Hello
Here are the requested log files.
I had a little trouble with the spysweeper, it detected 4 things, 1 of which it was not able to remove, and the computer kept freezing up. I rebooted in safe mode to remove it. Rebooted again, and was presented with about a minute's worth of scrolling MISSING: (file names here) most of which were .gif files and .html files. These were somehow "hidden" to windows according to spysweeper. Hopefully that's OK.
Anyway, on to the log files.
--
Logfile of HijackThis v1.99.1
Scan saved at 12:52:25 PM, on 5/14/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\IBM\IBM Rapid Restore Ultra\rrpcsb.exe
C:\Program Files\Symantec\Ghost\ngctw32.exe
C:\WINDOWS\System32\QCONSVC.EXE
C:\WINDOWS\system32\RegSrvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
C:\WINDOWS\System32\TpScrLk.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\ThinkPad\UltraNav Wizard\UNavTray.EXE
C:\Program Files\ThinkPad\ConnectUtilities\QCTRAY.EXE
C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Intel\PROSetWired\NCS\PROSet\PRONoMgr.exe
C:\IBMTOOLS\UTILS\ibmprc.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
C:\Program Files\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
C:\Program Files\TraySoft\PhoneTray\PhoneTray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\Program Files\iolo\System Mechanic Professional 6\PopupBlocker.exe
C:\Program Files\Blue Security\bluefrog.exe
C:\Program Files\Google\Google Updater\1.1.489.27609\GoogleUpdater.exe
C:\Program Files\Infinite Mind LC\eyeQ\ARLaunch.exe
C:\Documents and Settings\marvin74\Desktop\HijackThis\HijackThis.exe
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TPKMAPHELPER] C:\Program Files\ThinkPad\Utilities\TpKmapAp.exe -helper
O4 - HKLM\..\Run: [TPHOTKEY] C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
O4 - HKLM\..\Run: [NGClient] C:\Program Files\Symantec\Ghost\ngctw32.exe
O4 - HKLM\..\Run: [TPKBDLED] C:\WINDOWS\System32\TpScrLk.exe
O4 - HKLM\..\Run: [BMMGAG] RunDll32 C:\PROGRA~1\ThinkPad\UTILIT~1\pwrmonit.dll,StartPwrMonitor
O4 - HKLM\..\Run: [BMMLREF] C:\Program Files\ThinkPad\Utilities\BMMLREF.EXE
O4 - HKLM\..\Run: [BMMMONWND] rundll32.exe C:\PROGRA~1\ThinkPad\UTILIT~1\BatInfEx.dll,BMMAutonomicMonitor
O4 - HKLM\..\Run: [BLOG] rundll32.exe C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [QCTray] C:\Program Files\ThinkPad\ConnectUtilities\QCTRAY.EXE
O4 - HKLM\..\Run: [QCWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE
O4 - HKLM\..\Run: [TP4EX] tp4ex.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [PRONoMgrWired] C:\Program Files\Intel\PROSetWired\NCS\PROSet\PRONoMgr.exe
O4 - HKLM\..\Run: [IBMPRC] C:\IBMTOOLS\UTILS\ibmprc.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [PhoneTray] C:\Program Files\TraySoft\PhoneTray\PhoneTray.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKCU\..\Run: [System Mechanic Popup Blocker] "C:\Program Files\iolo\System Mechanic Professional 6\PopupBlocker.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Blue Frog] C:\Program Files\Blue Security\bluefrog.exe
O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\1.1.489.27609\GoogleUpdater.exe
O4 - Global Startup: MiniEYE-MiniREAD Launch.lnk = C:\Program Files\Infinite Mind LC\eyeQ\ARLaunch.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_02\bin\npjpi141_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.1_02\bin\npjpi141_02.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O13 - DefaultPrefix:
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoft...free/asinst.cabO17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = csntprod.morrisville.edu
O17 - HKLM\Software\..\Telephony: DomainName = csntprod.morrisville.edu
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = csntprod.morrisville.edu
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = csntprod.morrisville.edu
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\
O20 - Winlogon Notify: QConGina - C:\WINDOWS\SYSTEM32\QConGina.dll
O20 - Winlogon Notify: Setup - C:\WINDOWS\system32\djdmo.dll (file missing)
O20 - Winlogon Notify: tphotkey - C:\WINDOWS\SYSTEM32\tphklock.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: IBM Rapid Restore Ultra Service - Unknown owner - C:\Program Files\IBM\IBM Rapid Restore Ultra\rrpcsb.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Symantec Ghost Client Agent (NGClient) - Symantec Corporation - C:\Program Files\Symantec\Ghost\ngctw32.exe
O23 - Service: IBM PSA Access Driver Control (PsaSrv) - Unknown owner - (no file)
O23 - Service: QCONSVC - IBM Corp. - C:\WINDOWS\System32\QCONSVC.EXE
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\system32\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\system32\S24EvMon.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: IBM KCU Service (TpKmpSVC) - Unknown owner - C:\WINDOWS\system32\TpKmpSVC.exe
--
********
11:00 AM: | Start of Session, Sunday, May 14, 2006 |
11:00 AM: Spy Sweeper started
11:00 AM: Sweep initiated using definitions version 677
11:00 AM: Starting Memory Sweep
11:02 AM: Memory Sweep Complete, Elapsed Time: 00:01:47
11:02 AM: Starting Registry Sweep
11:02 AM: Found Adware: enbrowser
11:02 AM: HKLM\software\system\sysold\ (ID = 926808)
11:02 AM: HKU\S-1-5-21-50867963-548222075-167591100-30592\software\system\sysuid\ (1 subtraces) (ID = 731748)
11:02 AM: Found Adware: zquest
11:02 AM: HKU\S-1-5-21-50867963-548222075-167591100-30592\software\microsoft\internet explorer\desktop\components\0\ || source (ID = 1140816)
11:02 AM: Registry Sweep Complete, Elapsed Time:00:00:17
11:02 AM: Starting Cookie Sweep
11:02 AM: Cookie Sweep Complete, Elapsed Time: 00:00:00
11:02 AM: Starting File Sweep
11:15 AM: howe.dll (ID = 290652)
11:49 AM: howe (ID = 290921)
11:50 AM: File Sweep Complete, Elapsed Time: 00:47:56
11:50 AM: Full Sweep has completed. Elapsed time 00:50:06
11:50 AM: Traces Found: 6
