-19 1151152]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2013-03-14 4394032]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2011-07-27 434080]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute    REG_MULTI_SZ       autocheck autochk *\0c:\progra~1\AVG\AVG2013\avgrsx.exe /sync /restart
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"IgfxTray"=c:\windows\system32\igfxtray.exe
"HotKeysCmds"=c:\windows\system32\hkcmd.exe
"Persistence"=c:\windows\system32\igfxpers.exe
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"psctom"="c:\windows\system32\rundll32.exe" "c:\documents and settings\GCC Bookstore\Application Data\psctom.dll",malloc_warn
"ROC_ROC_NT"="c:\program files\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT
"vProt"="c:\program files\AVG Secure Search\vprot.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\WINDOWS\\system32\\mqsvc.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\Battle.net\\Agent\\Agent.1040\\Agent.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\Battle.net\\Agent\\Agent.1267\\Agent.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2013\\avgemcx.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"57118:TCP"= 57118:TCP:Pando Media Booster
"57118:UDP"= 57118:UDP:Pando Media Booster
"57216:TCP"= 57216:TCP:Pando Media Booster
"57216:UDP"= 57216:UDP:Pando Media Booster
"56816:TCP"= 56816:TCP:Pando Media Booster
"56816:UDP"= 56816:UDP:Pando Media Booster
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [8/9/2012 1:56 PM 60216]
R0 Avglogx;AVG Logging Driver;c:\windows\system32\drivers\avglogx.sys [8/9/2012 1:56 PM 245048]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [8/10/2012 4:52 AM 39224]
R1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [8/13/2012 4:40 PM 208184]
R1 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [8/10/2012 4:52 AM 22328]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [8/9/2012 1:56 PM 170808]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [8/10/2012 4:52 AM 182072]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [9/10/2012 11:30 PM 33112]
R2 avgfws;AVG Firewall;c:\program files\AVG\AVG2013\avgfws.exe [2/19/2013 4:02 AM 1418184]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2013\avgidsagent.exe [2/27/2013 11:42 PM 4937264]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2013\avgwdsvc.exe [2/19/2013 4:02 AM 282624]
R2 LANPkt;Realtek LANPkt Protocol Driver;c:\windows\system32\drivers\LANPkt.sys [8/14/2009 10:59 PM 8960]
R2 vToolbarUpdater14.2.0;vToolbarUpdater14.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [2/18/2013 5:05 PM 968880]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [1/12/2012 7:52 PM 30944]
R3 Diag69xp;Diag69xp;c:\windows\system32\drivers\diag69xp.sys [8/14/2009 10:59 PM 11264]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [8/15/2009 1:50 AM 116224]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [1/12/2012 7:52 PM 30944]
S3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [12/18/2009 11:58 AM 11336]
S3 RTLVLAN;Realtek VLAN Intermediate Driver;c:\windows\system32\drivers\RTLVLAN.SYS [8/14/2009 10:59 PM 16640]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\drivers\tapoas.sys [7/15/2012 11:48 AM 26112]
.
Contents of the 'Scheduled Tasks' folder
.
2013-04-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-12 04:22]
.
2013-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-06 08:47]
.
2013-04-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-08-06 08:47]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.mail.ru/cnt/8730
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_70C5B381380DB17F.dll/cmsidewiki.html
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\documents and settings\GCC Bookstore\Start Menu\Programs\IMVU\Run IMVU.lnk
Trusted Zone: dell.com
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\14.2.0\ViProtocol.dll
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - ProfilePath - c:\documents and settings\GCC Bookstore\Application Data\Mozilla\Firefox\Profiles\y3stwony.default-1351997707218\
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
SafeBoot-21085736.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-04-03 19:14
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...  
.
scanning hidden autostart entries ...
.
scanning hidden files ...  
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3092349880-1199686183-1664486196-1005\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{9AF6D38F-D408-426D-EC9D-EEE5525570DF}*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
"haaigiibneplbpbm"=hex:66,61,6e,6c,66,69,63,64,68,68,68,68,00,00
"iapmkbhbhcmdcecjjj"=hex:6a,61,6b,62,6d,69,6b,6f,64,61,65,64,65,6f,70,70,6c,68,
   6b,6c,00,d1
"hafnnnnhmbdiglla"=hex:6a,61,6b,62,6e,69,6a,6a,6e,62,65,66,62,6f,6d,64,6f,65,
   64,6b,00,f7
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(240)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\msdtc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre7\bin\jqs.exe
c:\windows\System32\snmp.exe
c:\windows\system32\mqsvc.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\system32\mqtgsvc.exe
c:\windows\RTHDCPL.EXE
.
**************************************************************************
.
Completion time: 2013-04-03  19:19:04 - machine was rebooted
ComboFix-quarantined-files.txt  2013-04-04 02:18
.
Pre-Run: 53,135,237,120 bytes free
Post-Run: 54,187,229,184 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - F789EBA8C86E776BC8045710BFFB28F9
 

 

 Results of screen317's Security Check version 0.99.61  
 Windows XP Service Pack 3 x86   
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled!  
AVG Internet Security 2013   
 Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 JavaFX 2.1.1    
 Java™ 6 Update 31  
 Java 7 Update 7  
 Java version out of Date!
 Adobe Flash Player     11.6.602.180  
 Adobe Reader 10.1.6 Adobe Reader out of Date!  
 Mozilla Firefox (20.0)
````````Process Check: objlist.exe by Laurent````````  
 AVG avgwdsvc.exe
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 6%
````````````````````End of Log``````````````````````
 

 

 

# AdwCleaner v2.200 - Logfile created 04/03/2013 at 19:26:35
# Updated 02/04/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : GCC Bookstore - DCB80DK1
# Boot Mode : Normal
# Running from : C:\Documents and Settings\GCC Bookstore\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Common Files\AVG Secure Search
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
Folder Deleted : C:\Documents and Settings\All Users\Application Data\AVG Secure Search
Folder Deleted : C:\Documents and Settings\GCC Bookstore\Application Data\AVG Secure Search
Folder Deleted : C:\Documents and Settings\GCC Bookstore\Local Settings\Application Data\AVG Secure Search
Folder Deleted : C:\Documents and Settings\GCC Bookstore\Local Settings\Application Data\AVG Security Toolbar
Folder Deleted : C:\Documents and Settings\GCC Bookstore\Local Settings\Application Data\Conduit
Folder Deleted : C:\Program Files\AVG Secure Search
Folder Deleted : C:\Program Files\Conduit

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2612669
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v20.0 (en-US)

File : C:\Documents and Settings\GCC Bookstore\Application Data\Mozilla\Firefox\Profiles\y3stwony.default-1351997707218\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [6073 octets] - [03/04/2013 19:26:35]

########## EOF - C:\AdwCleaner[S1].txt - [6133 octets] ##########


Edited by classyhobo, 03 April 2013 - 10:10 PM.


#6 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 03 April 2013 - 09:52 PM

