Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

System running slower than usual... [Solved]

Started by nirsmar , Feb 22 2013 10:13 AM

  • This topic is locked This topic is locked

#31
gringo_pr
Posted 05 March 2013 - 07:56 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello nirsmar



I would like you to go to this page - Troubleshooting and Internet Explorer’s (No Add-ons) Mode



Step 1 is going to show you how to run IE without any add/ons, If by running IE this way the problem goes away Then we can go to step 2


Step 2 will show you how to find the add/on that is causing the problem and then how to remove it




Gringo
  • 0

Advertisements

#32
nirsmar
Posted 06 March 2013 - 01:30 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hello gringo_pr:

The sytem is operating about the same with Add-on's disabled. I can provide you a list of the add-on's since the reset. Is a list available with incompatable add-ons? Any other suggestions?

Thank you for your assistance.

By the way, as per the earlier posting #19. I ran the ComboFix /Uninstall and it ran through, except I noticed the following items left on the C: Drive.

C:\ComboFix1
--- CF18069
--- CregC_01

C:\ComboFix118910C
--- NircmdB

C:\ComboFix128629C
--- CF28313
--- CregC_01

Thank You.

Edited by nirsmar, 06 March 2013 - 02:29 PM.

  • 0

#33
nirsmar
Posted 08 March 2013 - 02:04 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
"Bump"
  • 0

#34
gringo_pr
Posted 08 March 2013 - 02:14 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello nirsmar


I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  • Put a checkmark beside loaded modules.
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

    Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

    If the forum still complains about it being to long send me everything that is at the end of the report after where it says

    ==================
    Scan finished
    ==================

and I will see if I want to see the whole report

Malwarebytes Anti-Rootkit

1.Download Malwarebytes Anti-Rootkit
2.Unzip the contents to a folder in a convenient location.
3.Open the folder where the contents were unzipped and run mbar.exe
4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
6.Wait while the system shuts down and the cleanup process is performed.
7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
•Internet access
•Windows Update
•Windows Firewall9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
10.Verify that your system is now functioning normally.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and MBAR

Gringo
  • 1

#35
nirsmar
Posted 09 March 2013 - 03:08 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hello gringo_pr:

As per your posting, here are the logs for TDSSKiller and MBAR. TDSSKiller did detect 7 objects as you will see in the logs. I should let you know that when running the MBAR from the .exe it did not leave any logs the first time in the folder so I extracted the files and ran it again. That time, you will notice (from the logs) that a DDA Driver did not load or download when I launched MBAR after the update, so the program asked me to restart the system and launched with DOS at restart. Thank you for your assistance.

TDSSKiller.2.8.16.0_09.03.2013_12.58.55_log 12:58:55.0267 1388

TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
12:58:56.0619 1388 ============================================================
12:58:56.0619 1388 Current date / time: 2013/03/09 12:58:56.0619
12:58:56.0619 1388 SystemInfo:
12:58:56.0619 1388
12:58:56.0619 1388 OS Version: 5.1.2600 ServicePack: 3.0
12:58:56.0619 1388 Product type: Workstation
12:58:56.0619 1388 ComputerName: R1
12:58:56.0619 1388 UserName: Admin
12:58:56.0619 1388 Windows directory: C:\WINDOWS
12:58:56.0619 1388 System windows directory: C:\WINDOWS
12:58:56.0619 1388 Processor architecture: Intel x86
12:58:56.0619 1388 Number of processors: 1
12:58:56.0619 1388 Page size: 0x1000
12:58:56.0619 1388 Boot type: Normal boot
12:58:56.0619 1388 ============================================================
12:59:00.0665 1388 Drive \Device\Harddisk0\DR0 - Size: 0x9502F9000 (37.25 Gb), SectorSize: 0x200, Cylinders: 0x12FF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
12:59:00.0725 1388 ============================================================
12:59:00.0725 1388 \Device\Harddisk0\DR0:
12:59:00.0795 1388 MBR partitions:
12:59:00.0795 1388 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A81400
12:59:00.0795 1388 ============================================================
12:59:00.0845 1388 C: <-> \Device\Harddisk0\DR0\Partition1
12:59:00.0855 1388 ============================================================
12:59:00.0855 1388 Initialize success
12:59:00.0855 1388 ============================================================
13:00:56.0221 2164 Deinitialize success