12:33 PM: Removal process initiated
12:33 PM: Quarantining All Traces: enbrowser
12:33 PM: Quarantining All Traces: zquest
12:33 PM: Removal process completed. Elapsed time 00:00:03
********
7:27 AM: | Start of Session, Sunday, May 14, 2006 |
7:27 AM: Spy Sweeper started
7:27 AM: Sweep initiated using definitions version 677
7:27 AM: Starting Memory Sweep
7:34 AM: Memory Sweep Complete, Elapsed Time: 00:07:03
7:34 AM: Starting Registry Sweep
7:34 AM: Found Adware: enbrowser
7:34 AM: HKLM\software\system\sysold\ (ID = 926808)
7:34 AM: Found Adware: clkoptimizer
7:34 AM: HKCR\clsid\{ce3a44d8-bc88-4d62-a890-42d96245f8d6}\ (6 subtraces) (ID = 1212644)
7:34 AM: HKLM\software\classes\clsid\{ce3a44d8-bc88-4d62-a890-42d96245f8d6}\ (6 subtraces) (ID = 1212651)
7:34 AM: HKCR\folder\shellex\columnhandlers\{ce3a44d8-bc88-4d62-a890-42d96245f8d6}\ (1 subtraces) (ID = 1212684)
7:34 AM: HKLM\software\classes\folder\shellex\columnhandlers\{ce3a44d8-bc88-4d62-a890-42d96245f8d6}\ (1 subtraces) (ID = 1212686)
7:34 AM: HKLM\software\microsoft\internet explorer\extensions\{4abf810a-f11d-4169-9d5f-7d274f2270a1}\ (2 subtraces) (ID = 1212690)
7:34 AM: HKU\S-1-5-21-50867963-548222075-167591100-30592\software\system\sysuid\ (1 subtraces) (ID = 731748)
7:34 AM: Found Adware: zquest
7:34 AM: HKU\S-1-5-21-50867963-548222075-167591100-30592\software\microsoft\internet explorer\desktop\components\0\ || source (ID = 1140816)
7:34 AM: Registry Sweep Complete, Elapsed Time:00:00:26
7:34 AM: Starting Cookie Sweep
7:34 AM: Cookie Sweep Complete, Elapsed Time: 00:00:00
7:34 AM: Starting File Sweep
7:52 AM: howe.dll (ID = 290652)
8:43 AM: howe (ID = 290921)
8:43 AM: Found System Monitor: potentially rootkit-masked files
8:43 AM: data23 (ID = 0)
8:43 AM: data24 (ID = 0)
8:43 AM: data25 (ID = 0)
8:43 AM: edb.log (ID = 0)
8:43 AM: fntcache.dat (ID = 0)
8:43 AM: pmemnt.sys (ID = 0)
8:43 AM: netlm.pnf (ID = 0)
8:43 AM: netlm56.pnf (ID = 0)
8:43 AM: netlnev2.pnf (ID = 0)
8:43 AM: netloop.pnf (ID = 0)
8:43 AM: netlpd.pnf (ID = 0)
8:43 AM: sam (ID = 0)
8:43 AM: netmadge.pnf (ID = 0)
8:43 AM: system (ID = 0)
8:43 AM: netmhzn5.pnf (ID = 0)
8:43 AM: netmscli.pnf (ID = 0)
8:43 AM: netnb.pnf (ID = 0)
8:43 AM: netnf3.pnf (ID = 0)
8:43 AM: netngr.pnf (ID = 0)
8:43 AM: netnm.pnf (ID = 0)
8:43 AM: netnovel.pnf (ID = 0)
8:43 AM: netnwcli.pnf (ID = 0)
8:43 AM: netnwlnk.pnf (ID = 0)
8:43 AM: netoc.pnf (ID = 0)
8:43 AM: netosi2c.pnf (ID = 0)
8:43 AM: netosi5.pnf (ID = 0)
8:43 AM: data26 (ID = 0)
8:43 AM: netpc100.pnf (ID = 0)
8:43 AM: netpnic.pnf (ID = 0)
8:43 AM: netpsa.pnf (ID = 0)
8:43 AM: data27 (ID = 0)
8:43 AM: data28 (ID = 0)
8:43 AM: data29 (ID = 0)
8:43 AM: netpschd.pnf (ID = 0)
8:43 AM: netpwr2.pnf (ID = 0)
8:43 AM: netrasa.pnf (ID = 0)
8:43 AM: netrass.pnf (ID = 0)
8:43 AM: netrast.pnf (ID = 0)
8:43 AM: netrlw2k.pnf (ID = 0)
8:43 AM: netrsvp.pnf (ID = 0)
8:43 AM: netrtoem.pnf (ID = 0)
8:43 AM: opera6.ini (ID = 0)
8:43 AM: netrtpnt.pnf (ID = 0)
8:43 AM: netrtsnt.pnf (ID = 0)
8:43 AM: data30 (ID = 0)
8:43 AM: data31 (ID = 0)
8:43 AM: data32 (ID = 0)
8:43 AM: data33 (ID = 0)
8:43 AM: data34 (ID = 0)
8:43 AM: data35 (ID = 0)
8:43 AM: data36 (ID = 0)
8:43 AM: data37 (ID = 0)
8:43 AM: data38 (ID = 0)
8:43 AM: data39 (ID = 0)
8:43 AM: data40 (ID = 0)
8:43 AM: data41 (ID = 0)
8:43 AM: data42 (ID = 0)
8:43 AM: data43 (ID = 0)
8:43 AM: data44 (ID = 0)
8:43 AM: data45 (ID = 0)
8:43 AM: data46 (ID = 0)
8:43 AM: netrwan.pnf (ID = 0)
8:43 AM: data47 (ID = 0)
8:43 AM: data48 (ID = 0)
8:43 AM: data49 (ID = 0)
8:43 AM: data50 (ID = 0)
8:43 AM: data51 (ID = 0)
8:43 AM: data52 (ID = 0)
8:43 AM: netsap.pnf (ID = 0)
8:43 AM: netserv.pnf (ID = 0)
8:43 AM: hints.dat (ID = 0)
8:43 AM: system.dat (ID = 0)
8:43 AM: netsis.pnf (ID = 0)
8:43 AM: netsk98.pnf (ID = 0)
8:43 AM: netsk_fp.pnf (ID = 0)
8:43 AM: netsla30.pnf (ID = 0)
8:43 AM: netsmc.pnf (ID = 0)
8:43 AM: netsnip.pnf (ID = 0)
8:43 AM: netsnmp.pnf (ID = 0)
8:43 AM: nettb155.pnf (ID = 0)
8:43 AM: data53 (ID = 0)
8:43 AM: nettcpip.pnf (ID = 0)
8:43 AM: nettdkb.pnf (ID = 0)
8:43 AM: data54 (ID = 0)
8:43 AM: data55 (ID = 0)
8:43 AM: data56 (ID = 0)
8:43 AM: nettiger.pnf (ID = 0)
8:43 AM: nettpro.pnf (ID = 0)
8:43 AM: nettpsmp.pnf (ID = 0)
8:43 AM: data57 (ID = 0)
8:43 AM: nettun.pnf (ID = 0)
8:43 AM: data58 (ID = 0)
8:43 AM: data59 (ID = 0)
8:43 AM: data60 (ID = 0)
8:43 AM: bt0.dat (ID = 0)
8:43 AM: netupnp.pnf (ID = 0)
8:43 AM: netupnph.pnf (ID = 0)
8:43 AM: netvt86.pnf (ID = 0)
8:43 AM: netw840.pnf (ID = 0)
8:43 AM: netw926.pnf (ID = 0)
8:43 AM: netw940.pnf (ID = 0)
8:43 AM: netwlan.pnf (ID = 0)
8:43 AM: netwlan2.pnf (ID = 0)
8:43 AM: netwv48.pnf (ID = 0)
8:43 AM: netwzc.pnf (ID = 0)
8:43 AM: netx500.pnf (ID = 0)
8:43 AM: data6 (ID = 0)
8:43 AM: tocfile (ID = 0)
8:43 AM: hashfile (ID = 0)
8:43 AM: info (ID = 0)
8:43 AM: data0 (ID = 0)
8:43 AM: data1 (ID = 0)
8:43 AM: data2 (ID = 0)
8:43 AM: data3 (ID = 0)
8:43 AM: data4 (ID = 0)
8:43 AM: data5 (ID = 0)
8:43 AM: data7 (ID = 0)
8:43 AM: data8 (ID = 0)
8:43 AM: data9 (ID = 0)
8:43 AM: data10 (ID = 0)
8:43 AM: data11 (ID = 0)
8:43 AM: data12 (ID = 0)
8:43 AM: data13 (ID = 0)
8:43 AM: data14 (ID = 0)
8:43 AM: data15 (ID = 0)
8:43 AM: data16 (ID = 0)
8:43 AM: data17 (ID = 0)
8:43 AM: data18 (ID = 0)
8:43 AM: data19 (ID = 0)
8:43 AM: data20 (ID = 0)
8:43 AM: data21 (ID = 0)
8:43 AM: data22 (ID = 0)
8:43 AM: tvt.txt (ID = 0)
8:43 AM: osfilter.txt (ID = 0)
8:43 AM: biosinfo.inf (ID = 0)
8:43 AM: ntdetect.com (ID = 0)
8:43 AM: setupldr.bin (ID = 0)
8:43 AM: spcmdcon.sys (ID = 0)
8:43 AM: txtsetup.sif (ID = 0)
8:43 AM: 8514fix.fon (ID = 0)
8:43 AM: 8514fixe.fon (ID = 0)
8:43 AM: 8514fixg.fon (ID = 0)
8:43 AM: 8514fixr.fon (ID = 0)
8:43 AM: 8514fixt.fon (ID = 0)
8:43 AM: 8514oem.fon (ID = 0)
8:43 AM: 8514oeme.fon (ID = 0)
8:43 AM: 8514oemg.fon (ID = 0)
8:43 AM: 8514oemr.fon (ID = 0)
8:43 AM: 8514oemt.fon (ID = 0)