19:34:08.0968 3112  TDSS rootkit removing tool 2.8.16.0 Mar 21 2013 15:53:02
19:34:11.0078 3112  ============================================================
19:34:11.0078 3112  Current date / time: 2013/04/03 19:34:11.0078
19:34:11.0078 3112  SystemInfo:
19:34:11.0078 3112  
19:34:11.0078 3112  OS Version: 5.1.2600 ServicePack: 3.0
19:34:11.0078 3112  Product type: Workstation
19:34:11.0078 3112  ComputerName: DCB80DK1
19:34:11.0078 3112  UserName: GCC Bookstore
19:34:11.0078 3112  Windows directory: C:\WINDOWS
19:34:11.0078 3112  System windows directory: C:\WINDOWS
19:34:11.0078 3112  Processor architecture: Intel x86
19:34:11.0078 3112  Number of processors: 2
19:34:11.0078 3112  Page size: 0x1000
19:34:11.0078 3112  Boot type: Normal boot
19:34:11.0078 3112  ============================================================
19:34:12.0625 3112  BG loaded
19:34:16.0953 3112  Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
19:34:16.0968 3112  ============================================================
19:34:16.0968 3112  \Device\Harddisk0\DR0:
19:34:16.0984 3112  MBR partitions:
19:34:16.0984 3112  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x94EE790
19:34:16.0984 3112  ============================================================
19:34:17.0859 3112  C: <-> \Device\Harddisk0\DR0\Partition1
19:34:17.0859 3112  ============================================================
19:34:17.0859 3112  Initialize success
19:34:17.0859 3112  ============================================================
19:34:49.0531 0604  ============================================================
19:34:49.0531 0604  Scan started
19:34:49.0531 0604  Mode: Manual; SigCheck; TDLFS;
19:34:49.0531 0604  ============================================================
19:34:49.0625 0604  ================ Scan system memory ========================
19:34:49.0625 0604  System memory - ok
19:34:49.0625 0604  ================ Scan services =============================
19:34:49.0796 0604  Abiosdsk - ok
19:34:49.0828 0604  [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:34:50.0875 0604  abp480n5 ( UnsignedFile.Multi.Generic ) - warning
19:34:50.0875 0604  abp480n5 - detected UnsignedFile.Multi.Generic (1)
19:34:50.0906 0604  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:34:50.0921 0604  ACPI ( UnsignedFile.Multi.Generic ) - warning
19:34:50.0921 0604  ACPI - detected UnsignedFile.Multi.Generic (1)
19:34:50.0968 0604  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
19:34:50.0968 0604  ACPIEC ( UnsignedFile.Multi.Generic ) - warning
19:34:50.0968 0604  ACPIEC - detected UnsignedFile.Multi.Generic (1)
19:34:51.0031 0604  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:34:51.0078 0604  AdobeFlashPlayerUpdateSvc - ok
19:34:51.0109 0604  [ 9A11864873DA202C996558B2106B0BBC ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:34:51.0156 0604  adpu160m ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0156 0604  adpu160m - detected UnsignedFile.Multi.Generic (1)
19:34:51.0187 0604  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:34:51.0187 0604  aec ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0187 0604  aec - detected UnsignedFile.Multi.Generic (1)
19:34:51.0234 0604  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:34:51.0234 0604  AFD ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0234 0604  AFD - detected UnsignedFile.Multi.Generic (1)
19:34:51.0250 0604  [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
19:34:51.0265 0604  agp440 ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0265 0604  agp440 - detected UnsignedFile.Multi.Generic (1)
19:34:51.0265 0604  [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:34:51.0281 0604  agpCPQ ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0281 0604  agpCPQ - detected UnsignedFile.Multi.Generic (1)
19:34:51.0281 0604  [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:34:51.0312 0604  Aha154x ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0312 0604  Aha154x - detected UnsignedFile.Multi.Generic (1)
19:34:51.0312 0604  [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:34:51.0328 0604  aic78u2 ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0328 0604  aic78u2 - detected UnsignedFile.Multi.Generic (1)
19:34:51.0328 0604  [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:34:51.0343 0604  aic78xx ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0343 0604  aic78xx - detected UnsignedFile.Multi.Generic (1)
19:34:51.0359 0604  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:34:51.0375 0604  Alerter ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0375 0604  Alerter - detected UnsignedFile.Multi.Generic (1)
19:34:51.0390 0604  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
19:34:51.0390 0604  ALG ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0390 0604  ALG - detected UnsignedFile.Multi.Generic (1)
19:34:51.0421 0604  [ 1140AB9938809700B46BB88E46D72A96 ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
19:34:51.0421 0604  AliIde ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0421 0604  AliIde - detected UnsignedFile.Multi.Generic (1)
19:34:51.0437 0604  [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:34:51.0453 0604  alim1541 ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0453 0604  alim1541 - detected UnsignedFile.Multi.Generic (1)
19:34:51.0468 0604  [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:34:51.0484 0604  amdagp ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0484 0604  amdagp - detected UnsignedFile.Multi.Generic (1)
19:34:51.0500 0604  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
19:34:51.0515 0604  amsint ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0515 0604  amsint - detected UnsignedFile.Multi.Generic (1)
19:34:51.0546 0604  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
19:34:51.0562 0604  AppMgmt ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0562 0604  AppMgmt - detected UnsignedFile.Multi.Generic (1)
19:34:51.0578 0604  [ 62D318E9A0C8FC9B780008E724283707 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
19:34:51.0578 0604  asc ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0578 0604  asc - detected UnsignedFile.Multi.Generic (1)
19:34:51.0625 0604  [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:34:51.0640 0604  asc3350p ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0640 0604  asc3350p - detected UnsignedFile.Multi.Generic (1)
19:34:51.0656 0604  [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:34:51.0671 0604  asc3550 ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0671 0604  asc3550 - detected UnsignedFile.Multi.Generic (1)
19:34:51.0828 0604  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:34:51.0875 0604  aspnet_state - ok
19:34:51.0890 0604  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:34:51.0890 0604  AsyncMac ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0890 0604  AsyncMac - detected UnsignedFile.Multi.Generic (1)
19:34:51.0921 0604  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
19:34:51.0921 0604  atapi ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0921 0604  atapi - detected UnsignedFile.Multi.Generic (1)
19:34:51.0921 0604  Atdisk - ok
19:34:51.0937 0604  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:34:51.0953 0604  Atmarpc ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0953 0604  Atmarpc - detected UnsignedFile.Multi.Generic (1)
19:34:51.0984 0604  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:34:51.0984 0604  AudioSrv ( UnsignedFile.Multi.Generic ) - warning
19:34:51.0984 0604  AudioSrv - detected UnsignedFile.Multi.Generic (1)
19:34:52.0015 0604  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:34:52.0031 0604  audstub ( UnsignedFile.Multi.Generic ) - warning
19:34:52.0031 0604  audstub - detected UnsignedFile.Multi.Generic (1)
19:34:52.0062 0604  [ 8BE661C16FBF84A73BCEC84B6B4A9DB5 ] Avgfwdx         C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
19:34:52.0078 0604  Avgfwdx - ok
19:34:52.0093 0604  [ 8BE661C16FBF84A73BCEC84B6B4A9DB5 ] Avgfwfd         C:\WINDOWS\system32\DRIVERS\avgfwdx.sys
19:34:52.0093 0604  Avgfwfd - ok
19:34:52.0250 0604  [ DC4739DD82EAFD85299B4E87B5F63207 ] avgfws          C:\Program Files\AVG\AVG2013\avgfws.exe
19:34:52.0312 0604  avgfws - ok
19:34:52.0421 0604  [ 0D8244A9DB70BC6C36E2FB56F6039AB6 ] AVGIDSAgent     C:\Program Files\AVG\AVG2013\avgidsagent.exe
19:34:52.0562 0604  AVGIDSAgent - ok
19:34:52.0593 0604  [ 1A2213B7D94944861449CB07BF2D099E ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
19:34:52.0625 0604  AVGIDSDriver - ok
19:34:52.0640 0604  [ B0DEF92F4E1E6B9242E6C8FAB82703F7 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
19:34:52.0656 0604  AVGIDSHX - ok
19:34:52.0687 0604  [ A426B2DC795531D99E2EE1952AEC051A ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimx.sys
19:34:52.0703 0604  AVGIDSShim - ok
19:34:52.0734 0604  [ 08FA13787D77A75DC413E27FD92B44E8 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
19:34:52.0750 0604  Avgldx86 - ok
19:34:52.0750 0604  [ 3E587EE55C70E6DB78A98D7121D3052E ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
19:34:52.0765 0604  Avglogx - ok
19:34:52.0781 0604  [ 5AC56B2CF8EE751796C5A8FC5C631B66 ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
19:34:52.0796 0604  Avgmfx86 - ok
19:34:52.0796 0604  [ C29E6070396E437FDE184D739CCBA2C7 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
19:34:52.0812 0604  Avgrkx86 - ok
19:34:52.0828 0604  [ 52448A41CF1769CB3627677A0509627B ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
19:34:52.0859 0604  Avgtdix - ok
19:34:52.0906 0604  [ CAE7B6E4D7EB17829C526153D19B9C95 ] avgtp           C:\WINDOWS\system32\drivers\avgtpx86.sys
19:34:52.0937 0604  avgtp - ok
19:34:52.0984 0604  [ DC98337F0D2A9F6C0B6FB682297ECE3B ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
19:34:53.0000 0604  avgwd - ok
19:34:53.0015 0604  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:34:53.0031 0604  Beep ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0031 0604  Beep - detected UnsignedFile.Multi.Generic (1)
19:34:53.0062 0604  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
19:34:53.0203 0604  BITS ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0203 0604  BITS - detected UnsignedFile.Multi.Generic (1)
19:34:53.0312 0604  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:34:53.0328 0604  Bonjour Service - ok
19:34:53.0359 0604  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
19:34:53.0359 0604  Browser ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0359 0604  Browser - detected UnsignedFile.Multi.Generic (1)
19:34:53.0359 0604  catchme - ok
19:34:53.0390 0604  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:34:53.0390 0604  cbidf ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0390 0604  cbidf - detected UnsignedFile.Multi.Generic (1)
19:34:53.0406 0604  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:34:53.0406 0604  cbidf2k ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0406 0604  cbidf2k - detected UnsignedFile.Multi.Generic (1)
19:34:53.0421 0604  [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:34:53.0437 0604  cd20xrnt ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0437 0604  cd20xrnt - detected UnsignedFile.Multi.Generic (1)
19:34:53.0468 0604  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:34:53.0500 0604  Cdaudio ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0500 0604  Cdaudio - detected UnsignedFile.Multi.Generic (1)
19:34:53.0531 0604  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:34:53.0531 0604  Cdfs ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0531 0604  Cdfs - detected UnsignedFile.Multi.Generic (1)
19:34:53.0578 0604  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:34:53.0578 0604  Cdrom ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0578 0604  Cdrom - detected UnsignedFile.Multi.Generic (1)
19:34:53.0593 0604  Changer - ok
19:34:53.0625 0604  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] cisvc           C:\WINDOWS\system32\cisvc.exe
19:34:53.0625 0604  cisvc ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0625 0604  cisvc - detected UnsignedFile.Multi.Generic (1)
19:34:53.0640 0604  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:34:53.0656 0604  ClipSrv ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0656 0604  ClipSrv - detected UnsignedFile.Multi.Generic (1)
19:34:53.0718 0604  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:34:53.0796 0604  clr_optimization_v2.0.50727_32 - ok
19:34:53.0828 0604  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:34:53.0875 0604  clr_optimization_v4.0.30319_32 - ok
19:34:53.0906 0604  [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:34:53.0906 0604  CmdIde ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0906 0604  CmdIde - detected UnsignedFile.Multi.Generic (1)
19:34:53.0906 0604  COMSysApp - ok
19:34:53.0937 0604  [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:34:53.0953 0604  Cpqarray ( UnsignedFile.Multi.Generic ) - warning
19:34:53.0953 0604  Cpqarray - detected UnsignedFile.Multi.Generic (1)
19:34:54.0000 0604  [ D01F685F8B4598D144B0CCE9FF95D8D5 ] cpudrv          C:\Program Files\SystemRequirementsLab\cpudrv.sys
19:34:54.0031 0604  cpudrv - ok
19:34:54.0062 0604  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:34:54.0078 0604  CryptSvc ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0078 0604  CryptSvc - detected UnsignedFile.Multi.Generic (1)
19:34:54.0093 0604  [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:34:54.0125 0604  dac2w2k ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0125 0604  dac2w2k - detected UnsignedFile.Multi.Generic (1)
19:34:54.0140 0604  [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:34:54.0156 0604  dac960nt ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0156 0604  dac960nt - detected UnsignedFile.Multi.Generic (1)
19:34:54.0187 0604  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:34:54.0203 0604  DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0203 0604  DcomLaunch - detected UnsignedFile.Multi.Generic (1)
19:34:54.0250 0604  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:34:54.0265 0604  Dhcp ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0265 0604  Dhcp - detected UnsignedFile.Multi.Generic (1)
19:34:54.0296 0604  [ A22D5A027F397E412CBB2D97E8661BFF ] Diag69xp        C:\WINDOWS\system32\Drivers\Diag69xp.sys
19:34:54.0296 0604  Diag69xp ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0296 0604  Diag69xp - detected UnsignedFile.Multi.Generic (1)
19:34:54.0328 0604  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:34:54.0343 0604  Disk ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0343 0604  Disk - detected UnsignedFile.Multi.Generic (1)
19:34:54.0343 0604  dmadmin - ok
19:34:54.0375 0604  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:34:54.0406 0604  dmboot ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0406 0604  dmboot - detected UnsignedFile.Multi.Generic (1)
19:34:54.0421 0604  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:34:54.0421 0604  dmio ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0421 0604  dmio - detected UnsignedFile.Multi.Generic (1)
19:34:54.0421 0604  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:34:54.0421 0604  dmload ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0421 0604  dmload - detected UnsignedFile.Multi.Generic (1)
19:34:54.0468 0604  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:34:54.0468 0604  dmserver ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0468 0604  dmserver - detected UnsignedFile.Multi.Generic (1)
19:34:54.0500 0604  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:34:54.0500 0604  DMusic ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0500 0604  DMusic - detected UnsignedFile.Multi.Generic (1)
19:34:54.0546 0604  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:34:54.0546 0604  Dnscache ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0546 0604  Dnscache - detected UnsignedFile.Multi.Generic (1)
19:34:54.0593 0604  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:34:54.0609 0604  Dot3svc ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0609 0604  Dot3svc - detected UnsignedFile.Multi.Generic (1)
19:34:54.0656 0604  [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:34:54.0656 0604  dpti2o ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0656 0604  dpti2o - detected UnsignedFile.Multi.Generic (1)
19:34:54.0671 0604  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:34:54.0671 0604  drmkaud ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0671 0604  drmkaud - detected UnsignedFile.Multi.Generic (1)
19:34:54.0687 0604  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
19:34:54.0703 0604  EapHost ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0703 0604  EapHost - detected UnsignedFile.Multi.Generic (1)
19:34:54.0718 0604  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:34:54.0718 0604  ERSvc ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0718 0604  ERSvc - detected UnsignedFile.Multi.Generic (1)
19:34:54.0765 0604  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
19:34:54.0765 0604  Eventlog ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0765 0604  Eventlog - detected UnsignedFile.Multi.Generic (1)
19:34:54.0796 0604  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
19:34:54.0812 0604  EventSystem ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0812 0604  EventSystem - detected UnsignedFile.Multi.Generic (1)
19:34:54.0843 0604  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:34:54.0859 0604  Fastfat ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0859 0604  Fastfat - detected UnsignedFile.Multi.Generic (1)
19:34:54.0875 0604  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:34:54.0875 0604  FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0875 0604  FastUserSwitchingCompatibility - detected UnsignedFile.Multi.Generic (1)
19:34:54.0906 0604  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:34:54.0921 0604  Fdc ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0921 0604  Fdc - detected UnsignedFile.Multi.Generic (1)
19:34:54.0953 0604  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:34:54.0953 0604  Fips ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0953 0604  Fips - detected UnsignedFile.Multi.Generic (1)
19:34:54.0968 0604  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:34:54.0968 0604  Flpydisk ( UnsignedFile.Multi.Generic ) - warning
19:34:54.0968 0604  Flpydisk - detected UnsignedFile.Multi.Generic (1)
19:34:55.0000 0604  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:34:55.0000 0604  FltMgr ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0000 0604  FltMgr - detected UnsignedFile.Multi.Generic (1)
19:34:55.0062 0604  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:34:55.0093 0604  FontCache3.0.0.0 - ok
19:34:55.0109 0604  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:34:55.0125 0604  Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0125 0604  Fs_Rec - detected UnsignedFile.Multi.Generic (1)
19:34:55.0156 0604  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:34:55.0156 0604  Ftdisk ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0156 0604  Ftdisk - detected UnsignedFile.Multi.Generic (1)
19:34:55.0203 0604  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:34:55.0250 0604  GEARAspiWDM - ok
19:34:55.0281 0604  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:34:55.0281 0604  Gpc ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0281 0604  Gpc - detected UnsignedFile.Multi.Generic (1)
19:34:55.0375 0604  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:34:55.0375 0604  gupdate - ok
19:34:55.0390 0604  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:34:55.0406 0604  gupdatem - ok
19:34:55.0421 0604  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:34:55.0421 0604  HDAudBus ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0421 0604  HDAudBus - detected UnsignedFile.Multi.Generic (1)
19:34:55.0515 0604  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:34:55.0515 0604  helpsvc ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0515 0604  helpsvc - detected UnsignedFile.Multi.Generic (1)
19:34:55.0546 0604  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
19:34:55.0546 0604  HidServ ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0546 0604  HidServ - detected UnsignedFile.Multi.Generic (1)
19:34:55.0562 0604  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:34:55.0578 0604  hidusb ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0578 0604  hidusb - detected UnsignedFile.Multi.Generic (1)
19:34:55.0625 0604  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
19:34:55.0640 0604  hkmsvc ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0640 0604  hkmsvc - detected UnsignedFile.Multi.Generic (1)
19:34:55.0656 0604  [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
19:34:55.0656 0604  hpn ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0656 0604  hpn - detected UnsignedFile.Multi.Generic (1)
19:34:55.0687 0604  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:34:55.0687 0604  HTTP ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0687 0604  HTTP - detected UnsignedFile.Multi.Generic (1)
19:34:55.0718 0604  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:34:55.0718 0604  HTTPFilter ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0718 0604  HTTPFilter - detected UnsignedFile.Multi.Generic (1)
19:34:55.0734 0604  [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
19:34:55.0734 0604  i2omgmt ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0734 0604  i2omgmt - detected UnsignedFile.Multi.Generic (1)
19:34:55.0765 0604  [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:34:55.0781 0604  i2omp ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0781 0604  i2omp - detected UnsignedFile.Multi.Generic (1)
19:34:55.0812 0604  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:34:55.0828 0604  i8042prt ( UnsignedFile.Multi.Generic ) - warning
19:34:55.0828 0604  i8042prt - detected UnsignedFile.Multi.Generic (1)
19:34:55.0906 0604  [ 52E8A3CC8269ADB27D25182284C5E650 ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
19:34:55.0921 0604  IAANTMON - ok
19:34:56.0015 0604  [ 9A8C7E54679078B873331DA566F6707B ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:34:56.0062 0604  ialm ( UnsignedFile.Multi.Generic ) - warning
19:34:56.0062 0604  ialm - detected UnsignedFile.Multi.Generic (1)
19:34:56.0125 0604  [ 71ECC07BC7C5E24C3DD01D8A29A24054 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
19:34:56.0140 0604  iaStor - ok
19:34:56.0218 0604  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:34:56.0453 0604  idsvc - ok
19:34:56.0484 0604  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:34:56.0500 0604  Imapi ( UnsignedFile.Multi.Generic ) - warning
19:34:56.0500 0604  Imapi - detected UnsignedFile.Multi.Generic (1)
19:34:56.0531 0604  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:34:56.0546 0604  ImapiService ( UnsignedFile.Multi.Generic ) - warning
19:34:56.0546 0604  ImapiService - detected UnsignedFile.Multi.Generic (1)
19:34:56.0562 0604  [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:34:56.0578 0604  ini910u ( UnsignedFile.Multi.Generic ) - warning
19:34:56.0578 0604  ini910u - detected UnsignedFile.Multi.Generic (1)
19:34:56.0734 0604  [ 5C8F36CDCB489111B24003AF4DFE1FDC ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:34:56.0859 0604  IntcAzAudAddService ( UnsignedFile.Multi.Generic ) - warning
19:34:56.0859 0604  IntcAzAudAddService - detected UnsignedFile.Multi.Generic (1)
19:34:56.0890 0604  [ F5C70E41B19D33CC764998786AB74165 ] IntcHdmiAddService C:\WINDOWS\system32\drivers\IntcHdmi.sys
19:34:56.0906 0604  IntcHdmiAddService ( UnsignedFile.Multi.Generic ) - warning
19:34:56.0906 0604  IntcHdmiAddService - detected UnsignedFile.Multi.Generic (1)
19:34:57.0015 0604  [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
19:34:57.0031 0604  IntelIde ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0031 0604  IntelIde - detected UnsignedFile.Multi.Generic (1)
19:34:57.0062 0604  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:34:57.0062 0604  intelppm ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0062 0604  intelppm - detected UnsignedFile.Multi.Generic (1)
19:34:57.0078 0604  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:34:57.0093 0604  Ip6Fw ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0093 0604  Ip6Fw - detected UnsignedFile.Multi.Generic (1)
19:34:57.0125 0604  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:34:57.0140 0604  IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0140 0604  IpFilterDriver - detected UnsignedFile.Multi.Generic (1)
19:34:57.0156 0604  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:34:57.0187 0604  IpInIp ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0187 0604  IpInIp - detected UnsignedFile.Multi.Generic (1)
19:34:57.0218 0604  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:34:57.0218 0604  IpNat ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0218 0604  IpNat - detected UnsignedFile.Multi.Generic (1)
19:34:57.0234 0604  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:34:57.0234 0604  IPSec ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0234 0604  IPSec - detected UnsignedFile.Multi.Generic (1)
19:34:57.0250 0604  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:34:57.0281 0604  IRENUM ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0281 0604  IRENUM - detected UnsignedFile.Multi.Generic (1)
19:34:57.0328 0604  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:34:57.0328 0604  isapnp ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0328 0604  isapnp - detected UnsignedFile.Multi.Generic (1)
19:34:57.0484 0604  [ A12175F063302CD68F8FC6D572D7E5FD ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
19:34:57.0500 0604  JavaQuickStarterService - ok
19:34:57.0546 0604  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:34:57.0546 0604  Kbdclass ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0546 0604  Kbdclass - detected UnsignedFile.Multi.Generic (1)
19:34:57.0562 0604  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:34:57.0593 0604  kbdhid ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0593 0604  kbdhid - detected UnsignedFile.Multi.Generic (1)
19:34:57.0625 0604  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:34:57.0625 0604  kmixer ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0625 0604  kmixer - detected UnsignedFile.Multi.Generic (1)
19:34:57.0671 0604  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:34:57.0687 0604  KSecDD ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0687 0604  KSecDD - detected UnsignedFile.Multi.Generic (1)
19:34:57.0734 0604  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
19:34:57.0734 0604  LanmanServer ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0734 0604  LanmanServer - detected UnsignedFile.Multi.Generic (1)
19:34:57.0781 0604  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:34:57.0781 0604  lanmanworkstation ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0781 0604  lanmanworkstation - detected UnsignedFile.Multi.Generic (1)
19:34:57.0828 0604  [ 8F5795B166CBB50966E29982F8CDB310 ] LANPkt          C:\WINDOWS\system32\DRIVERS\LANPkt.sys
19:34:57.0828 0604  LANPkt ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0828 0604  LANPkt - detected UnsignedFile.Multi.Generic (1)
19:34:57.0828 0604  lbrtfdc - ok
19:34:57.0859 0604  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:34:57.0859 0604  LmHosts ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0859 0604  LmHosts - detected UnsignedFile.Multi.Generic (1)
19:34:57.0890 0604  [ 32933B07FC16D9F778BEE12545FA1B1A ] LPDSVC          C:\WINDOWS\system32\tcpsvcs.exe
19:34:57.0906 0604  LPDSVC ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0906 0604  LPDSVC - detected UnsignedFile.Multi.Generic (1)
19:34:57.0937 0604  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:34:57.0953 0604  Messenger ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0953 0604  Messenger - detected UnsignedFile.Multi.Generic (1)
19:34:57.0968 0604  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:34:57.0984 0604  mnmdd ( UnsignedFile.Multi.Generic ) - warning
19:34:57.0984 0604  mnmdd - detected UnsignedFile.Multi.Generic (1)
19:34:58.0015 0604  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:34:58.0046 0604  mnmsrvc ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0046 0604  mnmsrvc - detected UnsignedFile.Multi.Generic (1)
19:34:58.0062 0604  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:34:58.0078 0604  Modem ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0078 0604  Modem - detected UnsignedFile.Multi.Generic (1)
19:34:58.0109 0604  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:34:58.0125 0604  Mouclass ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0125 0604  Mouclass - detected UnsignedFile.Multi.Generic (1)
19:34:58.0156 0604  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:34:58.0171 0604  mouhid ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0171 0604  mouhid - detected UnsignedFile.Multi.Generic (1)
19:34:58.0203 0604  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:34:58.0218 0604  MountMgr ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0218 0604  MountMgr - detected UnsignedFile.Multi.Generic (1)
19:34:58.0281 0604  [ 1C9B83F6A2D1F414F0ACD28D75605607 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:34:58.0328 0604  MozillaMaintenance - ok
19:34:58.0359 0604  [ 70C14F5CCA5CF73F8A645C73A01D8726 ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
19:34:58.0359 0604  MQAC ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0359 0604  MQAC - detected UnsignedFile.Multi.Generic (1)
19:34:58.0406 0604  [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:34:58.0421 0604  mraid35x ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0421 0604  mraid35x - detected UnsignedFile.Multi.Generic (1)
19:34:58.0437 0604  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:34:58.0453 0604  MRxDAV ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0453 0604  MRxDAV - detected UnsignedFile.Multi.Generic (1)
19:34:58.0500 0604  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:34:58.0515 0604  MRxSmb ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0515 0604  MRxSmb - detected UnsignedFile.Multi.Generic (1)
19:34:58.0546 0604  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:34:58.0562 0604  MSDTC ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0562 0604  MSDTC - detected UnsignedFile.Multi.Generic (1)
19:34:58.0562 0604  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:34:58.0578 0604  Msfs ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0578 0604  Msfs - detected UnsignedFile.Multi.Generic (1)
19:34:58.0578 0604  MSIServer - ok
19:34:58.0609 0604  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:34:58.0640 0604  MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0640 0604  MSKSSRV - detected UnsignedFile.Multi.Generic (1)
19:34:58.0640 0604  [ AFB909B537AAE1BEAE7BBDB6A36D40B0 ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
19:34:58.0656 0604  MSMQ ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0656 0604  MSMQ - detected UnsignedFile.Multi.Generic (1)
19:34:58.0687 0604  [ 7F955FF3B1BB93376EBE75D5ACCDC6DB ] MSMQTriggers    C:\WINDOWS\system32\mqtgsvc.exe
19:34:58.0687 0604  MSMQTriggers ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0687 0604  MSMQTriggers - detected UnsignedFile.Multi.Generic (1)
19:34:58.0718 0604  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:34:58.0734 0604  MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0734 0604  MSPCLOCK - detected UnsignedFile.Multi.Generic (1)
19:34:58.0734 0604  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:34:58.0750 0604  MSPQM ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0750 0604  MSPQM - detected UnsignedFile.Multi.Generic (1)
19:34:58.0781 0604  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:34:58.0781 0604  mssmbios ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0781 0604  mssmbios - detected UnsignedFile.Multi.Generic (1)
19:34:58.0812 0604  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:34:58.0828 0604  Mup ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0828 0604  Mup - detected UnsignedFile.Multi.Generic (1)
19:34:58.0875 0604  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
19:34:58.0906 0604  napagent ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0906 0604  napagent - detected UnsignedFile.Multi.Generic (1)
19:34:58.0953 0604  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:34:58.0953 0604  NDIS ( UnsignedFile.Multi.Generic ) - warning
19:34:58.0953 0604  NDIS - detected UnsignedFile.Multi.Generic (1)
19:34:59.0000 0604  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:34:59.0000 0604  NdisTapi ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0000 0604  NdisTapi - detected UnsignedFile.Multi.Generic (1)
19:34:59.0015 0604  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:34:59.0015 0604  Ndisuio ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0015 0604  Ndisuio - detected UnsignedFile.Multi.Generic (1)
19:34:59.0046 0604  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:34:59.0062 0604  NdisWan ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0062 0604  NdisWan - detected UnsignedFile.Multi.Generic (1)
19:34:59.0093 0604  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:34:59.0109 0604  NDProxy ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0109 0604  NDProxy - detected UnsignedFile.Multi.Generic (1)
19:34:59.0140 0604  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:34:59.0140 0604  NetBIOS ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0140 0604  NetBIOS - detected UnsignedFile.Multi.Generic (1)
19:34:59.0171 0604  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:34:59.0187 0604  NetBT ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0187 0604  NetBT - detected UnsignedFile.Multi.Generic (1)
19:34:59.0218 0604  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:34:59.0250 0604  NetDDE ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0250 0604  NetDDE - detected UnsignedFile.Multi.Generic (1)
19:34:59.0250 0604  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:34:59.0265 0604  NetDDEdsdm ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0265 0604  NetDDEdsdm - detected UnsignedFile.Multi.Generic (1)
19:34:59.0296 0604  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:34:59.0296 0604  Netlogon ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0296 0604  Netlogon - detected UnsignedFile.Multi.Generic (1)
19:34:59.0328 0604  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
19:34:59.0343 0604  Netman ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0343 0604  Netman - detected UnsignedFile.Multi.Generic (1)
19:34:59.0375 0604  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:34:59.0625 0604  NetTcpPortSharing - ok
19:34:59.0640 0604  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:34:59.0656 0604  Nla ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0656 0604  Nla - detected UnsignedFile.Multi.Generic (1)
19:34:59.0687 0604  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:34:59.0703 0604  Npfs ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0703 0604  Npfs - detected UnsignedFile.Multi.Generic (1)
19:34:59.0750 0604  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:34:59.0828 0604  Ntfs ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0828 0604  Ntfs - detected UnsignedFile.Multi.Generic (1)
19:34:59.0843 0604  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:34:59.0859 0604  NtLmSsp ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0859 0604  NtLmSsp - detected UnsignedFile.Multi.Generic (1)
19:34:59.0906 0604  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:34:59.0921 0604  NtmsSvc ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0921 0604  NtmsSvc - detected UnsignedFile.Multi.Generic (1)
19:34:59.0921 0604  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:34:59.0921 0604  Null ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0921 0604  Null - detected UnsignedFile.Multi.Generic (1)
19:34:59.0953 0604  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:34:59.0968 0604  NwlnkFlt ( UnsignedFile.Multi.Generic ) - warning
19:34:59.0968 0604  NwlnkFlt - detected UnsignedFile.Multi.Generic (1)
19:34:59.0984 0604  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:35:00.0000 0604  NwlnkFwd ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0000 0604  NwlnkFwd - detected UnsignedFile.Multi.Generic (1)
19:35:00.0093 0604  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:35:00.0218 0604  odserv - ok
19:35:00.0265 0604  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:35:00.0296 0604  ose - ok
19:35:00.0312 0604  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
19:35:00.0328 0604  Parport ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0328 0604  Parport - detected UnsignedFile.Multi.Generic (1)
19:35:00.0359 0604  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:35:00.0359 0604  PartMgr ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0359 0604  PartMgr - detected UnsignedFile.Multi.Generic (1)
19:35:00.0390 0604  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:35:00.0390 0604  ParVdm ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0390 0604  ParVdm - detected UnsignedFile.Multi.Generic (1)
19:35:00.0421 0604  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:35:00.0421 0604  PCI ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0421 0604  PCI - detected UnsignedFile.Multi.Generic (1)
19:35:00.0421 0604  PCIDump - ok
19:35:00.0468 0604  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
19:35:00.0468 0604  PCIIde ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0468 0604  PCIIde - detected UnsignedFile.Multi.Generic (1)
19:35:00.0484 0604  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
19:35:00.0500 0604  Pcmcia ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0500 0604  Pcmcia - detected UnsignedFile.Multi.Generic (1)
19:35:00.0515 0604  PDCOMP - ok
19:35:00.0515 0604  PDFRAME - ok
19:35:00.0515 0604  PDRELI - ok
19:35:00.0515 0604  PDRFRAME - ok
19:35:00.0546 0604  [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
19:35:00.0546 0604  perc2 ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0546 0604  perc2 - detected UnsignedFile.Multi.Generic (1)
19:35:00.0562 0604  [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:35:00.0578 0604  perc2hib ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0578 0604  perc2hib - detected UnsignedFile.Multi.Generic (1)
19:35:00.0609 0604  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
19:35:00.0609 0604  PlugPlay ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0609 0604  PlugPlay - detected UnsignedFile.Multi.Generic (1)
19:35:00.0640 0604  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:35:00.0640 0604  PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0640 0604  PolicyAgent - detected UnsignedFile.Multi.Generic (1)
19:35:00.0656 0604  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:35:00.0671 0604  PptpMiniport ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0671 0604  PptpMiniport - detected UnsignedFile.Multi.Generic (1)
19:35:00.0687 0604  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:35:00.0687 0604  ProtectedStorage ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0687 0604  ProtectedStorage - detected UnsignedFile.Multi.Generic (1)
19:35:00.0687 0604  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:35:00.0703 0604  PSched ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0703 0604  PSched - detected UnsignedFile.Multi.Generic (1)
19:35:00.0718 0604  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:35:00.0718 0604  Ptilink ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0718 0604  Ptilink - detected UnsignedFile.Multi.Generic (1)
19:35:00.0750 0604  [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:35:00.0765 0604  ql1080 ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0765 0604  ql1080 - detected UnsignedFile.Multi.Generic (1)
19:35:00.0765 0604  [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:35:00.0781 0604  Ql10wnt ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0781 0604  Ql10wnt - detected UnsignedFile.Multi.Generic (1)
19:35:00.0796 0604  [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:35:00.0812 0604  ql12160 ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0812 0604  ql12160 - detected UnsignedFile.Multi.Generic (1)
19:35:00.0828 0604  [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:35:00.0843 0604  ql1240 ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0843 0604  ql1240 - detected UnsignedFile.Multi.Generic (1)
19:35:00.0875 0604  [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:35:00.0890 0604  ql1280 ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0890 0604  ql1280 - detected UnsignedFile.Multi.Generic (1)
19:35:00.0906 0604  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:35:00.0921 0604  RasAcd ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0921 0604  RasAcd - detected UnsignedFile.Multi.Generic (1)
19:35:00.0953 0604  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:35:00.0968 0604  RasAuto ( UnsignedFile.Multi.Generic ) - warning
19:35:00.0968 0604  RasAuto - detected UnsignedFile.Multi.Generic (1)
19:35:00.0984 0604  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:35:01.0000 0604  Rasl2tp ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0000 0604  Rasl2tp - detected UnsignedFile.Multi.Generic (1)
19:35:01.0046 0604  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:35:01.0046 0604  RasMan ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0046 0604  RasMan - detected UnsignedFile.Multi.Generic (1)
19:35:01.0062 0604  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:35:01.0062 0604  RasPppoe ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0062 0604  RasPppoe - detected UnsignedFile.Multi.Generic (1)
19:35:01.0078 0604  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:35:01.0078 0604  Raspti ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0078 0604  Raspti - detected UnsignedFile.Multi.Generic (1)
19:35:01.0140 0604  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:35:01.0140 0604  Rdbss ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0140 0604  Rdbss - detected UnsignedFile.Multi.Generic (1)
19:35:01.0171 0604  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:35:01.0187 0604  RDPCDD ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0187 0604  RDPCDD - detected UnsignedFile.Multi.Generic (1)
19:35:01.0187 0604  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:35:01.0203 0604  rdpdr ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0203 0604  rdpdr - detected UnsignedFile.Multi.Generic (1)
19:35:01.0234 0604  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:35:01.0250 0604  RDPWD ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0250 0604  RDPWD - detected UnsignedFile.Multi.Generic (1)
19:35:01.0281 0604  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:35:01.0296 0604  RDSessMgr ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0296 0604  RDSessMgr - detected UnsignedFile.Multi.Generic (1)
19:35:01.0343 0604  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:35:01.0343 0604  redbook ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0343 0604  redbook - detected UnsignedFile.Multi.Generic (1)
19:35:01.0375 0604  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:35:01.0390 0604  RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0390 0604  RemoteAccess - detected UnsignedFile.Multi.Generic (1)
19:35:01.0406 0604  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
19:35:01.0406 0604  RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0406 0604  RemoteRegistry - detected UnsignedFile.Multi.Generic (1)
19:35:01.0453 0604  [ 96F7A9A7BF0C9C0440A967440065D33C ] RMCAST          C:\WINDOWS\system32\drivers\RMCast.sys
19:35:01.0453 0604  RMCAST ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0453 0604  RMCAST - detected UnsignedFile.Multi.Generic (1)
19:35:01.0484 0604  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:35:01.0500 0604  RpcLocator ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0500 0604  RpcLocator - detected UnsignedFile.Multi.Generic (1)
19:35:01.0531 0604  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\System32\rpcss.dll
19:35:01.0531 0604  RpcSs ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0531 0604  RpcSs - detected UnsignedFile.Multi.Generic (1)
19:35:01.0578 0604  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:35:01.0593 0604  RSVP ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0593 0604  RSVP - detected UnsignedFile.Multi.Generic (1)
19:35:01.0656 0604  [ 20F8E21AF426BF61881981452B3C3370 ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
19:35:01.0671 0604  RTLE8023xp ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0671 0604  RTLE8023xp - detected UnsignedFile.Multi.Generic (1)
19:35:01.0718 0604  [ B9CA69921379EA2931C4450FE975BCE7 ] RTLVLAN         C:\WINDOWS\system32\DRIVERS\RTLVLAN.SYS
19:35:01.0734 0604  RTLVLAN ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0734 0604  RTLVLAN - detected UnsignedFile.Multi.Generic (1)
19:35:01.0734 0604  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:35:01.0750 0604  SamSs ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0750 0604  SamSs - detected UnsignedFile.Multi.Generic (1)
19:35:01.0765 0604  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:35:01.0781 0604  SCardSvr ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0781 0604  SCardSvr - detected UnsignedFile.Multi.Generic (1)
19:35:01.0828 0604  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:35:01.0828 0604  Schedule ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0828 0604  Schedule - detected UnsignedFile.Multi.Generic (1)
19:35:01.0859 0604  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:35:01.0875 0604  Secdrv ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0875 0604  Secdrv - detected UnsignedFile.Multi.Generic (1)
19:35:01.0890 0604  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:35:01.0906 0604  seclogon ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0906 0604  seclogon - detected UnsignedFile.Multi.Generic (1)
19:35:01.0906 0604  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
19:35:01.0921 0604  SENS ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0921 0604  SENS - detected UnsignedFile.Multi.Generic (1)
19:35:01.0937 0604  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
19:35:01.0953 0604  Serenum ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0953 0604  Serenum - detected UnsignedFile.Multi.Generic (1)
19:35:01.0968 0604  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys



#7 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 03 April 2013 - 09:55 PM

19:35:01.0984 0604  Serial ( UnsignedFile.Multi.Generic ) - warning
19:35:01.0984 0604  Serial - detected UnsignedFile.Multi.Generic (1)
19:35:02.0031 0604  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
19:35:02.0031 0604  Sfloppy ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0031 0604  Sfloppy - detected UnsignedFile.Multi.Generic (1)
19:35:02.0062 0604  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:35:02.0078 0604  SharedAccess ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0078 0604  SharedAccess - detected UnsignedFile.Multi.Generic (1)
19:35:02.0093 0604  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:35:02.0109 0604  ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0109 0604  ShellHWDetection - detected UnsignedFile.Multi.Generic (1)
19:35:02.0109 0604  Simbad - ok
19:35:02.0140 0604  [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:35:02.0156 0604  sisagp ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0156 0604  sisagp - detected UnsignedFile.Multi.Generic (1)
19:35:02.0203 0604  [ 60C377BE6B3CC83F6A8584934B181D2E ] SNMP            C:\WINDOWS\System32\snmp.exe
19:35:02.0203 0604  SNMP ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0203 0604  SNMP - detected UnsignedFile.Multi.Generic (1)
19:35:02.0234 0604  [ 80A050795A107A76C2B1CD4CFBE010E6 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
19:35:02.0265 0604  SNMPTRAP ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0265 0604  SNMPTRAP - detected UnsignedFile.Multi.Generic (1)
19:35:02.0296 0604  [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:35:02.0312 0604  Sparrow ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0312 0604  Sparrow - detected UnsignedFile.Multi.Generic (1)
19:35:02.0328 0604  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:35:02.0328 0604  splitter ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0328 0604  splitter - detected UnsignedFile.Multi.Generic (1)
19:35:02.0359 0604  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:35:02.0359 0604  Spooler ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0359 0604  Spooler - detected UnsignedFile.Multi.Generic (1)
19:35:02.0406 0604  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:35:02.0406 0604  sr ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0406 0604  sr - detected UnsignedFile.Multi.Generic (1)
19:35:02.0453 0604  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
19:35:02.0453 0604  srservice ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0453 0604  srservice - detected UnsignedFile.Multi.Generic (1)
19:35:02.0468 0604  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:35:02.0484 0604  Srv ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0484 0604  Srv - detected UnsignedFile.Multi.Generic (1)
19:35:02.0515 0604  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:35:02.0515 0604  SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0515 0604  SSDPSRV - detected UnsignedFile.Multi.Generic (1)
19:35:02.0531 0604  Steam Client Service - ok
19:35:02.0578 0604  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:35:02.0578 0604  stisvc ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0578 0604  stisvc - detected UnsignedFile.Multi.Generic (1)
19:35:02.0609 0604  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:35:02.0609 0604  swenum ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0609 0604  swenum - detected UnsignedFile.Multi.Generic (1)
19:35:02.0656 0604  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:35:02.0656 0604  swmidi ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0656 0604  swmidi - detected UnsignedFile.Multi.Generic (1)
19:35:02.0656 0604  SwPrv - ok
19:35:02.0703 0604  [ 1FF3217614018630D0A6758630FC698C ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
19:35:02.0703 0604  symc810 ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0703 0604  symc810 - detected UnsignedFile.Multi.Generic (1)
19:35:02.0750 0604  [ 070E001D95CF725186EF8B20335F933C ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:35:02.0750 0604  symc8xx ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0750 0604  symc8xx - detected UnsignedFile.Multi.Generic (1)
19:35:02.0781 0604  [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:35:02.0781 0604  sym_hi ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0781 0604  sym_hi - detected UnsignedFile.Multi.Generic (1)
19:35:02.0796 0604  [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:35:02.0796 0604  sym_u3 ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0796 0604  sym_u3 - detected UnsignedFile.Multi.Generic (1)
19:35:02.0828 0604  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:35:02.0828 0604  sysaudio ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0828 0604  sysaudio - detected UnsignedFile.Multi.Generic (1)
19:35:02.0875 0604  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:35:02.0890 0604  SysmonLog ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0890 0604  SysmonLog - detected UnsignedFile.Multi.Generic (1)
19:35:02.0921 0604  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:35:02.0921 0604  TapiSrv ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0921 0604  TapiSrv - detected UnsignedFile.Multi.Generic (1)
19:35:02.0968 0604  [ 827C8058C284FF0013E4462EFE2591A3 ] tapoas          C:\WINDOWS\system32\DRIVERS\tapoas.sys
19:35:02.0968 0604  tapoas ( UnsignedFile.Multi.Generic ) - warning
19:35:02.0968 0604  tapoas - detected UnsignedFile.Multi.Generic (1)
19:35:03.0031 0604  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:35:03.0031 0604  Tcpip ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0031 0604  Tcpip - detected UnsignedFile.Multi.Generic (1)
19:35:03.0062 0604  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:35:03.0062 0604  TDPIPE ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0062 0604  TDPIPE - detected UnsignedFile.Multi.Generic (1)
19:35:03.0093 0604  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:35:03.0109 0604  TDTCP ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0109 0604  TDTCP - detected UnsignedFile.Multi.Generic (1)
19:35:03.0125 0604  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:35:03.0125 0604  TermDD ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0125 0604  TermDD - detected UnsignedFile.Multi.Generic (1)
19:35:03.0187 0604  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
19:35:03.0187 0604  TermService ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0187 0604  TermService - detected UnsignedFile.Multi.Generic (1)
19:35:03.0218 0604  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:35:03.0218 0604  Themes ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0218 0604  Themes - detected UnsignedFile.Multi.Generic (1)
19:35:03.0234 0604  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
19:35:03.0250 0604  TlntSvr ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0250 0604  TlntSvr - detected UnsignedFile.Multi.Generic (1)
19:35:03.0281 0604  [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
19:35:03.0296 0604  TosIde ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0296 0604  TosIde - detected UnsignedFile.Multi.Generic (1)
19:35:03.0328 0604  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:35:03.0328 0604  TrkWks ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0328 0604  TrkWks - detected UnsignedFile.Multi.Generic (1)
19:35:03.0343 0604  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:35:03.0375 0604  Udfs ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0375 0604  Udfs - detected UnsignedFile.Multi.Generic (1)
19:35:03.0390 0604  [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
19:35:03.0406 0604  ultra ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0406 0604  ultra - detected UnsignedFile.Multi.Generic (1)
19:35:03.0437 0604  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:35:03.0453 0604  Update ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0453 0604  Update - detected UnsignedFile.Multi.Generic (1)
19:35:03.0500 0604  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:35:03.0500 0604  upnphost ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0500 0604  upnphost - detected UnsignedFile.Multi.Generic (1)
19:35:03.0531 0604  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
19:35:03.0546 0604  UPS ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0546 0604  UPS - detected UnsignedFile.Multi.Generic (1)
19:35:03.0578 0604  [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
19:35:03.0578 0604  USBAAPL ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0578 0604  USBAAPL - detected UnsignedFile.Multi.Generic (1)
19:35:03.0640 0604  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:35:03.0656 0604  usbccgp ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0656 0604  usbccgp - detected UnsignedFile.Multi.Generic (1)
19:35:03.0687 0604  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:35:03.0687 0604  usbehci ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0687 0604  usbehci - detected UnsignedFile.Multi.Generic (1)
19:35:03.0734 0604  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:35:03.0750 0604  usbhub ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0750 0604  usbhub - detected UnsignedFile.Multi.Generic (1)
19:35:03.0781 0604  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:35:03.0812 0604  usbprint ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0812 0604  usbprint - detected UnsignedFile.Multi.Generic (1)
19:35:03.0859 0604  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:35:03.0875 0604  usbscan ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0875 0604  usbscan - detected UnsignedFile.Multi.Generic (1)
19:35:03.0906 0604  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:35:03.0921 0604  USBSTOR ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0921 0604  USBSTOR - detected UnsignedFile.Multi.Generic (1)
19:35:03.0953 0604  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:35:03.0953 0604  usbuhci ( UnsignedFile.Multi.Generic ) - warning
19:35:03.0953 0604  usbuhci - detected UnsignedFile.Multi.Generic (1)
19:35:04.0000 0604  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:35:04.0015 0604  VgaSave ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0015 0604  VgaSave - detected UnsignedFile.Multi.Generic (1)
19:35:04.0031 0604  [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:35:04.0046 0604  viaagp ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0046 0604  viaagp - detected UnsignedFile.Multi.Generic (1)
19:35:04.0062 0604  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
19:35:04.0062 0604  ViaIde ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0062 0604  ViaIde - detected UnsignedFile.Multi.Generic (1)
19:35:04.0093 0604  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:35:04.0093 0604  VolSnap ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0093 0604  VolSnap - detected UnsignedFile.Multi.Generic (1)
19:35:04.0125 0604  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
19:35:04.0156 0604  VSS ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0156 0604  VSS - detected UnsignedFile.Multi.Generic (1)
19:35:04.0250 0604  [ 3AD1E72748978D8B0B3B674741E4C3E2 ] vToolbarUpdater14.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
19:35:04.0296 0604  vToolbarUpdater14.2.0 - ok
19:35:04.0312 0604  [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time         C:\WINDOWS\system32\w32time.dll
19:35:04.0312 0604  w32time ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0312 0604  w32time - detected UnsignedFile.Multi.Generic (1)
19:35:04.0328 0604  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:35:04.0343 0604  Wanarp ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0343 0604  Wanarp - detected UnsignedFile.Multi.Generic (1)
19:35:04.0359 0604  WDICA - ok
19:35:04.0359 0604  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:35:04.0359 0604  wdmaud ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0359 0604  wdmaud - detected UnsignedFile.Multi.Generic (1)
19:35:04.0390 0604  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:35:04.0390 0604  WebClient ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0390 0604  WebClient - detected UnsignedFile.Multi.Generic (1)
19:35:04.0468 0604  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:35:04.0468 0604  winmgmt ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0468 0604  winmgmt - detected UnsignedFile.Multi.Generic (1)
19:35:04.0500 0604  [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:35:04.0515 0604  WmdmPmSN ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0515 0604  WmdmPmSN - detected UnsignedFile.Multi.Generic (1)
19:35:04.0546 0604  [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi             C:\WINDOWS\System32\advapi32.dll
19:35:04.0562 0604  Wmi ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0562 0604  Wmi - detected UnsignedFile.Multi.Generic (1)
19:35:04.0609 0604  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:35:04.0625 0604  WmiApSrv ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0625 0604  WmiApSrv - detected UnsignedFile.Multi.Generic (1)
19:35:04.0687 0604  [ 6BAB4DC65515A098505F8B3D01FB6FE5 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
19:35:04.0734 0604  WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0734 0604  WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
19:35:04.0796 0604  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:35:04.0921 0604  WPFFontCache_v0400 - ok
19:35:04.0937 0604  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:35:04.0953 0604  WS2IFSL ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0953 0604  WS2IFSL - detected UnsignedFile.Multi.Generic (1)
19:35:04.0984 0604  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:35:04.0984 0604  wscsvc ( UnsignedFile.Multi.Generic ) - warning
19:35:04.0984 0604  wscsvc - detected UnsignedFile.Multi.Generic (1)
19:35:05.0000 0604  WSearch - ok
19:35:05.0000 0604  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:35:05.0015 0604  wuauserv ( UnsignedFile.Multi.Generic ) - warning
19:35:05.0015 0604  wuauserv - detected UnsignedFile.Multi.Generic (1)
19:35:05.0031 0604  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:35:05.0078 0604  WudfPf ( UnsignedFile.Multi.Generic ) - warning
19:35:05.0078 0604  WudfPf - detected UnsignedFile.Multi.Generic (1)
19:35:05.0093 0604  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:35:05.0109 0604  WudfRd ( UnsignedFile.Multi.Generic ) - warning
19:35:05.0109 0604  WudfRd - detected UnsignedFile.Multi.Generic (1)
19:35:05.0140 0604  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:35:05.0156 0604  WudfSvc ( UnsignedFile.Multi.Generic ) - warning
19:35:05.0156 0604  WudfSvc - detected UnsignedFile.Multi.Generic (1)
19:35:05.0203 0604  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:35:05.0296 0604  WZCSVC ( UnsignedFile.Multi.Generic ) - warning
19:35:05.0296 0604  WZCSVC - detected UnsignedFile.Multi.Generic (1)
19:35:05.0312 0604  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:35:05.0359 0604  xmlprov ( UnsignedFile.Multi.Generic ) - warning
19:35:05.0359 0604  xmlprov - detected UnsignedFile.Multi.Generic (1)
19:35:05.0359 0604  ================ Scan global ===============================
19:35:05.0390 0604  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
19:35:05.0437 0604  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:35:05.0437 0604  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:35:05.0453 0604  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
19:35:05.0453 0604  [Global] - ok
19:35:05.0453 0604  ================ Scan MBR ==================================
19:35:05.0484 0604  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
19:35:05.0859 0604  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:35:05.0859 0604  \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:35:05.0859 0604  ================ Scan VBR ==================================
19:35:05.0859 0604  [ FECCEA8140F7AF965261990EDB0F2F32 ] \Device\Harddisk0\DR0\Partition1
19:35:05.0859 0604  \Device\Harddisk0\DR0\Partition1 - ok
19:35:05.0859 0604  ================ Scan active images ========================
19:35:05.0859 0604  [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
19:35:05.0859 0604  C:\WINDOWS\system32\drivers\intelppm.sys - ok
19:35:05.0875 0604  [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
19:35:05.0875 0604  C:\WINDOWS\system32\drivers\videoprt.sys - ok
19:35:05.0875 0604  [ 9A8C7E54679078B873331DA566F6707B ] C:\WINDOWS\system32\drivers\igxpmp32.sys
19:35:05.0875 0604  C:\WINDOWS\system32\drivers\igxpmp32.sys - ok
19:35:05.0875 0604  [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
19:35:05.0875 0604  C:\WINDOWS\system32\drivers\usbport.sys - ok
19:35:05.0875 0604  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
19:35:05.0875 0604  C:\WINDOWS\system32\drivers\usbuhci.sys - ok
19:35:05.0890 0604  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
19:35:05.0890 0604  C:\WINDOWS\system32\drivers\usbehci.sys - ok
19:35:05.0890 0604  [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
19:35:05.0890 0604  C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
19:35:05.0890 0604  [ 20F8E21AF426BF61881981452B3C3370 ] C:\WINDOWS\system32\drivers\Rtenicxp.sys
19:35:05.0890 0604  C:\WINDOWS\system32\drivers\Rtenicxp.sys - ok
19:35:05.0890 0604  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
19:35:05.0890 0604  C:\WINDOWS\system32\drivers\serial.sys - ok
19:35:05.0890 0604  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
19:35:05.0890 0604  C:\WINDOWS\system32\drivers\serenum.sys - ok
19:35:05.0906 0604  [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
19:35:05.0906 0604  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
19:35:05.0906 0604  [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
19:35:05.0906 0604  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
19:35:05.0906 0604  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] C:\WINDOWS\system32\drivers\cdrom.sys
19:35:05.0906 0604  C:\WINDOWS\system32\drivers\cdrom.sys - ok
19:35:05.0906 0604  [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
19:35:05.0906 0604  C:\WINDOWS\system32\drivers\ks.sys - ok
19:35:05.0906 0604  [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
19:35:05.0921 0604  C:\WINDOWS\system32\drivers\redbook.sys - ok
19:35:05.0921 0604  [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
19:35:05.0921 0604  C:\WINDOWS\system32\drivers\audstub.sys - ok
19:35:05.0921 0604  [ 8BE661C16FBF84A73BCEC84B6B4A9DB5 ] C:\WINDOWS\system32\drivers\avgfwdx.sys
19:35:05.0921 0604  C:\WINDOWS\system32\drivers\avgfwdx.sys - ok
19:35:05.0921 0604  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
19:35:05.0921 0604  C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
19:35:05.0921 0604  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
19:35:05.0921 0604  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
19:35:05.0937 0604  [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
19:35:05.0937 0604  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
19:35:05.0937 0604  [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
19:35:05.0937 0604  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
19:35:05.0937 0604  [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
19:35:05.0937 0604  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
19:35:05.0937 0604  [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
19:35:05.0937 0604  C:\WINDOWS\system32\drivers\tdi.sys - ok
19:35:05.0937 0604  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
19:35:05.0937 0604  C:\WINDOWS\system32\drivers\raspptp.sys - ok
19:35:05.0953 0604  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
19:35:05.0953 0604  C:\WINDOWS\system32\drivers\msgpc.sys - ok
19:35:05.0953 0604  [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
19:35:05.0953 0604  C:\WINDOWS\system32\drivers\psched.sys - ok
19:35:05.0953 0604  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
19:35:05.0953 0604  C:\WINDOWS\system32\drivers\ptilink.sys - ok
19:35:05.0953 0604  [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
19:35:05.0953 0604  C:\WINDOWS\system32\drivers\raspti.sys - ok
19:35:05.0968 0604  [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
19:35:05.0968 0604  C:\WINDOWS\system32\drivers\rdpdr.sys - ok
19:35:05.0968 0604  [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
19:35:05.0968 0604  C:\WINDOWS\system32\drivers\mouclass.sys - ok
19:35:05.0968 0604  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
19:35:05.0968 0604  C:\WINDOWS\system32\drivers\swenum.sys - ok
19:35:05.0968 0604  [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
19:35:05.0968 0604  C:\WINDOWS\system32\drivers\termdd.sys - ok
19:35:05.0968 0604  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
19:35:05.0968 0604  C:\WINDOWS\system32\drivers\update.sys - ok
19:35:05.0984 0604  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
19:35:05.0984 0604  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
19:35:05.0984 0604  [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