TDSSKiller.2.8.16.0_09.03.2013_13.03.41_log

13:03:41.0394 1784 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:03:43.0567 1784 ============================================================
13:03:43.0567 1784 Current date / time: 2013/03/09 13:03:43.0567
13:03:43.0567 1784 SystemInfo:
13:03:43.0567 1784
13:03:43.0567 1784 OS Version: 5.1.2600 ServicePack: 3.0
13:03:43.0567 1784 Product type: Workstation
13:03:43.0628 1784 ComputerName: R1
13:03:43.0628 1784 UserName: Admin
13:03:43.0628 1784 Windows directory: C:\WINDOWS
13:03:43.0628 1784 System windows directory: C:\WINDOWS
13:03:43.0678 1784 Processor architecture: Intel x86
13:03:43.0678 1784 Number of processors: 1
13:03:43.0678 1784 Page size: 0x1000
13:03:43.0678 1784 Boot type: Normal boot
13:03:43.0678 1784 ============================================================
13:03:51.0559 1784 BG loaded
13:03:53.0712 1784 Drive \Device\Harddisk0\DR0 - Size: 0x9502F9000 (37.25 Gb), SectorSize: 0x200, Cylinders: 0x12FF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
13:03:54.0103 1784 ============================================================
13:03:54.0103 1784 \Device\Harddisk0\DR0:
13:03:54.0133 1784 MBR partitions:
13:03:54.0133 1784 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A81400
13:03:54.0133 1784 ============================================================
13:03:58.0849 1784 C: <-> \Device\Harddisk0\DR0\Partition1
13:03:59.0390 1784 ============================================================
13:03:59.0390 1784 Initialize success
13:03:59.0390 1784 ============================================================
13:04:23.0986 1316 ============================================================
13:04:23.0986 1316 Scan started
13:04:23.0986 1316 Mode: Manual; SigCheck; TDLFS;
13:04:23.0986 1316 ============================================================
13:04:35.0482 1316 ================ Scan system memory ========================
13:04:35.0482 1316 System memory - ok
13:04:35.0532 1316 ================ Scan services =============================
13:04:36.0874 1316 Abiosdsk - ok
13:04:36.0894 1316 abp480n5 - ok
13:04:37.0165 1316 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
13:04:50.0894 1316 ACPI - ok
13:04:50.0974 1316 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
13:04:51.0315 1316 ACPIEC - ok
13:04:51.0435 1316 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
13:04:51.0465 1316 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning
13:04:51.0465 1316 Adobe LM Service - detected UnsignedFile.Multi.Generic (1)
13:04:51.0485 1316 adpu160m - ok
13:04:51.0515 1316 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
13:04:51.0796 1316 aec - ok
13:04:51.0846 1316 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
13:04:52.0126 1316 AFD - ok
13:04:52.0276 1316 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
13:04:52.0657 1316 agp440 - ok
13:04:52.0667 1316 Aha154x - ok
13:04:52.0687 1316 aic78u2 - ok
13:04:52.0697 1316 aic78xx - ok
13:04:52.0757 1316 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
13:04:53.0047 1316 Alerter - ok
13:04:53.0087 1316 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
13:04:53.0408 1316 ALG - ok
13:04:53.0428 1316 AliIde - ok
13:04:53.0438 1316 amsint - ok
13:04:53.0648 1316 [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
13:04:53.0728 1316 AOL ACS - ok
13:04:53.0788 1316 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
13:04:54.0069 1316 AppMgmt - ok
13:04:54.0079 1316 asc - ok
13:04:54.0099 1316 asc3350p - ok
13:04:54.0109 1316 asc3550 - ok
13:04:54.0229 1316 [ 20D04091EBA710F6988F710507D85868 ] Aspi32 C:\WINDOWS\system32\drivers\Aspi32.sys
13:04:54.0249 1316 Aspi32 ( UnsignedFile.Multi.Generic ) - warning
13:04:54.0249 1316 Aspi32 - detected UnsignedFile.Multi.Generic (1)
13:04:54.0399 1316 [ D33C507942299753868204CC7642FA27 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
13:04:54.0429 1316 aspnet_state - ok
13:04:54.0469 1316 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
13:04:54.0750 1316 AsyncMac - ok
13:04:54.0780 1316 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
13:04:55.0080 1316 atapi - ok
13:04:55.0120 1316 Atdisk - ok
13:04:55.0180 1316 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
13:04:55.0891 1316 Atmarpc - ok
13:04:55.0942 1316 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
13:04:56.0232 1316 AudioSrv - ok
13:04:56.0282 1316 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
13:04:56.0542 1316 audstub - ok
13:04:56.0612 1316 [ 5D7BE7B19E827125E016325334E58FF1 ] BANTExt C:\WINDOWS\System32\Drivers\BANTExt.sys
13:04:56.0643 1316 BANTExt ( UnsignedFile.Multi.Generic ) - warning
13:04:56.0643 1316 BANTExt - detected UnsignedFile.Multi.Generic (1)
13:04:56.0723 1316 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
13:04:57.0003 1316 Beep - ok
13:04:57.0083 1316 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
13:04:57.0604 1316 BITS - ok
13:04:57.0664 1316 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
13:04:57.0804 1316 Browser - ok
13:04:57.0864 1316 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
13:04:58.0155 1316 cbidf2k - ok
13:04:58.0185 1316 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
13:04:58.0455 1316 CCDECODE - ok
13:04:58.0465 1316 cd20xrnt - ok
13:04:58.0555 1316 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
13:04:58.0846 1316 Cdaudio - ok
13:04:58.0886 1316 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
13:04:59.0156 1316 Cdfs - ok
13:04:59.0226 1316 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
13:04:59.0507 1316 Cdrom - ok
13:04:59.0527 1316 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
13:04:59.0557 1316 cercsr6 ( UnsignedFile.Multi.Generic ) - warning
13:04:59.0557 1316 cercsr6 - detected UnsignedFile.Multi.Generic (1)
13:04:59.0567 1316 Changer - ok
13:04:59.0617 1316 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
13:04:59.0887 1316 CiSvc - ok
13:04:59.0927 1316 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
13:05:00.0218 1316 ClipSrv - ok
13:05:00.0298 1316 [ 3C4D595E7F9B747325AEF28B4ADCAAE5 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:05:00.0498 1316 clr_optimization_v2.0.50727_32 - ok
13:05:00.0508 1316 CmdIde - ok
13:05:00.0538 1316 COMSysApp - ok
13:05:00.0558 1316 Cpqarray - ok
13:05:00.0608 1316 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
13:05:00.0889 1316 CryptSvc - ok
13:05:00.0899 1316 dac2w2k - ok
13:05:00.0919 1316 dac960nt - ok
13:05:00.0999 1316 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
13:05:01.0149 1316 DcomLaunch - ok
13:05:01.0209 1316 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
13:05:01.0500 1316 Dhcp - ok
13:05:01.0530 1316 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
13:05:01.0780 1316 Disk - ok
13:05:01.0800 1316 dmadmin - ok
13:05:01.0890 1316 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
13:05:02.0281 1316 dmboot - ok
13:05:02.0331 1316 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
13:05:02.0611 1316 dmio - ok
13:05:02.0641 1316 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
13:05:02.0932 1316 dmload - ok
13:05:02.0982 1316 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
13:05:03.0262 1316 dmserver - ok
13:05:03.0282 1316 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
13:05:03.0663 1316 DMusic - ok
13:05:03.0713 1316 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
13:05:03.0823 1316 Dnscache - ok
13:05:03.0893 1316 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
13:05:04.0183 1316 Dot3svc - ok
13:05:04.0193 1316 dpti2o - ok
13:05:04.0253 1316 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
13:05:04.0514 1316 drmkaud - ok
13:05:04.0564 1316 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
13:05:04.0844 1316 EapHost - ok
13:05:04.0904 1316 [ 6E883BF518296A40959131C2304AF714 ] EL90XBC C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
13:05:05.0195 1316 EL90XBC - ok
13:05:05.0255 1316 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
13:05:05.0525 1316 ERSvc - ok
13:05:05.0575 1316 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
13:05:05.0635 1316 Eventlog - ok
13:05:05.0706 1316 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
13:05:05.0786 1316 EventSystem - ok
13:05:05.0816 1316 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
13:05:06.0116 1316 Fastfat - ok
13:05:06.0196 1316 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
13:05:06.0276 1316 FastUserSwitchingCompatibility - ok
13:05:06.0316 1316 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
13:05:06.0587 1316 Fdc - ok
13:05:06.0617 1316 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
13:05:06.0917 1316 Fips - ok
13:05:06.0947 1316 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
13:05:07.0258 1316 Flpydisk - ok
13:05:07.0328 1316 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
13:05:07.0618 1316 FltMgr - ok
13:05:07.0638 1316 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
13:05:07.0929 1316 Fs_Rec - ok
13:05:07.0969 1316 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
13:05:08.0279 1316 Ftdisk - ok
13:05:08.0339 1316 [ 065639773D8B03F33577F6CDAEA21063 ] gameenum C:\WINDOWS\system32\DRIVERS\gameenum.sys
13:05:08.0600 1316 gameenum - ok
13:05:08.0660 1316 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
13:05:08.0950 1316 Gpc - ok
13:05:09.0070 1316 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
13:05:09.0341 1316 helpsvc - ok
13:05:09.0411 1316 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
13:05:09.0721 1316 HidServ - ok
13:05:09.0751 1316 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
13:05:10.0032 1316 HidUsb - ok
13:05:10.0132 1316 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
13:05:10.0442 1316 hkmsvc - ok
13:05:10.0462 1316 hpn - ok
13:05:10.0532 1316 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
13:05:10.0633 1316 HTTP - ok
13:05:10.0693 1316 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
13:05:10.0983 1316 HTTPFilter - ok
13:05:11.0033 1316 i2omgmt - ok
13:05:11.0053 1316 i2omp - ok
13:05:11.0203 1316 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
13:05:11.0534 1316 i8042prt - ok
13:05:11.0604 1316 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
13:05:12.0005 1316 Imapi - ok
13:05:12.0085 1316 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
13:05:12.0535 1316 ImapiService - ok
13:05:12.0585 1316 ini910u - ok
13:05:12.0615 1316 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
13:05:12.0936 1316 IntelIde - ok
13:05:13.0086 1316 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
13:05:13.0507 1316 Ip6Fw - ok
13:05:13.0577 1316 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
13:05:13.0877 1316 IpFilterDriver - ok
13:05:13.0917 1316 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
13:05:14.0258 1316 IpInIp - ok
13:05:14.0358 1316 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
13:05:14.0688 1316 IpNat - ok
13:05:14.0749 1316 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
13:05:15.0069 1316 IPSec - ok
13:05:15.0109 1316 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
13:05:15.0420 1316 IRENUM - ok
13:05:15.0460 1316 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
13:05:15.0770 1316 isapnp - ok
13:05:15.0810 1316 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
13:05:16.0151 1316 Kbdclass - ok
13:05:16.0241 1316 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
13:05:16.0491 1316 kbdhid - ok
13:05:16.0611 1316 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
13:05:16.0932 1316 kmixer - ok
13:05:17.0012 1316 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
13:05:17.0112 1316 KSecDD - ok
13:05:17.0272 1316 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
13:05:17.0432 1316 lanmanserver - ok
13:05:17.0543 1316 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
13:05:17.0873 1316 lanmanworkstation - ok
13:05:17.0883 1316 lbrtfdc - ok
13:05:18.0033 1316 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
13:05:18.0334 1316 LmHosts - ok
13:05:18.0394 1316 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
13:05:18.0734 1316 Messenger - ok
13:05:18.0784 1316 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
13:05:19.0075 1316 mnmdd - ok
13:05:19.0165 1316 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
13:05:19.0555 1316 mnmsrvc - ok
13:05:19.0676 1316 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
13:05:19.0986 1316 Modem - ok
13:05:20.0046 1316 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA C:\WINDOWS\system32\drivers\MODEMCSA.sys
13:05:20.0357 1316 MODEMCSA - ok
13:05:20.0397 1316 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
13:05:20.0667 1316 Mouclass - ok
13:05:20.0727 1316 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
13:05:21.0058 1316 mouhid - ok
13:05:21.0108 1316 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
13:05:21.0368 1316 MountMgr - ok
13:05:21.0478 1316 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:05:21.0879 1316 MozillaMaintenance - ok
13:05:21.0889 1316 mraid35x - ok
13:05:21.0929 1316 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
13:05:22.0249 1316 MRxDAV - ok
13:05:22.0430 1316 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
13:05:22.0740 1316 MRxSmb - ok
13:05:22.0820 1316 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
13:05:23.0151 1316 MSDTC - ok
13:05:24.0092 1316 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
13:05:24.0493 1316 Msfs - ok
13:05:24.0513 1316 MSIServer - ok
13:05:24.0573 1316 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
13:05:24.0893 1316 MSKSSRV - ok
13:05:24.0923 1316 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
13:05:25.0204 1316 MSPCLOCK - ok
13:05:25.0234 1316 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
13:05:25.0574 1316 MSPQM - ok
13:05:25.0634 1316 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
13:05:25.0995 1316 mssmbios - ok
13:05:26.0025 1316 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
13:05:26.0345 1316 MSTEE - ok
13:05:26.0425 1316 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