8:43 AM: 8514sys.fon (ID = 0)
8:43 AM: 8514syse.fon (ID = 0)
8:43 AM: 8514sysg.fon (ID = 0)
8:43 AM: 8514sysr.fon (ID = 0)
8:43 AM: 8514syst.fon (ID = 0)
8:43 AM: 85855.fon (ID = 0)
8:43 AM: 85f1255.fon (ID = 0)
8:43 AM: 85f1256.fon (ID = 0)
8:43 AM: 85f874.fon (ID = 0)
8:43 AM: 85s1255.fon (ID = 0)
8:43 AM: 85s1256.fon (ID = 0)
8:43 AM: 85s874.fon (ID = 0)
8:43 AM: ahronbd.ttf (ID = 0)
8:43 AM: andlso.ttf (ID = 0)
8:43 AM: angsa.ttf (ID = 0)
8:43 AM: angsab.ttf (ID = 0)
8:43 AM: angsai.ttf (ID = 0)
8:43 AM: angsau.ttf (ID = 0)
8:43 AM: angsaub.ttf (ID = 0)
8:43 AM: angsaui.ttf (ID = 0)
8:43 AM: angsauz.ttf (ID = 0)
8:43 AM: angsaz.ttf (ID = 0)
8:43 AM: app850.fon (ID = 0)
8:43 AM: app852.fon (ID = 0)
8:43 AM: app855.fon (ID = 0)
8:43 AM: app857.fon (ID = 0)
8:43 AM: app866.fon (ID = 0)
8:43 AM: arial.ttf (ID = 0)
8:43 AM: arialbd.ttf (ID = 0)
8:43 AM: arialbi.ttf (ID = 0)
8:43 AM: ariali.ttf (ID = 0)
8:43 AM: ariblk.ttf (ID = 0)
8:43 AM: artrbdo.ttf (ID = 0)
8:43 AM: artro.ttf (ID = 0)
8:43 AM: browa.ttf (ID = 0)
8:43 AM: browab.ttf (ID = 0)
8:43 AM: browai.ttf (ID = 0)
8:43 AM: browau.ttf (ID = 0)
8:43 AM: browaub.ttf (ID = 0)
8:43 AM: browaui.ttf (ID = 0)
8:43 AM: browauz.ttf (ID = 0)
8:43 AM: browaz.ttf (ID = 0)
8:43 AM: cga40737.fon (ID = 0)
8:43 AM: cga40850.fon (ID = 0)
8:43 AM: cga40852.fon (ID = 0)
8:43 AM: cga40857.fon (ID = 0)
8:43 AM: cga40866.fon (ID = 0)
8:43 AM: cga40869.fon (ID = 0)
8:43 AM: cga40woa.fon (ID = 0)
8:43 AM: cga80737.fon (ID = 0)
8:43 AM: cga80850.fon (ID = 0)
8:43 AM: cga80852.fon (ID = 0)
8:43 AM: cga80857.fon (ID = 0)
8:43 AM: cga80866.fon (ID = 0)
8:43 AM: cga80869.fon (ID = 0)
8:43 AM: cga80woa.fon (ID = 0)
8:43 AM: comic.ttf (ID = 0)
8:43 AM: comicbd.ttf (ID = 0)
8:43 AM: cordia.ttf (ID = 0)
8:43 AM: cordiab.ttf (ID = 0)
8:43 AM: cordiai.ttf (ID = 0)
8:43 AM: cordiau.ttf (ID = 0)
8:43 AM: cordiaub.ttf (ID = 0)
8:43 AM: cordiaui.ttf (ID = 0)
8:43 AM: cordiauz.ttf (ID = 0)
8:43 AM: cordiaz.ttf (ID = 0)
8:43 AM: coue1255.fon (ID = 0)
8:43 AM: coue1256.fon (ID = 0)
8:43 AM: couf1255.fon (ID = 0)
8:43 AM: couf1256.fon (ID = 0)
8:43 AM: cour.ttf (ID = 0)
8:43 AM: courbd.ttf (ID = 0)
8:43 AM: courbi.ttf (ID = 0)
8:43 AM: coure.fon (ID = 0)
8:43 AM: couree.fon (ID = 0)
8:43 AM: coureg.fon (ID = 0)
8:43 AM: courer.fon (ID = 0)
8:43 AM: couret.fon (ID = 0)
8:43 AM: courf.fon (ID = 0)
8:43 AM: courfe.fon (ID = 0)
8:43 AM: courfg.fon (ID = 0)
8:43 AM: courfr.fon (ID = 0)
8:43 AM: courft.fon (ID = 0)
8:43 AM: couri.ttf (ID = 0)
8:43 AM: david.ttf (ID = 0)
8:43 AM: davidbd.ttf (ID = 0)
8:43 AM: davidtr.ttf (ID = 0)
8:43 AM: dos737.fon (ID = 0)
8:43 AM: dosapp.fon (ID = 0)
8:43 AM: ega40737.fon (ID = 0)
8:43 AM: ega40850.fon (ID = 0)
8:43 AM: ega40852.fon (ID = 0)
8:43 AM: ega40857.fon (ID = 0)
8:43 AM: ega40866.fon (ID = 0)
8:43 AM: ega40869.fon (ID = 0)
8:43 AM: ega40woa.fon (ID = 0)
8:43 AM: ega80737.fon (ID = 0)
8:43 AM: ega80850.fon (ID = 0)
8:43 AM: ega80852.fon (ID = 0)
8:43 AM: ega80857.fon (ID = 0)
8:43 AM: ega80866.fon (ID = 0)
8:43 AM: ega80869.fon (ID = 0)
8:43 AM: ega80woa.fon (ID = 0)
8:43 AM: estre.ttf (ID = 0)
8:43 AM: framd.ttf (ID = 0)
8:43 AM: framdit.ttf (ID = 0)
8:43 AM: frank.ttf (ID = 0)
8:43 AM: gautami.ttf (ID = 0)
8:43 AM: georgia.ttf (ID = 0)
8:43 AM: georgiab.ttf (ID = 0)
8:43 AM: georgiai.ttf (ID = 0)
8:43 AM: georgiaz.ttf (ID = 0)
8:43 AM: impact.ttf (ID = 0)
8:43 AM: latha.ttf (ID = 0)
8:43 AM: lucon.ttf (ID = 0)
8:43 AM: lvnm.ttf (ID = 0)
8:43 AM: lvnmbd.ttf (ID = 0)
8:43 AM: l_10646.ttf (ID = 0)
8:43 AM: mangal.ttf (ID = 0)
8:43 AM: marlett.ttf (ID = 0)
8:43 AM: micross.ttf (ID = 0)
8:43 AM: modern.fon (ID = 0)
8:43 AM: mriam.ttf (ID = 0)
8:43 AM: mriamc.ttf (ID = 0)
8:43 AM: mriamfx.ttf (ID = 0)
8:43 AM: mriamtr.ttf (ID = 0)
8:43 AM: msdlg874.fon (ID = 0)
8:43 AM: mvboli.ttf (ID = 0)
8:43 AM: nrkis.ttf (ID = 0)
8:43 AM: pala.ttf (ID = 0)
8:43 AM: palab.ttf (ID = 0)
8:43 AM: palabi.ttf (ID = 0)
8:43 AM: palai.ttf (ID = 0)
8:43 AM: raavi.ttf (ID = 0)
8:43 AM: rod.ttf (ID = 0)
8:43 AM: rodtr.ttf (ID = 0)
8:43 AM: roman.fon (ID = 0)
8:43 AM: script.fon (ID = 0)
8:43 AM: sere1255.fon (ID = 0)
8:43 AM: sere1256.fon (ID = 0)
8:43 AM: serf1255.fon (ID = 0)
8:43 AM: serf1256.fon (ID = 0)
8:43 AM: serife.fon (ID = 0)
8:43 AM: serifee.fon (ID = 0)
8:43 AM: serifeg.fon (ID = 0)
8:43 AM: serifer.fon (ID = 0)
8:43 AM: serifet.fon (ID = 0)
8:43 AM: seriff.fon (ID = 0)
8:43 AM: seriffe.fon (ID = 0)
8:43 AM: seriffg.fon (ID = 0)
8:43 AM: seriffr.fon (ID = 0)
8:43 AM: serifft.fon (ID = 0)
8:43 AM: shruti.ttf (ID = 0)
8:43 AM: simpbdo.ttf (ID = 0)
8:43 AM: simpfxo.ttf (ID = 0)
8:43 AM: simpo.ttf (ID = 0)
8:43 AM: smae1255.fon (ID = 0)
8:43 AM: smae1256.fon (ID = 0)
8:43 AM: smaf1255.fon (ID = 0)
8:43 AM: smaf1256.fon (ID = 0)
8:43 AM: smalle.fon (ID = 0)
8:43 AM: smallee.fon (ID = 0)
8:43 AM: smalleg.fon (ID = 0)
8:43 AM: smaller.fon (ID = 0)
8:43 AM: smallet.fon (ID = 0)
8:43 AM: smallf.fon (ID = 0)
8:43 AM: smallfe.fon (ID = 0)
8:43 AM: smallfg.fon (ID = 0)
8:43 AM: smallfr.fon (ID = 0)
8:43 AM: smallft.fon (ID = 0)
8:43 AM: ssee1255.fon (ID = 0)
8:43 AM: ssee1256.fon (ID = 0)
8:43 AM: ssee874.fon (ID = 0)
8:43 AM: ssef1255.fon (ID = 0)
8:43 AM: ssef1256.fon (ID = 0)
8:43 AM: ssef874.fon (ID = 0)
8:43 AM: sserife.fon (ID = 0)
8:43 AM: sserifee.fon (ID = 0)
8:43 AM: sserifeg.fon (ID = 0)
8:43 AM: sserifer.fon (ID = 0)
8:43 AM: sserifet.fon (ID = 0)
8:43 AM: sseriff.fon (ID = 0)
8:43 AM: sseriffe.fon (ID = 0)
8:43 AM: sseriffg.fon (ID = 0)
8:43 AM: sseriffr.fon (ID = 0)
8:43 AM: sserifft.fon (ID = 0)
8:43 AM: sylfaen.ttf (ID = 0)
8:43 AM: symbol.ttf (ID = 0)
8:43 AM: tahoma.ttf (ID = 0)
8:43 AM: tahomabd.ttf (ID = 0)
8:43 AM: times.ttf (ID = 0)
8:43 AM: timesbd.ttf (ID = 0)
8:43 AM: timesbi.ttf (ID = 0)
8:43 AM: timesi.ttf (ID = 0)
8:43 AM: tradbdo.ttf (ID = 0)
8:43 AM: trado.ttf (ID = 0)
8:43 AM: trebuc.ttf (ID = 0)