19:35:05.0984 0604  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
19:35:05.0984 0604  [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
19:35:05.0984 0604  C:\WINDOWS\system32\drivers\usbd.sys - ok
19:35:05.0984 0604  [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
19:35:05.0984 0604  C:\WINDOWS\system32\drivers\usbhub.sys - ok
19:35:05.0984 0604  [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
19:35:05.0984 0604  C:\WINDOWS\system32\drivers\drmk.sys - ok
19:35:06.0000 0604  [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
19:35:06.0000 0604  C:\WINDOWS\system32\drivers\portcls.sys - ok
19:35:06.0000 0604  [ 5C8F36CDCB489111B24003AF4DFE1FDC ] C:\WINDOWS\system32\drivers\RtkHDAud.sys
19:35:06.0000 0604  C:\WINDOWS\system32\drivers\RtkHDAud.sys - ok
19:35:06.0000 0604  [ F5C70E41B19D33CC764998786AB74165 ] C:\WINDOWS\system32\drivers\IntcHdmi.sys
19:35:06.0000 0604  C:\WINDOWS\system32\drivers\IntcHdmi.sys - ok
19:35:06.0000 0604  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
19:35:06.0000 0604  C:\WINDOWS\system32\drivers\fdc.sys - ok
19:35:06.0015 0604  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
19:35:06.0015 0604  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
19:35:06.0015 0604  [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
19:35:06.0015 0604  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
19:35:06.0015 0604  [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
19:35:06.0015 0604  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
19:35:06.0015 0604  [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
19:35:06.0015 0604  C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
19:35:06.0015 0604  [ CAE7B6E4D7EB17829C526153D19B9C95 ] C:\WINDOWS\system32\drivers\avgtpx86.sys
19:35:06.0015 0604  C:\WINDOWS\system32\drivers\avgtpx86.sys - ok
19:35:06.0031 0604  [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
19:35:06.0031 0604  C:\WINDOWS\system32\drivers\beep.sys - ok
19:35:06.0031 0604  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
19:35:06.0031 0604  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
19:35:06.0031 0604  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
19:35:06.0031 0604  C:\WINDOWS\system32\drivers\null.sys - ok
19:35:06.0031 0604  [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
19:35:06.0031 0604  C:\WINDOWS\system32\drivers\hidparse.sys - ok
19:35:06.0031 0604  [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
19:35:06.0031 0604  C:\WINDOWS\system32\drivers\kbdhid.sys - ok
19:35:06.0046 0604  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
19:35:06.0046 0604  C:\WINDOWS\system32\drivers\vga.sys - ok
19:35:06.0046 0604  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
19:35:06.0046 0604  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
19:35:06.0046 0604  [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
19:35:06.0046 0604  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
19:35:06.0046 0604  [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
19:35:06.0046 0604  C:\WINDOWS\system32\drivers\msfs.sys - ok
19:35:06.0046 0604  [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
19:35:06.0046 0604  C:\WINDOWS\system32\drivers\npfs.sys - ok
19:35:06.0062 0604  [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
19:35:06.0062 0604  C:\WINDOWS\system32\drivers\rasacd.sys - ok
19:35:06.0062 0604  [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
19:35:06.0062 0604  C:\WINDOWS\system32\drivers\ipsec.sys - ok
19:35:06.0062 0604  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
19:35:06.0062 0604  C:\WINDOWS\system32\drivers\tcpip.sys - ok
19:35:06.0062 0604  [ 52448A41CF1769CB3627677A0509627B ] C:\WINDOWS\system32\drivers\avgtdix.sys
19:35:06.0062 0604  C:\WINDOWS\system32\drivers\avgtdix.sys - ok
19:35:06.0078 0604  [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
19:35:06.0078 0604  C:\WINDOWS\system32\drivers\ipnat.sys - ok
19:35:06.0078 0604  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
19:35:06.0078 0604  C:\WINDOWS\system32\drivers\netbt.sys - ok
19:35:06.0078 0604  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
19:35:06.0078 0604  C:\WINDOWS\system32\drivers\afd.sys - ok
19:35:06.0078 0604  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
19:35:06.0078 0604  C:\WINDOWS\system32\drivers\netbios.sys - ok
19:35:06.0078 0604  [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
19:35:06.0078 0604  C:\WINDOWS\system32\drivers\rdbss.sys - ok
19:35:06.0093 0604  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
19:35:06.0093 0604  C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
19:35:06.0093 0604  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
19:35:06.0093 0604  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
19:35:06.0093 0604  [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
19:35:06.0093 0604  C:\WINDOWS\system32\drivers\imapi.sys - ok
19:35:06.0093 0604  [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
19:35:06.0093 0604  C:\WINDOWS\system32\drivers\fips.sys - ok
19:35:06.0093 0604  [ 08FA13787D77A75DC413E27FD92B44E8 ] C:\WINDOWS\system32\drivers\avgldx86.sys
19:35:06.0109 0604  C:\WINDOWS\system32\drivers\avgldx86.sys - ok
19:35:06.0109 0604  [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
19:35:06.0109 0604  C:\WINDOWS\system32\drivers\hidclass.sys - ok
19:35:06.0109 0604  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
19:35:06.0109 0604  C:\WINDOWS\system32\drivers\hidusb.sys - ok
19:35:06.0109 0604  [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
19:35:06.0109 0604  C:\WINDOWS\system32\drivers\mouhid.sys - ok
19:35:06.0109 0604  [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
19:35:06.0109 0604  C:\WINDOWS\system32\drivers\wanarp.sys - ok
19:35:06.0125 0604  [ A426B2DC795531D99E2EE1952AEC051A ] C:\WINDOWS\system32\drivers\avgidsshimx.sys
19:35:06.0125 0604  C:\WINDOWS\system32\drivers\avgidsshimx.sys - ok
19:35:06.0125 0604  [ 1A2213B7D94944861449CB07BF2D099E ] C:\WINDOWS\system32\drivers\avgidsdriverx.sys
19:35:06.0125 0604  C:\WINDOWS\system32\drivers\avgidsdriverx.sys - ok
19:35:06.0125 0604  [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
19:35:06.0125 0604  C:\WINDOWS\system32\smss.exe - ok
19:35:06.0125 0604  [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
19:35:06.0125 0604  C:\WINDOWS\system32\ntdll.dll - ok
19:35:06.0125 0604  [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
19:35:06.0125 0604  C:\WINDOWS\system32\autochk.exe - ok
19:35:06.0140 0604  [ B9CB6D4E5A30968330F6E32ACB945641 ] C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
19:35:06.0140 0604  C:\PROGRA~1\AVG\AVG2013\avgrsx.exe - ok
19:35:06.0140 0604  [ 3B3D5E94A5F24417BE2C179DDD883702 ] C:\Program Files\AVG\AVG2013\avgsysx.dll
19:35:06.0140 0604  C:\Program Files\AVG\AVG2013\avgsysx.dll - ok
19:35:06.0140 0604  [ AE4D9DC676A2517DEE3E51978BCFE47C ] C:\Program Files\AVG\AVG2013\avgntopensslx.dll
19:35:06.0140 0604  C:\Program Files\AVG\AVG2013\avgntopensslx.dll - ok
19:35:06.0140 0604  [ 21139ED432EFB4A8CDF715862DBDF9E0 ] C:\Program Files\AVG\AVG2013\avglogx.dll
19:35:06.0140 0604  C:\Program Files\AVG\AVG2013\avglogx.dll - ok
19:35:06.0156 0604  [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
19:35:06.0156 0604  C:\WINDOWS\system32\drivers\cdfs.sys - ok
19:35:06.0156 0604  [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
19:35:06.0156 0604  C:\WINDOWS\system32\lsass.exe - ok
19:35:06.0156 0604  [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
19:35:06.0156 0604  C:\WINDOWS\system32\vga.dll - ok
19:35:06.0156 0604  [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
19:35:06.0156 0604  C:\WINDOWS\system32\csrss.exe - ok
19:35:06.0156 0604  [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
19:35:06.0156 0604  C:\WINDOWS\system32\dot3dlg.dll - ok
19:35:06.0171 0604  [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
19:35:06.0171 0604  C:\WINDOWS\system32\kbdus.dll - ok
19:35:06.0171 0604  [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
19:35:06.0171 0604  C:\WINDOWS\system32\lmhsvc.dll - ok
19:35:06.0171 0604  [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
19:35:06.0171 0604  C:\WINDOWS\system32\lz32.dll - ok
19:35:06.0171 0604  [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
19:35:06.0171 0604  C:\WINDOWS\system32\msidle.dll - ok
19:35:06.0171 0604  [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
19:35:06.0171 0604  C:\WINDOWS\system32\rasadhlp.dll - ok
19:35:06.0187 0604  [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
19:35:06.0187 0604  C:\WINDOWS\system32\sfc.dll - ok
19:35:06.0187 0604  [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
19:35:06.0187 0604  C:\WINDOWS\system32\svchost.exe - ok
19:35:06.0187 0604  [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
19:35:06.0187 0604  C:\WINDOWS\system32\wmi.dll - ok
19:35:06.0187 0604  [ 099D9F937F6EE23672391B3A5BD6D7E5 ] C:\Program Files\AVG\AVG2013\avgntsqlitex.dll
19:35:06.0187 0604  C:\Program Files\AVG\AVG2013\avgntsqlitex.dll - ok
19:35:06.0203 0604  [ 5BDB1E096DEA119A4D205ACB6E958175 ] C:\Program Files\AVG\AVG2013\avgopensslx.dll
19:35:06.0203 0604  C:\Program Files\AVG\AVG2013\avgopensslx.dll - ok
19:35:06.0203 0604  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] C:\WINDOWS\system32\msdtc.exe
19:35:06.0203 0604  C:\WINDOWS\system32\msdtc.exe - ok
19:35:06.0203 0604  [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
19:35:06.0203 0604  C:\WINDOWS\system32\msimg32.dll - ok
19:35:06.0203 0604  [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
19:35:06.0203 0604  C:\WINDOWS\system32\sensapi.dll - ok
19:35:06.0203 0604  [ AE3470D2BF8F16FD93FA54167B87172D ] C:\WINDOWS\system32\xolehlp.dll
19:35:06.0203 0604  C:\WINDOWS\system32\xolehlp.dll - ok
19:35:06.0218 0604  [ 40E12972BB73C2927E19553E30EAEE3C ] C:\Program Files\AVG\AVG2013\avgcommx.dll
19:35:06.0218 0604  C:\Program Files\AVG\AVG2013\avgcommx.dll - ok
19:35:06.0218 0604  [ 126B84EAB69BD5116CC5A89C5F9E23FF ] C:\Program Files\AVG\AVG2013\avgfwcfg3dllx.dll
19:35:06.0218 0604  C:\Program Files\AVG\AVG2013\avgfwcfg3dllx.dll - ok
19:35:06.0218 0604  [ 7F2A2DDA32A0CDF28868864A87A05B23 ] C:\Program Files\AVG\AVG2013\avgsecapix.dll
19:35:06.0218 0604  C:\Program Files\AVG\AVG2013\avgsecapix.dll - ok
19:35:06.0218 0604  [ BEA22322EA2DFE41CF7CE22A6EDE08EA ] C:\Program Files\AVG\AVG2013\avgwd.dll
19:35:06.0218 0604  C:\Program Files\AVG\AVG2013\avgwd.dll - ok
19:35:06.0218 0604  [ E365ABAA34D50987B33E02E53AEC30B4 ] C:\Program Files\AVG\AVG2013\avgnsx.exe
19:35:06.0218 0604  C:\Program Files\AVG\AVG2013\avgnsx.exe - ok
19:35:06.0234 0604  [ 6A0A8D20469EFD39A4A3463A88811A57 ] C:\Program Files\AVG\AVG2013\avgsched.dll
19:35:06.0234 0604  C:\Program Files\AVG\AVG2013\avgsched.dll - ok
19:35:06.0234 0604  [ C9F44E08EF18BE1139386095360B0E39 ] C:\Program Files\AVG\AVG2013\avgcorex.dll
19:35:06.0234 0604  C:\Program Files\AVG\AVG2013\avgcorex.dll - ok
19:35:06.0234 0604  [ 1931311AF80A54A4FE8F0862820FE015 ] C:\Program Files\AVG\AVG2013\avgwdwsc.dll
19:35:06.0234 0604  C:\Program Files\AVG\AVG2013\avgwdwsc.dll - ok
19:35:06.0234 0604  [ 0D8244A9DB70BC6C36E2FB56F6039AB6 ] C:\Program Files\AVG\AVG2013\avgidsagent.exe
19:35:06.0234 0604  C:\Program Files\AVG\AVG2013\avgidsagent.exe - ok
19:35:06.0250 0604  [ 2C58EB7106AB5316127CAAC366B5EC29 ] C:\Program Files\AVG\AVG2013\winspamcatcher.dll
19:35:06.0250 0604  C:\Program Files\AVG\AVG2013\winspamcatcher.dll - ok
19:35:06.0250 0604  [ 67B165C399B91B6323484EC65936348C ] C:\WINDOWS\system32\url.dll
19:35:06.0250 0604  C:\WINDOWS\system32\url.dll - ok
19:35:06.0250 0604  [ 47464CA4943F82E1B8FCB2C57DA15F83 ] C:\WINDOWS\system32\iertutil.dll
19:35:06.0250 0604  C:\WINDOWS\system32\iertutil.dll - ok
19:35:06.0250 0604  [ 5AACF4B4DEE1972B7952E8A747122232 ] C:\WINDOWS\system32\wininet.dll
19:35:06.0250 0604  C:\WINDOWS\system32\wininet.dll - ok
19:35:06.0250 0604  [ C332870084DB9164F465D6F1B7472728 ] C:\WINDOWS\system32\urlmon.dll
19:35:06.0250 0604  C:\WINDOWS\system32\urlmon.dll - ok
19:35:06.0265 0604  [ DC4739DD82EAFD85299B4E87B5F63207 ] C:\Program Files\AVG\AVG2013\avgfws.exe
19:35:06.0265 0604  C:\Program Files\AVG\AVG2013\avgfws.exe - ok
19:35:06.0265 0604  [ E69A7AD873CAF58D3A39DD8B0DB94724 ] C:\Program Files\AVG\AVG2013\avgcslx.dll
19:35:06.0265 0604  C:\Program Files\AVG\AVG2013\avgcslx.dll - ok
19:35:06.0265 0604  [ BBAD10F039069325326CDA0A68D55356 ] C:\Program Files\AVG\AVG2013\avgcfgx.dll
19:35:06.0265 0604  C:\Program Files\AVG\AVG2013\avgcfgx.dll - ok
19:35:06.0265 0604  [ 414F57444511B818DB23FA5CF89F3205 ] C:\Program Files\AVG\AVG2013\avgclitx.dll
19:35:06.0265 0604  C:\Program Files\AVG\AVG2013\avgclitx.dll - ok
19:35:06.0265 0604  [ DC98337F0D2A9F6C0B6FB682297ECE3B ] C:\Program Files\AVG\AVG2013\avgwdsvc.exe
19:35:06.0265 0604  C:\Program Files\AVG\AVG2013\avgwdsvc.exe - ok
19:35:06.0281 0604  [ 35DB83C4DE9FA3889E937125D115EAA0 ] C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll
19:35:06.0281 0604  C:\Program Files\Google\Update\1.3.21.135\goopdateres_en.dll - ok
19:35:06.0281 0604  [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
19:35:06.0281 0604  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
19:35:06.0281 0604  [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
19:35:06.0281 0604  C:\WINDOWS\system32\dmserver.dll - ok
19:35:06.0281 0604  [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
19:35:06.0281 0604  C:\WINDOWS\system32\ersvc.dll - ok
19:35:06.0281 0604  [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
19:35:06.0281 0604  C:\WINDOWS\system32\hid.dll - ok
19:35:06.0296 0604  [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
19:35:06.0296 0604  C:\WINDOWS\system32\hidserv.dll - ok
19:35:06.0296 0604  [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
19:35:06.0296 0604  C:\WINDOWS\system32\midimap.dll - ok
19:35:06.0296 0604  [ F0D371D357790601C4A03B25F6AD09F8 ] C:\WINDOWS\system32\msdtclog.dll
19:35:06.0296 0604  C:\WINDOWS\system32\msdtclog.dll - ok
19:35:06.0296 0604  [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
19:35:06.0296 0604  C:\WINDOWS\system32\normaliz.dll - ok
19:35:06.0312 0604  [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
19:35:06.0312 0604  C:\WINDOWS\system32\odbcbcp.dll - ok
19:35:06.0312 0604  [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
19:35:06.0312 0604  C:\WINDOWS\system32\shsvcs.dll - ok
19:35:06.0312 0604  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
19:35:06.0312 0604  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
19:35:06.0312 0604  [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
19:35:06.0312 0604  C:\WINDOWS\system32\dimsntfy.dll - ok
19:35:06.0312 0604  [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
19:35:06.0312 0604  C:\WINDOWS\system32\powrprof.dll - ok
19:35:06.0328 0604  [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
19:35:06.0328 0604  C:\WINDOWS\system32\wsock32.dll - ok
19:35:06.0328 0604  [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
19:35:06.0328 0604  C:\WINDOWS\system32\dot3api.dll - ok
19:35:06.0328 0604  [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
19:35:06.0328 0604  C:\WINDOWS\system32\eapolqec.dll - ok
19:35:06.0328 0604  [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
19:35:06.0328 0604  C:\WINDOWS\system32\eappprxy.dll - ok
19:35:06.0328 0604  [ 2B8B64AA14F817BDF3E3204FB041A61D ] C:\WINDOWS\system32\mtxoci.dll
19:35:06.0328 0604  C:\WINDOWS\system32\mtxoci.dll - ok
19:35:06.0343 0604  [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
19:35:06.0343 0604  C:\WINDOWS\system32\winrnr.dll - ok
19:35:06.0343 0604  [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
19:35:06.0343 0604  C:\WINDOWS\system32\wzcsapi.dll - ok
19:35:06.0343 0604  [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
19:35:06.0343 0604  C:\WINDOWS\system32\clusapi.dll - ok
19:35:06.0343 0604  [ 572334E13E0D4C8A2986CCA2A736DCE5 ] C:\WINDOWS\system32\msxml3r.dll
19:35:06.0343 0604  C:\WINDOWS\system32\msxml3r.dll - ok
19:35:06.0359 0604  [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
19:35:06.0359 0604  C:\WINDOWS\system32\resutils.dll - ok
19:35:06.0359 0604  [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\AcAdProc.dll
19:35:06.0359 0604  C:\WINDOWS\AppPatch\AcAdProc.dll - ok
19:35:06.0359 0604  [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
19:35:06.0359 0604  C:\WINDOWS\system32\audiosrv.dll - ok
19:35:06.0359 0604  [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
19:35:06.0359 0604  C:\WINDOWS\system32\cryptdll.dll - ok
19:35:06.0359 0604  [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
19:35:06.0359 0604  C:\WINDOWS\system32\msprivs.dll - ok
19:35:06.0375 0604  [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
19:35:06.0375 0604  C:\WINDOWS\system32\ncobjapi.dll - ok
19:35:06.0375 0604  [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
19:35:06.0375 0604  C:\WINDOWS\system32\nddeapi.dll - ok
19:35:06.0375 0604  [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
19:35:06.0375 0604  C:\WINDOWS\system32\profmap.dll - ok
19:35:06.0375 0604  [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
19:35:06.0375 0604  C:\WINDOWS\system32\psapi.dll - ok
19:35:06.0375 0604  [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
19:35:06.0375 0604  C:\WINDOWS\system32\rtutils.dll - ok
19:35:06.0390 0604  [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
19:35:06.0390 0604  C:\WINDOWS\system32\ws2help.dll - ok
19:35:06.0390 0604  [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
19:35:06.0390 0604  C:\WINDOWS\system32\wshtcpip.dll - ok
19:35:06.0390 0604  [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
19:35:06.0390 0604  C:\WINDOWS\system32\wtsapi32.dll - ok
19:35:06.0390 0604  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
19:35:06.0390 0604  C:\WINDOWS\system32\basesrv.dll - ok
19:35:06.0406 0604  [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
19:35:06.0406 0604  C:\WINDOWS\system32\cryptnet.dll - ok
19:35:06.0406 0604  [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
19:35:06.0406 0604  C:\WINDOWS\system32\cryptsvc.dll - ok
19:35:06.0406 0604  [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
19:35:06.0406 0604  C:\WINDOWS\system32\eventlog.dll - ok
19:35:06.0406 0604  [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
19:35:06.0406 0604  C:\WINDOWS\system32\mtxclu.dll - ok
19:35:06.0406 0604  [ 86440EDFF27095E03741AEDC5752AA51 ] C:\WINDOWS\system32\olecnv32.dll
19:35:06.0406 0604  C:\WINDOWS\system32\olecnv32.dll - ok
19:35:06.0421 0604  [ D8361BEAB7109AB8B069F7F5028E37B1 ] C:\WINDOWS\system32\olesvr32.dll
19:35:06.0421 0604  C:\WINDOWS\system32\olesvr32.dll - ok
19:35:06.0421 0604  [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
19:35:06.0421 0604  C:\WINDOWS\system32\regapi.dll - ok
19:35:06.0421 0604  [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
19:35:06.0421 0604  C:\WINDOWS\system32\version.dll - ok
19:35:06.0421 0604  [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
19:35:06.0421 0604  C:\WINDOWS\system32\winsta.dll - ok
19:35:06.0437 0604  [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
19:35:06.0437 0604  C:\WINDOWS\system32\digest.dll - ok
19:35:06.0437 0604  [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
19:35:06.0437 0604  C:\WINDOWS\system32\dnsrslvr.dll - ok
19:35:06.0437 0604  [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
19:35:06.0437 0604  C:\WINDOWS\system32\dpcdll.dll - ok
19:35:06.0437 0604  [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
19:35:06.0437 0604  C:\WINDOWS\system32\imm32.dll - ok
19:35:06.0437 0604  [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
19:35:06.0437 0604  C:\WINDOWS\system32\msvcrt40.dll - ok
19:35:06.0453 0604  [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
19:35:06.0453 0604  C:\WINDOWS\system32\qutil.dll - ok
19:35:06.0453 0604  [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
19:35:06.0453 0604  C:\WINDOWS\system32\rasman.dll - ok
19:35:06.0453 0604  [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
19:35:06.0453 0604  C:\WINDOWS\system32\rastls.dll - ok
19:35:06.0453 0604  [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
19:35:06.0453 0604  C:\WINDOWS\system32\shgina.dll - ok
19:35:06.0453 0604  [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
19:35:06.0453 0604  C:\WINDOWS\system32\userinit.exe - ok
19:35:06.0468 0604  [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
19:35:06.0468 0604  C:\WINDOWS\system32\wlnotify.dll - ok
19:35:06.0468 0604  [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
19:35:06.0468 0604  C:\WINDOWS\system32\cscdll.dll - ok
19:35:06.0468 0604  [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
19:35:06.0468 0604  C:\WINDOWS\system32\iphlpapi.dll - ok
19:35:06.0468 0604  [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
19:35:06.0468 0604  C:\WINDOWS\system32\mprapi.dll - ok
19:35:06.0484 0604  [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
19:35:06.0484 0604  C:\WINDOWS\system32\msacm32.dll - ok
19:35:06.0484 0604  [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
19:35:06.0484 0604  C:\WINDOWS\system32\msapsspc.dll - ok
19:35:06.0484 0604  [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
19:35:06.0484 0604  C:\WINDOWS\system32\ntdsapi.dll - ok