13:05:26.0556 1316 Mup - ok
13:05:26.0626 1316 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
13:05:26.0936 1316 NABTSFEC - ok
13:05:27.0237 1316 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
13:05:27.0647 1316 napagent - ok
13:05:27.0727 1316 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
13:05:28.0098 1316 NDIS - ok
13:05:28.0148 1316 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
13:05:28.0488 1316 NdisIP - ok
13:05:28.0598 1316 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
13:05:28.0799 1316 NdisTapi - ok
13:05:28.0859 1316 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
13:05:29.0189 1316 Ndisuio - ok
13:05:29.0239 1316 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
13:05:29.0560 1316 NdisWan - ok
13:05:29.0620 1316 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
13:05:29.0730 1316 NDProxy - ok
13:05:29.0790 1316 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
13:05:30.0081 1316 NetBIOS - ok
13:05:30.0131 1316 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
13:05:30.0391 1316 NetBT - ok
13:05:30.0491 1316 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
13:05:30.0812 1316 NetDDE - ok
13:05:30.0832 1316 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
13:05:31.0112 1316 NetDDEdsdm - ok
13:05:31.0222 1316 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
13:05:31.0563 1316 Netlogon - ok
13:05:31.0643 1316 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
13:05:31.0933 1316 Netman - ok
13:05:31.0973 1316 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
13:05:32.0023 1316 Nla - ok
13:05:32.0104 1316 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
13:05:32.0374 1316 Npfs - ok
13:05:32.0714 1316 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
13:05:33.0085 1316 Ntfs - ok
13:05:33.0125 1316 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
13:05:33.0395 1316 NtLmSsp - ok
13:05:33.0686 1316 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
13:05:34.0066 1316 NtmsSvc - ok
13:05:34.0106 1316 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
13:05:34.0357 1316 Null - ok
13:05:34.0447 1316 [ 8990BBF55DDB4FCFB0656A5DABD15E86 ] NUVision C:\WINDOWS\system32\DRIVERS\NUVision.sys
13:05:34.0487 1316 NUVision ( UnsignedFile.Multi.Generic ) - warning
13:05:34.0487 1316 NUVision - detected UnsignedFile.Multi.Generic (1)
13:05:34.0747 1316 [ A28AB3B7E33467C65EE5858DA5CB166D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
13:05:35.0188 1316 nv - ok
13:05:35.0208 1316 nvcap - ok
13:05:35.0268 1316 [ 43B0A0774EA90BF699D267C45D2702F9 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
13:05:35.0318 1316 NVSvc - ok
13:05:35.0348 1316 nvTUNEP - ok
13:05:35.0368 1316 NVXBAR - ok
13:05:35.0428 1316 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
13:05:35.0719 1316 NwlnkFlt - ok
13:05:35.0739 1316 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
13:05:36.0029 1316 NwlnkFwd - ok
13:05:36.0109 1316 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
13:05:36.0380 1316 Parport - ok
13:05:36.0430 1316 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
13:05:36.0700 1316 PartMgr - ok
13:05:36.0770 1316 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
13:05:37.0041 1316 ParVdm - ok
13:05:37.0061 1316 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
13:05:37.0331 1316 PCI - ok
13:05:37.0371 1316 PCIDump - ok
13:05:37.0391 1316 PCIIde - ok
13:05:37.0441 1316 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
13:05:37.0722 1316 Pcmcia - ok
13:05:37.0802 1316 [ 0275215D01C3985E682A661B8826F371 ] Pctspk C:\WINDOWS\system32\pctspk.exe
13:05:38.0082 1316 Pctspk - ok
13:05:38.0102 1316 PDCOMP - ok
13:05:38.0112 1316 PDFRAME - ok
13:05:38.0132 1316 PDRELI - ok
13:05:38.0142 1316 PDRFRAME - ok
13:05:38.0162 1316 perc2 - ok
13:05:38.0182 1316 perc2hib - ok
13:05:38.0272 1316 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
13:05:38.0342 1316 PlugPlay - ok
13:05:38.0352 1316 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
13:05:38.0583 1316 PolicyAgent - ok
13:05:38.0663 1316 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
13:05:38.0953 1316 PptpMiniport - ok
13:05:39.0003 1316 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
13:05:39.0294 1316 Processor - ok
13:05:39.0334 1316 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
13:05:39.0574 1316 ProtectedStorage - ok
13:05:39.0604 1316 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
13:05:39.0875 1316 PSched - ok
13:05:39.0895 1316 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
13:05:40.0175 1316 Ptilink - ok
13:05:40.0235 1316 [ ACE8FE0E920CB8FBA057C024EAD33F84 ] Ptserlp C:\WINDOWS\system32\DRIVERS\ptserlp.sys
13:05:40.0536 1316 Ptserlp - ok
13:05:40.0546 1316 ql1080 - ok
13:05:40.0556 1316 Ql10wnt - ok
13:05:40.0576 1316 ql12160 - ok
13:05:40.0586 1316 ql1240 - ok
13:05:40.0606 1316 ql1280 - ok
13:05:40.0626 1316 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
13:05:40.0926 1316 RasAcd - ok
13:05:40.0986 1316 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
13:05:41.0257 1316 RasAuto - ok
13:05:41.0307 1316 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
13:05:41.0557 1316 Rasl2tp - ok
13:05:41.0637 1316 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
13:05:41.0928 1316 RasMan - ok
13:05:41.0938 1316 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
13:05:42.0188 1316 RasPppoe - ok
13:05:42.0258 1316 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
13:05:42.0559 1316 Raspti - ok
13:05:42.0659 1316 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
13:05:43.0039 1316 Rdbss - ok
13:05:43.0089 1316 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
13:05:43.0430 1316 RDPCDD - ok
13:05:43.0540 1316 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
13:05:43.0860 1316 rdpdr - ok
13:05:43.0921 1316 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
13:05:44.0101 1316 RDPWD - ok
13:05:44.0261 1316 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
13:05:44.0601 1316 RDSessMgr - ok
13:05:44.0652 1316 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
13:05:45.0022 1316 redbook - ok
13:05:45.0162 1316 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
13:05:45.0503 1316 RemoteAccess - ok
13:05:45.0623 1316 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
13:05:45.0923 1316 RemoteRegistry - ok
13:05:46.0044 1316 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
13:05:46.0374 1316 ROOTMODEM - ok
13:05:46.0464 1316 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
13:05:46.0735 1316 RpcLocator - ok
13:05:46.0805 1316 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
13:05:47.0035 1316 RpcSs - ok
13:05:47.0125 1316 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
13:05:47.0406 1316 RSVP - ok
13:05:47.0456 1316 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
13:05:47.0676 1316 SamSs - ok
13:05:47.0716 1316 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
13:05:47.0986 1316 SCardSvr - ok
13:05:48.0056 1316 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
13:05:48.0357 1316 Schedule - ok
13:05:48.0427 1316 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
13:05:48.0687 1316 Secdrv - ok
13:05:48.0747 1316 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
13:05:48.0998 1316 seclogon - ok
13:05:49.0028 1316 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
13:05:49.0298 1316 SENS - ok
13:05:49.0338 1316 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
13:05:49.0589 1316 serenum - ok
13:05:49.0659 1316 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
13:05:49.0929 1316 Serial - ok
13:05:49.0949 1316 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
13:05:50.0220 1316 Sfloppy - ok
13:05:50.0300 1316 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
13:05:50.0640 1316 SharedAccess - ok
13:05:50.0700 1316 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
13:05:50.0780 1316 ShellHWDetection - ok
13:05:50.0790 1316 Simbad - ok
13:05:50.0820 1316 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
13:05:51.0081 1316 SLIP - ok
13:05:51.0181 1316 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
13:05:51.0451 1316 SONYPVU1 - ok
13:05:51.0461 1316 Sparrow - ok
13:05:51.0541 1316 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
13:05:51.0792 1316 splitter - ok
13:05:51.0842 1316 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
13:05:51.0922 1316 Spooler - ok
13:05:51.0942 1316 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
13:05:52.0242 1316 sr - ok
13:05:52.0313 1316 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
13:05:52.0553 1316 srservice - ok
13:05:52.0643 1316 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
13:05:52.0813 1316 Srv - ok
13:05:52.0853 1316 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
13:05:53.0114 1316 SSDPSRV - ok
13:05:53.0194 1316 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
13:05:53.0504 1316 stisvc - ok
13:05:53.0554 1316 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
13:05:53.0805 1316 streamip - ok
13:05:53.0845 1316 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
13:05:54.0085 1316 swenum - ok
13:05:54.0125 1316 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
13:05:54.0406 1316 swmidi - ok
13:05:54.0426 1316 SwPrv - ok
13:05:54.0446 1316 symc810 - ok
13:05:54.0466 1316 symc8xx - ok
13:05:54.0476 1316 sym_hi - ok
13:05:54.0496 1316 sym_u3 - ok
13:05:54.0536 1316 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
13:05:54.0836 1316 sysaudio - ok
13:05:54.0906 1316 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
13:05:55.0157 1316 SysmonLog - ok
13:05:55.0237 1316 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
13:05:55.0507 1316 TapiSrv - ok
13:05:55.0587 1316 [ 25749E1AF2040668455946BE24A9E4E6 ] tbcspud C:\WINDOWS\system32\drivers\tbcspud.sys
13:05:55.0617 1316 tbcspud ( UnsignedFile.Multi.Generic ) - warning
13:05:55.0617 1316 tbcspud - detected UnsignedFile.Multi.Generic (1)
13:05:55.0727 1316 [ F7A36AD36C2D7504415EC3FA004F5467 ] tbcwdm C:\WINDOWS\system32\drivers\tbcwdm.sys
13:05:55.0838 1316 tbcwdm ( UnsignedFile.Multi.Generic ) - warning
13:05:55.0838 1316 tbcwdm - detected UnsignedFile.Multi.Generic (1)
13:05:55.0898 1316 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
13:05:56.0008 1316 Tcpip - ok
13:05:56.0058 1316 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
13:05:56.0328 1316 TDPIPE - ok
13:05:56.0358 1316 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
13:05:56.0629 1316 TDTCP - ok
13:05:56.0669 1316 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
13:05:56.0919 1316 TermDD - ok
13:05:56.0999 1316 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
13:05:57.0280 1316 TermService - ok
13:05:57.0330 1316 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
13:05:57.0360 1316 Themes - ok
13:05:57.0430 1316 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
13:05:57.0680 1316 TlntSvr - ok
13:05:57.0700 1316 TosIde - ok
13:05:57.0750 1316 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
13:05:58.0021 1316 TrkWks - ok
13:05:58.0081 1316 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
13:05:58.0341 1316 tunmp - ok
13:05:58.0371 1316 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
13:05:58.0632 1316 Udfs - ok
13:05:58.0652 1316 ultra - ok
13:05:58.0712 1316 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
13:05:59.0052 1316 Update - ok
13:05:59.0122 1316 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
13:05:59.0413 1316 upnphost - ok
13:05:59.0473 1316 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
13:05:59.0733 1316 UPS - ok
13:05:59.0783 1316 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
13:06:00.0054 1316 usbccgp - ok
13:06:00.0124 1316 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
13:06:00.0384 1316 usbhub - ok
13:06:00.0434 1316 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
13:06:00.0705 1316 USBSTOR - ok
13:06:00.0725 1316 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
13:06:00.0985 1316 usbuhci - ok
13:06:01.0035 1316 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
13:06:01.0326 1316 VgaSave - ok
13:06:01.0346 1316 ViaIde - ok
13:06:01.0436 1316 [ B289D19DF6103352D3C4B13C0ED79331 ] Vmodem C:\WINDOWS\system32\DRIVERS\vmodem.sys
13:06:01.0796 1316 Vmodem - ok
13:06:01.0836 1316 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
13:06:02.0087 1316 VolSnap - ok
13:06:02.0177 1316 [ 4A4448332075C5A909DF123C21616B2A ] Vpctcom C:\WINDOWS\system32\DRIVERS\vpctcom.sys
13:06:02.0607 1316 Vpctcom - ok
13:06:02.0677 1316 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
13:06:02.0948 1316 VSS - ok
13:06:03.0008 1316 [ 120E61AAC05F00C867A32DE493DAB9B4 ] Vvoice C:\WINDOWS\system32\DRIVERS\vvoice.sys
13:06:03.0308 1316 Vvoice - ok
13:06:03.0348 1316 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
13:06:03.0609 1316 W32Time - ok
13:06:03.0629 1316 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
13:06:03.0889 1316 Wanarp - ok
13:06:03.0959 1316 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
13:06:04.0039 1316 wanatw - ok
13:06:04.0059 1316 WDICA - ok
13:06:04.0110 1316 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
13:06:04.0370 1316 wdmaud - ok
13:06:04.0430 1316 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
13:06:04.0791 1316 WebClient - ok
13:06:04.0901 1316 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
13:06:05.0161 1316 winmgmt - ok
13:06:05.0241 1316 [ C7E39EA41233E9F5B86C8DA3A9F1E4A8 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll
13:06:05.0512 1316 WmdmPmSN - ok
13:06:05.0582 1316 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
13:06:05.0722 1316 Wmi - ok
13:06:05.0782 1316 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
13:06:06.0042 1316 WmiApSrv - ok
13:06:06.0102 1316 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
13:06:06.0383 1316 WS2IFSL - ok
13:06:06.0443 1316 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
13:06:06.0753 1316 wscsvc - ok
13:06:06.0783 1316 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
13:06:07.0044 1316 WSTCODEC - ok