8:43 AM: trebucbd.ttf (ID = 0)
8:43 AM: trebucbi.ttf (ID = 0)
8:43 AM: trebucit.ttf (ID = 0)
8:43 AM: tunga.ttf (ID = 0)
8:43 AM: upcdb.ttf (ID = 0)
8:43 AM: upcdbi.ttf (ID = 0)
8:43 AM: upcdi.ttf (ID = 0)
8:43 AM: upcdl.ttf (ID = 0)
8:43 AM: upceb.ttf (ID = 0)
8:43 AM: upcebi.ttf (ID = 0)
8:43 AM: upcei.ttf (ID = 0)
8:43 AM: upcel.ttf (ID = 0)
8:43 AM: upcfb.ttf (ID = 0)
8:43 AM: upcfbi.ttf (ID = 0)
8:43 AM: upcfi.ttf (ID = 0)
8:44 AM: upcfl.ttf (ID = 0)
8:44 AM: upcib.ttf (ID = 0)
8:44 AM: upcibi.ttf (ID = 0)
8:44 AM: upcii.ttf (ID = 0)
8:44 AM: upcil.ttf (ID = 0)
8:44 AM: upcjb.ttf (ID = 0)
8:44 AM: upcjbi.ttf (ID = 0)
8:44 AM: upcji.ttf (ID = 0)
8:44 AM: upcjl.ttf (ID = 0)
8:44 AM: upckb.ttf (ID = 0)
8:44 AM: upckbi.ttf (ID = 0)
8:44 AM: upcki.ttf (ID = 0)
8:44 AM: upckl.ttf (ID = 0)
8:44 AM: upclb.ttf (ID = 0)
8:44 AM: upclbi.ttf (ID = 0)
8:44 AM: upcli.ttf (ID = 0)
8:44 AM: upcll.ttf (ID = 0)
8:44 AM: verdana.ttf (ID = 0)
8:44 AM: verdanab.ttf (ID = 0)
8:44 AM: verdanai.ttf (ID = 0)
8:44 AM: verdanaz.ttf (ID = 0)
8:44 AM: vga737.fon (ID = 0)
8:44 AM: vga850.fon (ID = 0)
8:44 AM: vga852.fon (ID = 0)
8:44 AM: vga855.fon (ID = 0)
8:44 AM: vga857.fon (ID = 0)
8:44 AM: vga866.fon (ID = 0)
8:44 AM: vga869.fon (ID = 0)
8:44 AM: vgaf1255.fon (ID = 0)
8:44 AM: vgaf1256.fon (ID = 0)
8:44 AM: vgaf874.fon (ID = 0)
8:44 AM: vgafix.fon (ID = 0)
8:44 AM: vgafixe.fon (ID = 0)
8:44 AM: vgafixg.fon (ID = 0)
8:44 AM: vgafixr.fon (ID = 0)
8:44 AM: vgafixt.fon (ID = 0)
8:44 AM: vgaoem.fon (ID = 0)
8:44 AM: vgas1255.fon (ID = 0)
8:44 AM: vgas1256.fon (ID = 0)
8:44 AM: vgas874.fon (ID = 0)
8:44 AM: vgasys.fon (ID = 0)
8:44 AM: vgasyse.fon (ID = 0)
8:44 AM: vgasysg.fon (ID = 0)
8:44 AM: vgasysr.fon (ID = 0)
8:44 AM: vgasyst.fon (ID = 0)
8:44 AM: webdings.ttf (ID = 0)
8:44 AM: wingding.ttf (ID = 0)
8:44 AM: agt0401.hlp (ID = 0)
8:44 AM: agt0405.hlp (ID = 0)
8:44 AM: agt0406.hlp (ID = 0)
8:44 AM: agt0407.hlp (ID = 0)
8:44 AM: agt0408.hlp (ID = 0)
8:44 AM: agt040b.hlp (ID = 0)
8:44 AM: agt040c.hlp (ID = 0)
8:44 AM: agt040d.hlp (ID = 0)
8:44 AM: agt040e.hlp (ID = 0)
8:44 AM: agt0410.hlp (ID = 0)
8:44 AM: agt0413.hlp (ID = 0)
8:44 AM: agt0414.hlp (ID = 0)
8:44 AM: agt0415.hlp (ID = 0)
8:44 AM: agt0416.hlp (ID = 0)
8:44 AM: agt0419.hlp (ID = 0)
8:44 AM: agt041d.hlp (ID = 0)
8:44 AM: agt041f.hlp (ID = 0)
8:44 AM: agt0816.hlp (ID = 0)
8:44 AM: agt0c0a.hlp (ID = 0)
8:44 AM: b57win32.inf (ID = 0)
8:44 AM: b57xp32.inf (ID = 0)
8:44 AM: bcm4sbxp.inf (ID = 0)
8:44 AM: e1000325.inf (ID = 0)
8:44 AM: e100b325.inf (ID = 0)
8:44 AM: e101d325.inf (ID = 0)
8:44 AM: font.inf (ID = 0)
8:44 AM: intl.inf (ID = 0)
8:44 AM: layout.inf (ID = 0)
8:44 AM: net10.inf (ID = 0)
8:44 AM: net1394.inf (ID = 0)
8:44 AM: net21x4.inf (ID = 0)
8:44 AM: net3c556.inf (ID = 0)
8:44 AM: net3c589.inf (ID = 0)
8:44 AM: net3c985.inf (ID = 0)
8:44 AM: net3sr.inf (ID = 0)
8:44 AM: net5515n.inf (ID = 0)
8:44 AM: net557.inf (ID = 0)
8:44 AM: net559ib.inf (ID = 0)
8:44 AM: net575nt.inf (ID = 0)
8:44 AM: net650d.inf (ID = 0)
8:44 AM: net656c5.inf (ID = 0)
8:44 AM: net656n5.inf (ID = 0)
8:44 AM: net713.inf (ID = 0)
8:44 AM: net83820.inf (ID = 0)
8:44 AM: net8511.inf (ID = 0)
8:44 AM: netac300.inf (ID = 0)
8:44 AM: netali.inf (ID = 0)
8:44 AM: netambi.inf (ID = 0)
8:44 AM: netamd.inf (ID = 0)
8:44 AM: netamd2.inf (ID = 0)
8:44 AM: netamdhl.inf (ID = 0)
8:44 AM: netan983.inf (ID = 0)
8:44 AM: netana.inf (ID = 0)
8:44 AM: netasp2k.inf (ID = 0)
8:44 AM: netauni.inf (ID = 0)
8:44 AM: netb57xp.inf (ID = 0)
8:44 AM: netbcm4e.inf (ID = 0)
8:44 AM: netbcm4p.inf (ID = 0)
8:44 AM: netbcm4u.inf (ID = 0)
8:44 AM: netbeac.inf (ID = 0)
8:44 AM: netbrdgm.inf (ID = 0)
8:44 AM: netbrdgs.inf (ID = 0)
8:44 AM: netbrzw.inf (ID = 0)
8:44 AM: netcb102.inf (ID = 0)
8:44 AM: netcb325.inf (ID = 0)
8:44 AM: netcbe.inf (ID = 0)
8:44 AM: netce2.inf (ID = 0)
8:44 AM: netce3.inf (ID = 0)
8:44 AM: netcem28.inf (ID = 0)
8:44 AM: netcem33.inf (ID = 0)
8:44 AM: netcem56.inf (ID = 0)
8:44 AM: netcicap.inf (ID = 0)
8:44 AM: netcis.inf (ID = 0)
8:44 AM: netclass.inf (ID = 0)
8:44 AM: netcpqc.inf (ID = 0)
8:44 AM: netcpqg.inf (ID = 0)
8:44 AM: netcpqi.inf (ID = 0)
8:44 AM: netcpqmt.inf (ID = 0)
8:44 AM: netctmrk.inf (ID = 0)
8:44 AM: netdav.inf (ID = 0)
8:44 AM: netdefxa.inf (ID = 0)
8:44 AM: netdf650.inf (ID = 0)
8:44 AM: netdgdxb.inf (ID = 0)
8:44 AM: netdlh5x.inf (ID = 0)
8:44 AM: netdm.inf (ID = 0)
8:44 AM: nete1000.inf (ID = 0)
8:44 AM: nete100i.inf (ID = 0)
8:44 AM: netejxmp.inf (ID = 0)
8:44 AM: netel515.inf (ID = 0)
8:44 AM: netel574.inf (ID = 0)
8:44 AM: netel5x9.inf (ID = 0)
8:44 AM: netel90a.inf (ID = 0)
8:44 AM: netel90b.inf (ID = 0)
8:44 AM: netel980.inf (ID = 0)
8:44 AM: netel99x.inf (ID = 0)
8:44 AM: netepicn.inf (ID = 0)
8:44 AM: netepro.inf (ID = 0)
8:44 AM: netepvcm.inf (ID = 0)
8:44 AM: netepvcp.inf (ID = 0)
8:44 AM: netex10.inf (ID = 0)
8:44 AM: netf56n5.inf (ID = 0)
8:44 AM: netfa312.inf (ID = 0)
8:44 AM: netfa410.inf (ID = 0)
8:44 AM: netfjvi.inf (ID = 0)
8:44 AM: netfjvj.inf (ID = 0)
8:44 AM: netfore.inf (ID = 0)
8:44 AM: netforeh.inf (ID = 0)
8:44 AM: netfxocm.inf (ID = 0)
8:44 AM: netgpc.inf (ID = 0)
8:44 AM: netias.inf (ID = 0)
8:44 AM: netibm.inf (ID = 0)
8:44 AM: netibm2.inf (ID = 0)
8:44 AM: netip6.inf (ID = 0)
8:44 AM: netiprip.inf (ID = 0)
8:44 AM: netirda.inf (ID = 0)
8:44 AM: netirsir.inf (ID = 0)
8:44 AM: netklsi.inf (ID = 0)
8:44 AM: netktc.inf (ID = 0)
8:44 AM: netlanem.inf (ID = 0)
8:44 AM: netlanep.inf (ID = 0)
8:44 AM: netlm.inf (ID = 0)
8:44 AM: netlm56.inf (ID = 0)
8:44 AM: netlnev2.inf (ID = 0)
8:44 AM: netloop.inf (ID = 0)
8:44 AM: netlpd.inf (ID = 0)
8:44 AM: netmadge.inf (ID = 0)
8:44 AM: netmhzn5.inf (ID = 0)
8:44 AM: netmscli.inf (ID = 0)
8:44 AM: netnb.inf (ID = 0)
8:44 AM: netnf3.inf (ID = 0)
8:44 AM: netngr.inf (ID = 0)
8:44 AM: netnm.inf (ID = 0)
8:44 AM: netnovel.inf (ID = 0)
8:44 AM: netnwcli.inf (ID = 0)
8:44 AM: netnwlnk.inf (ID = 0)