19:35:06.0484 0604  [ 99F59B3392AD68F08BB528791F5D880D ] C:\WINDOWS\system32\oleaccrc.dll
19:35:06.0484 0604  C:\WINDOWS\system32\oleaccrc.dll - ok
19:35:06.0484 0604  [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
19:35:06.0484 0604  C:\WINDOWS\system32\samlib.dll - ok
19:35:06.0500 0604  [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
19:35:06.0500 0604  C:\WINDOWS\system32\shimeng.dll - ok
19:35:06.0500 0604  [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
19:35:06.0500 0604  C:\WINDOWS\system32\winscard.dll - ok
19:35:06.0500 0604  [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
19:35:06.0500 0604  C:\WINDOWS\system32\authz.dll - ok
19:35:06.0500 0604  [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
19:35:06.0500 0604  C:\WINDOWS\system32\eappcfg.dll - ok
19:35:06.0500 0604  [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
19:35:06.0500 0604  C:\WINDOWS\system32\mpr.dll - ok
19:35:06.0515 0604  [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
19:35:06.0515 0604  C:\WINDOWS\system32\ntmarta.dll - ok
19:35:06.0515 0604  [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
19:35:06.0515 0604  C:\WINDOWS\system32\odbcint.dll - ok
19:35:06.0515 0604  [ FA1B9CAE64B23C950DA3D96ABBF23BD0 ] C:\WINDOWS\system32\olecli32.dll
19:35:06.0515 0604  C:\WINDOWS\system32\olecli32.dll - ok
19:35:06.0515 0604  [ AE9543F20FCC1E7BCAA13051CC076147 ] C:\WINDOWS\system32\olethk32.dll
19:35:06.0515 0604  C:\WINDOWS\system32\olethk32.dll - ok
19:35:06.0531 0604  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
19:35:06.0531 0604  C:\WINDOWS\system32\services.exe - ok
19:35:06.0531 0604  [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
19:35:06.0531 0604  C:\WINDOWS\system32\spoolsv.exe - ok
19:35:06.0531 0604  [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
19:35:06.0531 0604  C:\WINDOWS\system32\ws2_32.dll - ok
19:35:06.0531 0604  [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
19:35:06.0531 0604  C:\WINDOWS\system32\adsldpc.dll - ok
19:35:06.0531 0604  [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
19:35:06.0531 0604  C:\WINDOWS\system32\apphelp.dll - ok
19:35:06.0546 0604  [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
19:35:06.0546 0604  C:\WINDOWS\system32\credui.dll - ok
19:35:06.0546 0604  [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
19:35:06.0546 0604  C:\WINDOWS\system32\dhcpcsvc.dll - ok
19:35:06.0546 0604  [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\MSIMTF.dll
19:35:06.0546 0604  C:\WINDOWS\system32\MSIMTF.dll - ok
19:35:06.0546 0604  [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
19:35:06.0546 0604  C:\WINDOWS\system32\umpnpmgr.dll - ok
19:35:06.0562 0604  [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
19:35:06.0562 0604  C:\WINDOWS\system32\wkssvc.dll - ok
19:35:06.0562 0604  [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
19:35:06.0562 0604  C:\WINDOWS\system32\certcli.dll - ok
19:35:06.0562 0604  [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
19:35:06.0562 0604  C:\WINDOWS\system32\netmsg.dll - ok
19:35:06.0562 0604  [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
19:35:06.0562 0604  C:\WINDOWS\system32\oleacc.dll - ok
19:35:06.0562 0604  [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
19:35:06.0562 0604  C:\WINDOWS\system32\onex.dll - ok
19:35:06.0578 0604  [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
19:35:06.0578 0604  C:\WINDOWS\system32\sfc_os.dll - ok
19:35:06.0578 0604  [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
19:35:06.0578 0604  C:\WINDOWS\system32\w32time.dll - ok
19:35:06.0578 0604  [ 994AD0D8550B8B26990A6E3AA0791502 ] C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll
19:35:06.0578 0604  C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll - ok
19:35:06.0578 0604  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
19:35:06.0578 0604  C:\WINDOWS\system32\schedsvc.dll - ok
19:35:06.0578 0604  [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
19:35:06.0578 0604  C:\WINDOWS\system32\tapi32.dll - ok
19:35:06.0593 0604  [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
19:35:06.0593 0604  C:\WINDOWS\system32\wldap32.dll - ok
19:35:06.0593 0604  [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
19:35:06.0593 0604  C:\WINDOWS\system32\mstask.dll - ok
19:35:06.0593 0604  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
19:35:06.0593 0604  C:\WINDOWS\system32\netman.dll - ok
19:35:06.0593 0604  [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
19:35:06.0593 0604  C:\WINDOWS\system32\scecli.dll - ok
19:35:06.0609 0604  [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
19:35:06.0609 0604  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
19:35:06.0609 0604  [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
19:35:06.0609 0604  C:\WINDOWS\system32\activeds.dll - ok
19:35:06.0609 0604  [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
19:35:06.0609 0604  C:\WINDOWS\system32\es.dll - ok
19:35:06.0609 0604  [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
19:35:06.0609 0604  C:\WINDOWS\system32\shlwapi.dll - ok
19:35:06.0609 0604  [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
19:35:06.0609 0604  C:\WINDOWS\system32\msasn1.dll - ok
19:35:06.0625 0604  [ DA45AD502B4F2B7FC4ADEBA2E309F384 ] C:\WINDOWS\system32\netevent.dll
19:35:06.0625 0604  C:\WINDOWS\system32\netevent.dll - ok
19:35:06.0625 0604  [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
19:35:06.0625 0604  C:\WINDOWS\system32\pdh.dll - ok
19:35:06.0625 0604  [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
19:35:06.0625 0604  C:\WINDOWS\system32\rasapi32.dll - ok
19:35:06.0625 0604  [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
19:35:06.0625 0604  C:\WINDOWS\system32\secur32.dll - ok
19:35:06.0640 0604  [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
19:35:06.0640 0604  C:\WINDOWS\system32\wdigest.dll - ok
19:35:06.0640 0604  [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
19:35:06.0640 0604  C:\Program Files\Bonjour\mdnsNSP.dll - ok
19:35:06.0640 0604  [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
19:35:06.0640 0604  C:\WINDOWS\system32\cscui.dll - ok
19:35:06.0640 0604  [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\MSCTF.dll
19:35:06.0640 0604  C:\WINDOWS\system32\MSCTF.dll - ok
19:35:06.0640 0604  [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
19:35:06.0640 0604  C:\WINDOWS\system32\rsaenh.dll - ok
19:35:06.0656 0604  [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
19:35:06.0656 0604  C:\WINDOWS\system32\uxtheme.dll - ok
19:35:06.0656 0604  [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
19:35:06.0656 0604  C:\WINDOWS\system32\csrsrv.dll - ok
19:35:06.0656 0604  [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
19:35:06.0656 0604  C:\WINDOWS\system32\duser.dll - ok
19:35:06.0656 0604  [ 30964BE870C9B4CD6FCDCDD88B2BDA6C ] C:\WINDOWS\system32\igxprd32.dll
19:35:06.0656 0604  C:\WINDOWS\system32\igxprd32.dll - ok
19:35:06.0656 0604  [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
19:35:06.0656 0604  C:\WINDOWS\system32\msnsspc.dll - ok
19:35:06.0671 0604  [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
19:35:06.0671 0604  C:\WINDOWS\system32\gdi32.dll - ok
19:35:06.0671 0604  [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
19:35:06.0671 0604  C:\WINDOWS\system32\hnetcfg.dll - ok
19:35:06.0671 0604  [ 045DF7AE14CAAED71338916D6FB66812 ] C:\WINDOWS\system32\wow32.dll
19:35:06.0671 0604  C:\WINDOWS\system32\wow32.dll - ok
19:35:06.0671 0604  [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
19:35:06.0671 0604  C:\WINDOWS\system32\comdlg32.dll - ok
19:35:06.0687 0604  [ 92E1A82CA4B048D1D970CBEA1A097F6E ] C:\WINDOWS\system32\msdtcprx.dll
19:35:06.0687 0604  C:\WINDOWS\system32\msdtcprx.dll - ok
19:35:06.0687 0604  [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
19:35:06.0687 0604  C:\WINDOWS\system32\scesrv.dll - ok
19:35:06.0687 0604  [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
19:35:06.0687 0604  C:\WINDOWS\system32\atl.dll - ok
19:35:06.0687 0604  [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
19:35:06.0687 0604  C:\WINDOWS\system32\kerberos.dll - ok
19:35:06.0687 0604  [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
19:35:06.0687 0604  C:\WINDOWS\system32\odbc32.dll - ok
19:35:06.0703 0604  [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
19:35:06.0703 0604  C:\WINDOWS\system32\msvcrt.dll - ok
19:35:06.0703 0604  [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
19:35:06.0703 0604  C:\WINDOWS\system32\raschap.dll - ok
19:35:06.0703 0604  [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
19:35:06.0703 0604  C:\WINDOWS\system32\dnsapi.dll - ok
19:35:06.0703 0604  [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
19:35:06.0703 0604  C:\WINDOWS\system32\themeui.dll - ok
19:35:06.0703 0604  [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
19:35:06.0703 0604  C:\WINDOWS\system32\netlogon.dll - ok
19:35:06.0718 0604  [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
19:35:06.0718 0604  C:\WINDOWS\system32\riched20.dll - ok
19:35:06.0718 0604  [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
19:35:06.0718 0604  C:\WINDOWS\system32\rpcss.dll - ok
19:35:06.0718 0604  [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
19:35:06.0718 0604  C:\WINDOWS\system32\logonui.exe - ok
19:35:06.0718 0604  [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
19:35:06.0718 0604  C:\WINDOWS\system32\samsrv.dll - ok
19:35:06.0734 0604  [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
19:35:06.0734 0604  C:\WINDOWS\system32\clbcatq.dll - ok
19:35:06.0734 0604  [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
19:35:06.0734 0604  C:\WINDOWS\system32\msvcp60.dll - ok
19:35:06.0734 0604  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
19:35:06.0734 0604  C:\WINDOWS\system32\wzcsvc.dll - ok
19:35:06.0734 0604  [ 681B807E53BDADA337735C28C0E48A1B ] C:\WINDOWS\system32\ntvdm.exe
19:35:06.0734 0604  C:\WINDOWS\system32\ntvdm.exe - ok
19:35:06.0734 0604  [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
19:35:06.0734 0604  C:\WINDOWS\system32\cryptui.dll - ok
19:35:06.0750 0604  [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
19:35:06.0750 0604  C:\WINDOWS\system32\winlogon.exe - ok
19:35:06.0750 0604  [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
19:35:06.0750 0604  C:\WINDOWS\system32\msv1_0.dll - ok
19:35:06.0750 0604  [ B1296D52B0D2096EC4759EEEB806D759 ] C:\WINDOWS\system32\WgaTray.exe
19:35:06.0750 0604  C:\WINDOWS\system32\WgaTray.exe - ok
19:35:06.0750 0604  [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
19:35:06.0750 0604  C:\WINDOWS\system32\user32.dll - ok
19:35:06.0765 0604  [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
19:35:06.0765 0604  C:\WINDOWS\system32\comres.dll - ok
19:35:06.0765 0604  [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
19:35:06.0765 0604  C:\WINDOWS\system32\advapi32.dll - ok
19:35:06.0765 0604  [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
19:35:06.0765 0604  C:\WINDOWS\system32\sxs.dll - ok
19:35:06.0765 0604  [ 31E6A08C6DFB167E15F53B12E57F3F52 ] C:\WINDOWS\system32\msdtctm.dll
19:35:06.0765 0604  C:\WINDOWS\system32\msdtctm.dll - ok
19:35:06.0765 0604  [ 0A1D88669C38B3DCD2E8AD9CC3756361 ] C:\WINDOWS\system32\shdocvw.dll
19:35:06.0765 0604  C:\WINDOWS\system32\shdocvw.dll - ok
19:35:06.0781 0604  [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
19:35:06.0781 0604  C:\WINDOWS\system32\userenv.dll - ok
19:35:06.0781 0604  [ 38B0AE138EA9DECA0A34720B798ACA18 ] C:\WINDOWS\system32\igxpgd32.dll
19:35:06.0781 0604  C:\WINDOWS\system32\igxpgd32.dll - ok
19:35:06.0781 0604  [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
19:35:06.0781 0604  C:\WINDOWS\system32\mswsock.dll - ok
19:35:06.0781 0604  [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
19:35:06.0781 0604  C:\WINDOWS\system32\winmm.dll - ok
19:35:06.0781 0604  [ 6E2823E7F081FBCA37523DA90BA63AF4 ] C:\WINDOWS\system32\igxpdv32.dll
19:35:06.0781 0604  C:\WINDOWS\system32\igxpdv32.dll - ok
19:35:06.0796 0604  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
19:35:06.0796 0604  C:\WINDOWS\system32\srvsvc.dll - ok
19:35:06.0796 0604  [ B04DB1F0B2652FCBCCC5FD0C46579F0F ] C:\WINDOWS\system32\mscoree.dll
19:35:06.0796 0604  C:\WINDOWS\system32\mscoree.dll - ok
19:35:06.0796 0604  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
19:35:06.0796 0604  C:\Program Files\Bonjour\mDNSResponder.exe - ok
19:35:06.0796 0604  [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files\Google\Update\GoogleUpdate.exe
19:35:06.0796 0604  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
19:35:06.0812 0604  [ A12175F063302CD68F8FC6D572D7E5FD ] C:\Program Files\Java\jre7\bin\jqs.exe
19:35:06.0812 0604  C:\Program Files\Java\jre7\bin\jqs.exe - ok
19:35:06.0812 0604  [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
19:35:06.0812 0604  C:\WINDOWS\system32\rpcrt4.dll - ok
19:35:06.0812 0604  [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
19:35:06.0812 0604  C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
19:35:06.0812 0604  [ E5F7C30EDF0892667933BE879F067D67 ] C:\WINDOWS\system32\msvcr100_clr0400.dll
19:35:06.0812 0604  C:\WINDOWS\system32\msvcr100_clr0400.dll - ok
19:35:06.0812 0604  [ 02CF580510234E519736559A7F19EA20 ] C:\WINDOWS\system32\WgaLogon.dll
19:35:06.0812 0604  C:\WINDOWS\system32\WgaLogon.dll - ok
19:35:06.0828 0604  [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
19:35:06.0828 0604  C:\WINDOWS\system32\wintrust.dll - ok
19:35:06.0828 0604  [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
19:35:06.0828 0604  C:\WINDOWS\system32\comctl32.dll - ok
19:35:06.0828 0604  [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:35:06.0828 0604  C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
19:35:06.0828 0604  [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
19:35:06.0828 0604  C:\WINDOWS\system32\lsasrv.dll - ok
19:35:06.0828 0604  [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
19:35:06.0828 0604  C:\WINDOWS\system32\kernel32.dll - ok
19:35:06.0843 0604  [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
19:35:06.0843 0604  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
19:35:06.0843 0604  [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
19:35:06.0843 0604  C:\WINDOWS\system32\msxml3.dll - ok
19:35:06.0843 0604  [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
19:35:06.0843 0604  C:\WINDOWS\system32\netapi32.dll - ok
19:35:06.0843 0604  [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
19:35:06.0843 0604  C:\WINDOWS\system32\netshell.dll - ok
19:35:06.0859 0604  [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
19:35:06.0859 0604  C:\WINDOWS\system32\msi.dll - ok
19:35:06.0859 0604  [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
19:35:06.0859 0604  C:\WINDOWS\system32\browseui.dll - ok
19:35:06.0859 0604  [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
19:35:06.0859 0604  C:\WINDOWS\explorer.exe - ok
19:35:06.0859 0604  [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
19:35:06.0859 0604  C:\WINDOWS\system32\esent.dll - ok
19:35:06.0859 0604  [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
19:35:06.0859 0604  C:\WINDOWS\system32\xpsp2res.dll - ok
19:35:06.0875 0604  [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
19:35:06.0875 0604  C:\WINDOWS\system32\sfcfiles.dll - ok
19:35:06.0875 0604  [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\AcGenral.dll
19:35:06.0875 0604  C:\WINDOWS\AppPatch\AcGenral.dll - ok
19:35:06.0875 0604  [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
19:35:06.0875 0604  C:\WINDOWS\system32\msgina.dll - ok
19:35:06.0875 0604  [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
19:35:06.0875 0604  C:\WINDOWS\system32\setupapi.dll - ok
19:35:06.0890 0604  [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
19:35:06.0890 0604  C:\WINDOWS\system32\ole32.dll - ok
19:35:06.0890 0604  [ BC83108B18756547013ED443B8CDB31B ] C:\WINDOWS\system32\msvcp100.dll
19:35:06.0890 0604  C:\WINDOWS\system32\msvcp100.dll - ok
19:35:06.0890 0604  [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
19:35:06.0890 0604  C:\WINDOWS\system32\imagehlp.dll - ok
19:35:06.0890 0604  [ 0E37FBFA79D349D672456923EC5FBBE3 ] C:\WINDOWS\system32\msvcr100.dll
19:35:06.0890 0604  C:\WINDOWS\system32\msvcr100.dll - ok
19:35:06.0890 0604  [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
19:35:06.0890 0604  C:\WINDOWS\system32\schannel.dll - ok
19:35:06.0906 0604  [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
19:35:06.0906 0604  C:\WINDOWS\system32\winhttp.dll - ok
19:35:06.0906 0604  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
19:35:06.0906 0604  C:\WINDOWS\system32\winsrv.dll - ok
19:35:06.0906 0604  [ BECDDA0990DEBD72A30096533521AD73 ] C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe
19:35:06.0906 0604  C:\Program Files\Google\Update\1.3.21.135\GoogleCrashHandler.exe - ok
19:35:06.0906 0604  [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
19:35:06.0906 0604  C:\WINDOWS\system32\shell32.dll - ok
19:35:06.0921 0604  [ 6A4F069EA5D8F3D6606C8F02C65D574A ] C:\WINDOWS\system32\igxpdx32.dll
19:35:06.0921 0604  C:\WINDOWS\system32\igxpdx32.dll - ok
19:35:06.0921 0604  [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
19:35:06.0921 0604  C:\WINDOWS\system32\atmfd.dll - ok
19:35:06.0921 0604  [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
19:35:06.0921 0604  C:\WINDOWS\system32\crypt32.dll - ok
19:35:06.0921 0604  [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
19:35:06.0921 0604  C:\WINDOWS\system32\oleaut32.dll - ok
19:35:06.0921 0604  [ 2E5672EEA419A4DC9DACD714632E1DC3 ] C:\Program Files\Google\Update\1.3.21.135\goopdate.dll
19:35:06.0921 0604  C:\Program Files\Google\Update\1.3.21.135\goopdate.dll - ok
19:35:06.0937 0604  [ EC5B8B05909AF0B0FF5F9FE7E10C0939 ] C:\WINDOWS\system32\ntkrnlpa.exe
19:35:06.0937 0604  C:\WINDOWS\system32\ntkrnlpa.exe - ok
19:35:06.0937 0604  [ 63E8D944AFBEEBB243F25C4ED07E74C5 ] C:\WINDOWS\system32\inetmib1.dll
19:35:06.0937 0604  C:\WINDOWS\system32\inetmib1.dll - ok
19:35:06.0937 0604  [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
19:35:06.0937 0604  C:\WINDOWS\system32\snmpapi.dll - ok
19:35:06.0937 0604  [ 59570CA554C9D75E72241AC3252E84BD ] C:\WINDOWS\system32\ieframe.dll
19:35:06.0937 0604  C:\WINDOWS\system32\ieframe.dll - ok
19:35:06.0937 0604  [ C899F9459AF5358B7B9C3B6D19647B8B ] C:\Program Files\AVG\AVG2013\avgemcx.exe
19:35:06.0937 0604  C:\Program Files\AVG\AVG2013\avgemcx.exe - ok
19:35:06.0953 0604  [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
19:35:06.0953 0604  C:\WINDOWS\system32\dbghelp.dll - ok
19:35:06.0953 0604  [ F6E1849C8D78752628673BE7811A71E8 ] C:\WINDOWS\system32\ntoskrnl.exe
19:35:06.0953 0604  C:\WINDOWS\system32\ntoskrnl.exe - ok
19:35:06.0953 0604  [ 172BE63FE4CCB653446687BFB97E61C9 ] C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll
19:35:06.0953 0604  C:\PROGRA~1\AVG\AVG2013\avgchjwx.dll - ok
19:35:06.0953 0604  [ 6D2EDE5CC51FF35004BD07E9EF3E1996 ] C:\PROGRA~1\AVG\AVG2013\avgcclix.dll
19:35:06.0953 0604  C:\PROGRA~1\AVG\AVG2013\avgcclix.dll - ok
19:35:06.0968 0604  [ 53B18D940D7155C49D507F076AF43554 ] C:\Program Files\AVG\AVG2013\avgcsrvx.exe
19:35:06.0968 0604  C:\Program Files\AVG\AVG2013\avgcsrvx.exe - ok
19:35:06.0968 0604  [ 32DFEEF66057184481ECC3C6116CE895 ] C:\Program Files\AVG\AVG2013\avgcertx.dll
19:35:06.0968 0604  C:\Program Files\AVG\AVG2013\avgcertx.dll - ok
19:35:06.0968 0604  [ 2E967B05E5D1EF57632819BDC54F19B1 ] C:\Program Files\AVG\AVG2013\avgchclx.dll
19:35:06.0968 0604  C:\Program Files\AVG\AVG2013\avgchclx.dll - ok
19:35:06.0968 0604  [ 71ECC07BC7C5E24C3DD01D8A29A24054 ] C:\WINDOWS\system32\drivers\iaStor.sys
19:35:06.0968 0604  C:\WINDOWS\system32\drivers\iaStor.sys - ok
19:35:06.0968 0604  [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
19:35:06.0968 0604  C:\WINDOWS\system32\drivers\dxapi.sys - ok
19:35:06.0984 0604  [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
19:35:06.0984 0604  C:\WINDOWS\system32\watchdog.sys - ok
19:35:06.0984 0604  [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
19:35:06.0984 0604  C:\WINDOWS\system32\drivers\dxg.sys - ok
19:35:06.0984 0604  [ B57F6110AC77DFE6BA7E58A0FF699915 ] C:\WINDOWS\system32\win32k.sys
19:35:06.0984 0604  C:\WINDOWS\system32\win32k.sys - ok
19:35:06.0984 0604  [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
19:35:06.0984 0604  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
19:35:06.0984 0604  [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\MSCTFIME.IME
19:35:06.0984 0604  C:\WINDOWS\system32\MSCTFIME.IME - ok
19:35:07.0000 0604  [ 8F5795B166CBB50966E29982F8CDB310 ] C:\WINDOWS\system32\drivers\LANPkt.sys
19:35:07.0000 0604  C:\WINDOWS\system32\drivers\LANPkt.sys - ok
19:35:07.0000 0604  [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
19:35:07.0000 0604  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
19:35:07.0000 0604  [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
19:35:07.0000 0604  C:\WINDOWS\system32\winspool.drv - ok
19:35:07.0000 0604  [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
19:35:07.0000 0604  C:\WINDOWS\system32\wdmaud.drv - ok
19:35:07.0015 0604  [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys



19:35:07.0015 0604  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
19:35:07.0015 0604  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
19:35:07.0015 0604  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
19:35:07.0015 0604  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
19:35:07.0015 0604  C:\WINDOWS\system32\drivers\splitter.sys - ok
19:35:07.0015 0604  [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
19:35:07.0015 0604  C:\WINDOWS\system32\drivers\aec.sys - ok
19:35:07.0015 0604  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
19:35:07.0015 0604  C:\WINDOWS\system32\drivers\swmidi.sys - ok
19:35:07.0031 0604  [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\DMusic.sys
19:35:07.0031 0604  C:\WINDOWS\system32\drivers\DMusic.sys - ok
19:35:07.0031 0604  [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
19:35:07.0031 0604  C:\WINDOWS\system32\drivers\kmixer.sys - ok
19:35:07.0031 0604  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
19:35:07.0031 0604  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
19:35:07.0031 0604  [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
19:35:07.0031 0604  C:\WINDOWS\system32\msacm32.drv - ok
19:35:07.0031 0604  [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
19:35:07.0031 0604  C:\WINDOWS\system32\desk.cpl - ok
19:35:07.0046 0604  [ 3307A07B81206F354F0D4BEFEE922437 ] C:\WINDOWS\system32\LegitCheckControl.DLL
19:35:07.0046 0604  C:\WINDOWS\system32\LegitCheckControl.DLL - ok
19:35:07.0046 0604  [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
19:35:07.0046 0604  C:\WINDOWS\system32\actxprxy.dll - ok
19:35:07.0046 0604  [ 70C14F5CCA5CF73F8A645C73A01D8726 ] C:\WINDOWS\system32\drivers\mqac.sys
19:35:07.0046 0604  C:\WINDOWS\system32\drivers\mqac.sys - ok
19:35:07.0046 0604  [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
19:35:07.0046 0604  C:\WINDOWS\system32\ipsecsvc.dll - ok
19:35:07.0046 0604  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
19:35:07.0046 0604  C:\WINDOWS\system32\drivers\srv.sys - ok
19:35:07.0062 0604  [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
19:35:07.0062 0604  C:\WINDOWS\system32\oakley.dll - ok
19:35:07.0062 0604  [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
19:35:07.0062 0604  C:\WINDOWS\system32\psbase.dll - ok
19:35:07.0062 0604  [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
19:35:07.0062 0604  C:\WINDOWS\system32\pstorsvc.dll - ok
19:35:07.0062 0604  [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
19:35:07.0062 0604  C:\WINDOWS\system32\winipsec.dll - ok
19:35:07.0078 0604  [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
19:35:07.0078 0604  C:\WINDOWS\system32\cmd.exe - ok
19:35:07.0078 0604  [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
19:35:07.0078 0604  C:\WINDOWS\system32\dssenh.dll - ok
19:35:07.0078 0604  [ 91CA748B04BF0E2CAB06BE29116E05C5 ] C:\Program Files\AVG\AVG2013\avgidpsdkx.dll
19:35:07.0078 0604  C:\Program Files\AVG\AVG2013\avgidpsdkx.dll - ok
19:35:07.0078 0604  [ 96F7A9A7BF0C9C0440A967440065D33C ] C:\WINDOWS\system32\drivers\rmcast.sys
19:35:07.0078 0604  C:\WINDOWS\system32\drivers\rmcast.sys - ok
19:35:07.0078 0604  [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
19:35:07.0078 0604  C:\WINDOWS\system32\seclogon.dll - ok
19:35:07.0093 0604  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
19:35:07.0093 0604  C:\WINDOWS\system32\sens.dll - ok
19:35:07.0093 0604  [ 60C377BE6B3CC83F6A8584934B181D2E ] C:\WINDOWS\system32\snmp.exe
19:35:07.0093 0604  C:\WINDOWS\system32\snmp.exe - ok
19:35:07.0093 0604  [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
19:35:07.0093 0604  C:\WINDOWS\system32\srsvc.dll - ok
19:35:07.0093 0604  [ 6EDBF91C10EE47AC4AC1C58E71F0245A ] C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
19:35:07.0093 0604  C:\Program Files\AVG\AVG2013\avgkrnlapix.dll - ok
19:35:07.0109 0604  [ C68153ECC557A0C841D976543E493EF6 ] C:\Program Files\AVG\AVG2013\avgxpl.dll
19:35:07.0109 0604  C:\Program Files\AVG\AVG2013\avgxpl.dll - ok
19:35:07.0109 0604  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
19:35:07.0109 0604  C:\WINDOWS\system32\wiaservc.dll - ok
19:35:07.0109 0604  [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
19:35:07.0109 0604  C:\WINDOWS\system32\trkwks.dll - ok
19:35:07.0109 0604  [ 7AC9F99C9E12A5C0C35B0A9891543AEC ] C:\WINDOWS\system32\lmmib2.dll
19:35:07.0109 0604  C:\WINDOWS\system32\lmmib2.dll - ok
19:35:07.0109 0604  [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
19:35:07.0109 0604  C:\WINDOWS\system32\cfgmgr32.dll - ok
19:35:07.0125 0604  [ 3AD1E72748978D8B0B3B674741E4C3E2 ] C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
19:35:07.0125 0604  C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe - ok
19:35:07.0125 0604  [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
19:35:07.0125 0604  C:\WINDOWS\system32\mscms.dll - ok
19:35:07.0125 0604  [ C744B07A16F5FBAAF2892716F4DBCB1B ] C:\WINDOWS\system32\hostmib.dll
19:35:07.0125 0604  C:\WINDOWS\system32\hostmib.dll - ok
19:35:07.0125 0604  [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
19:35:07.0125 0604  C:\WINDOWS\system32\perfos.dll - ok
19:35:07.0125 0604  [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
19:35:07.0125 0604  C:\WINDOWS\system32\spoolss.dll - ok
19:35:07.0140 0604  [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
19:35:07.0140 0604  C:\WINDOWS\system32\perfdisk.dll - ok
19:35:07.0140 0604  [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
19:35:07.0140 0604  C:\WINDOWS\system32\localspl.dll - ok
19:35:07.0140 0604  [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
19:35:07.0140 0604  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
19:35:07.0140 0604  [ AFB909B537AAE1BEAE7BBDB6A36D40B0 ] C:\WINDOWS\system32\mqsvc.exe
19:35:07.0140 0604  C:\WINDOWS\system32\mqsvc.exe - ok
19:35:07.0156 0604  [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
19:35:07.0156 0604  C:\WINDOWS\system32\vssapi.dll - ok
19:35:07.0156 0604  [ F3CE8E0DEF03D3F614376A1B7669CFDC ] C:\WINDOWS\system32\mqqm.dll
19:35:07.0156 0604  C:\WINDOWS\system32\mqqm.dll - ok
19:35:07.0156 0604  [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
19:35:07.0156 0604  C:\WINDOWS\system32\cnbjmon.dll - ok
19:35:07.0156 0604  [ ECFF42413E9744A6F80BA8F2A77704AF ] C:\WINDOWS\system32\lprmon.dll
19:35:07.0156 0604  C:\WINDOWS\system32\lprmon.dll - ok
19:35:07.0156 0604  [ 7BD2D27143F94B2103AC694EBBB7CE10 ] C:\WINDOWS\system32\lprhelp.dll
19:35:07.0156 0604  C:\WINDOWS\system32\lprhelp.dll - ok
19:35:07.0171 0604  [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
19:35:07.0171 0604  C:\WINDOWS\system32\browser.dll - ok
19:35:07.0171 0604  [ C443CA4650FFA91CB39B35E80EC493F2 ] C:\WINDOWS\system32\mqutil.dll
19:35:07.0171 0604  C:\WINDOWS\system32\mqutil.dll - ok
19:35:07.0171 0604  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
19:35:07.0171 0604  C:\WINDOWS\system32\wuauserv.dll - ok
19:35:07.0171 0604  [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
19:35:07.0171 0604  C:\WINDOWS\system32\pjlmon.dll - ok
19:35:07.0171 0604  [ B26A94881EE8B490D9A8A82EC4D53003 ] C:\WINDOWS\system32\mqsec.dll
19:35:07.0171 0604  C:\WINDOWS\system32\mqsec.dll - ok
19:35:07.0187 0604  [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
19:35:07.0187 0604  C:\WINDOWS\system32\wuaueng.dll - ok
19:35:07.0187 0604  [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
19:35:07.0187 0604  C:\WINDOWS\system32\security.dll - ok
19:35:07.0187 0604  [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
19:35:07.0187 0604  C:\WINDOWS\system32\tcpmon.dll - ok
19:35:07.0187 0604  [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
19:35:07.0187 0604  C:\WINDOWS\system32\usbmon.dll - ok
19:35:07.0203 0604  [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
19:35:07.0203 0604  C:\WINDOWS\system32\cabinet.dll - ok
19:35:07.0203 0604  [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
19:35:07.0203 0604  C:\WINDOWS\system32\mspatcha.dll - ok
19:35:07.0203 0604  [ 52E8A3CC8269ADB27D25182284C5E650 ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
19:35:07.0203 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe - ok
19:35:07.0203 0604  [ B37D6067174291AA8EADE3F94A03CBFF ] C:\WINDOWS\system32\mqlogmgr.dll
19:35:07.0203 0604  C:\WINDOWS\system32\mqlogmgr.dll - ok
19:35:07.0203 0604  [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
19:35:07.0203 0604  C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
19:35:07.0218 0604  [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
19:35:07.0218 0604  C:\WINDOWS\system32\wscsvc.dll - ok
19:35:07.0218 0604  [ 291778DFEBAA278B451D457B03C10AC1 ] C:\WINDOWS\system32\win32spl.dll
19:35:07.0218 0604  C:\WINDOWS\system32\win32spl.dll - ok
19:35:07.0218 0604  [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
19:35:07.0218 0604  C:\WINDOWS\system32\comsvcs.dll - ok
19:35:07.0218 0604  [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
19:35:07.0218 0604  C:\WINDOWS\system32\netrap.dll - ok
19:35:07.0234 0604  [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
19:35:07.0234 0604  C:\WINDOWS\system32\inetpp.dll - ok
19:35:07.0234 0604  [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
19:35:07.0234 0604  C:\WINDOWS\system32\colbact.dll - ok
19:35:07.0234 0604  [ 6A473B625E465946F73FB2C24412656C ] C:\WINDOWS\system32\snmpmib.dll
19:35:07.0234 0604  C:\WINDOWS\system32\snmpmib.dll - ok
19:35:07.0234 0604  [ B7884070CD97875214B147356CD50971 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll
19:35:07.0234 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ISDI.dll - ok
19:35:07.0234 0604  [ 14390243E43F290A61B0B1FB3602DC4F ] C:\WINDOWS\system32\evntagnt.dll
19:35:07.0234 0604  C:\WINDOWS\system32\evntagnt.dll - ok
19:35:07.0250 0604  [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
19:35:07.0250 0604  C:\WINDOWS\system32\ipnathlp.dll - ok
19:35:07.0250 0604  [ C9380551B66FD05A1AC27746A9E7660F ] C:\Program Files\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll
19:35:07.0250 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ARA\Shell_ARA.dll - ok
19:35:07.0250 0604  [ 194A245AC49C5F4A7B908635D8B533F2 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll
19:35:07.0250 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\CHS\Shell_CHS.dll - ok
19:35:07.0250 0604  [ 384DA6A9C70889F01B99888C5E07072C ] C:\WINDOWS\system32\igmpagnt.dll
19:35:07.0250 0604  C:\WINDOWS\system32\igmpagnt.dll - ok
19:35:07.0250 0604  [ 992C93A9F0036EBEF57B7AC2A77C9414 ] C:\Program Files\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll
19:35:07.0250 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\CHT\Shell_CHT.dll - ok
19:35:07.0265 0604  [ 93F02F396720478C656D65ECFB65A497 ] C:\WINDOWS\system32\mcastmib.dll
19:35:07.0265 0604  C:\WINDOWS\system32\mcastmib.dll - ok
19:35:07.0265 0604  [ D022E59E6F132660B2D7E66D41FFB341 ] C:\WINDOWS\system32\rtipxmib.dll
19:35:07.0265 0604  C:\WINDOWS\system32\rtipxmib.dll - ok
19:35:07.0265 0604  [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
19:35:07.0265 0604  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
19:35:07.0265 0604  [ 63E6637596D2B82E2D9530C6D02DB23E ] C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll
19:35:07.0265 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\CSY\Shell_CSY.dll - ok
19:35:07.0281 0604  [ 06BD26E35EA1DFBC0A90BC9E40292A1D ] C:\Program Files\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll
19:35:07.0281 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\DAN\Shell_DAN.dll - ok
19:35:07.0281 0604  [ 7F955FF3B1BB93376EBE75D5ACCDC6DB ] C:\WINDOWS\system32\mqtgsvc.exe
19:35:07.0281 0604  C:\WINDOWS\system32\mqtgsvc.exe - ok
19:35:07.0281 0604  [ CB25839EDA8C42056902C6E7C8469CDC ] C:\Program Files\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll
19:35:07.0281 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\DEU\Shell_DEU.dll - ok
19:35:07.0281 0604  [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
19:35:07.0281 0604  C:\WINDOWS\system32\wbem\esscli.dll - ok
19:35:07.0281 0604  [ FA1F037FE1B6303217BF5A07E8EAD236 ] C:\WINDOWS\system32\mqrt.dll
19:35:07.0281 0604  C:\WINDOWS\system32\mqrt.dll - ok
19:35:07.0296 0604  [ CF50F2DE33208FFBE35158E3228808C9 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll
19:35:07.0296 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ELL\Shell_ELL.dll - ok
19:35:07.0296 0604  [ A8C44E4F15DF158009A5CD9818C4A8AA ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll
19:35:07.0296 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\Shell_ENU.dll - ok
19:35:07.0296 0604  [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
19:35:07.0296 0604  C:\WINDOWS\system32\wbem\fastprox.dll - ok
19:35:07.0296 0604  [ EB7C7FE8846524A5FE82D0A35341AFA8 ] C:\WINDOWS\system32\mqtrig.dll
19:35:07.0296 0604  C:\WINDOWS\system32\mqtrig.dll - ok
19:35:07.0296 0604  [ 4A0674B64797DC16C2B2D598A40E1653 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll
19:35:07.0296 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ESP\Shell_ESP.dll - ok
19:35:07.0312 0604  [ 8761A84B42C8EBFEFC44FEE93323BA8A ] C:\Program Files\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll
19:35:07.0312 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\FIN\Shell_FIN.dll - ok
19:35:07.0312 0604  [ 389458C351007162C56CB6D6471DA4F7 ] C:\Program Files\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll
19:35:07.0312 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\FRA\Shell_FRA.dll - ok
19:35:07.0312 0604  [ 92D89CDD463FB70F6BE20D32980C3C69 ] C:\Program Files\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll
19:35:07.0312 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\HEB\Shell_HEB.dll - ok
19:35:07.0312 0604  [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
19:35:07.0312 0604  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
19:35:07.0328 0604  [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
19:35:07.0328 0604  C:\WINDOWS\system32\wups.dll - ok
19:35:07.0328 0604  [ 80D5ED2DB7FEE92E1178FEFAD105D3D8 ] C:\Program Files\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll
19:35:07.0328 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\HUN\Shell_HUN.dll - ok
19:35:07.0328 0604  [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
19:35:07.0328 0604  C:\WINDOWS\system32\wups2.dll - ok
19:35:07.0328 0604  [ C8D1789CDE83AE994553FA8A6F510554 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll
19:35:07.0328 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ITA\Shell_ITA.dll - ok
19:35:07.0328 0604  [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
19:35:07.0328 0604  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
19:35:07.0343 0604  [ 79B4D6F773326084129EEE5A1C114845 ] C:\Program Files\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll
19:35:07.0343 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\JPN\Shell_JPN.dll - ok
19:35:07.0343 0604  [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
19:35:07.0343 0604  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
19:35:07.0343 0604  [ 96DEAA6D704245B4125D091FC6D69991 ] C:\Program Files\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll
19:35:07.0343 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\KOR\Shell_KOR.dll - ok
19:35:07.0343 0604  [ 6C148F7BF6EEBE019F39C915C5DCA259 ] C:\Program Files\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll
19:35:07.0343 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\NLD\Shell_NLD.dll - ok
19:35:07.0359 0604  [ 309D53D48E53DCBD954EFE54F3E4B43F ] C:\Program Files\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll
19:35:07.0359 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\NOR\Shell_NOR.dll - ok
19:35:07.0359 0604  [ 403A01BF051A33A17EE828BE7C66EBB0 ] C:\Program Files\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll
19:35:07.0359 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\PLK\Shell_PLK.dll - ok
19:35:07.0359 0604  [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
19:35:07.0359 0604  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
19:35:07.0359 0604  [ 3A07E72B04CC8B96A25DB2D50A11A136 ] C:\Program Files\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll
19:35:07.0359 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\PTB\Shell_PTB.dll - ok
19:35:07.0359 0604  [ 554213B072C0EB52BCBA8D31028601AA ] C:\Program Files\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll
19:35:07.0359 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\PTG\Shell_PTG.dll - ok
19:35:07.0375 0604  [ F8A46BD6353FAC755F162E9A0A8D7AA3 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll
19:35:07.0375 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RUS\Shell_RUS.dll - ok
19:35:07.0375 0604  [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
19:35:07.0375 0604  C:\WINDOWS\system32\wuauclt.exe - ok
19:35:07.0375 0604  [ AAE9076A4609CA89068CCD0D300C63A1 ] C:\Program Files\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll
19:35:07.0375 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\SVE\Shell_SVE.dll - ok
19:35:07.0375 0604  [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
19:35:07.0375 0604  C:\WINDOWS\system32\wbem\wbemess.dll - ok
19:35:07.0375 0604  [ 816C55C175E80A87C3112F1C6651087F ] C:\Program Files\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll
19:35:07.0375 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\THA\Shell_THA.dll - ok
19:35:07.0390 0604  [ 999D28FDE1AF2DD0B37A157BFC3F7428 ] C:\Program Files\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll
19:35:07.0390 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\TRK\Shell_TRK.dll - ok
19:35:07.0390 0604  [ E5722236228A60D2DDBB6D2D5DF1EDE6 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll
19:35:07.0390 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\PlugInRAID_ENU.dll - ok
19:35:07.0390 0604  [ 47BCBF956EEE971284F4A145A7E21288 ] C:\Program Files\Intel\Intel Matrix Storage Manager\PlugInRAID.pin
19:35:07.0390 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\PlugInRAID.pin - ok
19:35:07.0390 0604  [ D17F5EFDEF2A01B8807240483EDB3A06 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizM.dll
19:35:07.0390 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizM.dll - ok
19:35:07.0406 0604  [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
19:35:07.0406 0604  C:\WINDOWS\system32\wuapi.dll - ok
19:35:07.0406 0604  [ 3B3FA087E142808CF67628D0B85FB0DB ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizD.dll
19:35:07.0406 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizD.dll - ok
19:35:07.0406 0604  [ 3A1E83BA8C0159C86C34431F014CBCCF ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizR.dll
19:35:07.0406 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizR.dll - ok
19:35:07.0406 0604  [ 72C01911DFE2CC2526D7CBF6F339C28E ] C:\Program Files\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll
19:35:07.0406 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RaidWizCnG.dll - ok
19:35:07.0406 0604  [ 508221675A56BA59BE6EB8652E1D37E7 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizC.dll
19:35:07.0406 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizC.dll - ok
19:35:07.0421 0604  [ E16391BFA89DFC53AEA78A8D8707B3E3 ] C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll
19:35:07.0421 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\RAIDWizCFE.dll - ok
19:35:07.0421 0604  [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
19:35:07.0421 0604  C:\WINDOWS\system32\termsrv.dll - ok
19:35:07.0421 0604  [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
19:35:07.0421 0604  C:\WINDOWS\system32\wbem\ncprov.dll - ok
19:35:07.0421 0604  [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
19:35:07.0421 0604  C:\WINDOWS\system32\icaapi.dll - ok
19:35:07.0437 0604  [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
19:35:07.0437 0604  C:\WINDOWS\system32\mstlsapi.dll - ok
19:35:07.0437 0604  [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
19:35:07.0437 0604  C:\WINDOWS\system32\upnp.dll - ok
19:35:07.0437 0604  [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
19:35:07.0437 0604  C:\WINDOWS\system32\ssdpapi.dll - ok
19:35:07.0437 0604  [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
19:35:07.0437 0604  C:\WINDOWS\system32\wbem\wbemcons.dll - ok
19:35:07.0437 0604  [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
19:35:07.0437 0604  C:\WINDOWS\system32\netcfgx.dll - ok
19:35:07.0453 0604  [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
19:35:07.0453 0604  C:\WINDOWS\system32\drivers\http.sys - ok
19:35:07.0453 0604  [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
19:35:07.0453 0604  C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
19:35:07.0453 0604  [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
19:35:07.0453 0604  C:\WINDOWS\system32\ssdpsrv.dll - ok
19:35:07.0453 0604  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
19:35:07.0453 0604  C:\WINDOWS\system32\rasmans.dll - ok
19:35:07.0453 0604  [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
19:35:07.0453 0604  C:\WINDOWS\system32\alg.exe - ok
19:35:07.0468 0604  [ 6895427873D6C37A6D6DA7C3DB37DA14 ] C:\WINDOWS\system32\licwmi.dll
19:35:07.0468 0604  C:\WINDOWS\system32\licwmi.dll - ok
19:35:07.0468 0604  [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
19:35:07.0468 0604  C:\WINDOWS\system32\wbem\framedyn.dll - ok
19:35:07.0468 0604  [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
19:35:07.0468 0604  C:\WINDOWS\system32\tapisrv.dll - ok
19:35:07.0468 0604  [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
19:35:07.0468 0604  C:\WINDOWS\system32\rastapi.dll - ok
19:35:07.0484 0604  [ A693A49A67673F2C8D76797EA9A628D0 ] C:\WINDOWS\system32\licdll.dll
19:35:07.0484 0604  C:\WINDOWS\system32\licdll.dll - ok
19:35:07.0484 0604  [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
19:35:07.0484 0604  C:\WINDOWS\system32\unimdm.tsp - ok
19:35:07.0484 0604  [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
19:35:07.0484 0604  C:\WINDOWS\system32\uniplat.dll - ok
19:35:07.0484 0604  [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
19:35:07.0484 0604  C:\WINDOWS\system32\kmddsp.tsp - ok
19:35:07.0484 0604  [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
19:35:07.0484 0604  C:\WINDOWS\system32\ndptsp.tsp - ok
19:35:07.0500 0604  [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
19:35:07.0500 0604  C:\WINDOWS\system32\ipconf.tsp - ok
19:35:07.0500 0604  [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
19:35:07.0500 0604  C:\WINDOWS\system32\h323.tsp - ok
19:35:07.0500 0604  [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
19:35:07.0500 0604  C:\WINDOWS\system32\hidphone.tsp - ok
19:35:07.0500 0604  [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
19:35:07.0500 0604  C:\WINDOWS\system32\rasppp.dll - ok
19:35:07.0500 0604  [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
19:35:07.0500 0604  C:\WINDOWS\system32\ntlsapi.dll - ok
19:35:07.0515 0604  [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
19:35:07.0515 0604  C:\WINDOWS\system32\rasqec.dll - ok
19:35:07.0515 0604  [ 9EFBB3055B3EECE5B0FC7BAED07A6EE9 ] C:\WINDOWS\system32\msxml6.dll
19:35:07.0515 0604  C:\WINDOWS\system32\msxml6.dll - ok
19:35:07.0515 0604  [ 713C03A259EE66219E2DAD1DB08484A6 ] C:\WINDOWS\system32\wbem\cimwin32.dll
19:35:07.0515 0604  C:\WINDOWS\system32\wbem\cimwin32.dll - ok
19:35:07.0515 0604  [ AFDCC326174D131C374766FEB946F496 ] C:\Program Files\Java\jre7\bin\awt.dll
19:35:07.0515 0604  C:\Program Files\Java\jre7\bin\awt.dll - ok
19:35:07.0531 0604  [ 47B5CF49EF651E9954231BA079A95058 ] C:\Program Files\Java\jre7\bin\client\jvm.dll
19:35:07.0531 0604  C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
19:35:07.0531 0604  [ 615F729DF8E1E7160445858C6D32C910 ] C:\Program Files\Java\jre7\bin\dcpr.dll
19:35:07.0531 0604  C:\Program Files\Java\jre7\bin\dcpr.dll - ok
19:35:07.0531 0604  [ 40D1D0A2569395D34A7CE070F99A5365 ] C:\Program Files\Java\jre7\bin\deploy.dll
19:35:07.0531 0604  C:\Program Files\Java\jre7\bin\deploy.dll - ok
19:35:07.0531 0604  [ DA443EC760094294B23EBDE1CB1FF213 ] C:\Program Files\Java\jre7\bin\fontmanager.dll
19:35:07.0531 0604  C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
19:35:07.0531 0604  [ 26F2B2669BBEEFA02DCC8052701D9563 ] C:\Program Files\Java\jre7\bin\java.dll
19:35:07.0531 0604  C:\Program Files\Java\jre7\bin\java.dll - ok
19:35:07.0546 0604  [ 5BD255C0051A41738FCB67F3A0C68DCA ] C:\Program Files\Java\jre7\bin\javaw.exe
19:35:07.0546 0604  C:\Program Files\Java\jre7\bin\javaw.exe - ok
19:35:07.0546 0604  [ 8CB1564D5084BAA5B79A77CBC92621C5 ] C:\Program Files\Java\jre7\bin\jp2native.dll
19:35:07.0546 0604  C:\Program Files\Java\jre7\bin\jp2native.dll - ok
19:35:07.0546 0604  [ 9A85F6C0D35643AA02199C95ECCE2CF1 ] C:\Program Files\Java\jre7\bin\jpeg.dll
19:35:07.0546 0604  C:\Program Files\Java\jre7\bin\jpeg.dll - ok
19:35:07.0546 0604  [ 687A1BEA3FEF91B75F8CF46B0620C9D7 ] C:\Program Files\Java\jre7\bin\net.dll
19:35:07.0546 0604  C:\Program Files\Java\jre7\bin\net.dll - ok
19:35:07.0562 0604  [ 8C1D980BD50D81261B770B47C1553976 ] C:\Program Files\Java\jre7\bin\nio.dll
19:35:07.0562 0604  C:\Program Files\Java\jre7\bin\nio.dll - ok
19:35:07.0562 0604  [ 8CC69BCE988C0921CCFE7AFFEA394B17 ] C:\Program Files\Java\jre7\bin\verify.dll
19:35:07.0562 0604  C:\Program Files\Java\jre7\bin\verify.dll - ok
19:35:07.0562 0604  [ 2A65F096DFEFD5AF498A43CD53D53B0C ] C:\Program Files\Java\jre7\bin\zip.dll
19:35:07.0562 0604  C:\Program Files\Java\jre7\bin\zip.dll - ok
19:35:07.0562 0604  [ F840530335AA3B17DEFA10BC82A9CC7D ] C:\DOCUME~1\GCCBOO~1\LOCALS~1\temp\716D7E50-3BC3-4D74-8923-699CA369A296.exe
19:35:07.0562 0604  C:\DOCUME~1\GCCBOO~1\LOCALS~1\temp\716D7E50-3BC3-4D74-8923-699CA369A296.exe - ok
19:35:07.0562 0604  [ EA5872F1BC10D8A830BBB41F2EAF34E0 ] C:\WINDOWS\RTHDCPL.EXE
19:35:07.0562 0604  C:\WINDOWS\RTHDCPL.EXE - ok
19:35:07.0578 0604  [ 667450898EB3A9864770E6CB55B82E78 ] C:\Program Files\Realtek\Diagnostics Utility\8169Diag.exe
19:35:07.0578 0604  C:\Program Files\Realtek\Diagnostics Utility\8169Diag.exe - ok
19:35:07.0578 0604  [ 3BE8C00F8834FB2EC5D00DED729C2061 ] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
19:35:07.0578 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe - ok
19:35:07.0578 0604  [ BE4C00E9BF06C136A1F63856BB7AAC5E ] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
19:35:07.0578 0604  C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe - ok
19:35:07.0578 0604  [ F8B91C91225E5CAA2B2F0370201021C0 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
19:35:07.0578 0604  C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe - ok
19:35:07.0578 0604  [ 3CB07566302BCEEB898DE270A0BEC175 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:35:07.0578 0604  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
19:35:07.0593 0604  [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
19:35:07.0593 0604  C:\WINDOWS\system32\linkinfo.dll - ok
19:35:07.0593 0604  [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
19:35:07.0593 0604  C:\WINDOWS\system32\ntshrui.dll - ok
19:35:07.0593 0604  [ C845C8196B32EAB7E6A91CBE97EB1B9D ] C:\Program Files\Realtek\Diagnostics Utility\Rtl8169Lib.dll
19:35:07.0593 0604  C:\Program Files\Realtek\Diagnostics Utility\Rtl8169Lib.dll - ok
19:35:07.0593 0604  [ 76848CB1AA5818DB47D5F5986E0A7485 ] C:\WINDOWS\system32\mfc42.dll
19:35:07.0593 0604  C:\WINDOWS\system32\mfc42.dll - ok
19:35:07.0609 0604  [ FBDB9D0935B9907B809B381FDDF1627F ] C:\WINDOWS\system32\regsvr32.exe
19:35:07.0609 0604  C:\WINDOWS\system32\regsvr32.exe - ok
19:35:07.0609 0604  [ 0B467F470CC9918FDCEEDCFD7DC4D697 ] C:\WINDOWS\system32\oledlg.dll
19:35:07.0609 0604  C:\WINDOWS\system32\oledlg.dll - ok
19:35:07.0609 0604  [ 5652F6CE1D9E9D8068B9D29BC21B5409 ] C:\WINDOWS\system32\olepro32.dll
19:35:07.0609 0604  C:\WINDOWS\system32\olepro32.dll - ok
19:35:07.0609 0604  [ A340CD71EB535A3DD751B5F28723E50C ] C:\WINDOWS\system32\ddraw.dll
19:35:07.0609 0604  C:\WINDOWS\system32\ddraw.dll - ok
19:35:07.0609 0604  [ 35AC4B63CBB9FB6B4472913E9948B517 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:35:07.0609 0604  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
19:35:07.0625 0604  [ BA92C496F08D78F7DB263A20C36AA546 ] C:\Program Files\AVG\AVG2013\avgui.exe
19:35:07.0625 0604  C:\Program Files\AVG\AVG2013\avgui.exe - ok
19:35:07.0625 0604  [ B08E14415BBE09C85507AED403909687 ] C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll
19:35:07.0625 0604  C:\Program Files\Intel\Intel Matrix Storage Manager\ENU\iaaMon_ENU.dll - ok
19:35:07.0625 0604  [ FD3DA8425624B98903407DF608CF2C11 ] C:\WINDOWS\system32\net.exe
19:35:07.0625 0604  C:\WINDOWS\system32\net.exe - ok
19:35:07.0625 0604  [ D8B91D94ECB123862B390FDE3250D3BB ] C:\WINDOWS\system32\dciman32.dll
19:35:07.0625 0604  C:\WINDOWS\system32\dciman32.dll - ok
19:35:07.0640 0604  [ 0607CBC6FA20114CB491EFE4B2F9EFAD ] C:\WINDOWS\system32\d3d9.dll
19:35:07.0640 0604  C:\WINDOWS\system32\d3d9.dll - ok
19:35:07.0640 0604  [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\07065999.sys
19:35:07.0640 0604  C:\WINDOWS\system32\drivers\07065999.sys - ok
19:35:07.0640 0604  [ A22D5A027F397E412CBB2D97E8661BFF ] C:\WINDOWS\system32\drivers\diag69xp.sys
19:35:07.0640 0604  C:\WINDOWS\system32\drivers\diag69xp.sys - ok
19:35:07.0640 0604  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
19:35:07.0640 0604  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
19:35:07.0640 0604  [ 3F14C041342E3FBA343F2A1D11E74BBA ] C:\WINDOWS\system32\net1.exe
19:35:07.0640 0604  C:\WINDOWS\system32\net1.exe - ok
19:35:07.0656 0604  [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
19:35:07.0656 0604  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
19:35:07.0656 0604  [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
19:35:07.0656 0604  C:\WINDOWS\system32\webcheck.dll - ok
19:35:07.0656 0604  [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
19:35:07.0656 0604  C:\WINDOWS\system32\mlang.dll - ok
19:35:07.0656 0604  [ 31B067C412FA1A9BAD3CA2A63D7DA440 ] C:\WINDOWS\system32\d3d8thk.dll
19:35:07.0656 0604  C:\WINDOWS\system32\d3d8thk.dll - ok
19:35:07.0656 0604  [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\Program Files\CyberLink\PowerDVD DX\MFC71.dll
19:35:07.0656 0604  C:\Program Files\CyberLink\PowerDVD DX\MFC71.dll - ok
19:35:07.0671 0604  [ 81ADBC4E31A721AEF23251A952049BA2 ] C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe
19:35:07.0671 0604  C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
19:35:07.0671 0604  [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
19:35:07.0671 0604  C:\WINDOWS\system32\stobject.dll - ok
19:35:07.0671 0604  [ 8C22C6088057A00EAE7D963600F26EEB ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
19:35:07.0671 0604  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
19:35:07.0671 0604  [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
19:35:07.0671 0604  C:\WINDOWS\system32\batmeter.dll - ok
19:35:07.0687 0604  [ 2DEDC3AFE3C49B5DAE717D0A9BEBF298 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
19:35:07.0687 0604  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
19:35:07.0687 0604  [ 67B539D844F804EBAC7A1E3828FDE709 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
19:35:07.0687 0604  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
19:35:07.0687 0604  [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
19:35:07.0687 0604  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
19:35:07.0687 0604  [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\CyberLink\PowerDVD DX\msvcr71.dll
19:35:07.0687 0604  C:\Program Files\CyberLink\PowerDVD DX\msvcr71.dll - ok
19:35:07.0687 0604  [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\Program Files\CyberLink\PowerDVD DX\msvcp71.dll
19:35:07.0687 0604  C:\Program Files\CyberLink\PowerDVD DX\msvcp71.dll - ok
19:35:07.0703 0604  [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
19:35:07.0703 0604  C:\WINDOWS\system32\dsound.dll - ok
19:35:07.0703 0604  [ D7D69F304A604387B86BE991CBF07663 ] C:\WINDOWS\system32\WPDShServiceObj.dll
19:35:07.0703 0604  C:\WINDOWS\system32\WPDShServiceObj.dll - ok
19:35:07.0703 0604  [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
19:35:07.0703 0604  C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
19:35:07.0703 0604  [ 62169BDD927A67C360A35F4526429B01 ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
19:35:07.0703 0604  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
19:35:07.0718 0604  [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\system32\mydocs.dll
19:35:07.0718 0604  C:\WINDOWS\system32\mydocs.dll - ok
19:35:07.0718 0604  [ 22D71D1DB6FC789A1CE8AC6963580259 ] C:\WINDOWS\system32\hhctrl.ocx
19:35:07.0718 0604  C:\WINDOWS\system32\hhctrl.ocx - ok
19:35:07.0718 0604  [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
19:35:07.0718 0604  C:\WINDOWS\system32\shfolder.dll - ok
19:35:07.0718 0604  [ 32D78DCABFB942275E01363D5232C77D ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
19:35:07.0718 0604  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
19:35:07.0718 0604  [ 3BDE52411DF2FE4252C9289F51CB0F7E ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
19:35:07.0718 0604  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
19:35:07.0734 0604  [ A687C458B80C7D55CBE39649D952ED2A ] C:\WINDOWS\system32\PortableDeviceTypes.dll
19:35:07.0734 0604  C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
19:35:07.0734 0604  [ 9ABB7CDAC0914579C86990048771B1B4 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
19:35:07.0734 0604  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
19:35:07.0734 0604  [ E132AD94798E72ACB650E985984C7F58 ] C:\WINDOWS\system32\PortableDeviceApi.dll
19:35:07.0734 0604  C:\WINDOWS\system32\PortableDeviceApi.dll - ok
19:35:07.0734 0604  [ A74DB1E8EBD71B5337DEFA078B4BBCEF ] C:\Program Files\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll
19:35:07.0734 0604  C:\Program Files\CyberLink\PowerDVD DX\Kernel\common\CLRCEngine3.dll - ok
19:35:07.0734 0604  [ F3DE10AABD5C7A1A186C9966F037D0C0 ] C:\WINDOWS\system32\mfc100u.dll
19:35:07.0734 0604  C:\WINDOWS\system32\mfc100u.dll - ok
19:35:07.0750 0604  [ D47913F993A0E3A0C9F1E88FD02E98C6 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
19:35:07.0750 0604  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
19:35:07.0750 0604  [ 43A0A24CD12B110DC93462D6B035C961 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
19:35:07.0750 0604  C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