13:06:07.0104 1316 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
13:06:07.0444 1316 wuauserv - ok
13:06:07.0575 1316 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
13:06:07.0895 1316 WZCSVC - ok
13:06:07.0955 1316 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
13:06:08.0235 1316 xmlprov - ok
13:06:08.0255 1316 ================ Scan global ===============================
13:06:08.0376 1316 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
13:06:08.0446 1316 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
13:06:08.0486 1316 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
13:06:08.0516 1316 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
13:06:08.0516 1316 [Global] - ok
13:06:08.0526 1316 ================ Scan MBR ==================================
13:06:08.0556 1316 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
13:06:09.0107 1316 \Device\Harddisk0\DR0 - ok
13:06:09.0117 1316 ================ Scan VBR ==================================
13:06:09.0117 1316 [ A399DF06B6EDEDC3AE98CF7C98D9F188 ] \Device\Harddisk0\DR0\Partition1
13:06:09.0127 1316 \Device\Harddisk0\DR0\Partition1 - ok
13:06:09.0127 1316 ================ Scan active images ========================
13:06:09.0137 1316 [ A32BEBAF723557681BFC6BD93E98BD26 ] C:\WINDOWS\system32\drivers\processr.sys
13:06:09.0137 1316 C:\WINDOWS\system32\drivers\processr.sys - ok
13:06:09.0147 1316 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
13:06:09.0147 1316 C:\WINDOWS\system32\drivers\videoprt.sys - ok
13:06:09.0167 1316 [ A28AB3B7E33467C65EE5858DA5CB166D ] C:\WINDOWS\system32\drivers\nv4_mini.sys
13:06:09.0167 1316 C:\WINDOWS\system32\drivers\nv4_mini.sys - ok
13:06:09.0177 1316 [ 33C3811F0AA728C9A73196FC061E1B01 ] C:\WINDOWS\system32\drivers\tbcos.sys
13:06:09.0177 1316 C:\WINDOWS\system32\drivers\tbcos.sys - ok
13:06:09.0187 1316 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
13:06:09.0187 1316 C:\WINDOWS\system32\drivers\ks.sys - ok
13:06:09.0197 1316 [ 25749E1AF2040668455946BE24A9E4E6 ] C:\WINDOWS\system32\drivers\tbcspud.sys
13:06:09.0197 1316 C:\WINDOWS\system32\drivers\tbcspud.sys - ok
13:06:09.0217 1316 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
13:06:09.0217 1316 C:\WINDOWS\system32\drivers\serial.sys - ok
13:06:09.0227 1316 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
13:06:09.0227 1316 C:\WINDOWS\system32\drivers\modem.sys - ok
13:06:09.0237 1316 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
13:06:09.0237 1316 C:\WINDOWS\system32\drivers\fdc.sys - ok
13:06:09.0247 1316 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
13:06:09.0247 1316 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
13:06:09.0267 1316 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
13:06:09.0267 1316 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
13:06:09.0277 1316 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
13:06:09.0277 1316 C:\WINDOWS\system32\drivers\mouclass.sys - ok
13:06:09.0287 1316 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
13:06:09.0287 1316 C:\WINDOWS\system32\drivers\serenum.sys - ok
13:06:09.0297 1316 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
13:06:09.0297 1316 C:\WINDOWS\system32\drivers\parport.sys - ok
13:06:09.0317 1316 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
13:06:09.0317 1316 C:\WINDOWS\system32\drivers\imapi.sys - ok
13:06:09.0327 1316 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
13:06:09.0327 1316 C:\WINDOWS\system32\drivers\cdrom.sys - ok
13:06:09.0337 1316 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
13:06:09.0337 1316 C:\WINDOWS\system32\drivers\redbook.sys - ok
13:06:09.0347 1316 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
13:06:09.0347 1316 C:\WINDOWS\system32\drivers\usbport.sys - ok
13:06:09.0367 1316 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
13:06:09.0367 1316 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
13:06:09.0377 1316 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
13:06:09.0377 1316 C:\WINDOWS\system32\drivers\audstub.sys - ok
13:06:09.0387 1316 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
13:06:09.0387 1316 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
13:06:09.0397 1316 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
13:06:09.0397 1316 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
13:06:09.0417 1316 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
13:06:09.0417 1316 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
13:06:09.0427 1316 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
13:06:09.0427 1316 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
13:06:09.0437 1316 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
13:06:09.0437 1316 C:\WINDOWS\system32\drivers\tdi.sys - ok
13:06:09.0457 1316 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
13:06:09.0457 1316 C:\WINDOWS\system32\drivers\psched.sys - ok
13:06:09.0467 1316 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
13:06:09.0467 1316 C:\WINDOWS\system32\drivers\raspptp.sys - ok
13:06:09.0477 1316 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
13:06:09.0477 1316 C:\WINDOWS\system32\drivers\msgpc.sys - ok
13:06:09.0487 1316 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
13:06:09.0487 1316 C:\WINDOWS\system32\drivers\ptilink.sys - ok
13:06:09.0507 1316 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
13:06:09.0507 1316 C:\WINDOWS\system32\drivers\raspti.sys - ok
13:06:09.0517 1316 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
13:06:09.0517 1316 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
13:06:09.0527 1316 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] C:\WINDOWS\system32\drivers\wanatw4.sys
13:06:09.0527 1316 C:\WINDOWS\system32\drivers\wanatw4.sys - ok
13:06:09.0537 1316 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
13:06:09.0537 1316 C:\WINDOWS\system32\drivers\swenum.sys - ok
13:06:09.0547 1316 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
13:06:09.0547 1316 C:\WINDOWS\system32\drivers\termdd.sys - ok
13:06:09.0567 1316 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
13:06:09.0567 1316 C:\WINDOWS\system32\drivers\update.sys - ok
13:06:09.0577 1316 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
13:06:09.0577 1316 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
13:06:09.0587 1316 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
13:06:09.0587 1316 C:\WINDOWS\system32\drivers\usbd.sys - ok
13:06:09.0597 1316 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
13:06:09.0597 1316 C:\WINDOWS\system32\drivers\usbhub.sys - ok
13:06:09.0617 1316 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
13:06:09.0617 1316 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
13:06:09.0627 1316 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
13:06:09.0627 1316 C:\WINDOWS\system32\drivers\drmk.sys - ok
13:06:09.0637 1316 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
13:06:09.0637 1316 C:\WINDOWS\system32\drivers\portcls.sys - ok
13:06:09.0647 1316 [ F7A36AD36C2D7504415EC3FA004F5467 ] C:\WINDOWS\system32\drivers\tbcwdm.sys
13:06:09.0647 1316 C:\WINDOWS\system32\drivers\tbcwdm.sys - ok
13:06:09.0668 1316 [ 065639773D8B03F33577F6CDAEA21063 ] C:\WINDOWS\system32\drivers\gameenum.sys
13:06:09.0668 1316 C:\WINDOWS\system32\drivers\gameenum.sys - ok
13:06:09.0678 1316 [ 1992E0D143B09653AB0F9C5E04B0FD65 ] C:\WINDOWS\system32\drivers\MODEMCSA.sys
13:06:09.0678 1316 C:\WINDOWS\system32\drivers\MODEMCSA.sys - ok
13:06:09.0688 1316 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
13:06:09.0688 1316 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
13:06:09.0698 1316 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
13:06:09.0698 1316 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
13:06:09.0708 1316 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
13:06:09.0708 1316 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
13:06:09.0718 1316 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
13:06:09.0718 1316 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
13:06:09.0728 1316 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
13:06:09.0728 1316 C:\WINDOWS\system32\drivers\beep.sys - ok
13:06:09.0738 1316 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
13:06:09.0738 1316 C:\WINDOWS\system32\drivers\hidparse.sys - ok
13:06:09.0748 1316 [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
13:06:09.0748 1316 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
13:06:09.0758 1316 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
13:06:09.0758 1316 C:\WINDOWS\system32\drivers\null.sys - ok
13:06:09.0768 1316 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
13:06:09.0768 1316 C:\WINDOWS\system32\drivers\vga.sys - ok
13:06:09.0788 1316 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
13:06:09.0788 1316 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
13:06:09.0798 1316 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
13:06:09.0798 1316 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
13:06:09.0808 1316 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
13:06:09.0808 1316 C:\WINDOWS\system32\drivers\msfs.sys - ok
13:06:09.0818 1316 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
13:06:09.0818 1316 C:\WINDOWS\system32\drivers\npfs.sys - ok
13:06:09.0828 1316 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
13:06:09.0828 1316 C:\WINDOWS\system32\drivers\ipsec.sys - ok
13:06:09.0838 1316 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
13:06:09.0838 1316 C:\WINDOWS\system32\drivers\rasacd.sys - ok
13:06:09.0848 1316 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
13:06:09.0848 1316 C:\WINDOWS\system32\drivers\tcpip.sys - ok
13:06:09.0858 1316 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
13:06:09.0858 1316 C:\WINDOWS\system32\drivers\netbt.sys - ok
13:06:09.0868 1316 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
13:06:09.0868 1316 C:\WINDOWS\system32\drivers\ipnat.sys - ok
13:06:09.0878 1316 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
13:06:09.0878 1316 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
13:06:09.0888 1316 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
13:06:09.0888 1316 C:\WINDOWS\system32\drivers\afd.sys - ok
13:06:09.0908 1316 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
13:06:09.0908 1316 C:\WINDOWS\system32\drivers\wanarp.sys - ok
13:06:09.0908 1316 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
13:06:09.0908 1316 C:\WINDOWS\system32\drivers\netbios.sys - ok
13:06:09.0918 1316 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
13:06:09.0918 1316 C:\WINDOWS\system32\drivers\rdbss.sys - ok
13:06:09.0928 1316 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
13:06:09.0928 1316 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
13:06:09.0938 1316 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
13:06:09.0938 1316 C:\WINDOWS\system32\drivers\fips.sys - ok
13:06:09.0958 1316 [ 5D7BE7B19E827125E016325334E58FF1 ] C:\WINDOWS\system32\drivers\BANTExt.sys
13:06:09.0958 1316 C:\WINDOWS\system32\drivers\BANTExt.sys - ok
13:06:09.0968 1316 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
13:06:09.0968 1316 C:\WINDOWS\system32\smss.exe - ok
13:06:09.0978 1316 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
13:06:09.0978 1316 C:\WINDOWS\system32\ntdll.dll - ok
13:06:09.0988 1316 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
13:06:09.0988 1316 C:\WINDOWS\system32\autochk.exe - ok
13:06:09.0998 1316 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
13:06:09.0998 1316 C:\WINDOWS\system32\sfcfiles.dll - ok
13:06:10.0008 1316 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
13:06:10.0008 1316 C:\WINDOWS\system32\drivers\cdfs.sys - ok
13:06:10.0018 1316 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
13:06:10.0018 1316 C:\WINDOWS\system32\drivers\wmilib.sys - ok
13:06:10.0028 1316 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
13:06:10.0028 1316 C:\WINDOWS\system32\drivers\atapi.sys - ok
13:06:10.0038 1316 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
13:06:10.0038 1316 C:\WINDOWS\system32\drivers\dxapi.sys - ok
13:06:10.0048 1316 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
13:06:10.0048 1316 C:\WINDOWS\system32\watchdog.sys - ok
13:06:10.0058 1316 [ F984CAE54E536681B209F7816D8F68DA ] C:\WINDOWS\system32\win32k.sys
13:06:10.0058 1316 C:\WINDOWS\system32\win32k.sys - ok
13:06:10.0078 1316 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
13:06:10.0078 1316 C:\WINDOWS\system32\csrss.exe - ok
13:06:10.0088 1316 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
13:06:10.0088 1316 C:\WINDOWS\system32\basesrv.dll - ok
13:06:10.0098 1316 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
13:06:10.0098 1316 C:\WINDOWS\system32\csrsrv.dll - ok
13:06:10.0108 1316 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
13:06:10.0108 1316 C:\WINDOWS\system32\winsrv.dll - ok
13:06:10.0118 1316 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
13:06:10.0118 1316 C:\WINDOWS\system32\gdi32.dll - ok
13:06:10.0128 1316 [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
13:06:10.0128 1316 C:\WINDOWS\system32\kernel32.dll - ok
13:06:10.0138 1316 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
13:06:10.0138 1316 C:\WINDOWS\system32\user32.dll - ok
13:06:10.0148 1316 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
13:06:10.0148 1316 C:\WINDOWS\system32\drivers\dxg.sys - ok
13:06:10.0158 1316 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
13:06:10.0158 1316 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
13:06:10.0168 1316 [ E4F2EAAA31F65F09B9FF35D1A5D832B8 ] C:\WINDOWS\system32\nv4_disp.dll
13:06:10.0168 1316 C:\WINDOWS\system32\nv4_disp.dll - ok
13:06:10.0178 1316 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
13:06:10.0178 1316 C:\WINDOWS\system32\vga.dll - ok
13:06:10.0188 1316 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
13:06:10.0188 1316 C:\WINDOWS\system32\winlogon.exe - ok
13:06:10.0198 1316 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