8:44 AM: netoc.inf (ID = 0)
8:44 AM: netosi2c.inf (ID = 0)
8:44 AM: netosi5.inf (ID = 0)
8:44 AM: netpc100.inf (ID = 0)
8:44 AM: netpnic.inf (ID = 0)
8:44 AM: netpsa.inf (ID = 0)
8:44 AM: netpschd.inf (ID = 0)
8:44 AM: netpwr2.inf (ID = 0)
8:44 AM: netrasa.inf (ID = 0)
8:44 AM: netrass.inf (ID = 0)
8:44 AM: netrast.inf (ID = 0)
8:44 AM: netrlw2k.inf (ID = 0)
8:44 AM: netrsvp.inf (ID = 0)
8:44 AM: netrtoem.inf (ID = 0)
8:44 AM: netrtpnt.inf (ID = 0)
8:44 AM: netrtsnt.inf (ID = 0)
8:44 AM: netrwan.inf (ID = 0)
8:44 AM: netsap.inf (ID = 0)
8:44 AM: netserv.inf (ID = 0)
8:44 AM: netsis.inf (ID = 0)
8:44 AM: netsk98.inf (ID = 0)
8:44 AM: netsk_fp.inf (ID = 0)
8:44 AM: netsla30.inf (ID = 0)
8:44 AM: netsmc.inf (ID = 0)
8:44 AM: netsnip.inf (ID = 0)
8:44 AM: netsnmp.inf (ID = 0)
8:44 AM: nettb155.inf (ID = 0)
8:44 AM: nettcpip.inf (ID = 0)
8:44 AM: nettdkb.inf (ID = 0)
8:44 AM: nettiger.inf (ID = 0)
8:44 AM: nettpro.inf (ID = 0)
8:44 AM: nettpsmp.inf (ID = 0)
8:44 AM: nettun.inf (ID = 0)
8:44 AM: netupnp.inf (ID = 0)
8:44 AM: netupnph.inf (ID = 0)
8:44 AM: netvt86.inf (ID = 0)
8:44 AM: netw840.inf (ID = 0)
8:44 AM: netw926.inf (ID = 0)
8:44 AM: netw940.inf (ID = 0)
8:44 AM: netwlan.inf (ID = 0)
8:44 AM: netwlan2.inf (ID = 0)
8:44 AM: netwv48.inf (ID = 0)
8:44 AM: netwzc.inf (ID = 0)
8:44 AM: netx500.inf (ID = 0)
8:44 AM: netx56n5.inf (ID = 0)
8:44 AM: netxcpq.inf (ID = 0)
8:44 AM: ramdrv.inf (ID = 0)
8:44 AM: agt0401.dll (ID = 0)
8:44 AM: agt0405.dll (ID = 0)
8:44 AM: agt0406.dll (ID = 0)
8:44 AM: agt0407.dll (ID = 0)
8:44 AM: agt0408.dll (ID = 0)
8:44 AM: agt040b.dll (ID = 0)
8:44 AM: agt040c.dll (ID = 0)
8:44 AM: agt040d.dll (ID = 0)
8:44 AM: agt040e.dll (ID = 0)
8:44 AM: agt0410.dll (ID = 0)
8:44 AM: agt0413.dll (ID = 0)
8:44 AM: agt0414.dll (ID = 0)
8:44 AM: agt0415.dll (ID = 0)
8:44 AM: agt0416.dll (ID = 0)
8:44 AM: agt0419.dll (ID = 0)
8:44 AM: agt041d.dll (ID = 0)
8:44 AM: agt041f.dll (ID = 0)
8:44 AM: agt0816.dll (ID = 0)
8:44 AM: agt0c0a.dll (ID = 0)
8:44 AM: aclui.dll (ID = 0)
8:44 AM: activeds.dll (ID = 0)
8:44 AM: adsldpc.dll (ID = 0)
8:44 AM: advapi32.dll (ID = 0)
8:44 AM: alrsvc.dll (ID = 0)
8:44 AM: apphelp.dll (ID = 0)
8:44 AM: atl.dll (ID = 0)
8:44 AM: attrib.exe (ID = 0)
8:44 AM: authz.dll (ID = 0)
8:44 AM: autochk.exe (ID = 0)
8:44 AM: autofmt.exe (ID = 0)
8:44 AM: avmc20.dll (ID = 0)
8:44 AM: avmcapi.dll (ID = 0)
8:44 AM: avmenum.dll (ID = 0)
8:44 AM: basesrv.dll (ID = 0)
8:44 AM: biosinfo.inf (ID = 0)
8:44 AM: bootvid.dll (ID = 0)
8:44 AM: browser.dll (ID = 0)
8:44 AM: browseui.dll (ID = 0)
8:44 AM: c218tnt.cod (ID = 0)
8:44 AM: c320tnt.cod (ID = 0)
8:44 AM: cabinet.dll (ID = 0)
8:44 AM: cacls.exe (ID = 0)
8:44 AM: certcli.dll (ID = 0)
8:44 AM: cfgmgr32.dll (ID = 0)
8:44 AM: chkdsk.exe (ID = 0)
8:44 AM: clb.dll (ID = 0)
8:44 AM: clipsrv.exe (ID = 0)
8:44 AM: clusapi.dll (ID = 0)
8:44 AM: cmd.exe (ID = 0)
8:44 AM: cnbjmon.dll (ID = 0)
8:44 AM: comctl32.dll (ID = 0)
8:44 AM: comdlg32.dll (ID = 0)
8:44 AM: credui.dll (ID = 0)
8:44 AM: crypt32.dll (ID = 0)
8:44 AM: cryptdll.dll (ID = 0)
8:44 AM: cryptnet.dll (ID = 0)
8:44 AM: cryptui.dll (ID = 0)
8:44 AM: cscdll.dll (ID = 0)
8:44 AM: csrsrv.dll (ID = 0)
8:44 AM: csrss.exe (ID = 0)
8:44 AM: ctmasetp.dll (ID = 0)
8:44 AM: ctmrclas.dll (ID = 0)
8:44 AM: ctype.nls (ID = 0)
8:44 AM: c_037.nls (ID = 0)
8:44 AM: c_10000.nls (ID = 0)
8:44 AM: c_10004.nls (ID = 0)
8:44 AM: c_10005.nls (ID = 0)
8:44 AM: c_10006.nls (ID = 0)
8:44 AM: c_10007.nls (ID = 0)
8:44 AM: c_10010.nls (ID = 0)
8:44 AM: c_10017.nls (ID = 0)
8:44 AM: c_10021.nls (ID = 0)
8:44 AM: c_10029.nls (ID = 0)
8:44 AM: c_10079.nls (ID = 0)
8:44 AM: c_10081.nls (ID = 0)
8:44 AM: c_10082.nls (ID = 0)
8:44 AM: c_1026.nls (ID = 0)
8:44 AM: c_1250.nls (ID = 0)
8:44 AM: c_1251.nls (ID = 0)
8:44 AM: c_1252.nls (ID = 0)
8:44 AM: c_1253.nls (ID = 0)
8:44 AM: c_1254.nls (ID = 0)
8:44 AM: c_1255.nls (ID = 0)
8:44 AM: c_1256.nls (ID = 0)
8:44 AM: c_1257.nls (ID = 0)
8:44 AM: c_1258.nls (ID = 0)
8:44 AM: c_20127.nls (ID = 0)
8:44 AM: c_20261.nls (ID = 0)
8:44 AM: c_20866.nls (ID = 0)
8:44 AM: c_20905.nls (ID = 0)
8:44 AM: c_21866.nls (ID = 0)
8:44 AM: c_28592.nls (ID = 0)
8:44 AM: c_28593.nls (ID = 0)
8:44 AM: c_28595.nls (ID = 0)
8:44 AM: c_28596.nls (ID = 0)
8:44 AM: c_28597.nls (ID = 0)
8:44 AM: c_28598.nls (ID = 0)
8:44 AM: c_28599.nls (ID = 0)
8:44 AM: c_28605.nls (ID = 0)
8:44 AM: c_437.nls (ID = 0)
8:44 AM: c_500.nls (ID = 0)
8:44 AM: c_708.nls (ID = 0)
8:44 AM: c_720.nls (ID = 0)
8:44 AM: c_737.nls (ID = 0)
8:44 AM: c_775.nls (ID = 0)
8:44 AM: c_850.nls (ID = 0)
8:44 AM: c_852.nls (ID = 0)
8:44 AM: c_855.nls (ID = 0)
8:44 AM: c_857.nls (ID = 0)
8:44 AM: c_860.nls (ID = 0)
8:44 AM: c_861.nls (ID = 0)
8:44 AM: c_862.nls (ID = 0)
8:44 AM: c_863.nls (ID = 0)
8:44 AM: c_864.nls (ID = 0)
8:44 AM: c_865.nls (ID = 0)
8:44 AM: c_866.nls (ID = 0)
8:44 AM: c_869.nls (ID = 0)
8:44 AM: c_874.nls (ID = 0)
8:44 AM: c_875.nls (ID = 0)
8:44 AM: c_932.nls (ID = 0)
8:44 AM: c_936.nls (ID = 0)
8:44 AM: c_949.nls (ID = 0)
8:44 AM: c_950.nls (ID = 0)
8:44 AM: c_iscii.dll (ID = 0)
8:44 AM: dbgeng.dll (ID = 0)
8:44 AM: dbghelp.dll (ID = 0)
8:44 AM: dciman32.dll (ID = 0)
8:44 AM: ddraw.dll (ID = 0)
8:44 AM: devmgr.dll (ID = 0)
8:44 AM: dgclass.dll (ID = 0)
8:44 AM: dgnet.dll (ID = 0)
8:44 AM: dgrpsetu.dll (ID = 0)
8:44 AM: dhcpcsvc.dll (ID = 0)
8:44 AM: diapi2.dll (ID = 0)
8:44 AM: diapi232.dll (ID = 0)
8:44 AM: diapi2nt.dll (ID = 0)
8:44 AM: diskpart.exe (ID = 0)
8:44 AM: disrvpp.dll (ID = 0)
8:44 AM: disrvsu.dll (ID = 0)
8:44 AM: ditrace.exe (ID = 0)
8:44 AM: divaprop.dll (ID = 0)
8:44 AM: divasu.dll (ID = 0)
8:44 AM: dmadmin.exe (ID = 0)
8:44 AM: dmconfig.dll (ID = 0)
8:44 AM: dmintf.dll (ID = 0)
8:44 AM: dmserver.dll (ID = 0)
8:44 AM: dmutil.dll (ID = 0)
8:44 AM: dnsapi.dll (ID = 0)
8:44 AM: dnsrslvr.dll (ID = 0)
8:44 AM: duser.dll (ID = 0)