19:35:07.0750 0604  [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
19:35:07.0750 0604  C:\WINDOWS\system32\rasdlg.dll - ok
19:35:07.0750 0604  [ 9B9F1C38D559047B8AC0DBA2D5FEBDE9 ] C:\WINDOWS\system32\ksuser.dll
19:35:07.0750 0604  C:\WINDOWS\system32\ksuser.dll - ok
19:35:07.0765 0604  [ 80776884E7A05D6DA5040926F82B0273 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
19:35:07.0765 0604  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
19:35:07.0765 0604  [ 2A2C442F00B45E01D4C882EEA69A01BC ] C:\WINDOWS\system32\mfc100enu.dll
19:35:07.0765 0604  C:\WINDOWS\system32\mfc100enu.dll - ok
19:35:07.0765 0604  [ 9EED448E2C6306BFD8B2B19063FC21A1 ] C:\Program Files\AVG\AVG2013\avgidpmx.dll
19:35:07.0765 0604  C:\Program Files\AVG\AVG2013\avgidpmx.dll - ok
19:35:07.0765 0604  [ C72CE5B8E86F4A0FDB4853747932C771 ] C:\Program Files\AVG\AVG2013\avgcmgr.exe
19:35:07.0765 0604  C:\Program Files\AVG\AVG2013\avgcmgr.exe - ok
19:35:07.0765 0604  [ BA02F01BE7ED88E8974C798ACB3075F5 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
19:35:07.0765 0604  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
19:35:07.0781 0604  [ 2FEF21EEE9934BB10165AA02E530183C ] C:\Program Files\AVG\AVG2013\avglngx.dll
19:35:07.0781 0604  C:\Program Files\AVG\AVG2013\avglngx.dll - ok
19:35:07.0781 0604  [ 8A6B867FC26B9850D446D2D86E5DB071 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
19:35:07.0781 0604  C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
19:35:07.0781 0604  [ ECE9B82C7696AD211F9BD64E41DF598B ] C:\Program Files\AVG\AVG2013\avguires.dll
19:35:07.0781 0604  C:\Program Files\AVG\AVG2013\avguires.dll - ok
19:35:07.0781 0604  [ 57E8C7791AB2596AFB8EE1273C2DF1F8 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
19:35:07.0781 0604  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
19:35:07.0781 0604  [ 730E90935150048A4E5F392FCDD49DA3 ] C:\Program Files\AVG\AVG2013\avgapps.dll
19:35:07.0781 0604  C:\Program Files\AVG\AVG2013\avgapps.dll - ok
19:35:07.0796 0604  [ 8A1CBAE63FC06EDAEDCCE1B23E9C9267 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
19:35:07.0796 0604  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
19:35:07.0796 0604  [ 58B61578D5704E9FC8B8A9861A85069D ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
19:35:07.0796 0604  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
19:35:07.0796 0604  [ C3C8D359D1FCB72941F75F8A302BFBDE ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
19:35:07.0796 0604  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
19:35:07.0796 0604  [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
19:35:07.0796 0604  C:\WINDOWS\system32\wbem\wmipcima.dll - ok
19:35:07.0796 0604  ============================================================
19:35:07.0796 0604  Scan finished
19:35:07.0796 0604  ============================================================
19:35:07.0906 3144  Detected object count: 259
19:35:07.0906 3144  Actual detected object count: 259
19:35:20.0312 3144  abp480n5 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  abp480n5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  ACPI ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  ACPI ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  ACPIEC ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  ACPIEC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  adpu160m ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  adpu160m ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  aec ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  aec ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  AFD ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  AFD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  agp440 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  agp440 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0312 3144  agpCPQ ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0312 3144  agpCPQ ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  Aha154x ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  Aha154x ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  aic78u2 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  aic78u2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  aic78xx ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  aic78xx ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  Alerter ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  Alerter ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  ALG ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  ALG ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  AliIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  AliIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  alim1541 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  alim1541 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0328 3144  amdagp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0328 3144  amdagp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  amsint ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  amsint ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  AppMgmt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  AppMgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  asc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  asc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  asc3350p ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  asc3350p ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  asc3550 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  asc3550 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  AsyncMac ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  AsyncMac ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  atapi ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  atapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  Atmarpc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  Atmarpc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0343 3144  AudioSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0343 3144  AudioSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  audstub ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  audstub ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  Beep ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  BITS ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  BITS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  Browser ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  Browser ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  cbidf ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  cbidf ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  cbidf2k ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  cbidf2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  cd20xrnt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  cd20xrnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  Cdaudio ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  Cdaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0359 3144  Cdfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0359 3144  Cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  Cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  Cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  cisvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  cisvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  ClipSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  ClipSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  CmdIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  CmdIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  Cpqarray ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  Cpqarray ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  CryptSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  CryptSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  dac2w2k ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  dac2w2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0375 3144  dac960nt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0375 3144  dac960nt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  DcomLaunch ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  DcomLaunch ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  Dhcp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  Dhcp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  Diag69xp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  Diag69xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  Disk ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  Disk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  dmboot ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  dmboot ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  dmio ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  dmio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  dmload ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  dmload ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  dmserver ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  dmserver ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0390 3144  DMusic ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0390 3144  DMusic ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  Dnscache ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  Dnscache ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  Dot3svc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  Dot3svc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  dpti2o ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  dpti2o ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  EapHost ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  EapHost ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  ERSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  ERSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  Eventlog ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  Eventlog ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0406 3144  EventSystem ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0406 3144  EventSystem ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Fastfat ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Fastfat ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  FastUserSwitchingCompatibility ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Fdc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Fdc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Fips ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Fips ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Flpydisk ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Flpydisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  FltMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  FltMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Fs_Rec ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Fs_Rec ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Ftdisk ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Ftdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0421 3144  Gpc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0421 3144  Gpc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  helpsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  helpsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  HidServ ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  HidServ ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  hidusb ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  hidusb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  hkmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  hkmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  hpn ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  hpn ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  HTTPFilter ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  HTTPFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0437 3144  i2omgmt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0437 3144  i2omgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  i2omp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  i2omp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  i8042prt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  i8042prt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  ialm ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  ialm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  Imapi ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  Imapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  ImapiService ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  ImapiService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  ini910u ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  ini910u ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  IntcAzAudAddService ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  IntcAzAudAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0453 3144  IntcHdmiAddService ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0453 3144  IntcHdmiAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  IntelIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  IntelIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  intelppm ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  intelppm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  Ip6Fw ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  Ip6Fw ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  IpFilterDriver ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  IpFilterDriver ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  IpInIp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  IpInIp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  IpNat ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  IpNat ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  IPSec ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  IPSec ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  IRENUM ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  IRENUM ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  isapnp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  isapnp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  Kbdclass ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  Kbdclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0468 3144  kbdhid ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0468 3144  kbdhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  kmixer ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  kmixer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  KSecDD ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  KSecDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  LanmanServer ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  LanmanServer ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  lanmanworkstation ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  lanmanworkstation ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  LANPkt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  LANPkt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  LmHosts ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  LmHosts ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  LPDSVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  LPDSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  Messenger ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  Messenger ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  mnmdd ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  mnmdd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  mnmsrvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  mnmsrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0484 3144  Modem ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0484 3144  Modem ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  Mouclass ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  Mouclass ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  mouhid ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  mouhid ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MountMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MountMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MQAC ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MQAC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  mraid35x ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  mraid35x ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MRxDAV ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MRxDAV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MRxSmb ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MRxSmb ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MSDTC ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MSDTC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  Msfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  Msfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MSKSSRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MSKSSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0500 3144  MSMQ ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0500 3144  MSMQ ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  MSMQTriggers ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  MSMQTriggers ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  MSPCLOCK ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  MSPCLOCK ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  MSPQM ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  MSPQM ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  mssmbios ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  mssmbios ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  Mup ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  Mup ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  napagent ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  napagent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  NDIS ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  NDIS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  NdisTapi ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  NdisTapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  Ndisuio ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  Ndisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  NdisWan ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  NdisWan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0515 3144  NDProxy ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0515 3144  NDProxy ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  NetBIOS ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  NetBIOS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  NetBT ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  NetBT ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  NetDDE ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  NetDDE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  NetDDEdsdm ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  NetDDEdsdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  Netlogon ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  Netlogon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  Netman ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  Netman ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  Nla ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  Nla ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  Npfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  Npfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  Ntfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  Ntfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  NtLmSsp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  NtLmSsp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0531 3144  NtmsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0531 3144  NtmsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  Null ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  Null ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  NwlnkFlt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  NwlnkFlt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  NwlnkFwd ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  NwlnkFwd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  Parport ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  Parport ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  PartMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  PartMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  ParVdm ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  ParVdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  PCI ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  PCI ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  PCIIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  PCIIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  Pcmcia ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  Pcmcia ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  perc2 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  perc2 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0546 3144  perc2hib ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0546 3144  perc2hib ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  PlugPlay ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  PlugPlay ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  PolicyAgent ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  PolicyAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  PptpMiniport ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  PptpMiniport ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  ProtectedStorage ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  ProtectedStorage ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  PSched ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  PSched ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  Ptilink ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  Ptilink ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  ql1080 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  ql1080 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  Ql10wnt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  Ql10wnt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  ql12160 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  ql12160 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0562 3144  ql1240 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0562 3144  ql1240 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  ql1280 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  ql1280 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  RasAcd ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  RasAcd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  RasAuto ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  RasAuto ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  Rasl2tp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  Rasl2tp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  RasMan ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  RasMan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  RasPppoe ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  RasPppoe ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  Raspti ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  Raspti ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  Rdbss ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  Rdbss ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  RDPCDD ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  RDPCDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  rdpdr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  rdpdr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0578 3144  RDPWD ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0578 3144  RDPWD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RDSessMgr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RDSessMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  redbook ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  redbook ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RemoteAccess ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RemoteAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RemoteRegistry ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RemoteRegistry ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RMCAST ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RMCAST ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RpcLocator ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RpcLocator ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RpcSs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RpcSs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RSVP ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RSVP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RTLE8023xp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RTLE8023xp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  RTLVLAN ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  RTLVLAN ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0593 3144  SamSs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0593 3144  SamSs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  SCardSvr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  SCardSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  Schedule ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  Schedule ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  Secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  Secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  seclogon ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  seclogon ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  SENS ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  SENS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  Serenum ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  Serenum ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  Serial ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  Serial ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  Sfloppy ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  Sfloppy ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  SharedAccess ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  SharedAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  ShellHWDetection ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  ShellHWDetection ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0609 3144  sisagp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0609 3144  sisagp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  SNMP ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  SNMP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  SNMPTRAP ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  SNMPTRAP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  Sparrow ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  Sparrow ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  splitter ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  splitter ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  Spooler ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  Spooler ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  sr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  sr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  srservice ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  srservice ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  Srv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  Srv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  SSDPSRV ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  SSDPSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0625 3144  stisvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0625 3144  stisvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  swenum ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  swenum ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  swmidi ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  swmidi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  symc810 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  symc810 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  symc8xx ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  symc8xx ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  sym_hi ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  sym_hi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  sym_u3 ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  sym_u3 ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  sysaudio ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  sysaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  SysmonLog ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  SysmonLog ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  TapiSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  TapiSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  tapoas ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  tapoas ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0640 3144  Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0640 3144  Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TDPIPE ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TDPIPE ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TDTCP ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TDTCP ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TermDD ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TermDD ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TermService ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TermService ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  Themes ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TlntSvr ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TlntSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TosIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TosIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  TrkWks ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  TrkWks ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  Udfs ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  Udfs ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  ultra ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  ultra ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0656 3144  Update ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0656 3144  Update ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  upnphost ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  upnphost ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  UPS ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  UPS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  usbccgp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  usbccgp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  usbehci ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  usbehci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  usbhub ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  usbhub ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  usbprint ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  usbprint ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  usbscan ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  usbscan ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  USBSTOR ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  USBSTOR ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  usbuhci ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  usbuhci ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0671 3144  VgaSave ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0671 3144  VgaSave ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  viaagp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  viaagp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  ViaIde ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  ViaIde ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  VolSnap ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  VolSnap ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  VSS ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  VSS ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  w32time ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  w32time ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  Wanarp ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  Wanarp ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  wdmaud ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  wdmaud ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  WebClient ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  WebClient ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  winmgmt ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  winmgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  WmdmPmSN ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  WmdmPmSN ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0687 3144  Wmi ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0687 3144  Wmi ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WmiApSrv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WmiApSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WS2IFSL ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WS2IFSL ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  wscsvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  wscsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  wuauserv ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  wuauserv ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WudfPf ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WudfPf ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WudfRd ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WudfRd ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WudfSvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WudfSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  WZCSVC ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  WZCSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  xmlprov ( UnsignedFile.Multi.Generic ) - skipped by user
19:35:20.0703 3144  xmlprov ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:35:20.0703 3144  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:35:20.0703 3144  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
19:36:09.0156 3044  Deinitialize success
 