13:06:10.0198 1316 C:\WINDOWS\system32\advapi32.dll - ok
13:06:10.0208 1316 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
13:06:10.0208 1316 C:\WINDOWS\system32\rpcrt4.dll - ok
13:06:10.0218 1316 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
13:06:10.0218 1316 C:\WINDOWS\system32\secur32.dll - ok
13:06:10.0228 1316 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
13:06:10.0238 1316 C:\WINDOWS\system32\authz.dll - ok
13:06:10.0248 1316 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
13:06:10.0248 1316 C:\WINDOWS\system32\msvcrt.dll - ok
13:06:10.0258 1316 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
13:06:10.0258 1316 C:\WINDOWS\system32\crypt32.dll - ok
13:06:10.0268 1316 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
13:06:10.0268 1316 C:\WINDOWS\system32\msasn1.dll - ok
13:06:10.0278 1316 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
13:06:10.0278 1316 C:\WINDOWS\system32\nddeapi.dll - ok
13:06:10.0288 1316 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
13:06:10.0288 1316 C:\WINDOWS\system32\netapi32.dll - ok
13:06:10.0298 1316 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
13:06:10.0298 1316 C:\WINDOWS\system32\profmap.dll - ok
13:06:10.0308 1316 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
13:06:10.0308 1316 C:\WINDOWS\system32\userenv.dll - ok
13:06:10.0318 1316 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
13:06:10.0318 1316 C:\WINDOWS\system32\psapi.dll - ok
13:06:10.0328 1316 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
13:06:10.0328 1316 C:\WINDOWS\system32\regapi.dll - ok
13:06:10.0338 1316 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
13:06:10.0338 1316 C:\WINDOWS\system32\setupapi.dll - ok
13:06:10.0359 1316 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
13:06:10.0359 1316 C:\WINDOWS\system32\version.dll - ok
13:06:10.0369 1316 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
13:06:10.0369 1316 C:\WINDOWS\system32\winsta.dll - ok
13:06:10.0379 1316 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
13:06:10.0379 1316 C:\WINDOWS\system32\wintrust.dll - ok
13:06:10.0389 1316 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
13:06:10.0389 1316 C:\WINDOWS\system32\imagehlp.dll - ok
13:06:10.0399 1316 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
13:06:10.0399 1316 C:\WINDOWS\system32\ws2_32.dll - ok
13:06:10.0409 1316 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
13:06:10.0409 1316 C:\WINDOWS\system32\ws2help.dll - ok
13:06:10.0419 1316 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
13:06:10.0419 1316 C:\WINDOWS\system32\imm32.dll - ok
13:06:10.0429 1316 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
13:06:10.0429 1316 C:\WINDOWS\system32\kbdus.dll - ok
13:06:10.0439 1316 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
13:06:10.0439 1316 C:\WINDOWS\system32\msgina.dll - ok
13:06:10.0449 1316 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
13:06:10.0449 1316 C:\WINDOWS\system32\comctl32.dll - ok
13:06:10.0459 1316 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
13:06:10.0459 1316 C:\WINDOWS\system32\odbc32.dll - ok
13:06:10.0469 1316 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
13:06:10.0469 1316 C:\WINDOWS\system32\comdlg32.dll - ok
13:06:10.0479 1316 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
13:06:10.0479 1316 C:\WINDOWS\system32\shell32.dll - ok
13:06:10.0489 1316 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
13:06:10.0489 1316 C:\WINDOWS\system32\shlwapi.dll - ok
13:06:10.0499 1316 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
13:06:10.0499 1316 C:\WINDOWS\system32\sxs.dll - ok
13:06:10.0509 1316 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
13:06:10.0509 1316 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
13:06:10.0519 1316 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
13:06:10.0519 1316 C:\WINDOWS\system32\odbcint.dll - ok
13:06:10.0539 1316 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
13:06:10.0539 1316 C:\WINDOWS\system32\shsvcs.dll - ok
13:06:10.0549 1316 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
13:06:10.0549 1316 C:\WINDOWS\system32\sfc.dll - ok
13:06:10.0559 1316 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
13:06:10.0559 1316 C:\WINDOWS\system32\sfc_os.dll - ok
13:06:10.0569 1316 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
13:06:10.0569 1316 C:\WINDOWS\system32\ole32.dll - ok
13:06:10.0579 1316 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
13:06:10.0579 1316 C:\WINDOWS\system32\apphelp.dll - ok
13:06:10.0589 1316 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
13:06:10.0589 1316 C:\WINDOWS\system32\lsass.exe - ok
13:06:10.0599 1316 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
13:06:10.0599 1316 C:\WINDOWS\system32\services.exe - ok
13:06:10.0609 1316 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
13:06:10.0609 1316 C:\WINDOWS\system32\lsasrv.dll - ok
13:06:10.0619 1316 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
13:06:10.0619 1316 C:\WINDOWS\system32\ncobjapi.dll - ok
13:06:10.0629 1316 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
13:06:10.0629 1316 C:\WINDOWS\system32\msvcp60.dll - ok
13:06:10.0639 1316 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
13:06:10.0639 1316 C:\WINDOWS\system32\scesrv.dll - ok
13:06:10.0659 1316 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
13:06:10.0659 1316 C:\WINDOWS\system32\mpr.dll - ok
13:06:10.0659 1316 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
13:06:10.0659 1316 C:\WINDOWS\system32\ntdsapi.dll - ok
13:06:10.0669 1316 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
13:06:10.0669 1316 C:\WINDOWS\system32\dnsapi.dll - ok
13:06:10.0679 1316 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
13:06:10.0679 1316 C:\WINDOWS\system32\umpnpmgr.dll - ok
13:06:10.0689 1316 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
13:06:10.0689 1316 C:\WINDOWS\system32\shimeng.dll - ok
13:06:10.0709 1316 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
13:06:10.0709 1316 C:\WINDOWS\system32\wldap32.dll - ok
13:06:10.0719 1316 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
13:06:10.0719 1316 C:\WINDOWS\AppPatch\acadproc.dll - ok
13:06:10.0729 1316 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
13:06:10.0729 1316 C:\WINDOWS\system32\samlib.dll - ok
13:06:10.0739 1316 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
13:06:10.0739 1316 C:\WINDOWS\system32\samsrv.dll - ok
13:06:10.0749 1316 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
13:06:10.0749 1316 C:\WINDOWS\AppPatch\acgenral.dll - ok
13:06:10.0759 1316 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
13:06:10.0759 1316 C:\WINDOWS\system32\cryptdll.dll - ok
13:06:10.0769 1316 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
13:06:10.0769 1316 C:\WINDOWS\system32\winmm.dll - ok
13:06:10.0779 1316 [ 1B2BE5777F69A71778F52FFEE1C798D6 ] C:\WINDOWS\system32\oleaut32.dll
13:06:10.0779 1316 C:\WINDOWS\system32\oleaut32.dll - ok
13:06:10.0789 1316 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
13:06:10.0789 1316 C:\WINDOWS\system32\msacm32.dll - ok
13:06:10.0799 1316 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
13:06:10.0799 1316 C:\WINDOWS\system32\uxtheme.dll - ok
13:06:10.0809 1316 [ E73F18195CCF4AAAA87B2D22E83F791C ] C:\WINDOWS\system32\serwvdrv.dll
13:06:10.0809 1316 C:\WINDOWS\system32\serwvdrv.dll - ok
13:06:10.0829 1316 [ EC2AD9AC452E0A8D976FB1B1718517CE ] C:\WINDOWS\system32\umdmxfrm.dll
13:06:10.0829 1316 C:\WINDOWS\system32\umdmxfrm.dll - ok
13:06:10.0839 1316 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
13:06:10.0839 1316 C:\WINDOWS\system32\msapsspc.dll - ok
13:06:10.0849 1316 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
13:06:10.0849 1316 C:\WINDOWS\system32\msvcrt40.dll - ok
13:06:10.0859 1316 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
13:06:10.0859 1316 C:\WINDOWS\system32\schannel.dll - ok
13:06:10.0869 1316 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
13:06:10.0869 1316 C:\WINDOWS\system32\digest.dll - ok
13:06:10.0879 1316 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
13:06:10.0879 1316 C:\WINDOWS\system32\msnsspc.dll - ok
13:06:10.0889 1316 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
13:06:10.0889 1316 C:\WINDOWS\system32\msprivs.dll - ok
13:06:10.0899 1316 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
13:06:10.0899 1316 C:\WINDOWS\system32\msctfime.ime - ok
13:06:10.0909 1316 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
13:06:10.0909 1316 C:\WINDOWS\system32\kerberos.dll - ok
13:06:10.0919 1316 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
13:06:10.0919 1316 C:\WINDOWS\system32\msv1_0.dll - ok
13:06:10.0929 1316 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
13:06:10.0929 1316 C:\WINDOWS\system32\iphlpapi.dll - ok
13:06:10.0939 1316 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
13:06:10.0939 1316 C:\WINDOWS\system32\netlogon.dll - ok
13:06:10.0949 1316 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
13:06:10.0949 1316 C:\WINDOWS\system32\w32time.dll - ok
13:06:10.0959 1316 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
13:06:10.0959 1316 C:\WINDOWS\system32\wdigest.dll - ok
13:06:10.0969 1316 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
13:06:10.0969 1316 C:\WINDOWS\system32\rsaenh.dll - ok
13:06:10.0979 1316 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
13:06:10.0979 1316 C:\WINDOWS\system32\winscard.dll - ok
13:06:10.0989 1316 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
13:06:10.0989 1316 C:\WINDOWS\system32\wtsapi32.dll - ok
13:06:11.0009 1316 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
13:06:11.0009 1316 C:\WINDOWS\system32\scecli.dll - ok
13:06:11.0019 1316 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
13:06:11.0019 1316 C:\WINDOWS\system32\svchost.exe - ok
13:06:11.0029 1316 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
13:06:11.0029 1316 C:\WINDOWS\system32\ntmarta.dll - ok
13:06:11.0039 1316 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
13:06:11.0039 1316 C:\WINDOWS\system32\rpcss.dll - ok
13:06:11.0050 1316 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
13:06:11.0050 1316 C:\WINDOWS\system32\eventlog.dll - ok
13:06:11.0070 1316 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
13:06:11.0070 1316 C:\WINDOWS\system32\xpsp2res.dll - ok
13:06:11.0080 1316 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
13:06:11.0080 1316 C:\WINDOWS\system32\logonui.exe - ok
13:06:11.0090 1316 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
13:06:11.0090 1316 C:\WINDOWS\system32\mswsock.dll - ok
13:06:11.0100 1316 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
13:06:11.0100 1316 C:\WINDOWS\system32\duser.dll - ok
13:06:11.0110 1316 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
13:06:11.0110 1316 C:\WINDOWS\system32\hnetcfg.dll - ok
13:06:11.0120 1316 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
13:06:11.0120 1316 C:\WINDOWS\system32\msimg32.dll - ok
13:06:11.0130 1316 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
13:06:11.0130 1316 C:\WINDOWS\system32\oleacc.dll - ok
13:06:11.0140 1316 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
13:06:11.0140 1316 C:\WINDOWS\system32\wshtcpip.dll - ok
13:06:11.0150 1316 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
13:06:11.0150 1316 C:\WINDOWS\system32\winrnr.dll - ok
13:06:11.0160 1316 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
13:06:11.0160 1316 C:\WINDOWS\system32\rasadhlp.dll - ok
13:06:11.0170 1316 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
13:06:11.0170 1316 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
13:06:11.0180 1316 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
13:06:11.0180 1316 C:\WINDOWS\system32\cscdll.dll - ok
13:06:11.0190 1316 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
13:06:11.0190 1316 C:\WINDOWS\system32\dimsntfy.dll - ok
13:06:11.0200 1316 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
13:06:11.0200 1316 C:\WINDOWS\system32\wlnotify.dll - ok
13:06:11.0210 1316 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
13:06:11.0210 1316 C:\WINDOWS\system32\winspool.drv - ok
13:06:11.0230 1316 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
13:06:11.0230 1316 C:\WINDOWS\system32\dhcpcsvc.dll - ok
13:06:11.0240 1316 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
13:06:11.0240 1316 C:\WINDOWS\system32\dnsrslvr.dll - ok
13:06:11.0250 1316 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
13:06:11.0250 1316 C:\WINDOWS\system32\clbcatq.dll - ok
13:06:11.0260 1316 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
13:06:11.0260 1316 C:\WINDOWS\system32\lmhsvc.dll - ok
13:06:11.0270 1316 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
13:06:11.0270 1316 C:\WINDOWS\system32\wzcsvc.dll - ok
13:06:11.0280 1316 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
13:06:11.0280 1316 C:\WINDOWS\system32\comres.dll - ok
13:06:11.0290 1316 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
13:06:11.0290 1316 C:\WINDOWS\system32\rtutils.dll - ok
13:06:11.0300 1316 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
13:06:11.0300 1316 C:\WINDOWS\system32\wmi.dll - ok
13:06:11.0310 1316 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
13:06:11.0310 1316 C:\WINDOWS\system32\eapolqec.dll - ok
13:06:11.0320 1316 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
13:06:11.0320 1316 C:\WINDOWS\system32\atl.dll - ok
13:06:11.0340 1316 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
13:06:11.0340 1316 C:\WINDOWS\system32\qutil.dll - ok
13:06:11.0350 1316 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
13:06:11.0350 1316 C:\WINDOWS\system32\shgina.dll - ok
13:06:11.0360 1316 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
13:06:11.0360 1316 C:\WINDOWS\system32\dot3api.dll - ok
13:06:11.0370 1316 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
13:06:11.0370 1316 C:\WINDOWS\system32\esent.dll - ok
13:06:11.0380 1316 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