8:44 AM: e1000325.din (ID = 0)
8:44 AM: e1000msg.dll (ID = 0)
8:44 AM: e100b325.din (ID = 0)
8:44 AM: e100bmsg.dll (ID = 0)
8:44 AM: eqnclass.dll (ID = 0)
8:44 AM: eqndiag.exe (ID = 0)
8:44 AM: eqnlogr.exe (ID = 0)
8:44 AM: eqnloop.exe (ID = 0)
8:44 AM: esent.dll (ID = 0)
8:44 AM: expand.exe (ID = 0)
8:44 AM: factory.exe (ID = 0)
8:44 AM: format.com (ID = 0)
8:44 AM: fpnpbase.sys (ID = 0)
8:44 AM: fpnpbase.usa (ID = 0)
8:44 AM: framebuf.dll (ID = 0)
8:44 AM: ftlx041e.dll (ID = 0)
8:44 AM: fus2base.sys (ID = 0)
8:44 AM: gdi32.dll (ID = 0)
8:44 AM: gptext.dll (ID = 0)
8:44 AM: hal.dll (ID = 0)
8:44 AM: halaacpi.dll (ID = 0)
8:44 AM: halacpi.dll (ID = 0)
8:44 AM: halapic.dll (ID = 0)
8:44 AM: halmacpi.dll (ID = 0)
8:44 AM: halmps.dll (ID = 0)
8:44 AM: halsp.dll (ID = 0)
8:44 AM: hccoin.dll (ID = 0)
8:44 AM: icmp.dll (ID = 0)
8:44 AM: ifsutil.dll (ID = 0)
8:44 AM: imagehlp.dll (ID = 0)
8:44 AM: imgutil.dll (ID = 0)
8:44 AM: imm32.dll (ID = 0)
8:44 AM: initpki.dll (ID = 0)
8:44 AM: intelnic.dll (ID = 0)
8:44 AM: intl.cpl (ID = 0)
8:44 AM: io8ports.dll (ID = 0)
8:44 AM: iologmsg.dll (ID = 0)
8:44 AM: ipconfig.exe (ID = 0)
8:44 AM: iphlpapi.dll (ID = 0)
8:44 AM: ipsecsnp.dll (ID = 0)
8:44 AM: kbda1.dll (ID = 0)
8:44 AM: kbda2.dll (ID = 0)
8:44 AM: kbda3.dll (ID = 0)
8:44 AM: kbdal.dll (ID = 0)
8:44 AM: kbdarme.dll (ID = 0)
8:44 AM: kbdarmw.dll (ID = 0)
8:44 AM: kbdaze.dll (ID = 0)
8:44 AM: kbdazel.dll (ID = 0)
8:44 AM: kbdbe.dll (ID = 0)
8:44 AM: kbdblr.dll (ID = 0)
8:44 AM: kbdbr.dll (ID = 0)
8:44 AM: kbdbu.dll (ID = 0)
8:44 AM: kbdca.dll (ID = 0)
8:44 AM: kbdcr.dll (ID = 0)
8:44 AM: kbdcz.dll (ID = 0)
8:44 AM: kbdcz1.dll (ID = 0)
8:44 AM: kbdcz2.dll (ID = 0)
8:44 AM: kbdda.dll (ID = 0)
8:44 AM: kbddiv1.dll (ID = 0)
8:44 AM: kbddiv2.dll (ID = 0)
8:44 AM: kbddv.dll (ID = 0)
8:44 AM: kbdes.dll (ID = 0)
8:44 AM: kbdfa.dll (ID = 0)
8:44 AM: kbdfc.dll (ID = 0)
8:44 AM: kbdfi.dll (ID = 0)
8:44 AM: kbdfr.dll (ID = 0)
8:44 AM: kbdgae.dll (ID = 0)
8:44 AM: kbdgeo.dll (ID = 0)
8:44 AM: kbdgkl.dll (ID = 0)
8:44 AM: kbdgr.dll (ID = 0)
8:44 AM: kbdgr1.dll (ID = 0)
8:44 AM: kbdhe.dll (ID = 0)
8:44 AM: kbdhe220.dll (ID = 0)
8:44 AM: kbdhe319.dll (ID = 0)
8:44 AM: kbdheb.dll (ID = 0)
8:44 AM: kbdhela2.dll (ID = 0)
8:44 AM: kbdhela3.dll (ID = 0)
8:44 AM: kbdhept.dll (ID = 0)
8:44 AM: kbdhu.dll (ID = 0)
8:44 AM: kbdhu1.dll (ID = 0)
8:44 AM: kbdic.dll (ID = 0)
8:44 AM: kbdindev.dll (ID = 0)
8:44 AM: kbdinguj.dll (ID = 0)
8:44 AM: kbdinhin.dll (ID = 0)
8:44 AM: kbdinkan.dll (ID = 0)
8:44 AM: kbdinmar.dll (ID = 0)
8:44 AM: kbdinpun.dll (ID = 0)
8:44 AM: kbdintam.dll (ID = 0)
8:44 AM: kbdintel.dll (ID = 0)
8:44 AM: kbdir.dll (ID = 0)
8:44 AM: kbdit.dll (ID = 0)
8:44 AM: kbdit142.dll (ID = 0)
8:44 AM: kbdkaz.dll (ID = 0)
8:44 AM: kbdkyr.dll (ID = 0)
8:44 AM: kbdla.dll (ID = 0)
8:44 AM: kbdmac.dll (ID = 0)
8:44 AM: kbdmon.dll (ID = 0)
8:44 AM: kbdne.dll (ID = 0)
8:44 AM: kbdnec.dll (ID = 0)
8:44 AM: kbdno.dll (ID = 0)
8:44 AM: kbdpl.dll (ID = 0)
8:44 AM: kbdpl1.dll (ID = 0)
8:44 AM: kbdpo.dll (ID = 0)
8:44 AM: kbdro.dll (ID = 0)
8:44 AM: kbdru.dll (ID = 0)
8:44 AM: kbdru1.dll (ID = 0)
8:44 AM: kbdsf.dll (ID = 0)
8:44 AM: kbdsg.dll (ID = 0)
8:44 AM: kbdsl.dll (ID = 0)
8:44 AM: kbdsl1.dll (ID = 0)
8:44 AM: kbdsp.dll (ID = 0)
8:44 AM: kbdsw.dll (ID = 0)
8:44 AM: kbdsyr1.dll (ID = 0)
8:44 AM: kbdsyr2.dll (ID = 0)
8:44 AM: kbdtat.dll (ID = 0)
8:44 AM: kbdth0.dll (ID = 0)
8:44 AM: kbdth1.dll (ID = 0)
8:44 AM: kbdth2.dll (ID = 0)
8:44 AM: kbdth3.dll (ID = 0)
8:44 AM: kbdtuf.dll (ID = 0)
8:44 AM: kbdtuq.dll (ID = 0)
8:44 AM: kbduk.dll (ID = 0)
8:44 AM: kbdur.dll (ID = 0)
8:44 AM: kbdurdu.dll (ID = 0)
8:44 AM: kbdus.dll (ID = 0)
8:44 AM: kbdusa.dll (ID = 0)
8:44 AM: kbdusl.dll (ID = 0)
8:44 AM: kbdusr.dll (ID = 0)
8:44 AM: kbdusx.dll (ID = 0)
8:44 AM: kbduzb.dll (ID = 0)
8:44 AM: kbdvntc.dll (ID = 0)
8:44 AM: kbdycc.dll (ID = 0)
8:44 AM: kbdycl.dll (ID = 0)
8:44 AM: kd1394.dll (ID = 0)
8:44 AM: kdcom.dll (ID = 0)
8:44 AM: kerberos.dll (ID = 0)
8:44 AM: kernel32.dll (ID = 0)
8:44 AM: linkinfo.dll (ID = 0)
8:44 AM: lmhsvc.dll (ID = 0)
8:44 AM: loadperf.dll (ID = 0)
8:44 AM: locale.nls (ID = 0)
8:44 AM: localspl.dll (ID = 0)
8:44 AM: locator.exe (ID = 0)
8:44 AM: lpk.dll (ID = 0)
8:44 AM: lsasrv.dll (ID = 0)
8:44 AM: lsass.exe (ID = 0)
8:44 AM: lz32.dll (ID = 0)
8:44 AM: l_intl.nls (ID = 0)
8:44 AM: mfc42.dll (ID = 0)
8:44 AM: mfc42u.dll (ID = 0)
8:44 AM: mobsync.dll (ID = 0)
8:44 AM: mpr.dll (ID = 0)
8:44 AM: mprapi.dll (ID = 0)
8:44 AM: mprui.dll (ID = 0)
8:44 AM: msafd.dll (ID = 0)
8:44 AM: msasn1.dll (ID = 0)
8:44 AM: mscat32.dll (ID = 0)
8:44 AM: mscms.dll (ID = 0)
8:44 AM: msftedit.dll (ID = 0)
8:44 AM: msgina.dll (ID = 0)
8:44 AM: msgsvc.dll (ID = 0)
8:44 AM: msi.dll (ID = 0)
8:44 AM: msimg32.dll (ID = 0)
8:44 AM: msjet40.dll (ID = 0)
8:44 AM: msls31.dll (ID = 0)
8:44 AM: msports.dll (ID = 0)
8:44 AM: msprivs.dll (ID = 0)
8:44 AM: mssign32.dll (ID = 0)
8:44 AM: mssip32.dll (ID = 0)
8:44 AM: msswch.dll (ID = 0)
8:44 AM: msswchx.exe (ID = 0)
8:44 AM: msv1_0.dll (ID = 0)
8:44 AM: msvcirt.dll (ID = 0)
8:44 AM: msvcp60.dll (ID = 0)
8:44 AM: msvcrt.dll (ID = 0)
8:44 AM: mswsock.dll (ID = 0)
8:44 AM: mswstr10.dll (ID = 0)
8:44 AM: ncobjapi.dll (ID = 0)
8:44 AM: nddeapi.dll (ID = 0)
8:44 AM: net.exe (ID = 0)
8:44 AM: net.hlp (ID = 0)
8:44 AM: net1.exe (ID = 0)
8:44 AM: netapi32.dll (ID = 0)
8:44 AM: netcfg.exe (ID = 0)
8:44 AM: netcfgx.dll (ID = 0)
8:44 AM: netevent.dll (ID = 0)
8:44 AM: netlogon.dll (ID = 0)
8:44 AM: netman.dll (ID = 0)
8:44 AM: netmsg.dll (ID = 0)
8:44 AM: netrap.dll (ID = 0)
8:44 AM: netshell.dll (ID = 0)
8:44 AM: netui0.dll (ID = 0)
8:44 AM: netui1.dll (ID = 0)
8:44 AM: netui2.dll (ID = 0)
8:44 AM: newdev.dll (ID = 0)
8:44 AM: notepad.exe (ID = 0)
8:44 AM: ntdll.dll (ID = 0)
8:44 AM: ntdsapi.dll (ID = 0)
8:44 AM: ntkrnlmp.exe (ID = 0)
8:44 AM: ntlanman.dll (ID = 0)
8:44 AM: ntmarta.dll (ID = 0)
8:44 AM: ntsd.exe (ID = 0)
8:44 AM: nwapi32.dll (ID = 0)
8:44 AM: nwcfg.dll (ID = 0)
8:44 AM: nwevent.dll (ID = 0)
8:44 AM: nwprovau.dll (ID = 0)
8:44 AM: nwwks.dll (ID = 0)
8:44 AM: oakley.dll (ID = 0)
8:44 AM: odbc16gt.dll (ID = 0)
8:44 AM: odbc32.dll (ID = 0)
8:44 AM: odbc32gt.dll (ID = 0)
8:44 AM: odbcad32.exe (ID = 0)
8:44 AM: odbcbcp.dll (ID = 0)
8:44 AM: odbcconf.dll (ID = 0)
8:44 AM: odbcconf.exe (ID = 0)
8:44 AM: odbcconf.rsp (ID = 0)
8:44 AM: odbccp32.cpl (ID = 0)
8:44 AM: odbccp32.dll (ID = 0)
8:44 AM: odbccr32.dll (ID = 0)
8:44 AM: netx56n5.pnf (ID = 0)
8:44 AM: odbccu32.dll (ID = 0)
8:44 AM: odbcint.dll (ID = 0)
8:44 AM: odbcji32.dll (ID = 0)
8:44 AM: odbcjt32.dll (ID = 0)
8:44 AM: netxcpq.pnf (ID = 0)
8:44 AM: odbcp32r.dll (ID = 0)
8:44 AM: odbctrac.dll (ID = 0)
8:44 AM: ramdrv.pnf (ID = 0)
8:44 AM: infcache.1 (ID = 0)
8:44 AM: oemwinpe.exe (ID = 0)
8:44 AM: operadef6.adr (ID = 0)
8:44 AM: ole32.dll (ID = 0)
8:44 AM: oleacc.dll (ID = 0)
8:44 AM: oleaut32.dll (ID = 0)
8:44 AM: olecli32.dll (ID = 0)
8:44 AM: olecnv32.dll (ID = 0)
8:44 AM: oledlg.dll (ID = 0)
8:44 AM: olepro32.dll (ID = 0)
8:44 AM: olesvr.dll (ID = 0)
8:44 AM: olesvr32.dll (ID = 0)
8:44 AM: olethk32.dll (ID = 0)
8:44 AM: osk.exe (ID = 0)
8:44 AM: osuninst.dll (ID = 0)
8:44 AM: peer.exe (ID = 0)
8:44 AM: pentnt.exe (ID = 0)
8:44 AM: perfctrs.dll (ID = 0)
8:44 AM: perfnw.dll (ID = 0)
8:44 AM: ping.exe (ID = 0)
8:44 AM: polstore.dll (ID = 0)
8:44 AM: portmon.exe (ID = 0)
8:44 AM: powrprof.dll (ID = 0)
8:44 AM: profmap.dll (ID = 0)
8:44 AM: prounstl.exe (ID = 0)
8:44 AM: psapi.dll (ID = 0)
8:44 AM: pstorec.dll (ID = 0)
8:44 AM: pstorsvc.dll (ID = 0)
8:44 AM: query.dll (ID = 0)
8:44 AM: rasadhlp.dll (ID = 0)
8:44 AM: rasapi32.dll (ID = 0)
8:44 AM: rasdlg.dll (ID = 0)
8:44 AM: rasman.dll (ID = 0)
8:44 AM: reg.exe (ID = 0)
8:44 AM: regapi.dll (ID = 0)
8:44 AM: regedit.exe (ID = 0)
8:44 AM: regedt32.exe (ID = 0)
8:44 AM: regsvr32.exe (ID = 0)
8:44 AM: riched20.dll (ID = 0)
8:44 AM: rnr20.dll (ID = 0)
8:44 AM: rpcrt4.dll (ID = 0)
8:44 AM: rpcss.dll (ID = 0)
8:44 AM: rsaenh.dll (ID = 0)
8:44 AM: rsvp.exe (ID = 0)
8:44 AM: rsvpmsg.dll (ID = 0)
8:44 AM: rsvpperf.dll (ID = 0)
8:44 AM: rtipxmib.dll (ID = 0)
8:44 AM: rtutils.dll (ID = 0)
8:44 AM: rundll32.exe (ID = 0)
8:44 AM: samlib.dll (ID = 0)
8:44 AM: samsrv.dll (ID = 0)
8:44 AM: scecli.dll (ID = 0)
8:44 AM: scesrv.dll (ID = 0)
8:44 AM: schannel.dll (ID = 0)
8:44 AM: secur32.dll (ID = 0)
8:44 AM: security.dll (ID = 0)
8:44 AM: services.exe (ID = 0)
8:44 AM: setup.exe (ID = 0)
8:44 AM: setupapi.dll (ID = 0)
8:44 AM: setupreg.hiv (ID = 0)
8:44 AM: setupreg.hiv.bak (ID = 0)
8:44 AM: sfc.dll (ID = 0)
8:44 AM: sfcfiles.dll (ID = 0)
8:44 AM: sfc_os.dll (ID = 0)
8:44 AM: shdocvw.dll (ID = 0)
8:44 AM: shell32.dll (ID = 0)
8:44 AM: shlwapi.dll (ID = 0)
8:44 AM: shsvcs.dll (ID = 0)
8:44 AM: smss.exe (ID = 0)
8:44 AM: snmpapi.dll (ID = 0)
8:44 AM: softpub.dll (ID = 0)
8:44 AM: sortkey.nls (ID = 0)
8:44 AM: sorttbls.nls (ID = 0)
8:44 AM: spdports.dll (ID = 0)
8:44 AM: spoolss.dll (ID = 0)
8:44 AM: spoolsv.exe (ID = 0)
8:44 AM: spxcoins.dll (ID = 0)
8:44 AM: spxports.dll (ID = 0)
8:44 AM: stlnprop.dll (ID = 0)
8:44 AM: svchost.exe (ID = 0)
8:44 AM: sxports.dll (ID = 0)
8:44 AM: sxs.dll (ID = 0)
8:44 AM: syssetup.dll (ID = 0)
8:44 AM: tapi32.dll (ID = 0)
8:44 AM: taskmgr.exe (ID = 0)
8:44 AM: thawbrkr.dll (ID = 0)
8:44 AM: ufat.dll (ID = 0)
8:44 AM: ulib.dll (ID = 0)
8:44 AM: umpnpmgr.dll (ID = 0)
8:44 AM: unicode.nls (ID = 0)
8:44 AM: untfs.dll (ID = 0)
8:44 AM: ureg.dll (ID = 0)
8:44 AM: url.dll (ID = 0)
8:44 AM: urlmon.dll (ID = 0)
8:44 AM: user32.dll (ID = 0)
8:44 AM: userenv.dll (ID = 0)
8:44 AM: userinit.exe (ID = 0)
8:44 AM: usp10.dll (ID = 0)
8:44 AM: utildll.dll (ID = 0)
8:44 AM: uxtheme.dll (ID = 0)
8:44 AM: vdmdbg.dll (ID = 0)
8:44 AM: version.dll (ID = 0)
8:44 AM: vga.dll (ID = 0)
8:44 AM: vga256.dll (ID = 0)
8:44 AM: vga64k.dll (ID = 0)
8:44 AM: vga850.fon (ID = 0)
8:44 AM: vga860.fon (ID = 0)
8:44 AM: vga861.fon (ID = 0)
8:44 AM: vga863.fon (ID = 0)
8:44 AM: vga865.fon (ID = 0)
8:44 AM: vgaoem.fon (ID = 0)
8:44 AM: w32time.dll (ID = 0)
8:44 AM: w32topl.dll (ID = 0)
8:44 AM: watchdog.sys (ID = 0)
8:44 AM: wdigest.dll (ID = 0)
8:44 AM: win32k.sys (ID = 0)
8:44 AM: win32spl.dll (ID = 0)
8:44 AM: winhttp.dll (ID = 0)
8:44 AM: wininet.dll (ID = 0)
8:44 AM: winipsec.dll (ID = 0)
8:44 AM: winlogon.exe (ID = 0)
8:44 AM: winmm.dll (ID = 0)
8:44 AM: winpe.bmp (ID = 0)
8:44 AM: winpeoem.sif (ID = 0)
8:44 AM: winpeshl.exe (ID = 0)
8:44 AM: winrnr.dll (ID = 0)
8:44 AM: winscard.dll (ID = 0)
8:44 AM: winspool.drv (ID = 0)
8:44 AM: winsrv.dll (ID = 0)
8:44 AM: winsta.dll (ID = 0)
8:44 AM: wintrust.dll (ID = 0)
8:44 AM: wkssvc.dll (ID = 0)
8:44 AM: wldap32.dll (ID = 0)
8:44 AM: wmi.dll (ID = 0)
8:44 AM: ws2help.dll (ID = 0)
8:44 AM: ws2_32.dll (ID = 0)
8:44 AM: wshisn.dll (ID = 0)
8:44 AM: wshnetbs.dll (ID = 0)
8:44 AM: wshtcpip.dll (ID = 0)
8:44 AM: wsock32.dll (ID = 0)
8:44 AM: wtsapi32.dll (ID = 0)
8:44 AM: wzcsapi.dll (ID = 0)
8:44 AM: wzcsvc.dll (ID = 0)
8:44 AM: xcopy.exe (ID = 0)
8:44 AM: xlog.exe (ID = 0)
8:44 AM: xpsp1res.dll (ID = 0)
8:44 AM: default (ID = 0)
8:44 AM: default.bak (ID = 0)
8:44 AM: software (ID = 0)
8:44 AM: software.bak (ID = 0)
8:44 AM: 1394bus.sys (ID = 0)
8:44 AM: 1394vdbg.sys (ID = 0)
8:44 AM: abp480n5.sys (ID = 0)
8:44 AM: ac300nd5.sys (ID = 0)
8:44 AM: acpi.sys (ID = 0)
8:44 AM: acpiec.sys (ID = 0)
8:44 AM: adm8511.sys (ID = 0)
8:44 AM: adptsf50.sys (ID = 0)
8:44 AM: adpu160m.sys (ID = 0)
8:44 AM: afd.sys (ID = 0)
8:44 AM: aha154x.sys (ID = 0)
8:44 AM: aic78u2.sys (ID = 0)
8:44 AM: aic78xx.sys (ID = 0)
8:44 AM: ali5261.sys (ID = 0)
8:44 AM: aliide.sys (ID = 0)
8:44 AM: amb8002.sys (ID = 0)
8:44 AM: amsint.sys (ID = 0)
8:44 AM: an983.sys (ID = 0)
8:44 AM: arp1394.sys (ID = 0)
8:44 AM: asc.sys (ID = 0)