#8 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:09 AM

Posted 04 April 2013 - 08:18 AM

Other than some unsigned files everything seems ok.

Please run this tool and post the log.

Download =http://public.avast.com/~gmerek/aswMBR.exe]aswMBR.exe to your desktop. Double click the aswMBR.exe to run it.
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.

Edited by nasdaq, 05 April 2013 - 07:20 AM.


#9 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 04 April 2013 - 09:45 AM

Thanks again Nasdaq,

 

The link you gave me is for this post and is not a link to dl anything.

 

nevermind, i am downloading and doing as instructed, will post results


Edited by classyhobo, 04 April 2013 - 09:48 AM.


#10 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 04 April 2013 - 09:56 AM

Thanks Nasdaq,
 
 here are the results from the log:
 
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-04-04 07:49:58
-----------------------------
07:49:58.625    OS Version: Windows 5.1.2600 Service Pack 3
07:49:58.625    Number of processors: 2 586 0x170A
07:49:58.625    ComputerName: DCB80DK1  UserName:
07:50:01.234    Initialize success
07:50:17.312    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:50:17.328    Disk 0 Vendor: ST380815 4.AD Size: 76293MB BusType: 3
07:50:17.515    Disk 0 MBR read successfully
07:50:17.515    Disk 0 MBR scan
07:50:17.531    Disk 0 Windows VISTA default MBR code
07:50:17.531    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       39 MB offset 63
07:50:17.531    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        76252 MB offset 81920
07:50:17.531    Disk 0 scanning sectors +156247952
07:50:17.593    Disk 0 scanning C:\WINDOWS\system32\drivers
07:50:22.609    Service scanning
07:50:32.921    Modules scanning
07:50:36.437    Module: C:\WINDOWS\System32\drivers\dxgthk.sys  **SUSPICIOUS**
07:50:37.593    Module: C:\WINDOWS\system32\ntdll.dll  **SUSPICIOUS**
07:50:37.593    Disk 0 trace - called modules:
07:50:37.640    ntkrnlpa.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
07:50:37.656    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a5cf8c8]
07:50:37.656    3 CLASSPNP.SYS[b98e8fd7] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0x8a5ef028]
07:50:37.656    Scan finished successfully
07:50:58.718    Disk 0 MBR has been saved successfully to "C:\Documents and Settings\GCC Bookstore\Desktop\MBR.dat"
07:50:58.718    The log file has been saved successfully to "C:\Documents and Settings\GCC Bookstore\Desktop\aswMBR.txt"

 

When I tried to attatch the mbr.dat file you requested it said it wasnt allowed.  So this is looking like a false positive then?  :)



#11 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:09 AM

Posted 05 April 2013 - 07:23 AM

Lets check these two files.

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2


If your operating system is 64 bit download this tool:
SystemLook_x64.exe
  • Double-click SystemLook.exe to run it.
  • Copy and paste the content of the following bold text into the main textfield:
    :filefind
    dxgthk.sys
    ntdll.dll
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
  • Note: The log can also be found on your Desktop entitled SystemLook.txt


#12 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 05 April 2013 - 05:38 PM

Hello Nasdaq, here are the results from the systemlook scan you requested :

 

SystemLook 30.07.11 by jpshortstuff
Log created at 15:30 on 05/04/2013 by GCC Bookstore
Administrator - Elevation successful

========== filefind ==========

Searching for "dxgthk.sys"
C:\WINDOWS\system32\drivers\dxgthk.sys    --a---- 3328 bytes    [16:16 25/04/2008]    [12:00 14/04/2008] A73F5D6705B1D820C19B18782E176EFD

Searching for "ntdll.dll"
C:\cmdcons\SYSTEM32\NTDLL.DLL    --a---- 708096 bytes    [07:56 04/08/2004]    [07:56 04/08/2004] BB5CBFFC096497506167BCE1D9690EF2
C:\I386\NTDLL.DLL    --a--c- 706048 bytes    [16:12 25/04/2008]    [12:00 14/04/2008] 27D9ED8CB8B62D1E0A8E5ACE6CF52E2F
C:\I386\SYSTEM32\NTDLL.DLL    --a--c- 706048 bytes    [16:14 25/04/2008]    [12:00 14/04/2008] 27D9ED8CB8B62D1E0A8E5ACE6CF52E2F
C:\Program Files\Dell\DBRM\osmedia\I386\NTDLL.DLL    --a--c- 706048 bytes    [08:49 15/08/2009]    [06:00 14/04/2008] 27D9ED8CB8B62D1E0A8E5ACE6CF52E2F
C:\Program Files\Dell\DBRM\osmedia\I386\SYSTEM32\NTDLL.DLL    --a--c- 706048 bytes    [08:49 15/08/2009]    [06:00 14/04/2008] 27D9ED8CB8B62D1E0A8E5ACE6CF52E2F
C:\WINDOWS\$hf_mig$\KB2393802\SP3QFE\ntdll.dll    --a--c- 718336 bytes    [17:52 17/02/2011]    [15:15 09/12/2010] 15CE4DBC22FAB90B3CA5352AF1FFF81C
C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\ntdll.dll    --a--c- 715264 bytes    [05:56 15/08/2009]    [10:56 09/02/2009] B0913005EE3FC15D7F72472D0B8A30EB
C:\WINDOWS\system32\ntdll.dll    --a---- 718336 bytes    [16:16 25/04/2008]    [15:15 09/12/2010] F8F0D25CA553E39DDE485D8FC7FCCE89
C:\WINDOWS\system32\dllcache\ntdll.dll    -----c- 718336 bytes    [05:56 15/08/2009]    [15:15 09/12/2010] F8F0D25CA553E39DDE485D8FC7FCCE89

-= EOF =-



#13 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:09 AM

Posted 06 April 2013 - 07:14 AM

dxgthk.sys is clean.
https://www.virustotal.com/en/file/c36486504c3a596fdca487143f6d3b43c0bee01321f6f1f3071976556533c419/analysis/1348017664/

===
ntdll.dll also clean.
https://www.virustotal.com/en/file/54df909101aaec63234a5c33b51d6689fef58b943942bffa9606864f43ec1085/analysis/

What we see is some false positive notices.

#14 classyhobo

classyhobo
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 08 April 2013 - 08:29 PM

Thanks for all your help.  It is very much appreciated.  You and this website are amazing.  :)



#15 nasdaq

nasdaq

  • Malware Response Team
  • 39,215 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:04:09 AM

Posted 09 April 2013 - 07:09 AM

If all is well:

Time for some housekeeping
  • The following will implement some cleanup procedures as well as reset System Restore points:
  • Click Start > Run and copy/paste the following bold text into the Run box and click OK:
  • ComboFix /Uninstall
===

To remove AdwCleaner.

Please double click on AdwCleaner.exe to run the tool.
Click on Uninstall.
Confirm with Yes.

If you decide to keep the AdwCleaner tool make sure to delete your version and download the latest before running it.

Delete the other tools we used.
You can Keep the DDS tool as most forum will ask to see a log before suggesting a fix.

Surf Safely, and Think Prevention!
===




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users