13:06:11.0380 1316 C:\WINDOWS\system32\schedsvc.dll - ok
13:06:11.0390 1316 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
13:06:11.0390 1316 C:\WINDOWS\system32\rastls.dll - ok
13:06:11.0400 1316 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
13:06:11.0400 1316 C:\WINDOWS\system32\cryptui.dll - ok
13:06:11.0410 1316 [ 9AD88EA663124336E88EB031F917CE20 ] C:\WINDOWS\system32\wininet.dll
13:06:11.0410 1316 C:\WINDOWS\system32\wininet.dll - ok
13:06:11.0420 1316 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
13:06:11.0420 1316 C:\WINDOWS\system32\normaliz.dll - ok
13:06:11.0430 1316 [ BCA608797A3E8EEC0094CD6D596D77D7 ] C:\WINDOWS\system32\urlmon.dll
13:06:11.0430 1316 C:\WINDOWS\system32\urlmon.dll - ok
13:06:11.0440 1316 [ 994B77915EA49A467CDA144806AE42D6 ] C:\WINDOWS\system32\iertutil.dll
13:06:11.0440 1316 C:\WINDOWS\system32\iertutil.dll - ok
13:06:11.0450 1316 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
13:06:11.0450 1316 C:\WINDOWS\system32\mprapi.dll - ok
13:06:11.0460 1316 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
13:06:11.0460 1316 C:\WINDOWS\system32\activeds.dll - ok
13:06:11.0470 1316 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
13:06:11.0470 1316 C:\WINDOWS\system32\adsldpc.dll - ok
13:06:11.0480 1316 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
13:06:11.0480 1316 C:\WINDOWS\system32\rasapi32.dll - ok
13:06:11.0490 1316 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
13:06:11.0490 1316 C:\WINDOWS\system32\rasman.dll - ok
13:06:11.0500 1316 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
13:06:11.0500 1316 C:\WINDOWS\system32\tapi32.dll - ok
13:06:11.0520 1316 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
13:06:11.0520 1316 C:\WINDOWS\system32\riched20.dll - ok
13:06:11.0530 1316 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
13:06:11.0530 1316 C:\WINDOWS\system32\cscui.dll - ok
13:06:11.0540 1316 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
13:06:11.0540 1316 C:\WINDOWS\system32\raschap.dll - ok
13:06:11.0550 1316 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
13:06:11.0550 1316 C:\WINDOWS\system32\powrprof.dll - ok
13:06:11.0560 1316 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
13:06:11.0560 1316 C:\WINDOWS\system32\dpcdll.dll - ok
13:06:11.0570 1316 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
13:06:11.0570 1316 C:\WINDOWS\system32\netman.dll - ok
13:06:11.0580 1316 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
13:06:11.0580 1316 C:\WINDOWS\system32\netshell.dll - ok
13:06:11.0590 1316 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
13:06:11.0590 1316 C:\WINDOWS\system32\spoolsv.exe - ok
13:06:11.0600 1316 [ F3D363D8D7519D10B1FE7142CD927343 ] C:\WINDOWS\system32\NavLogon.dll
13:06:11.0600 1316 C:\WINDOWS\system32\NavLogon.dll - ok
13:06:11.0610 1316 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
13:06:11.0610 1316 C:\WINDOWS\system32\userinit.exe - ok
13:06:11.0620 1316 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
13:06:11.0620 1316 C:\WINDOWS\system32\credui.dll - ok
13:06:11.0630 1316 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
13:06:11.0630 1316 C:\WINDOWS\explorer.exe - ok
13:06:11.0650 1316 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
13:06:11.0650 1316 C:\WINDOWS\system32\dot3dlg.dll - ok
13:06:11.0660 1316 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
13:06:11.0660 1316 C:\WINDOWS\system32\onex.dll - ok
13:06:11.0660 1316 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
13:06:11.0660 1316 C:\WINDOWS\system32\eappcfg.dll - ok
13:06:11.0670 1316 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
13:06:11.0670 1316 C:\WINDOWS\system32\browseui.dll - ok
13:06:11.0690 1316 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
13:06:11.0690 1316 C:\WINDOWS\system32\eappprxy.dll - ok
13:06:11.0700 1316 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
13:06:11.0700 1316 C:\WINDOWS\system32\wzcsapi.dll - ok
13:06:11.0710 1316 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
13:06:11.0710 1316 C:\WINDOWS\system32\audiosrv.dll - ok
13:06:11.0720 1316 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
13:06:11.0720 1316 C:\WINDOWS\system32\shdocvw.dll - ok
13:06:11.0730 1316 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
13:06:11.0730 1316 C:\WINDOWS\system32\msidle.dll - ok
13:06:11.0741 1316 [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
13:06:11.0741 1316 C:\WINDOWS\system32\wkssvc.dll - ok
13:06:11.0761 1316 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
13:06:11.0761 1316 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
13:06:11.0771 1316 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
13:06:11.0771 1316 C:\WINDOWS\system32\wdmaud.drv - ok
13:06:11.0781 1316 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
13:06:11.0781 1316 C:\WINDOWS\system32\webclnt.dll - ok
13:06:11.0791 1316 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
13:06:11.0791 1316 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
13:06:11.0801 1316 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
13:06:11.0801 1316 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
13:06:11.0811 1316 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
13:06:11.0811 1316 C:\WINDOWS\system32\drivers\splitter.sys - ok
13:06:11.0821 1316 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
13:06:11.0821 1316 C:\WINDOWS\system32\drivers\aec.sys - ok
13:06:11.0831 1316 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
13:06:11.0831 1316 C:\WINDOWS\system32\drivers\swmidi.sys - ok
13:06:11.0841 1316 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
13:06:11.0841 1316 C:\WINDOWS\system32\drivers\dmusic.sys - ok
13:06:11.0851 1316 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
13:06:11.0851 1316 C:\WINDOWS\system32\drivers\kmixer.sys - ok
13:06:11.0861 1316 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] C:\WINDOWS\system32\drivers\parvdm.sys
13:06:11.0861 1316 C:\WINDOWS\system32\drivers\parvdm.sys - ok
13:06:11.0881 1316 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
13:06:11.0881 1316 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
13:06:11.0891 1316 [ 85180CF88C5EBAD73B452A43A004CA51 ] C:\Program Files\Common Files\AOL\acs\AOLacsd.exe
13:06:11.0891 1316 C:\Program Files\Common Files\AOL\acs\AOLacsd.exe - ok
13:06:11.0901 1316 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
13:06:11.0901 1316 C:\WINDOWS\system32\desk.cpl - ok
13:06:11.0911 1316 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
13:06:11.0911 1316 C:\WINDOWS\system32\msacm32.drv - ok
13:06:11.0911 1316 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
13:06:11.0911 1316 C:\WINDOWS\system32\midimap.dll - ok
13:06:11.0931 1316 [ 6DBD8C6D28EEB5BC16C730FF07AE5979 ] C:\Program Files\Common Files\AOL\acs\AOLacsd.dll
13:06:11.0931 1316 C:\Program Files\Common Files\AOL\acs\AOLacsd.dll - ok
13:06:11.0941 1316 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
13:06:11.0941 1316 C:\WINDOWS\system32\themeui.dll - ok
13:06:11.0951 1316 [ 7332AED6A02FE37C4356C40628E175CE ] C:\Program Files\Common Files\AOL\acs\xpat.dll
13:06:11.0951 1316 C:\Program Files\Common Files\AOL\acs\xpat.dll - ok
13:06:11.0961 1316 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
13:06:11.0961 1316 C:\WINDOWS\system32\actxprxy.dll - ok
13:06:11.0971 1316 [ C6B2AD321E6C12E12898D1CAE587D0D5 ] C:\Program Files\Common Files\AOL\acs\shfolder.dll
13:06:11.0971 1316 C:\Program Files\Common Files\AOL\acs\shfolder.dll - ok
13:06:11.0981 1316 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
13:06:11.0981 1316 C:\WINDOWS\system32\cmd.exe - ok
13:06:11.0991 1316 [ 903C8C110131B8A71501514B61A17761 ] C:\WINDOWS\system32\ieframe.dll
13:06:11.0991 1316 C:\WINDOWS\system32\ieframe.dll - ok
13:06:12.0001 1316 [ 20D04091EBA710F6988F710507D85868 ] C:\WINDOWS\system32\drivers\aspi32.sys
13:06:12.0001 1316 C:\WINDOWS\system32\drivers\aspi32.sys - ok
13:06:12.0011 1316 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
13:06:12.0011 1316 C:\WINDOWS\system32\cryptsvc.dll - ok
13:06:12.0021 1316 [ 43B0A0774EA90BF699D267C45D2702F9 ] C:\WINDOWS\system32\nvsvc32.exe
13:06:12.0021 1316 C:\WINDOWS\system32\nvsvc32.exe - ok
13:06:12.0031 1316 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
13:06:12.0031 1316 C:\WINDOWS\system32\certcli.dll - ok
13:06:12.0051 1316 [ 0B5EDD2871209EA886A9B48A36828D65 ] C:\Program Files\Common Files\AOL\acs\ACSMDiag.dll
13:06:12.0051 1316 C:\Program Files\Common Files\AOL\acs\ACSMDiag.dll - ok
13:06:12.0061 1316 [ 0275215D01C3985E682A661B8826F371 ] C:\WINDOWS\system32\pctspk.exe
13:06:12.0061 1316 C:\WINDOWS\system32\pctspk.exe - ok
13:06:12.0071 1316 [ E01945331345F678AFAE3ECD5369D61A ] C:\Program Files\Common Files\AOL\AOLDiag\tbdiag.dll
13:06:12.0071 1316 C:\Program Files\Common Files\AOL\AOLDiag\tbdiag.dll - ok
13:06:12.0081 1316 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
13:06:12.0081 1316 C:\WINDOWS\system32\srvsvc.dll - ok
13:06:12.0091 1316 [ 382668323400BD3BCFE9FFF249515975 ] C:\WINDOWS\system32\avifil32.dll
13:06:12.0091 1316 C:\WINDOWS\system32\avifil32.dll - ok
13:06:12.0101 1316 [ 03F469B6C2E743565A41AD0997FD493C ] C:\WINDOWS\system32\nvcpl.dll
13:06:12.0101 1316 C:\WINDOWS\system32\nvcpl.dll - ok
13:06:12.0111 1316 [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
13:06:12.0111 1316 C:\WINDOWS\system32\hidserv.dll - ok
13:06:12.0121 1316 [ 235B2311786AC007AD644B12A2DA8AC7 ] C:\WINDOWS\system32\msvfw32.dll
13:06:12.0121 1316 C:\WINDOWS\system32\msvfw32.dll - ok
13:06:12.0141 1316 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
13:06:12.0141 1316 C:\WINDOWS\system32\hid.dll - ok
13:06:12.0151 1316 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
13:06:12.0151 1316 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
13:06:12.0161 1316 [ 3924B7B6258D8F35D9BEE1F61D453553 ] C:\Program Files\Common Files\AOL\acs\ACSCmn.dll
13:06:12.0161 1316 C:\Program Files\Common Files\AOL\acs\ACSCmn.dll - ok
13:06:12.0161 1316 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
13:06:12.0161 1316 C:\WINDOWS\system32\netmsg.dll - ok
13:06:12.0171 1316 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
13:06:12.0171 1316 C:\WINDOWS\system32\ipsecsvc.dll - ok
13:06:12.0191 1316 [ 5B19B557B0C188210A56A6B699D90B8F ] C:\WINDOWS\system32\regsvc.dll
13:06:12.0191 1316 C:\WINDOWS\system32\regsvc.dll - ok
13:06:12.0201 1316 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
13:06:12.0201 1316 C:\WINDOWS\system32\es.dll - ok
13:06:12.0211 1316 [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
13:06:12.0211 1316 C:\WINDOWS\system32\oakley.dll - ok
13:06:12.0221 1316 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
13:06:12.0221 1316 C:\WINDOWS\system32\ersvc.dll - ok
13:06:12.0231 1316 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
13:06:12.0231 1316 C:\WINDOWS\system32\winipsec.dll - ok
13:06:12.0241 1316 [ 57EDEC2E5F59F0335E92F35184BC8631 ] C:\WINDOWS\system32\dmserver.dll
13:06:12.0241 1316 C:\WINDOWS\system32\dmserver.dll - ok
13:06:12.0251 1316 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
13:06:12.0251 1316 C:\WINDOWS\system32\pstorsvc.dll - ok
13:06:12.0261 1316 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
13:06:12.0261 1316 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
13:06:12.0271 1316 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
13:06:12.0271 1316 C:\WINDOWS\system32\psbase.dll - ok
13:06:12.0281 1316 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
13:06:12.0281 1316 C:\WINDOWS\system32\vssapi.dll - ok
13:06:12.0301 1316 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
13:06:12.0301 1316 C:\WINDOWS\system32\drivers\srv.sys - ok
13:06:12.0311 1316 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
13:06:12.0311 1316 C:\WINDOWS\system32\dssenh.dll - ok
13:06:12.0321 1316 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
13:06:12.0321 1316 C:\WINDOWS\system32\trkwks.dll - ok
13:06:12.0331 1316 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
13:06:12.0331 1316 C:\WINDOWS\system32\srsvc.dll - ok
13:06:12.0341 1316 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
13:06:12.0341 1316 C:\WINDOWS\system32\seclogon.dll - ok
13:06:12.0351 1316 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
13:06:12.0351 1316 C:\WINDOWS\system32\sens.dll - ok
13:06:12.0361 1316 [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
13:06:12.0361 1316 C:\WINDOWS\system32\browser.dll - ok
13:06:12.0371 1316 [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
13:06:12.0371 1316 C:\WINDOWS\system32\wscsvc.dll - ok
13:06:12.0381 1316 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
13:06:12.0381 1316 C:\WINDOWS\system32\msi.dll - ok
13:06:12.0391 1316 [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Admin\LOCALS~1\temp\1DE8CFEC-85D6-428A-A2D3-A976C0D977D0.exe
13:06:12.0391 1316 C:\DOCUME~1\Admin\LOCALS~1\temp\1DE8CFEC-85D6-428A-A2D3-A976C0D977D0.exe - ok
13:06:12.0401 1316 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
13:06:12.0401 1316 C:\WINDOWS\system32\spoolss.dll - ok
13:06:12.0411 1316 [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
13:06:12.0411 1316 C:\WINDOWS\system32\localspl.dll - ok
13:06:12.0421 1316 [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
13:06:12.0421 1316 C:\WINDOWS\system32\ipnathlp.dll - ok
13:06:12.0431 1316 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
13:06:12.0431 1316 C:\WINDOWS\system32\cnbjmon.dll - ok
13:06:12.0442 1316 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
13:06:12.0442 1316 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
13:06:12.0452 1316 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
13:06:12.0452 1316 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
13:06:12.0462 1316 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
13:06:12.0462 1316 C:\WINDOWS\system32\pjlmon.dll - ok
13:06:12.0482 1316 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
13:06:12.0482 1316 C:\WINDOWS\system32\tcpmon.dll - ok
13:06:12.0492 1316 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