8:44 AM: asc3350p.sys (ID = 0)
8:44 AM: asc3550.sys (ID = 0)
8:44 AM: aspndis3.sys (ID = 0)
8:44 AM: asyncmac.sys (ID = 0)
8:44 AM: atapi.sys (ID = 0)
8:44 AM: atmarpc.sys (ID = 0)
8:44 AM: atmlane.sys (ID = 0)
8:44 AM: atmuni.sys (ID = 0)
8:44 AM: b1.t4 (ID = 0)
8:44 AM: b1cbase.sys (ID = 0)
8:44 AM: b1tr6.t4 (ID = 0)
8:44 AM: b1usa.t4 (ID = 0)
8:44 AM: b57xp32.sys (ID = 0)
8:44 AM: bcm42u.sys (ID = 0)
8:44 AM: bcm42xx5.sys (ID = 0)
8:44 AM: bcm4e5.sys (ID = 0)
8:44 AM: bcm4sbxp.sys (ID = 0)
8:44 AM: beep.sys (ID = 0)
8:44 AM: bioprime.bin (ID = 0)
8:44 AM: brzwlan.sys (ID = 0)
8:44 AM: c4.bin (ID = 0)
8:44 AM: cb102.sys (ID = 0)
8:44 AM: cb325.sys (ID = 0)
8:44 AM: cben5.sys (ID = 0)
8:44 AM: cbidf2k.sys (ID = 0)
8:44 AM: cd20xrnt.sys (ID = 0)
8:44 AM: cdaudio.sys (ID = 0)
8:44 AM: cdfs.sys (ID = 0)
8:44 AM: cdrom.sys (ID = 0)
8:44 AM: ce2n5.sys (ID = 0)
8:44 AM: ce3n5.sys (ID = 0)
8:44 AM: cem28n5.sys (ID = 0)
8:44 AM: cem33n5.sys (ID = 0)
8:44 AM: cem56n5.sys (ID = 0)
8:44 AM: cinemst2.sys (ID = 0)
8:44 AM: classpnp.sys (ID = 0)
8:44 AM: cmdide.sys (ID = 0)
8:44 AM: cnxt1803.sys (ID = 0)
8:44 AM: cpqarray.sys (ID = 0)
8:44 AM: cpqndis5.sys (ID = 0)
8:44 AM: cpqtrnd5.sys (ID = 0)
8:44 AM: d100ib5.sys (ID = 0)
8:44 AM: dac2w2k.sys (ID = 0)
8:44 AM: dac960nt.sys (ID = 0)
8:44 AM: dc21x4.sys (ID = 0)
8:44 AM: defpa.sys (ID = 0)
8:44 AM: dfe650.sys (ID = 0)
8:44 AM: dfe650d.sys (ID = 0)
8:44 AM: dgapci.sys (ID = 0)
8:44 AM: dgsetup.dll (ID = 0)
8:44 AM: diapi2.sys (ID = 0)
8:44 AM: digirlpt.sys (ID = 0)
8:44 AM: dimaint.sys (ID = 0)
8:44 AM: disk.sys (ID = 0)
8:44 AM: diskdump.sys (ID = 0)
8:44 AM: diwan.sys (ID = 0)
8:44 AM: dlh5xnd5.sys (ID = 0)
8:44 AM: dm9pci5.sys (ID = 0)
8:44 AM: dmboot.sys (ID = 0)
8:44 AM: dmio.sys (ID = 0)
8:44 AM: dmload.sys (ID = 0)
8:44 AM: dp83820.sys (ID = 0)
8:44 AM: dpti2o.sys (ID = 0)
8:44 AM: ds4bri.bit (ID = 0)
8:44 AM: dspcli.bin (ID = 0)
8:44 AM: dspdload.bin (ID = 0)
8:44 AM: dspdqsig.bin (ID = 0)
8:44 AM: dxapi.sys (ID = 0)
8:44 AM: dxg.sys (ID = 0)
8:44 AM: dxgthk.sys (ID = 0)
8:44 AM: e1000325.sys (ID = 0)
8:44 AM: e1000nt5.sys (ID = 0)
8:44 AM: e100b325.sys (ID = 0)
8:44 AM: e100isa4.sys (ID = 0)
8:44 AM: el515.sys (ID = 0)
8:44 AM: el556nd5.sys (ID = 0)
8:44 AM: el574nd4.sys (ID = 0)
8:44 AM: el575nd5.sys (ID = 0)
8:44 AM: el589nd5.sys (ID = 0)
8:44 AM: el656cd5.sys (ID = 0)
8:44 AM: el656ct5.sys (ID = 0)
8:44 AM: el656nd5.sys (ID = 0)
8:44 AM: el656se5.sys (ID = 0)
8:44 AM: el90xbc5.sys (ID = 0)
8:44 AM: el90xnd5.sys (ID = 0)
8:44 AM: el985n51.sys (ID = 0)
8:44 AM: el98xn5.sys (ID = 0)
8:44 AM: el99xn51.sys (ID = 0)
8:44 AM: el99xrun.out (ID = 0)
8:44 AM: em556n4.sys (ID = 0)
8:44 AM: emu10k1m.sys (ID = 0)
8:44 AM: enum1394.sys (ID = 0)
8:44 AM: epro4.sys (ID = 0)
8:44 AM: eqn.sys (ID = 0)
8:44 AM: et4000.sys (ID = 0)
8:44 AM: ex10.sys (ID = 0)
8:44 AM: f3ab18xi.sys (ID = 0)
8:44 AM: f3ab18xj.sys (ID = 0)
8:44 AM: fa312nd5.sys (ID = 0)
8:44 AM: fa410nd5.sys (ID = 0)
8:44 AM: fastfat.sys (ID = 0)
8:44 AM: fdc.sys (ID = 0)
8:44 AM: fem556n5.sys (ID = 0)
8:44 AM: fetnd5.sys (ID = 0)
8:44 AM: flpydisk.sys (ID = 0)
8:44 AM: forehe.sys (ID = 0)
8:44 AM: fpcibase.sys (ID = 0)
8:44 AM: fpcibase.usa (ID = 0)
8:44 AM: fpcmbase.sys (ID = 0)
8:44 AM: fpcmbase.usa (ID = 0)
8:44 AM: fsvga.sys (ID = 0)
8:44 AM: fs_rec.sys (ID = 0)
8:44 AM: ftdisk.sys (ID = 0)
8:44 AM: fusbbase.sys (ID = 0)
8:44 AM: fusbbase.usa (ID = 0)
8:44 AM: fxusbase.sys (ID = 0)
8:44 AM: gm.dls (ID = 0)
8:44 AM: hidclass.sys (ID = 0)
8:44 AM: hidparse.sys (ID = 0)
8:44 AM: hidusb.sys (ID = 0)
8:44 AM: hpn.sys (ID = 0)
8:44 AM: i2omgmt.sys (ID = 0)
8:44 AM: i2omp.sys (ID = 0)
8:44 AM: i8042prt.sys (ID = 0)
8:44 AM: ibmexmp.sys (ID = 0)
8:44 AM: ibmtok.sys (ID = 0)
8:44 AM: ibmtrp.sys (ID = 0)
8:44 AM: ini910u.sys (ID = 0)
8:44 AM: inport.sys (ID = 0)
8:44 AM: intelide.sys (ID = 0)
8:44 AM: io8.sys (ID = 0)
8:44 AM: ip5515.sys (ID = 0)
8:44 AM: ipfltdrv.sys (ID = 0)
8:44 AM: ipinip.sys (ID = 0)
8:44 AM: ipnat.sys (ID = 0)
8:44 AM: ipsec.sys (ID = 0)
8:44 AM: isapnp.sys (ID = 0)
8:44 AM: kbdclass.sys (ID = 0)
8:44 AM: kbdhid.sys (ID = 0)
8:44 AM: ks.sys (ID = 0)
8:44 AM: ksecdd.sys (ID = 0)
8:44 AM: ktc111.sys (ID = 0)
8:44 AM: lanepic5.sys (ID = 0)
8:44 AM: lbrtfdc.sys (ID = 0)
8:44 AM: lmndis3.sys (ID = 0)
8:44 AM: lne100.sys (ID = 0)
8:44 AM: lne100tx.sys (ID = 0)
8:44 AM: loop.sys (ID = 0)
8:44 AM: mcd.sys (ID = 0)
8:44 AM: mdgndis5.sys (ID = 0)
8:44 AM: mf.sys (ID = 0)
8:44 AM: mnmdd.sys (ID = 0)
8:44 AM: modem.sys (ID = 0)
8:44 AM: mouclass.sys (ID = 0)
8:44 AM: mouhid.sys (ID = 0)
8:44 AM: mountmgr.sys (ID = 0)
8:44 AM: mraid35x.sys (ID = 0)
8:44 AM: mrxsmb.sys (ID = 0)
8:44 AM: msfs.sys (ID = 0)
8:44 AM: msgpc.sys (ID = 0)
8:44 AM: mup.sys (ID = 0)
8:44 AM: mxnic.sys (ID = 0)
8:44 AM: n1000nt5.sys (ID = 0)
8:44 AM: n100325.sys (ID = 0)
8:44 AM: ndis.sys (ID = 0)
8:44 AM: ndistapi.sys (ID = 0)
8:44 AM: ndiswan.sys (ID = 0)
8:44 AM: ndproxy.sys (ID = 0)
8:44 AM: ne2000.sys (ID = 0)
8:44 AM: netbios.sys (ID = 0)
8:44 AM: netbt.sys (ID = 0)
8:44 AM: netflx3.sys (ID = 0)
8:44 AM: netwlan5.img (ID = 0)
8:44 AM: netwlan5.sys (ID = 0)
8:44 AM: ngrpci.sys (ID = 0)
8:44 AM: nic1394.sys (ID = 0)
8:44 AM: nmnt.sys (ID = 0)
8:44 AM: npfs.sys (ID = 0)
8:44 AM: ntfs.sys (ID = 0)
8:44 AM: null.sys (ID = 0)
8:44 AM: nwlnkflt.sys (ID = 0)
8:44 AM: nwlnkfwd.sys (ID = 0)
8:44 AM: nwlnkipx.sys (ID = 0)
8:44 AM: nwlnknb.sys (ID = 0)
8:44 AM: nwlnkspx.sys (ID = 0)
8:44 AM: nwrdr.sys (ID = 0)
8:44 AM: ohci1394.sys (ID = 0)
8:44 AM: oprghdlr.sys (ID = 0)
8:44 AM: otc06x5.sys (ID = 0)
8:44 AM: otceth5.sys (ID = 0)
8:44 AM: parport.sys (ID = 0)
8:44 AM: partmgr.sys (ID = 0)
8:44 AM: parvdm.sys (ID = 0)
8:44 AM: pc100nds.sys (ID = 0)
8:44 AM: pca200e.bin (ID = 0)
8:44 AM: pca200e.sys (ID = 0)
8:44 AM: pci.sys (ID = 0)
8:44 AM: pcibios.bin (ID = 0)
8:44 AM: pcifep.bin (ID = 0)
8:44 AM: pcii