13:06:12.0492 1316 C:\WINDOWS\system32\usbmon.dll - ok
13:06:12.0502 1316 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
13:06:12.0502 1316 C:\WINDOWS\system32\winhttp.dll - ok
13:06:12.0512 1316 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
13:06:12.0512 1316 C:\WINDOWS\system32\comsvcs.dll - ok
13:06:12.0522 1316 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
13:06:12.0522 1316 C:\WINDOWS\system32\win32spl.dll - ok
13:06:12.0532 1316 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
13:06:12.0532 1316 C:\WINDOWS\system32\netrap.dll - ok
13:06:12.0542 1316 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
13:06:12.0542 1316 C:\WINDOWS\system32\inetpp.dll - ok
13:06:12.0552 1316 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
13:06:12.0552 1316 C:\WINDOWS\system32\colbact.dll - ok
13:06:12.0562 1316 [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
13:06:12.0562 1316 C:\WINDOWS\system32\mtxclu.dll - ok
13:06:12.0572 1316 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
13:06:12.0572 1316 C:\WINDOWS\system32\termsrv.dll - ok
13:06:12.0592 1316 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
13:06:12.0592 1316 C:\WINDOWS\system32\wsock32.dll - ok
13:06:12.0602 1316 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
13:06:12.0602 1316 C:\WINDOWS\system32\linkinfo.dll - ok
13:06:12.0612 1316 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
13:06:12.0612 1316 C:\WINDOWS\system32\icaapi.dll - ok
13:06:12.0622 1316 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
13:06:12.0622 1316 C:\WINDOWS\system32\ntshrui.dll - ok
13:06:12.0632 1316 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
13:06:12.0632 1316 C:\WINDOWS\system32\clusapi.dll - ok
13:06:12.0642 1316 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
13:06:12.0642 1316 C:\WINDOWS\system32\mstlsapi.dll - ok
13:06:12.0652 1316 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
13:06:12.0652 1316 C:\WINDOWS\system32\resutils.dll - ok
13:06:12.0662 1316 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
13:06:12.0662 1316 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
13:06:12.0672 1316 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
13:06:12.0672 1316 C:\WINDOWS\system32\wbem\esscli.dll - ok
13:06:12.0682 1316 [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
13:06:12.0682 1316 C:\WINDOWS\system32\wbem\fastprox.dll - ok
13:06:12.0692 1316 [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
13:06:12.0692 1316 C:\WINDOWS\system32\verclsid.exe - ok
13:06:12.0702 1316 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
13:06:12.0702 1316 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
13:06:12.0712 1316 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\69416153.sys
13:06:12.0712 1316 C:\WINDOWS\system32\drivers\69416153.sys - ok
13:06:12.0722 1316 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
13:06:12.0722 1316 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
13:06:12.0732 1316 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
13:06:12.0732 1316 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
13:06:12.0742 1316 [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
13:06:12.0742 1316 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
13:06:12.0752 1316 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
13:06:12.0752 1316 C:\WINDOWS\system32\webcheck.dll - ok
13:06:12.0772 1316 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
13:06:12.0772 1316 C:\WINDOWS\system32\mlang.dll - ok
13:06:12.0782 1316 [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
13:06:12.0782 1316 C:\WINDOWS\system32\stobject.dll - ok
13:06:12.0792 1316 [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
13:06:12.0792 1316 C:\WINDOWS\system32\upnp.dll - ok
13:06:12.0802 1316 [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
13:06:12.0802 1316 C:\WINDOWS\system32\batmeter.dll - ok
13:06:12.0812 1316 [ 3F654601A593A96BC4A47035B0829E69 ] C:\Program Files\Common Files\AOL\1361408960\ee\aolsoftware.exe
13:06:12.0812 1316 C:\Program Files\Common Files\AOL\1361408960\ee\aolsoftware.exe - ok
13:06:12.0822 1316 [ 7538050656FE5D63CB4B80349DD1CFE3 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
13:06:12.0822 1316 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll - ok
13:06:12.0832 1316 [ 5C4ADB808B54126C1ED2FBA0EAE06C63 ] C:\WINDOWS\system32\upnpui.dll
13:06:12.0832 1316 C:\WINDOWS\system32\upnpui.dll - ok
13:06:12.0842 1316 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
13:06:12.0842 1316 C:\WINDOWS\system32\ssdpapi.dll - ok
13:06:12.0852 1316 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
13:06:12.0852 1316 C:\WINDOWS\system32\wbem\wbemess.dll - ok
13:06:12.0862 1316 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
13:06:12.0862 1316 C:\WINDOWS\system32\drivers\http.sys - ok
13:06:12.0882 1316 [ 037B1E7798960E0420003D05BB577EE6 ] C:\WINDOWS\system32\rundll32.exe
13:06:12.0882 1316 C:\WINDOWS\system32\rundll32.exe - ok
13:06:12.0892 1316 [ C75EB64B73839EFB8B9D8F80B4E971F1 ] C:\Program Files\Common Files\AOL\1361408960\ee\AOLSvcMgr.dll
13:06:12.0892 1316 C:\Program Files\Common Files\AOL\1361408960\ee\AOLSvcMgr.dll - ok
13:06:12.0902 1316 [ 5F1D5F88303D4A4DBC8E5F97BA967CC3 ] C:\WINDOWS\system32\ctfmon.exe
13:06:12.0902 1316 C:\WINDOWS\system32\ctfmon.exe - ok
13:06:12.0912 1316 [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
13:06:12.0912 1316 C:\WINDOWS\system32\msctf.dll - ok
13:06:12.0912 1316 [ 17AA58A54C00F1746B8654C050491F43 ] C:\WINDOWS\system32\msutb.dll
13:06:12.0912 1316 C:\WINDOWS\system32\msutb.dll - ok
13:06:12.0922 1316 [ A5DFFC8F69EFB4521B766278F7402B14 ] C:\Program Files\Common Files\AOL\1361408960\ee\xprt6.dll
13:06:12.0922 1316 C:\Program Files\Common Files\AOL\1361408960\ee\xprt6.dll - ok
13:06:12.0942 1316 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
13:06:12.0942 1316 C:\WINDOWS\system32\ssdpsrv.dll - ok
13:06:12.0952 1316 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
13:06:12.0952 1316 C:\WINDOWS\system32\imapi.exe - ok
13:06:12.0962 1316 [ F6FAEC07446A78A9C5AF4558FF5BD118 ] C:\WINDOWS\ime\sptip.dll
13:06:12.0962 1316 C:\WINDOWS\ime\sptip.dll - ok
13:06:12.0972 1316 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
13:06:12.0972 1316 C:\WINDOWS\system32\wuapi.dll - ok
13:06:12.0982 1316 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
13:06:12.0982 1316 C:\WINDOWS\system32\shfolder.dll - ok
13:06:12.0992 1316 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
13:06:12.0992 1316 C:\WINDOWS\system32\cabinet.dll - ok
13:06:13.0002 1316 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
13:06:13.0002 1316 C:\WINDOWS\system32\netcfgx.dll - ok
13:06:13.0012 1316 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
13:06:13.0012 1316 C:\WINDOWS\system32\wups.dll - ok
13:06:13.0022 1316 [ F92E1076C42FCD6DB3D72D8CFE9816D5 ] C:\WINDOWS\system32\wscntfy.exe
13:06:13.0022 1316 C:\WINDOWS\system32\wscntfy.exe - ok
13:06:13.0032 1316 [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
13:06:13.0032 1316 C:\WINDOWS\system32\alg.exe - ok
13:06:13.0052 1316 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
13:06:13.0052 1316 C:\WINDOWS\system32\wbem\ncprov.dll - ok
13:06:13.0062 1316 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
13:06:13.0062 1316 C:\WINDOWS\system32\rasmans.dll - ok
13:06:13.0072 1316 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
13:06:13.0072 1316 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
13:06:13.0082 1316 [ 483302397A9A1334FB9D44DD16638898 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\os\ver5_2_1_1\os.dll
13:06:13.0082 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\os\ver5_2_1_1\os.dll - ok
13:06:13.0092 1316 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
13:06:13.0092 1316 C:\WINDOWS\system32\tapisrv.dll - ok
13:06:13.0102 1316 [ BF9D64E0ECD591BC1B38BD335156B66F ] C:\Program Files\Common Files\AOL\1361408960\ee\xprt5.dll
13:06:13.0102 1316 C:\Program Files\Common Files\AOL\1361408960\ee\xprt5.dll - ok
13:06:13.0112 1316 [ 1337EF044854F38B9DFD085E56EBC3A2 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\os\ver5_2_1_1\AOLIdleMon.dll
13:06:13.0112 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\os\ver5_2_1_1\AOLIdleMon.dll - ok
13:06:13.0122 1316 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
13:06:13.0122 1316 C:\WINDOWS\system32\rastapi.dll - ok
13:06:13.0133 1316 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
13:06:13.0133 1316 C:\WINDOWS\system32\unimdm.tsp - ok
13:06:13.0143 1316 [ 79A3C68FC62384FAA93C170A45382547 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\notification\ver7_1_1_1\Notify.dll
13:06:13.0143 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\notification\ver7_1_1_1\Notify.dll - ok
13:06:13.0163 1316 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
13:06:13.0163 1316 C:\WINDOWS\system32\uniplat.dll - ok
13:06:13.0163 1316 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
13:06:13.0163 1316 C:\WINDOWS\system32\unimdmat.dll - ok
13:06:13.0173 1316 [ C4F6B2E61ABA9A13819EA2E217E0BFC0 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\localStorage\ver8_1_1_1\clsSvc.dll
13:06:13.0173 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\localStorage\ver8_1_1_1\clsSvc.dll - ok
13:06:13.0183 1316 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
13:06:13.0183 1316 C:\WINDOWS\system32\modemui.dll - ok
13:06:13.0193 1316 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
13:06:13.0193 1316 C:\WINDOWS\system32\kmddsp.tsp - ok
13:06:13.0203 1316 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
13:06:13.0203 1316 C:\WINDOWS\system32\ndptsp.tsp - ok
13:06:13.0223 1316 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
13:06:13.0223 1316 C:\WINDOWS\system32\ipconf.tsp - ok
13:06:13.0233 1316 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
13:06:13.0233 1316 C:\WINDOWS\system32\h323.tsp - ok
13:06:13.0243 1316 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
13:06:13.0243 1316 C:\WINDOWS\system32\hidphone.tsp - ok
13:06:13.0253 1316 [ D93F2485714AA6550421FE7A1050B2D1 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\aolsystrayservice\ver4_1_2_1\AOLSysTrayService.dll
13:06:13.0253 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\aolsystrayservice\ver4_1_2_1\AOLSysTrayService.dll - ok
13:06:13.0263 1316 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
13:06:13.0263 1316 C:\WINDOWS\system32\rasppp.dll - ok
13:06:13.0273 1316 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
13:06:13.0273 1316 C:\WINDOWS\system32\ntlsapi.dll - ok
13:06:13.0283 1316 [ E7E21E5BCE1EA6E034298CCE69E0226A ] C:\Program Files\Common Files\AOL\1361408960\ee\services\preferences\ver6_1_1_1\preferences.dll
13:06:13.0283 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\preferences\ver6_1_1_1\preferences.dll - ok
13:06:13.0293 1316 [ 7F1949EBFB85165952BE3239CDEAC2B2 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\osInfo\ver2_1_1_1\osInfo.dll
13:06:13.0293 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\osInfo\ver2_1_1_1\osInfo.dll - ok
13:06:13.0303 1316 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
13:06:13.0303 1316 C:\WINDOWS\system32\rasqec.dll - ok
13:06:13.0323 1316 [ 878D1F57E7D32DEDA43D165FC22B7A97 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\authentication\ver7_1_6_1\authentication.dll
13:06:13.0323 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\authentication\ver7_1_6_1\authentication.dll - ok
13:06:13.0333 1316 [ 5767306C882E304CC0D2114A7F6B6998 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\authentication\ver7_1_6_1\authenticationshadow.dll
13:06:13.0333 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\authentication\ver7_1_6_1\authenticationshadow.dll - ok
13:06:13.0343 1316 [ 6D555A0D73B41A6E39352A5B8FC43A48 ] C:\Program Files\Common Files\AOL\1361408960\ee\services\miniXML\ver2_1_1_1\XMLMini.dll
13:06:13.0343 1316 C:\Program Files\Common Files\AOL\1361408960\ee\services\miniXML\ver2_1_1_1\XMLMini.dll - ok
13:06:13.0353 1316 [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
13:06:13.0373 1316 C:\WINDOWS\system32\drprov.dll - ok
13:06:13.0383 1316 [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
13:06:13.0383 1316 C:\WINDOWS\system32\ntlanman.dll - ok
13:06:13.0393 1316 [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
13:06:13.0393 1316 C:\WINDOWS\system32\netui0.dll - ok
13:06:13.0403 1316 [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
13:06:13.0403 1316 C:\WINDOWS\system32\netui1.dll - ok
13:06:13.0413 1316 [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
13:06:13.0413 1316 C:\WINDOWS\system32\davclnt.dll - ok
13:06:13.0413 1316 ============================================================
13:06:13.0413 1316 Scan finished
13:06:13.0413 1316 ============================================================
13:06:13.0633 1272 Detected object count: 7
13:06:13.0633 1272 Actual detected object count: 7
13:10:21.0630 1272 Adobe LM Service ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0630 1272 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:10:21.0640 1272 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0640 1272 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:10:21.0640 1272 BANTExt ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0640 1272 BANTExt ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:10:21.0650 1272 cercsr6 ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0650 1272 cercsr6 ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:10:21.0660 1272 NUVision ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0660 1272 NUVision ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:10:21.0660 1272 tbcspud ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0660 1272 tbcspud ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:10:21.0670 1272 tbcwdm ( UnsignedFile.Multi.Generic ) - skipped by user
13:10:21.0670 1272 tbcwdm ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:14:28.0775 1612 Deinitialize success

======

mbar system-log

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.595000 GHz
Memory total: 133246976, free: 36675584

DDA Driver installation error.
Downloaded database version: v2013.03.09.10
Driver is not installed. Scan is aborted.
Driver is not installed. Scan is aborted.
Driver is not installed. Scan is aborted.
Driver is not installed. Scan is aborted.
=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.595000 GHz
Memory total: 133246976, free: 30126080

DDA Driver installation error.
Driver installed on boot. Reboot required.
System shutdown occurred
=======================================


---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1021

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.595000 GHz
Memory total: 133246976, free: 8044544

Initializing...
Done!
Scanning directory: C:\WINDOWS\system32\drivers...
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 1D8D1D8C

Partition information:

Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 63 Numsec = 78124032
Partition file system is NTFS
Partition is bootable

Partition 1 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 2 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Partition 3 type is Empty (0x0)
Partition is NOT ACTIVE.
Partition starts at LBA: 0 Numsec = 0

Disk Size: 40000000000 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-78105000-78125000)...
Done!
Performing system, memory and registry scan...
Done!
Scan finished
=======================================

mbar-log-2013-03-09 (15-25-51)

Malwarebytes Anti-Rootkit BETA 1.01.0.1021
www.malwarebytes.org

Database version: v2013.03.09.10

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Admin :: R1 [administrator]

3/9/2013 3:25:51 PM
mbar-log-2013-03-09 (15-25-51).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 24244
Time elapsed: 16 minute(s), 23 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

==========

Edited by nirsmar, 09 March 2013 - 03:11 PM.

  • 0

#36
gringo_pr
Posted 09 March 2013 - 03:26 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
did it help with the way things are running?

gringo
  • 0

#37
nirsmar
Posted 09 March 2013 - 03:40 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hi gringo_pr:

Nothing really noticeable. I wonder what could be causing this issue. What should we do with the 7 objects that the program TDSSKiller found? Could it be something with the Internet Options in IE or Java possibly. Maybe something is out of date somewhere? Thanks for the assistance.

Edited by nirsmar, 09 March 2013 - 03:42 PM.

  • 0

#38
gringo_pr
Posted 09 March 2013 - 04:14 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
What TDSSKiller found is not a problem and even normal, I am not seeing any malware on the system to be the cause of your troubles - what you can do is try a selective startup and see if it improves


http://windows.micro...m-configuration


If by doing this things improve then we know we are on the right track



gringo
  • 0

#39
nirsmar
Posted 09 March 2013 - 05:00 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hello gringo_pr:

The link seems to be directions for Vista, do you have one for XP? I tried to convert them and follow along, but it doesn't get me too far. Thank You.

Edited by nirsmar, 09 March 2013 - 05:01 PM.

  • 0

#40
gringo_pr
Posted 09 March 2013 - 05:42 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
ok try this link - http://www.freebits..../cleanboot.html
  • 1

Advertisements

#41
nirsmar
Posted 11 March 2013 - 03:28 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hello gringo:

Thank you for providing me the alternative link. Please note that I have been running my system in 'selective startup' prior to this issue but with ALL items checked including 'Process SYSTEM.INI file and Process WIN.INI file also loaded (or checked.)
I am now (AS OF TODAY) running the system in 'Selective Startup' with 'Load System Services' and 'Load Startup Items' selected. I also unchecked the 'Startup items' too, but it looks like when restarting the computer system it automatically re-checked to run a startup item called 'NvCpl' - I am also running IE8 with "No-Add-ons." Can I say the system is running better than before, it's really not definative, but maybe we are getting somewhere. I will look for your next direction. Thank You.

Edited by nirsmar, 11 March 2013 - 03:29 PM.

  • 0

#42
gringo_pr
Posted 11 March 2013 - 08:11 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello


If it is not running any better then I do not know what else I can do



gringo
  • 0

#43
nirsmar
Posted 13 March 2013 - 11:25 AM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hello gringo_pr:

Well, we tried. Thank You. Maybe some of the techs in the XP forum will have some ideas. If you have other suggestions you have my contact information. Will you provide me the directions to make certain my system is back to the "settings" before we began the malware removal process. Thank You for your assistance.
  • 0

#44
gringo_pr
Posted 13 March 2013 - 12:04 PM

gringo_pr

    Trusted Helper

  • Malware Removal
  • 7,268 posts
Hello nirsmar


:Why we need to remove some of our tools:

Some of the tools we have used to clean your computer were made by fellow malware fighters and are very powerful and if used incorrectly or at the wronge time can make the computer an expensive paper weight.
They are updated all the time and some of them more than once a day so by the time you are ready to use them again they will already be outdated.

The following procedures will implement some cleanup procedures to remove these tools. It will also reset your System Restore by flushing out previous restore points and create a new restore point. It will also remove all the backups our tools may have made.
:DeFogger:

Note** Defogger only needs to be run if it was run when we first started. If you have not already run it then skip this.

  • To re-enable your Emulation drivers, double click DeFogger to run the tool.
  • The application window will appear
  • Click the Re-enable button to re-enable your CD Emulation drivers
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK.
Your Emulation drivers are now re-enabled.

:Uninstall ComboFix:

  • turn off all active protection software
  • push the "windows key" + "R" (between the "Ctrl" button and "Alt" Button)
  • please copy and past the following into the box ComboFix /Uninstall and click OK.
  • Note the space between the X and the /Uninstall, it needs to be there.
  • Posted Image

:Remove the rest of our tools:

Please download OTCleanIt and save it to desktop. This tool will remove all the tools we used to clean your pc.
  • Double-click OTCleanIt.exe.
  • Click the CleanUp! button.
  • Select Yes when the "Begin cleanup Process?" prompt appears.
  • If you are prompted to Reboot during the cleanup, select Yes.
  • The tool will delete itself once it finishes, if not delete it by yourself.
  • If asked to restart the computer, please do so
Note: If you receive a warning from your firewall or other security programs regarding OTCleanIt attempting to contact the internet, please allow it to do so.

About Java


During the cleaning process if I found that Java was installed I asked for it to be uninstalled, Many home users will not miss it. If you use OpenOffice, play online games or use business applications which require Java, Then you need to install the latest version and make sure to disable it in your web browsers.

If an application or website requires it, you should receive a notification indicating that when you attempt to launch that application or access that website.

Link to download latest version. - install Java

How to disable java in your web browsers - Disable Java


:The programs you can keep:

Some of the programs that we have used would be a good idea to keep and used often in helping to keep the computer clean. I use these programs on my computer.

Revo Uninstaller Free - this is the uninstaller that I had you download and works allot better than add/remove in windows and has saved me more than once from corrupted installs and uninstalls

CCleaner - This is a good program to clean out temp files, I would use this once a week or before any malware scan to remove unwanted temp files - It has a built in registry cleaner but I would leave that alone and not use any registry cleaner

Malwarebytes' Anti-Malware The Gold standerd today in antimalware scanners

:Security programs:

One of the questions I am asked all the time is "What programs do you use" I have at this time 4 computers in my home and I have this setup on all 4 of them.

  • Microsoft Security Essentials - provides real-time protection for your home PC that guards against viruses, spyware, and other malicious software.
  • WinPatrol As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge.
  • Malwarebytes' Anti-Malware Malwarebytes' Anti-Malware is a new and powerful anti-malware tool. It is
    totally free but for real-time protection you will have to pay a small one-time fee. We used this to help clean your computer and recomend keeping it and using often. (I have upgraded to the paid version of MBAM and I am glad I did)

    Note** If you decide to install MSE you will need to uninstall your present Antivirus

:Security awareness:


It is good security practice to change your passwords to all your online accounts on a fairly regular basis, this is especially true after an infection. Refer to this Microsoft article
Strong passwords: How to create and use them Then consider a password keeper, to keep all your passwords safe. KeePass is a small utility that allows you to manage all your passwords.


The other question I am asked all the time is "How can I prevent this from happening again." and the short answer to that is to be aware of what is out there and how to start spotting dangers.

Here are some articles that are must reads and should be read by everybody in your household that uses the internet

internetsafety

Internet Safety for Kids

Here is some more reading for you from some of my colleges

PC Safety and Security - What Do I Need? from my friends at Tech Support Forum

COMPUTER SECURITY - a short guide to staying safer online from my friends at Malware Removal

quoted from Tech Support Forum

Conclusion

There is no such thing as ‘perfect security’. This applies to many things, not just computer systems. Using the above guide you should be able to take all the reasonable steps you can to prevent infection. However, the most important part of all this is you, the user. Surf sensibly and think before you download a file or click on a link. Take a few moments to assess the possible risks and you should be able to enjoy all the internet has to offer.


I'd be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can then be closed.

I Will Keep This Open For About Three Days, If Anything Comes Up - Just Come Back And Let Me Know, after that time you will have to send me a PM

My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->Posted Image<-- Don't worry every little bit helps.

Gringo
  • 1

#45
nirsmar
Posted 13 March 2013 - 01:56 PM

nirsmar

    Member

  • Topic Starter
  • Member
  • PipPip
  • 67 posts
Hello gringo_pr:

I followed your directions, but need some clarification before moving along.

I had previously followed the directions from an earlier posting to uninstall the ComboFix, but as stated in posting #19 and #32...I noticed the following items left on the C: Drive. What should I do with them?

C:\ComboFix1
--- CF18069
--- CregC_01

C:\ComboFix118910C
--- NircmdB

C:\ComboFix128629C
--- CF28313
--- CregC_01


Also, I had uninstalled the Java as you requested in an earlier posting with your directions, but I see a folder on my HD called C:\Program Files\Java\jre6 with a bin folder. It does not seem to have any items in it nor is Java listed in Add/Remove Programs (as per the Java website directions) link. I DO utilize and presently have installed OpenOffice, which is Java related.

Thank You for the assistance and I will look to hear from you.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP