Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Spybot Search & Destroy going very slow. Avast Anitvirus not runni

Started by babablack , Jul 04 2013 04:30 PM

This topic is locked

#1
babablack

Posted 04 July 2013 - 04:30 PM

Member

Member
11 posts

Hello!

Although my computer still works, Spybot Search & Destroy is going very slow. Avast Anitvirus not running and unable to reinstall. Spybot did detect something called Anchor.hss for which I had removed. The above mentioned problems still exist, and although most things work ok, I would want to nip this in the bud before it may get worse.

When trying to start Avast, I get error message stating that ashbase.dll was not found.
Below are my OTL.txt quick scan results.

Any help would be gladly appreciated!

OTL logfile created on: 7/4/2013 10:39:36 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\Kevin Bento\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 0.94 Gb Available Physical Memory | 47.27% Memory free
2.73 Gb Paging File | 1.64 Gb Available in Paging File | 60.31% Paging File free
Paging file location(s): C:\pagefile.sys 900 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 79.17 Gb Total Space | 26.48 Gb Free Space | 33.44% Space Free | Partition Type: NTFS
Drive D: | 26.52 Gb Total Space | 11.77 Gb Free Space | 44.36% Space Free | Partition Type: NTFS

Computer Name: DBS18XB1 | User Name: Kevin Bento | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/07/04 10:38:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kevin Bento\Desktop\OTL.exe
PRC - [2013/07/04 09:57:24 | 000,920,472 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/12/20 21:53:49 | 000,170,408 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012/08/07 08:02:06 | 000,185,640 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\VERIZONDM\bin\tgsrvc.exe
PRC - [2012/08/07 08:02:00 | 000,206,120 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\VERIZONDM\bin\sprtsvc.exe
PRC - [2012/08/07 08:01:46 | 000,206,120 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\VERIZONDM\bin\sprtcmd.exe
PRC - [2012/08/03 16:22:18 | 000,352,248 | ---- | M] (Verizon) -- C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
PRC - [2012/07/03 10:04:58 | 000,507,312 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2011/06/01 12:42:28 | 000,071,432 | ---- | M] (Memeo) -- C:\Program Files\Seagate\Seagate Dashboard\MemeoDashboard.exe
PRC - [2011/06/01 12:42:28 | 000,014,088 | ---- | M] (Memeo) -- C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
PRC - [2011/06/01 12:16:54 | 002,260,992 | ---- | M] (Axentra Corporation) -- C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\HipServAgent.exe
PRC - [2011/03/09 08:30:08 | 000,247,728 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2011/03/09 08:30:08 | 000,092,592 | ---- | M] (TomTom) -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2011/01/24 14:36:28 | 000,085,272 | ---- | M] (Memeo Inc.) -- C:\Program Files\Memeo\AutoBackup\MemeoUpdater.exe
PRC - [2011/01/24 14:35:36 | 000,025,824 | ---- | M] (Memeo) -- C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
PRC - [2011/01/24 14:35:30 | 000,324,320 | ---- | M] () -- C:\Program Files\Memeo\AutoBackup\InstantBackup.exe
PRC - [2010/07/21 07:43:54 | 000,965,176 | ---- | M] (Secunia) -- C:\Program Files\Secunia\PSI\psi.exe
PRC - [2010/06/23 13:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2010/06/23 13:51:30 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2010/02/16 13:10:46 | 000,308,640 | ---- | M] (Panasonic Corporation) -- C:\Program Files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe
PRC - [2009/12/17 06:42:06 | 000,105,632 | ---- | M] (Corel) -- C:\Program Files\Common Files\Corel\Standby\Standby.exe
PRC - [2009/10/09 06:45:56 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) -- D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
PRC - [2009/09/08 18:25:52 | 000,096,334 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
PRC - [2009/03/05 17:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2009/01/26 16:31:12 | 005,365,592 | RHS- | M] (Safer Networking Limited) -- C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
PRC - [2008/06/11 23:43:26 | 000,640,376 | ---- | M] (Adobe Systems Inc.) -- D:\Acrobat 9.0\Acrobat\acrotray.exe
PRC - [2008/04/13 20:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/13 20:12:16 | 000,025,088 | ---- | M] (Microsoft Corp. and Executive Software International, Inc.) -- C:\WINDOWS\system32\defrag.exe
PRC - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
PRC - [2007/06/15 13:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) -- C:\WINDOWS\system32\bgsvcgen.exe
PRC - [2007/01/18 13:20:26 | 000,190,008 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe
PRC - [2006/06/29 13:13:32 | 001,032,192 | ---- | M] (Dell Inc) -- C:\Program Files\Dell\QuickSet\quickset.exe
PRC - [2006/06/29 13:12:34 | 000,376,832 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
PRC - [2006/03/24 17:30:44 | 000,282,624 | ---- | M] (SigmaTel, Inc.) -- C:\WINDOWS\stsystra.exe
PRC - [2006/01/02 18:41:22 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe

========== Modules (No Company Name) ==========

MOD - [2013/07/04 09:57:23 | 003,285,912 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/06/18 06:02:16 | 016,033,160 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll
MOD - [2013/05/16 03:18:16 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\17440cd05eee7f87026b3c17119eed58\System.Configuration.ni.dll
MOD - [2013/05/16 03:16:06 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\81b85db6e9fe04e4d1c9547b993acfce\System.Windows.Forms.ni.dll
MOD - [2013/05/16 03:08:57 | 002,933,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2013/05/16 03:08:32 | 000,069,120 | ---- | M] () -- C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
MOD - [2013/02/15 04:12:37 | 001,712,128 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\024c898ad1ccfde466d033c0a08d0564\Microsoft.VisualBasic.ni.dll
MOD - [2013/02/15 04:11:23 | 000,212,992 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\d7ee03714420b252415b952d40ef59e4\System.ServiceProcess.ni.dll
MOD - [2013/02/15 04:11:09 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\e143370f0583abe015d8e3d2d536185e\System.Web.ni.dll
MOD - [2013/01/09 04:34:17 | 000,220,672 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\3283b562a391db4f3f6dcee754de15a8\CustomMarshalers.ni.dll
MOD - [2013/01/09 04:31:22 | 000,998,400 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\1a6f9e23985e3159e6dd9827fd81c2fd\System.Management.ni.dll
MOD - [2013/01/09 04:30:03 | 000,771,584 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d7a2248a76f0e94d56c92c5bf96f5175\System.Runtime.Remoting.ni.dll
MOD - [2013/01/09 04:29:40 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\cbee94ec6a0fe649e3b4643cea6e1259\Accessibility.ni.dll
MOD - [2013/01/09 04:28:11 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\fe025743210c22bea2f009e1612c38bf\System.Xml.ni.dll
MOD - [2013/01/09 04:27:47 | 001,593,856 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7782f356a838c403b4a8e9c80df5a577\System.Drawing.ni.dll
MOD - [2013/01/09 04:27:26 | 006,616,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\8462c03b4f10c4624feb95790d6d1e30\System.Data.ni.dll
MOD - [2013/01/09 04:25:51 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll
MOD - [2013/01/09 04:25:34 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll
MOD - [2013/01/09 04:08:00 | 003,391,488 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_7e72ec06\mscorlib.dll
MOD - [2013/01/09 04:07:56 | 000,843,776 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_e00766da\system.drawing.dll
MOD - [2013/01/09 04:07:38 | 002,088,960 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_f857beb4\system.xml.dll
MOD - [2013/01/09 04:07:29 | 003,035,136 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_45be862e\system.windows.forms.dll
MOD - [2013/01/09 04:07:07 | 001,966,080 | ---- | M] () -- c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_e4485626\system.dll
MOD - [2013/01/09 04:06:48 | 001,232,896 | ---- | M] () -- c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll
MOD - [2013/01/09 04:06:47 | 001,269,760 | ---- | M] () -- c:\windows\assembly\gac\system.web\1.0.5000.0__b03f5f7f11d50a3a\system.web.dll
MOD - [2013/01/09 04:06:46 | 000,471,040 | ---- | M] () -- c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll
MOD - [2013/01/09 04:06:44 | 002,064,384 | ---- | M] () -- c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll
MOD - [2013/01/02 02:49:10 | 001,292,288 | ---- | M] () -- C:\WINDOWS\system32\quartz.dll
MOD - [2011/06/01 12:46:02 | 000,030,984 | ---- | M] () -- C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagateSharePlusPlugin.dll
MOD - [2011/06/01 12:42:24 | 000,108,296 | ---- | M] () -- C:\Program Files\Seagate\Seagate Dashboard\Memeo.Progress.dll
MOD - [2011/06/01 12:16:54 | 000,971,776 | ---- | M] () -- C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libxml2.dll
MOD - [2011/06/01 12:16:54 | 000,241,664 | ---- | M] () -- C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libupnp.dll
MOD - [2011/02/04 18:48:30 | 000,291,840 | ---- | M] () -- C:\WINDOWS\system32\sbe.dll
MOD - [2011/01/24 14:35:58 | 002,896,608 | ---- | M] () -- C:\Program Files\Memeo\AutoBackup\Memeo.Client.UI.dll
MOD - [2011/01/24 14:35:54 | 000,026,848 | ---- | M] () -- C:\Program Files\Memeo\AutoBackup\Memeo.Client.DriveDetection.dll
MOD - [2011/01/24 14:35:30 | 000,324,320 | ---- | M] () -- C:\Program Files\Memeo\AutoBackup\InstantBackup.exe
MOD - [2010/08/10 00:01:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2010/03/22 18:59:46 | 000,504,293 | ---- | M] () -- C:\Program Files\Memeo\AutoBackup\sqlite3.dll
MOD - [2008/06/19 18:35:36 | 000,333,288 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\sqlite3.dll
MOD - [2008/04/13 20:11:59 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2008/04/13 20:11:51 | 000,059,904 | ---- | M] () -- C:\WINDOWS\system32\devenum.dll
MOD - [2008/03/05 10:34:32 | 000,795,520 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\Fennel.dll
MOD - [2008/03/04 15:52:00 | 000,790,392 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\Chai.dll
MOD - [2008/02/26 12:04:40 | 000,717,176 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\Mate.dll
MOD - [2007/12/24 02:05:00 | 000,121,344 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy\Plugins\TCPIPAddress.dll
MOD - [2006/06/29 13:13:50 | 000,073,728 | ---- | M] () -- C:\Program Files\Dell\QuickSet\dadkeyb.dll
MOD - [2005/12/19 09:08:42 | 000,086,016 | ---- | M] () -- C:\WINDOWS\system32\preflib.dll
MOD - [2005/12/19 09:08:30 | 000,757,760 | ---- | M] () -- C:\WINDOWS\system32\bcm1xsup.dll
MOD - [2005/10/13 14:53:36 | 000,090,223 | ---- | M] () -- C:\Program Files\Dell\QuickSet\preflibcl.dll
MOD - [2005/08/16 22:02:54 | 001,339,392 | ---- | M] () -- c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll
MOD - [2005/08/16 22:02:54 | 000,372,736 | ---- | M] () -- c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll
MOD - [2005/08/16 22:02:54 | 000,323,584 | ---- | M] () -- c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll

========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
SRV - [2013/07/04 09:57:23 | 000,117,144 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/06/18 06:02:18 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/05/09 04:58:30 | 000,046,808 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2012/12/20 21:53:49 | 000,170,408 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012/08/07 08:02:06 | 000,185,640 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\VERIZONDM\bin\tgsrvc.exe -- (tgsrvc_verizondm)
SRV - [2012/08/07 08:02:00 | 000,206,120 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\VERIZONDM\bin\sprtsvc.exe -- (sprtsvc_verizondm)
SRV - [2012/08/03 16:22:18 | 000,352,248 | ---- | M] (Verizon) [Auto | Running] -- C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe -- (IHA_MessageCenter)
SRV - [2011/06/01 12:42:28 | 000,014,088 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe -- (SeagateDashboardService)
SRV - [2011/03/09 08:30:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011/01/24 14:35:36 | 000,025,824 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe -- (MemeoBackgroundService)
SRV - [2010/06/23 13:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010/03/29 08:53:22 | 000,068,000 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\Program Files\NOS\bin\getPlus_Helper.dll -- (getPlusHelper)
SRV - [2010/01/23 03:53:52 | 000,867,080 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2009/10/09 06:45:56 | 000,169,312 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor8.0)
SRV - [2009/09/08 18:25:52 | 000,096,334 | ---- | M] (Canon Inc.) [Auto | Running] -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)
SRV - [2007/06/15 13:57:42 | 000,145,504 | ---- | M] (B.H.A Corporation) [Auto | Running] -- C:\WINDOWS\system32\bgsvcgen.exe -- (bgsvcgen)
SRV - [2006/06/29 13:12:34 | 000,376,832 | ---- | M] (Dell Inc.) [Auto | Running] -- C:\Program Files\Dell\QuickSet\NicConfigSvc.exe -- (NICCONFIGSVC)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\wanatw4.sys -- (wanatw)
DRV - File not found [Kernel | Boot | Stopped] -- system32\ZoneLabs\srescan.sys -- (srescan)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | Auto | Stopped] -- C:\WINDOWS\DellBIOS.Sys -- (DellBIOS)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2013/05/09 04:59:10 | 000,765,736 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2013/05/09 04:59:10 | 000,368,944 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2013/05/09 04:59:10 | 000,174,664 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013/05/09 04:59:10 | 000,056,080 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2013/05/09 04:59:10 | 000,049,376 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013/05/09 04:59:09 | 000,066,336 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2013/05/09 04:59:09 | 000,049,760 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2013/05/09 04:59:08 | 000,029,816 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/12/03 05:05:34 | 000,064,288 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\Lbd.sys -- (Lbd)
DRV - [2010/07/09 13:18:54 | 000,020,328 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\cpuz134_x32.sys -- (cpuz134)
DRV - [2010/07/07 10:05:32 | 000,014,904 | ---- | M] (Secunia) [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\psi_mf.sys -- (PSI)
DRV - [2010/05/13 10:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2009/11/08 23:21:18 | 000,059,388 | ---- | M] (PowerISO Computing, Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\scdemu.sys -- (SCDEmu)
DRV - [2006/05/23 08:06:36 | 001,578,496 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2006/03/24 17:34:30 | 001,156,648 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2006/02/20 20:17:40 | 000,033,408 | ---- | M] (B.H.A Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys -- (cdrbsdrv)
DRV - [2006/01/10 13:07:58 | 000,004,864 | ---- | M] (GTek Technologies Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2005/11/02 13:24:34 | 000,424,320 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2005/10/14 09:40:18 | 000,307,968 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rixdptsk.sys -- (rismxdp)
DRV - [2005/10/14 09:40:18 | 000,051,328 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimsptsk.sys -- (rimsptsk)
DRV - [2005/10/14 09:40:18 | 000,028,544 | ---- | M] (REDC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2005/08/12 18:50:46 | 000,016,128 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\APPDRV.SYS -- (APPDRV)
DRV - [2005/08/05 10:32:16 | 000,045,312 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2005/07/21 21:02:12 | 001,035,008 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005/07/21 21:01:08 | 000,201,600 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL)
DRV - [2005/07/21 21:01:00 | 000,717,952 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2004/02/13 10:46:00 | 000,017,153 | ---- | M] (Dell Inc) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\omci.sys -- (omci)
DRV - [1999/09/10 13:06:00 | 000,025,244 | ---- | M] (Adaptec) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\ASPI32.SYS -- (ASPI32)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=6061004
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=6061004
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...ferrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.co...g}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.c...Box&Form=IE8SRC
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.condui...&ctid=CT3072254
IE - HKCU\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo....p={searchTerms}
IE - HKCU\..\SearchScopes\{EF5CE941-F9C8-4372-9598-B82543310E12}: "URL" = http://www.google.co...&rlz=1I7DKUS_en
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.order.1: "Google"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..extensions.enabledAddons: %7B1BC9BA34-1EED-42ca-A505-6D2F1A935BBB%7D:4.12.22.2
FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20130515
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:8.0.1489
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:22.0
FF - prefs.js..keyword.URL: "http://search.start-...10101065100&s="

FF - user.js..browser.search.selectedEngine: "Google"
FF - user.js..browser.search.order.1: "Google"
FF - user.js..keyword.URL: "http://search.start-...ernal.dnupdate", false);

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/MycameraPlugin: D:\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.10.2: C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.10.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Alwil Software\Avast5\WebRep\FF [2013/05/20 07:13:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/07/04 09:57:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 22.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/07/04 09:57:12 | 000,000,000 | ---D | M]

[2008/12/25 20:52:49 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Extensions
[2008/12/25 03:40:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Extensions\[email protected]
[2013/05/16 05:48:08 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\extensions
[2012/12/26 21:33:11 | 000,000,000 | ---D | M] (IE Tab 2 (FF 3.6+)) -- C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
[2013/05/16 05:48:07 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2013/07/04 09:57:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/07/04 09:57:25 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/05/20 07:13:13 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST5\WEBREP\FF
[2011/11/10 06:54:13 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

========== Chrome ==========

CHR - homepage: http://www.google.com
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll
CHR - plugin: Java Deployment Toolkit 6.0.300.12 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U30 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: downloadUpdater2 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
CHR - plugin: Windows Genuine Advantage (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npLegitCheckPlugin.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.8 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: AOL Media Playback Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npunagi2.dll
CHR - plugin: getPlusPlus for Adobe 16263 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np_gp.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\npctrl.1.0.30716.0.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: NPCIG.dll (Enabled) = D:\Canon\ZoomBrowser EX\Program\NPCIG.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - Extension: YouTube = C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_1\
CHR - Extension: Google Search = C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_1\
CHR - Extension: No name found = C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1456_0\
CHR - Extension: Gmail = C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/06/08 18:56:58 | 000,448,644 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15430 more lines...
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (CitiUSBrowserHelper Class) - {387EDF53-1CF2-4523-BC2F-13462651BE8C} - C:\WINDOWS\system32\BhoCitUS.dll (Orbiscom Ltd. All rights reserved.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (DriveLetterAccess) - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (Sonic Solutions)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (SmartSelect Class) - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Acrobat Assistant 8.0] D:\Acrobat 9.0\Acrobat\Acrotray.exe (Adobe Systems Inc.)
O4 - HKLM..\Run: [Adobe Acrobat Speed Launcher] D:\Acrobat 9.0\Acrobat\Acrobat_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [ATICCC] C:\Program Files\ATI Technologies\ATI.ACE\cli.exe (ATI Technologies Inc.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc)
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k File not found
O4 - HKLM..\Run: [Memeo Instant Backup] C:\Program Files\Memeo\AutoBackup\MemeoLauncher2.exe (Memeo Inc.)
O4 - HKLM..\Run: [Seagate Dashboard] C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe ()
O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\WINDOWS\stsystra.exe (SigmaTel, Inc.)
O4 - HKLM..\Run: [Standby] C:\Program Files\Common Files\Corel\Standby\Standby.exe (Corel)
O4 - HKLM..\Run: [StxTrayMenu] C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe (Seagate LLC)
O4 - HKLM..\Run: [VERIZONDM] C:\Program Files\VERIZONDM\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKCU..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [TomTomHOME.exe] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HD Writer.lnk = C:\Program Files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe (Panasonic Corporation)
O4 - Startup: C:\Documents and Settings\Kevin Bento\Start Menu\Programs\Startup\Secunia PSI.lnk = C:\Program Files\Secunia\PSI\psi.exe (Secunia)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Main present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Append Link Target to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Append to Existing PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert Link Target to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O8 - Extra context menu item: Convert to Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
O9 - Extra Button: Citi - {4C730913-3961-439b-83D5-F4E445520422} - C:\Program Files\Citi Virtual Account Numbers\CitiVAN.exe (Orbiscom Ltd. All rights reserved.)
O9 - Extra Button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: turbotax.com ([]https in Trusted sites)
O16 - DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} https://etciec102.co...svrloader32.cab (Cisco SSL VPN Relay Loader)
O16 - DPF: {2AB1C516-D654-4D3A-B3D6-2185BBCEB409} https://etciec102.co...COL /relayp.cab (Cisco Systems WebVPN Relay Loader)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.m...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6AA4E604-DB5C-43CB-BE01-DC848A384B87}: DhcpNameServer = 192.168.1.1
O20 - AppInit_DLLs: (C:\WINDOWS\system32\acaptuser32.dll) - C:\WINDOWS\system32\acaptuser32.dll (Adobe Systems, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/08/16 05:43:04 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2013/07/04 10:38:52 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Kevin Bento\Desktop\OTL.exe
[2013/07/04 09:57:07 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[1 C:\My Documents\*.tmp files -> C:\My Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/07/04 10:38:55 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kevin Bento\Desktop\OTL.exe
[2013/07/04 10:37:00 | 000,000,896 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2013/07/04 10:06:09 | 000,001,415 | ---- | M] () -- C:\Documents and Settings\Kevin Bento\Desktop\CopyTrans Control Center.lnk
[2013/07/04 09:57:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013/07/04 08:14:54 | 000,000,366 | -H-- | M] () -- C:\WINDOWS\tasks\avast! Emergency Update.job
[2013/07/03 22:37:00 | 000,000,892 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2013/07/03 19:18:56 | 2145,845,248 | -HS- | M] () -- C:\hiberfil.sys
[2013/07/03 02:02:01 | 000,000,486 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2013/07/02 03:34:44 | 117,478,104 | ---- | M] () -- C:\Documents and Settings\Kevin Bento\Desktop\avast_free_antivirus_setup.exe
[2013/06/30 18:47:20 | 000,001,813 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
[2013/06/30 18:18:18 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013/06/20 05:44:09 | 000,388,759 | ---- | M] () -- C:\Documents and Settings\Kevin Bento\Desktop\Rite_Aid_July_Coca-Cola_Priorities.pdf
[2013/06/14 23:53:23 | 000,340,372 | ---- | M] () -- C:\My Documents\David Bento Rodrigues.jpg
[2013/06/13 20:47:58 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Kevin Bento\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2013/06/09 21:51:01 | 000,133,925 | ---- | M] () -- C:\Documents and Settings\Kevin Bento\Desktop\CVS_Coca-Cola_June-July_2013_Priorities.pdf
[2013/06/08 18:56:58 | 000,448,644 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[1 C:\My Documents\*.tmp files -> C:\My Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/07/02 03:33:57 | 117,478,104 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Desktop\avast_free_antivirus_setup.exe
[2013/06/20 05:44:08 | 000,388,759 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Desktop\Rite_Aid_July_Coca-Cola_Priorities.pdf
[2013/06/14 23:53:11 | 000,340,372 | ---- | C] () -- C:\My Documents\David Bento Rodrigues.jpg
[2013/06/09 21:51:01 | 000,133,925 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Desktop\CVS_Coca-Cola_June-July_2013_Priorities.pdf
[2013/05/24 00:13:00 | 000,000,218 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\recently-used.xbel
[2013/03/27 10:10:12 | 000,174,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswVmm.sys
[2013/03/27 10:10:11 | 000,049,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\aswRvrt.sys
[2013/01/09 04:47:24 | 000,790,208 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2012/02/24 06:06:49 | 000,173,158 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1177016950-4087934575-2413495292-1006-0.dat
[2012/02/24 06:06:47 | 000,173,158 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
[2012/02/23 23:30:55 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\Microsoft.SqlServer.Compact.400.32.bc
[2012/02/15 21:49:16 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2011/08/28 01:28:00 | 000,001,024 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Application Data\WavCodec.wff
[2010/03/14 17:32:26 | 000,005,018 | -HS- | C] () -- C:\Documents and Settings\All Users\Application Data\KGyGaAvL.sys
[2006/10/22 01:22:48 | 000,219,136 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/10/13 22:40:04 | 000,000,134 | ---- | C] () -- C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\fusioncache.dat
[2006/10/04 10:43:35 | 000,000,004 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\QSLLPSVCShare

========== ZeroAccess Check ==========

[2005/08/16 05:39:16 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2008/04/13 20:12:05 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009/02/09 08:10:48 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008/04/13 20:12:08 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2008/06/11 20:27:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\acccore
[2010/02/27 23:25:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AIM
[2010/02/05 20:26:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2008/05/22 19:52:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Azureus
[2011/01/26 02:29:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BSD
[2005/08/16 21:54:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DIGStream
[2010/01/23 04:23:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
[2010/03/14 19:08:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InterVideo
[2010/08/01 18:44:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2011/06/23 19:16:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IsolatedStorage
[2013/03/02 19:22:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Licenses
[2011/05/01 00:34:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MemeoCommon
[2008/03/24 12:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
[2011/12/01 00:47:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Panasonic
[2008/05/01 15:10:45 | 000,000,000 | --SD | M] -- C:\Documents and Settings\All Users\Application Data\Seagate
[2010/03/16 02:33:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2012/09/01 14:24:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2008/05/01 14:21:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Tanagra
[2013/07/02 03:32:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2008/12/25 03:41:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TomTom
[2010/03/14 19:06:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Ulead Systems
[2010/10/11 11:49:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Update
[2011/06/23 19:12:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\White Sky, Inc
[2010/10/01 00:29:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WildTangent
[2011/06/12 14:51:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WindSolutions
[2008/07/07 23:24:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\YAHOO
[2010/10/16 00:33:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2006/10/13 23:57:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\acccore
[2008/04/07 04:39:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Audio2VCD
[2008/05/23 00:33:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Azureus
[2013/05/15 22:44:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\BitLord
[2011/01/26 02:29:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\BSD
[2010/07/18 21:38:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\CheckPoint
[2010/10/10 22:41:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Ebcai
[2010/12/18 01:45:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\GARMIN
[2011/11/03 06:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\ID Vault
[2009/10/01 02:39:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\ISIS Drivers
[2006/10/13 23:15:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Leadertech
[2011/06/12 12:31:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Macroplant, LLC
[2011/05/01 00:25:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Memeo
[2010/10/11 11:49:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Meulmo
[2006/10/14 17:24:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\MSNInstaller
[2010/04/11 21:12:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\MSNStockQuote
[2011/08/25 22:28:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\NCH Swift Sound
[2013/05/06 22:03:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Python-Eggs
[2008/06/11 20:37:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\QQ Games Plugin
[2008/03/24 12:48:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Recordpad
[2011/05/01 00:25:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Seagate
[2011/01/28 23:50:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\SharePod
[2009/06/22 15:48:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\SingSong
[2007/06/20 13:00:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\SoundSpectrum
[2012/09/01 14:16:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\TechWizard
[2008/12/25 03:40:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\TomTom
[2010/03/15 01:48:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\Ulead Systems
[2011/06/12 15:04:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kevin Bento\Application Data\WindSolutions

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34

< End of report >

#2
gringo_pr

Posted 07 July 2013 - 01:00 AM

Trusted Helper

Malware Removal
7,268 posts

Hello

I would like to welcome you to the Malware Removal section of the forum.

Around here they call me Gringo and I will be glad to help you with your malware problems.

Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!

Please do not run any tools unless instructed to do so.
- We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
Please do not attach logs or use code boxes, just copy and paste the text.
- Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
Please read every post completely before doing anything.
- Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
Please provide feedback about your experience as we go.
- A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the "Follow This Topic" Button, make sure that the "Receive notification" box is checked and that it is set to "Instantly" - This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

These are the programs I would like you to run next, if you have any problems with one of these just skip it and move on to the next one.

-AdwCleaner-

Please download AdwCleaner by Xplode onto your desktop.

Close all open programs and internet browsers.
Double click on AdwCleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
Your computer will be rebooted automatically. A text file will open after the restart.
Please post the content of that logfile with your next answer.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

-Junkware-Removal-Tool-

Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts.
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.

When they are complete let me have the two reports and let me know how things are running.

Gringo

#3
babablack

Posted 07 July 2013 - 11:56 AM

Member

Topic Starter
Member
11 posts

Hello and thank you for your response.

Below is the AdwCleaner Log:

# AdwCleaner v2.304 - Logfile created 07/07/2013 at 13:34:43
# Updated 03/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Kevin Bento - DBS18XB1
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Kevin Bento\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****

File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnu.xpt
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.dll
File Deleted : C:\Program Files\Mozilla Firefox\plugins\npdnupdater2.xpt
Folder Deleted : C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\Viewpoint
Folder Deleted : C:\Documents and Settings\LocalService\Local Settings\Application Data\Viewpoint
Folder Deleted : C:\Program Files\Common Files\Software Update Utility
Folder Deleted : C:\Program Files\Common Files\Viewpoint
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Viewpoint

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7327C09-B521-4EDB-8509-7D2660C9EC98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F8AD5AA5-D966-4667-9DAF-2561D68B2012}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\TENCENT
Key Deleted : HKCU\Software\Viewpoint
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\Software\AskBarDis
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2611275
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072254
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Viewpoint Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Viewpoint Manager
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Deleted : HKLM\Software\TENCENT
Key Deleted : HKLM\Software\Viewpoint

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v22.0 (en-US)

File : C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\prefs.js

C:\Documents and Settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v27.0.1453.116

File : C:\Documents and Settings\Kevin Bento\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [5132 octets] - [07/07/2013 13:34:43]

########## EOF - C:\AdwCleaner[S1].txt - [5192 octets] ##########

Below is the JRT.txt:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Microsoft Windows XP x86
Ran by Kevin Bento on Sun 07/07/2013 at 13:50:56.96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL

~~~ Registry Keys

~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll

~~~ Folders

~~~ FireFox

Emptied folder: C:\Documents and Settings\Kevin Bento\Application Data\mozilla\firefox\profiles\n40440e1.default\minidumps [91 files]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 07/07/2013 at 13:55:18.10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#4
gringo_pr

Posted 07 July 2013 - 04:59 PM

Trusted Helper

Malware Removal
7,268 posts

Hello babablack

I Would like you to do the following.

Please print out or make a copy in notepad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

In your next post I need the following
Log from Combofix
let me know of any problems you may have had
How is the computer doing now?

Gringo

#5
babablack

Posted 08 July 2013 - 03:48 AM

Member

Topic Starter
Member
11 posts

Hi Gringo,

During the Combofix scan, it warned me to close AVAST antivirus, as it identified it as still running. This is strange though, because when I try to open AVAST, it gives me an error saying a file is missing and advises me to reinstall AVAST. I also could not see any AVAST related process when I reviewed Windows task manager. I still cannot reinstall AVAST because when I double click the AVAST install, it just does nothing. Furthermore, Spybot appears to still be running slow to the point where it would take a day to do a complete scan instead of just a half hour. These 2 reasons above led me to come here thinking that I had some sort of virus/malware that prevented AVAST and Spybot from working properly. Aside from this, other computer processes are going at normal speed. Perhaps this is more of a memory problem than a virus problem?

Anyway, below is my Combofix.txt

ComboFix 13-07-08.02 - Kevin Bento 07/07/2013 22:55:49.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1247 [GMT -4:00]
Running from: c:\documents and settings\Kevin Bento\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *Disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Application Data\TEMP\RAIDTest
c:\documents and settings\Kevin Bento\WINDOWS
C:\install.exe
c:\my documents\~WRL3762.tmp
c:\windows\EventSystem.log
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2013-06-08 to 2013-07-08 )))))))))))))))))))))))))))))))
.
.
2013-07-07 17:50 . 2013-07-07 17:50 -------- d-----w- C:\JRT
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-18 10:02 . 2012-04-03 00:57 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-18 10:02 . 2011-05-28 21:09 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-05-09 08:59 . 2013-03-27 14:10 174664 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-05-09 08:59 . 2013-03-27 14:10 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59 . 2011-06-12 18:17 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-05-09 08:59 . 2008-12-25 19:48 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-05-09 08:59 . 2008-12-25 19:48 368944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-05-09 08:59 . 2013-03-27 14:10 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:59 . 2008-12-25 19:48 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-05-09 08:59 . 2008-12-25 19:48 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-05-09 08:58 . 2008-12-25 19:47 229648 ----a-w- c:\windows\system32\aswBoot.exe
2013-05-07 22:30 . 2005-08-16 09:18 920064 ----a-w- c:\windows\system32\wininet.dll
2013-05-07 22:30 . 2005-08-16 09:18 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-07 22:30 . 2005-08-16 09:18 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-05-07 21:53 . 2005-08-16 09:18 385024 ----a-w- c:\windows\system32\html.iec
2013-05-03 01:30 . 2005-08-16 09:18 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38 . 2004-08-04 03:59 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-04-10 01:31 . 2005-08-16 09:18 1876352 ----a-w- c:\windows\system32\win32k.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2011-03-09 247728]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-09-29 67584]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2005-05-31 122941]
"StxTrayMenu"="c:\program files\Seagate\SystemTray\StxMenuMgr.exe" [2007-01-18 190008]
"Adobe Acrobat Speed Launcher"="d:\acrobat 9.0\Acrobat\Acrobat_sl.exe" [2008-06-12 37232]
"Acrobat Assistant 8.0"="d:\acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-12 640376]
"Standby"="c:\program files\Common Files\Corel\Standby\Standby.exe" [2009-12-17 105632]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-06-23 1043968]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-09-24 421160]
"Dell QuickSet"="c:\program files\Dell\QuickSet\Quickset.exe" [2006-06-29 1032192]
"Memeo Instant Backup"="c:\program files\Memeo\AutoBackup\MemeoLauncher2.exe" [2011-01-24 136416]
"Seagate Dashboard"="c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe" [2011-06-01 79112]
"VERIZONDM"="c:\program files\VERIZONDM\bin\sprtcmd.exe" [2012-08-07 206120]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
.
c:\documents and settings\Kevin Bento\Start Menu\Programs\Startup\
Secunia PSI.lnk - c:\program files\Secunia\PSI\psi.exe --start-in-tray [2010-7-21 965176]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HD Writer.lnk - c:\program files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe [2011-11-30 308640]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\acaptuser32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Adobe Photoshop Elements 8\\Elements Organizer 8.0\\AdobePhotoshopElementsMediaServer.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"c:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Seagate\\Seagate Dashboard\\HipServAgent\\HipServAgent.exe"=
"c:\\Program Files\\BitLord 2\\Bitlord files\\bitlord.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"50000:UDP"= 50000:UDP:IHA_MessageCenter
"8743:TCP"= 8743:TCP:AllShareFrameWorkDMS Action TCP Port
"8643:TCP"= 8643:TCP:AllShareFrameWorkDMS Event TCP Port
"7676:TCP"= 7676:TCP:AllShareFrameWorkDMS Service TCP Port1
"7679:TCP"= 7679:TCP:AllShareFrameWorkDMS Service TCP Port2
"24234:TCP"= 24234:TCP:AllShareFramework DMS service UDP Port1
"7900:TCP"= 7900:TCP:AllShareFramework DMS service UDP Port2
"1900:TCP"= 1900:TCP:UPnP Multicast Port
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [3/27/2013 10:10 AM 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [3/27/2013 10:10 AM 174664]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [1/19/2011 3:03 AM 64288]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [6/12/2011 2:17 PM 765736]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [12/25/2008 3:48 PM 368944]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;d:\adobe photoshop elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [10/9/2009 6:45 AM 169312]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [12/25/2008 3:48 PM 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [3/27/2013 10:10 AM 66336]
R2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [10/18/2010 12:34 AM 20328]
R2 IHA_MessageCenter;IHA_MessageCenter;c:\program files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [8/3/2012 4:22 PM 352248]
R2 MemeoBackgroundService;MemeoBackgroundService;c:\program files\Memeo\AutoBackup\MemeoBackgroundService.exe [1/24/2011 2:35 PM 25824]
R2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [6/1/2011 12:42 PM 14088]
R2 sprtsvc_verizondm;SupportSoft Sprocket Service (verizondm);c:\program files\VERIZONDM\bin\sprtsvc.exe [8/7/2012 8:02 AM 206120]
R2 tgsrvc_verizondm;SupportSoft Repair Service (verizondm);c:\program files\VERIZONDM\bin\tgsrvc.exe [8/7/2012 8:02 AM 185640]
S2 DellBIOS;DellBIOS;\??\c:\windows\DellBIOS.Sys --> c:\windows\DellBIOS.Sys [?]
S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [3/9/2011 8:30 AM 92592]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [7/7/2010 10:05 AM 14904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
getPlusHelper REG_MULTI_SZ getPlusHelper
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-06-30 22:39 1165776 ----a-w- c:\program files\Google\Chrome\Application\27.0.1453.116\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-08 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 10:02]
.
2013-07-08 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-06-30 08:58]
.
2013-07-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-06-30 12:10]
.
2013-07-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-06-30 12:10]
.
2011-08-26 c:\windows\Tasks\soundtapSevenDays.job
- c:\program files\NCH Swift Sound\SoundTap\soundtap.exe [2011-08-26 02:28]
.
2011-09-02 c:\windows\Tasks\soundtapShakeIcon.job
- c:\program files\NCH Swift Sound\SoundTap\soundtap.exe [2011-08-26 02:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.comcast.net/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: turbotax.com
TCP: DhcpNameServer = 192.168.1.1
DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} - hxxps://etciec102.coca-cola.com/+CSCOL+/csvrloader32.cab
FF - ProfilePath - c:\documents and settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://search.start-search.net/?sid=10101065100&s=
.
- - - - ORPHANS REMOVED - - - -
.
HKU-Default-RunOnce-FlashPlayerUpdate - c:\windows\system32\Macromed\Flash\FlashUtil10e.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-07-07 23:12
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
.
c:\windows\$NtUninstallKB941202$
c:\windows\KB885250.log 4655 bytes
c:\windows\system.ini 227 bytes
c:\windows\system32
c:\windows\T30DebugLogFile.txt 0 bytes
c:\windows\tabletoc.log 146376 bytes
c:\windows\TASKMAN.EXE 15360 bytes executable
c:\windows\Tasks
c:\windows\Temp
c:\windows\Thumbs.db 7680 bytes
c:\windows\tsoc.log 1350575 bytes
c:\windows\twain.dll 94784 bytes
c:\windows\twain_32
c:\windows\twain_32.dll 50688 bytes executable
c:\windows\twunk_16.exe 49680 bytes
c:\windows\twunk_32.exe 25600 bytes executable
c:\windows\uninstyler.exe 50176 bytes executable
c:\windows\UNWISE.EXE 149504 bytes executable
c:\windows\updspapi.log 404291 bytes
c:\windows\vb.ini 36 bytes
c:\windows\vbaddin.ini 37 bytes
c:\windows\KB896256.log 9598 bytes
c:\windows\KB896358.log 6626 bytes
c:\windows\KB896423.log 11249 bytes
c:\windows\KB896424.log 13509 bytes
c:\windows\KB896428.log 26627 bytes
c:\windows\KB898461.log 12214 bytes
c:\windows\KB899337.log 8550 bytes
c:\windows\KB899510.log 7845 bytes
c:\windows\KB899587.log 50042 bytes
c:\windows\KB899588.log 10799 bytes
c:\windows\KB899589.log 33389 bytes
c:\windows\KB899591.log 10729 bytes
c:\windows\KB900325.log 23796 bytes
c:\windows\KB900485.log 47498 bytes
c:\windows\KB900725.log 31973 bytes
c:\windows\KB901017.log 47660 bytes
c:\windows\KB901214.log 6074 bytes
c:\windows\KB902344.log 1144 bytes
c:\windows\KB902400.log 42476 bytes
c:\windows\KB902841.log 7867 bytes
c:\windows\KB903157.log 4047 bytes
c:\windows\KB904706.log 11551 bytes
c:\windows\KB904942.log 13697 bytes
c:\windows\KB905414.log 33702 bytes
c:\windows\River Sumida.bmp 26680 bytes
c:\windows\Santa Fe Stucco.bmp 65832 bytes
c:\windows\SchedLgU.Txt 32288 bytes
c:\windows\security
c:\windows\sed.exe 98816 bytes executable
c:\windows\ServicePackFiles
c:\windows\sessmgr.setup.log 2998 bytes
c:\windows\setpwrcg.exe 49152 bytes executable
c:\windows\setup.iss 615 bytes
c:\windows\setupact.del 355489 bytes
c:\windows\setupact.log 2050 bytes
c:\windows\setupapi.del 1062963 bytes
c:\windows\setupapi.log 159286 bytes
c:\windows\setupapi.log.0.old 1268486 bytes
c:\windows\setupapi.log.1.old 1044487 bytes
c:\windows\setupapi.log.2.old 1084068 bytes
c:\windows\setupapi.log.3.old 1040527 bytes
c:\windows\Config
c:\windows\Connection Wizard
c:\windows\control.ini 0 bytes
c:\windows\CSC
c:\windows\Cursors
c:\windows\Debug
c:\windows\Dell.bmp 787512 bytes
c:\windows\desktop.ini 2 bytes
c:\windows\DirectX.log 261588 bytes
c:\windows\DJBDRV.LOG 3324 bytes
c:\windows\dla.exe 98360 bytes executable
c:\windows\Downloaded Installations
c:\windows\Downloaded Program Files
c:\windows\DPINST.LOG 10690 bytes
c:\windows\netfxocm.log 527618 bytes
c:\windows\network diagnostic
c:\windows\NIRCMD.exe 60416 bytes executable
c:\windows\NLSDownlevelMapping.log 7295 bytes
c:\windows\notepad.exe 69120 bytes executable
c:\windows\nsreg.dat 335 bytes
c:\windows\ntbtlog.txt 605776 bytes
c:\windows\ntdtcsetup.log 580699 bytes
c:\windows\occache
c:\windows\ocgen.log 1431981 bytes
c:\windows\ocmsn.log 157333 bytes
c:\windows\ODBC.INI 376 bytes
c:\windows\ODBCINST.INI 4161 bytes
c:\windows\OEWABLog.txt 1523 bytes
c:\windows\Offline Web Pages
c:\windows\pchealth
c:\windows\PeerNet
c:\windows\PEV.exe 256000 bytes executable
c:\windows\$NtUninstallKB2778344$
c:\windows\$NtUninstallKB890927$
c:\windows\$NtUninstallKB902841$
c:\windows\$NtUninstallKB918899$
c:\windows\$NtUninstallKB925486$
c:\windows\$NtUninstallKB930494$
c:\windows\Fonts
c:\windows\GEARInstall.log 87 bytes
c:\windows\Gone Fishing.bmp 17336 bytes
c:\windows\Greenstone.bmp 26582 bytes
c:\windows\grep.exe 80412 bytes executable
c:\windows\Help
c:\windows\Hewlett-Packard
c:\windows\hh.exe 10752 bytes executable
c:\windows\HPHins15.dat 137634 bytes
c:\windows\hphmdl15.dat 2828 bytes
c:\windows\hpqins00.dat 159584 bytes
c:\windows\hpqins16.dat 96577 bytes
c:\windows\IDNMitigationAPIs.log 8524 bytes
c:\windows\IE4 Error Log.txt 1774 bytes
c:\windows\KB916595.log 30405 bytes
c:\windows\KB917159.log 9775 bytes
c:\windows\KB917344.log 9818 bytes
c:\windows\KB917422.log 32416 bytes
c:\windows\KB917734.log 38307 bytes
c:\windows\KB917953.log 32963 bytes
c:\windows\KB918118.log 16197 bytes
c:\windows\KB918439.log 9984 bytes
c:\windows\KB918899.log 65068 bytes
c:\windows\KB919007.log 33481 bytes
c:\windows\KB920213.log 18259 bytes
c:\windows\KB920214.log 47683 bytes
c:\windows\KB920670.log 38786 bytes
c:\windows\KB920683.log 25019 bytes
c:\windows\KB920685.log 47564 bytes
c:\windows\KB920872.log 35242 bytes
c:\windows\KB921398.log 46668 bytes
c:\windows\KB921503.log 22584 bytes
c:\windows\KB921883.log 11644 bytes
c:\windows\KB922582.log 22635 bytes
c:\windows\KB922616.log 47407 bytes
c:\windows\KB922760.log 32677 bytes
c:\windows\KB922819.log 48823 bytes
c:\windows\KB923191.log 30481 bytes
c:\windows\KB923414.log 48003 bytes
c:\windows\KB923561.log 10080 bytes
c:\windows\KB923689.log 12446 bytes
c:\windows\KB923694.log 15342 bytes
c:\windows\KB923980.log 17368 bytes
c:\windows\KB924191.log 49278 bytes
c:\windows\KB924270.log 17022 bytes
c:\windows\$NtUninstallKB903157$
c:\windows\$NtUninstallKB904942$
c:\windows\$NtUninstallKB905414$
c:\windows\$NtUninstallKB905749$
c:\windows\$NtUninstallKB908246$
c:\windows\$NtUninstallKB908250$
c:\windows\$NtUninstallKB910437$
c:\windows\$NtUninstallKB911280$
c:\windows\$NtUninstallKB911927$
c:\windows\$NtUninstallKB913580$
c:\windows\$NtUninstallKB913800$
c:\windows\$NtUninstallKB914389$
c:\windows\$NtUninstallKB914440$
c:\windows\$NtUninstallKB915865$
c:\windows\$NtUninstallKB916595$
c:\windows\$NtUninstallKB917422$
c:\windows\$NtUninstallKB917734_WMP10$
c:\windows\$NtUninstallKB917953$
c:\windows\$NtUninstallKB918118$
c:\windows\WBEM
c:\windows\Web
c:\windows\WgaNotify.log 10383 bytes
c:\windows\wiadebug.log 159 bytes
c:\windows\wiaservc.log 48 bytes
c:\windows\win.ini 635 bytes
c:\windows\WindowsShell.Manifest 749 bytes
c:\windows\WindowsUpdate.log 1962969 bytes
c:\windows\winhelp.exe 256192 bytes
c:\windows\winhlp32.exe 283648 bytes executable
c:\windows\winnt.bmp 48680 bytes
c:\windows\winnt256.bmp 48680 bytes
c:\windows\WinSxS
c:\windows\KB906569.log 10423 bytes
c:\windows\KB908246.log 18889 bytes
c:\windows\KB908250.log 35315 bytes
c:\windows\KB908519.log 14050 bytes
c:\windows\KB908531.log 17915 bytes
c:\windows\KB908673.log 12929 bytes
c:\windows\KB909095.log 16466 bytes
c:\windows\KB910393.log 15682 bytes
c:\windows\KB910437.log 35354 bytes
c:\windows\KB911280.log 46942 bytes
c:\windows\KB911562.log 9708 bytes
c:\windows\KB911564.log 3072 bytes
c:\windows\KB911567.log 17134 bytes
c:\windows\KB911927.log 47915 bytes
c:\windows\KB912024.log 15980 bytes
c:\windows\KB912067.log 18067 bytes
c:\windows\KB912919.log 14923 bytes
c:\windows\KB912945.log 8728 bytes
c:\windows\KB913580.log 30046 bytes
c:\windows\kb913800.exe 23040 bytes executable
c:\windows\KB913800.log 37535 bytes
c:\windows\KB914388.log 11370 bytes
c:\windows\KB914389.log 24302 bytes
c:\windows\KB914440.log 5582 bytes
c:\windows\KB915865.log 7244 bytes
c:\windows\KB885835.log 5632 bytes
c:\windows\KB885836.log 47020 bytes
c:\windows\KB885855.log 3891 bytes
c:\windows\KB886185.log 20459 bytes
c:\windows\KB887472.log 5364 bytes
c:\windows\KB887998.log 35812 bytes
c:\windows\KB888113.log 5424 bytes
c:\windows\KB888302.log 30241 bytes
c:\windows\KB888795.log 9426 bytes
c:\windows\KB889673.log 8048 bytes
c:\windows\KB890046.log 33918 bytes
c:\windows\KB890859.log 23939 bytes
c:\windows\KB890927.log 6970 bytes
c:\windows\KB891593.log 12157 bytes
c:\windows\KB891781.log 5344 bytes
c:\windows\KB892627.log 2770 bytes
c:\windows\KB893056.log 3399 bytes
c:\windows\KB893756.log 47843 bytes
c:\windows\KB893803.log 2329 bytes
c:\windows\KB893803.log.1.log 7236 bytes
c:\windows\KB893803v2.log 9882 bytes
c:\windows\KB894391.log 26752 bytes
c:\windows\KB895316.log 6140 bytes
c:\windows\KB924667.log 19223 bytes
c:\windows\KB925398.log 10806 bytes
c:\windows\KB925454.log 38843 bytes
c:\windows\KB925486.log 30784 bytes
c:\windows\KB925902.log 14835 bytes
c:\windows\KB926239.log 11627 bytes
c:\windows\KB926251.log 9759 bytes
c:\windows\KB926255.log 14734 bytes
c:\windows\KB926436.log 20815 bytes
c:\windows\KB927779.log 24714 bytes
c:\windows\KB927802.log 22019 bytes
c:\windows\KB927891.log 9486 bytes
c:\windows\KB928090-IE7.log 12728 bytes
c:\windows\KB928255.log 22502 bytes
c:\windows\KB928843.log 15059 bytes
c:\windows\KB929123.log 21512 bytes
c:\windows\KB929338.log 19916 bytes
c:\windows\KB929399.log 12442 bytes
c:\windows\KB929969.log 18223 bytes
c:\windows\KB930178.log 17585 bytes
c:\windows\KB930494.log 10168 bytes
c:\windows\KB930916.log 13319 bytes
c:\windows\KB931261.log 16969 bytes
c:\windows\KB931768-IE7.log 18099 bytes
c:\windows\KB931784.log 25247 bytes
c:\windows\$NtUninstallKB925902$
c:\windows\$NtUninstallKB926239$
c:\windows\$NtUninstallKB926251$
c:\windows\$NtUninstallKB926255$
c:\windows\$NtUninstallKB926436$
c:\windows\$NtUninstallKB927779$
c:\windows\$NtUninstallKB927802$
c:\windows\$NtUninstallKB927891$
c:\windows\$NtUninstallKB928255$
c:\windows\$NtUninstallKB928843$
c:\windows\$NtUninstallKB929123$
c:\windows\$NtUninstallKB929338$
c:\windows\$NtUninstallKB929399$
c:\windows\$NtUninstallKB929969$
c:\windows\$NtUninstallKB930178$
c:\windows\$NtUninstallKB891593$
c:\windows\$NtUninstallKB893756$
c:\windows\$NtUninstallKB894391$
c:\windows\$NtUninstallKB895316$
c:\windows\$NtUninstallKB895961$
c:\windows\$NtUninstallKB896428$
c:\windows\$NtUninstallKB898461$
c:\windows\$NtUninstallKB899337$
c:\windows\$NtUninstallKB899510$
c:\windows\$NtUninstallKB899587$
c:\windows\$NtUninstallKB899589$
c:\windows\$NtUninstallKB900325$
c:\windows\$NtUninstallKB900485$
c:\windows\$NtUninstallKB900725$
c:\windows\$NtUninstallKB901017$
c:\windows\$NtUninstallKB902400$
c:\windows\$NtUninstallKB919007$
c:\windows\$NtUninstallKB920213$
c:\windows\$NtUninstallKB920214$
c:\windows\$NtUninstallKB920670$
c:\windows\$NtUninstallKB920683$
c:\windows\$NtUninstallKB920685$
c:\windows\$NtUninstallKB920872$
c:\windows\$NtUninstallKB921398$
c:\windows\$NtUninstallKB921503$
c:\windows\$NtUninstallKB922582$
c:\windows\$NtUninstallKB922616$
c:\windows\$NtUninstallKB922760$
c:\windows\$NtUninstallKB922819$
c:\windows\$NtUninstallKB923191$
c:\windows\$NtUninstallKB923414$
c:\windows\$NtUninstallKB923561$
c:\windows\$NtUninstallKB923689$
c:\windows\$NtUninstallKB923694$
c:\windows\$NtUninstallKB923980$
c:\windows\$NtUninstallKB924191$
c:\windows\$NtUninstallKB924270$
c:\windows\$NtUninstallKB924496$
c:\windows\$NtUninstallKB924667$
c:\windows\$NtUninstallKB925398_WMP64$
c:\windows\$NtUninstallKB925454$
c:\windows\PIXTRAN
c:\windows\plusoc.log 342407 bytes
c:\windows\Prairie Wind.bmp 65954 bytes
c:\windows\Prefetch
c:\windows\Provisioning
c:\windows\QUICKEN.INI 76 bytes
c:\windows\regedit.exe 146432 bytes executable
c:\windows\RegisteredPackages
c:\windows\Registration
c:\windows\REGLOCS.OLD 8192 bytes
c:\windows\regopt.log 2282 bytes
c:\windows\repair
c:\windows\Resources
c:\windows\setuperr.log 0 bytes
c:\windows\setuplog.del 964557 bytes
c:\windows\setuplog.txt 160017 bytes
c:\windows\SHELLNEW
c:\windows\slrundll.exe 32866 bytes executable
c:\windows\smscfg.ini 61 bytes
c:\windows\Soap Bubbles.bmp 65978 bytes
c:\windows\SoftwareDistribution
c:\windows\spupdsvc.log 105884 bytes
c:\windows\spupdsvc.log.1.log 187 bytes
c:\windows\srchasst
c:\windows\srun.log 12 bytes
c:\windows\Sti_Trace.log 0 bytes
c:\windows\stsystra.exe 282624 bytes executable
c:\windows\Sun
c:\windows\svcpack.log 608238 bytes
c:\windows\SWREG.exe 518144 bytes executable
c:\windows\SWSC.exe 406528 bytes executable
c:\windows\SWXCACLS.exe 212480 bytes executable
c:\windows\SxsCaPendDel
c:\windows\SynInst.log 442 bytes
c:\windows\KB932168.log 20851 bytes
c:\windows\KB932823-v3.log 15861 bytes
c:\windows\KB933360.log 26849 bytes
c:\windows\KB933566-IE7.log 25786 bytes
c:\windows\KB933729.log 14727 bytes
c:\windows\KB935839.log 20488 bytes
c:\windows\KB935840.log 20911 bytes
c:\windows\KB936021.log 23251 bytes
c:\windows\KB936357.log 15148 bytes
c:\windows\KB936782.log 10154 bytes
c:\windows\KB937143-IE7.log 27461 bytes
c:\windows\KB937894.log 25510 bytes
c:\windows\KB938127-IE7.log 17509 bytes
c:\windows\KB938464-v2.log 7522 bytes
c:\windows\KB938464.log 203349 bytes
c:\windows\KB938828.log 22434 bytes
c:\windows\KB938829.log 22376 bytes
c:\windows\0.log 0 bytes
c:\windows\addins
c:\windows\AppPatch
c:\windows\assembly
c:\windows\atid.ini 21 bytes
c:\windows\avastSS.scr 41664 bytes executable
c:\windows\bcmwl.log 7605 bytes
c:\windows\Blue Lace 16.bmp 1272 bytes
c:\windows\bootstat.dat 2048 bytes
c:\windows\bsdsetup.dll 2219008 bytes executable
c:\windows\Cache
c:\windows\cdplayer.ini 1456 bytes
c:\windows\clock.avi 82944 bytes
c:\windows\cmsetacl.log 373 bytes
c:\windows\Coffee Bean.bmp 17062 bytes
c:\windows\COM+.log 4346 bytes
c:\windows\wmsetup.log 72418 bytes
c:\windows\wmsetup10.log 237 bytes
c:\windows\WMSysPr9.prx 316640 bytes
c:\windows\Wudf01000Inst.log 11160 bytes
c:\windows\xpsp1hfm.log 2256 bytes
c:\windows\Your Birthday News
c:\windows\Your Birthday News Setup Log.txt 8297 bytes
c:\windows\Your Birthday News Uninstall Log.txt 3370 bytes
c:\windows\Zapotec.bmp 9522 bytes
c:\windows\zip.exe 68096 bytes executable
c:\windows\_default.pif 707 bytes
c:\windows\medblker.Log 7259 bytes
c:\windows\MedCtrOC.log 316609 bytes
c:\windows\Media
c:\windows\Microsoft.NET
c:\windows\Minidump
c:\windows\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt 4276 bytes
c:\windows\mozver.dat 2301 bytes
c:\windows\mp10oem.txt 48 bytes
c:\windows\msagent
c:\windows\msapps
c:\windows\msdfmap.ini 1405 bytes
c:\windows\msgsocm.log 147107 bytes
c:\windows\msmqinst.log 897918 bytes
c:\windows\msoffice.ini 2 bytes
c:\windows\msxml4-KB936181-enu.LOG 292444 bytes
c:\windows\msxml4-KB954430-enu.LOG 314512 bytes
c:\windows\msxml4-KB973688-enu.LOG 315746 bytes
c:\windows\$NtUninstallKB930916$
c:\windows\$NtUninstallKB931261$
c:\windows\$NtUninstallKB931784$
c:\windows\$NtUninstallKB931836$
c:\windows\$NtUninstallKB932168$
c:\windows\$NtUninstallKB932823-v3$
c:\windows\$NtUninstallKB933360$
c:\windows\$NtUninstallKB933729$
c:\windows\$NtUninstallKB935839$
c:\windows\$NtUninstallKB935840$
c:\windows\$NtUninstallKB936021$
c:\windows\$NtUninstallKB936357$
c:\windows\$NtUninstallKB936782_WMP10$
c:\windows\$NtUninstallKB937894$
c:\windows\$NtUninstallKB938464$
c:\windows\$NtUninstallKB938464-v2$
c:\windows\$NtUninstallKB938464_0$
c:\windows\$NtUninstallKB938828$
c:\windows\$NtUninstallKB938829$
c:\windows\KB941202.log 13502 bytes
c:\windows\KB941568.log 18734 bytes
c:\windows\KB941569.log 19273 bytes
c:\windows\KB941644.log 14094 bytes
c:\windows\KB941693.log 21415 bytes
c:\windows\KB942615-IE7.log 28523 bytes
c:\windows\KB942763.log 35999 bytes
c:\windows\KB943055.log 15623 bytes
c:\windows\KB943460.log 9549 bytes
c:\windows\KB943485.log 14427 bytes
c:\windows\KB944533-IE7.log 27024 bytes
c:\windows\KB944653.log 15166 bytes
c:\windows\KB945553.log 15519 bytes
c:\windows\KB946026.log 21122 bytes
c:\windows\KB946648.log 211984 bytes
c:\windows\$NtUninstallKB941568$
c:\windows\$NtUninstallKB941569$
c:\windows\$NtUninstallKB941644$
c:\windows\$NtUninstallKB941693$
c:\windows\$NtUninstallKB942763$
c:\windows\$NtUninstallKB943055$
c:\windows\$NtUninstallKB943460$
c:\windows\$NtUninstallKB943485$
c:\windows\$NtUninstallKB944653$
c:\windows\$NtUninstallKB945553$
c:\windows\$NtUninstallKB946026$
c:\windows\$NtUninstallKB946648$
c:\windows\$NtUninstallKB946648_0$
c:\windows\$NtUninstallKB948590$
c:\windows\$NtUninstallKB948881$
c:\windows\KB948590.log 15389 bytes
c:\windows\KB948881.log 15434 bytes
c:\windows\KB950749.log 16566 bytes
c:\windows\KB950759-IE7.log 19463 bytes
c:\windows\KB950760.log 7826 bytes
c:\windows\KB950762.log 203452 bytes
c:\windows\KB950974.log 217312 bytes
c:\windows\KB951066.log 202336 bytes
c:\windows\KB951072-v2.log 37071 bytes
c:\windows\KB951376-v2.log 204527 bytes
c:\windows\KB951376.log 203174 bytes
c:\windows\KB951698.log 214976 bytes
c:\windows\$NtUninstallKB950760$
c:\windows\$NtUninstallKB950762$
c:\windows\$NtUninstallKB950762_0$
c:\windows\$NtUninstallKB950974$
c:\windows\$NtUninstallKB950974_0$
c:\windows\$NtUninstallKB951066$
c:\windows\$NtUninstallKB951066_0$
c:\windows\$NtUninstallKB951072-v2$
c:\windows\$NtUninstallKB951376$
c:\windows\$NtUninstallKB951376-v2$
c:\windows\$NtUninstallKB951376-v2_0$
c:\windows\$NtUninstallKB951376_0$
c:\windows\$NtUninstallKB951698$
c:\windows\$NtUninstallKB951698_0$
c:\windows\$NtUninstallKB951748$
c:\windows\KB951978.log 15730 bytes
c:\windows\KB952004.log 16486 bytes
c:\windows\KB952011.log 9191 bytes
c:\windows\KB952069.log 10697 bytes
c:\windows\KB952287.log 209897 bytes
c:\windows\KB952954.log 217760 bytes
c:\windows\KB953295.log 11628 bytes
c:\windows\KB953838-IE7.log 20921 bytes
c:\windows\KB953839.log 15830 bytes
c:\windows\KB954155.log 9342 bytes
c:\windows\KB954156.log 4942 bytes
c:\windows\KB954211.log 202464 bytes
c:\windows\KB954459.log 14464 bytes
c:\windows\KB954600.log 7956 bytes
c:\windows\KB955069.log 8988 bytes
c:\windows\KB955759.log 9177 bytes
c:\windows\KB955839.log 33752 bytes
c:\windows\KB956390-IE7.log 25118 bytes
c:\windows\KB956391.log 13870 bytes
c:\windows\KB956572.log 16540 bytes
c:\windows\KB956744.log 8542 bytes
c:\windows\KB956802.log 13981 bytes
c:\windows\KB956803.log 208806 bytes
c:\windows\$NtUninstallKB951978$
c:\windows\$NtUninstallKB952004$
c:\windows\$NtUninstallKB952011$
c:\windows\$NtUninstallKB952069_WM9$
c:\windows\$NtUninstallKB952287$
c:\windows\$NtUninstallKB952287_0$
c:\windows\$NtUninstallKB952954$
c:\windows\$NtUninstallKB952954_0$
c:\windows\$NtUninstallKB953295$
c:\windows\$NtUninstallKB953839$
c:\windows\$NtUninstallKB954155_WM9$
c:\windows\$NtUninstallKB954156_WM9L$
c:\windows\$NtUninstallKB954211$
c:\windows\$NtUninstallKB954211_0$
c:\windows\$NtUninstallKB954459$
c:\windows\$NtUninstallKB954600$
c:\windows\$NtUninstallKB955069$
c:\windows\$NtUninstallKB955759$
c:\windows\$NtUninstallKB955839$
c:\windows\$NtUninstallKB956391$
c:\windows\$NtUninstallKB956572$
c:\windows\$NtUninstallKB956744$
c:\windows\$NtUninstallKB956802$
c:\windows\KB895961.log 4739 bytes
c:\windows\KB905749.log 30546 bytes
c:\windows\KB916281.log 14043 bytes
c:\windows\KB924496.log 51814 bytes
c:\windows\KB931836.log 31011 bytes
c:\windows\KB939653-IE7.log 25847 bytes
c:\windows\KB947864-IE7.log 20979 bytes
c:\windows\KB951748.log 214750 bytes
c:\windows\KB956841.log 209687 bytes
c:\windows\KB961501.log 21101 bytes
c:\windows\KB972260-IE7.log 99719 bytes
c:\windows\KB974571.log 16112 bytes
c:\windows\KB978262.log 8054 bytes
c:\windows\KB980232.log 7608 bytes
c:\windows\mui
c:\windows\PIF
c:\windows\Rhododendron.bmp 17362 bytes
c:\windows\setuperr.del 0 bytes
c:\windows\vmmreg32.dll 18944 bytes executable
c:\windows\WMFDist11.log 26496 bytes
c:\windows\KB956844.log 8011 bytes
c:\windows\KB957095.log 208810 bytes
c:\windows\KB957097.log 9063 bytes
c:\windows\KB958215-IE7.log 19591 bytes
c:\windows\KB958644.log 8579 bytes
c:\windows\KB958687.log 7941 bytes
c:\windows\KB958690.log 17410 bytes
c:\windows\KB958869.log 7748 bytes
c:\windows\KB959426.log 27428 bytes
c:\windows\KB960225.log 17245 bytes
c:\windows\KB960714-IE7.log 121184 bytes
c:\windows\KB960715.log 12933 bytes
c:\windows\KB960803.log 14991 bytes
c:\windows\KB960859.log 14038 bytes
c:\windows\KB961118.log 5799 bytes
c:\windows\KB961260-IE7.log 18868 bytes
c:\windows\KB961371.log 13158 bytes
c:\windows\KB961373.log 26427 bytes
c:\windows\ie7
c:\windows\ie7.log 48713 bytes
c:\windows\ie7updates
c:\windows\ie7_main.log 24856 bytes
c:\windows\ie8
c:\windows\ie8.log 87844 bytes
c:\windows\ie8updates
c:\windows\ie8_main.log 198350 bytes
c:\windows\iis6.BAK 2001040 bytes
c:\windows\iis6.log 1208727 bytes
c:\windows\ime
c:\windows\imsins.BAK 1374 bytes
c:\windows\imsins.log 1891 bytes
c:\windows\inf
c:\windows\Installer
c:\windows\Internet Logs
c:\windows\$NtUninstallKB956803_0$
c:\windows\$NtUninstallKB956841$
c:\windows\$NtUninstallKB956841_0$
c:\windows\$NtUninstallKB956844$
c:\windows\$NtUninstallKB957095$
c:\windows\$NtUninstallKB957095_0$
c:\windows\$NtUninstallKB957097$
c:\windows\$NtUninstallKB958644$
c:\windows\$NtUninstallKB958687$
c:\windows\$NtUninstallKB958690$
c:\windows\$NtUninstallKB958869$
c:\windows\$NtUninstallKB959426$
c:\windows\$NtUninstallKB960225$
c:\windows\$NtUninstallKB960715$
c:\windows\$NtUninstallKB960803$
c:\windows\$NtUninstallKB960859$
c:\windows\$NtUninstallKB961118$
c:\windows\$NtUninstallKB961371$
c:\windows\KB963027-IE7.log 101403 bytes
c:\windows\KB967715.log 13935 bytes
c:\windows\KB968389.log 17287 bytes
c:\windows\KB968537.log 13935 bytes
c:\windows\KB968816.log 7215 bytes
c:\windows\KB969059.log 15621 bytes
c:\windows\KB969897-IE7.log 96661 bytes
c:\windows\KB969898.log 14924 bytes
c:\windows\KB969947.log 13748 bytes
c:\windows\KB970238.log 20971 bytes
c:\windows\KB970430.log 23276 bytes
c:\windows\KB970653-v3.log 3807 bytes
c:\windows\KB971029.log 14688 bytes
c:\windows\KB971468.log 8677 bytes
c:\windows\KB971486.log 9782 bytes
c:\windows\KB971557.log 13492 bytes
c:\windows\KB971633.log 13994 bytes
c:\windows\KB971657.log 13986 bytes
c:\windows\KB971737.log 14379 bytes
c:\windows\KB971961-IE8.log 7817 bytes
c:\windows\KB971961.log 9014 bytes
c:\windows\$NtUninstallKB961501$
c:\windows\$NtUninstallKB967715$
c:\windows\$NtUninstallKB968389$
c:\windows\$NtUninstallKB968537$
c:\windows\$NtUninstallKB968816_WM9$
c:\windows\$NtUninstallKB969059$
c:\windows\$NtUninstallKB969898$
c:\windows\$NtUninstallKB969947$
c:\windows\$NtUninstallKB970238$
c:\windows\$NtUninstallKB970430$
c:\windows\$NtUninstallKB970653-v3$
c:\windows\$NtUninstallKB971029$
c:\windows\$NtUninstallKB971468$
c:\windows\$NtUninstallKB971486$
c:\windows\$NtUninstallKB971557$
c:\windows\$NtUninstallKB971633$
c:\windows\$NtUninstallKB971657$
c:\windows\$NtUninstallKB971737$
c:\windows\$NtUninstallKB971961$
c:\windows\$NtUninstallKB972270$
c:\windows\KB972270.log 7654 bytes
c:\windows\KB973346.log 7690 bytes
c:\windows\KB973354.log 7748 bytes
c:\windows\KB973507.log 14143 bytes
c:\windows\KB973525.log 8102 bytes
c:\windows\KB973540.log 7627 bytes
c:\windows\KB973687.log 8762 bytes
c:\windows\KB973768.log 10638 bytes
c:\windows\KB973815.log 13358 bytes
c:\windows\KB973869.log 8126 bytes
c:\windows\KB973904.log 15979 bytes
c:\windows\KB974112.log 15675 bytes
c:\windows\KB974318.log 21852 bytes
c:\windows\KB974392.log 18126 bytes
c:\windows\KB974455-IE7.log 98570 bytes
c:\windows\$NtUninstallKB973354$
c:\windows\$NtUninstallKB973507$
c:\windows\$NtUninstallKB973525$
c:\windows\$NtUninstallKB973540_WM9$
c:\windows\$NtUninstallKB973687$
c:\windows\$NtUninstallKB973768$
c:\windows\$NtUninstallKB973815$
c:\windows\$NtUninstallKB973869$
c:\windows\$NtUninstallKB973904$
c:\windows\$NtUninstallKB974112$
c:\windows\$NtUninstallKB974318$
c:\windows\$NtUninstallKB974392$
c:\windows\$NtUninstallKB974571$
c:\windows\$NtUninstallKB975025$
c:\windows\$NtUninstallKB975467$
c:\windows\$NtUninstallKB975558_WM8$
c:\windows\KB975025.log 15620 bytes
c:\windows\KB975467.log 14332 bytes
c:\windows\KB975558.log 9246 bytes
c:\windows\KB975560.log 13824 bytes
c:\windows\KB975561.log 7481 bytes
c:\windows\KB975562.log 20193 bytes
c:\windows\KB975713.log 13795 bytes
c:\windows\KB976098-v2.log 4284 bytes
c:\windows\KB976325-IE7.log 98845 bytes
c:\windows\KB976662-IE8.log 7716 bytes
c:\windows\KB976749-IE7.log 17090 bytes
c:\windows\KB977165.log 9598 bytes
c:\windows\KB977816.log 13192 bytes
c:\windows\KB977914.log 14505 bytes
c:\windows\KB978037.log 14029 bytes
c:\windows\KB978207-IE7.log 100461 bytes
c:\windows\KB978251.log 7779 bytes
c:\windows\$NtUninstallKB975561$
c:\windows\$NtUninstallKB975562$
c:\windows\$NtUninstallKB975713$
c:\windows\$NtUninstallKB976098-v2$
c:\windows\$NtUninstallKB977165$
c:\windows\$NtUninstallKB977816$
c:\windows\$NtUninstallKB977914$
c:\windows\$NtUninstallKB978037$
c:\windows\$NtUninstallKB978251$
c:\windows\$NtUninstallKB978262$
c:\windows\$NtUninstallKB978338$
c:\windows\$NtUninstallKB978542$
c:\windows\$NtUninstallKB978601$
c:\windows\$NtUninstallKB978695_WM9$
c:\windows\$NtUninstallKB978706$
c:\windows\KB978338.log 13689 bytes
c:\windows\KB978542.log 13178 bytes
c:\windows\KB978601.log 14008 bytes
c:\windows\KB978695.log 14333 bytes
c:\windows\KB978706.log 12937 bytes
c:\windows\KB979306.log 3822 bytes
c:\windows\KB979309.log 13011 bytes
c:\windows\KB979332.log 5160 bytes
c:\windows\KB979482.log 20142 bytes
c:\windows\KB979559.log 22073 bytes
c:\windows\KB979683.log 9103 bytes
c:\windows\KB979687.log 22260 bytes
c:\windows\KB979904.log 19512 bytes
c:\windows\KB980182-IE7.log 101580 bytes
c:\windows\KB980195.log 16934 bytes
c:\windows\KB980218.log 23454 bytes
c:\windows\KB980436.log 14539 bytes
c:\windows\KB981322.log 13540 bytes
c:\windows\KB981332-IE8.log 7704 bytes
c:\windows\KB981349.log 13708 bytes
c:\windows\KB981793.log 3823 bytes
c:\windows\KB981852.log 15045 bytes
c:\windows\KB981957.log 17410 bytes
c:\windows\KB981997.log 7692 bytes
c:\windows\KB982132.log 21667 bytes
c:\windows\KB982214.log 13395 bytes
c:\windows\KB982381-IE7.log 102007 bytes
c:\windows\KB982381-IE8.log 97538 bytes
c:\windows\KB982632-IE8.log 87647 bytes
c:\windows\KB982665.log 13173 bytes
c:\windows\KB982802.log 15076 bytes
c:\windows\l2schemas
c:\windows\MBR.exe 208896 bytes executable
c:\windows\MCSetup.log 2398 bytes
c:\windows\MCSetup_UI.log 1525 bytes
c:\windows\$NtUninstallKB979309$
c:\windows\$NtUninstallKB979332_WM9L$
c:\windows\$NtUninstallKB979482$
c:\windows\$NtUninstallKB979559$
c:\windows\$NtUninstallKB979683$
c:\windows\$NtUninstallKB979687$
c:\windows\$NtUninstallKB979904$
c:\windows\$NtUninstallKB980195$
c:\windows\$NtUninstallKB980218$
c:\windows\$NtUninstallKB980232$
c:\windows\$NtUninstallKB980436$
c:\windows\$NtUninstallKB981322$
c:\windows\$NtUninstallKB981349$
c:\windows\$NtUninstallKB981793$
c:\windows\$NtUninstallKB981852$
c:\windows\$NtUninstallKB981957$
c:\windows\$NtUninstallKB981997$
c:\windows\$NtUninstallKB982132$
c:\windows\$NtUninstallKB982214$
c:\windows\$NtUninstallKB982665$
c:\windows\$NtUninstallKB982802$
c:\windows\$NtUninstallWMFDist11$
c:\windows\$NtUninstallWudf01000$
c:\windows\java
c:\windows\KB2079403.log 19255 bytes
c:\windows\KB2115168.log 18717 bytes
c:\windows\KB2121546.log 15196 bytes
c:\windows\KB2141007.log 13275 bytes
c:\windows\KB2158563.log 3778 bytes
c:\windows\KB2160329.log 15213 bytes
c:\windows\KB2183461-IE8.log 16154 bytes
c:\windows\KB2229593.log 8005 bytes
c:\windows\KB2279986.log 23175 bytes
c:\windows\KB2286198.log 14125 bytes
c:\windows\KB2296011.log 13278 bytes
c:\windows\KB2296199.log 17837 bytes
c:\windows\KB2345886.log 23658 bytes
c:\windows\KB2347290.log 15716 bytes
c:\windows\KB2360131-IE8.log 17994 bytes
c:\windows\KB2360937.log 10575 bytes
c:\windows\KB2387149.log 16682 bytes
c:\windows\KB2393802.log 10628 bytes
c:\windows\KB2412687.log 10826 bytes
c:\windows\KB2416400-IE8.log 15824 bytes
c:\windows\KB2419632.log 21237 bytes
c:\windows\KB2423089.log 7736 bytes
c:\windows\KB2436673.log 14580 bytes
c:\windows\KB2440591.log 8238 bytes
c:\windows\KB2443105.log 17034 bytes
c:\windows\KB2443685.log 4077 bytes
c:\windows\DtcInstall.log 867 bytes
c:\windows\ehOCGen.log 163269 bytes
c:\windows\ehome
c:\windows\EmeraldQFE2.log 6645 bytes
c:\windows\ERDNT
c:\windows\ERUNT
c:\windows\eSellerateEngine.dll 360580 bytes executable
c:\windows\explorer.exe 1033728 bytes executable
c:\windows\explorer.scf 80 bytes
c:\windows\FaxSetup.log 2942488 bytes
c:\windows\KB2467659.log 7450 bytes
c:\windows\KB2476490.log 18053 bytes
c:\windows\KB2476687.log 14445 bytes
c:\windows\KB2478960.log 14156 bytes
c:\windows\KB2478971.log 20716 bytes
c:\windows\KB2479628.log 20307 bytes
c:\windows\KB2481109.log 14245 bytes
c:\windows\KB2482017-IE8.log 16647 bytes
c:\windows\KB2483185.log 19524 bytes
c:\windows\$NtUninstallKB950749$
c:\windows\$NtUninstallKB951748_0$
c:\windows\$NtUninstallKB956803$
c:\windows\$NtUninstallKB961373$
c:\windows\$NtUninstallKB973346$
c:\windows\$NtUninstallKB975560$
c:\windows\$NtUninstallKB979306$
c:\windows\comsetup.log 949689 bytes
c:\windows\Driver Cache
c:\windows\FeatherTexture.bmp 16730 bytes
c:\windows\KB2259922.log 9695 bytes
c:\windows\KB2378111.log 13386 bytes
c:\windows\KB2485376.log 20266 bytes
c:\windows\KB2544521-IE8.log 7959 bytes
c:\windows\KB2570222.log 12049 bytes
c:\windows\KB2639417.log 19871 bytes
c:\windows\KB2660465.log 18777 bytes
c:\windows\KB2699988-IE8.log 16872 bytes
c:\windows\KB2723135.log 13155 bytes
c:\windows\KB2756822.log 4788 bytes
c:\windows\KB2780091.log 18763 bytes
c:\windows\KB2813170.log 15127 bytes
c:\windows\KB2485663.log 17640 bytes
c:\windows\KB2497640-IE8.log 21374 bytes
c:\windows\KB2502898.log 10470 bytes
c:\windows\KB2503658.log 18487 bytes
c:\windows\KB2503665.log 12584 bytes
c:\windows\KB2506212.log 17144 bytes
c:\windows\KB2506223.log 24359 bytes
c:\windows\KB2507618.log 17968 bytes
c:\windows\KB2507938.log 14478 bytes
c:\windows\KB2508272.log 12307 bytes
c:\windows\KB2508429.log 17704 bytes
c:\windows\KB2509553.log 17269 bytes
c:\windows\KB2510531-IE8.log 10047 bytes
c:\windows\KB2511455.log 11618 bytes
c:\windows\KB2524375.log 7247 bytes
c:\windows\KB2530548-IE8.log 16286 bytes
c:\windows\KB2535512.log 12585 bytes
c:\windows\KB2536276-v2.log 12218 bytes
c:\windows\KB2536276.log 12662 bytes
c:\windows\KB2541763.log 13986 bytes
c:\windows\KB2544893-v2.log 12958 bytes
c:\windows\KB2544893.log 8593 bytes
c:\windows\KB2555917.log 14460 bytes
c:\windows\KB2559049-IE8.log 15767 bytes
c:\windows\KB2562937.log 7308 bytes
c:\windows\KB2564958.log 12384 bytes
c:\windows\KB2566454.log 7992 bytes
c:\windows\KB2567053.log 20451 bytes
c:\windows\KB2567680.log 17856 bytes
c:\windows\KB2570791.log 3730 bytes
c:\windows\KB2570947.log 7496 bytes
c:\windows\KB2572066.log 12891 bytes
c:\windows\KB2584146.log 12920 bytes
c:\windows\KB2585542.log 14618 bytes
c:\windows\KB2586448-IE8.log 18412 bytes
c:\windows\KB2592799.log 14172 bytes
c:\windows\KB2598479.log 13920 bytes
c:\windows\KB2603381.log 7441 bytes
c:\windows\KB2604042.log 13607 bytes
c:\windows\KB2607712.log 13982 bytes
c:\windows\KB2616676.log 13914 bytes
c:\windows\KB2618444-IE8.log 16750 bytes
c:\windows\KB2618451.log 7725 bytes
c:\windows\KB2619340.log 16096 bytes
c:\windows\KB2620712.log 13416 bytes
c:\windows\KB2621440.log 7897 bytes
c:\windows\KB2624667.log 18904 bytes
c:\windows\KB2628259.log 10295 bytes
c:\windows\KB2631813.log 13669 bytes
c:\windows\KB2633171.log 16347 bytes
c:\windows\KB2633952.log 4080 bytes
c:\windows\KB2641653.log 8093 bytes
c:\windows\KB2641690.log 14001 bytes
c:\windows\KB2646524.log 14303 bytes
c:\windows\KB2647516-IE8.log 16514 bytes
c:\windows\KB2647518.log 7263 bytes
c:\windows\KB2653956.log 14506 bytes
c:\windows\KB2655992.log 14905 bytes
c:\windows\KB2656378.log 30639 bytes
c:\windows\KB2659262.log 7088 bytes
c:\windows\KB2661254-v2.log 14308 bytes
c:\windows\KB2661637.log 7689 bytes
c:\windows\KB2675157-IE8.log 17117 bytes
c:\windows\KB2676562.log 18413 bytes
c:\windows\KB2685939.log 8171 bytes
c:\windows\KB2686509.log 9267 bytes
c:\windows\KB2691442.log 15841 bytes
c:\windows\KB2695962.log 8553 bytes
c:\windows\KB2698035.log 14092 bytes
c:\windows\KB2698365.log 9800 bytes
c:\windows\KB2705219.log 19573 bytes
c:\windows\KB2707511.log 21052 bytes
c:\windows\KB2709162.log 14498 bytes
c:\windows\KB2712808.log 19992 bytes
c:\windows\KB2718523.log 9939 bytes
c:\windows\KB2718704.log 13987 bytes
c:\windows\KB2719985.log 14657 bytes
c:\windows\KB2722913-IE8.log 17457 bytes
c:\windows\KB2724197.log 15833 bytes
c:\windows\KB2727528.log 13488 bytes
c:\windows\KB2731847.log 14547 bytes
c:\windows\KB2736233.log 7282 bytes
c:\windows\KB2742607.log 20582 bytes
c:\windows\KB2744842-IE8.log 16833 bytes
c:\windows\KB2749655.log 14273 bytes
c:\windows\KB2753842-v2.log 22259 bytes
c:\windows\KB2753842.log 18520 bytes
c:\windows\$NtUninstallKB2719985$
c:\windows\$NtUninstallKB2723135$
c:\windows\$NtUninstallKB2724197$
c:\windows\$NtUninstallKB2727528$
c:\windows\$NtUninstallKB2731847$
c:\windows\$NtUninstallKB2736233$
c:\windows\$NtUninstallKB2742607$
c:\windows\$NtUninstallKB2749655$
c:\windows\$NtUninstallKB2753842$
c:\windows\$NtUninstallKB2753842-v2$
c:\windows\$NtUninstallKB2756822$
c:\windows\$NtUninstallKB2757638$
c:\windows\$NtUninstallKB2758857$
c:\windows\$NtUninstallKB2761226$
c:\windows\$NtUninstallKB2770660$
c:\windows\KB2757638.log 14678 bytes
c:\windows\KB2758857.log 19076 bytes
c:\windows\KB2761226.log 14857 bytes
c:\windows\KB2761465-IE8.log 17170 bytes
c:\windows\KB2770660.log 17769 bytes
c:\windows\KB2778344.log 19922 bytes
c:\windows\KB2779030.log 19483 bytes
c:\windows\KB2779562.log 8900 bytes
c:\windows\KB2792100-IE8.log 17225 bytes
c:\windows\KB2797052-IE8.log 13799 bytes
c:\windows\KB2799329-IE8.log 8973 bytes
c:\windows\KB2799494.log 20534 bytes
c:\windows\KB2802968.log 18784 bytes
c:\windows\KB2807986.log 8372 bytes
c:\windows\KB2808735.log 14773 bytes
c:\windows\KB2809289-IE8.log 138951 bytes
c:\windows\$NtUninstallKB2779030$
c:\windows\$NtUninstallKB2779562$
c:\windows\$NtUninstallKB2780091$
c:\windows\$NtUninstallKB2799494$
c:\windows\$NtUninstallKB2802968$
c:\windows\$NtUninstallKB2807986$
c:\windows\$NtUninstallKB2808735$
c:\windows\$NtUninstallKB2813170$
c:\windows\$NtUninstallKB2813345$
c:\windows\$NtUninstallKB2820197$
c:\windows\$NtUninstallKB2820917$
c:\windows\$NtUninstallKB2829361$
c:\windows\$NtUninstallKB2839229$
c:\windows\$NtUninstallKB835221WXP$
c:\windows\$NtUninstallKB885836$
c:\windows\$NtUninstallKB886185$
c:\windows\$NtUninstallKB887998$
c:\windows\$NtUninstallKB888302$
c:\windows\$NtUninstallKB888795$
c:\windows\$NtUninstallKB890046$
c:\windows\$NtUninstallKB890859$
c:\windows\KB2813345.log 14239 bytes
c:\windows\KB2817183-IE8.log 17486 bytes
c:\windows\KB2820197.log 7559 bytes
c:\windows\KB2820917.log 13743 bytes
c:\windows\KB2829361.log 12055 bytes
c:\windows\KB2829530-IE8.log 12869 bytes
c:\windows\KB2838727-IE8.log 12284 bytes
c:\windows\KB2839229.log 16195 bytes
c:\windows\KB2847204-IE8.log 6495 bytes
c:\windows\KB835221.log 21589 bytes
c:\windows\KB873339.log 5311 bytes
.
scan completed successfully
hidden files: 975
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ca,eb,09,24,e9,f8,d7,45,bb,a1,3a,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ca,eb,09,24,e9,f8,d7,45,bb,a1,3a,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1012)
c:\windows\system32\Ati2evxx.dll
c:\windows\System32\BCMLogon.dll
.
Completion time: 2013-07-07 23:16:27
ComboFix-quarantined-files.txt 2013-07-08 03:16
.
Pre-Run: 28,085,907,456 bytes free
Post-Run: 28,230,815,744 bytes free
.
- - End Of File - - 8FC7FE49F32F875A5A21FF1510D113B0
8F558EB6672622401DA993E1E865C861

#6
gringo_pr

Posted 08 July 2013 - 06:39 AM

Trusted Helper

Malware Removal
7,268 posts

Hello babablack

I would like you to try and run these next.

TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
more than one report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". The one that I need is the larger one. Please copy and paste the contents of that file here.

Note** this report can be very long - so if the website gives you an error saying it is to long you may attache it

If the forum still complains about it being to long send me everything that is at the end of the report after where it says

==================
Scan finished
==================

and I will see if I want to see the whole report

--RogueKiller--

Download & SAVE to your Desktop RogueKiller for 32bit or Roguekiller for 64bit

Quit all programs that you may have started.
Please disconnect any external drives from the computer before you run this scan!
For Vista or Windows 7, right-click and select "Run as Administrator to start"
For Windows XP, double-click to start.
Wait until Prescan has finished ...
Then Click on "Scan" button
Wait until the Status box shows "Scan Finished"
click on "delete"
Wait until the Status box shows "Deleting Finished"
Click on "Report" and copy/paste the content of the Notepad into your next reply.
the scan will make two reports the one I would like to see is called RKreport[2].txt on your Desktop
Exit/Close RogueKiller+

send me the reports made from TDSSKiller and Roguekiller and also let me know how the computer is doing at this time.

Gringo

#7
babablack

Posted 10 July 2013 - 07:01 PM

Member

Topic Starter
Member
11 posts

Thanks again for your response. Below is the TDS Killer Report (the larger one)

20:32:26.0139 0184 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
20:32:26.0202 0184 ============================================================
20:32:26.0202 0184 Current date / time: 2013/07/10 20:32:26.0202
20:32:26.0202 0184 SystemInfo:
20:32:26.0202 0184
20:32:26.0202 0184 OS Version: 5.1.2600 ServicePack: 3.0
20:32:26.0202 0184 Product type: Workstation
20:32:26.0202 0184 ComputerName: DBS18XB1
20:32:26.0202 0184 UserName: Kevin Bento
20:32:26.0202 0184 Windows directory: C:\WINDOWS
20:32:26.0202 0184 System windows directory: C:\WINDOWS
20:32:26.0202 0184 Processor architecture: Intel x86
20:32:26.0202 0184 Number of processors: 2
20:32:26.0202 0184 Page size: 0x1000
20:32:26.0202 0184 Boot type: Normal boot
20:32:26.0202 0184 ============================================================
20:32:48.0982 0184 BG loaded
20:32:52.0045 0184 Drive \Device\Harddisk0\DR0 - Size: 0x1B98B79400 (110.39 Gb), SectorSize: 0x200, Cylinders: 0x384A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:32:52.0592 0184 ============================================================
20:32:52.0592 0184 \Device\Harddisk0\DR0:
20:32:52.0592 0184 MBR partitions:
20:32:52.0592 0184 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17886, BlocksNum 0x9E5719F
20:32:52.0592 0184 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9E6EA25, BlocksNum 0x350A606
20:32:52.0592 0184 ============================================================
20:33:26.0419 0184 C: <-> \Device\Harddisk0\DR0\Partition1
20:34:26.0637 0184 D: <-> \Device\Harddisk0\DR0\Partition2
20:34:26.0746 0184 ============================================================
20:34:26.0746 0184 Initialize success
20:34:26.0746 0184 ============================================================
20:37:45.0367 5328 ============================================================
20:37:45.0367 5328 Scan started
20:37:45.0367 5328 Mode: Manual; SigCheck; TDLFS;
20:37:45.0367 5328 ============================================================
20:37:46.0242 5328 ================ Scan system memory ========================
20:37:46.0242 5328 System memory - ok
20:37:46.0258 5328 ================ Scan services =============================
20:37:46.0383 5328 Abiosdsk - ok
20:37:46.0461 5328 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
20:37:46.0680 5328 abp480n5 - ok
20:37:46.0758 5328 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:37:46.0930 5328 ACPI - ok
20:37:47.0008 5328 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:37:47.0227 5328 ACPIEC - ok
20:37:47.0477 5328 [ 34400005DE52842C4D6D4EE978B4D7CE ] AdobeActiveFileMonitor8.0 D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
20:37:47.0508 5328 AdobeActiveFileMonitor8.0 - ok
20:37:47.0617 5328 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
20:37:47.0648 5328 AdobeFlashPlayerUpdateSvc - ok
20:37:47.0695 5328 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
20:37:47.0836 5328 adpu160m - ok
20:37:47.0898 5328 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
20:37:48.0055 5328 aec - ok
20:37:48.0117 5328 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:37:48.0180 5328 AFD - ok
20:37:48.0242 5328 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
20:37:48.0430 5328 agp440 - ok
20:37:48.0461 5328 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
20:37:48.0633 5328 agpCPQ - ok
20:37:48.0664 5328 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
20:37:48.0742 5328 Aha154x - ok
20:37:48.0789 5328 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
20:37:48.0930 5328 aic78u2 - ok
20:37:48.0945 5328 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
20:37:49.0102 5328 aic78xx - ok
20:37:49.0148 5328 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:37:49.0305 5328 Alerter - ok
20:37:49.0320 5328 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
20:37:49.0477 5328 ALG - ok
20:37:49.0492 5328 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
20:37:49.0648 5328 AliIde - ok
20:37:49.0695 5328 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
20:37:49.0852 5328 alim1541 - ok
20:37:49.0898 5328 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
20:37:50.0055 5328 amdagp - ok
20:37:50.0070 5328 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
20:37:50.0164 5328 amsint - ok
20:37:50.0211 5328 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
20:37:50.0242 5328 APPDRV ( UnsignedFile.Multi.Generic ) - warning
20:37:50.0242 5328 APPDRV - detected UnsignedFile.Multi.Generic (1)
20:37:50.0383 5328 [ 70D7BE78061126DD0C3ACCDB7E129017 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:37:50.0398 5328 Apple Mobile Device - ok
20:37:50.0445 5328 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:37:50.0586 5328 AppMgmt - ok
20:37:50.0633 5328 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:37:50.0789 5328 Arp1394 - ok
20:37:50.0836 5328 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
20:37:50.0977 5328 asc - ok
20:37:50.0992 5328 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
20:37:51.0070 5328 asc3350p - ok
20:37:51.0086 5328 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
20:37:51.0258 5328 asc3550 - ok
20:37:51.0305 5328 [ B979979AB8027F7F53FB16EC4229B7DB ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
20:37:51.0320 5328 ASPI32 ( UnsignedFile.Multi.Generic ) - warning
20:37:51.0320 5328 ASPI32 - detected UnsignedFile.Multi.Generic (1)
20:37:51.0461 5328 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
20:37:51.0664 5328 aspnet_state - ok
20:37:51.0711 5328 [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
20:37:51.0758 5328 aswFsBlk - ok
20:37:51.0789 5328 [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
20:37:51.0805 5328 aswMonFlt - ok
20:37:51.0852 5328 [ 7B43265F92257A21CBFD88E7A651044C ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
20:37:51.0867 5328 aswRdr - ok
20:37:51.0867 5328 [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
20:37:51.0898 5328 aswRvrt - ok
20:37:51.0977 5328 [ 6CAB0A5991C5C0FC63F5E66593E71D7E ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
20:37:52.0023 5328 aswSnx - ok
20:37:52.0070 5328 [ 99102F60F344BEBAF4F6114514FD28D3 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
20:37:52.0102 5328 aswSP - ok
20:37:52.0133 5328 [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
20:37:52.0148 5328 aswTdi - ok
20:37:52.0180 5328 [ 16B8E3CD50A460EC32CA680C8210A0A9 ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
20:37:52.0211 5328 aswVmm - ok
20:37:52.0227 5328 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:37:52.0383 5328 AsyncMac - ok
20:37:52.0383 5328 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:37:52.0523 5328 atapi - ok
20:37:52.0539 5328 Atdisk - ok
20:37:52.0617 5328 [ 3B11BE07AF444314794372AF5D7C9A5A ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
20:37:52.0695 5328 Ati HotKey Poller - ok
20:37:52.0820 5328 [ 2573C08729DD52B7B4F18DF1592E0B37 ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
20:37:52.0914 5328 ati2mtag - ok
20:37:52.0977 5328 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:37:53.0133 5328 Atmarpc - ok
20:37:53.0211 5328 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:37:53.0351 5328 AudioSrv - ok
20:37:53.0398 5328 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:37:53.0555 5328 audstub - ok
20:37:53.0695 5328 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
20:37:53.0711 5328 avast! Antivirus - ok
20:37:53.0805 5328 [ 30D20FC98BCFD52E1DA778CF19B223D4 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
20:37:53.0883 5328 BCM43XX - ok
20:37:53.0914 5328 [ C768C8A463D32C219CE291645A0621A4 ] bcm4sbxp C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
20:37:53.0945 5328 bcm4sbxp - ok
20:37:54.0008 5328 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:37:54.0164 5328 Beep - ok
20:37:54.0211 5328 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] bgsvcgen C:\WINDOWS\system32\bgsvcgen.exe
20:37:54.0226 5328 bgsvcgen - ok
20:37:54.0305 5328 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
20:37:54.0492 5328 BITS - ok
20:37:54.0570 5328 [ 673CF4F6BB1FBE09331B526802FBB892 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:37:54.0680 5328 Bonjour Service - ok
20:37:54.0726 5328 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
20:37:54.0820 5328 Browser - ok
20:37:54.0976 5328 catchme - ok
20:37:55.0023 5328 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
20:37:55.0180 5328 cbidf - ok
20:37:55.0195 5328 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:37:55.0336 5328 cbidf2k - ok
20:37:55.0445 5328 [ 359E5A91D26D0439933BEF1C29CEDEF7 ] CCALib8 C:\Program Files\Canon\CAL\CALMAIN.exe
20:37:55.0476 5328 CCALib8 ( UnsignedFile.Multi.Generic ) - warning
20:37:55.0476 5328 CCALib8 - detected UnsignedFile.Multi.Generic (1)
20:37:55.0539 5328 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
20:37:55.0633 5328 cd20xrnt - ok
20:37:55.0664 5328 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:37:55.0820 5328 Cdaudio - ok
20:37:55.0851 5328 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:37:56.0008 5328 Cdfs - ok
20:37:56.0023 5328 [ E0042BD5BEF17A6A3EF1DF576BDE24D1 ] cdrbsdrv C:\WINDOWS\system32\drivers\cdrbsdrv.sys
20:37:56.0039 5328 cdrbsdrv ( UnsignedFile.Multi.Generic ) - warning
20:37:56.0039 5328 cdrbsdrv - detected UnsignedFile.Multi.Generic (1)
20:37:56.0055 5328 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:37:56.0195 5328 Cdrom - ok
20:37:56.0195 5328 Changer - ok
20:37:56.0258 5328 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:37:56.0398 5328 CiSvc - ok
20:37:56.0445 5328 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:37:56.0601 5328 ClipSrv - ok
20:37:56.0633 5328 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:37:56.0726 5328 clr_optimization_v2.0.50727_32 - ok
20:37:56.0820 5328 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:37:56.0836 5328 clr_optimization_v4.0.30319_32 - ok
20:37:56.0898 5328 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:37:57.0039 5328 CmBatt - ok
20:37:57.0086 5328 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
20:37:57.0226 5328 CmdIde - ok
20:37:57.0258 5328 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
20:37:57.0445 5328 Compbatt - ok
20:37:57.0445 5328 COMSysApp - ok
20:37:57.0461 5328 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
20:37:57.0617 5328 Cpqarray - ok
20:37:57.0680 5328 [ 75FA19142531CBF490770C2988A7DB64 ] cpuz134 C:\WINDOWS\system32\drivers\cpuz134_x32.sys
20:37:57.0695 5328 cpuz134 - ok
20:37:57.0726 5328 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:37:57.0867 5328 CryptSvc - ok
20:37:57.0914 5328 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
20:37:58.0086 5328 dac2w2k - ok
20:37:58.0101 5328 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
20:37:58.0258 5328 dac960nt - ok
20:37:58.0320 5328 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:37:58.0461 5328 DcomLaunch - ok
20:37:58.0476 5328 DellBIOS - ok
20:37:58.0555 5328 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:37:58.0742 5328 Dhcp - ok
20:37:58.0820 5328 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:37:58.0961 5328 Disk - ok
20:37:58.0961 5328 dmadmin - ok
20:37:59.0039 5328 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:37:59.0211 5328 dmboot - ok
20:37:59.0226 5328 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
20:37:59.0398 5328 dmio - ok
20:37:59.0445 5328 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:37:59.0586 5328 dmload - ok
20:37:59.0633 5328 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
20:37:59.0789 5328 dmserver - ok
20:37:59.0867 5328 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:38:00.0008 5328 DMusic - ok
20:38:00.0054 5328 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:38:00.0195 5328 Dnscache - ok
20:38:00.0242 5328 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
20:38:00.0414 5328 Dot3svc - ok
20:38:00.0429 5328 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20:38:00.0586 5328 dpti2o - ok
20:38:00.0617 5328 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:38:00.0773 5328 drmkaud - ok
20:38:00.0804 5328 [ 96BC8F872F0270C10EDC3931F1C03776 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
20:38:00.0836 5328 drvmcdb ( UnsignedFile.Multi.Generic ) - warning
20:38:00.0836 5328 drvmcdb - detected UnsignedFile.Multi.Generic (1)
20:38:00.0867 5328 [ 5AFBEC7A6AC61B211633DFDB1D9E0C89 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
20:38:00.0883 5328 drvnddm ( UnsignedFile.Multi.Generic ) - warning
20:38:00.0883 5328 drvnddm - detected UnsignedFile.Multi.Generic (1)
20:38:00.0992 5328 [ 2AC2372FFAD9ADC85672CC8E8AE14BE9 ] DSproct C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
20:38:01.0023 5328 DSproct ( UnsignedFile.Multi.Generic ) - warning
20:38:01.0023 5328 DSproct - detected UnsignedFile.Multi.Generic (1)
20:38:01.0039 5328 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
20:38:01.0195 5328 E100B - ok
20:38:01.0242 5328 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
20:38:01.0398 5328 EapHost - ok
20:38:01.0461 5328 [ D039A0C347632622934906BD59A4E1EA ] ehRecvr C:\WINDOWS\eHome\ehRecvr.exe
20:38:01.0601 5328 ehRecvr - ok
20:38:01.0633 5328 [ A53243709439AC2A4C216B817F8D7411 ] ehSched C:\WINDOWS\eHome\ehSched.exe
20:38:01.0679 5328 ehSched - ok
20:38:01.0726 5328 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:38:01.0867 5328 ERSvc - ok
20:38:01.0929 5328 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
20:38:01.0961 5328 Eventlog - ok
20:38:02.0023 5328 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
20:38:02.0070 5328 EventSystem - ok
20:38:02.0117 5328 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:38:02.0258 5328 Fastfat - ok
20:38:02.0320 5328 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:38:02.0414 5328 FastUserSwitchingCompatibility - ok
20:38:02.0461 5328 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
20:38:02.0601 5328 Fdc - ok
20:38:02.0633 5328 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:38:02.0789 5328 Fips - ok
20:38:02.0851 5328 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:38:02.0914 5328 FLEXnet Licensing Service - ok
20:38:02.0961 5328 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:38:03.0117 5328 Flpydisk - ok
20:38:03.0179 5328 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:38:03.0351 5328 FltMgr - ok
20:38:03.0445 5328 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:38:03.0461 5328 FontCache3.0.0.0 - ok
20:38:03.0523 5328 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:38:03.0679 5328 Fs_Rec - ok
20:38:03.0711 5328 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:38:03.0867 5328 Ftdisk - ok
20:38:03.0945 5328 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GearAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:38:03.0961 5328 GearAspiWDM - ok
20:38:04.0211 5328 [ 0879DC7444A201DF84E69C5DD5083D61 ] getPlusHelper C:\Program Files\NOS\bin\getPlus_Helper.dll
20:38:04.0289 5328 getPlusHelper - ok
20:38:04.0336 5328 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:38:04.0492 5328 Gpc - ok
20:38:04.0648 5328 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:38:04.0664 5328 gupdate - ok
20:38:04.0664 5328 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:38:04.0679 5328 gupdatem - ok
20:38:04.0742 5328 [ 1BF044E23206FDDC16891A32922D571B ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:38:04.0773 5328 gusvc - ok
20:38:04.0820 5328 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:38:04.0976 5328 HDAudBus - ok
20:38:05.0054 5328 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:38:05.0195 5328 helpsvc - ok
20:38:05.0258 5328 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:38:05.0429 5328 HidServ - ok
20:38:05.0445 5328 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:38:05.0586 5328 HidUsb - ok
20:38:05.0648 5328 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
20:38:05.0804 5328 hkmsvc - ok
20:38:05.0836 5328 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
20:38:05.0976 5328 hpn - ok
20:38:06.0070 5328 [ ED377B3C83FDEA8D906109A085D219BA ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
20:38:06.0086 5328 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
20:38:06.0086 5328 hpqcxs08 - detected UnsignedFile.Multi.Generic (1)
20:38:06.0148 5328 [ EE4C7A4CF2316701FFDE90F404520265 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
20:38:06.0164 5328 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning
20:38:06.0164 5328 hpqddsvc - detected UnsignedFile.Multi.Generic (1)
20:38:06.0226 5328 [ 1C8CAA80E91FB71864E9426F9EED048D ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
20:38:06.0257 5328 HSFHWAZL - ok
20:38:06.0320 5328 [ 698204D9C2832E53633E53A30A53FC3D ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
20:38:06.0382 5328 HSF_DPV - ok
20:38:06.0461 5328 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:38:06.0586 5328 HTTP - ok
20:38:06.0648 5328 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:38:06.0804 5328 HTTPFilter - ok
20:38:06.0851 5328 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
20:38:06.0976 5328 i2omgmt - ok
20:38:07.0039 5328 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
20:38:07.0195 5328 i2omp - ok
20:38:07.0242 5328 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:38:07.0398 5328 i8042prt - ok
20:38:07.0476 5328 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:38:07.0539 5328 idsvc - ok
20:38:07.0648 5328 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
20:38:07.0679 5328 IHA_MessageCenter - ok
20:38:07.0679 5328 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:38:07.0836 5328 Imapi - ok
20:38:07.0898 5328 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:38:08.0054 5328 ImapiService - ok
20:38:08.0070 5328 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
20:38:08.0226 5328 ini910u - ok
20:38:08.0289 5328 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:38:08.0445 5328 IntelIde - ok
20:38:08.0445 5328 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:38:08.0586 5328 intelppm - ok
20:38:08.0648 5328 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:38:08.0804 5328 Ip6Fw - ok
20:38:08.0836 5328 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:38:08.0992 5328 IpFilterDriver - ok
20:38:09.0039 5328 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:38:09.0179 5328 IpInIp - ok
20:38:09.0226 5328 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:38:09.0382 5328 IpNat - ok
20:38:09.0476 5328 [ 32CDEDD15E2D1A557CD54552AE78FF86 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:38:09.0507 5328 iPod Service - ok
20:38:09.0570 5328 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:38:09.0711 5328 IPSec - ok
20:38:09.0742 5328 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:38:09.0898 5328 IRENUM - ok
20:38:09.0914 5328 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:38:10.0070 5328 isapnp - ok
20:38:10.0226 5328 [ 6F9AE59017FAE7E111265394967E846E ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
20:38:10.0242 5328 JavaQuickStarterService - ok
20:38:10.0273 5328 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:38:10.0414 5328 Kbdclass - ok
20:38:10.0492 5328 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:38:10.0632 5328 kmixer - ok
20:38:10.0648 5328 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:38:10.0773 5328 KSecDD - ok
20:38:10.0836 5328 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:38:10.0945 5328 lanmanserver - ok
20:38:11.0007 5328 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:38:11.0070 5328 lanmanworkstation - ok
20:38:11.0086 5328 [ B7C19EC8B0DD7EFA58AD41FFEB8B8CDA ] Lbd C:\WINDOWS\system32\DRIVERS\Lbd.sys
20:38:11.0101 5328 Lbd - ok
20:38:11.0117 5328 lbrtfdc - ok
20:38:11.0164 5328 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:38:11.0336 5328 LmHosts - ok
20:38:11.0382 5328 [ DF0A511F38F16016BF658FCA0090CB87 ] McrdSvc C:\WINDOWS\ehome\mcrdsvc.exe
20:38:11.0414 5328 McrdSvc - ok
20:38:13.0898 5328 MDM - ok
20:38:16.0429 5328 [ 3C318B9CD391371BED62126581EE9961 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:38:16.0460 5328 mdmxsdk - ok
20:38:16.0570 5328 [ B7C1BA9B0256B66411F09D705117AE66 ] MemeoBackgroundService C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
20:38:16.0585 5328 MemeoBackgroundService - ok
20:38:16.0648 5328 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:38:16.0820 5328 Messenger - ok
20:38:16.0867 5328 [ B7521F69C0A9B29D356157229376FB21 ] MHN C:\WINDOWS\System32\mhn.dll
20:38:16.0929 5328 MHN ( UnsignedFile.Multi.Generic ) - warning
20:38:16.0929 5328 MHN - detected UnsignedFile.Multi.Generic (1)
20:38:16.0945 5328 [ 7F2F1D2815A6449D346FCCCBC569FBD6 ] MHNDRV C:\WINDOWS\system32\DRIVERS\mhndrv.sys
20:38:16.0960 5328 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
20:38:16.0960 5328 MHNDRV - detected UnsignedFile.Multi.Generic (1)
20:38:16.0960 5328 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:38:17.0132 5328 mnmdd - ok
20:38:17.0164 5328 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:38:17.0320 5328 mnmsrvc - ok
20:38:17.0382 5328 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:38:17.0523 5328 Modem - ok
20:38:17.0570 5328 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:38:17.0710 5328 Mouclass - ok
20:38:17.0773 5328 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:38:17.0929 5328 mouhid - ok
20:38:17.0976 5328 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:38:18.0117 5328 MountMgr - ok
20:38:18.0195 5328 [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:38:18.0226 5328 MozillaMaintenance - ok
20:38:18.0257 5328 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
20:38:18.0414 5328 mraid35x - ok
20:38:18.0460 5328 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:38:18.0617 5328 MRxDAV - ok
20:38:18.0726 5328 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:38:18.0820 5328 MRxSmb - ok
20:38:18.0882 5328 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
20:38:19.0039 5328 MSDTC - ok
20:38:19.0054 5328 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:38:19.0179 5328 Msfs - ok
20:38:19.0195 5328 MSIServer - ok
20:38:19.0226 5328 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:38:19.0367 5328 MSKSSRV - ok
20:38:19.0413 5328 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:38:19.0554 5328 MSPCLOCK - ok
20:38:19.0601 5328 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:38:19.0960 5328 MSPQM - ok
20:38:20.0023 5328 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:38:20.0148 5328 mssmbios - ok
20:38:20.0179 5328 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:38:20.0273 5328 Mup - ok
20:38:20.0335 5328 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
20:38:20.0523 5328 napagent - ok
20:38:20.0617 5328 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:38:20.0788 5328 NDIS - ok
20:38:20.0851 5328 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:38:20.0882 5328 NdisTapi - ok
20:38:20.0945 5328 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:38:21.0085 5328 Ndisuio - ok
20:38:21.0132 5328 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:38:21.0273 5328 NdisWan - ok
20:38:21.0304 5328 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:38:21.0398 5328 NDProxy - ok
20:38:21.0429 5328 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:38:21.0570 5328 NetBIOS - ok
20:38:21.0632 5328 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:38:21.0835 5328 NetBT - ok
20:38:21.0882 5328 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
20:38:22.0054 5328 NetDDE - ok
20:38:22.0070 5328 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:38:22.0226 5328 NetDDEdsdm - ok
20:38:22.0273 5328 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:38:22.0429 5328 Netlogon - ok
20:38:22.0492 5328 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
20:38:22.0663 5328 Netman - ok
20:38:22.0742 5328 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:38:22.0788 5328 NetTcpPortSharing - ok
20:38:22.0851 5328 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:38:23.0007 5328 NIC1394 - ok
20:38:23.0101 5328 [ 8A6FA8E0B302DF2496802AAFDA5CE810 ] NICCONFIGSVC C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
20:38:23.0179 5328 NICCONFIGSVC ( UnsignedFile.Multi.Generic ) - warning
20:38:23.0179 5328 NICCONFIGSVC - detected UnsignedFile.Multi.Generic (1)
20:38:23.0195 5328 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
20:38:23.0242 5328 Nla - ok
20:38:23.0242 5328 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:38:23.0398 5328 Npfs - ok
20:38:23.0523 5328 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:38:23.0804 5328 Ntfs - ok
20:38:23.0851 5328 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:38:24.0007 5328 NtLmSsp - ok
20:38:24.0226 5328 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:38:24.0523 5328 NtmsSvc - ok
20:38:24.0554 5328 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:38:24.0773 5328 Null - ok
20:38:25.0601 5328 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:38:25.0929 5328 nv - ok
20:38:26.0007 5328 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:38:26.0241 5328 NwlnkFlt - ok
20:38:26.0273 5328 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:38:26.0429 5328 NwlnkFwd - ok
20:38:26.0476 5328 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:38:26.0741 5328 ohci1394 - ok
20:38:26.0788 5328 [ B17228142CEC9B3C222239FD935A37CA ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
20:38:26.0804 5328 omci ( UnsignedFile.Multi.Generic ) - warning
20:38:26.0804 5328 omci - detected UnsignedFile.Multi.Generic (1)
20:38:26.0851 5328 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:38:26.0913 5328 ose - ok
20:38:26.0991 5328 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:38:27.0241 5328 Parport - ok
20:38:27.0273 5328 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:38:27.0460 5328 PartMgr - ok
20:38:27.0538 5328 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:38:27.0726 5328 ParVdm - ok
20:38:27.0929 5328 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:38:28.0163 5328 PCI - ok
20:38:28.0163 5328 PCIDump - ok
20:38:28.0195 5328 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:38:28.0366 5328 PCIIde - ok
20:38:28.0476 5328 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
20:38:28.0679 5328 Pcmcia - ok
20:38:28.0695 5328 PDCOMP - ok
20:38:28.0695 5328 PDFRAME - ok
20:38:28.0695 5328 PDRELI - ok
20:38:28.0710 5328 PDRFRAME - ok
20:38:28.0741 5328 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
20:38:28.0913 5328 perc2 - ok
20:38:28.0976 5328 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
20:38:29.0179 5328 perc2hib - ok
20:38:29.0226 5328 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
20:38:29.0257 5328 PlugPlay - ok
20:38:29.0273 5328 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:38:29.0429 5328 PolicyAgent - ok
20:38:29.0491 5328 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:38:29.0663 5328 PptpMiniport - ok
20:38:29.0679 5328 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:38:29.0835 5328 ProtectedStorage - ok
20:38:29.0898 5328 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:38:30.0054 5328 PSched - ok
20:38:30.0116 5328 [ 1DF21F001F3A94EBA4A2950C70CC358F ] PSI C:\WINDOWS\system32\DRIVERS\psi_mf.sys
20:38:30.0163 5328 PSI - ok
20:38:30.0288 5328 [ A6A7AD767BF5141665F5C675F671B3E1 ] PSI_SVC_2 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
20:38:30.0304 5328 PSI_SVC_2 - ok
20:38:30.0366 5328 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:38:30.0538 5328 Ptilink - ok
20:38:30.0570 5328 [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:38:30.0585 5328 PxHelp20 - ok
20:38:30.0601 5328 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
20:38:30.0773 5328 ql1080 - ok
20:38:30.0804 5328 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
20:38:30.0960 5328 Ql10wnt - ok
20:38:30.0991 5328 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
20:38:31.0148 5328 ql12160 - ok
20:38:31.0179 5328 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
20:38:31.0320 5328 ql1240 - ok
20:38:31.0335 5328 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
20:38:31.0491 5328 ql1280 - ok
20:38:31.0554 5328 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:38:31.0695 5328 RasAcd - ok
20:38:31.0741 5328 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:38:31.0898 5328 RasAuto - ok
20:38:31.0913 5328 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:38:32.0070 5328 Rasl2tp - ok
20:38:32.0132 5328 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:38:32.0273 5328 RasMan - ok
20:38:32.0304 5328 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:38:32.0444 5328 RasPppoe - ok
20:38:32.0460 5328 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:38:32.0632 5328 Raspti - ok
20:38:32.0663 5328 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:38:32.0804 5328 Rdbss - ok
20:38:32.0835 5328 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:38:32.0976 5328 RDPCDD - ok
20:38:33.0038 5328 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:38:33.0179 5328 rdpdr - ok
20:38:33.0241 5328 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:38:33.0319 5328 RDPWD - ok
20:38:33.0366 5328 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:38:33.0507 5328 RDSessMgr - ok
20:38:33.0523 5328 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:38:33.0663 5328 redbook - ok
20:38:33.0741 5328 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:38:33.0882 5328 RemoteAccess - ok
20:38:33.0944 5328 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:38:34.0085 5328 RemoteRegistry - ok
20:38:34.0148 5328 [ 24ED7AF20651F9FA1F249482E7C1F165 ] rimmptsk C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:38:34.0194 5328 rimmptsk - ok
20:38:34.0194 5328 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] rimsptsk C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:38:34.0241 5328 rimsptsk - ok
20:38:34.0273 5328 [ F774ECD11A064F0DEBB2D4395418153C ] rismxdp C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:38:34.0304 5328 rismxdp - ok
20:38:34.0351 5328 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
20:38:34.0491 5328 RpcLocator - ok
20:38:34.0538 5328 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
20:38:34.0585 5328 RpcSs - ok
20:38:34.0648 5328 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:38:34.0819 5328 RSVP - ok
20:38:34.0851 5328 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
20:38:35.0007 5328 SamSs - ok
20:38:35.0054 5328 [ B244960E5A1DB8E9D5D17086DE37C1E4 ] sbp2port C:\WINDOWS\system32\DRIVERS\sbp2port.sys
20:38:35.0210 5328 sbp2port - ok
20:38:35.0241 5328 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:38:35.0413 5328 SCardSvr - ok
20:38:35.0460 5328 [ 16B1ABE7F3E35F21DAC57592B6C5D464 ] SCDEmu C:\WINDOWS\system32\drivers\SCDEmu.sys
20:38:35.0476 5328 SCDEmu ( UnsignedFile.Multi.Generic ) - warning
20:38:35.0476 5328 SCDEmu - detected UnsignedFile.Multi.Generic (1)
20:38:35.0538 5328 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:38:35.0679 5328 Schedule - ok
20:38:35.0741 5328 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
20:38:35.0898 5328 sdbus - ok
20:38:36.0023 5328 [ 16B44D246835EAC156F8DAF0AA4F530C ] SeagateDashboardService C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
20:38:36.0038 5328 SeagateDashboardService - ok
20:38:36.0085 5328 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:38:36.0226 5328 Secdrv - ok
20:38:36.0273 5328 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
20:38:37.0304 5328 seclogon - ok
20:38:37.0366 5328 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
20:38:37.0507 5328 SENS - ok
20:38:37.0569 5328 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
20:38:37.0741 5328 serenum - ok
20:38:37.0788 5328 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
20:38:37.0929 5328 Serial - ok
20:38:37.0976 5328 [ 0FA803C64DF0914B41F807EA276BF2A6 ] sffdisk C:\WINDOWS\system32\DRIVERS\sffdisk.sys
20:38:38.0132 5328 sffdisk - ok
20:38:38.0179 5328 [ C17C331E435ED8737525C86A7557B3AC ] sffp_sd C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
20:38:38.0335 5328 sffp_sd - ok
20:38:38.0351 5328 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:38:38.0491 5328 Sfloppy - ok
20:38:38.0554 5328 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:38:38.0757 5328 SharedAccess - ok
20:38:38.0804 5328 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:38:38.0835 5328 ShellHWDetection - ok
20:38:38.0835 5328 Simbad - ok
20:38:38.0897 5328 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
20:38:39.0054 5328 sisagp - ok
20:38:39.0116 5328 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
20:38:39.0194 5328 Sparrow - ok
20:38:39.0257 5328 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:38:39.0413 5328 splitter - ok
20:38:39.0460 5328 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:38:39.0491 5328 Spooler - ok
20:38:39.0538 5328 sprtsvc_verizondm - ok
20:38:39.0554 5328 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:38:39.0710 5328 sr - ok
20:38:39.0788 5328 srescan - ok
20:38:39.0835 5328 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
20:38:39.0991 5328 srservice - ok
20:38:40.0038 5328 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:38:40.0069 5328 Srv - ok
20:38:40.0116 5328 [ 98625722AD52B40305E74AAA83C93086 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
20:38:40.0147 5328 sscdbhk5 ( UnsignedFile.Multi.Generic ) - warning
20:38:40.0147 5328 sscdbhk5 - detected UnsignedFile.Multi.Generic (1)
20:38:40.0194 5328 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:38:40.0351 5328 SSDPSRV - ok
20:38:40.0351 5328 [ D79412E3942C8A257253487536D5A994 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
20:38:40.0397 5328 ssrtln ( UnsignedFile.Multi.Generic ) - warning
20:38:40.0397 5328 ssrtln - detected UnsignedFile.Multi.Generic (1)
20:38:40.0444 5328 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
20:38:40.0554 5328 STHDA - ok
20:38:40.0632 5328 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:38:40.0788 5328 stisvc - ok
20:38:40.0835 5328 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:38:40.0976 5328 swenum - ok
20:38:41.0038 5328 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:38:41.0194 5328 swmidi - ok
20:38:41.0210 5328 SwPrv - ok
20:38:41.0226 5328 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
20:38:41.0382 5328 symc810 - ok
20:38:41.0397 5328 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
20:38:41.0538 5328 symc8xx - ok
20:38:41.0585 5328 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
20:38:41.0741 5328 sym_hi - ok
20:38:41.0788 5328 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
20:38:41.0944 5328 sym_u3 - ok
20:38:41.0991 5328 [ FA2DAA32BED908023272A0F77D625DAE ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
20:38:42.0069 5328 SynTP - ok
20:38:42.0085 5328 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:38:42.0226 5328 sysaudio - ok
20:38:42.0288 5328 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:38:42.0444 5328 SysmonLog - ok
20:38:42.0507 5328 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:38:42.0663 5328 TapiSrv - ok
20:38:42.0710 5328 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:38:42.0741 5328 Tcpip - ok
20:38:42.0804 5328 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:38:42.0944 5328 TDPIPE - ok
20:38:42.0976 5328 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:38:43.0116 5328 TDTCP - ok
20:38:43.0194 5328 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:38:43.0351 5328 TermDD - ok
20:38:43.0429 5328 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
20:38:43.0585 5328 TermService - ok
20:38:43.0663 5328 [ D0177776E11B0B3F272EEBD262A69661 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
20:38:43.0679 5328 tfsnboio ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0679 5328 tfsnboio - detected UnsignedFile.Multi.Generic (1)
20:38:43.0694 5328 [ 599804BC938B8305A5422319774DA871 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
20:38:43.0710 5328 tfsncofs ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0710 5328 tfsncofs - detected UnsignedFile.Multi.Generic (1)
20:38:43.0710 5328 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
20:38:43.0741 5328 tfsndrct ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0741 5328 tfsndrct - detected UnsignedFile.Multi.Generic (1)
20:38:43.0788 5328 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
20:38:43.0804 5328 tfsndres ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0804 5328 tfsndres - detected UnsignedFile.Multi.Generic (1)
20:38:43.0835 5328 [ C4F2DEA75300971CDAEE311007DE138D ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
20:38:43.0835 5328 tfsnifs ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0835 5328 tfsnifs - detected UnsignedFile.Multi.Generic (1)
20:38:43.0851 5328 [ 272925BE0EA919F08286D2EE6F102B0F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
20:38:43.0866 5328 tfsnopio ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0866 5328 tfsnopio - detected UnsignedFile.Multi.Generic (1)
20:38:43.0882 5328 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
20:38:43.0897 5328 tfsnpool ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0897 5328 tfsnpool - detected UnsignedFile.Multi.Generic (1)
20:38:43.0913 5328 [ E3D01263109D800C1967C12C10A0B018 ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
20:38:43.0913 5328 tfsnudf ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0913 5328 tfsnudf - detected UnsignedFile.Multi.Generic (1)
20:38:43.0944 5328 [ B9E9C377906E3A65BC74598FFF7F7458 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
20:38:43.0960 5328 tfsnudfa ( UnsignedFile.Multi.Generic ) - warning
20:38:43.0960 5328 tfsnudfa - detected UnsignedFile.Multi.Generic (1)
20:38:43.0960 5328 tgsrvc_verizondm - ok
20:38:43.0991 5328 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
20:38:44.0022 5328 Themes - ok
20:38:44.0054 5328 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:38:44.0226 5328 TlntSvr - ok
20:38:44.0335 5328 [ 39BD95A9FE72AAF5C675AD146BE456A9 ] TomTomHOMEService C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
20:38:44.0351 5328 TomTomHOMEService - ok
20:38:44.0413 5328 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
20:38:44.0554 5328 TosIde - ok
20:38:44.0616 5328 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:38:44.0772 5328 TrkWks - ok
20:38:44.0835 5328 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:38:44.0991 5328 Udfs - ok
20:38:45.0054 5328 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
20:38:45.0132 5328 ultra - ok
20:38:45.0210 5328 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:38:45.0397 5328 Update - ok
20:38:45.0460 5328 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:38:45.0632 5328 upnphost - ok
20:38:45.0663 5328 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
20:38:45.0835 5328 UPS - ok
20:38:45.0882 5328 [ 4B8A9C16B6D9258ED99C512AECB8C555 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
20:38:45.0944 5328 USBAAPL - ok
20:38:45.0991 5328 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:38:46.0147 5328 usbccgp - ok
20:38:46.0194 5328 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:38:46.0350 5328 usbehci - ok
20:38:46.0397 5328 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:38:46.0554 5328 usbhub - ok
20:38:46.0600 5328 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:38:46.0741 5328 usbprint - ok
20:38:46.0772 5328 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:38:46.0913 5328 usbscan - ok
20:38:46.0975 5328 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:38:47.0116 5328 USBSTOR - ok
20:38:47.0132 5328 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:38:47.0288 5328 usbuhci - ok
20:38:47.0304 5328 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:38:47.0460 5328 VgaSave - ok
20:38:47.0522 5328 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
20:38:47.0663 5328 viaagp - ok
20:38:47.0710 5328 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:38:47.0866 5328 ViaIde - ok
20:38:47.0913 5328 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:38:48.0038 5328 VolSnap - ok
20:38:48.0116 5328 [ 050C38EBB22512122E54B47DC278BCCD ] vsdatant C:\WINDOWS\system32\vsdatant.sys
20:38:48.0147 5328 vsdatant - ok
20:38:48.0163 5328 vsmon - ok
20:38:48.0225 5328 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
20:38:48.0382 5328 VSS - ok
20:38:48.0429 5328 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
20:38:48.0585 5328 w32time - ok
20:38:48.0647 5328 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:38:48.0788 5328 Wanarp - ok
20:38:48.0804 5328 wanatw - ok
20:38:48.0804 5328 WDICA - ok
20:38:48.0835 5328 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:38:48.0991 5328 wdmaud - ok
20:38:49.0038 5328 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:38:49.0210 5328 WebClient - ok
20:38:49.0288 5328 [ 74CF3F2E4E40C4A2E18D39D6300A5C24 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
20:38:49.0319 5328 winachsf - ok
20:38:49.0444 5328 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:38:49.0585 5328 winmgmt - ok
20:38:49.0616 5328 wltrysvc - ok
20:38:49.0663 5328 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
20:38:49.0741 5328 WmdmPmSN - ok
20:38:49.0788 5328 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:38:49.0819 5328 Wmi - ok
20:38:49.0882 5328 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:38:50.0069 5328 WmiApSrv - ok
20:38:50.0257 5328 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
20:38:50.0304 5328 WPFFontCache_v0400 - ok
20:38:50.0350 5328 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:38:50.0569 5328 WS2IFSL - ok
20:38:50.0616 5328 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:38:50.0788 5328 wscsvc - ok
20:38:50.0850 5328 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:38:51.0007 5328 wuauserv - ok
20:38:51.0069 5328 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:38:51.0147 5328 WudfPf - ok
20:38:51.0163 5328 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:38:51.0194 5328 WudfRd - ok
20:38:51.0257 5328 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:38:51.0304 5328 WudfSvc - ok
20:38:51.0366 5328 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:38:51.0569 5328 WZCSVC - ok
20:38:51.0632 5328 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:38:51.0772 5328 xmlprov - ok
20:38:51.0788 5328 ================ Scan global ===============================
20:38:51.0850 5328 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
20:38:51.0928 5328 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
20:38:51.0944 5328 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
20:38:51.0975 5328 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
20:38:51.0991 5328 [Global] - ok
20:38:51.0991 5328 ================ Scan MBR ==================================
20:38:52.0007 5328 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
20:38:52.0382 5328 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:38:52.0382 5328 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:38:52.0382 5328 ================ Scan VBR ==================================
20:38:52.0413 5328 [ B69716207250362D930FDF5FF71F104F ] \Device\Harddisk0\DR0\Partition1
20:38:52.0428 5328 \Device\Harddisk0\DR0\Partition1 - ok
20:38:52.0460 5328 [ C917BFC2D58E58A3409E8C10576FBEAF ] \Device\Harddisk0\DR0\Partition2
20:38:52.0460 5328 \Device\Harddisk0\DR0\Partition2 - ok
20:38:52.0460 5328 ================ Scan active images ========================
20:38:52.0460 5328 [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
20:38:52.0460 5328 C:\WINDOWS\system32\drivers\intelppm.sys - ok
20:38:52.0460 5328 [ 0F6C187D38D98F8DF904589A5F94D411 ] C:\WINDOWS\system32\drivers\cmbatt.sys
20:38:52.0460 5328 C:\WINDOWS\system32\drivers\cmbatt.sys - ok
20:38:52.0460 5328 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
20:38:52.0460 5328 C:\WINDOWS\system32\drivers\videoprt.sys - ok
20:38:52.0475 5328 [ 2573C08729DD52B7B4F18DF1592E0B37 ] C:\WINDOWS\system32\drivers\ati2mtag.sys
20:38:52.0475 5328 C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
20:38:52.0475 5328 [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
20:38:52.0475 5328 C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
20:38:52.0475 5328 [ 30D20FC98BCFD52E1DA778CF19B223D4 ] C:\WINDOWS\system32\drivers\BCMWL5.SYS
20:38:52.0475 5328 C:\WINDOWS\system32\drivers\BCMWL5.SYS - ok
20:38:52.0491 5328 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
20:38:52.0491 5328 C:\WINDOWS\system32\drivers\usbport.sys - ok
20:38:52.0491 5328 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] C:\WINDOWS\system32\drivers\usbuhci.sys
20:38:52.0491 5328 C:\WINDOWS\system32\drivers\usbuhci.sys - ok
20:38:52.0491 5328 [ C768C8A463D32C219CE291645A0621A4 ] C:\WINDOWS\system32\drivers\bcm4sbxp.sys
20:38:52.0491 5328 C:\WINDOWS\system32\drivers\bcm4sbxp.sys - ok
20:38:52.0491 5328 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] C:\WINDOWS\system32\drivers\sdbus.sys
20:38:52.0491 5328 C:\WINDOWS\system32\drivers\sdbus.sys - ok
20:38:52.0507 5328 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
20:38:52.0507 5328 C:\WINDOWS\system32\drivers\usbehci.sys - ok
20:38:52.0507 5328 [ 24ED7AF20651F9FA1F249482E7C1F165 ] C:\WINDOWS\system32\drivers\rimmptsk.sys
20:38:52.0507 5328 C:\WINDOWS\system32\drivers\rimmptsk.sys - ok
20:38:52.0507 5328 [ 1BDBA2D2D402415A78A4BA766DFE0F7B ] C:\WINDOWS\system32\drivers\rimsptsk.sys
20:38:52.0507 5328 C:\WINDOWS\system32\drivers\rimsptsk.sys - ok
20:38:52.0522 5328 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
20:38:52.0522 5328 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
20:38:52.0522 5328 [ F774ECD11A064F0DEBB2D4395418153C ] C:\WINDOWS\system32\drivers\rixdptsk.sys
20:38:52.0522 5328 C:\WINDOWS\system32\drivers\rixdptsk.sys - ok
20:38:52.0522 5328 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
20:38:52.0522 5328 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
20:38:52.0522 5328 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
20:38:52.0522 5328 C:\WINDOWS\system32\drivers\mouclass.sys - ok
20:38:52.0538 5328 [ FA2DAA32BED908023272A0F77D625DAE ] C:\WINDOWS\system32\drivers\SynTP.sys
20:38:52.0538 5328 C:\WINDOWS\system32\drivers\SynTP.sys - ok
20:38:52.0538 5328 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
20:38:52.0538 5328 C:\WINDOWS\system32\drivers\usbd.sys - ok
20:38:52.0538 5328 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
20:38:52.0538 5328 C:\WINDOWS\system32\drivers\imapi.sys - ok
20:38:52.0553 5328 [ E0042BD5BEF17A6A3EF1DF576BDE24D1 ] C:\WINDOWS\system32\drivers\cdrbsdrv.sys
20:38:52.0553 5328 C:\WINDOWS\system32\drivers\cdrbsdrv.sys - ok
20:38:52.0553 5328 [ 98625722AD52B40305E74AAA83C93086 ] C:\WINDOWS\system32\drivers\sscdbhk5.sys
20:38:52.0553 5328 C:\WINDOWS\system32\drivers\sscdbhk5.sys - ok
20:38:52.0553 5328 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
20:38:52.0553 5328 C:\WINDOWS\system32\drivers\cdrom.sys - ok
20:38:52.0553 5328 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
20:38:52.0553 5328 C:\WINDOWS\system32\drivers\ks.sys - ok
20:38:52.0569 5328 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
20:38:52.0569 5328 C:\WINDOWS\system32\drivers\redbook.sys - ok
20:38:52.0569 5328 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
20:38:52.0569 5328 C:\WINDOWS\system32\drivers\audstub.sys - ok
20:38:52.0569 5328 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
20:38:52.0569 5328 C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
20:38:52.0585 5328 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
20:38:52.0585 5328 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
20:38:52.0585 5328 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
20:38:52.0585 5328 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
20:38:52.0585 5328 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
20:38:52.0585 5328 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
20:38:52.0585 5328 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
20:38:52.0585 5328 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
20:38:52.0600 5328 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
20:38:52.0600 5328 C:\WINDOWS\system32\drivers\raspptp.sys - ok
20:38:52.0600 5328 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
20:38:52.0600 5328 C:\WINDOWS\system32\drivers\tdi.sys - ok
20:38:52.0600 5328 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
20:38:52.0600 5328 C:\WINDOWS\system32\drivers\psched.sys - ok
20:38:52.0616 5328 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
20:38:52.0616 5328 C:\WINDOWS\system32\drivers\msgpc.sys - ok
20:38:52.0616 5328 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
20:38:52.0616 5328 C:\WINDOWS\system32\drivers\ptilink.sys - ok
20:38:52.0616 5328 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
20:38:52.0616 5328 C:\WINDOWS\system32\drivers\raspti.sys - ok
20:38:52.0616 5328 [ 15CABD0F7C00C47C70124907916AF3F1 ] C:\WINDOWS\system32\drivers\rdpdr.sys
20:38:52.0616 5328 C:\WINDOWS\system32\drivers\rdpdr.sys - ok
20:38:52.0632 5328 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
20:38:52.0632 5328 C:\WINDOWS\system32\drivers\termdd.sys - ok
20:38:52.0632 5328 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
20:38:52.0632 5328 C:\WINDOWS\system32\drivers\swenum.sys - ok
20:38:52.0632 5328 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
20:38:52.0632 5328 C:\WINDOWS\system32\drivers\update.sys - ok
20:38:52.0647 5328 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
20:38:52.0647 5328 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
20:38:52.0647 5328 [ B17228142CEC9B3C222239FD935A37CA ] C:\WINDOWS\system32\drivers\omci.sys
20:38:52.0647 5328 C:\WINDOWS\system32\drivers\omci.sys - ok
20:38:52.0647 5328 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
20:38:52.0647 5328 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
20:38:52.0647 5328 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
20:38:52.0647 5328 C:\WINDOWS\system32\drivers\drmk.sys - ok
20:38:52.0663 5328 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
20:38:52.0663 5328 C:\WINDOWS\system32\drivers\portcls.sys - ok
20:38:52.0663 5328 [ 3AD78E22210D3FBD9F76DE84A8DF19B5 ] C:\WINDOWS\system32\drivers\sthda.sys
20:38:52.0663 5328 C:\WINDOWS\system32\drivers\sthda.sys - ok
20:38:52.0663 5328 [ 1C8CAA80E91FB71864E9426F9EED048D ] C:\WINDOWS\system32\drivers\HSFHWAZL.sys
20:38:52.0663 5328 C:\WINDOWS\system32\drivers\HSFHWAZL.sys - ok
20:38:52.0663 5328 [ 698204D9C2832E53633E53A30A53FC3D ] C:\WINDOWS\system32\drivers\HSF_DPV.sys
20:38:52.0663 5328 C:\WINDOWS\system32\drivers\HSF_DPV.sys - ok
20:38:52.0678 5328 [ 74CF3F2E4E40C4A2E18D39D6300A5C24 ] C:\WINDOWS\system32\drivers\HSF_CNXT.sys
20:38:52.0678 5328 C:\WINDOWS\system32\drivers\HSF_CNXT.sys - ok
20:38:52.0678 5328 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
20:38:52.0678 5328 C:\WINDOWS\system32\drivers\modem.sys - ok
20:38:52.0678 5328 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
20:38:52.0678 5328 C:\WINDOWS\system32\drivers\usbhub.sys - ok
20:38:52.0694 5328 [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
20:38:52.0694 5328 C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
20:38:52.0694 5328 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
20:38:52.0694 5328 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
20:38:52.0694 5328 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
20:38:52.0694 5328 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
20:38:52.0694 5328 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
20:38:52.0694 5328 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
20:38:52.0710 5328 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
20:38:52.0710 5328 C:\WINDOWS\system32\drivers\null.sys - ok
20:38:52.0710 5328 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
20:38:52.0710 5328 C:\WINDOWS\system32\drivers\beep.sys - ok
20:38:52.0710 5328 [ D79412E3942C8A257253487536D5A994 ] C:\WINDOWS\system32\drivers\ssrtln.sys
20:38:52.0710 5328 C:\WINDOWS\system32\drivers\ssrtln.sys - ok
20:38:52.0725 5328 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
20:38:52.0725 5328 C:\WINDOWS\system32\drivers\vga.sys - ok
20:38:52.0725 5328 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
20:38:52.0725 5328 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
20:38:52.0725 5328 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
20:38:52.0725 5328 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
20:38:52.0725 5328 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
20:38:52.0725 5328 C:\WINDOWS\system32\drivers\msfs.sys - ok
20:38:52.0741 5328 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
20:38:52.0741 5328 C:\WINDOWS\system32\drivers\npfs.sys - ok
20:38:52.0741 5328 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
20:38:52.0741 5328 C:\WINDOWS\system32\drivers\rasacd.sys - ok
20:38:52.0741 5328 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
20:38:52.0741 5328 C:\WINDOWS\system32\drivers\ipsec.sys - ok
20:38:52.0757 5328 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
20:38:52.0757 5328 C:\WINDOWS\system32\drivers\tcpip.sys - ok
20:38:52.0757 5328 [ 1F71F170D90E42EFDE9633D81D5E12DC ] C:\WINDOWS\system32\drivers\aswTdi.sys
20:38:52.0757 5328 C:\WINDOWS\system32\drivers\aswTdi.sys - ok
20:38:52.0757 5328 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
20:38:52.0757 5328 C:\WINDOWS\system32\drivers\ipnat.sys - ok
20:38:52.0757 5328 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
20:38:52.0757 5328 C:\WINDOWS\system32\drivers\netbt.sys - ok
20:38:52.0772 5328 [ 7B43265F92257A21CBFD88E7A651044C ] C:\WINDOWS\system32\drivers\aswRdr.sys
20:38:52.0772 5328 C:\WINDOWS\system32\drivers\aswRdr.sys - ok
20:38:52.0772 5328 [ 050C38EBB22512122E54B47DC278BCCD ] C:\WINDOWS\system32\vsdatant.sys
20:38:52.0772 5328 C:\WINDOWS\system32\vsdatant.sys - ok
20:38:52.0772 5328 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
20:38:52.0772 5328 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
20:38:52.0788 5328 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
20:38:52.0788 5328 C:\WINDOWS\system32\drivers\afd.sys - ok
20:38:52.0788 5328 [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
20:38:52.0788 5328 C:\WINDOWS\system32\drivers\hidclass.sys - ok
20:38:52.0788 5328 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
20:38:52.0788 5328 C:\WINDOWS\system32\drivers\hidparse.sys - ok
20:38:52.0788 5328 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
20:38:52.0788 5328 C:\WINDOWS\system32\drivers\hidusb.sys - ok
20:38:52.0803 5328 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
20:38:52.0803 5328 C:\WINDOWS\system32\drivers\netbios.sys - ok
20:38:52.0803 5328 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
20:38:52.0803 5328 C:\WINDOWS\system32\drivers\serial.sys - ok
20:38:52.0803 5328 [ 16B1ABE7F3E35F21DAC57592B6C5D464 ] C:\WINDOWS\system32\drivers\scdemu.sys
20:38:52.0803 5328 C:\WINDOWS\system32\drivers\scdemu.sys - ok
20:38:52.0803 5328 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
20:38:52.0803 5328 C:\WINDOWS\system32\drivers\rdbss.sys - ok
20:38:52.0819 5328 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
20:38:52.0819 5328 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
20:38:52.0819 5328 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
20:38:52.0819 5328 C:\WINDOWS\system32\drivers\fips.sys - ok
20:38:52.0819 5328 [ 99102F60F344BEBAF4F6114514FD28D3 ] C:\WINDOWS\system32\drivers\aswSP.sys
20:38:52.0819 5328 C:\WINDOWS\system32\drivers\aswSP.sys - ok
20:38:52.0835 5328 [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
20:38:52.0835 5328 C:\WINDOWS\system32\drivers\mouhid.sys - ok
20:38:52.0835 5328 [ 6CAB0A5991C5C0FC63F5E66593E71D7E ] C:\WINDOWS\system32\drivers\aswSnx.sys
20:38:52.0835 5328 C:\WINDOWS\system32\drivers\aswSnx.sys - ok
20:38:52.0835 5328 [ B979979AB8027F7F53FB16EC4229B7DB ] C:\WINDOWS\system32\drivers\ASPI32.SYS
20:38:52.0835 5328 C:\WINDOWS\system32\drivers\ASPI32.SYS - ok
20:38:52.0835 5328 [ EC94E05B76D033B74394E7B2175103CF ] C:\WINDOWS\system32\drivers\APPDRV.SYS
20:38:52.0835 5328 C:\WINDOWS\system32\drivers\APPDRV.SYS - ok
20:38:52.0850 5328 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
20:38:52.0850 5328 C:\WINDOWS\system32\ntdll.dll - ok
20:38:52.0850 5328 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
20:38:52.0850 5328 C:\WINDOWS\system32\smss.exe - ok
20:38:52.0850 5328 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
20:38:52.0850 5328 C:\WINDOWS\system32\autochk.exe - ok
20:38:52.0866 5328 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
20:38:52.0866 5328 C:\WINDOWS\system32\sfcfiles.dll - ok
20:38:52.0866 5328 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
20:38:52.0866 5328 C:\WINDOWS\system32\drivers\cdfs.sys - ok
20:38:52.0866 5328 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
20:38:52.0866 5328 C:\WINDOWS\system32\drivers\wanarp.sys - ok
20:38:52.0866 5328 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
20:38:52.0866 5328 C:\WINDOWS\system32\drivers\atapi.sys - ok
20:38:52.0882 5328 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
20:38:52.0882 5328 C:\WINDOWS\system32\drivers\wmilib.sys - ok
20:38:52.0882 5328 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
20:38:52.0882 5328 C:\WINDOWS\system32\drivers\dxapi.sys - ok
20:38:52.0882 5328 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
20:38:52.0882 5328 C:\WINDOWS\system32\watchdog.sys - ok
20:38:52.0882 5328 [ FC8A1F72A8097910A11D5184BC3F887B ] C:\WINDOWS\system32\win32k.sys
20:38:52.0882 5328 C:\WINDOWS\system32\win32k.sys - ok
20:38:52.0897 5328 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
20:38:52.0897 5328 C:\WINDOWS\system32\csrss.exe - ok
20:38:52.0897 5328 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
20:38:52.0897 5328 C:\WINDOWS\system32\csrsrv.dll - ok
20:38:52.0897 5328 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
20:38:52.0897 5328 C:\WINDOWS\system32\basesrv.dll - ok
20:38:52.0913 5328 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
20:38:52.0913 5328 C:\WINDOWS\system32\winsrv.dll - ok
20:38:52.0913 5328 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
20:38:52.0913 5328 C:\WINDOWS\system32\gdi32.dll - ok
20:38:52.0913 5328 [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
20:38:52.0913 5328 C:\WINDOWS\system32\kernel32.dll - ok
20:38:52.0913 5328 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
20:38:52.0913 5328 C:\WINDOWS\system32\user32.dll - ok
20:38:52.0928 5328 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
20:38:52.0928 5328 C:\WINDOWS\system32\drivers\dxg.sys - ok
20:38:52.0928 5328 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
20:38:52.0928 5328 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
20:38:52.0928 5328 [ E6066565CFE07A341EC4D6641F353B30 ] C:\WINDOWS\system32\ati2dvag.dll
20:38:52.0928 5328 C:\WINDOWS\system32\ati2dvag.dll - ok
20:38:52.0928 5328 [ 206D42E3840C9FA62B8B237F99B6F9C2 ] C:\WINDOWS\system32\ati2cqag.dll
20:38:52.0928 5328 C:\WINDOWS\system32\ati2cqag.dll - ok
20:38:52.0944 5328 [ 8721BD33906D66564B220F1653EE50DD ] C:\WINDOWS\system32\atikvmag.dll
20:38:52.0944 5328 C:\WINDOWS\system32\atikvmag.dll - ok
20:38:52.0944 5328 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
20:38:52.0944 5328 C:\WINDOWS\system32\vga.dll - ok
20:38:52.0944 5328 [ 718130960F7081B6E0AC75F7F60E7D69 ] C:\WINDOWS\system32\ati3duag.dll
20:38:52.0944 5328 C:\WINDOWS\system32\ati3duag.dll - ok
20:38:52.0960 5328 [ 23ED5F180C288E7383607454B065B6DD ] C:\WINDOWS\system32\ativvaxx.dll
20:38:52.0960 5328 C:\WINDOWS\system32\ativvaxx.dll - ok
20:38:52.0960 5328 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
20:38:52.0960 5328 C:\WINDOWS\system32\winlogon.exe - ok
20:38:52.0960 5328 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
20:38:52.0960 5328 C:\WINDOWS\system32\advapi32.dll - ok
20:38:52.0960 5328 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
20:38:52.0960 5328 C:\WINDOWS\system32\rpcrt4.dll - ok
20:38:52.0975 5328 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
20:38:52.0975 5328 C:\WINDOWS\system32\secur32.dll - ok
20:38:52.0975 5328 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
20:38:52.0975 5328 C:\WINDOWS\system32\authz.dll - ok
20:38:52.0975 5328 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
20:38:52.0975 5328 C:\WINDOWS\system32\msvcrt.dll - ok
20:38:52.0991 5328 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
20:38:52.0991 5328 C:\WINDOWS\system32\crypt32.dll - ok
20:38:52.0991 5328 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
20:38:52.0991 5328 C:\WINDOWS\system32\msasn1.dll - ok
20:38:52.0991 5328 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
20:38:52.0991 5328 C:\WINDOWS\system32\nddeapi.dll - ok
20:38:53.0007 5328 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
20:38:53.0007 5328 C:\WINDOWS\system32\profmap.dll - ok
20:38:53.0007 5328 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
20:38:53.0007 5328 C:\WINDOWS\system32\netapi32.dll - ok
20:38:53.0007 5328 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
20:38:53.0007 5328 C:\WINDOWS\system32\userenv.dll - ok
20:38:53.0007 5328 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
20:38:53.0007 5328 C:\WINDOWS\system32\psapi.dll - ok
20:38:53.0022 5328 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
20:38:53.0022 5328 C:\WINDOWS\system32\regapi.dll - ok
20:38:53.0022 5328 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
20:38:53.0022 5328 C:\WINDOWS\system32\setupapi.dll - ok
20:38:53.0022 5328 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
20:38:53.0022 5328 C:\WINDOWS\system32\version.dll - ok
20:38:53.0038 5328 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
20:38:53.0038 5328 C:\WINDOWS\system32\winsta.dll - ok
20:38:53.0038 5328 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
20:38:53.0038 5328 C:\WINDOWS\system32\wintrust.dll - ok
20:38:53.0038 5328 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
20:38:53.0038 5328 C:\WINDOWS\system32\imagehlp.dll - ok
20:38:53.0038 5328 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
20:38:53.0038 5328 C:\WINDOWS\system32\ws2help.dll - ok
20:38:53.0053 5328 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
20:38:53.0053 5328 C:\WINDOWS\system32\ws2_32.dll - ok
20:38:53.0053 5328 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
20:38:53.0053 5328 C:\WINDOWS\system32\imm32.dll - ok
20:38:53.0053 5328 [ B412D322235CA1D4AF85F2BB850C3FF5 ] C:\WINDOWS\system32\acaptuser32.dll
20:38:53.0053 5328 C:\WINDOWS\system32\acaptuser32.dll - ok
20:38:53.0069 5328 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
20:38:53.0069 5328 C:\WINDOWS\system32\sxs.dll - ok
20:38:53.0069 5328 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
20:38:53.0069 5328 C:\WINDOWS\system32\kbdus.dll - ok
20:38:53.0069 5328 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
20:38:53.0069 5328 C:\WINDOWS\system32\msgina.dll - ok
20:38:53.0069 5328 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
20:38:53.0069 5328 C:\WINDOWS\system32\comctl32.dll - ok
20:38:53.0085 5328 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
20:38:53.0085 5328 C:\WINDOWS\system32\odbc32.dll - ok
20:38:53.0085 5328 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
20:38:53.0085 5328 C:\WINDOWS\system32\comdlg32.dll - ok
20:38:53.0085 5328 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
20:38:53.0085 5328 C:\WINDOWS\system32\shell32.dll - ok
20:38:53.0085 5328 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
20:38:53.0085 5328 C:\WINDOWS\system32\shlwapi.dll - ok
20:38:53.0100 5328 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
20:38:53.0100 5328 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
20:38:53.0100 5328 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
20:38:53.0100 5328 C:\WINDOWS\system32\odbcint.dll - ok
20:38:53.0100 5328 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
20:38:53.0100 5328 C:\WINDOWS\system32\shsvcs.dll - ok
20:38:53.0116 5328 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
20:38:53.0116 5328 C:\WINDOWS\system32\sfc.dll - ok
20:38:53.0116 5328 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
20:38:53.0116 5328 C:\WINDOWS\system32\ole32.dll - ok
20:38:53.0116 5328 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
20:38:53.0116 5328 C:\WINDOWS\system32\sfc_os.dll - ok
20:38:53.0116 5328 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
20:38:53.0132 5328 C:\WINDOWS\system32\apphelp.dll - ok
20:38:53.0132 5328 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
20:38:53.0132 5328 C:\WINDOWS\system32\services.exe - ok
20:38:53.0132 5328 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
20:38:53.0132 5328 C:\WINDOWS\system32\lsass.exe - ok
20:38:53.0147 5328 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
20:38:53.0147 5328 C:\WINDOWS\system32\ncobjapi.dll - ok
20:38:53.0147 5328 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
20:38:53.0147 5328 C:\WINDOWS\system32\lsasrv.dll - ok
20:38:53.0147 5328 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
20:38:53.0147 5328 C:\WINDOWS\system32\msvcp60.dll - ok
20:38:53.0163 5328 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
20:38:53.0163 5328 C:\WINDOWS\system32\scesrv.dll - ok
20:38:53.0163 5328 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
20:38:53.0163 5328 C:\WINDOWS\system32\mpr.dll - ok
20:38:53.0163 5328 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
20:38:53.0163 5328 C:\WINDOWS\system32\ntdsapi.dll - ok
20:38:53.0178 5328 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
20:38:53.0178 5328 C:\WINDOWS\system32\umpnpmgr.dll - ok
20:38:53.0178 5328 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
20:38:53.0178 5328 C:\WINDOWS\system32\dnsapi.dll - ok
20:38:53.0178 5328 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
20:38:53.0178 5328 C:\WINDOWS\system32\shimeng.dll - ok
20:38:53.0194 5328 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
20:38:53.0194 5328 C:\WINDOWS\AppPatch\acadproc.dll - ok
20:38:53.0194 5328 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
20:38:53.0194 5328 C:\WINDOWS\system32\wldap32.dll - ok
20:38:53.0194 5328 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
20:38:53.0194 5328 C:\WINDOWS\system32\samlib.dll - ok
20:38:53.0210 5328 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
20:38:53.0210 5328 C:\WINDOWS\system32\samsrv.dll - ok
20:38:53.0210 5328 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
20:38:53.0210 5328 C:\WINDOWS\AppPatch\acgenral.dll - ok
20:38:53.0225 5328 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
20:38:53.0225 5328 C:\WINDOWS\system32\cryptdll.dll - ok
20:38:53.0225 5328 [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
20:38:53.0225 5328 C:\WINDOWS\system32\oleaut32.dll - ok
20:38:53.0225 5328 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
20:38:53.0225 5328 C:\WINDOWS\system32\winmm.dll - ok
20:38:53.0241 5328 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
20:38:53.0241 5328 C:\WINDOWS\system32\msacm32.dll - ok
20:38:53.0241 5328 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
20:38:53.0241 5328 C:\WINDOWS\system32\uxtheme.dll - ok
20:38:53.0241 5328 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
20:38:53.0241 5328 C:\WINDOWS\system32\msapsspc.dll - ok
20:38:53.0257 5328 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
20:38:53.0257 5328 C:\WINDOWS\system32\msvcrt40.dll - ok
20:38:53.0257 5328 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
20:38:53.0257 5328 C:\WINDOWS\system32\schannel.dll - ok
20:38:53.0257 5328 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
20:38:53.0257 5328 C:\WINDOWS\system32\digest.dll - ok
20:38:53.0272 5328 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
20:38:53.0272 5328 C:\WINDOWS\system32\msnsspc.dll - ok
20:38:53.0272 5328 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
20:38:53.0272 5328 C:\WINDOWS\system32\msctfime.ime - ok
20:38:53.0272 5328 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
20:38:53.0272 5328 C:\WINDOWS\system32\msprivs.dll - ok
20:38:53.0288 5328 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
20:38:53.0288 5328 C:\WINDOWS\system32\kerberos.dll - ok
20:38:53.0288 5328 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
20:38:53.0288 5328 C:\WINDOWS\system32\msv1_0.dll - ok
20:38:53.0288 5328 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
20:38:53.0288 5328 C:\WINDOWS\system32\iphlpapi.dll - ok
20:38:53.0303 5328 [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
20:38:53.0303 5328 C:\WINDOWS\system32\atmfd.dll - ok
20:38:53.0303 5328 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
20:38:53.0303 5328 C:\WINDOWS\system32\netlogon.dll - ok
20:38:53.0303 5328 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
20:38:53.0303 5328 C:\WINDOWS\system32\w32time.dll - ok
20:38:53.0319 5328 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
20:38:53.0319 5328 C:\WINDOWS\system32\wdigest.dll - ok
20:38:53.0319 5328 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
20:38:53.0319 5328 C:\WINDOWS\system32\rsaenh.dll - ok
20:38:53.0319 5328 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
20:38:53.0319 5328 C:\WINDOWS\system32\winscard.dll - ok
20:38:53.0335 5328 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
20:38:53.0335 5328 C:\WINDOWS\system32\wtsapi32.dll - ok
20:38:53.0335 5328 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
20:38:53.0335 5328 C:\WINDOWS\system32\scecli.dll - ok
20:38:53.0335 5328 [ 1F7094D4268D46F718C51286DC189791 ] C:\WINDOWS\system32\drivers\aswMonFlt.sys
20:38:53.0335 5328 C:\WINDOWS\system32\drivers\aswMonFlt.sys - ok
20:38:53.0350 5328 [ 4AF5F360BA1E8794D32B366E45A64A0A ] C:\WINDOWS\system32\drivers\aswFsBlk.sys
20:38:53.0350 5328 C:\WINDOWS\system32\drivers\aswFsBlk.sys - ok
20:38:53.0350 5328 [ 5AFBEC7A6AC61B211633DFDB1D9E0C89 ] C:\WINDOWS\system32\drivers\drvnddm.sys
20:38:53.0350 5328 C:\WINDOWS\system32\drivers\drvnddm.sys - ok
20:38:53.0366 5328 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] C:\WINDOWS\system32\dla\tfsndres.sys
20:38:53.0366 5328 C:\WINDOWS\system32\dla\tfsndres.sys - ok
20:38:53.0366 5328 [ C4F2DEA75300971CDAEE311007DE138D ] C:\WINDOWS\system32\dla\tfsnifs.sys
20:38:53.0366 5328 C:\WINDOWS\system32\dla\tfsnifs.sys - ok
20:38:53.0366 5328 [ 272925BE0EA919F08286D2EE6F102B0F ] C:\WINDOWS\system32\dla\tfsnopio.sys
20:38:53.0366 5328 C:\WINDOWS\system32\dla\tfsnopio.sys - ok
20:38:53.0382 5328 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] C:\WINDOWS\system32\dla\tfsnpool.sys
20:38:53.0382 5328 C:\WINDOWS\system32\dla\tfsnpool.sys - ok
20:38:53.0382 5328 [ D0177776E11B0B3F272EEBD262A69661 ] C:\WINDOWS\system32\dla\tfsnboio.sys
20:38:53.0382 5328 C:\WINDOWS\system32\dla\tfsnboio.sys - ok
20:38:53.0382 5328 [ 599804BC938B8305A5422319774DA871 ] C:\WINDOWS\system32\dla\tfsncofs.sys
20:38:53.0382 5328 C:\WINDOWS\system32\dla\tfsncofs.sys - ok
20:38:53.0397 5328 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] C:\WINDOWS\system32\dla\tfsndrct.sys
20:38:53.0397 5328 C:\WINDOWS\system32\dla\tfsndrct.sys - ok
20:38:53.0397 5328 [ E3D01263109D800C1967C12C10A0B018 ] C:\WINDOWS\system32\dla\tfsnudf.sys
20:38:53.0397 5328 C:\WINDOWS\system32\dla\tfsnudf.sys - ok
20:38:53.0397 5328 [ B9E9C377906E3A65BC74598FFF7F7458 ] C:\WINDOWS\system32\dla\tfsnudfa.sys
20:38:53.0397 5328 C:\WINDOWS\system32\dla\tfsnudfa.sys - ok
20:38:53.0397 5328 [ 3B11BE07AF444314794372AF5D7C9A5A ] C:\WINDOWS\system32\ati2evxx.exe
20:38:53.0397 5328 C:\WINDOWS\system32\ati2evxx.exe - ok
20:38:53.0413 5328 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
20:38:53.0413 5328 C:\WINDOWS\system32\svchost.exe - ok
20:38:53.0413 5328 [ E993353700371786F9183C82BA019428 ] C:\WINDOWS\system32\ati2edxx.dll
20:38:53.0413 5328 C:\WINDOWS\system32\ati2edxx.dll - ok
20:38:53.0413 5328 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
20:38:53.0413 5328 C:\WINDOWS\system32\logonui.exe - ok
20:38:53.0428 5328 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
20:38:53.0428 5328 C:\WINDOWS\system32\ntmarta.dll - ok
20:38:53.0428 5328 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
20:38:53.0428 5328 C:\WINDOWS\system32\rpcss.dll - ok
20:38:53.0428 5328 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
20:38:53.0428 5328 C:\WINDOWS\system32\eventlog.dll - ok
20:38:53.0428 5328 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
20:38:53.0428 5328 C:\WINDOWS\system32\xpsp2res.dll - ok
20:38:53.0444 5328 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
20:38:53.0444 5328 C:\WINDOWS\system32\duser.dll - ok
20:38:53.0444 5328 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
20:38:53.0444 5328 C:\WINDOWS\system32\msimg32.dll - ok
20:38:53.0460 5328 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
20:38:53.0460 5328 C:\WINDOWS\system32\oleacc.dll - ok
20:38:53.0460 5328 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
20:38:53.0460 5328 C:\WINDOWS\system32\clbcatq.dll - ok
20:38:53.0475 5328 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
20:38:53.0475 5328 C:\WINDOWS\system32\comres.dll - ok
20:38:53.0475 5328 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
20:38:53.0475 5328 C:\WINDOWS\system32\shgina.dll - ok
20:38:53.0475 5328 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
20:38:53.0475 5328 C:\WINDOWS\system32\mswsock.dll - ok
20:38:53.0491 5328 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
20:38:53.0491 5328 C:\WINDOWS\system32\hnetcfg.dll - ok
20:38:53.0491 5328 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
20:38:53.0491 5328 C:\WINDOWS\system32\wshtcpip.dll - ok
20:38:53.0491 5328 [ 5F2917842D9FBB4CB11F76B0C00A1F5B ] C:\Program Files\Bonjour\mdnsNSP.dll
20:38:53.0491 5328 C:\Program Files\Bonjour\mdnsNSP.dll - ok
20:38:53.0491 5328 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
20:38:53.0491 5328 C:\WINDOWS\system32\winrnr.dll - ok
20:38:53.0507 5328 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
20:38:53.0507 5328 C:\WINDOWS\system32\rasadhlp.dll - ok
20:38:53.0507 5328 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
20:38:53.0507 5328 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
20:38:53.0507 5328 [ AD6CE4D96FF2987251F502909F15A139 ] C:\WINDOWS\system32\ati2evxx.dll
20:38:53.0507 5328 C:\WINDOWS\system32\ati2evxx.dll - ok
20:38:53.0507 5328 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
20:38:53.0507 5328 C:\WINDOWS\system32\dhcpcsvc.dll - ok
20:38:53.0522 5328 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
20:38:53.0522 5328 C:\WINDOWS\system32\cscdll.dll - ok
20:38:53.0522 5328 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
20:38:53.0522 5328 C:\WINDOWS\system32\dnsrslvr.dll - ok
20:38:53.0538 5328 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
20:38:53.0538 5328 C:\WINDOWS\system32\dimsntfy.dll - ok
20:38:53.0538 5328 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
20:38:53.0538 5328 C:\WINDOWS\system32\wlnotify.dll - ok
20:38:53.0538 5328 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
20:38:53.0538 5328 C:\WINDOWS\system32\winspool.drv - ok
20:38:53.0538 5328 [ D7DCFB4D0C58FFB569DE93E1681FD37A ] C:\WINDOWS\system32\WgaLogon.dll
20:38:53.0538 5328 C:\WINDOWS\system32\WgaLogon.dll - ok
20:38:53.0553 5328 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
20:38:53.0553 5328 C:\WINDOWS\system32\lmhsvc.dll - ok
20:38:53.0553 5328 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
20:38:53.0553 5328 C:\WINDOWS\system32\cryptsvc.dll - ok
20:38:53.0553 5328 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
20:38:53.0553 5328 C:\WINDOWS\system32\certcli.dll - ok
20:38:53.0569 5328 [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
20:38:53.0569 5328 C:\WINDOWS\system32\msxml3.dll - ok
20:38:53.0569 5328 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
20:38:53.0569 5328 C:\WINDOWS\system32\atl.dll - ok
20:38:53.0569 5328 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
20:38:53.0569 5328 C:\WINDOWS\system32\cryptui.dll - ok
20:38:53.0569 5328 [ CE5BA470204A3176E60721C4B63B8DF3 ] C:\WINDOWS\system32\wininet.dll
20:38:53.0569 5328 C:\WINDOWS\system32\wininet.dll - ok
20:38:53.0585 5328 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
20:38:53.0585 5328 C:\WINDOWS\system32\normaliz.dll - ok
20:38:53.0585 5328 [ F2ED64D23C94ACF512A81142F3431F4C ] C:\WINDOWS\system32\urlmon.dll
20:38:53.0585 5328 C:\WINDOWS\system32\urlmon.dll - ok
20:38:53.0585 5328 [ F81E2C10BD6C4BE3B9A242018CEF7A98 ] C:\WINDOWS\system32\iertutil.dll
20:38:53.0585 5328 C:\WINDOWS\system32\iertutil.dll - ok
20:38:53.0600 5328 [ EE56F213182841BBF333D4EA3DB481EF ] C:\WINDOWS\system32\BCMLogon.dll
20:38:53.0600 5328 C:\WINDOWS\system32\BCMLogon.dll - ok
20:38:53.0600 5328 [ F35A584E947A5B401FEB0FE01DB4A0D7 ] C:\WINDOWS\system32\MFC71.dll
20:38:53.0600 5328 C:\WINDOWS\system32\MFC71.dll - ok
20:38:53.0600 5328 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
20:38:53.0600 5328 C:\WINDOWS\system32\esent.dll - ok
20:38:53.0600 5328 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\system32\msvcr71.dll
20:38:53.0600 5328 C:\WINDOWS\system32\msvcr71.dll - ok
20:38:53.0616 5328 [ 20607EE4886D78DD95286F2D14E9FF2F ] C:\WINDOWS\system32\msvcp71.dll
20:38:53.0616 5328 C:\WINDOWS\system32\msvcp71.dll - ok
20:38:53.0616 5328 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
20:38:53.0616 5328 C:\WINDOWS\system32\riched20.dll - ok
20:38:53.0616 5328 [ BAF751E7061FF626AA60F56D1D5D1FDC ] C:\WINDOWS\system32\MFC71ENU.DLL
20:38:53.0616 5328 C:\WINDOWS\system32\MFC71ENU.DLL - ok
20:38:53.0616 5328 [ A7E06854EA2A20AEE8EC32BD8C754298 ] C:\WINDOWS\system32\mpnotify.exe
20:38:53.0616 5328 C:\WINDOWS\system32\mpnotify.exe - ok
20:38:53.0632 5328 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
20:38:53.0632 5328 C:\WINDOWS\system32\wzcsvc.dll - ok
20:38:53.0632 5328 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
20:38:53.0632 5328 C:\WINDOWS\system32\rtutils.dll - ok
20:38:53.0632 5328 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
20:38:53.0632 5328 C:\WINDOWS\system32\wmi.dll - ok
20:38:53.0647 5328 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
20:38:53.0647 5328 C:\WINDOWS\system32\eapolqec.dll - ok
20:38:53.0647 5328 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
20:38:53.0647 5328 C:\WINDOWS\system32\qutil.dll - ok
20:38:53.0647 5328 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
20:38:53.0647 5328 C:\WINDOWS\system32\dot3api.dll - ok
20:38:53.0647 5328 [ 589A8B75FD731F8E186292275F3F3692 ] C:\WINDOWS\system32\ZoneLabs\vsmon.exe
20:38:53.0647 5328 C:\WINDOWS\system32\ZoneLabs\vsmon.exe - ok
20:38:53.0663 5328 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
20:38:53.0663 5328 C:\WINDOWS\system32\rastls.dll - ok
20:38:53.0663 5328 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
20:38:53.0663 5328 C:\WINDOWS\system32\mprapi.dll - ok
20:38:53.0663 5328 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
20:38:53.0663 5328 C:\WINDOWS\system32\activeds.dll - ok
20:38:53.0663 5328 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
20:38:53.0663 5328 C:\WINDOWS\system32\adsldpc.dll - ok
20:38:53.0678 5328 [ 5A9A0451849497B667F0E15543065437 ] C:\WINDOWS\system32\vsdata.dll
20:38:53.0678 5328 C:\WINDOWS\system32\vsdata.dll - ok
20:38:53.0678 5328 [ 8BB8D55CB7B7BA11ABD25B4F051E8A3B ] C:\WINDOWS\system32\vsinit.dll
20:38:53.0678 5328 C:\WINDOWS\system32\vsinit.dll - ok
20:38:53.0678 5328 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
20:38:53.0678 5328 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
20:38:53.0694 5328 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
20:38:53.0694 5328 C:\WINDOWS\system32\rasapi32.dll - ok
20:38:53.0694 5328 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
20:38:53.0694 5328 C:\WINDOWS\system32\rasman.dll - ok
20:38:53.0694 5328 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
20:38:53.0694 5328 C:\WINDOWS\system32\tapi32.dll - ok
20:38:53.0694 5328 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
20:38:53.0694 5328 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
20:38:53.0710 5328 [ 30104887D2F952D7640B57F2A03FE6B3 ] C:\WINDOWS\system32\vsutil.dll
20:38:53.0710 5328 C:\WINDOWS\system32\vsutil.dll - ok
20:38:53.0710 5328 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
20:38:53.0710 5328 C:\WINDOWS\system32\wsock32.dll - ok
20:38:53.0710 5328 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
20:38:53.0710 5328 C:\WINDOWS\system32\mlang.dll - ok
20:38:53.0725 5328 [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\system32\xmlprovi.dll
20:38:53.0725 5328 C:\WINDOWS\system32\xmlprovi.dll - ok
20:38:53.0725 5328 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
20:38:53.0725 5328 C:\WINDOWS\system32\wzcsapi.dll - ok
20:38:53.0725 5328 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
20:38:53.0725 5328 C:\WINDOWS\system32\raschap.dll - ok
20:38:53.0725 5328 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
20:38:53.0725 5328 C:\WINDOWS\system32\cscui.dll - ok
20:38:53.0741 5328 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
20:38:53.0741 5328 C:\WINDOWS\system32\powrprof.dll - ok
20:38:53.0741 5328 [ 6C26DCF01E2A92F183B97D434017268A ] C:\WINDOWS\system32\dpcdll.dll
20:38:53.0741 5328 C:\WINDOWS\system32\dpcdll.dll - ok
20:38:53.0741 5328 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
20:38:53.0741 5328 C:\WINDOWS\system32\userinit.exe - ok
20:38:53.0741 5328 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
20:38:53.0741 5328 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
20:38:53.0757 5328 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
20:38:53.0757 5328 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
20:38:53.0757 5328 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
20:38:53.0757 5328 C:\WINDOWS\explorer.exe - ok
20:38:53.0757 5328 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
20:38:53.0757 5328 C:\WINDOWS\system32\es.dll - ok
20:38:53.0772 5328 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
20:38:53.0772 5328 C:\WINDOWS\system32\browseui.dll - ok
20:38:53.0772 5328 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
20:38:53.0772 5328 C:\WINDOWS\system32\shdocvw.dll - ok
20:38:53.0772 5328 [ CD89FA96371429B0BEE893B156DB8932 ] C:\Program Files\Alwil Software\Avast5\ashShell.dll
20:38:53.0772 5328 C:\Program Files\Alwil Software\Avast5\ashShell.dll - ok
20:38:53.0772 5328 [ 920B4D089E02FB4A3F8ADA8B4BEF9B26 ] C:\Program Files\Alwil Software\Avast5\1033\Base.dll
20:38:53.0772 5328 C:\Program Files\Alwil Software\Avast5\1033\Base.dll - ok
20:38:53.0788 5328 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
20:38:53.0788 5328 C:\WINDOWS\system32\msi.dll - ok
20:38:53.0788 5328 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
20:38:53.0788 5328 C:\WINDOWS\system32\desk.cpl - ok
20:38:53.0788 5328 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
20:38:53.0788 5328 C:\WINDOWS\system32\themeui.dll - ok
20:38:53.0788 5328 [ 3B5F0BF4125688A531FA21C823EA6193 ] C:\WINDOWS\system32\ZoneLabs\dbghelp.dll
20:38:53.0803 5328 C:\WINDOWS\system32\ZoneLabs\dbghelp.dll - ok
20:38:53.0803 5328 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
20:38:53.0803 5328 C:\WINDOWS\system32\cmd.exe - ok
20:38:53.0803 5328 [ F2FD4239901A61E876C4F5C33ED520A5 ] C:\WINDOWS\system32\ZoneLabs\icslta.dll
20:38:53.0803 5328 C:\WINDOWS\system32\ZoneLabs\icslta.dll - ok
20:38:53.0803 5328 [ 4E98097C6DAF780D145FB702C6EA625F ] C:\WINDOWS\system32\ieframe.dll
20:38:53.0803 5328 C:\WINDOWS\system32\ieframe.dll - ok
20:38:53.0819 5328 [ B8625EC124B5B95DB5DD1EBAE99F9CCC ] C:\WINDOWS\system32\ZoneLabs\ssleay32.dll
20:38:53.0819 5328 C:\WINDOWS\system32\ZoneLabs\ssleay32.dll - ok
20:38:53.0819 5328 [ D1542C1450D8D6F16EABD406483B75AA ] C:\WINDOWS\system32\ZoneLabs\vsdb.dll
20:38:53.0819 5328 C:\WINDOWS\system32\ZoneLabs\vsdb.dll - ok
20:38:53.0819 5328 [ 865CA0F8296540AD5C1493AE7FCBE3A8 ] C:\WINDOWS\system32\vsxml.dll
20:38:53.0819 5328 C:\WINDOWS\system32\vsxml.dll - ok
20:38:53.0819 5328 [ 48A487428D3685F2077250FAD279B120 ] C:\WINDOWS\system32\ZoneLabs\fbl.dll
20:38:53.0819 5328 C:\WINDOWS\system32\ZoneLabs\fbl.dll - ok
20:38:53.0835 5328 [ F6220AF462D69EE5B394FBD17A122E34 ] C:\WINDOWS\system32\ZoneLabs\featuremap.dll
20:38:53.0835 5328 C:\WINDOWS\system32\ZoneLabs\featuremap.dll - ok
20:38:53.0835 5328 [ DC9AF641B6CC3CDD26D571FA8BFAB0A1 ] C:\WINDOWS\system32\vswmi.dll
20:38:53.0835 5328 C:\WINDOWS\system32\vswmi.dll - ok
20:38:53.0835 5328 [ 91192AA3CCD9AB58479F20D5415A43EE ] C:\WINDOWS\system32\zlcomm.dll
20:38:53.0835 5328 C:\WINDOWS\system32\zlcomm.dll - ok
20:38:53.0850 5328 [ FFCF2D668CD1E1A3816FD2B5D3CC78B0 ] C:\WINDOWS\system32\zlcommdb.dll
20:38:53.0850 5328 C:\WINDOWS\system32\zlcommdb.dll - ok
20:38:53.0850 5328 [ B878B46A658FC2E2B1396F34C9DA801C ] C:\WINDOWS\system32\ZoneLabs\vsruledb.dll
20:38:53.0850 5328 C:\WINDOWS\system32\ZoneLabs\vsruledb.dll - ok
20:38:53.0850 5328 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
20:38:53.0850 5328 C:\WINDOWS\system32\cryptnet.dll - ok
20:38:53.0850 5328 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
20:38:53.0850 5328 C:\WINDOWS\system32\sensapi.dll - ok
20:38:53.0866 5328 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
20:38:53.0866 5328 C:\WINDOWS\system32\winhttp.dll - ok
20:38:53.0866 5328 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
20:38:53.0866 5328 C:\WINDOWS\system32\cabinet.dll - ok
20:38:53.0866 5328 [ 04D75FBB76E4BDA51A57D60FCBADE4B6 ] C:\WINDOWS\system32\ZoneLabs\vsvault.dll
20:38:53.0866 5328 C:\WINDOWS\system32\ZoneLabs\vsvault.dll - ok
20:38:53.0866 5328 [ 84FF6B064A730E55CECF0B70CBCADE3D ] C:\WINDOWS\system32\ZoneLabs\zlquarantine.dll
20:38:53.0866 5328 C:\WINDOWS\system32\ZoneLabs\zlquarantine.dll - ok
20:38:53.0882 5328 [ 9639147D86058DBD944DA82EDACE4279 ] C:\WINDOWS\system32\ZoneLabs\qrbase.dll
20:38:53.0882 5328 C:\WINDOWS\system32\ZoneLabs\qrbase.dll - ok
20:38:53.0882 5328 [ 23AA080554045624D38F46AB4BFE2F5B ] C:\WINDOWS\system32\ZoneLabs\scheduler.dll
20:38:53.0882 5328 C:\WINDOWS\system32\ZoneLabs\scheduler.dll - ok
20:38:53.0882 5328 [ D6A2253C5CECE39ED4488B398FD4B6B1 ] C:\WINDOWS\system32\ZoneLabs\zlupdate.dll
20:38:53.0882 5328 C:\WINDOWS\system32\ZoneLabs\zlupdate.dll - ok
20:38:53.0897 5328 [ 11A1A5941D203F5DA52CEAFEA89BB992 ] C:\WINDOWS\system32\ZoneLabs\camupd.dll
20:38:53.0897 5328 C:\WINDOWS\system32\ZoneLabs\camupd.dll - ok
20:38:53.0897 5328 [ 8E12ADCD26A2AC8006E52B74463E9DD1 ] C:\WINDOWS\system32\WLTRYSVC.EXE
20:38:53.0897 5328 C:\WINDOWS\system32\WLTRYSVC.EXE - ok
20:38:53.0897 5328 [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
20:38:53.0897 5328 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe - ok
20:38:53.0897 5328 [ 3118A7345A5C28E8D5C6BE7A90AEA0A6 ] C:\WINDOWS\system32\BCMWLTRY.EXE
20:38:53.0897 5328 C:\WINDOWS\system32\BCMWLTRY.EXE - ok
20:38:53.0913 5328 [ 54AE15322C30814FC23FC26907A563B3 ] C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll
20:38:53.0913 5328 C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll - ok
20:38:53.0913 5328 [ 40F2889475EDC401F98FD7938F0BBF66 ] C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll
20:38:53.0913 5328 C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll - ok
20:38:53.0913 5328 [ 1F9319EA6D87522C70271A55AC3BE365 ] C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll
20:38:53.0913 5328 C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll - ok
20:38:53.0913 5328 [ 0099D24356585743B0B35C222092FD8F ] C:\WINDOWS\system32\faultrep.dll
20:38:53.0913 5328 C:\WINDOWS\system32\faultrep.dll - ok
20:38:53.0928 5328 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
20:38:53.0928 5328 C:\WINDOWS\system32\cfgmgr32.dll - ok
20:38:53.0928 5328 [ 6E000EC0096A2A1CF4A31B7393A29AE1 ] C:\WINDOWS\system32\bcm1xsup.dll
20:38:53.0928 5328 C:\WINDOWS\system32\bcm1xsup.dll - ok
20:38:53.0928 5328 [ 4DF537A09034434EA9481B88AB1D3C25 ] C:\WINDOWS\system32\bcmwlpkt.dll
20:38:53.0928 5328 C:\WINDOWS\system32\bcmwlpkt.dll - ok
20:38:53.0944 5328 [ 8F2097E8B174F38178570C611464935F ] C:\WINDOWS\system32\ATL71.DLL
20:38:53.0944 5328 C:\WINDOWS\system32\ATL71.DLL - ok
20:38:53.0944 5328 [ 6C2981657E2D424518DE66C786EEE672 ] C:\WINDOWS\system32\wltrynt.dll
20:38:53.0944 5328 C:\WINDOWS\system32\wltrynt.dll - ok
20:38:53.0944 5328 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
20:38:53.0944 5328 C:\WINDOWS\system32\schedsvc.dll - ok
20:38:53.0944 5328 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
20:38:53.0944 5328 C:\WINDOWS\system32\msidle.dll - ok
20:38:53.0960 5328 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
20:38:53.0960 5328 C:\WINDOWS\system32\spoolsv.exe - ok
20:38:53.0960 5328 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
20:38:53.0960 5328 C:\WINDOWS\system32\audiosrv.dll - ok
20:38:53.0960 5328 [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
20:38:53.0960 5328 C:\WINDOWS\system32\wkssvc.dll - ok
20:38:53.0975 5328 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
20:38:53.0975 5328 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
20:38:53.0975 5328 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
20:38:53.0975 5328 C:\WINDOWS\system32\webclnt.dll - ok
20:38:53.0975 5328 [ 34400005DE52842C4D6D4EE978B4D7CE ] D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
20:38:53.0975 5328 D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe - ok
20:38:53.0975 5328 [ 707DC793BC599ACA525DE0AB1EC85E17 ] D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\platform.DLL
20:38:53.0975 5328 D:\Adobe Photoshop Elements 8\Elements Organizer 8.0\platform.DLL - ok
20:38:53.0991 5328 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
20:38:53.0991 5328 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
20:38:53.0991 5328 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
20:38:53.0991 5328 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
20:38:53.0991 5328 [ 70D7BE78061126DD0C3ACCDB7E129017 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:38:53.0991 5328 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
20:38:54.0007 5328 [ ACC9C8C560C567FAD6F79C977AB2EA09 ] C:\WINDOWS\system32\bgsvcgen.exe
20:38:54.0007 5328 C:\WINDOWS\system32\bgsvcgen.exe - ok
20:38:54.0007 5328 [ 673CF4F6BB1FBE09331B526802FBB892 ] C:\Program Files\Bonjour\mDNSResponder.exe
20:38:54.0007 5328 C:\Program Files\Bonjour\mDNSResponder.exe - ok
20:38:54.0007 5328 [ C5A75EB48E2344ABDC162BDA79E16841 ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:38:54.0007 5328 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
20:38:54.0022 5328 [ E5F7C30EDF0892667933BE879F067D67 ] C:\WINDOWS\system32\msvcr100_clr0400.dll
20:38:54.0022 5328 C:\WINDOWS\system32\msvcr100_clr0400.dll - ok
20:38:54.0022 5328 [ 08A73B0E7EE6E32983B5F9E540A8E380 ] C:\WINDOWS\system32\mscoree.dll
20:38:54.0022 5328 C:\WINDOWS\system32\mscoree.dll - ok
20:38:54.0022 5328 [ D039A0C347632622934906BD59A4E1EA ] C:\WINDOWS\ehome\ehrecvr.exe
20:38:54.0022 5328 C:\WINDOWS\ehome\ehrecvr.exe - ok
20:38:54.0022 5328 [ 75FA19142531CBF490770C2988A7DB64 ] C:\WINDOWS\system32\drivers\cpuz134_x32.sys
20:38:54.0022 5328 C:\WINDOWS\system32\drivers\cpuz134_x32.sys - ok
20:38:54.0038 5328 [ 6D280BC969218AE4A72180F907C32913 ] C:\WINDOWS\ehome\ehTrace.dll
20:38:54.0038 5328 C:\WINDOWS\ehome\ehTrace.dll - ok
20:38:54.0038 5328 [ A53243709439AC2A4C216B817F8D7411 ] C:\WINDOWS\ehome\ehSched.exe
20:38:54.0038 5328 C:\WINDOWS\ehome\ehSched.exe - ok
20:38:54.0038 5328 [ 926AFC4848FF3297BB264333BF51E21F ] C:\WINDOWS\system32\sbe.dll
20:38:54.0038 5328 C:\WINDOWS\system32\sbe.dll - ok
20:38:54.0053 5328 [ 1CFF6DC8F60BBE0AADC1AD15DFAD162A ] C:\WINDOWS\system32\msvidctl.dll
20:38:54.0053 5328 C:\WINDOWS\system32\msvidctl.dll - ok
20:38:54.0053 5328 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
20:38:54.0053 5328 C:\WINDOWS\system32\ersvc.dll - ok
20:38:54.0053 5328 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:38:54.0053 5328 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - ok
20:38:54.0053 5328 [ 83BA5E873164A3711B44052F58C8FE9F ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
20:38:54.0053 5328 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
20:38:54.0069 5328 [ BF107ACF2CDD552AABE14E8C3E62E3FC ] C:\WINDOWS\system32\quartz.dll
20:38:54.0069 5328 C:\WINDOWS\system32\quartz.dll - ok
20:38:54.0069 5328 [ FB53A700132D9A97D1E10E9F80BD6174 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
20:38:54.0069 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
20:38:54.0069 5328 [ AA5E22854F56C68148EB3345DBD62970 ] C:\WINDOWS\system32\devenum.dll
20:38:54.0069 5328 C:\WINDOWS\system32\devenum.dll - ok
20:38:54.0085 5328 [ D25C03D04159D462D69F294BA7142BDB ] C:\WINDOWS\system32\msdmo.dll
20:38:54.0085 5328 C:\WINDOWS\system32\msdmo.dll - ok
20:38:54.0085 5328 [ 09523AFBC5937D7CC786FC9C74D2D516 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll
20:38:54.0085 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll - ok
20:38:54.0085 5328 [ 4B3685AA700084E4ED6635FC1EFD9CC2 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll
20:38:54.0085 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll - ok
20:38:54.0085 5328 [ B9153B3A2F653DED6560FB8AAD38AE08 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\0f410e5729f64f2acc084505f01f863f\PresentationFontCache.ni.exe
20:38:54.0085 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\0f410e5729f64f2acc084505f01f863f\PresentationFontCache.ni.exe - ok
20:38:54.0100 5328 [ C1649188479440AA5834EDA555445CDC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\d7ee03714420b252415b952d40ef59e4\System.ServiceProcess.ni.dll
20:38:54.0100 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\d7ee03714420b252415b952d40ef59e4\System.ServiceProcess.ni.dll - ok
20:38:54.0100 5328 [ E0EB0BDC866E2C0CC792B83BD2422501 ] C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
20:38:54.0100 5328 C:\WINDOWS\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
20:38:54.0100 5328 [ 723528449ED0D1B0AD98AF3EDF23101D ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
20:38:54.0100 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
20:38:54.0116 5328 [ 15F5D3FC818E98A14C22D80B0606F825 ] C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
20:38:54.0116 5328 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
20:38:54.0116 5328 [ D91A6B3FDF14C0319333FC583D969126 ] C:\WINDOWS\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll
20:38:54.0116 5328 C:\WINDOWS\assembly\GAC_MSIL\WindowsBase\3.0.0.0__31bf3856ad364e35\WindowsBase.dll - ok
20:38:54.0116 5328 [ F02A533F517EB38333CB12A9E8963773 ] C:\Program Files\Google\Update\GoogleUpdate.exe
20:38:54.0116 5328 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
20:38:54.0116 5328 [ C14AA05881A35B6D6BB8D55B117EE22D ] C:\WINDOWS\system32\shfolder.dll
20:38:54.0116 5328 C:\WINDOWS\system32\shfolder.dll - ok
20:38:54.0132 5328 [ C6B6CD85841FC4958DDAD76B270D05BF ] C:\Program Files\Google\Update\1.3.21.149\goopdate.dll
20:38:54.0132 5328 C:\Program Files\Google\Update\1.3.21.149\goopdate.dll - ok
20:38:54.0132 5328 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
20:38:54.0132 5328 C:\WINDOWS\system32\dbghelp.dll - ok
20:38:54.0132 5328 [ EE4C7A4CF2316701FFDE90F404520265 ] C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
20:38:54.0132 5328 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - ok
20:38:54.0132 5328 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
20:38:54.0132 5328 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
20:38:54.0147 5328 [ CFB58C9A53B56892817C3519E32C4502 ] C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
20:38:54.0147 5328 C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll - ok
20:38:54.0147 5328 [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
20:38:54.0147 5328 C:\WINDOWS\system32\hidserv.dll - ok
20:38:54.0147 5328 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
20:38:54.0147 5328 C:\WINDOWS\system32\drivers\http.sys - ok
20:38:54.0163 5328 [ 09C87F376507122A5FE1CBE06E015512 ] C:\Program Files\Google\Update\1.3.21.149\GoogleCrashHandler.exe
20:38:54.0163 5328 C:\Program Files\Google\Update\1.3.21.149\GoogleCrashHandler.exe - ok
20:38:54.0163 5328 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
20:38:54.0163 5328 C:\WINDOWS\system32\hid.dll - ok
20:38:54.0163 5328 [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
20:38:54.0163 5328 C:\WINDOWS\system32\mstask.dll - ok
20:38:54.0163 5328 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
20:38:54.0163 5328 C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe - ok
20:38:54.0178 5328 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
20:38:54.0178 5328 C:\WINDOWS\system32\spoolss.dll - ok
20:38:54.0178 5328 [ F282D4EDD85D53E20D902CC92190C5F5 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
20:38:54.0178 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
20:38:54.0178 5328 [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
20:38:54.0178 5328 C:\WINDOWS\system32\localspl.dll - ok
20:38:54.0194 5328 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\Program Files\Verizon\IHA_MessageCenter\Bin\hnetcfg.dll
20:38:54.0194 5328 C:\Program Files\Verizon\IHA_MessageCenter\Bin\hnetcfg.dll - ok
20:38:54.0194 5328 [ D65DB1C24E27ACD169971552C6FC9E2F ] C:\WINDOWS\system32\AdobePDF.dll
20:38:54.0194 5328 C:\WINDOWS\system32\AdobePDF.dll - ok
20:38:54.0194 5328 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
20:38:54.0194 5328 C:\WINDOWS\system32\cnbjmon.dll - ok
20:38:54.0194 5328 [ 3183BFA7BDF50662F9094BC720EB7AF9 ] C:\WINDOWS\system32\hpzll5ha.dll
20:38:54.0194 5328 C:\WINDOWS\system32\hpzll5ha.dll - ok
20:38:54.0210 5328 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
20:38:54.0210 5328 C:\WINDOWS\system32\pjlmon.dll - ok
20:38:54.0210 5328 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
20:38:54.0210 5328 C:\WINDOWS\system32\tcpmon.dll - ok
20:38:54.0210 5328 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
20:38:54.0210 5328 C:\WINDOWS\system32\usbmon.dll - ok
20:38:54.0225 5328 [ D0E39177C896D2F8191A9C96636276DF ] C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp5ha.dll
20:38:54.0225 5328 C:\WINDOWS\system32\spool\prtprocs\w32x86\hpzpp5ha.dll - ok
20:38:54.0225 5328 [ 063457262374B224226710D8DB74C37C ] C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
20:38:54.0225 5328 C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll - ok
20:38:54.0225 5328 [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
20:38:54.0225 5328 C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
20:38:54.0225 5328 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
20:38:54.0225 5328 C:\WINDOWS\system32\win32spl.dll - ok
20:38:54.0241 5328 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
20:38:54.0241 5328 C:\WINDOWS\system32\netrap.dll - ok
20:38:54.0241 5328 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
20:38:54.0241 5328 C:\WINDOWS\system32\inetpp.dll - ok
20:38:54.0241 5328 [ B89CB7F3F1A1E2807E708F5435DEB13D ] C:\Program Files\Verizon\IHA_MessageCenter\Bin\log4net.dll
20:38:54.0241 5328 C:\Program Files\Verizon\IHA_MessageCenter\Bin\log4net.dll - ok
20:38:54.0257 5328 [ CC7563FEB4FD29E0C1A61841BEA64D5F ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\17440cd05eee7f87026b3c17119eed58\System.Configuration.ni.dll
20:38:54.0257 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\17440cd05eee7f87026b3c17119eed58\System.Configuration.ni.dll - ok
20:38:54.0257 5328 [ C3FED6BBC024AAFFE6969FD4EE9F5941 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\fe025743210c22bea2f009e1612c38bf\System.Xml.ni.dll
20:38:54.0257 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\fe025743210c22bea2f009e1612c38bf\System.Xml.ni.dll - ok
20:38:54.0257 5328 [ 6F9AE59017FAE7E111265394967E846E ] C:\Program Files\Java\jre7\bin\jqs.exe
20:38:54.0257 5328 C:\Program Files\Java\jre7\bin\jqs.exe - ok
20:38:54.0257 5328 [ 2B92A88E329F4845D31941967A3BAA90 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
20:38:54.0257 5328 C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
20:38:54.0272 5328 [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
20:38:54.0272 5328 C:\WINDOWS\system32\pdh.dll - ok
20:38:54.0272 5328 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
20:38:54.0272 5328 C:\WINDOWS\system32\odbcbcp.dll - ok
20:38:54.0272 5328 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
20:38:54.0272 5328 C:\WINDOWS\system32\srvsvc.dll - ok
20:38:54.0288 5328 [ 3C318B9CD391371BED62126581EE9961 ] C:\WINDOWS\system32\drivers\mdmxsdk.sys
20:38:54.0288 5328 C:\WINDOWS\system32\drivers\mdmxsdk.sys - ok
20:38:54.0288 5328 [ B7C1BA9B0256B66411F09D705117AE66 ] C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe
20:38:54.0288 5328 C:\Program Files\Memeo\AutoBackup\MemeoBackgroundService.exe - ok
20:38:54.0288 5328 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
20:38:54.0288 5328 C:\WINDOWS\system32\netmsg.dll - ok
20:38:54.0288 5328 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
20:38:54.0288 5328 C:\WINDOWS\system32\perfos.dll - ok
20:38:54.0303 5328 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
20:38:54.0303 5328 C:\WINDOWS\system32\drivers\srv.sys - ok
20:38:54.0303 5328 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
20:38:54.0303 5328 C:\WINDOWS\system32\perfdisk.dll - ok
20:38:54.0303 5328 [ 4FEE4304EAEDDDCCFE905B08D9DC63FC ] C:\Program Files\Memeo\AutoBackup\MemeoRemoteCore.dll
20:38:54.0303 5328 C:\Program Files\Memeo\AutoBackup\MemeoRemoteCore.dll - ok
20:38:54.0303 5328 [ 219AF0F9A54EBEEB3E7E20025D801034 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll
20:38:54.0303 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
20:38:54.0319 5328 [ 8A6FA8E0B302DF2496802AAFDA5CE810 ] C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
20:38:54.0319 5328 C:\Program Files\Dell\QuickSet\NicConfigSvc.exe - ok
20:38:54.0319 5328 [ C2967AFE6C98472D0F782DFCFED3B0ED ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d7a2248a76f0e94d56c92c5bf96f5175\System.Runtime.Remoting.ni.dll
20:38:54.0319 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\d7a2248a76f0e94d56c92c5bf96f5175\System.Runtime.Remoting.ni.dll - ok
20:38:54.0319 5328 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
20:38:54.0319 5328 C:\WINDOWS\system32\netman.dll - ok
20:38:54.0335 5328 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
20:38:54.0335 5328 C:\WINDOWS\system32\netshell.dll - ok
20:38:54.0335 5328 [ 0B467F470CC9918FDCEEDCFD7DC4D697 ] C:\WINDOWS\system32\oledlg.dll
20:38:54.0335 5328 C:\WINDOWS\system32\oledlg.dll - ok
20:38:54.0335 5328 [ A6A7AD767BF5141665F5C675F671B3E1 ] C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
20:38:54.0335 5328 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe - ok
20:38:54.0335 5328 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
20:38:54.0335 5328 C:\WINDOWS\system32\ipsecsvc.dll - ok
20:38:54.0350 5328 [ 5B19B557B0C188210A56A6B699D90B8F ] C:\WINDOWS\system32\regsvc.dll
20:38:54.0350 5328 C:\WINDOWS\system32\regsvc.dll - ok
20:38:54.0350 5328 [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
20:38:54.0350 5328 C:\WINDOWS\system32\oakley.dll - ok
20:38:54.0350 5328 [ 16B44D246835EAC156F8DAF0AA4F530C ] C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe
20:38:54.0350 5328 C:\Program Files\Seagate\Seagate Dashboard\SeagateDashboardService.exe - ok
20:38:54.0366 5328 [ 4217348720317D7B98E0646776124F31 ] C:\WINDOWS\system32\BMAPI.dll
20:38:54.0366 5328 C:\WINDOWS\system32\BMAPI.dll - ok
20:38:54.0366 5328 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
20:38:54.0366 5328 C:\WINDOWS\system32\winipsec.dll - ok
20:38:54.0366 5328 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
20:38:54.0366 5328 C:\WINDOWS\system32\netcfgx.dll - ok
20:38:54.0366 5328 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
20:38:54.0366 5328 C:\WINDOWS\system32\pstorsvc.dll - ok
20:38:54.0382 5328 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
20:38:54.0382 5328 C:\WINDOWS\system32\credui.dll - ok
20:38:54.0382 5328 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
20:38:54.0382 5328 C:\WINDOWS\system32\psbase.dll - ok
20:38:54.0382 5328 [ EE77F3CC36F8F96B9F0E1691AAC39C81 ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Common.dll
20:38:54.0382 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Common.dll - ok
20:38:54.0397 5328 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
20:38:54.0397 5328 C:\WINDOWS\system32\clusapi.dll - ok
20:38:54.0397 5328 [ 90A3935D05B494A5A39D37E71F09A677 ] C:\WINDOWS\system32\drivers\secdrv.sys
20:38:54.0397 5328 C:\WINDOWS\system32\drivers\secdrv.sys - ok
20:38:54.0397 5328 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
20:38:54.0397 5328 C:\WINDOWS\system32\dot3dlg.dll - ok
20:38:54.0397 5328 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
20:38:54.0397 5328 C:\WINDOWS\system32\onex.dll - ok
20:38:54.0413 5328 [ 9BE42E99BBD5461F1F94FE39FEE2E6F5 ] C:\Program Files\VERIZONDM\bin\sprtsvc.exe
20:38:54.0413 5328 C:\Program Files\VERIZONDM\bin\sprtsvc.exe - ok
20:38:54.0413 5328 [ 7A7831A07950CD7E8AC82AFA7E44A816 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7782f356a838c403b4a8e9c80df5a577\System.Drawing.ni.dll
20:38:54.0413 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7782f356a838c403b4a8e9c80df5a577\System.Drawing.ni.dll - ok
20:38:54.0413 5328 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
20:38:54.0413 5328 C:\WINDOWS\system32\dssenh.dll - ok
20:38:54.0413 5328 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
20:38:54.0413 5328 C:\WINDOWS\system32\eappcfg.dll - ok
20:38:54.0428 5328 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
20:38:54.0428 5328 C:\WINDOWS\system32\eappprxy.dll - ok
20:38:54.0428 5328 [ 92982BC49FA1E45EBD64A4605AE57790 ] C:\Program Files\VERIZONDM\bin\sprtsched.dll
20:38:54.0428 5328 C:\Program Files\VERIZONDM\bin\sprtsched.dll - ok
20:38:54.0428 5328 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
20:38:54.0428 5328 C:\WINDOWS\system32\ssdpsrv.dll - ok
20:38:54.0444 5328 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
20:38:54.0444 5328 C:\WINDOWS\system32\sens.dll - ok
20:38:54.0444 5328 [ C4E3BBCBA4E10A34E31C26A0CF933E32 ] C:\Program Files\VERIZONDM\bin\tgsrvc.exe
20:38:54.0444 5328 C:\Program Files\VERIZONDM\bin\tgsrvc.exe - ok
20:38:54.0444 5328 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
20:38:54.0444 5328 C:\WINDOWS\system32\wiaservc.dll - ok
20:38:54.0444 5328 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
20:38:54.0444 5328 C:\WINDOWS\system32\srsvc.dll - ok
20:38:54.0460 5328 [ 9774C61DC40B728960AD4849BCAA009A ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\81b85db6e9fe04e4d1c9547b993acfce\System.Windows.Forms.ni.dll
20:38:54.0460 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\81b85db6e9fe04e4d1c9547b993acfce\System.Windows.Forms.ni.dll - ok
20:38:54.0460 5328 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
20:38:54.0460 5328 C:\WINDOWS\system32\seclogon.dll - ok
20:38:54.0460 5328 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
20:38:54.0460 5328 C:\WINDOWS\system32\mscms.dll - ok
20:38:54.0475 5328 [ 251E22A5D9BAAC9E1153707EEF2EF62E ] C:\Program Files\VERIZONDM\bin\sprtfod.dll
20:38:54.0475 5328 C:\Program Files\VERIZONDM\bin\sprtfod.dll - ok
20:38:54.0475 5328 [ 5C5209B04B1942A534259C2AB7BB1EEA ] C:\Program Files\VERIZONDM\bin\libeay32.dll
20:38:54.0475 5328 C:\Program Files\VERIZONDM\bin\libeay32.dll - ok
20:38:54.0475 5328 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
20:38:54.0475 5328 C:\WINDOWS\system32\actxprxy.dll - ok
20:38:54.0475 5328 [ 6B47CAB302139AA94503187C11F71A9B ] C:\Program Files\Common Files\SupportSoft\bin\bcont_nm.exe
20:38:54.0475 5328 C:\Program Files\Common Files\SupportSoft\bin\bcont_nm.exe - ok
20:38:54.0491 5328 [ D84912095CE496CA1FFAE62408EC3B85 ] C:\Program Files\Java\jre7\bin\awt.dll
20:38:54.0491 5328 C:\Program Files\Java\jre7\bin\awt.dll - ok
20:38:54.0491 5328 [ A95FD607292F05218FEB8D580FB4CC8E ] C:\Program Files\VERIZONDM\bin\sprtsync.dll
20:38:54.0491 5328 C:\Program Files\VERIZONDM\bin\sprtsync.dll - ok
20:38:54.0491 5328 [ 2F7959C5FAA11E0F53FA3D321C9074D0 ] C:\Program Files\VERIZONDM\bin\sprtupdate.dll
20:38:54.0491 5328 C:\Program Files\VERIZONDM\bin\sprtupdate.dll - ok
20:38:54.0491 5328 [ 39BD95A9FE72AAF5C675AD146BE456A9 ] C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
20:38:54.0491 5328 C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe - ok
20:38:54.0507 5328 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
20:38:54.0507 5328 C:\WINDOWS\system32\trkwks.dll - ok
20:38:54.0507 5328 [ 359E5A91D26D0439933BEF1C29CEDEF7 ] C:\Program Files\Canon\CAL\CALMAIN.exe
20:38:54.0507 5328 C:\Program Files\Canon\CAL\CALMAIN.exe - ok
20:38:54.0507 5328 [ 0764DC82AB4F1D75CBBD2DDDEF31B0D1 ] C:\Program Files\Java\jre7\bin\client\jvm.dll
20:38:54.0507 5328 C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
20:38:54.0522 5328 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
20:38:54.0522 5328 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
20:38:54.0522 5328 [ 3CAEAE7608F1BD7BA873A3B02895B106 ] C:\WINDOWS\system32\sti.dll
20:38:54.0522 5328 C:\WINDOWS\system32\sti.dll - ok
20:38:54.0522 5328 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
20:38:54.0522 5328 C:\WINDOWS\system32\vssapi.dll - ok
20:38:54.0538 5328 [ DF0A511F38F16016BF658FCA0090CB87 ] C:\WINDOWS\ehome\mcrdsvc.exe
20:38:54.0538 5328 C:\WINDOWS\ehome\mcrdsvc.exe - ok
20:38:54.0538 5328 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
20:38:54.0538 5328 C:\WINDOWS\system32\ssdpapi.dll - ok
20:38:54.0538 5328 [ 8E66B9D4748B330D5918F91EBAFFA59C ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.Remote.dll
20:38:54.0538 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.Remote.dll - ok
20:38:54.0538 5328 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
20:38:54.0538 5328 C:\WINDOWS\system32\wuauserv.dll - ok
20:38:54.0553 5328 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
20:38:54.0553 5328 C:\WINDOWS\system32\wuaueng.dll - ok
20:38:54.0553 5328 [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
20:38:54.0553 5328 C:\WINDOWS\system32\mspatcha.dll - ok
20:38:54.0553 5328 [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
20:38:54.0553 5328 C:\WINDOWS\system32\browser.dll - ok
20:38:54.0553 5328 [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
20:38:54.0553 5328 C:\WINDOWS\system32\ipnathlp.dll - ok
20:38:54.0569 5328 [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
20:38:54.0569 5328 C:\WINDOWS\system32\wscsvc.dll - ok
20:38:54.0569 5328 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
20:38:54.0569 5328 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
20:38:54.0569 5328 [ CE54D466E3023021B64CA73CB3AEE36D ] C:\Program Files\Java\jre7\bin\dcpr.dll
20:38:54.0569 5328 C:\Program Files\Java\jre7\bin\dcpr.dll - ok
20:38:54.0585 5328 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
20:38:54.0585 5328 C:\WINDOWS\system32\wbem\esscli.dll - ok
20:38:54.0585 5328 [ 039167B798C03F52FAF505E72F771C10 ] C:\Program Files\Java\jre7\bin\deploy.dll
20:38:54.0585 5328 C:\Program Files\Java\jre7\bin\deploy.dll - ok
20:38:54.0585 5328 [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
20:38:54.0585 5328 C:\WINDOWS\system32\wbem\fastprox.dll - ok
20:38:54.0585 5328 [ 4886B4E882438F472674A7F6A08BE081 ] C:\Program Files\Java\jre7\bin\fontmanager.dll
20:38:54.0585 5328 C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
20:38:54.0600 5328 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
20:38:54.0600 5328 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
20:38:54.0600 5328 [ 99F7E13F9C16B255FB5114B0322428E1 ] C:\Program Files\Java\jre7\bin\java.dll
20:38:54.0600 5328 C:\Program Files\Java\jre7\bin\java.dll - ok
20:38:54.0600 5328 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
20:38:54.0600 5328 C:\WINDOWS\system32\comsvcs.dll - ok
20:38:54.0616 5328 [ 63F336B9DB4AC8138379457E8E52BC5F ] C:\Program Files\Java\jre7\bin\javaw.exe
20:38:54.0616 5328 C:\Program Files\Java\jre7\bin\javaw.exe - ok
20:38:54.0616 5328 [ 050460E291891B4637A48EAAC1039BCD ] C:\Program Files\Java\jre7\bin\jp2native.dll
20:38:54.0616 5328 C:\Program Files\Java\jre7\bin\jp2native.dll - ok
20:38:54.0616 5328 [ B6740D5A7EE0A23E1D68B0499A6A48F7 ] C:\Program Files\Java\jre7\bin\jpeg.dll
20:38:54.0616 5328 C:\Program Files\Java\jre7\bin\jpeg.dll - ok
20:38:54.0616 5328 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
20:38:54.0616 5328 C:\WINDOWS\system32\colbact.dll - ok
20:38:54.0632 5328 [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
20:38:54.0632 5328 C:\WINDOWS\system32\mtxclu.dll - ok
20:38:54.0632 5328 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
20:38:54.0632 5328 C:\WINDOWS\system32\resutils.dll - ok
20:38:54.0632 5328 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
20:38:54.0632 5328 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
20:38:54.0647 5328 [ 65C7B0BEA2CAADB9B4A46B7E6B906744 ] C:\Program Files\Java\jre7\bin\net.dll
20:38:54.0647 5328 C:\Program Files\Java\jre7\bin\net.dll - ok
20:38:54.0647 5328 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
20:38:54.0647 5328 C:\WINDOWS\system32\wups.dll - ok
20:38:54.0647 5328 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
20:38:54.0647 5328 C:\WINDOWS\system32\wups2.dll - ok
20:38:54.0647 5328 [ BCE501BEADE9B6796A42575ADDB40C1C ] C:\Program Files\Java\jre7\bin\nio.dll
20:38:54.0647 5328 C:\Program Files\Java\jre7\bin\nio.dll - ok
20:38:54.0663 5328 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
20:38:54.0663 5328 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
20:38:54.0663 5328 [ A6AA041AAB553BBB216748F7AB20B958 ] C:\Program Files\Java\jre7\bin\verify.dll
20:38:54.0663 5328 C:\Program Files\Java\jre7\bin\verify.dll - ok
20:38:54.0663 5328 [ 0CB44B21E9949C9F7EA31AFBFD184249 ] C:\Program Files\Java\jre7\bin\zip.dll
20:38:54.0663 5328 C:\Program Files\Java\jre7\bin\zip.dll - ok
20:38:54.0663 5328 [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
20:38:54.0663 5328 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
20:38:54.0678 5328 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
20:38:54.0678 5328 C:\WINDOWS\system32\wbem\wbemess.dll - ok
20:38:54.0678 5328 [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
20:38:54.0678 5328 C:\WINDOWS\system32\wuauclt.exe - ok
20:38:54.0678 5328 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
20:38:54.0678 5328 C:\WINDOWS\system32\wuapi.dll - ok
20:38:54.0694 5328 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
20:38:54.0694 5328 C:\WINDOWS\system32\wbem\ncprov.dll - ok
20:38:54.0694 5328 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
20:38:54.0694 5328 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
20:38:54.0694 5328 [ 798A9E6828997EEF4517ADA8A2259831 ] C:\WINDOWS\system32\wbem\wmiprvse.exe
20:38:54.0694 5328 C:\WINDOWS\system32\wbem\wmiprvse.exe - ok
20:38:54.0694 5328 [ E837FDBB92E9873E538395B623F45462 ] C:\WINDOWS\system32\wbem\cimwin32.dll
20:38:54.0694 5328 C:\WINDOWS\system32\wbem\cimwin32.dll - ok
20:38:54.0710 5328 [ 4306FA2F1099D7C606139255FDB62B19 ] C:\WINDOWS\system32\wbem\framedyn.dll
20:38:54.0710 5328 C:\WINDOWS\system32\wbem\framedyn.dll - ok
20:38:54.0710 5328 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
20:38:54.0710 5328 C:\WINDOWS\system32\security.dll - ok
20:38:54.0710 5328 [ C730F70351D950DDA7388C9A9763CF54 ] C:\WINDOWS\system32\wbem\wmipcima.dll
20:38:54.0710 5328 C:\WINDOWS\system32\wbem\wmipcima.dll - ok
20:38:54.0725 5328 [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\KEVINB~1\LOCALS~1\temp\0D4BD4F4-F093-478C-87DB-D29578DFFD23.exe
20:38:54.0725 5328 C:\DOCUME~1\KEVINB~1\LOCALS~1\temp\0D4BD4F4-F093-478C-87DB-D29578DFFD23.exe - ok
20:38:54.0725 5328 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
20:38:54.0725 5328 C:\WINDOWS\system32\linkinfo.dll - ok
20:38:54.0725 5328 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
20:38:54.0725 5328 C:\WINDOWS\system32\ntshrui.dll - ok
20:38:54.0725 5328 [ 165AE7A443F2139DD2C078AD87699F91 ] C:\Program Files\Microsoft Office\OFFICE11\MSOHEV.DLL
20:38:54.0725 5328 C:\Program Files\Microsoft Office\OFFICE11\MSOHEV.DLL - ok
20:38:54.0741 5328 [ CC8915DB4E33E8FB29CA0D2DBF75306E ] C:\WINDOWS\system32\webcheck.dll
20:38:54.0741 5328 C:\WINDOWS\system32\webcheck.dll - ok
20:38:54.0741 5328 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
20:38:54.0741 5328 C:\WINDOWS\system32\termsrv.dll - ok
20:38:54.0741 5328 [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
20:38:54.0741 5328 C:\WINDOWS\system32\stobject.dll - ok
20:38:54.0757 5328 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\56269867.sys
20:38:54.0757 5328 C:\WINDOWS\system32\drivers\56269867.sys - ok
20:38:54.0757 5328 [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
20:38:54.0757 5328 C:\WINDOWS\system32\batmeter.dll - ok
20:38:54.0757 5328 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
20:38:54.0757 5328 C:\WINDOWS\system32\icaapi.dll - ok
20:38:54.0757 5328 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
20:38:54.0757 5328 C:\WINDOWS\system32\mstlsapi.dll - ok
20:38:54.0772 5328 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
20:38:54.0772 5328 C:\WINDOWS\system32\tapisrv.dll - ok
20:38:54.0772 5328 [ ED377B3C83FDEA8D906109A085D219BA ] C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
20:38:54.0772 5328 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - ok
20:38:54.0772 5328 [ 045E228F71C31901084B64BE59093499 ] C:\WINDOWS\system32\WPDShServiceObj.dll
20:38:54.0772 5328 C:\WINDOWS\system32\WPDShServiceObj.dll - ok
20:38:54.0772 5328 [ 7E48B4958C131E9643DDCD2E7CA3FE9F ] C:\WINDOWS\ehome\ehtray.exe
20:38:54.0772 5328 C:\WINDOWS\ehome\ehtray.exe - ok
20:38:54.0788 5328 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
20:38:54.0788 5328 C:\WINDOWS\system32\rasmans.dll - ok
20:38:54.0788 5328 [ 538A270F35A713C360B7ED4168BB7521 ] C:\WINDOWS\system32\mydocs.dll
20:38:54.0788 5328 C:\WINDOWS\system32\mydocs.dll - ok
20:38:54.0788 5328 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
20:38:54.0788 5328 C:\WINDOWS\system32\wdmaud.drv - ok
20:38:54.0803 5328 [ 574738F61FCA2935F5265DC4E5691314 ] C:\WINDOWS\system32\qmgr.dll
20:38:54.0803 5328 C:\WINDOWS\system32\qmgr.dll - ok
20:38:54.0803 5328 [ 058710B720282CA82B909912D3EF28DB ] C:\WINDOWS\regedit.exe
20:38:54.0803 5328 C:\WINDOWS\regedit.exe - ok
20:38:54.0803 5328 [ AD2506958DE1937C16C553C0A1BE0572 ] C:\WINDOWS\stsystra.exe
20:38:54.0803 5328 C:\WINDOWS\stsystra.exe - ok
20:38:54.0803 5328 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
20:38:54.0803 5328 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
20:38:54.0819 5328 [ 22358578CB321F3325496A3723029409 ] C:\WINDOWS\system32\PortableDeviceTypes.dll
20:38:54.0819 5328 C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
20:38:54.0819 5328 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
20:38:54.0819 5328 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
20:38:54.0819 5328 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
20:38:54.0819 5328 C:\WINDOWS\system32\rastapi.dll - ok
20:38:54.0819 5328 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
20:38:54.0819 5328 C:\WINDOWS\system32\drivers\splitter.sys - ok
20:38:54.0835 5328 [ 64C4C17BF6A40FF1CD21205E6FD415B8 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
20:38:54.0835 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe - ok
20:38:54.0835 5328 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
20:38:54.0835 5328 C:\WINDOWS\system32\drivers\aec.sys - ok
20:38:54.0835 5328 [ 9D45B2201D0ECF9F42136C7B99DEB8B2 ] C:\WINDOWS\system32\PortableDeviceApi.dll
20:38:54.0835 5328 C:\WINDOWS\system32\PortableDeviceApi.dll - ok
20:38:54.0850 5328 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
20:38:54.0850 5328 C:\WINDOWS\system32\unimdm.tsp - ok
20:38:54.0850 5328 [ 381E144D2111593F87FBAF85347FCF28 ] C:\WINDOWS\system32\stlang.dll
20:38:54.0850 5328 C:\WINDOWS\system32\stlang.dll - ok
20:38:54.0850 5328 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
20:38:54.0850 5328 C:\WINDOWS\system32\drivers\swmidi.sys - ok
20:38:54.0850 5328 [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
20:38:54.0850 5328 C:\WINDOWS\system32\alg.exe - ok
20:38:54.0866 5328 [ 96A0066AB9872D3575575A463C53FF6C ] C:\WINDOWS\system32\aclui.dll
20:38:54.0866 5328 C:\WINDOWS\system32\aclui.dll - ok
20:38:54.0866 5328 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
20:38:54.0866 5328 C:\WINDOWS\system32\drivers\dmusic.sys - ok
20:38:54.0866 5328 [ F1DAC7969C1337AF790BD1D981AA780C ] C:\WINDOWS\system32\qmgrprxy.dll
20:38:54.0866 5328 C:\WINDOWS\system32\qmgrprxy.dll - ok
20:38:54.0866 5328 [ 0F0F5B564C5A3C9B38A6220230252567 ] C:\WINDOWS\ehome\ehProxy.dll
20:38:54.0866 5328 C:\WINDOWS\ehome\ehProxy.dll - ok
20:38:54.0882 5328 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
20:38:54.0882 5328 C:\WINDOWS\system32\uniplat.dll - ok
20:38:54.0882 5328 [ 751068D5D0ECD64A4810379729A1F0BC ] C:\WINDOWS\system32\ulib.dll
20:38:54.0882 5328 C:\WINDOWS\system32\ulib.dll - ok
20:38:54.0882 5328 [ 960F6D3CD9A1BA6435D7AADD102B297F ] C:\WINDOWS\system32\wbem\wmiprov.dll
20:38:54.0882 5328 C:\WINDOWS\system32\wbem\wmiprov.dll - ok
20:38:54.0897 5328 [ 9E109B03018763FDCB075CE74547BE22 ] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
20:38:54.0897 5328 C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe - ok
20:38:54.0897 5328 [ 583B7D111304BE63D7D9CB65482D2187 ] C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
20:38:54.0897 5328 C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe - ok
20:38:54.0897 5328 [ 352FBF618066D0CEB7DC8ECABEB1A8D7 ] C:\WINDOWS\system32\dla\tfswctrl.exe
20:38:54.0897 5328 C:\WINDOWS\system32\dla\tfswctrl.exe - ok
20:38:54.0897 5328 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
20:38:54.0897 5328 C:\WINDOWS\system32\drivers\kmixer.sys - ok
20:38:54.0913 5328 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
20:38:54.0913 5328 C:\WINDOWS\system32\unimdmat.dll - ok
20:38:54.0913 5328 [ 37461F2C3F212CF508A20FDC729ABDE5 ] C:\WINDOWS\system32\clb.dll
20:38:54.0913 5328 C:\WINDOWS\system32\clb.dll - ok
20:38:54.0913 5328 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
20:38:54.0913 5328 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
20:38:54.0913 5328 [ 945DD2B6EF30EF4DA0E32A0B7159CBBA ] C:\WINDOWS\system32\tfswapi.dll
20:38:54.0913 5328 C:\WINDOWS\system32\tfswapi.dll - ok
20:38:54.0928 5328 [ F6F2BFC17069EB335ACCEEF7595F9302 ] C:\WINDOWS\system32\mfc42u.dll
20:38:54.0928 5328 C:\WINDOWS\system32\mfc42u.dll - ok
20:38:54.0928 5328 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
20:38:54.0928 5328 C:\WINDOWS\system32\modemui.dll - ok
20:38:54.0928 5328 [ 996E0F51AC076B2E0D851AF333AD17B9 ] C:\WINDOWS\system32\dla\tfswcres.dll
20:38:54.0928 5328 C:\WINDOWS\system32\dla\tfswcres.dll - ok
20:38:54.0944 5328 [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
20:38:54.0944 5328 C:\WINDOWS\system32\drprov.dll - ok
20:38:54.0944 5328 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
20:38:54.0944 5328 C:\WINDOWS\system32\msacm32.drv - ok
20:38:54.0944 5328 [ 20484A00E826BBB57129CE9660262B43 ] C:\Program Files\Common Files\InstallShield\UpdateService\_ispmres.dll
20:38:54.0944 5328 C:\Program Files\Common Files\InstallShield\UpdateService\_ispmres.dll - ok
20:38:54.0944 5328 [ 6A29DF8C27FAF8130CD7C9DB53853B67 ] C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe
20:38:54.0944 5328 C:\Program Files\Seagate\SystemTray\StxMenuMgr.exe - ok
20:38:54.0960 5328 [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
20:38:54.0960 5328 C:\WINDOWS\system32\ntlanman.dll - ok
20:38:54.0960 5328 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
20:38:54.0960 5328 C:\WINDOWS\system32\kmddsp.tsp - ok
20:38:54.0960 5328 [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
20:38:54.0960 5328 C:\WINDOWS\system32\netui0.dll - ok
20:38:54.0975 5328 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
20:38:54.0975 5328 C:\WINDOWS\system32\ndptsp.tsp - ok
20:38:54.0975 5328 [ E2C48CD0132D4D1DC7D0DF9A6BEF686A ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
20:38:54.0975 5328 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll - ok
20:38:54.0975 5328 [ DEDA6CFC126FE3B6B35F8870F3E1EC28 ] C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe
20:38:54.0975 5328 C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe - ok
20:38:54.0975 5328 [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
20:38:54.0975 5328 C:\WINDOWS\system32\netui1.dll - ok
20:38:54.0991 5328 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
20:38:54.0991 5328 C:\WINDOWS\system32\ipconf.tsp - ok
20:38:54.0991 5328 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
20:38:54.0991 5328 C:\WINDOWS\system32\h323.tsp - ok
20:38:54.0991 5328 [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
20:38:54.0991 5328 C:\WINDOWS\system32\davclnt.dll - ok
20:38:55.0007 5328 [ 7C87A5FB95777E4132B11FC3D92CAAF5 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll
20:38:55.0007 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll - ok
20:38:55.0007 5328 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
20:38:55.0007 5328 C:\WINDOWS\system32\midimap.dll - ok
20:38:55.0007 5328 [ 35FD33EAE23AF69715EE3231A9F15B82 ] D:\Acrobat 9.0\Acrobat\acrobat_sl.exe
20:38:55.0007 5328 D:\Acrobat 9.0\Acrobat\acrobat_sl.exe - ok
20:38:55.0022 5328 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
20:38:55.0022 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll - ok
20:38:55.0022 5328 [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
20:38:55.0022 5328 C:\WINDOWS\system32\upnp.dll - ok
20:38:55.0022 5328 [ 0FE0EDF01CEA3BEB2E65A904BB87525E ] D:\Acrobat 9.0\Acrobat\acrotray.exe
20:38:55.0022 5328 D:\Acrobat 9.0\Acrobat\acrotray.exe - ok
20:38:55.0022 5328 [ 28A09777D2D952122567A8A82F1A2C7B ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll
20:38:55.0022 5328 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\mfc80ENU.dll - ok
20:38:55.0038 5328 [ ADE43E6677BA2D52413DDDAB38438555 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
20:38:55.0038 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll - ok
20:38:55.0038 5328 [ D908476FF66371DC1D2F4B313B1306DF ] C:\Program Files\Common Files\Corel\Standby\Standby.exe
20:38:55.0038 5328 C:\Program Files\Common Files\Corel\Standby\Standby.exe - ok
20:38:55.0038 5328 [ 56BB08BD8F3E09E75D461C58ABFDCE8C ] C:\Program Files\Seagate\SystemTray\StxMenu.dll
20:38:55.0038 5328 C:\Program Files\Seagate\SystemTray\StxMenu.dll - ok
20:38:55.0053 5328 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
20:38:55.0053 5328 C:\WINDOWS\system32\hidphone.tsp - ok
20:38:55.0053 5328 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
20:38:55.0053 5328 C:\WINDOWS\system32\rasppp.dll - ok
20:38:55.0053 5328 [ F802B6381408D3BED6EE1DF87BFE1EB8 ] C:\WINDOWS\system32\stacapi.dll
20:38:55.0053 5328 C:\WINDOWS\system32\stacapi.dll - ok
20:38:55.0053 5328 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
20:38:55.0053 5328 C:\WINDOWS\system32\ntlsapi.dll - ok
20:38:55.0069 5328 [ 0D2F62C6E2E9BD508F7BF2E6C8BA176D ] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
20:38:55.0069 5328 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe - ok
20:38:55.0069 5328 [ 9818FF792CB0FE3A7C226FB5AA194010 ] D:\Acrobat 9.0\Acrobat\AcroTray.DEU
20:38:55.0069 5328 D:\Acrobat 9.0\Acrobat\AcroTray.DEU - ok
20:38:55.0069 5328 [ 35B000440DF7855DA29CA7DF50D6952D ] D:\Acrobat 9.0\Acrobat\AcroTray.FRA
20:38:55.0069 5328 D:\Acrobat 9.0\Acrobat\AcroTray.FRA - ok
20:38:55.0069 5328 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
20:38:55.0069 5328 C:\WINDOWS\system32\rasqec.dll - ok
20:38:55.0085 5328 [ 69581380E69C8DCE30EDE2A463C912EE ] C:\Program Files\QuickTime\QTTask.exe
20:38:55.0085 5328 C:\Program Files\QuickTime\QTTask.exe - ok
20:38:55.0085 5328 [ D0C7036087AA8621F9C1C2FFD702F5AE ] C:\Program Files\Zone Labs\ZoneAlarm\framewrk.dll
20:38:55.0085 5328 C:\Program Files\Zone Labs\ZoneAlarm\framewrk.dll - ok
20:38:55.0085 5328 [ 6110A057199D66FECA5D341E5E89DF76 ] D:\Acrobat 9.0\Esl\Aiod.dll
20:38:55.0085 5328 D:\Acrobat 9.0\Esl\Aiod.dll - ok
20:38:55.0100 5328 [ 407811B64B588FE80FA2E27E783B41EA ] C:\Program Files\iTunes\iTunesHelper.exe
20:38:55.0100 5328 C:\Program Files\iTunes\iTunesHelper.exe - ok
20:38:55.0100 5328 [ B7C7FA3BEDE83AC5F1DE03B30D494CC1 ] C:\WINDOWS\system32\httpapi.dll
20:38:55.0100 5328 C:\WINDOWS\system32\httpapi.dll - ok
20:38:55.0100 5328 [ C1D6235E8DEA361D430F375AA9CEE99A ] C:\Program Files\Dell\QuickSet\quickset.exe
20:38:55.0100 5328 C:\Program Files\Dell\QuickSet\quickset.exe - ok
20:38:55.0100 5328 [ C0A447BCA69D9661D1EF7EDF4C700FE3 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
20:38:55.0100 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll - ok
20:38:55.0116 5328 [ 6100A808600F44D999CEBDEF8841C7A3 ] C:\WINDOWS\system32\w3ssl.dll
20:38:55.0116 5328 C:\WINDOWS\system32\w3ssl.dll - ok
20:38:55.0116 5328 [ 3A5D1DA453661AFE0E1245D3A948F7BD ] C:\Program Files\Memeo\AutoBackup\MemeoLauncher2.exe
20:38:55.0116 5328 C:\Program Files\Memeo\AutoBackup\MemeoLauncher2.exe - ok
20:38:55.0116 5328 [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
20:38:55.0116 5328 C:\WINDOWS\system32\rasdlg.dll - ok
20:38:55.0116 5328 [ 4A93B65CFB514F2EA76B59568D5F39CE ] C:\WINDOWS\system32\strmfilt.dll
20:38:55.0116 5328 C:\WINDOWS\system32\strmfilt.dll - ok
20:38:55.0132 5328 [ F101EC2ABCDE12CE4E81EEF13A32E1D4 ] D:\Acrobat 9.0\Acrobat\acrodist.exe
20:38:55.0132 5328 D:\Acrobat 9.0\Acrobat\acrodist.exe - ok
20:38:55.0132 5328 [ A853FB4774AAA16D7D57E26F46196ABF ] C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe
20:38:55.0132 5328 C:\Program Files\Seagate\Seagate Dashboard\MemeoLauncher.exe - ok
20:38:55.0132 5328 [ D1F235A87A3940C376001BD8A8A4AA26 ] C:\Program Files\iTunes\iTunesHelper.dll
20:38:55.0132 5328 C:\Program Files\iTunes\iTunesHelper.dll - ok
20:38:55.0147 5328 [ 0153701206D2CF9A43F88B40AF1FBC22 ] C:\Program Files\VERIZONDM\bin\sprtcmd.exe
20:38:55.0147 5328 C:\Program Files\VERIZONDM\bin\sprtcmd.exe - ok
20:38:55.0147 5328 [ CEF20CB83B36EC2DBB99D38DC80FC826 ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
20:38:55.0147 5328 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
20:38:55.0147 5328 [ 12916E0642E92561C98B18A2A2D01B14 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
20:38:55.0147 5328 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
20:38:55.0147 5328 [ 16DA352476324EB9F2745E7F2F0AEE20 ] C:\Program Files\Zone Labs\ZoneAlarm\zhtml.dll
20:38:55.0147 5328 C:\Program Files\Zone Labs\ZoneAlarm\zhtml.dll - ok
20:38:55.0163 5328 [ 6C23D15CC0A1A379199176A8B4CD05CA ] D:\Acrobat 9.0\Acrobat\acrodistdll.dll
20:38:55.0163 5328 D:\Acrobat 9.0\Acrobat\acrodistdll.dll - ok
20:38:55.0163 5328 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
20:38:55.0163 5328 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
20:38:55.0163 5328 [ 0EEE814627F4384291687671F76419F6 ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
20:38:55.0163 5328 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
20:38:55.0163 5328 [ 554BD99F802FCC7BFE7FA7102384A2D2 ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
20:38:55.0178 5328 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
20:38:55.0178 5328 [ 3CDEE69C6808BFBF3CC2473C70F2B0B7 ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_7e72ec06\mscorlib.dll
20:38:55.0178 5328 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_7e72ec06\mscorlib.dll - ok
20:38:55.0178 5328 [ 9AF1C70202FB6A84F177D497D75BC5FC ] C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
20:38:55.0178 5328 C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe - ok
20:38:55.0178 5328 [ F64A630C746DCEFB640FE724F911D317 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
20:38:55.0178 5328 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
20:38:55.0194 5328 [ 2A1F3A456E08E69073F979B2A53B1134 ] C:\WINDOWS\system32\zpeng25.dll
20:38:55.0194 5328 C:\WINDOWS\system32\zpeng25.dll - ok
20:38:55.0194 5328 [ 39C821EF59F82FF6CDCCA768E5E36BBE ] C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll
20:38:55.0194 5328 C:\Program Files\Common Files\Apple\Apple Application Support\icuin40.dll - ok
20:38:55.0194 5328 [ 390679F7A217A5E73D756276C40AE887 ] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
20:38:55.0194 5328 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe - ok
20:38:55.0194 5328 [ 8A938B3AD1FB410185A2DA8C98FC2209 ] C:\Program Files\VERIZONDM\bin\dmmonitor.dll
20:38:55.0194 5328 C:\Program Files\VERIZONDM\bin\dmmonitor.dll - ok
20:38:55.0210 5328 [ 1C95060AA0B931CF9EE86DDE21FCFC8C ] D:\Acrobat 9.0\Acrobat\ahclient.dll
20:38:55.0210 5328 D:\Acrobat 9.0\Acrobat\ahclient.dll - ok
20:38:55.0210 5328 [ 129AFDF91ABB962527A21F9C9272731E ] C:\Program Files\Memeo\AutoBackup\Tanagra.Utility.dll
20:38:55.0210 5328 C:\Program Files\Memeo\AutoBackup\Tanagra.Utility.dll - ok
20:38:55.0210 5328 [ 88BEEF09C654252F3E46B6167B7F4ECB ] C:\WINDOWS\system32\msisip.dll
20:38:55.0210 5328 C:\WINDOWS\system32\msisip.dll - ok
20:38:55.0225 5328 [ 331334335F95E4A3636C58CEDACE0CC1 ] C:\Program Files\Dell\QuickSet\IWH9.dll
20:38:55.0225 5328 C:\Program Files\Dell\QuickSet\IWH9.dll - ok
20:38:55.0225 5328 [ 962C174BB85B843FE0CA75A6DAF46F2F ] C:\Program Files\Dell\QuickSet\IWH10.dll
20:38:55.0225 5328 C:\Program Files\Dell\QuickSet\IWH10.dll - ok
20:38:55.0225 5328 [ BD7CDF6F9BF663377D7D73DF252F5DDE ] D:\Acrobat 9.0\Acrobat\AdobeXMP.dll
20:38:55.0225 5328 D:\Acrobat 9.0\Acrobat\AdobeXMP.dll - ok
20:38:55.0225 5328 [ B8387A77AB4B7BCCB8F291D335725CC9 ] C:\WINDOWS\system32\vspubapi.dll
20:38:55.0225 5328 C:\WINDOWS\system32\vspubapi.dll - ok
20:38:55.0241 5328 [ 3A6D465F379E5C815F4AD565391E654C ] C:\WINDOWS\system32\wshext.dll
20:38:55.0241 5328 C:\WINDOWS\system32\wshext.dll - ok
20:38:55.0241 5328 [ AE8028E980FCAB6CCAF68E6850D8FE50 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll
20:38:55.0241 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll - ok
20:38:55.0241 5328 [ 157C29532AB783F16648A7D4DF5CB826 ] C:\Program Files\VERIZONDM\bin\sprtmessage.dll
20:38:55.0241 5328 C:\Program Files\VERIZONDM\bin\sprtmessage.dll - ok
20:38:55.0257 5328 [ 40FA2F035ED88108850757CA51DAD942 ] C:\PROGRA~1\MICROS~2\OFFICE11\MCPS.DLL
20:38:55.0257 5328 C:\PROGRA~1\MICROS~2\OFFICE11\MCPS.DLL - ok
20:38:55.0257 5328 [ F36BC7FB3A87DE9138AAECC40F7BC116 ] C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll
20:38:55.0257 5328 C:\Program Files\Microsoft Silverlight\xapauthenticodesip.dll - ok
20:38:55.0257 5328 [ AF742C77FF844FFC4050220B97B88975 ] D:\Acrobat 9.0\Acrobat\ACE.dll
20:38:55.0257 5328 D:\Acrobat 9.0\Acrobat\ACE.dll - ok
20:38:55.0257 5328 [ 3075B86A8EE385CADA46F69386430FCF ] C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll
20:38:55.0257 5328 C:\Program Files\Common Files\Apple\Apple Application Support\icuuc40.dll - ok
20:38:55.0272 5328 [ 4DF5190ED6E1C4913894473189393FCA ] C:\Program Files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe
20:38:55.0272 5328 C:\Program Files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe - ok
20:38:55.0272 5328 [ 4A6026B161137823747AB23A31106148 ] C:\Program Files\VERIZONDM\bin\NotifySyncDone.dll
20:38:55.0272 5328 C:\Program Files\VERIZONDM\bin\NotifySyncDone.dll - ok
20:38:55.0272 5328 [ AB9AAC01AC223F03707748C038A03244 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
20:38:55.0272 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll - ok
20:38:55.0288 5328 [ E838BE73C6946B39705A376BF821B3B5 ] C:\Program Files\Secunia\PSI\psi.exe
20:38:55.0288 5328 C:\Program Files\Secunia\PSI\psi.exe - ok
20:38:55.0288 5328 [ EED3EEEDCCF7A71F16FAB63406761BB7 ] D:\Acrobat 9.0\Acrobat\AdobePDFL.dll
20:38:55.0288 5328 D:\Acrobat 9.0\Acrobat\AdobePDFL.dll - ok
20:38:55.0288 5328 [ EB48C000D2A5C614BEE4D87365BD3AD8 ] C:\Program Files\VERIZONDM\bin\sprtevent.dll
20:38:55.0288 5328 C:\Program Files\VERIZONDM\bin\sprtevent.dll - ok
20:38:55.0288 5328 [ 3DC324435E21870CC3AFE5B178D4EC8E ] C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll
20:38:55.0288 5328 C:\WINDOWS\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll - ok
20:38:55.0303 5328 [ E5792F83FE0A2AB0A9CA5BB397EECFA2 ] C:\Program Files\Dell\QuickSet\preflibcl.dll
20:38:55.0303 5328 C:\Program Files\Dell\QuickSet\preflibcl.dll - ok
20:38:55.0303 5328 [ 5D43C9A33F18C707BA169AFDA88BDF30 ] C:\WINDOWS\system32\fltlib.dll
20:38:55.0303 5328 C:\WINDOWS\system32\fltlib.dll - ok
20:38:55.0303 5328 [ 58B8702C20DE211D1FCB248D2FDD71D1 ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe
20:38:55.0303 5328 C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
20:38:55.0319 5328 [ 9E03DC5AB51CFD0190541CE2038D819D ] C:\WINDOWS\system32\usp10.dll
20:38:55.0319 5328 C:\WINDOWS\system32\usp10.dll - ok
20:38:55.0319 5328 [ C1AFCFCA3F111CD73BE8333BAEBA18BA ] C:\Program Files\Memeo\AutoBackup\XMLSettings.dll
20:38:55.0319 5328 C:\Program Files\Memeo\AutoBackup\XMLSettings.dll - ok
20:38:55.0319 5328 [ E3A0C70369C51241CFA220DDE3F9EEF0 ] C:\WINDOWS\system32\preflib.dll
20:38:55.0319 5328 C:\WINDOWS\system32\preflib.dll - ok
20:38:55.0319 5328 [ 608E159EC424C6B54D04ABFDF2E8F8B0 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll
20:38:55.0319 5328 C:\Program Files\Common Files\Apple\Apple Application Support\icudt40.dll - ok
20:38:55.0335 5328 [ DD8BE1269DCA19EBDBEF65B63BFC705C ] C:\Program Files\VERIZONDM\bin\sprtui.dll
20:38:55.0335 5328 C:\Program Files\VERIZONDM\bin\sprtui.dll - ok
20:38:55.0335 5328 [ 37B1356814FE406395705BD1BC481238 ] C:\WINDOWS\system32\atipdlxx.dll
20:38:55.0335 5328 C:\WINDOWS\system32\atipdlxx.dll - ok
20:38:55.0335 5328 [ 249885BC976CE436AF0EAE90FC728336 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\024c898ad1ccfde466d033c0a08d0564\Microsoft.VisualBasic.ni.dll
20:38:55.0335 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\024c898ad1ccfde466d033c0a08d0564\Microsoft.VisualBasic.ni.dll - ok
20:38:55.0350 5328 [ C361EC02CCEA5DF3E2474AC881722A81 ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_45be862e\System.Windows.Forms.dll
20:38:55.0350 5328 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_45be862e\System.Windows.Forms.dll - ok
20:38:55.0350 5328 [ 3A7C34AD5DCF3040435FAD363AD1BCD1 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\1a6f9e23985e3159e6dd9827fd81c2fd\System.Management.ni.dll
20:38:55.0350 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\1a6f9e23985e3159e6dd9827fd81c2fd\System.Management.ni.dll - ok
20:38:55.0350 5328 [ 31B067C412FA1A9BAD3CA2A63D7DA440 ] C:\WINDOWS\system32\d3d8thk.dll
20:38:55.0350 5328 C:\WINDOWS\system32\d3d8thk.dll - ok
20:38:55.0350 5328 [ 0607CBC6FA20114CB491EFE4B2F9EFAD ] C:\WINDOWS\system32\d3d9.dll
20:38:55.0350 5328 C:\WINDOWS\system32\d3d9.dll - ok
20:38:55.0366 5328 [ 22D71D1DB6FC789A1CE8AC6963580259 ] C:\WINDOWS\system32\hhctrl.ocx
20:38:55.0366 5328 C:\WINDOWS\system32\hhctrl.ocx - ok
20:38:55.0366 5328 [ 3D9A7EB9C2A852818D47361F5E8ECFE8 ] C:\Program Files\Dell\QuickSet\dadkeyb.dll
20:38:55.0366 5328 C:\Program Files\Dell\QuickSet\dadkeyb.dll - ok
20:38:55.0366 5328 [ 18E84C774815D9F6F6931F46CA00B1BF ] C:\Program Files\VERIZONDM\bin\sprttrigger.dll
20:38:55.0366 5328 C:\Program Files\VERIZONDM\bin\sprttrigger.dll - ok
20:38:55.0366 5328 [ 6EEF0747B7604D285251D47A1114B586 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll
20:38:55.0366 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Implementation.dll - ok
20:38:55.0382 5328 [ DDDD1D04D5F4360371BC99C7C476F70D ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
20:38:55.0382 5328 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
20:38:55.0382 5328 [ C198EBF19B85F182F2515F4C926EF30E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll
20:38:55.0382 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.dll - ok
20:38:55.0382 5328 [ 963158EBB0701EC0E93E09CBB4B75C9E ] C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll
20:38:55.0382 5328 C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.dll - ok
20:38:55.0397 5328 [ 9112B83C2AF1CEB63F01C187891C0511 ] C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll
20:38:55.0397 5328 C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Service.dll - ok
20:38:55.0397 5328 [ E7BAA541793F289F71AB1E32D7BF9360 ] C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll
20:38:55.0397 5328 C:\Program Files\ATI Technologies\ATI.ACE\LOG.Foundation.Shared.dll - ok
20:38:55.0397 5328 [ 6D0A021A23A281AB9F212CF1E2BD3757 ] C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll
20:38:55.0397 5328 C:\WINDOWS\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll - ok
20:38:55.0397 5328 [ F8654C20B9D108F91F312D0DB857E8E7 ] C:\Program Files\VERIZONDM\bin\supportsoft.agent.sprocket.supportmessage.dll
20:38:55.0397 5328 C:\Program Files\VERIZONDM\bin\supportsoft.agent.sprocket.supportmessage.dll - ok
20:38:55.0413 5328 [ 727CC4E1E55F35A75E217D04EEE1ECB2 ] C:\WINDOWS\system32\jsproxy.dll
20:38:55.0413 5328 C:\WINDOWS\system32\jsproxy.dll - ok
20:38:55.0413 5328 [ 428E44AE3C2021F79C7A4E5ECA44BC49 ] C:\Program Files\VERIZONDM\bin\supportsoft.agent.sprocket.dll
20:38:55.0413 5328 C:\Program Files\VERIZONDM\bin\supportsoft.agent.sprocket.dll - ok
20:38:55.0413 5328 [ 05CF1926E4E7B6D91D66BD5CD54FC1F0 ] C:\WINDOWS\system32\mshtml.dll
20:38:55.0413 5328 C:\WINDOWS\system32\mshtml.dll - ok
20:38:55.0413 5328 [ 35A936C7C029A5B705D3FFD40518D660 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
20:38:55.0428 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll - ok
20:38:55.0428 5328 [ 68FA129C932BFFEB86FF2FB47E0233CC ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_e4485626\System.dll
20:38:55.0428 5328 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_e4485626\System.dll - ok
20:38:55.0428 5328 [ E3C817F7FE44CC870ECDBCBC3EA36132 ] C:\WINDOWS\system32\msvcp100.dll
20:38:55.0428 5328 C:\WINDOWS\system32\msvcp100.dll - ok
20:38:55.0428 5328 [ 605C6370240FC79CADBCD34960A741D2 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
20:38:55.0428 5328 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
20:38:55.0444 5328 [ BF38660A9125935658CFA3E53FDC7D65 ] C:\WINDOWS\system32\msvcr100.dll
20:38:55.0444 5328 C:\WINDOWS\system32\msvcr100.dll - ok
20:38:55.0444 5328 [ 2ACCD352451EC0F99AF2AD9DB6DB4439 ] C:\WINDOWS\system32\msls31.dll
20:38:55.0444 5328 C:\WINDOWS\system32\msls31.dll - ok
20:38:55.0444 5328 [ 80776884E7A05D6DA5040926F82B0273 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
20:38:55.0444 5328 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll - ok
20:38:55.0444 5328 [ DCF133F1F0134DBC0AC26F075FC64285 ] C:\Program Files\Seagate\Seagate Dashboard\MemeoDashboard.exe
20:38:55.0444 5328 C:\Program Files\Seagate\Seagate Dashboard\MemeoDashboard.exe - ok
20:38:55.0460 5328 [ A41CFD35F3E135D92B4A29424968F07D ] C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
20:38:55.0460 5328 C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
20:38:55.0460 5328 [ 07CCF436FDCBAC6DE80AEC77E2E753D6 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll
20:38:55.0460 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.XManifestation.dll - ok
20:38:55.0460 5328 [ A5205B3AF85B1477AB2C2A1E12201598 ] C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll
20:38:55.0460 5328 C:\WINDOWS\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll - ok
20:38:55.0475 5328 [ F5B7D0E678F7A7C395E7C8B51A16BBA7 ] C:\Program Files\Seagate\Seagate Dashboard\MemeoUpdater.exe
20:38:55.0475 5328 C:\Program Files\Seagate\Seagate Dashboard\MemeoUpdater.exe - ok
20:38:55.0475 5328 [ 2F359693EFBB3C0866CE37A9C1C94BA7 ] C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll
20:38:55.0475 5328 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
20:38:55.0491 5328 [ 47361AA4D0FB8079BB2AF83303692CAA ] C:\Program Files\VERIZONDM\agent\bin\agentcore.dll
20:38:55.0491 5328 C:\Program Files\VERIZONDM\agent\bin\agentcore.dll - ok
20:38:55.0491 5328 [ 6D07DF8A3B4E89B5BAC943B64F0B70D0 ] C:\WINDOWS\system32\icm32.dll
20:38:55.0491 5328 C:\WINDOWS\system32\icm32.dll - ok
20:38:55.0491 5328 [ 66C91A227660D474DC1A8158631C0DEB ] C:\Program Files\QuickTime\QTSystem\QuickTime.qts
20:38:55.0491 5328 C:\Program Files\QuickTime\QTSystem\QuickTime.qts - ok
20:38:55.0507 5328 [ DC3CBFCE484A2BBD7575BE84543F268E ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_f857beb4\System.Xml.dll
20:38:55.0507 5328 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_f857beb4\System.Xml.dll - ok
20:38:55.0507 5328 [ DFC26715F9726F089A3D64EDE6898324 ] C:\WINDOWS\system32\ZoneLabs\lib\Alert.zip.dll
20:38:55.0507 5328 C:\WINDOWS\system32\ZoneLabs\lib\Alert.zip.dll - ok
20:38:55.0507 5328 [ E139539D151A7E9B0EDC094DB56972A5 ] D:\Acrobat 9.0\Acrobat\JP2KLib.dll
20:38:55.0507 5328 D:\Acrobat 9.0\Acrobat\JP2KLib.dll - ok
20:38:55.0522 5328 [ C7B7DCADD611AE158EC1EF57D1FC93FA ] C:\WINDOWS\system32\ZoneLabs\lib\ConfigWizard.zip.dll
20:38:55.0522 5328 C:\WINDOWS\system32\ZoneLabs\lib\ConfigWizard.zip.dll - ok
20:38:55.0522 5328 [ 1E1B73FC9C17EFFE04F5676A40C82026 ] C:\WINDOWS\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll
20:38:55.0522 5328 C:\WINDOWS\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll - ok
20:38:55.0522 5328 [ 1A889424882EB2A084AD1E67ABD098F4 ] C:\WINDOWS\system32\ZoneLabs\lib\DashBoard.zip.dll
20:38:55.0522 5328 C:\WINDOWS\system32\ZoneLabs\lib\DashBoard.zip.dll - ok
20:38:55.0538 5328 [ FD86410F03378CF45D5F69BAE0A1F1B9 ] D:\Acrobat 9.0\Acrobat\BIB.dll
20:38:55.0538 5328 D:\Acrobat 9.0\Acrobat\BIB.dll - ok
20:38:55.0538 5328 [ 59CD6341C2EE5BBF33954B634F24312D ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.UI.dll
20:38:55.0538 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.UI.dll - ok
20:38:55.0538 5328 [ 4A98FDC9BC93E663BDB1B55F847CDCE1 ] C:\Program Files\QuickTime\QTSystem\QTCF.dll
20:38:55.0538 5328 C:\Program Files\QuickTime\QTSystem\QTCF.dll - ok
20:38:55.0538 5328 [ D506E7C6DE84BB9F1F9118EF1DC116DA ] D:\Acrobat 9.0\Acrobat\BIBUtils.dll
20:38:55.0538 5328 D:\Acrobat 9.0\Acrobat\BIBUtils.dll - ok
20:38:55.0553 5328 [ 366B1493076931B573EBDD54B797F14D ] C:\WINDOWS\system32\ZoneLabs\lib\LicenseUI.zip.dll
20:38:55.0553 5328 C:\WINDOWS\system32\ZoneLabs\lib\LicenseUI.zip.dll - ok
20:38:55.0553 5328 [ 99C6567D1135072B19AA49713E5C9394 ] C:\WINDOWS\system32\ZoneLabs\lib\MainLoop.zip.dll
20:38:55.0553 5328 C:\WINDOWS\system32\ZoneLabs\lib\MainLoop.zip.dll - ok
20:38:55.0553 5328 [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
20:38:55.0553 5328 C:\WINDOWS\system32\dsound.dll - ok
20:38:55.0553 5328 [ 3679F05F524C03A3E79E289A31D060D9 ] D:\Acrobat 9.0\Acrobat\AGM.dll
20:38:55.0553 5328 D:\Acrobat 9.0\Acrobat\AGM.dll - ok
20:38:55.0569 5328 [ B8CA227C90F4509F8785DCE21989553C ] C:\WINDOWS\system32\ZoneLabs\lib\NavBar.zip.dll
20:38:55.0569 5328 C:\WINDOWS\system32\ZoneLabs\lib\NavBar.zip.dll - ok
20:38:55.0569 5328 [ 041B97991F4244345911C1DCAC154225 ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1010.zip.dll
20:38:55.0569 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1010.zip.dll - ok
20:38:55.0569 5328 [ E11457C66FDD966EE415FBBC6D9BE643 ] C:\WINDOWS\system32\msimtf.dll
20:38:55.0569 5328 C:\WINDOWS\system32\msimtf.dll - ok
20:38:55.0585 5328 [ 6BA1834CB04EE137B37B1FAADBDF16C7 ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1413.zip.dll
20:38:55.0585 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1413.zip.dll - ok
20:38:55.0585 5328 [ E40FCF943127DDC8FD60554B722D762B ] C:\WINDOWS\system32\msctf.dll
20:38:55.0585 5328 C:\WINDOWS\system32\msctf.dll - ok
20:38:55.0585 5328 [ 70CE3106BA7EF98CB00FE2B91A16B3FF ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1440.zip.dll
20:38:55.0585 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1440.zip.dll - ok
20:38:55.0585 5328 [ 257F9FADC4BBD42F2C5B9D8CEAB3C229 ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1445.zip.dll
20:38:55.0585 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1445.zip.dll - ok
20:38:55.0600 5328 [ 8C5159DC60F68848DFCFAD0719E9073C ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1454.zip.dll
20:38:55.0600 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1454.zip.dll - ok
20:38:55.0600 5328 [ 6F5DF1FB5FD4BF54E036B08137BCD0FA ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1460.zip.dll
20:38:55.0600 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1460.zip.dll - ok
20:38:55.0600 5328 [ 0689622E6484934EB6E5F4D3A96311F9 ] C:\WINDOWS\system32\jscript.dll
20:38:55.0600 5328 C:\WINDOWS\system32\jscript.dll - ok
20:38:55.0616 5328 [ 06DB23B325A41F3F6F4FD02342189F18 ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1466.zip.dll
20:38:55.0616 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1466.zip.dll - ok
20:38:55.0616 5328 [ 012DF358CEBAA23ACB26D82077820817 ] C:\WINDOWS\system32\lpk.dll
20:38:55.0616 5328 C:\WINDOWS\system32\lpk.dll - ok
20:38:55.0616 5328 [ 75BF8242B6877EAE8770ADC9AB7A81D0 ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1486.zip.dll
20:38:55.0616 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1486.zip.dll - ok
20:38:55.0616 5328 [ 717ED6008D1D99F3DC66AC21CAB37CBE ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1487.zip.dll
20:38:55.0616 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1487.zip.dll - ok
20:38:55.0632 5328 [ 6CD38336E84ACE79098B3F86DDB9221D ] D:\Acrobat 9.0\Acrobat\CoolType.dll
20:38:55.0632 5328 D:\Acrobat 9.0\Acrobat\CoolType.dll - ok
20:38:55.0632 5328 [ 5318B77DBE130B46963C9232AC3832E7 ] C:\WINDOWS\system32\ZoneLabs\lib\oem_1488.zip.dll
20:38:55.0632 5328 C:\WINDOWS\system32\ZoneLabs\lib\oem_1488.zip.dll - ok
20:38:55.0632 5328 [ 315EEEFDFA7F996CFAD3B6FD103300C0 ] C:\WINDOWS\system32\ZoneLabs\lib\Overview.zip.dll
20:38:55.0632 5328 C:\WINDOWS\system32\ZoneLabs\lib\Overview.zip.dll - ok
20:38:55.0647 5328 [ 56FF2D47D9F0E776431B40E4F76A4A68 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
20:38:55.0647 5328 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
20:38:55.0647 5328 [ F76AD41E9E32F792D8E9282A4B9A1946 ] C:\WINDOWS\system32\ZoneLabs\lib\TrayTest.zip.dll
20:38:55.0647 5328 C:\WINDOWS\system32\ZoneLabs\lib\TrayTest.zip.dll - ok
20:38:55.0647 5328 [ E459EA4226354E3EB10D008A1D4C125A ] C:\WINDOWS\system32\ZoneLabs\lib\UpdateUI.zip.dll
20:38:55.0647 5328 C:\WINDOWS\system32\ZoneLabs\lib\UpdateUI.zip.dll - ok
20:38:55.0647 5328 [ 269704CB0D02CC25B6C4220B969CD490 ] C:\WINDOWS\system32\ZoneLabs\lib\ZAlert.zip.dll
20:38:55.0647 5328 C:\WINDOWS\system32\ZoneLabs\lib\ZAlert.zip.dll - ok
20:38:55.0663 5328 [ 38B8C3BCE08D8E4E456B2E6E733FB793 ] C:\WINDOWS\system32\ZoneLabs\lib\zfde.zip.dll
20:38:55.0663 5328 C:\WINDOWS\system32\ZoneLabs\lib\zfde.zip.dll - ok
20:38:55.0663 5328 [ 2827B2342A164801A112DAED30A0700F ] C:\WINDOWS\system32\ZoneLabs\lib\zmenu.zip.dll
20:38:55.0663 5328 C:\WINDOWS\system32\ZoneLabs\lib\zmenu.zip.dll - ok
20:38:55.0663 5328 [ C0AA6E3A39B0BCFBB982E599E24337A7 ] D:\Acrobat 9.0\Acrobat\AXE8SharedExpat.dll
20:38:55.0663 5328 D:\Acrobat 9.0\Acrobat\AXE8SharedExpat.dll - ok
20:38:55.0678 5328 [ 10A3BE228F8C14BE1E4FD716336E4889 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
20:38:55.0678 5328 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
20:38:55.0678 5328 [ 5DD0CE534C76DAF872E758234928296C ] D:\Acrobat 9.0\Acrobat\ARE.dll
20:38:55.0678 5328 D:\Acrobat 9.0\Acrobat\ARE.dll - ok
20:38:55.0678 5328 [ AF1449AC1D79D37C7026C1D8912DDA8E ] C:\WINDOWS\system32\pnrpnsp.dll
20:38:55.0678 5328 C:\WINDOWS\system32\pnrpnsp.dll - ok
20:38:55.0678 5328 [ 77DE1F81666A4766BFED712DC7232F4E ] C:\WINDOWS\system32\PresentationNative_v0300.dll
20:38:55.0678 5328 C:\WINDOWS\system32\PresentationNative_v0300.dll - ok
20:38:55.0694 5328 [ 85D2A186AFD93A318935791421EFC605 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
20:38:55.0694 5328 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
20:38:55.0694 5328 [ 0B80519443ECFA16BBA6CDBA50B3E426 ] C:\WINDOWS\system32\ZoneLabs\lib\zpy.zip.dll
20:38:55.0694 5328 C:\WINDOWS\system32\ZoneLabs\lib\zpy.zip.dll - ok
20:38:55.0694 5328 [ D5C2245C6CCB9A74B4168C4D7AC40A7A ] C:\Program Files\Memeo\AutoBackup\Tanagra.Interop.dll
20:38:55.0694 5328 C:\Program Files\Memeo\AutoBackup\Tanagra.Interop.dll - ok
20:38:55.0710 5328 [ D40922154ACA3C19180D031D85CA4DA9 ] C:\WINDOWS\system32\ZoneLabs\lib\zsys.zip.dll
20:38:55.0710 5328 C:\WINDOWS\system32\ZoneLabs\lib\zsys.zip.dll - ok
20:38:55.0710 5328 [ 13D719523AD7123DACCEB63BE7FBBB75 ] C:\WINDOWS\system32\ZoneLabs\lib\zui.zip.dll
20:38:55.0710 5328 C:\WINDOWS\system32\ZoneLabs\lib\zui.zip.dll - ok
20:38:55.0710 5328 [ 5F63E2B2A72E1E6448123E0920D31530 ] C:\WINDOWS\system32\windowscodecs.dll
20:38:55.0710 5328 C:\WINDOWS\system32\windowscodecs.dll - ok
20:38:55.0710 5328 [ EB2D2E05E471208CD651DDCDF77904BF ] C:\WINDOWS\system32\windowscodecsext.dll
20:38:55.0710 5328 C:\WINDOWS\system32\windowscodecsext.dll - ok
20:38:55.0725 5328 [ 46C55935FA730144449C884A472827E0 ] C:\WINDOWS\system32\wshbth.dll
20:38:55.0725 5328 C:\WINDOWS\system32\wshbth.dll - ok
20:38:55.0725 5328 [ D1E18F4AE94FFEC7270BE0A10C0B295E ] C:\WINDOWS\system32\xmllite.dll
20:38:55.0725 5328 C:\WINDOWS\system32\xmllite.dll - ok
20:38:55.0725 5328 [ F9CD4E5CAA8B88784DDE728337652B39 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll
20:38:55.0725 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\1033\cscompui.dll - ok
20:38:55.0741 5328 [ 30B5A2254561E21CCC7BA21F80165D0B ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\alink.dll
20:38:55.0741 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
20:38:55.0741 5328 [ 98B17BDA1D0BEA2FC8313DB218C0139F ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
20:38:55.0741 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
20:38:55.0741 5328 [ 3CA5B34303C2607814DD842F7B32F184 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll
20:38:55.0741 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll - ok
20:38:55.0741 5328 [ E6F0AA81026A73BE44BAA7E743CAFA6D ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll
20:38:55.0741 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.dll - ok
20:38:55.0757 5328 [ FC94D575B91692432A1400F569A0F98B ] C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll
20:38:55.0757 5328 C:\Program Files\ATI Technologies\ATI.ACE\ATICCCom.dll - ok
20:38:55.0757 5328 [ 39416BAB72B6D7B72F72B681CE78505A ] C:\Program Files\Common Files\SupportSoft\bin\tgctlsr.dll
20:38:55.0757 5328 C:\Program Files\Common Files\SupportSoft\bin\tgctlsr.dll - ok
20:38:55.0757 5328 [ 71652EC3797708BC7D86674E4F26EC15 ] C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll
20:38:55.0757 5328 C:\Program Files\ATI Technologies\ATI.ACE\AEM.Foundation.dll - ok
20:38:55.0757 5328 [ 2E8D91755727839CB2B27F3036532204 ] C:\WINDOWS\system32\ZoneLabs\lib\pyd\zpui.pyd
20:38:55.0757 5328 C:\WINDOWS\system32\ZoneLabs\lib\pyd\zpui.pyd - ok
20:38:55.0772 5328 [ 703C3BE2C306BBAB49D231504DE6E7EF ] C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll
20:38:55.0772 5328 C:\WINDOWS\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
20:38:55.0772 5328 [ A340CD71EB535A3DD751B5F28723E50C ] C:\WINDOWS\system32\ddraw.dll
20:38:55.0772 5328 C:\WINDOWS\system32\ddraw.dll - ok
20:38:55.0772 5328 [ 99CDA7006585BBCF9CC7E5981E4B3E00 ] C:\WINDOWS\system32\ZoneLabs\lib\pyd\_ctypes.pyd
20:38:55.0772 5328 C:\WINDOWS\system32\ZoneLabs\lib\pyd\_ctypes.pyd - ok
20:38:55.0788 5328 [ 0C9B408435DDC6BAAFC85441310CE1F4 ] D:\Acrobat 9.0\Acrobat\Adist.dll
20:38:55.0788 5328 D:\Acrobat 9.0\Acrobat\Adist.dll - ok
20:38:55.0788 5328 [ 623746381D9B64450E495705E5A90D8E ] C:\Program Files\Common Files\SupportSoft\bin\tgctlpw.dll
20:38:55.0788 5328 C:\Program Files\Common Files\SupportSoft\bin\tgctlpw.dll - ok
20:38:55.0788 5328 [ 1480ED1F55FD5F3EAA8447241308E3E7 ] C:\Program Files\Memeo\AutoBackup\InstantBackup.exe
20:38:55.0788 5328 C:\Program Files\Memeo\AutoBackup\InstantBackup.exe - ok
20:38:55.0788 5328 [ 3AF208740915CDEA8AEA3FB7B4D824FB ] C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_e00766da\System.Drawing.dll
20:38:55.0788 5328 C:\WINDOWS\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_e00766da\System.Drawing.dll - ok
20:38:55.0803 5328 [ D8B91D94ECB123862B390FDE3250D3BB ] C:\WINDOWS\system32\dciman32.dll
20:38:55.0803 5328 C:\WINDOWS\system32\dciman32.dll - ok
20:38:55.0803 5328 [ 0EC5E81C6DA21289DF071AD7D9CFDC0F ] D:\Acrobat 9.0\Acrobat\adistres.dll
20:38:55.0803 5328 D:\Acrobat 9.0\Acrobat\adistres.dll - ok
20:38:55.0803 5328 [ 436F6CBF482981A18290CD126252F814 ] C:\Program Files\Memeo\AutoBackup\MemeoUpdater.exe
20:38:55.0803 5328 C:\Program Files\Memeo\AutoBackup\MemeoUpdater.exe - ok
20:38:55.0819 5328 [ F85CB596820E9CC90A408A3F4F7FA2FB ] C:\WINDOWS\system32\ZoneLabs\lib\pyd\pyexpat.pyd
20:38:55.0819 5328 C:\WINDOWS\system32\ZoneLabs\lib\pyd\pyexpat.pyd - ok
20:38:55.0819 5328 [ DC7FB9C4D92A9B1C7B94B4D46DD51435 ] C:\WINDOWS\system32\vsmonapi.dll
20:38:55.0819 5328 C:\WINDOWS\system32\vsmonapi.dll - ok
20:38:55.0819 5328 [ DF07C23611E182BBE1DC94D2CC41B39F ] C:\Program Files\Memeo\AutoBackup\Memeo.Client.dll
20:38:55.0819 5328 C:\Program Files\Memeo\AutoBackup\Memeo.Client.dll - ok
20:38:55.0819 5328 [ ECF7A68F841E6B44FD943788146798CA ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
20:38:55.0819 5328 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
20:38:55.0835 5328 [ C8D28F8B498CADBB9445AC4545BD41B7 ] C:\Program Files\Mozilla Firefox\firefox.exe
20:38:55.0835 5328 C:\Program Files\Mozilla Firefox\firefox.exe - ok
20:38:55.0835 5328 [ 203D5ECB5CCDA683053CDA42DFF03573 ] C:\WINDOWS\system32\netfxperf.dll
20:38:55.0835 5328 C:\WINDOWS\system32\netfxperf.dll - ok
20:38:55.0835 5328 [ 257147843B66B67CB72AE8197DD479CD ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll
20:38:55.0835 5328 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll - ok
20:38:55.0850 5328 [ 44DE39CB56D1919346C09C92A4B57C69 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
20:38:55.0850 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
20:38:55.0850 5328 [ D1F4FF96FAD977645AFA6F4FD980A8F8 ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.HelperAgentAdapter.dll
20:38:55.0850 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.HelperAgentAdapter.dll - ok
20:38:55.0850 5328 [ F3CD3269896D64ECAEA4CA34BCEAC381 ] C:\Program Files\Alwil Software\Avast5\snxhk.dll
20:38:55.0850 5328 C:\Program Files\Alwil Software\Avast5\snxhk.dll - ok
20:38:55.0850 5328 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Mozilla Firefox\msvcr100.dll
20:38:55.0850 5328 C:\Program Files\Mozilla Firefox\msvcr100.dll - ok
20:38:55.0866 5328 [ E92785026245126DA5563287FBAB3923 ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.NasListener.dll
20:38:55.0866 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.NasListener.dll - ok
20:38:55.0866 5328 [ DF3934B7B9AA03F62DDA2485452CC28E ] C:\Program Files\Mozilla Firefox\mozglue.dll
20:38:55.0866 5328 C:\Program Files\Mozilla Firefox\mozglue.dll - ok
20:38:55.0866 5328 [ DC3078BA1B58562416C843582A42284C ] C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll
20:38:55.0866 5328 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll - ok
20:38:55.0866 5328 [ C822C8B2C4927CBBABF45D5084903A54 ] C:\Program Files\Mozilla Firefox\nss3.dll
20:38:55.0866 5328 C:\Program Files\Mozilla Firefox\nss3.dll - ok
20:38:55.0882 5328 [ 08175580F349708D7B9A55CA729F9A55 ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Progress.dll
20:38:55.0882 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Progress.dll - ok
20:38:55.0882 5328 [ 7B8585831EA0F3D17AB76917EBB9F110 ] C:\Program Files\Zone Labs\ZoneAlarm\alert.zap
20:38:55.0882 5328 C:\Program Files\Zone Labs\ZoneAlarm\alert.zap - ok
20:38:55.0882 5328 [ 03E9314004F504A14A61C3D364B62F66 ] C:\Program Files\Mozilla Firefox\msvcp100.dll
20:38:55.0882 5328 C:\Program Files\Mozilla Firefox\msvcp100.dll - ok
20:38:55.0882 5328 [ E5199554C3168A27419087F532AD5EDB ] C:\Program Files\Mozilla Firefox\mozjs.dll
20:38:55.0882 5328 C:\Program Files\Mozilla Firefox\mozjs.dll - ok
20:38:55.0897 5328 [ 32CDEDD15E2D1A557CD54552AE78FF86 ] C:\Program Files\iPod\bin\iPodService.exe
20:38:55.0897 5328 C:\Program Files\iPod\bin\iPodService.exe - ok
20:38:55.0897 5328 [ ADC90EBBE2823C23A0406ACD3D6E9312 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
20:38:55.0897 5328 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL - ok
20:38:55.0897 5328 [ 78D7D29F8EF2750A97A03049CB59E973 ] C:\Program Files\Memeo\AutoBackup\Tanagra.DataClad.dll
20:38:55.0897 5328 C:\Program Files\Memeo\AutoBackup\Tanagra.DataClad.dll - ok
20:38:55.0913 5328 [ F1430F5D20F4BB71A003209C3DB3ADDF ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
20:38:55.0913 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll - ok
20:38:55.0913 5328 [ 0645AAAD99C516182EA6CBAD0D3238EC ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
20:38:55.0913 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll - ok
20:38:55.0913 5328 [ 7A45369411D5EAFE098B9EACBBF68196 ] C:\Program Files\Zone Labs\ZoneAlarm\cam.zap
20:38:55.0913 5328 C:\Program Files\Zone Labs\ZoneAlarm\cam.zap - ok
20:38:55.0913 5328 [ 3DBAA8D7C333BA7FEB5AB2BF7A8EF65C ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
20:38:55.0913 5328 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
20:38:55.0928 5328 [ 0CFA8E4E0557BDC93484F3B679A3F810 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
20:38:55.0928 5328 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
20:38:55.0928 5328 [ 8F55DD5DF1CD0471A9F7CB9AAE4B9E3B ] C:\Program Files\Zone Labs\ZoneAlarm\email.zap
20:38:55.0928 5328 C:\Program Files\Zone Labs\ZoneAlarm\email.zap - ok
20:38:55.0928 5328 [ 58D576C7862CD9C9079F5B1C22B5DD88 ] C:\Program Files\Zone Labs\ZoneAlarm\filter.zap
20:38:55.0928 5328 C:\Program Files\Zone Labs\ZoneAlarm\filter.zap - ok
20:38:55.0944 5328 [ 43E4758953F454090CAD65C303796ED5 ] C:\WINDOWS\system32\query.dll
20:38:55.0944 5328 C:\WINDOWS\system32\query.dll - ok
20:38:55.0944 5328 [ 860FAD57B4668A9F5F350A9D5444AE89 ] C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
20:38:55.0944 5328 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
20:38:55.0944 5328 [ 3FC764F87954CB2C32C779CE20BB9D73 ] C:\Program Files\Zone Labs\ZoneAlarm\firewall.zap
20:38:55.0944 5328 C:\Program Files\Zone Labs\ZoneAlarm\firewall.zap - ok
20:38:55.0944 5328 [ C613B4E002E606EDF9D2764D7C1945CE ] C:\Program Files\Zone Labs\ZoneAlarm\idlock.zap
20:38:55.0944 5328 C:\Program Files\Zone Labs\ZoneAlarm\idlock.zap - ok
20:38:55.0960 5328 [ E202B6E55B42A709886481F0DA53212D ] C:\Program Files\Alwil Software\Avast5\aswJsFlt.dll
20:38:55.0960 5328 C:\Program Files\Alwil Software\Avast5\aswJsFlt.dll - ok
20:38:55.0960 5328 [ DC426A365577F27187F99EB506ECD5D1 ] C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
20:38:55.0960 5328 C:\WINDOWS\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - ok
20:38:55.0960 5328 [ 3ACB3C6B41892484311BD83A9A97DF07 ] C:\Program Files\Mozilla Firefox\mozalloc.dll
20:38:55.0960 5328 C:\Program Files\Mozilla Firefox\mozalloc.dll - ok
20:38:55.0975 5328 [ BE98B0EAFBAA8CB136DB829F6323AF58 ] C:\Program Files\Zone Labs\ZoneAlarm\programs.zap
20:38:55.0975 5328 C:\Program Files\Zone Labs\ZoneAlarm\programs.zap - ok
20:38:55.0975 5328 [ 1AAB99A981D1986F40C94AC00418568E ] C:\Program Files\Mozilla Firefox\gkmedias.dll
20:38:55.0975 5328 C:\Program Files\Mozilla Firefox\gkmedias.dll - ok
20:38:55.0975 5328 [ 015694F89B79E49F7FEB7CEDBB27A131 ] C:\Program Files\Zone Labs\ZoneAlarm\scan.zap
20:38:55.0975 5328 C:\Program Files\Zone Labs\ZoneAlarm\scan.zap - ok
20:38:55.0991 5328 [ 6A3C3FF4437675DA77EAAB64FC235F58 ] C:\PROGRA~1\COMMON~1\System\MSMAPI\1033\MSMAPI32.DLL
20:38:55.0991 5328 C:\PROGRA~1\COMMON~1\System\MSMAPI\1033\MSMAPI32.DLL - ok
20:38:55.0991 5328 [ 811D52DEEF4EF761BDFE961FED4DC5CC ] C:\Program Files\Seagate\Seagate Dashboard\SeagateAdapter.dll
20:38:55.0991 5328 C:\Program Files\Seagate\Seagate Dashboard\SeagateAdapter.dll - ok
20:38:55.0991 5328 [ 277687786A5323E522C63F07D8164B32 ] C:\Program Files\Seagate\Seagate Dashboard\STXDEVIF.dll
20:38:55.0991 5328 C:\Program Files\Seagate\Seagate Dashboard\STXDEVIF.dll - ok
20:38:55.0991 5328 [ 99F6F8C242A9D70E261DC8FB81E88221 ] C:\Program Files\Memeo\AutoBackup\Memeo.Client.UI.dll
20:38:55.0991 5328 C:\Program Files\Memeo\AutoBackup\Memeo.Client.UI.dll - ok
20:38:56.0007 5328 [ 7B3A934E7B16483F4A044AA67BC233DE ] C:\Program Files\Zone Labs\ZoneAlarm\security.zap
20:38:56.0007 5328 C:\Program Files\Zone Labs\ZoneAlarm\security.zap - ok
20:38:56.0007 5328 [ 7A7E20FBC4CC3FC28EFA2CF05706C9F8 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll
20:38:56.0007 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Shared.dll - ok
20:38:56.0007 5328 [ 5B8B352435F3E457B8C67B6D02888CA5 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSO.DLL
20:38:56.0007 5328 C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSO.DLL - ok
20:38:56.0022 5328 [ 785AB89038DE4E22E7E92D301AA12FD7 ] C:\Program Files\Zone Labs\ZoneAlarm\websecurity.zap
20:38:56.0022 5328 C:\Program Files\Zone Labs\ZoneAlarm\websecurity.zap - ok
20:38:56.0022 5328 [ 1B280B61095C427493849BE560679F47 ] C:\Program Files\Memeo\AutoBackup\Memeo.Client.DriveDetection.dll
20:38:56.0022 5328 C:\Program Files\Memeo\AutoBackup\Memeo.Client.DriveDetection.dll - ok
20:38:56.0022 5328 [ 0A74FC498E586A3A8E20DB589D1FA895 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Runtime.dll
20:38:56.0022 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Runtime.dll - ok
20:38:56.0022 5328 [ 5F0B7C746935E585BB9ABD0DF20DF600 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.Shared.dll
20:38:56.0022 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Runtime.Shared.dll - ok
20:38:56.0038 5328 [ 32CE7014A0E11A2D04DF69CA3BA8D6C8 ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Foundation.dll
20:38:56.0038 5328 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Foundation.dll - ok
20:38:56.0038 5328 [ 8744C65FCCD56310D0FDBF3ADBF39C4D ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0601.dll
20:38:56.0038 5328 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0601.dll - ok
20:38:56.0038 5328 [ 89542A319D18140413D719615B5433B5 ] C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
20:38:56.0038 5328 C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
20:38:56.0053 5328 [ B51D29A14B4EDEB4ED0AD864A3FF9556 ] C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll
20:38:56.0053 5328 C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.DisplaysManager.Shared.dll - ok
20:38:56.0053 5328 [ 19B50BEC9935BB66C61E6EC36D17BE23 ] C:\WINDOWS\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll
20:38:56.0053 5328 C:\WINDOWS\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll - ok
20:38:56.0053 5328 [ AD1EA59C74D873AC22FB839B8E3E97F7 ] C:\Program Files\Spybot - Search & Destroy\advcheck.dll
20:38:56.0053 5328 C:\Program Files\Spybot - Search & Destroy\advcheck.dll - ok
20:38:56.0053 5328 [ 9B1B8AE8DD2AAA9F7F384FAAC62D8BB5 ] C:\WINDOWS\system32\ATIDEMGR.dll
20:38:56.0053 5328 C:\WINDOWS\system32\ATIDEMGR.dll - ok
20:38:56.0069 5328 [ 7A9DFD6D5E2EFCA43AC1F231DF2E1D96 ] C:\WINDOWS\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll
20:38:56.0069 5328 C:\WINDOWS\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll - ok
20:38:56.0069 5328 [ 66FC56A42D8F49B9CFE6861D92053ACC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\cbee94ec6a0fe649e3b4643cea6e1259\Accessibility.ni.dll
20:38:56.0069 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\cbee94ec6a0fe649e3b4643cea6e1259\Accessibility.ni.dll - ok
20:38:56.0069 5328 [ 239936B3AB3E943F489AC6568A55B045 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\3283b562a391db4f3f6dcee754de15a8\CustomMarshalers.ni.dll
20:38:56.0069 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\CustomMarshalers\3283b562a391db4f3f6dcee754de15a8\CustomMarshalers.ni.dll - ok
20:38:56.0085 5328 [ FDEB61F4752EE933AF6E663256B0C1C6 ] C:\Program Files\Mozilla Firefox\xul.dll
20:38:56.0085 5328 C:\Program Files\Mozilla Firefox\xul.dll - ok
20:38:56.0085 5328 [ 913AF88B0291D7D3A0FDC92F5E1CC7D7 ] C:\WINDOWS\system32\perfnet.dll
20:38:56.0085 5328 C:\WINDOWS\system32\perfnet.dll - ok
20:38:56.0085 5328 [ 1E2FF2DAB11E82E758FD83DF83F7C600 ] C:\WINDOWS\system32\ZoneLabs\ffapi.dll
20:38:56.0085 5328 C:\WINDOWS\system32\ZoneLabs\ffapi.dll - ok
20:38:56.0085 5328 [ 99EC655E7D79FF515991FF322F30CB70 ] C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll
20:38:56.0085 5328 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll - ok
20:38:56.0100 5328 [ 13BE601DD9AF4B726C8EF1DC337271CC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\e143370f0583abe015d8e3d2d536185e\System.Web.ni.dll
20:38:56.0100 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\e143370f0583abe015d8e3d2d536185e\System.Web.ni.dll - ok
20:38:56.0100 5328 [ 1793CC660605F63B14FB96C7707F75BA ] C:\WINDOWS\system32\perfproc.dll
20:38:56.0100 5328 C:\WINDOWS\system32\perfproc.dll - ok
20:38:56.0100 5328 [ 95AB5BAE2D1B60DD7B0139DA75C0A232 ] C:\Program Files\Verizon\IHA_MessageCenter\Bin\Interop.IWshRuntimeLibrary.dll
20:38:56.0100 5328 C:\Program Files\Verizon\IHA_MessageCenter\Bin\Interop.IWshRuntimeLibrary.dll - ok
20:38:56.0116 5328 [ B4459D13473D07FCB43365C02732DE16 ] C:\WINDOWS\system32\pschdprf.dll
20:38:56.0116 5328 C:\WINDOWS\system32\pschdprf.dll - ok
20:38:56.0116 5328 [ 1F3A82333046F4B97B2BB148ABF38D54 ] C:\WINDOWS\system32\traffic.dll
20:38:56.0116 5328 C:\WINDOWS\system32\traffic.dll - ok
20:38:56.0116 5328 [ B0B0D7905AC71BC278F17F455E182611 ] C:\WINDOWS\system32\rasctrs.dll
20:38:56.0116 5328 C:\WINDOWS\system32\rasctrs.dll - ok
20:38:56.0116 5328 [ 6472932F2B6084EA1FB3F7F9493AC640 ] C:\WINDOWS\system32\wshom.ocx
20:38:56.0116 5328 C:\WINDOWS\system32\wshom.ocx - ok
20:38:56.0132 5328 [ F9DD799E07ED5028DB2F1FFEA72C9357 ] C:\WINDOWS\system32\rsvpperf.dll
20:38:56.0132 5328 C:\WINDOWS\system32\rsvpperf.dll - ok
20:38:56.0132 5328 [ F0A0EBF086597E645BC14B0D98F8BA58 ] C:\WINDOWS\system32\scrrun.dll
20:38:56.0132 5328 C:\WINDOWS\system32\scrrun.dll - ok
20:38:56.0132 5328 [ 17170EF2E1B181CBF056A894362A4B69 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\2e26794770e6d33cf79a7f8daa4a48c3\PresentationCore.ni.dll
20:38:56.0132 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\2e26794770e6d33cf79a7f8daa4a48c3\PresentationCore.ni.dll - ok
20:38:56.0132 5328 [ 6951B89B4F591AA694048A6CD0E5224A ] C:\WINDOWS\system32\tapiperf.dll
20:38:56.0132 5328 C:\WINDOWS\system32\tapiperf.dll - ok
20:38:56.0147 5328 [ DBE2B62353660ECCA0D75EA307A717E9 ] C:\WINDOWS\system32\perfctrs.dll
20:38:56.0147 5328 C:\WINDOWS\system32\perfctrs.dll - ok
20:38:56.0147 5328 [ 4BB30A272DF1E89EC54151041D97B0EA ] C:\Program Files\Memeo\AutoBackup\Interop.eWebControl.dll
20:38:56.0147 5328 C:\Program Files\Memeo\AutoBackup\Interop.eWebControl.dll - ok
20:38:56.0147 5328 [ 7EFD2114EAD1AC72342610D7192BFB32 ] C:\WINDOWS\system32\perfts.dll
20:38:56.0147 5328 C:\WINDOWS\system32\perfts.dll - ok
20:38:56.0163 5328 [ 9D39D9E07C180127252E176EC2B41487 ] C:\WINDOWS\system32\utildll.dll
20:38:56.0163 5328 C:\WINDOWS\system32\utildll.dll - ok
20:38:56.0163 5328 [ 5EED26992767EEB0988205A3ADB30F4B ] C:\Program Files\Common Files\Memeo\eWebControl365.dll
20:38:56.0163 5328 C:\Program Files\Common Files\Memeo\eWebControl365.dll - ok
20:38:56.0163 5328 [ 75EE1625AD8B52C5FAA1CCB1B82FB750 ] C:\WINDOWS\system32\wbem\wmiaprpl.dll
20:38:56.0163 5328 C:\WINDOWS\system32\wbem\wmiaprpl.dll - ok
20:38:56.0163 5328 [ 6358C181BF021970A897C1FAB0ECF5D2 ] C:\WINDOWS\system32\loadperf.dll
20:38:56.0163 5328 C:\WINDOWS\system32\loadperf.dll - ok
20:38:56.0178 5328 [ B0A6ABC932AFC8A2E719AC74883F3939 ] C:\Program Files\Memeo\AutoBackup\Tanagra.Third-party.Security.dll
20:38:56.0178 5328 C:\Program Files\Memeo\AutoBackup\Tanagra.Third-party.Security.dll - ok
20:38:56.0178 5328 [ E03DF04690FE5BA99CA64F1C68088D5E ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.PluginCore.dll
20:38:56.0178 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.PluginCore.dll - ok
20:38:56.0178 5328 [ E0673F1106E62A68D2257E376079F821 ] C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:38:56.0178 5328 C:\WINDOWS\system32\wbem\wmiapsrv.exe - ok
20:38:56.0194 5328 [ 7C54ED7EA775DD1F699A34B2E1193F90 ] C:\Program Files\Memeo\AutoBackup\Tanagra.DataClad.DataAccess.dll
20:38:56.0194 5328 C:\Program Files\Memeo\AutoBackup\Tanagra.DataClad.DataAccess.dll - ok
20:38:56.0194 5328 [ EB7494ECFE01B70B83E781EEB8F88C8A ] C:\WINDOWS\system32\wbem\wmiapres.dll
20:38:56.0194 5328 C:\WINDOWS\system32\wbem\wmiapres.dll - ok
20:38:56.0194 5328 [ 9EEFE69139FDBB4A3C327630F8EB993A ] C:\WINDOWS\system32\wlanapi.dll
20:38:56.0194 5328 C:\WINDOWS\system32\wlanapi.dll - ok
20:38:56.0194 5328 [ CBEA6456DEB8A9C3B0C53B66D350D543 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.AddComputersPlugin.dll
20:38:56.0194 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.AddComputersPlugin.dll - ok
20:38:56.0210 5328 [ 50AF3E1B3A0744F7750B9BCD3C80AA52 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\8462c03b4f10c4624feb95790d6d1e30\System.Data.ni.dll
20:38:56.0210 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Data\8462c03b4f10c4624feb95790d6d1e30\System.Data.ni.dll - ok
20:38:56.0210 5328 [ 34781A7E9683F42C4B2FE6F09456568C ] C:\WINDOWS\system32\ipconfig.exe
20:38:56.0210 5328 C:\WINDOWS\system32\ipconfig.exe - ok
20:38:56.0210 5328 [ E93FDA17DD68091979B3B56831CD07D7 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.AddUserPlugin.dll
20:38:56.0210 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.AddUserPlugin.dll - ok
20:38:56.0210 5328 [ BAC176E3A76477813A19C78B9499B0FA ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Runtime.dll
20:38:56.0210 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Runtime.dll - ok
20:38:56.0225 5328 [ E84FE4D398705276D1E87EDD90E1D179 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.BackupPlugin.dll
20:38:56.0225 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.BackupPlugin.dll - ok
20:38:56.0225 5328 [ 1D3A2646A0106F88A66E83A5B9DB82DB ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.BackupPremiumPlugin.dll
20:38:56.0225 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.BackupPremiumPlugin.dll - ok
20:38:56.0225 5328 [ 095959AE2B6645A78EDF37C69E1E161A ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.FolderViewPlugin.dll
20:38:56.0225 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.FolderViewPlugin.dll - ok
20:38:56.0241 5328 [ E0F30C6E78DA1909BEA87BE163A022FC ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.LoadContentPlugin.dll
20:38:56.0241 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.LoadContentPlugin.dll - ok
20:38:56.0241 5328 [ 16F96C1496CBD0965285AB19A9271D02 ] C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
20:38:56.0241 5328 C:\WINDOWS\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - ok
20:38:56.0241 5328 [ 33F9B0E02D9D93F920605D02FB53F3FD ] C:\WINDOWS\system32\arp.exe
20:38:56.0241 5328 C:\WINDOWS\system32\arp.exe - ok
20:38:56.0241 5328 [ A32501FD4452F30235A3B82C99BC3B94 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Shared.dll
20:38:56.0241 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Shared.dll - ok
20:38:56.0257 5328 [ 9173210A0CA1888F8EFFBB4AFE58F916 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.RebitPlugin.dll
20:38:56.0257 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.RebitPlugin.dll - ok
20:38:56.0257 5328 [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
20:38:56.0257 5328 C:\WINDOWS\system32\snmpapi.dll - ok
20:38:56.0257 5328 [ 63E8D944AFBEEBB243F25C4ED07E74C5 ] C:\WINDOWS\system32\inetmib1.dll
20:38:56.0257 5328 C:\WINDOWS\system32\inetmib1.dll - ok
20:38:56.0272 5328 [ C3CEF3EB9B0A1DD38E7CDF2208FF1F91 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll
20:38:56.0272 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Runtime.dll - ok
20:38:56.0272 5328 [ D3D9693161A8EEF2102B032D5669EA23 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Shared.dll
20:38:56.0272 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Shared.dll - ok
20:38:56.0272 5328 [ B06C6F766FA2F631BA1FA3BE6805FB97 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagatePreferencesPlugin.dll
20:38:56.0272 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagatePreferencesPlugin.dll - ok
20:38:56.0272 5328 [ 68462578C4785EB5FC19E6F3A341DAD8 ] C:\Program Files\Verizon\IHA_MessageCenter\Bin\Interop.NetFwTypeLib.dll
20:38:56.0272 5328 C:\Program Files\Verizon\IHA_MessageCenter\Bin\Interop.NetFwTypeLib.dll - ok
20:38:56.0288 5328 [ 61F37E2C99A48ADA6D3F86D3396F3890 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Runtime.dll
20:38:56.0288 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Runtime.dll - ok
20:38:56.0288 5328 [ 1649E7247D5644CC058ED101C917DC62 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Shared.dll
20:38:56.0288 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Shared.dll - ok
20:38:56.0288 5328 [ 2C8A74FF77190E87F732C43795D39410 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagateSharePlugin.dll
20:38:56.0288 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagateSharePlugin.dll - ok
20:38:56.0303 5328 [ 64C545B2CF34F7F43FD6717785EB8901 ] C:\Program Files\Verizon\IHA_MessageCenter\Bin\Interop.NATUPNPLib.dll
20:38:56.0303 5328 C:\Program Files\Verizon\IHA_MessageCenter\Bin\Interop.NATUPNPLib.dll - ok
20:38:56.0303 5328 [ 54355C3A8DF067600193A5B4913A1F3F ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Runtime.dll
20:38:56.0303 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Runtime.dll - ok
20:38:56.0303 5328 [ CED3DE6514D23ACA10A70111150C3D4E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll
20:38:56.0303 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Shared.dll - ok
20:38:56.0303 5328 [ 579E6061DCFFDFA298896782D74D618F ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagateSharePlusPlugin.dll
20:38:56.0303 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SeagateSharePlusPlugin.dll - ok
20:38:56.0319 5328 [ 2F543FD2F31E0DE8B0972784DFB8AED3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
20:38:56.0319 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Runtime.dll - ok
20:38:56.0319 5328 [ 7AAA9A11244F14BE39C68C0F1A5878A0 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Runtime.dll
20:38:56.0319 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Runtime.dll - ok
20:38:56.0319 5328 [ 51CDBA64FCB6F018BD72E588A22E2AA2 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
20:38:56.0319 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll - ok
20:38:56.0335 5328 [ 52421409B46D9E9AA30374F3BD7853C6 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SendPlugin.dll
20:38:56.0335 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SendPlugin.dll - ok
20:38:56.0335 5328 [ 94FF632D9867E739A676575DDDEFEC77 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
20:38:56.0335 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll - ok
20:38:56.0335 5328 [ 9F4FE873D23AFC083B8FE974746D47D0 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SharePlugin.dll
20:38:56.0335 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SharePlugin.dll - ok
20:38:56.0335 5328 [ 173BD501896478395CDA731955C0549C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Runtime.dll
20:38:56.0335 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Runtime.dll - ok
20:38:56.0350 5328 [ C326B58A26A6E8E564B66762AF14D7A5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Shared.dll
20:38:56.0350 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Shared.dll - ok
20:38:56.0350 5328 [ 489175E37C60FE549DB40AF5C0EE2F56 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Runtime.dll
20:38:56.0350 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Runtime.dll - ok
20:38:56.0350 5328 [ F8BFE6B4745F973A1E60AF81FD6938B4 ] C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SyncPlugin.dll
20:38:56.0350 5328 C:\Program Files\Seagate\Seagate Dashboard\Plugins\Memeo.Dashboard.SyncPlugin.dll - ok
20:38:56.0366 5328 [ 65D39D2F8205F901DC8B1A43735CFD49 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Shared.dll
20:38:56.0366 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Shared.dll - ok
20:38:56.0366 5328 [ 7D9489DFBB76E2279D442D34892F3219 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Runtime.dll
20:38:56.0366 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Runtime.dll - ok
20:38:56.0366 5328 [ 8F64F1DBF00F1921A5D346BCE4842CBE ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Shared.dll
20:38:56.0366 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Shared.dll - ok
20:38:56.0366 5328 [ 535625AE679F3A34FB5C52EA25D409FA ] C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.VideoOverlay.Shared.dll
20:38:56.0366 5328 C:\Program Files\ATI Technologies\ATI.ACE\ACE.Graphics.VideoOverlay.Shared.dll - ok
20:38:56.0382 5328 [ DECE19B00417953C87CEC54878CB8505 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Runtime.dll
20:38:56.0382 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Runtime.dll - ok
20:38:56.0382 5328 [ 041738FDDAB521D7FEDCF3E52428B980 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Runtime.dll
20:38:56.0382 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Runtime.dll - ok
20:38:56.0382 5328 [ BDF109A414DA6BC415F8B13B88E5A18F ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Shared.dll
20:38:56.0382 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Shared.dll - ok
20:38:56.0397 5328 [ 1A95C3BEB38B4F0ACC818306D78BD3B8 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Runtime.dll
20:38:56.0397 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Runtime.dll - ok
20:38:56.0397 5328 [ 2C3D9ADB32AF2E7D90046278FCF794AF ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
20:38:56.0397 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll - ok
20:38:56.0397 5328 [ 7604C29D87E6623A75A442BA20E8465B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
20:38:56.0397 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Shared.dll - ok
20:38:56.0397 5328 [ F773A2C36C28D07075EC60FB2FA41965 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Runtime.dll
20:38:56.0397 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Runtime.dll - ok
20:38:56.0413 5328 [ AC24D702FFB6E20669349EFEE145ED27 ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\HipServAgent.exe
20:38:56.0413 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\HipServAgent.exe - ok
20:38:56.0413 5328 [ 16D3373FE82561C16B7C119686E66A3B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Shared.dll
20:38:56.0413 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Shared.dll - ok
20:38:56.0413 5328 [ 9AF490D2BBA1A44E9894ADBFEE1286AC ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
20:38:56.0413 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll - ok
20:38:56.0428 5328 [ 0267397F18A15C5952C2797C1DFF6D09 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
20:38:56.0428 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Shared.dll - ok
20:38:56.0428 5328 [ 7898CA9A84B986B1A8A5A5D32EC6A816 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Runtime.dll
20:38:56.0428 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Runtime.dll - ok
20:38:56.0428 5328 [ 2E1E7DAFA74D129551C8A1B6CF445428 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Shared.dll
20:38:56.0428 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Shared.dll - ok
20:38:56.0428 5328 [ F6DA604556F653DC0354D015BEC9E40B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
20:38:56.0428 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Runtime.dll - ok
20:38:56.0444 5328 [ 8F3BFD57A5436636264441928CEA0B7C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Shared.dll
20:38:56.0444 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Shared.dll - ok
20:38:56.0444 5328 [ 7DFAF6FB2EF80E3C6760547E1AD4D8C5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.CustomFormats.Graphics.Shared.dll
20:38:56.0444 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.CustomFormats.Graphics.Shared.dll - ok
20:38:56.0444 5328 [ E277C7D0C948ABB1082EB53EE7C89FF3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Runtime.dll
20:38:56.0444 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Runtime.dll - ok
20:38:56.0460 5328 [ 6FAAD8A1E61B00071BE9D8C192D3085B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Shared.dll
20:38:56.0460 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Shared.dll - ok
20:38:56.0460 5328 [ 243B5F4CABA4CF36905DE7E2FC697D9C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Runtime.dll
20:38:56.0460 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Runtime.dll - ok
20:38:56.0460 5328 [ 00B4F58D2F447D40B3DC518C1B05390B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
20:38:56.0460 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Runtime.dll - ok
20:38:56.0460 5328 [ 1730529EF4BAFDE3C1E80F813952C54E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
20:38:56.0460 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll - ok
20:38:56.0475 5328 [ 75BB3C7816650126683817B814E62E4D ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libcurl.dll
20:38:56.0475 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libcurl.dll - ok
20:38:56.0475 5328 [ 638C3D76E6EB86A5C4444459241154E6 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
20:38:56.0475 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Shared.dll - ok
20:38:56.0475 5328 [ 1242CE4B459B1CB8FB223F7D351BB221 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Runtime.dll
20:38:56.0475 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Runtime.dll - ok
20:38:56.0491 5328 [ C114A12269C27694B379151D6140CA3E ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libeay32.dll
20:38:56.0491 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libeay32.dll - ok
20:38:56.0491 5328 [ 25BD09EA63673F2DF45FD05CF5A028CF ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Shared.dll
20:38:56.0491 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Shared.dll - ok
20:38:56.0491 5328 [ F3CAB4F40D53D98F2A55CAFB76ED85AB ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Runtime.dll
20:38:56.0491 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Runtime.dll - ok
20:38:56.0491 5328 [ B4605D6BCE13294CBB614C76E7C8D2AF ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Shared.dll
20:38:56.0491 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Shared.dll - ok
20:38:56.0507 5328 [ 65E5267042C80B5122F187C4A75A2158 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Runtime.dll
20:38:56.0507 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Runtime.dll - ok
20:38:56.0507 5328 [ 22A2B926BC795707A7BCC31921E3E14C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll
20:38:56.0507 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll - ok
20:38:56.0507 5328 [ 3C33B6903EC9749E20875BF87A2AB46C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Shared.dll
20:38:56.0507 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Shared.dll - ok
20:38:56.0507 5328 [ 2C2DABEF1DCCDDD562A4F4BA6F4A6867 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
20:38:56.0507 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll - ok
20:38:56.0522 5328 [ 1896B70686CA3B06C2B0A15F7582BCAD ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll
20:38:56.0522 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Runtime.dll - ok
20:38:56.0522 5328 [ ADFE11634EC2615C33C6FF7A48834900 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Runtime.dll
20:38:56.0522 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Runtime.dll - ok
20:38:56.0522 5328 [ F53D7142A810C8B4CCECE284F0A4ABF5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Shared.dll
20:38:56.0522 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Shared.dll - ok
20:38:56.0538 5328 [ 5B0A6453486A37079FB880566D21E39B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
20:38:56.0538 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll - ok
20:38:56.0538 5328 [ 83ECA7B46A22B6E6328BAF67D3D9BA8B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
20:38:56.0538 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll - ok
20:38:56.0538 5328 [ B1E405D0706B464CD3E064FA770FE4C7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Shared.dll
20:38:56.0538 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Shared.dll - ok
20:38:56.0553 5328 [ 0553D91DDFB2B463A188E02A6967EC1E ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\ssleay32.dll
20:38:56.0553 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\ssleay32.dll - ok
20:38:56.0553 5328 [ 601C6ECF58491E1190E9C2777421A733 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Shared.dll
20:38:56.0553 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Shared.dll - ok
20:38:56.0553 5328 [ B949ABFD3F4BEC77F024D80BDAD44124 ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libupnp.dll
20:38:56.0553 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libupnp.dll - ok
20:38:56.0553 5328 [ B679AA0E8454A5076064140F33BE11F6 ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0600.dll
20:38:56.0553 5328 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0600.dll - ok
20:38:56.0569 5328 [ CCE066EA2F7DB17B6DFF7855ADBAF3EC ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Shared.dll
20:38:56.0569 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Shared.dll - ok
20:38:56.0569 5328 [ CA53294CF43EE60BEAB499408C01FAAF ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\f25e6d2eddfd5fc0bf0b8d0664a4a7d5\PresentationCore.ni.dll
20:38:56.0569 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationCore\f25e6d2eddfd5fc0bf0b8d0664a4a7d5\PresentationCore.ni.dll - ok
20:38:56.0569 5328 [ 209CF6282C9966B2C0519898679614F6 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Shared.dll
20:38:56.0569 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Shared.dll - ok
20:38:56.0585 5328 [ 0AB7D0E87F3843F8104B3670F5A9AF62 ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\pthreadVC2.dll
20:38:56.0585 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\pthreadVC2.dll - ok
20:38:56.0585 5328 [ A87E956BC090F889920C521845A58A05 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
20:38:56.0585 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty.Graphics.Shared.dll - ok
20:38:56.0585 5328 [ A6FEB6CB256EC4FFEEE749938C99C30F ] C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0602.dll
20:38:56.0585 5328 C:\Program Files\ATI Technologies\ATI.ACE\DEM.Graphics.I0602.dll - ok
20:38:56.0585 5328 [ 901CC55FEA600A14E4EBF4205D5F5ACE ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libxml2.dll
20:38:56.0585 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\libxml2.dll - ok
20:38:56.0600 5328 [ BEEADC2EFDF152B8A519ED501D51721B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Shared.dll
20:38:56.0600 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Shared.dll - ok
20:38:56.0600 5328 [ BCF28B5759F243116891E3BE154859AD ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Runtime.dll
20:38:56.0600 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceProperty2.Graphics.Runtime.dll - ok
20:38:56.0600 5328 [ 4C6CBB1931BF9527AB9BEF8BB68531B3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Shared.dll
20:38:56.0600 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Shared.dll - ok
20:38:56.0616 5328 [ 7AE23AEB3AF2CECF7EE793215345E95C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Shared.dll
20:38:56.0616 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Shared.dll - ok
20:38:56.0616 5328 [ E5885921F1C3BA167E55ED06C9121BB3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Shared.dll
20:38:56.0616 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Shared.dll - ok
20:38:56.0616 5328 [ 6596C86F80CBD2CF831383CA7210876D ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
20:38:56.0616 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll - ok
20:38:56.0616 5328 [ D95D875405BA657A6C21BE65ABA589D1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll
20:38:56.0616 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Shared.dll - ok
20:38:56.0632 5328 [ FD1DC6C680299A2ED1EEDCC3EABDA601 ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\iconv.dll
20:38:56.0632 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\iconv.dll - ok
20:38:56.0632 5328 [ C7D4D685A0AF2A09CBC21CB474358595 ] C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\zlib1.dll
20:38:56.0632 5328 C:\Program Files\Seagate\Seagate Dashboard\HipServAgent\zlib1.dll - ok
20:38:56.0632 5328 [ C6F64AE6F9F7DE23EE538D5C80A5C362 ] C:\Program Files\ATI Technologies\ATI.ACE\APM.Foundation.dll
20:38:56.0632 5328 C:\Program Files\ATI Technologies\ATI.ACE\APM.Foundation.dll - ok
20:38:56.0647 5328 [ A2516EF339EF990111A35B17D34C8587 ] C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll
20:38:56.0647 5328 C:\Program Files\Mozilla Firefox\browser\components\browsercomps.dll - ok
20:38:56.0647 5328 [ 621822F2F2BDE521D3FC687B62659B76 ] C:\WINDOWS\system32\mnmdd.dll
20:38:56.0647 5328 C:\WINDOWS\system32\mnmdd.dll - ok
20:38:56.0647 5328 [ A3C0A42C88C7C1E3C65AB2DA3A5E6B0C ] C:\WINDOWS\system32\rdpdd.dll
20:38:56.0647 5328 C:\WINDOWS\system32\rdpdd.dll - ok
20:38:56.0647 5328 [ 5EE0EB53E4AF7236BB30090993BC6EB2 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.AutoRemoval.dll
20:38:56.0647 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.AutoRemoval.dll - ok
20:38:56.0663 5328 [ 40E3694B403892F3297CAA0AED8FD453 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Dashboard.dll
20:38:56.0663 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Dashboard.dll - ok
20:38:56.0663 5328 [ 64B6786CE471A956ED85560A70089F46 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.Clients.dll
20:38:56.0663 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Foundation.Clients.dll - ok
20:38:56.0663 5328 [ A521968F2B77DC1474641BCEE884D40E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Dashboard.Shared.dll
20:38:56.0663 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Component.Dashboard.Shared.dll - ok
20:38:56.0678 5328 [ 63C4FF794A16804FAF26414AC83B6F17 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Local.Dashboard.dll
20:38:56.0678 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Local.Dashboard.dll - ok
20:38:56.0678 5328 [ AAE277269FA129CDC6A1ADED527C5040 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Dashboard.dll
20:38:56.0678 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Dashboard.dll - ok
20:38:56.0678 5328 [ 913ECA453286598EA9EB1B55695F8BF1 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Dashboard.Shared.dll
20:38:56.0678 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Caste.Graphics.Dashboard.Shared.dll - ok
20:38:56.0678 5328 [ D87F74D70BB34DC5C77EFEE5D71F76B7 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Welcome.Local.Dashboard.dll
20:38:56.0678 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Welcome.Local.Dashboard.dll - ok
20:38:56.0694 5328 [ 331D22B5A15B5CC668FD78BDBD1EF340 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
20:38:56.0694 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll - ok
20:38:56.0694 5328 [ FBDB9D0935B9907B809B381FDDF1627F ] C:\WINDOWS\system32\regsvr32.exe
20:38:56.0694 5328 C:\WINDOWS\system32\regsvr32.exe - ok
20:38:56.0694 5328 [ ABA5516248313B0584547B905F78B092 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
20:38:56.0694 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll - ok
20:38:56.0694 5328 [ 17BD92C30E176C4D554F18383E59AA15 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Dashboard.dll
20:38:56.0710 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VeryLargeDesktop.Graphics.Dashboard.dll - ok
20:38:56.0710 5328 [ E95427B0A94A74EE71F095447E96D1FB ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
20:38:56.0710 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll - ok
20:38:56.0710 5328 [ AF83D6EE5C628781DC7EC4534704AFF5 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
20:38:56.0710 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll - ok
20:38:56.0710 5328 [ 649E3AB705EB0F3AF213DCD4378515CF ] C:\Program Files\ATI Technologies\ATI.ACE\atiacmxx.dll
20:38:56.0710 5328 C:\Program Files\ATI Technologies\ATI.ACE\atiacmxx.dll - ok
20:38:56.0725 5328 [ 3D93F98A88D8043E9A5134DDFF72193A ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Dashboard.dll
20:38:56.0725 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCRT2.Graphics.Dashboard.dll - ok
20:38:56.0725 5328 [ 7EFC15AF515746DC49881AEA2B2274F8 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll
20:38:56.0725 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll - ok
20:38:56.0725 5328 [ 3DA378631F03F591CE066FA8E40CC73B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Dashboard.dll
20:38:56.0725 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceLCD2.Graphics.Dashboard.dll - ok
20:38:56.0725 5328 [ 922243B15A23013D0F5EF2080CC1D498 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
20:38:56.0725 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll - ok
20:38:56.0741 5328 [ D0049860B63DD87A73A5D165C829C65F ] C:\WINDOWS\system32\t2embed.dll
20:38:56.0741 5328 C:\WINDOWS\system32\t2embed.dll - ok
20:38:56.0741 5328 [ C3200506FB212A0F4FB736A80E646C40 ] C:\WINDOWS\system32\lz32.dll
20:38:56.0741 5328 C:\WINDOWS\system32\lz32.dll - ok
20:38:56.0741 5328 [ ADD1034329D42289CAA66B6B10AB69A3 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Dashboard.dll
20:38:56.0741 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceCV2.Graphics.Dashboard.dll - ok
20:38:56.0757 5328 [ A59DD04D3A7D19A263E6C6F444A6CDA6 ] C:\Program Files\Seagate\Seagate Dashboard\DevComponents.DotNetBar2.dll
20:38:56.0757 5328 C:\Program Files\Seagate\Seagate Dashboard\DevComponents.DotNetBar2.dll - ok
20:38:56.0757 5328 [ E9BBE86DCA2AA1E869082730C8488689 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Dashboard.dll
20:38:56.0757 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV2.Graphics.Dashboard.dll - ok
20:38:56.0757 5328 [ F443F042B1E7FB1B1D0DCA3A8D17603F ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
20:38:56.0757 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll - ok
20:38:56.0757 5328 [ 0D98BAFD3E816C8B2F895241F58FBF3D ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
20:38:56.0757 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll - ok
20:38:56.0772 5328 [ BAA0065374210D514D6303740703C631 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Dashboard.dll
20:38:56.0772 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DeviceDFP2.Graphics.Dashboard.dll - ok
20:38:56.0772 5328 [ C834BE60D8AD89EDBDE44D96C093EE5A ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
20:38:56.0772 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll - ok
20:38:56.0772 5328 [ FA7A112BEE0593706935AC90A86A021D ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1137dcc6dcb4a05be0996729a14656c9\PresentationFramework.Royale.ni.dll
20:38:56.0772 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\1137dcc6dcb4a05be0996729a14656c9\PresentationFramework.Royale.ni.dll - ok
20:38:56.0788 5328 [ 9D11E9D5450F339BE530E8332991428A ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Dashboard.dll
20:38:56.0788 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.Radeon3DLegacy.Graphics.Dashboard.dll - ok
20:38:56.0788 5328 [ BFE5B224F022B8300715FC9982D883C3 ] C:\Program Files\Memeo\AutoBackup\Newtonsoft.Json.dll
20:38:56.0788 5328 C:\Program Files\Memeo\AutoBackup\Newtonsoft.Json.dll - ok
20:38:56.0788 5328 [ 98ACA424F22691965BD079B8DEEF68A1 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2abe0b9f0e996273614f4cf1f6808eed\PresentationFramework.ni.dll
20:38:56.0788 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\2abe0b9f0e996273614f4cf1f6808eed\PresentationFramework.ni.dll - ok
20:38:56.0788 5328 [ 285D1BA5A8A11F2366B8C2D984F1BF7A ] C:\Program Files\Memeo\AutoBackup\Tanagra.BMU.dll
20:38:56.0788 5328 C:\Program Files\Memeo\AutoBackup\Tanagra.BMU.dll - ok
20:38:56.0803 5328 [ 34FF308270F73EAEFDD20D92724817AC ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
20:38:56.0803 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll - ok
20:38:56.0803 5328 [ 303A63F4B913AA5D8998161CB77A8CE7 ] C:\WINDOWS\system32\feclient.dll
20:38:56.0803 5328 C:\WINDOWS\system32\feclient.dll - ok
20:38:56.0803 5328 [ 657E4E730665F82A2010CFBB68416286 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Dashboard.dll
20:38:56.0803 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.DisplaysColour.Graphics.Dashboard.dll - ok
20:38:56.0819 5328 [ F5853232683EA1297C102A021FEC7C46 ] C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.HipServAdapter.dll
20:38:56.0819 5328 C:\Program Files\Seagate\Seagate Dashboard\Memeo.Dashboard.HipServAdapter.dll - ok
20:38:56.0819 5328 [ 07AE693292488FB386D204D7F0C27D97 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
20:38:56.0819 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MMVideo.Graphics.Dashboard.dll - ok
20:38:56.0819 5328 [ DDF78C5FD8A0A6C987B53BE666BB1F4E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Dashboard.dll
20:38:56.0819 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VideoOverlay.Graphics.Dashboard.dll - ok
20:38:56.0819 5328 [ BD170CF5FAD0EBC26E01C297F42FD22C ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll
20:38:56.0819 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll - ok
20:38:56.0835 5328 [ 022AA1B7C09B755F49BD07E0D06A74F6 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Dashboard.dll
20:38:56.0835 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.SmartGart.Graphics.Dashboard.dll - ok
20:38:56.0835 5328 [ 07FE64E9449B9798300A6AE217DD9AAA ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
20:38:56.0835 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.VPURecover.Graphics.Dashboard.dll - ok
20:38:56.0835 5328 [ E0FD0BA281DD24AD966CB68B96816404 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Dashboard.dll
20:38:56.0835 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.WorkstationConfig.Graphics.Dashboard.dll - ok
20:38:56.0850 5328 [ 0589BD2702A4D4CB1F02DC00B533577B ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Dashboard.dll
20:38:56.0850 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive3.Graphics.Dashboard.dll - ok
20:38:56.0850 5328 [ F8CA78177F4E8F0FD3F42445BA840D5E ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Dashboard.dll
20:38:56.0850 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.OverDrive2.Graphics.Dashboard.dll - ok
20:38:56.0850 5328 [ 3F4F1A6DB2016220E93A5A6E10627592 ] C:\Program Files\Memeo\AutoBackup\SQLite.NET.dll
20:38:56.0850 5328 C:\Program Files\Memeo\AutoBackup\SQLite.NET.dll - ok
20:38:56.0850 5328 [ 30E3BE6E52C14091A378900DC24BEC42 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Dashboard.dll
20:38:56.0850 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.IntegratedUMAFrameBuffer.Graphics.Dashboard.dll - ok
20:38:56.0866 5328 [ F3455E60B905D95D22F7AB8A6B49ACCE ] C:\Program Files\Memeo\AutoBackup\sqlite3.dll
20:38:56.0866 5328 C:\Program Files\Memeo\AutoBackup\sqlite3.dll - ok
20:38:56.0866 5328 [ E06D984F96F687706A51B8DD27CFD776 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Dashboard.dll
20:38:56.0866 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU3.Graphics.Dashboard.dll - ok
20:38:56.0866 5328 [ 9577FEF67632B531CF209C2112EC02B9 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Dashboard.dll
20:38:56.0866 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU2.Graphics.Dashboard.dll - ok
20:38:56.0866 5328 [ DCFD34573F894F926B025264C8D253D6 ] C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Dashboard.dll
20:38:56.0866 5328 C:\Program Files\ATI Technologies\ATI.ACE\CLI.Aspect.MultiVPU.Graphics.Dashboard.dll - ok
20:38:56.0882 5328 [ D68CEA48AC722C336342A430EDC1976D ] C:\Program Files\Mozilla Firefox\softokn3.dll
20:38:56.0882 5328 C:\Program Files\Mozilla Firefox\softokn3.dll - ok
20:38:56.0882 5328 [ 8456E8EA41C3EF45DE237F39BDB2BDD9 ] C:\Program Files\Mozilla Firefox\nssdbm3.dll
20:38:56.0882 5328 C:\Program Files\Mozilla Firefox\nssdbm3.dll - ok
20:38:56.0882 5328 [ B16A869BE7BA5657D70074F418E4BF1C ] C:\Program Files\Mozilla Firefox\freebl3.dll
20:38:56.0882 5328 C:\Program Files\Mozilla Firefox\freebl3.dll - ok
20:38:56.0897 5328 [ F9FDA1D853CB1A2C10817F73BCFD687A ] C:\Program Files\Mozilla Firefox\nssckbi.dll
20:38:56.0897 5328 C:\Program Files\Mozilla Firefox\nssckbi.dll - ok
20:38:56.0897 5328 [ FB6EE278BC2046E0952F320AC62D3E07 ] C:\WINDOWS\system32\dskquota.dll
20:38:56.0897 5328 C:\WINDOWS\system32\dskquota.dll - ok
20:38:56.0897 5328 [ B70E45BA7880FE0AA47CD98FBB0F2D28 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a351cdca2d71ee68ae3a581e13553b19\PresentationFramework.Luna.ni.dll
20:38:56.0897 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a351cdca2d71ee68ae3a581e13553b19\PresentationFramework.Luna.ni.dll - ok
20:38:56.0897 5328 [ 66833D370D62D54496C29E5C87A73081 ] C:\Program Files\Memeo\AutoBackup\USBLib.dll
20:38:56.0897 5328 C:\Program Files\Memeo\AutoBackup\USBLib.dll - ok
20:38:56.0913 5328 [ 9452D2CC9087BE4DAE59C2B5CE2AC3EC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a589ac9af5392e84edaf3b85b7df1111\PresentationFramework.ni.dll
20:38:56.0913 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a589ac9af5392e84edaf3b85b7df1111\PresentationFramework.ni.dll - ok
20:38:56.0913 5328 [ C003BE2F0BE9190D7407EE70DA6282DF ] C:\Program Files\Memeo\AutoBackup\Memeo.Dashboard.Remote.dll
20:38:56.0913 5328 C:\Program Files\Memeo\AutoBackup\Memeo.Dashboard.Remote.dll - ok
20:38:56.0913 5328 [ 43F162E645A3802F2B62EEEA2592C2AB ] C:\Program Files\Memeo\AutoBackup\Memeo.Common.dll
20:38:56.0913 5328 C:\Program Files\Memeo\AutoBackup\Memeo.Common.dll - ok
20:38:56.0928 5328 [ 307B1BA41F61E9D1A13AD6CD12574D3F ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c4114f7266efc459210299c8bb071624\PresentationFramework.Classic.ni.dll
20:38:56.0928 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\c4114f7266efc459210299c8bb071624\PresentationFramework.Classic.ni.dll - ok
20:38:56.0928 5328 [ 059F1B51718760D9F9F2B063BF1EBECC ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\dbfa6bdbfea6f90f3b604c3efce24047\PresentationFramework.Aero.ni.dll
20:38:56.0928 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\dbfa6bdbfea6f90f3b604c3efce24047\PresentationFramework.Aero.ni.dll - ok
20:38:56.0928 5328 [ 0C720C33E8D28AD60B7932EAD82309EA ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\96b7a0136e9e72e8f4eb0230c20766d2\System.Configuration.ni.dll
20:38:56.0928 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\96b7a0136e9e72e8f4eb0230c20766d2\System.Configuration.ni.dll - ok
20:38:56.0928 5328 [ B0F753587639A7156F4EFE058FF9B9CF ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\c52b1734cefd25d5c8e7b4ebf4c1f76a\System.Core.ni.dll
20:38:56.0928 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\c52b1734cefd25d5c8e7b4ebf4c1f76a\System.Core.ni.dll - ok
20:38:56.0944 5328 [ 86E7B431A007C09437A3F9744FAA6440 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\edbf4e4a55e63b9fbf0b0b40cba13063\System.Core.ni.dll
20:38:56.0944 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Core\edbf4e4a55e63b9fbf0b0b40cba13063\System.Core.ni.dll - ok
20:38:56.0944 5328 [ C4177ADE85770A781692DBC5BC060931 ] C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\0b5c7d832d0a10ddcfa764d3e4adce14\UIAutomationProvider.ni.dll
20:38:56.0944 5328 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\0b5c7d832d0a10ddcfa764d3e4adce14\UIAutomationProvider.ni.dll - ok
20:38:56.0944 5328 [ F8B6F088759CA69F6EF32786A93AEBA4 ] D:\Corel VideoStudio Pro X3\AppFramework.dll
20:38:56.0944 5328 D:\Corel VideoStudio Pro X3\AppFramework.dll - ok
20:38:56.0960 5328 [ 34153D9587364A79B5995B412D24C5C6 ] D:\Corel VideoStudio Pro X3\AppFramework.XmlSerializers.dll
20:38:56.0960 5328 D:\Corel VideoStudio Pro X3\AppFramework.XmlSerializers.dll - ok
20:38:56.0960 5328 [ 4FE228BE7A9A7EA7DBF2ABD84ED6808F ] D:\Corel VideoStudio Pro X3\CorelGestureSDK.dll
20:38:56.0960 5328 D:\Corel VideoStudio Pro X3\CorelGestureSDK.dll - ok
20:38:56.0960 5328 [ AB35F6C53C856026C2013DFEBA298634 ] D:\Corel VideoStudio Pro X3\GoldenGateCore.dll
20:38:56.0960 5328 D:\Corel VideoStudio Pro X3\GoldenGateCore.dll - ok
20:38:56.0960 5328 [ 30031C18522254FE486C08ACE9FA1B22 ] D:\Corel VideoStudio Pro X3\GoldenGateUI.dll
20:38:56.0960 5328 D:\Corel VideoStudio Pro X3\GoldenGateUI.dll - ok
20:38:56.0975 5328 [ AFE12616600FA19943416B21AEA41F5C ] D:\Corel VideoStudio Pro X3\Interop.MSXML2.dll
20:38:56.0975 5328 D:\Corel VideoStudio Pro X3\Interop.MSXML2.dll - ok
20:38:56.0975 5328 [ F5A438BD60069B9255BB89C3DB865EE1 ] D:\Corel VideoStudio Pro X3\MediaLibrary.dll
20:38:56.0975 5328 D:\Corel VideoStudio Pro X3\MediaLibrary.dll - ok
20:38:56.0975 5328 [ 425F8F1613C80B06AB411F7C3421562F ] D:\Corel VideoStudio Pro X3\MediaLibraryLib.dll
20:38:56.0975 5328 D:\Corel VideoStudio Pro X3\MediaLibraryLib.dll - ok
20:38:56.0991 5328 [ 80963B67610FE09474D5D671855B47A4 ] D:\Corel VideoStudio Pro X3\MediaLibraryWrapper.dll
20:38:56.0991 5328 D:\Corel VideoStudio Pro X3\MediaLibraryWrapper.dll - ok
20:38:56.0991 5328 [ 48ACD2E51AA1C1DAC46A8150EF85A269 ] D:\Corel VideoStudio Pro X3\MediaOrganizer.dll
20:38:56.0991 5328 D:\Corel VideoStudio Pro X3\MediaOrganizer.dll - ok
20:38:56.0991 5328 [ DFAEEA32E781BF21A0979E4519DA74FF ] D:\Corel VideoStudio Pro X3\PASMUtility.dll
20:38:56.0991 5328 D:\Corel VideoStudio Pro X3\PASMUtility.dll - ok
20:38:56.0991 5328 [ 0AE5ADEC3785875F9A386A7AC83C774C ] D:\Corel VideoStudio Pro X3\PASMUTILITYLib.dll
20:38:56.0991 5328 D:\Corel VideoStudio Pro X3\PASMUTILITYLib.dll - ok
20:38:57.0007 5328 [ C4E7145758DBD863A63C1D4F1C98F00A ] D:\Corel VideoStudio Pro X3\PluginCommon.dll
20:38:57.0007 5328 D:\Corel VideoStudio Pro X3\PluginCommon.dll - ok
20:38:57.0007 5328 [ FF82CCE4EF996544C1672B2958C8704D ] D:\Corel VideoStudio Pro X3\PsiClient.dll
20:38:57.0007 5328 D:\Corel VideoStudio Pro X3\PsiClient.dll - ok
20:38:57.0007 5328 [ CF633D367689AAE18EED8CD83E6FA310 ] D:\Corel VideoStudio Pro X3\PSPImageLibLib.dll
20:38:57.0007 5328 D:\Corel VideoStudio Pro X3\PSPImageLibLib.dll - ok
20:38:57.0022 5328 [ 0D29A2EA8CEBB0FC9F2EE85D3EDBC575 ] D:\Corel VideoStudio Pro X3\ResourcesLibrary.dll
20:38:57.0022 5328 D:\Corel VideoStudio Pro X3\ResourcesLibrary.dll - ok
20:38:57.0022 5328 [ DA909D1FCA3F4800D6F2F6819BD38390 ] D:\Corel VideoStudio Pro X3\SharedUIComponent.dll
20:38:57.0022 5328 D:\Corel VideoStudio Pro X3\SharedUIComponent.dll - ok
20:38:57.0022 5328 [ E913E6951871B3EA7CA25600084F87E5 ] D:\Corel VideoStudio Pro X3\sqlite3.dll
20:38:57.0022 5328 D:\Corel VideoStudio Pro X3\sqlite3.dll - ok
20:38:57.0038 5328 [ F759D0EA6EA275E065FD349D07F33B87 ] D:\Corel VideoStudio Pro X3\u32Comm.dll
20:38:57.0038 5328 D:\Corel VideoStudio Pro X3\u32Comm.dll - ok
20:38:57.0038 5328 [ 2492F68D01AAE9A23BC32EBAE14F31AB ] D:\Corel VideoStudio Pro X3\u32Misc.dll
20:38:57.0038 5328 D:\Corel VideoStudio Pro X3\u32Misc.dll - ok
20:38:57.0038 5328 [ 968D6B4F13D3D865766787EC2FCFFE7E ] D:\Corel VideoStudio Pro X3\u32uscUI.dll
20:38:57.0038 5328 D:\Corel VideoStudio Pro X3\u32uscUI.dll - ok
20:38:57.0038 5328 [ 116BE6C536456AB98DC91FC9936DCA31 ] D:\Corel VideoStudio Pro X3\uDVDCommRC.dll
20:38:57.0038 5328 D:\Corel VideoStudio Pro X3\uDVDCommRC.dll - ok
20:38:57.0053 5328 [ 3668DD51D71101426CC86E7B289DA50E ] D:\Corel VideoStudio Pro X3\UtilitySDKLib.dll
20:38:57.0053 5328 D:\Corel VideoStudio Pro X3\UtilitySDKLib.dll - ok
20:38:57.0053 5328 [ 4EDD654B4540D916F953B5388E7A0F44 ] D:\Corel VideoStudio Pro X3\uvDataModel.dll
20:38:57.0053 5328 D:\Corel VideoStudio Pro X3\uvDataModel.dll - ok
20:38:57.0053 5328 [ 2735F64C70C0DC584B8E82E847144E1D ] D:\Corel VideoStudio Pro X3\VideoEditingSDKLib.dll
20:38:57.0053 5328 D:\Corel VideoStudio Pro X3\VideoEditingSDKLib.dll - ok
20:38:57.0069 5328 [ C04BC8B67961C277041EAEA461662A44 ] D:\Corel VideoStudio Pro X3\WinShell.dll
20:38:57.0069 5328 D:\Corel VideoStudio Pro X3\WinShell.dll - ok
20:38:57.0069 5328 [ 7AB934B6305EB751E254A3D033FC5AFE ] D:\Corel VideoStudio Pro X3\en-US\AppFramework.resources.dll
20:38:57.0069 5328 D:\Corel VideoStudio Pro X3\en-US\AppFramework.resources.dll - ok
20:38:57.0069 5328 [ 524A47B059A84D530ACF3E149927F167 ] D:\Corel VideoStudio Pro X3\en-US\GoldenGateCore.resources.dll
20:38:57.0069 5328 D:\Corel VideoStudio Pro X3\en-US\GoldenGateCore.resources.dll - ok
20:38:57.0069 5328 [ BED5524261DC36F78B5539BD6F0F8B28 ] D:\Corel VideoStudio Pro X3\en-US\GoldenGateUI.resources.dll
20:38:57.0069 5328 D:\Corel VideoStudio Pro X3\en-US\GoldenGateUI.resources.dll - ok
20:38:57.0085 5328 [ 296B1EA7100E0E7BBD7921DB2ED1212A ] D:\Corel VideoStudio Pro X3\en-US\MediaOrganizer.resources.dll
20:38:57.0085 5328 D:\Corel VideoStudio Pro X3\en-US\MediaOrganizer.resources.dll - ok
20:38:57.0085 5328 [ D0EB5A89738C71D15A62634B54F4276A ] D:\Corel VideoStudio Pro X3\en-US\PCUDataIntl.DLL
20:38:57.0085 5328 D:\Corel VideoStudio Pro X3\en-US\PCUDataIntl.DLL - ok
20:38:57.0085 5328 [ A7FE29E11D1F5D15A16E4DABFE0B25C7 ] D:\Corel VideoStudio Pro X3\en-US\PluginCommon.resources.dll
20:38:57.0085 5328 D:\Corel VideoStudio Pro X3\en-US\PluginCommon.resources.dll - ok
20:38:57.0085 5328 [ B49ADFF80D102CB8A4A16CD07DCF2D81 ] D:\Corel VideoStudio Pro X3\en-US\PSP.resources.dll
20:38:57.0085 5328 D:\Corel VideoStudio Pro X3\en-US\PSP.resources.dll - ok
20:38:57.0100 5328 [ 629CA296C3E4103A5583A98B2EBB43B5 ] D:\Corel VideoStudio Pro X3\en-US\ResourcesLibrary.resources.dll
20:38:57.0100 5328 D:\Corel VideoStudio Pro X3\en-US\ResourcesLibrary.resources.dll - ok
20:38:57.0100 5328 [ 72AFBB6A8BAB4AD873D8E1416D64A271 ] D:\Corel VideoStudio Pro X3\en-US\SharedUIComponent.resources.dll
20:38:57.0100 5328 D:\Corel VideoStudio Pro X3\en-US\SharedUIComponent.resources.dll - ok
20:38:57.0100 5328 ============================================================
20:38:57.0100 5328 Scan finished
20:38:57.0100 5328 ============================================================
20:38:57.0210 5320 Detected object count: 26
20:38:57.0210 5320 Actual detected object count: 26
20:40:18.0411 5320 APPDRV ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 APPDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 ASPI32 ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 ASPI32 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 CCALib8 ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 CCALib8 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 cdrbsdrv ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 cdrbsdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 drvmcdb ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 drvmcdb ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 drvnddm ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 drvnddm ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 DSproct ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0411 5320 hpqddsvc ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0411 5320 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 MHN ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 MHN ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 NICCONFIGSVC ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 NICCONFIGSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 omci ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 omci ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 SCDEmu ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 sscdbhk5 ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 sscdbhk5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 ssrtln ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 ssrtln ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 tfsnboio ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 tfsnboio ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0427 5320 tfsncofs ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0427 5320 tfsncofs ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsndrct ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsndrct ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsndres ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsndres ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsnifs ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsnifs ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsnopio ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsnopio ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsnpool ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsnpool ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsnudf ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsnudf ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 tfsnudfa ( UnsignedFile.Multi.Generic ) - skipped by user
20:40:18.0442 5320 tfsnudfa ( UnsignedFile.Multi.Generic ) - User select action: Skip
20:40:18.0442 5320 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
20:40:18.0442 5320 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
20:46:25.0420 4048 Deinitialize success

=====================================================================

Below is the RogueKiller Report:

RogueKiller V8.6.2 [Jul 5 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.adlice.com/forum/
Website : http://www.adlice.co...es/roguekiller/
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
Started in : Normal mode
User : Kevin Bento [Admin rights]
Mode : Remove -- Date : 07/10/2013 20:58:25
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Scheduled tasks : 0 ¤¤¤

¤¤¤ Startup Entries : 0 ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [LOADED] ¤¤¤

¤¤¤ External Hives: ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: SAMSUNG HM120JI +++++
--- User ---
[MBR] 12d47004b729707f3279d00d3b01c79a
[BSP] 0865dbc3033a5b0d1557ae0b87d99f0b : Windows XP MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 47 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 96390 | Size: 81070 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 166128165 | Size: 27156 Mo
3 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 221745195 | Size: 4753 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[0]_D_07102013_205825.txt >>
RKreport[0]_S_07102013_205254.txt

#8
gringo_pr

Posted 10 July 2013 - 07:46 PM

Trusted Helper

Malware Removal
7,268 posts

Hello

I would like you to rerun TDSSKiller and this time when it gets to this part

\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
\Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
I want you to select Delete this time instead of skip.

Gringo

#9
babablack

Posted 14 July 2013 - 03:45 AM

Member

Topic Starter
Member
11 posts

Hi Gringo.

Thanks for all your help. I am sure all these scans helped in some way but unfortunately I am having the same problems with AVAST! and Spybot. Maybe me computer is low virtual memory or RAM??? I have gigabytes of physical memory on my hard drive still. Any further scans or clean ups you recommend?

#10
gringo_pr

Posted 14 July 2013 - 10:24 AM

Trusted Helper

Malware Removal
7,268 posts

Hello

I want you to reset the DMA you can do this by this script here - Reset DMA

If you have problems when you click on the link try to right click on the link and select "Save Target As" and then save to your desktop.
Once it is on your desktop right click on the file and select "Run"

If you still can't run it then you can go here "Reset DMA" to see what I want to do

Gringo

#11
babablack

Posted 15 July 2013 - 04:23 AM

Member

Topic Starter
Member
11 posts

Hi Gringo,

Can you provide more clarification? The 1st link is computer code but what program do I run it with? There is no option to right click "run" when I save it as notepad file. I followed the last link and my ATA/IDE options were already set to the parameters that were desired: No PIO options where set to begin with.

Wondering how this will help my computer.

Thanks for your time as always.

#12
gringo_pr

Posted 15 July 2013 - 11:55 AM

Trusted Helper

Malware Removal
7,268 posts

Hello babablack

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Please start by opening Notepad and copy/paste the text in the box into the window:

ClearJavaCache::

Save it to your desktop as CFScript.txt

Referring to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image

This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." Please restart the computer

"information and logs"

In your next post I need the following

report from Combofix
let me know of any problems you may have had
How is the computer doing now after running the script?

Gringo

#13
babablack

Posted 15 July 2013 - 09:02 PM

Member

Topic Starter
Member
11 posts

Hello Gringo,

Below are the result of the Combofix scan that you instructed me to run. Before this, I will mention a few minor computer behaviors that have been happening even before starting this thread a week or so ago:

1. Windows XP Sound is not working. There are System Beeps instead of Windows Sound for all Windows events
2. When I try to shut down Windows XP, it will not shut down the first time I click on shut down. I usually have to click on it 3-5 times. There are no error messages during these attempts. Once I keep trying, it finally shuts down.

ComboFix 13-07-15.01 - Kevin Bento 07/15/2013 22:30:35.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1232 [GMT -4:00]
Running from: c:\documents and settings\Kevin Bento\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Kevin Bento\Desktop\CFscript.txt
AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: ZoneAlarm Firewall *Enabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B}
.
.
((((((((((((((((((((((((( Files Created from 2013-06-16 to 2013-07-16 )))))))))))))))))))))))))))))))
.
.
2013-07-12 00:31 . 2013-07-12 00:31 -------- d-----w- C:\TDSSKiller_Quarantine
2013-07-11 07:25 . 2013-07-11 07:33 -------- d-----w- c:\windows\system32\MRT
2013-07-07 17:50 . 2013-07-07 17:50 -------- d-----w- C:\JRT
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-06-18 10:02 . 2012-04-03 00:57 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-06-18 10:02 . 2011-05-28 21:09 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-08 03:55 . 2005-08-16 09:18 385024 ----a-w- c:\windows\system32\html.iec
2013-06-07 21:56 . 2005-08-16 09:18 920064 ----a-w- c:\windows\system32\wininet.dll
2013-06-07 21:56 . 2005-08-16 09:18 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-06-07 21:56 . 2005-08-16 09:18 1469440 ------w- c:\windows\system32\inetcpl.cpl
2013-06-04 07:23 . 2005-08-16 09:18 562688 ----a-w- c:\windows\system32\qedit.dll
2013-06-04 01:40 . 2005-08-16 09:18 1876736 ----a-w- c:\windows\system32\win32k.sys
2013-05-09 08:59 . 2013-03-27 14:10 174664 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-05-09 08:59 . 2013-03-27 14:10 49376 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-05-09 08:59 . 2011-06-12 18:17 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-05-09 08:59 . 2008-12-25 19:48 56080 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-05-09 08:59 . 2008-12-25 19:48 368944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-05-09 08:59 . 2013-03-27 14:10 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-05-09 08:59 . 2008-12-25 19:48 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-05-09 08:59 . 2008-12-25 19:48 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-05-09 08:58 . 2008-12-25 19:47 229648 ----a-w- c:\windows\system32\aswBoot.exe
2013-05-09 04:28 . 2006-10-19 01:47 1543680 ------w- c:\windows\system32\wmvdecod.dll
2013-05-03 01:30 . 2005-08-16 09:18 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-05-03 00:38 . 2004-08-04 03:59 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-05-09 08:58 121968 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2011-03-09 247728]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-09-29 67584]
"ATICCC"="c:\program files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 45056]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2005-05-31 122941]
"StxTrayMenu"="c:\program files\Seagate\SystemTray\StxMenuMgr.exe" [2007-01-18 190008]
"Adobe Acrobat Speed Launcher"="d:\acrobat 9.0\Acrobat\Acrobat_sl.exe" [2008-06-12 37232]
"Acrobat Assistant 8.0"="d:\acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-12 640376]
"Standby"="c:\program files\Common Files\Corel\Standby\Standby.exe" [2009-12-17 105632]
"ZoneAlarm Client"="c:\program files\Zone Labs\ZoneAlarm\zlclient.exe" [2010-06-23 1043968]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-09-24 421160]
"Dell QuickSet"="c:\program files\Dell\QuickSet\Quickset.exe" [2006-06-29 1032192]
"Memeo Instant Backup"="c:\program files\Memeo\AutoBackup\MemeoLauncher2.exe" [2011-01-24 136416]
"Seagate Dashboard"="c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe" [2011-06-01 79112]
"VERIZONDM"="c:\program files\VERIZONDM\bin\sprtcmd.exe" [2012-08-07 206120]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
.
c:\documents and settings\Kevin Bento\Start Menu\Programs\Startup\
Secunia PSI.lnk - c:\program files\Secunia\PSI\psi.exe --start-in-tray [2010-7-21 965176]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HD Writer.lnk - c:\program files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe [2011-11-30 308640]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\acaptuser32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"d:\\Adobe Photoshop Elements 8\\Elements Organizer 8.0\\AdobePhotoshopElementsMediaServer.exe"=
"c:\\Program Files\\AIM\\aim.exe"=
"c:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Seagate\\Seagate Dashboard\\HipServAgent\\HipServAgent.exe"=
"c:\\Program Files\\BitLord 2\\Bitlord files\\bitlord.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"50000:UDP"= 50000:UDP:IHA_MessageCenter
"8743:TCP"= 8743:TCP:AllShareFrameWorkDMS Action TCP Port
"8643:TCP"= 8643:TCP:AllShareFrameWorkDMS Event TCP Port
"7676:TCP"= 7676:TCP:AllShareFrameWorkDMS Service TCP Port1
"7679:TCP"= 7679:TCP:AllShareFrameWorkDMS Service TCP Port2
"24234:TCP"= 24234:TCP:AllShareFramework DMS service UDP Port1
"7900:TCP"= 7900:TCP:AllShareFramework DMS service UDP Port2
"1900:TCP"= 1900:TCP:UPnP Multicast Port
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [3/27/2013 10:10 AM 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [3/27/2013 10:10 AM 174664]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [1/19/2011 3:03 AM 64288]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [6/12/2011 2:17 PM 765736]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [12/25/2008 3:48 PM 368944]
R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;d:\adobe photoshop elements 8\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [10/9/2009 6:45 AM 169312]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [12/25/2008 3:48 PM 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [3/27/2013 10:10 AM 66336]
R2 cpuz134;cpuz134;c:\windows\system32\drivers\cpuz134_x32.sys [10/18/2010 12:34 AM 20328]
R2 IHA_MessageCenter;IHA_MessageCenter;c:\program files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [8/3/2012 4:22 PM 352248]
R2 MemeoBackgroundService;MemeoBackgroundService;c:\program files\Memeo\AutoBackup\MemeoBackgroundService.exe [1/24/2011 2:35 PM 25824]
R2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [6/1/2011 12:42 PM 14088]
R2 sprtsvc_verizondm;SupportSoft Sprocket Service (verizondm);c:\program files\VERIZONDM\bin\sprtsvc.exe [8/7/2012 8:02 AM 206120]
R2 tgsrvc_verizondm;SupportSoft Repair Service (verizondm);c:\program files\VERIZONDM\bin\tgsrvc.exe [8/7/2012 8:02 AM 185640]
R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [3/9/2011 8:30 AM 92592]
S2 DellBIOS;DellBIOS;\??\c:\windows\DellBIOS.Sys --> c:\windows\DellBIOS.Sys [?]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [7/7/2010 10:05 AM 14904]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
getPlusHelper REG_MULTI_SZ getPlusHelper
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-07-13 06:23 1173456 ----a-w- c:\program files\Google\Chrome\Application\28.0.1500.72\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2013-07-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-03 10:02]
.
2013-07-16 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\Alwil Software\Avast5\AvastEmUpdate.exe [2012-06-30 08:58]
.
2013-07-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-06-30 12:10]
.
2013-07-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-06-30 12:10]
.
2011-08-26 c:\windows\Tasks\soundtapSevenDays.job
- c:\program files\NCH Swift Sound\SoundTap\soundtap.exe [2011-08-26 02:28]
.
2011-09-02 c:\windows\Tasks\soundtapShakeIcon.job
- c:\program files\NCH Swift Sound\SoundTap\soundtap.exe [2011-08-26 02:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.comcast.net/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: turbotax.com
TCP: DhcpNameServer = 192.168.1.1
DPF: {2AB1C516-6654-4D3A-B3D6-2185BBCEB409} - hxxps://etciec102.coca-cola.com/+CSCOL+/csvrloader32.cab
FF - ProfilePath - c:\documents and settings\Kevin Bento\Application Data\Mozilla\Firefox\Profiles\n40440e1.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: keyword.URL - hxxp://search.start-search.net/?sid=10101065100&s=
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-61059033.sys
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-07-15 22:48
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
.
c:\windows\$NtUninstallKB941202$
c:\windows\KB885250.log 4655 bytes
c:\windows\system.ini 227 bytes
c:\windows\system32
c:\windows\T30DebugLogFile.txt 0 bytes
c:\windows\tabletoc.log 148242 bytes
c:\windows\TASKMAN.EXE 15360 bytes executable
c:\windows\Tasks
c:\windows\Temp
c:\windows\Thumbs.db 7680 bytes
c:\windows\tsoc.log 1367502 bytes
c:\windows\twain.dll 94784 bytes
c:\windows\twain_32
c:\windows\twain_32.dll 50688 bytes executable
c:\windows\twunk_16.exe 49680 bytes
c:\windows\twunk_32.exe 25600 bytes executable
c:\windows\uninstyler.exe 50176 bytes executable
c:\windows\UNWISE.EXE 149504 bytes executable
c:\windows\updspapi.log 407210 bytes
c:\windows\vb.ini 36 bytes
c:\windows\vbaddin.ini 37 bytes
c:\windows\KB896256.log 9598 bytes
c:\windows\KB896358.log 6626 bytes
c:\windows\KB896423.log 11249 bytes
c:\windows\KB896424.log 13509 bytes
c:\windows\KB896428.log 26627 bytes
c:\windows\KB898461.log 12214 bytes
c:\windows\KB899337.log 8550 bytes
c:\windows\KB899510.log 7845 bytes
c:\windows\KB899587.log 50042 bytes
c:\windows\KB899588.log 10799 bytes
c:\windows\KB899589.log 33389 bytes
c:\windows\KB899591.log 10729 bytes
c:\windows\KB900325.log 23796 bytes
c:\windows\KB900485.log 47498 bytes
c:\windows\KB900725.log 31973 bytes
c:\windows\KB901017.log 47660 bytes
c:\windows\KB901214.log 6074 bytes
c:\windows\KB902344.log 1144 bytes
c:\windows\KB902400.log 42476 bytes
c:\windows\KB902841.log 7867 bytes
c:\windows\KB903157.log 4047 bytes
c:\windows\KB904706.log 11551 bytes
c:\windows\KB904942.log 13697 bytes
c:\windows\KB905414.log 33702 bytes
c:\windows\River Sumida.bmp 26680 bytes
c:\windows\Santa Fe Stucco.bmp 65832 bytes
c:\windows\SchedLgU.Txt 32756 bytes
c:\windows\security
c:\windows\sed.exe 98816 bytes executable
c:\windows\ServicePackFiles
c:\windows\sessmgr.setup.log 2998 bytes
c:\windows\setpwrcg.exe 49152 bytes executable
c:\windows\setup.iss 615 bytes
c:\windows\setupact.del 355489 bytes
c:\windows\setupact.log 2050 bytes
c:\windows\setupapi.del 1062963 bytes
c:\windows\setupapi.log 178600 bytes
c:\windows\setupapi.log.0.old 1268486 bytes
c:\windows\setupapi.log.1.old 1044487 bytes
c:\windows\setupapi.log.2.old 1084068 bytes
c:\windows\setupapi.log.3.old 1040527 bytes
c:\windows\Config
c:\windows\Connection Wizard
c:\windows\control.ini 0 bytes
c:\windows\CSC
c:\windows\Cursors
c:\windows\Debug
c:\windows\Dell.bmp 787512 bytes
c:\windows\desktop.ini 2 bytes
c:\windows\DirectX.log 261588 bytes
c:\windows\DJBDRV.LOG 3324 bytes
c:\windows\dla.exe 98360 bytes executable
c:\windows\Downloaded Installations
c:\windows\Downloaded Program Files
c:\windows\DPINST.LOG 10690 bytes
c:\windows\netfxocm.log 534116 bytes
c:\windows\network diagnostic
c:\windows\NIRCMD.exe 60416 bytes executable
c:\windows\NLSDownlevelMapping.log 7295 bytes
c:\windows\notepad.exe 69120 bytes executable
c:\windows\nsreg.dat 335 bytes
c:\windows\ntbtlog.txt 605776 bytes
c:\windows\ntdtcsetup.log 588187 bytes
c:\windows\occache
c:\windows\ocgen.log 1449717 bytes
c:\windows\ocmsn.log 159385 bytes
c:\windows\ODBC.INI 376 bytes
c:\windows\ODBCINST.INI 4161 bytes
c:\windows\OEWABLog.txt 1523 bytes
c:\windows\Offline Web Pages
c:\windows\pchealth
c:\windows\PeerNet
c:\windows\PEV.exe 256000 bytes executable
c:\windows\$NtUninstallKB2778344$
c:\windows\$NtUninstallKB890927$
c:\windows\$NtUninstallKB902841$
c:\windows\$NtUninstallKB918899$
c:\windows\$NtUninstallKB925486$
c:\windows\$NtUninstallKB930494$
c:\windows\Fonts
c:\windows\GEARInstall.log 87 bytes
c:\windows\Gone Fishing.bmp 17336 bytes
c:\windows\Greenstone.bmp 26582 bytes
c:\windows\grep.exe 80412 bytes executable
c:\windows\Help
c:\windows\Hewlett-Packard
c:\windows\hh.exe 10752 bytes executable
c:\windows\HPHins15.dat 137634 bytes
c:\windows\hphmdl15.dat 2828 bytes
c:\windows\hpqins00.dat 159584 bytes
c:\windows\hpqins16.dat 96577 bytes
c:\windows\IDNMitigationAPIs.log 8524 bytes
c:\windows\IE4 Error Log.txt 1774 bytes
c:\windows\KB916595.log 30405 bytes
c:\windows\KB917159.log 9775 bytes
c:\windows\KB917344.log 9818 bytes
c:\windows\KB917422.log 32416 bytes
c:\windows\KB917734.log 38307 bytes
c:\windows\KB917953.log 32963 bytes
c:\windows\KB918118.log 16197 bytes
c:\windows\KB918439.log 9984 bytes
c:\windows\KB918899.log 65068 bytes
c:\windows\KB919007.log 33481 bytes
c:\windows\KB920213.log 18259 bytes
c:\windows\KB920214.log 47683 bytes
c:\windows\KB920670.log 38786 bytes
c:\windows\KB920683.log 25019 bytes
c:\windows\KB920685.log 47564 bytes
c:\windows\KB920872.log 35242 bytes
c:\windows\KB921398.log 46668 bytes
c:\windows\KB921503.log 22584 bytes
c:\windows\KB921883.log 11644 bytes
c:\windows\KB922582.log 22635 bytes
c:\windows\KB922616.log 47407 bytes
c:\windows\KB922760.log 32677 bytes
c:\windows\KB922819.log 48823 bytes
c:\windows\KB923191.log 30481 bytes
c:\windows\KB923414.log 48003 bytes
c:\windows\KB923561.log 10080 bytes
c:\windows\KB923689.log 12446 bytes
c:\windows\KB923694.log 15342 bytes
c:\windows\KB923980.log 17368 bytes
c:\windows\KB924191.log 49278 bytes
c:\windows\KB924270.log 17022 bytes
c:\windows\$NtUninstallKB903157$
c:\windows\$NtUninstallKB904942$
c:\windows\$NtUninstallKB905414$
c:\windows\$NtUninstallKB905749$
c:\windows\$NtUninstallKB908246$
c:\windows\$NtUninstallKB908250$
c:\windows\$NtUninstallKB910437$
c:\windows\$NtUninstallKB911280$
c:\windows\$NtUninstallKB911927$
c:\windows\$NtUninstallKB913580$
c:\windows\$NtUninstallKB913800$
c:\windows\$NtUninstallKB914389$
c:\windows\$NtUninstallKB914440$
c:\windows\$NtUninstallKB915865$
c:\windows\$NtUninstallKB916595$
c:\windows\$NtUninstallKB917422$
c:\windows\$NtUninstallKB917734_WMP10$
c:\windows\$NtUninstallKB917953$
c:\windows\$NtUninstallKB918118$
c:\windows\WBEM
c:\windows\Web
c:\windows\WgaNotify.log 10383 bytes
c:\windows\wiadebug.log 159 bytes
c:\windows\wiaservc.log 49 bytes
c:\windows\win.ini 635 bytes
c:\windows\WindowsShell.Manifest 749 bytes
c:\windows\WindowsUpdate.log 1376822 bytes
c:\windows\winhelp.exe 256192 bytes
c:\windows\winhlp32.exe 283648 bytes executable
c:\windows\winnt.bmp 48680 bytes
c:\windows\winnt256.bmp 48680 bytes
c:\windows\WinSxS
c:\windows\KB906569.log 10423 bytes
c:\windows\KB908246.log 18889 bytes
c:\windows\KB908250.log 35315 bytes
c:\windows\KB908519.log 14050 bytes
c:\windows\KB908531.log 17915 bytes
c:\windows\KB908673.log 12929 bytes
c:\windows\KB909095.log 16466 bytes
c:\windows\KB910393.log 15682 bytes
c:\windows\KB910437.log 35354 bytes
c:\windows\KB911280.log 46942 bytes
c:\windows\KB911562.log 9708 bytes
c:\windows\KB911564.log 3072 bytes
c:\windows\KB911567.log 17134 bytes
c:\windows\KB911927.log 47915 bytes
c:\windows\KB912024.log 15980 bytes
c:\windows\KB912067.log 18067 bytes
c:\windows\KB912919.log 14923 bytes
c:\windows\KB912945.log 8728 bytes
c:\windows\KB913580.log 30046 bytes
c:\windows\kb913800.exe 23040 bytes executable
c:\windows\KB913800.log 37535 bytes
c:\windows\KB914388.log 11370 bytes
c:\windows\KB914389.log 24302 bytes
c:\windows\KB914440.log 5582 bytes
c:\windows\KB915865.log 7244 bytes
c:\windows\KB885835.log 5632 bytes
c:\windows\KB885836.log 47020 bytes
c:\windows\KB885855.log 3891 bytes
c:\windows\KB886185.log 20459 bytes
c:\windows\KB887472.log 5364 bytes
c:\windows\KB887998.log 35812 bytes
c:\windows\KB888113.log 5424 bytes
c:\windows\KB888302.log 30241 bytes
c:\windows\KB888795.log 9426 bytes
c:\windows\KB889673.log 8048 bytes
c:\windows\KB890046.log 33918 bytes
c:\windows\KB890859.log 23939 bytes
c:\windows\KB890927.log 6970 bytes
c:\windows\KB891593.log 12157 bytes
c:\windows\KB891781.log 5344 bytes
c:\windows\KB892627.log 2770 bytes
c:\windows\KB893056.log 3399 bytes
c:\windows\KB893756.log 47843 bytes
c:\windows\KB893803.log 2329 bytes
c:\windows\KB893803.log.1.log 7236 bytes
c:\windows\KB893803v2.log 9882 bytes
c:\windows\KB894391.log 26752 bytes
c:\windows\KB895316.log 6140 bytes
c:\windows\KB924667.log 19223 bytes
c:\windows\KB925398.log 10806 bytes
c:\windows\KB925454.log 38843 bytes
c:\windows\KB925486.log 30784 bytes
c:\windows\KB925902.log 14835 bytes
c:\windows\KB926239.log 11627 bytes
c:\windows\KB926251.log 9759 bytes
c:\windows\KB926255.log 14734 bytes
c:\windows\KB926436.log 20815 bytes
c:\windows\KB927779.log 24714 bytes
c:\windows\KB927802.log 22019 bytes
c:\windows\KB927891.log 9486 bytes
c:\windows\KB928090-IE7.log 12728 bytes
c:\windows\KB928255.log 22502 bytes
c:\windows\KB928843.log 15059 bytes
c:\windows\KB929123.log 21512 bytes
c:\windows\KB929338.log 19916 bytes
c:\windows\KB929399.log 12442 bytes
c:\windows\KB929969.log 18223 bytes
c:\windows\KB930178.log 17585 bytes
c:\windows\KB930494.log 10168 bytes
c:\windows\KB930916.log 13319 bytes
c:\windows\KB931261.log 16969 bytes
c:\windows\KB931768-IE7.log 18099 bytes
c:\windows\KB931784.log 25247 bytes
c:\windows\$NtUninstallKB925902$
c:\windows\$NtUninstallKB926239$
c:\windows\$NtUninstallKB926251$
c:\windows\$NtUninstallKB926255$
c:\windows\$NtUninstallKB926436$
c:\windows\$NtUninstallKB927779$
c:\windows\$NtUninstallKB927802$
c:\windows\$NtUninstallKB927891$
c:\windows\$NtUninstallKB928255$
c:\windows\$NtUninstallKB928843$
c:\windows\$NtUninstallKB929123$
c:\windows\$NtUninstallKB929338$
c:\windows\$NtUninstallKB929399$
c:\windows\$NtUninstallKB929969$
c:\windows\$NtUninstallKB930178$
c:\windows\$NtUninstallKB891593$
c:\windows\$NtUninstallKB893756$
c:\windows\$NtUninstallKB894391$
c:\windows\$NtUninstallKB895316$
c:\windows\$NtUninstallKB895961$
c:\windows\$NtUninstallKB896428$
c:\windows\$NtUninstallKB898461$
c:\windows\$NtUninstallKB899337$
c:\windows\$NtUninstallKB899510$
c:\windows\$NtUninstallKB899587$
c:\windows\$NtUninstallKB899589$
c:\windows\$NtUninstallKB900325$
c:\windows\$NtUninstallKB900485$
c:\windows\$NtUninstallKB900725$
c:\windows\$NtUninstallKB901017$
c:\windows\$NtUninstallKB902400$
c:\windows\$NtUninstallKB919007$
c:\windows\$NtUninstallKB920213$
c:\windows\$NtUninstallKB920214$
c:\windows\$NtUninstallKB920670$
c:\windows\$NtUninstallKB920683$
c:\windows\$NtUninstallKB920685$
c:\windows\$NtUninstallKB920872$
c:\windows\$NtUninstallKB921398$
c:\windows\$NtUninstallKB921503$
c:\windows\$NtUninstallKB922582$
c:\windows\$NtUninstallKB922616$
c:\windows\$NtUninstallKB922760$
c:\windows\$NtUninstallKB922819$
c:\windows\$NtUninstallKB923191$
c:\windows\$NtUninstallKB923414$
c:\windows\$NtUninstallKB923561$
c:\windows\$NtUninstallKB923689$
c:\windows\$NtUninstallKB923694$
c:\windows\$NtUninstallKB923980$
c:\windows\$NtUninstallKB924191$
c:\windows\$NtUninstallKB924270$
c:\windows\$NtUninstallKB924496$
c:\windows\$NtUninstallKB924667$
c:\windows\$NtUninstallKB925398_WMP64$
c:\windows\$NtUninstallKB925454$
c:\windows\PIXTRAN
c:\windows\plusoc.log 346541 bytes
c:\windows\Prairie Wind.bmp 65954 bytes
c:\windows\Prefetch
c:\windows\Provisioning
c:\windows\QUICKEN.INI 76 bytes
c:\windows\regedit.exe 146432 bytes executable
c:\windows\RegisteredPackages
c:\windows\Registration
c:\windows\REGLOCS.OLD 8192 bytes
c:\windows\regopt.log 2282 bytes
c:\windows\repair
c:\windows\Resources
c:\windows\setuperr.log 0 bytes
c:\windows\setuplog.del 964557 bytes
c:\windows\setuplog.txt 160017 bytes
c:\windows\SHELLNEW
c:\windows\slrundll.exe 32866 bytes executable
c:\windows\smscfg.ini 61 bytes
c:\windows\Soap Bubbles.bmp 65978 bytes
c:\windows\SoftwareDistribution
c:\windows\spupdsvc.log 105884 bytes
c:\windows\spupdsvc.log.1.log 187 bytes
c:\windows\srchasst
c:\windows\srun.log 12 bytes
c:\windows\Sti_Trace.log 0 bytes
c:\windows\stsystra.exe 282624 bytes executable
c:\windows\Sun
c:\windows\svcpack.log 608238 bytes
c:\windows\SWREG.exe 518144 bytes executable
c:\windows\SWSC.exe 406528 bytes executable
c:\windows\SWXCACLS.exe 212480 bytes executable
c:\windows\SxsCaPendDel
c:\windows\SynInst.log 442 bytes
c:\windows\KB932168.log 20851 bytes
c:\windows\KB932823-v3.log 15861 bytes
c:\windows\KB933360.log 26849 bytes
c:\windows\KB933566-IE7.log 25786 bytes
c:\windows\KB933729.log 14727 bytes
c:\windows\KB935839.log 20488 bytes
c:\windows\KB935840.log 20911 bytes
c:\windows\KB936021.log 23251 bytes
c:\windows\KB936357.log 15148 bytes
c:\windows\KB936782.log 10154 bytes
c:\windows\KB937143-IE7.log 27461 bytes
c:\windows\KB937894.log 25510 bytes
c:\windows\KB938127-IE7.log 17509 bytes
c:\windows\KB938464-v2.log 7522 bytes
c:\windows\KB938464.log 203349 bytes
c:\windows\KB938828.log 22434 bytes
c:\windows\KB938829.log 22376 bytes
c:\windows\0.log 0 bytes
c:\windows\addins
c:\windows\AppPatch
c:\windows\assembly
c:\windows\atid.ini 21 bytes
c:\windows\avastSS.scr 41664 bytes executable
c:\windows\bcmwl.log 7605 bytes
c:\windows\Blue Lace 16.bmp 1272 bytes
c:\windows\bootstat.dat 2048 bytes
c:\windows\bsdsetup.dll 2219008 bytes executable
c:\windows\Cache
c:\windows\cdplayer.ini 1456 bytes
c:\windows\clock.avi 82944 bytes
c:\windows\cmsetacl.log 373 bytes
c:\windows\Coffee Bean.bmp 17062 bytes
c:\windows\COM+.log 4346 bytes
c:\windows\wmsetup.log 72418 bytes
c:\windows\wmsetup10.log 237 bytes
c:\windows\WMSysPr9.prx 316640 bytes
c:\windows\Wudf01000Inst.log 11160 bytes
c:\windows\xpsp1hfm.log 2256 bytes
c:\windows\Your Birthday News
c:\windows\Your Birthday News Setup Log.txt 8297 bytes
c:\windows\Your Birthday News Uninstall Log.txt 3370 bytes
c:\windows\Zapotec.bmp 9522 bytes
c:\windows\zip.exe 68096 bytes executable
c:\windows\_default.pif 707 bytes
c:\windows\medblker.Log 7259 bytes
c:\windows\MedCtrOC.log 319189 bytes
c:\windows\Media
c:\windows\Microsoft.NET
c:\windows\Minidump
c:\windows\ModemLog_Conexant HDA D110 MDC V.92 Modem.txt 4276 bytes
c:\windows\mozver.dat 2301 bytes
c:\windows\mp10oem.txt 48 bytes
c:\windows\msagent
c:\windows\msapps
c:\windows\msdfmap.ini 1405 bytes
c:\windows\msgsocm.log 148961 bytes
c:\windows\msmqinst.log 909170 bytes
c:\windows\msoffice.ini 2 bytes
c:\windows\msxml4-KB936181-enu.LOG 292444 bytes
c:\windows\msxml4-KB954430-enu.LOG 314512 bytes
c:\windows\msxml4-KB973688-enu.LOG 315746 bytes
c:\windows\$NtUninstallKB930916$
c:\windows\$NtUninstallKB931261$
c:\windows\$NtUninstallKB931784$
c:\windows\$NtUninstallKB931836$
c:\windows\$NtUninstallKB932168$
c:\windows\$NtUninstallKB932823-v3$
c:\windows\$NtUninstallKB933360$
c:\windows\$NtUninstallKB933729$
c:\windows\$NtUninstallKB935839$
c:\windows\$NtUninstallKB935840$
c:\windows\$NtUninstallKB936021$
c:\windows\$NtUninstallKB936357$
c:\windows\$NtUninstallKB936782_WMP10$
c:\windows\$NtUninstallKB937894$
c:\windows\$NtUninstallKB938464$
c:\windows\$NtUninstallKB938464-v2$
c:\windows\$NtUninstallKB938464_0$
c:\windows\$NtUninstallKB938828$
c:\windows\$NtUninstallKB938829$
c:\windows\KB941202.log 13502 bytes
c:\windows\KB941568.log 18734 bytes
c:\windows\KB941569.log 19273 bytes
c:\windows\KB941644.log 14094 bytes
c:\windows\KB941693.log 21415 bytes
c:\windows\KB942615-IE7.log 28523 bytes
c:\windows\KB942763.log 35999 bytes
c:\windows\KB943055.log 15623 bytes
c:\windows\KB943460.log 9549 bytes
c:\windows\KB943485.log 14427 bytes
c:\windows\KB944533-IE7.log 27024 bytes
c:\windows\KB944653.log 15166 bytes
c:\windows\KB945553.log 15519 bytes
c:\windows\KB946026.log 21122 bytes
c:\windows\KB946648.log 211984 bytes
c:\windows\$NtUninstallKB941568$
c:\windows\$NtUninstallKB941569$
c:\windows\$NtUninstallKB941644$
c:\windows\$NtUninstallKB941693$
c:\windows\$NtUninstallKB942763$
c:\windows\$NtUninstallKB943055$
c:\windows\$NtUninstallKB943460$
c:\windows\$NtUninstallKB943485$
c:\windows\$NtUninstallKB944653$
c:\windows\$NtUninstallKB945553$
c:\windows\$NtUninstallKB946026$
c:\windows\$NtUninstallKB946648$
c:\windows\$NtUninstallKB946648_0$
c:\windows\$NtUninstallKB948590$
c:\windows\$NtUninstallKB948881$
c:\windows\KB948590.log 15389 bytes
c:\windows\KB948881.log 15434 bytes
c:\windows\KB950749.log 16566 bytes
c:\windows\KB950759-IE7.log 19463 bytes
c:\windows\KB950760.log 7826 bytes
c:\windows\KB950762.log 203452 bytes
c:\windows\KB950974.log 217312 bytes
c:\windows\KB951066.log 202336 bytes
c:\windows\KB951072-v2.log 37071 bytes
c:\windows\KB951376-v2.log 204527 bytes
c:\windows\KB951376.log 203174 bytes
c:\windows\KB951698.log 214976 bytes
c:\windows\$NtUninstallKB950760$
c:\windows\$NtUninstallKB950762$
c:\windows\$NtUninstallKB950762_0$
c:\windows\$NtUninstallKB950974$
c:\windows\$NtUninstallKB950974_0$
c:\windows\$NtUninstallKB951066$
c:\windows\$NtUninstallKB951066_0$
c:\windows\$NtUninstallKB951072-v2$
c:\windows\$NtUninstallKB951376$
c:\windows\$NtUninstallKB951376-v2$
c:\windows\$NtUninstallKB951376-v2_0$
c:\windows\$NtUninstallKB951376_0$
c:\windows\$NtUninstallKB951698$
c:\windows\$NtUninstallKB951698_0$
c:\windows\$NtUninstallKB951748$
c:\windows\KB951978.log 15730 bytes
c:\windows\KB952004.log 16486 bytes
c:\windows\KB952011.log 9191 bytes
c:\windows\KB952069.log 10697 bytes
c:\windows\KB952287.log 209897 bytes
c:\windows\KB952954.log 217760 bytes
c:\windows\KB953295.log 11628 bytes
c:\windows\KB953838-IE7.log 20921 bytes
c:\windows\KB953839.log 15830 bytes
c:\windows\KB954155.log 9342 bytes
c:\windows\KB954156.log 4942 bytes
c:\windows\KB954211.log 202464 bytes
c:\windows\KB954459.log 14464 bytes
c:\windows\KB954600.log 7956 bytes
c:\windows\KB955069.log 8988 bytes
c:\windows\KB955759.log 9177 bytes
c:\windows\KB955839.log 33752 bytes
c:\windows\KB956390-IE7.log 25118 bytes
c:\windows\KB956391.log 13870 bytes
c:\windows\KB956572.log 16540 bytes
c:\windows\KB956744.log 8542 bytes
c:\windows\KB956802.log 13981 bytes
c:\windows\KB956803.log 208806 bytes
c:\windows\$NtUninstallKB951978$
c:\windows\$NtUninstallKB952004$
c:\windows\$NtUninstallKB952011$
c:\windows\$NtUninstallKB952069_WM9$
c:\windows\$NtUninstallKB952287$
c:\windows\$NtUninstallKB952287_0$
c:\windows\$NtUninstallKB952954$
c:\windows\$NtUninstallKB952954_0$
c:\windows\$NtUninstallKB953295$
c:\windows\$NtUninstallKB953839$
c:\windows\$NtUninstallKB954155_WM9$
c:\windows\$NtUninstallKB954156_WM9L$
c:\windows\$NtUninstallKB954211$
c:\windows\$NtUninstallKB954211_0$
c:\windows\$NtUninstallKB954459$
c:\windows\$NtUninstallKB954600$
c:\windows\$NtUninstallKB955069$
c:\windows\$NtUninstallKB955759$
c:\windows\$NtUninstallKB955839$
c:\windows\$NtUninstallKB956391$
c:\windows\$NtUninstallKB956572$
c:\windows\$NtUninstallKB956744$
c:\windows\$NtUninstallKB956802$
c:\windows\KB895961.log 4739 bytes
c:\windows\KB905749.log 30546 bytes
c:\windows\KB916281.log 14043 bytes
c:\windows\KB924496.log 51814 bytes
c:\windows\KB931836.log 31011 bytes
c:\windows\KB939653-IE7.log 25847 bytes
c:\windows\KB947864-IE7.log 20979 bytes
c:\windows\KB951748.log 214750 bytes
c:\windows\KB956841.log 209687 bytes
c:\windows\KB961501.log 21101 bytes
c:\windows\KB972260-IE7.log 99719 bytes
c:\windows\KB974571.log 16112 bytes
c:\windows\KB978262.log 8054 bytes
c:\windows\KB980232.log 7608 bytes
c:\windows\mui
c:\windows\PIF
c:\windows\Rhododendron.bmp 17362 bytes
c:\windows\setuperr.del 0 bytes
c:\windows\vmmreg32.dll 18944 bytes executable
c:\windows\WMFDist11.log 26496 bytes
c:\windows\KB956844.log 8011 bytes
c:\windows\KB957095.log 208810 bytes
c:\windows\KB957097.log 9063 bytes
c:\windows\KB958215-IE7.log 19591 bytes
c:\windows\KB958644.log 8579 bytes
c:\windows\KB958687.log 7941 bytes
c:\windows\KB958690.log 17410 bytes
c:\windows\KB958869.log 7748 bytes
c:\windows\KB959426.log 27428 bytes
c:\windows\KB960225.log 17245 bytes
c:\windows\KB960714-IE7.log 121184 bytes
c:\windows\KB960715.log 12933 bytes
c:\windows\KB960803.log 14991 bytes
c:\windows\KB960859.log 14038 bytes
c:\windows\KB961118.log 5799 bytes
c:\windows\KB961260-IE7.log 18868 bytes
c:\windows\KB961371.log 13158 bytes
c:\windows\KB961373.log 26427 bytes
c:\windows\ie7
c:\windows\ie7.log 48713 bytes
c:\windows\ie7updates
c:\windows\ie7_main.log 24856 bytes
c:\windows\ie8
c:\windows\ie8.log 87844 bytes
c:\windows\ie8updates
c:\windows\ie8_main.log 198350 bytes
c:\windows\iis6.BAK 2001040 bytes
c:\windows\iis6.log 1248548 bytes
c:\windows\ime
c:\windows\imsins.BAK 1374 bytes
c:\windows\imsins.log 1374 bytes
c:\windows\inf
c:\windows\Installer
c:\windows\Internet Logs
c:\windows\$NtUninstallKB956803_0$
c:\windows\$NtUninstallKB956841$
c:\windows\$NtUninstallKB956841_0$
c:\windows\$NtUninstallKB956844$
c:\windows\$NtUninstallKB957095$
c:\windows\$NtUninstallKB957095_0$
c:\windows\$NtUninstallKB957097$
c:\windows\$NtUninstallKB958644$
c:\windows\$NtUninstallKB958687$
c:\windows\$NtUninstallKB958690$
c:\windows\$NtUninstallKB958869$
c:\windows\$NtUninstallKB959426$
c:\windows\$NtUninstallKB960225$
c:\windows\$NtUninstallKB960715$
c:\windows\$NtUninstallKB960803$
c:\windows\$NtUninstallKB960859$
c:\windows\$NtUninstallKB961118$
c:\windows\$NtUninstallKB961371$
c:\windows\KB963027-IE7.log 101403 bytes
c:\windows\KB967715.log 13935 bytes
c:\windows\KB968389.log 17287 bytes
c:\windows\KB968537.log 13935 bytes
c:\windows\KB968816.log 7215 bytes
c:\windows\KB969059.log 15621 bytes
c:\windows\KB969897-IE7.log 96661 bytes
c:\windows\KB969898.log 14924 bytes
c:\windows\KB969947.log 13748 bytes
c:\windows\KB970238.log 20971 bytes
c:\windows\KB970430.log 23276 bytes
c:\windows\KB970653-v3.log 3807 bytes
c:\windows\KB971029.log 14688 bytes
c:\windows\KB971468.log 8677 bytes
c:\windows\KB971486.log 9782 bytes
c:\windows\KB971557.log 13492 bytes
c:\windows\KB971633.log 13994 bytes
c:\windows\KB971657.log 13986 bytes
c:\windows\KB971737.log 14379 bytes
c:\windows\KB971961-IE8.log 7817 bytes
c:\windows\KB971961.log 9014 bytes
c:\windows\$NtUninstallKB961501$
c:\windows\$NtUninstallKB967715$
c:\windows\$NtUninstallKB968389$
c:\windows\$NtUninstallKB968537$
c:\windows\$NtUninstallKB968816_WM9$
c:\windows\$NtUninstallKB969059$
c:\windows\$NtUninstallKB969898$
c:\windows\$NtUninstallKB969947$
c:\windows\$NtUninstallKB970238$
c:\windows\$NtUninstallKB970430$
c:\windows\$NtUninstallKB970653-v3$
c:\windows\$NtUninstallKB971029$
c:\windows\$NtUninstallKB971468$
c:\windows\$NtUninstallKB971486$
c:\windows\$NtUninstallKB971557$
c:\windows\$NtUninstallKB971633$
c:\windows\$NtUninstallKB971657$
c:\windows\$NtUninstallKB971737$
c:\windows\$NtUninstallKB971961$
c:\windows\$NtUninstallKB972270$
c:\windows\KB972270.log 7654 bytes
c:\windows\KB973346.log 7690 bytes
c:\windows\KB973354.log 7748 bytes
c:\windows\KB973507.log 14143 bytes
c:\windows\KB973525.log 8102 bytes
c:\windows\KB973540.log 7627 bytes
c:\windows\KB973687.log 8762 bytes
c:\windows\KB973768.log 10638 bytes
c:\windows\KB973815.log 13358 bytes
c:\windows\KB973869.log 8126 bytes
c:\windows\KB973904.log 15979 bytes
c:\windows\KB974112.log 15675 bytes
c:\windows\KB974318.log 21852 bytes
c:\windows\KB974392.log 18126 bytes
c:\windows\KB974455-IE7.log 98570 bytes
c:\windows\$NtUninstallKB973354$
c:\windows\$NtUninstallKB973507$
c:\windows\$NtUninstallKB973525$
c:\windows\$NtUninstallKB973540_WM9$
c:\windows\$NtUninstallKB973687$
c:\windows\$NtUninstallKB973768$
c:\windows\$NtUninstallKB973815$
c:\windows\$NtUninstallKB973869$
c:\windows\$NtUninstallKB973904$
c:\windows\$NtUninstallKB974112$
c:\windows\$NtUninstallKB974318$
c:\windows\$NtUninstallKB974392$
c:\windows\$NtUninstallKB974571$
c:\windows\$NtUninstallKB975025$
c:\windows\$NtUninstallKB975467$
c:\windows\$NtUninstallKB975558_WM8$
c:\windows\KB975025.log 15620 bytes
c:\windows\KB975467.log 14332 bytes
c:\windows\KB975558.log 9246 bytes
c:\windows\KB975560.log 13824 bytes
c:\windows\KB975561.log 7481 bytes
c:\windows\KB975562.log 20193 bytes
c:\windows\KB975713.log 13795 bytes
c:\windows\KB976098-v2.log 4284 bytes
c:\windows\KB976325-IE7.log 98845 bytes
c:\windows\KB976662-IE8.log 7716 bytes
c:\windows\KB976749-IE7.log 17090 bytes
c:\windows\KB977165.log 9598 bytes
c:\windows\KB977816.log 13192 bytes
c:\windows\KB977914.log 14505 bytes
c:\windows\KB978037.log 14029 bytes
c:\windows\KB978207-IE7.log 100461 bytes
c:\windows\KB978251.log 7779 bytes
c:\windows\$NtUninstallKB975561$
c:\windows\$NtUninstallKB975562$
c:\windows\$NtUninstallKB975713$
c:\windows\$NtUninstallKB976098-v2$
c:\windows\$NtUninstallKB977165$
c:\windows\$NtUninstallKB977816$
c:\windows\$NtUninstallKB977914$
c:\windows\$NtUninstallKB978037$
c:\windows\$NtUninstallKB978251$
c:\windows\$NtUninstallKB978262$
c:\windows\$NtUninstallKB978338$
c:\windows\$NtUninstallKB978542$
c:\windows\$NtUninstallKB978601$
c:\windows\$NtUninstallKB978695_WM9$
c:\windows\$NtUninstallKB978706$
c:\windows\KB978338.log 13689 bytes
c:\windows\KB978542.log 13178 bytes
c:\windows\KB978601.log 14008 bytes
c:\windows\KB978695.log 14333 bytes
c:\windows\KB978706.log 12937 bytes
c:\windows\KB979306.log 3822 bytes
c:\windows\KB979309.log 13011 bytes
c:\windows\KB979332.log 5160 bytes
c:\windows\KB979482.log 20142 bytes
c:\windows\KB979559.log 22073 bytes
c:\windows\KB979683.log 9103 bytes
c:\windows\KB979687.log 22260 bytes
c:\windows\KB979904.log 19512 bytes
c:\windows\KB980182-IE7.log 101580 bytes
c:\windows\KB980195.log 16934 bytes
c:\windows\KB980218.log 23454 bytes
c:\windows\KB980436.log 14539 bytes
c:\windows\KB981322.log 13540 bytes
c:\windows\KB981332-IE8.log 7704 bytes
c:\windows\KB981349.log 13708 bytes
c:\windows\KB981793.log 3823 bytes
c:\windows\KB981852.log 15045 bytes
c:\windows\KB981957.log 17410 bytes
c:\windows\KB981997.log 7692 bytes
c:\windows\KB982132.log 21667 bytes
c:\windows\KB982214.log 13395 bytes
c:\windows\KB982381-IE7.log 102007 bytes
c:\windows\KB982381-IE8.log 97538 bytes
c:\windows\KB982632-IE8.log 87647 bytes
c:\windows\KB982665.log 13173 bytes
c:\windows\KB982802.log 15076 bytes
c:\windows\l2schemas
c:\windows\MBR.exe 208896 bytes executable
c:\windows\MCSetup.log 2398 bytes
c:\windows\MCSetup_UI.log 1525 bytes
c:\windows\$NtUninstallKB979309$
c:\windows\$NtUninstallKB979332_WM9L$
c:\windows\$NtUninstallKB979482$
c:\windows\$NtUninstallKB979559$
c:\windows\$NtUninstallKB979683$
c:\windows\$NtUninstallKB979687$
c:\windows\$NtUninstallKB979904$
c:\windows\$NtUninstallKB980195$
c:\windows\$NtUninstallKB980218$
c:\windows\$NtUninstallKB980232$
c:\windows\$NtUninstallKB980436$
c:\windows\$NtUninstallKB981322$
c:\windows\$NtUninstallKB981349$
c:\windows\$NtUninstallKB981793$
c:\windows\$NtUninstallKB981852$
c:\windows\$NtUninstallKB981957$
c:\windows\$NtUninstallKB981997$
c:\windows\$NtUninstallKB982132$
c:\windows\$NtUninstallKB982214$
c:\windows\$NtUninstallKB982665$
c:\windows\$NtUninstallKB982802$
c:\windows\$NtUninstallWMFDist11$
c:\windows\$NtUninstallWudf01000$
c:\windows\java
c:\windows\KB2079403.log 19255 bytes
c:\windows\KB2115168.log 18717 bytes
c:\windows\KB2121546.log 15196 bytes
c:\windows\KB2141007.log 13275 bytes
c:\windows\KB2158563.log 3778 bytes
c:\windows\KB2160329.log 15213 bytes
c:\windows\KB2183461-IE8.log 16154 bytes
c:\windows\KB2229593.log 8005 bytes
c:\windows\KB2279986.log 23175 bytes
c:\windows\KB2286198.log 14125 bytes
c:\windows\KB2296011.log 13278 bytes
c:\windows\KB2296199.log 17837 bytes
c:\windows\KB2345886.log 23658 bytes
c:\windows\KB2347290.log 15716 bytes
c:\windows\KB2360131-IE8.log 17994 bytes
c:\windows\KB2360937.log 10575 bytes
c:\windows\KB2387149.log 16682 bytes
c:\windows\KB2393802.log 10628 bytes
c:\windows\KB2412687.log 10826 bytes
c:\windows\KB2416400-IE8.log 15824 bytes
c:\windows\KB2419632.log 21237 bytes
c:\windows\KB2423089.log 7736 bytes
c:\windows\KB2436673.log 14580 bytes
c:\windows\KB2440591.log 8238 bytes
c:\windows\KB2443105.log 17034 bytes
c:\windows\KB2443685.log 4077 bytes
c:\windows\DtcInstall.log 867 bytes
c:\windows\ehOCGen.log 165297 bytes
c:\windows\ehome
c:\windows\EmeraldQFE2.log 6645 bytes
c:\windows\ERDNT
c:\windows\ERUNT
c:\windows\eSellerateEngine.dll 360580 bytes executable
c:\windows\explorer.exe 1033728 bytes executable
c:\windows\explorer.scf 80 bytes
c:\windows\FaxSetup.log 2979584 bytes
c:\windows\KB2467659.log 7450 bytes
c:\windows\KB2476490.log 18053 bytes
c:\windows\KB2476687.log 14445 bytes
c:\windows\KB2478960.log 14156 bytes
c:\windows\KB2478971.log 20716 bytes
c:\windows\KB2479628.log 20307 bytes
c:\windows\KB2481109.log 14245 bytes
c:\windows\KB2482017-IE8.log 16647 bytes
c:\windows\KB2483185.log 19524 bytes
c:\windows\$NtUninstallKB950749$
c:\windows\$NtUninstallKB951748_0$
c:\windows\$NtUninstallKB956803$
c:\windows\$NtUninstallKB961373$
c:\windows\$NtUninstallKB973346$
c:\windows\$NtUninstallKB975560$
c:\windows\$NtUninstallKB979306$
c:\windows\comsetup.log 962047 bytes
c:\windows\Driver Cache
c:\windows\FeatherTexture.bmp 16730 bytes
c:\windows\KB2259922.log 9695 bytes
c:\windows\KB2378111.log 13386 bytes
c:\windows\KB2485376.log 20266 bytes
c:\windows\KB2544521-IE8.log 7959 bytes
c:\windows\KB2570222.log 12049 bytes
c:\windows\KB2639417.log 19871 bytes
c:\windows\KB2660465.log 18777 bytes
c:\windows\KB2699988-IE8.log 16872 bytes
c:\windows\KB2723135.log 13155 bytes
c:\windows\KB2756822.log 4788 bytes
c:\windows\KB2780091.log 18763 bytes
c:\windows\KB2813170.log 15127 bytes
c:\windows\KB2485663.log 17640 bytes
c:\windows\KB2497640-IE8.log 21374 bytes
c:\windows\KB2502898.log 10470 bytes
c:\windows\KB2503658.log 18487 bytes
c:\windows\KB2503665.log 12584 bytes
c:\windows\KB2506212.log 17144 bytes
c:\windows\KB2506223.log 24359 bytes
c:\windows\KB2507618.log 17968 bytes
c:\windows\KB2507938.log 14478 bytes
c:\windows\KB2508272.log 12307 bytes
c:\windows\KB2508429.log 17704 bytes
c:\windows\KB2509553.log 17269 bytes
c:\windows\KB2510531-IE8.log 10047 bytes
c:\windows\KB2511455.log 11618 bytes
c:\windows\KB2524375.log 7247 bytes
c:\windows\KB2530548-IE8.log 16286 bytes
c:\windows\KB2535512.log 12585 bytes
c:\windows\KB2536276-v2.log 12218 bytes
c:\windows\KB2536276.log 12662 bytes
c:\windows\KB2541763.log 13986 bytes
c:\windows\KB2544893-v2.log 12958 bytes
c:\windows\KB2544893.log 8593 bytes
c:\windows\KB2555917.log 14460 bytes
c:\windows\KB2559049-IE8.log 15767 bytes
c:\windows\KB2562937.log 7308 bytes
c:\windows\KB2564958.log 12384 bytes
c:\windows\KB2566454.log 7992 bytes
c:\windows\KB2567053.log 20451 bytes
c:\windows\KB2567680.log 17856 bytes
c:\windows\KB2570791.log 3730 bytes
c:\windows\KB2570947.log 7496 bytes
c:\windows\KB2572066.log 12891 bytes
c:\windows\KB2584146.log 12920 bytes
c:\windows\KB2585542.log 14618 bytes
c:\windows\KB2586448-IE8.log 18412 bytes
c:\windows\KB2592799.log 14172 bytes
c:\windows\KB2598479.log 13920 bytes
c:\windows\KB2603381.log 7441 bytes
c:\windows\KB2604042.log 13607 bytes
c:\windows\KB2607712.log 13982 bytes
c:\windows\KB2616676.log 13914 bytes
c:\windows\KB2618444-IE8.log 16750 bytes
c:\windows\KB2618451.log 7725 bytes
c:\windows\KB2619340.log 16096 bytes
c:\windows\KB2620712.log 13416 bytes
c:\windows\KB2621440.log 7897 bytes
c:\windows\KB2624667.log 18904 bytes
c:\windows\KB2628259.log 10295 bytes
c:\windows\KB2631813.log 13669 bytes
c:\windows\KB2633171.log 16347 bytes
c:\windows\KB2633952.log 4080 bytes
c:\windows\KB2641653.log 8093 bytes
c:\windows\KB2641690.log 14001 bytes
c:\windows\KB2646524.log 14303 bytes
c:\windows\KB2647516-IE8.log 16514 bytes
c:\windows\KB2647518.log 7263 bytes
c:\windows\KB2653956.log 14506 bytes
c:\windows\KB2655992.log 14905 bytes
c:\windows\KB2656378.log 30639 bytes
c:\windows\KB2659262.log 7088 bytes
c:\windows\KB2661254-v2.log 14308 bytes
c:\windows\KB2661637.log 7689 bytes
c:\windows\KB2675157-IE8.log 17117 bytes
c:\windows\KB2676562.log 18413 bytes
c:\windows\KB2685939.log 8171 bytes
c:\windows\KB2686509.log 9267 bytes
c:\windows\KB2691442.log 15841 bytes
c:\windows\KB2695962.log 8553 bytes
c:\windows\KB2698035.log 14092 bytes
c:\windows\KB2698365.log 9800 bytes
c:\windows\KB2705219.log 19573 bytes
c:\windows\KB2707511.log 21052 bytes
c:\windows\KB2709162.log 14498 bytes
c:\windows\KB2712808.log 19992 bytes
c:\windows\KB2718523.log 9939 bytes
c:\windows\KB2718704.log 13987 bytes
c:\windows\KB2719985.log 14657 bytes
c:\windows\KB2722913-IE8.log 17457 bytes
c:\windows\KB2724197.log 15833 bytes
c:\windows\KB2727528.log 13488 bytes
c:\windows\KB2731847.log 14547 bytes
c:\windows\KB2736233.log 7282 bytes
c:\windows\KB2742607.log 20582 bytes
c:\windows\KB2744842-IE8.log 16833 bytes
c:\windows\KB2749655.log 14273 bytes
c:\windows\KB2753842-v2.log 22259 bytes
c:\windows\KB2753842.log 18520 bytes
c:\windows\$NtUninstallKB2719985$
c:\windows\$NtUninstallKB2723135$
c:\windows\$NtUninstallKB2724197$
c:\windows\$NtUninstallKB2727528$
c:\windows\$NtUninstallKB2731847$
c:\windows\$NtUninstallKB2736233$
c:\windows\$NtUninstallKB2742607$
c:\windows\$NtUninstallKB2749655$
c:\windows\$NtUninstallKB2753842$
c:\windows\$NtUninstallKB2753842-v2$
c:\windows\$NtUninstallKB2756822$
c:\windows\$NtUninstallKB2757638$
c:\windows\$NtUninstallKB2758857$
c:\windows\$NtUninstallKB2761226$
c:\windows\$NtUninstallKB2770660$
c:\windows\KB2757638.log 14678 bytes
c:\windows\KB2758857.log 19076 bytes
c:\windows\KB2761226.log 14857 bytes
c:\windows\KB2761465-IE8.log 17170 bytes
c:\windows\KB2770660.log 17769 bytes
c:\windows\KB2778344.log 19922 bytes
c:\windows\KB2779030.log 19483 bytes
c:\windows\KB2779562.log 8900 bytes
c:\windows\KB2792100-IE8.log 17225 bytes
c:\windows\KB2797052-IE8.log 13799 bytes
c:\windows\KB2799329-IE8.log 8973 bytes
c:\windows\KB2799494.log 20534 bytes
c:\windows\KB2802968.log 18784 bytes
c:\windows\KB2807986.log 8372 bytes
c:\windows\KB2808735.log 14773 bytes
c:\windows\KB2809289-IE8.log 138951 bytes
c:\windows\$NtUninstallKB2779030$
c:\windows\$NtUninstallKB2779562$
c:\windows\$NtUninstallKB2780091$
c:\windows\$NtUninstallKB2799494$
c:\windows\$NtUninstallKB2802968$
c:\windows\$NtUninstallKB2807986$
c:\windows\$NtUninstallKB2808735$
c:\windows\$NtUninstallKB2813170$
c:\windows\$NtUninstallKB2813345$
c:\windows\$NtUninstallKB2820197$
c:\windows\$NtUninstallKB2820917$
c:\windows\$NtUninstallKB2829361$
c:\windows\$NtUninstallKB2833951$
c:\windows\$NtUninstallKB2834886$
c:\windows\$NtUninstallKB2834904_WM11$
c:\windows\$NtUninstallKB2839229$
c:\windows\$NtUninstallKB2845187$
c:\windows\$NtUninstallKB2850851$
c:\windows\$NtUninstallKB835221WXP$
c:\windows\$NtUninstallKB885836$
c:\windows\$NtUninstallKB886185$
c:\windows\$NtUninstallKB887998$
c:\windows\$NtUninstallKB888302$
c:\windows\$NtUninstallKB888795$
c:\windows\$NtUninstallKB890046$
c:\windows\$NtUninstallKB890859$
c:\windows\KB2813345.log 14239 bytes
c:\windows\KB2817183-IE8.log 17486 bytes
c:\windows\KB2820197.log 7559 bytes
c:\windows\KB2820917.log 13743 bytes
c:\windows\KB2829361.log 12055 bytes
c:\windows\KB2829530-IE8.log 12869 bytes
c:\windows\KB2833951.log 135524 bytes
c:\windows\KB2834886.log 131644 bytes
c:\windows\KB2834904.log 131348 bytes
c:\windows\KB2838727-IE8.log 12284 bytes
c:\windows\KB2839229.log 16195 bytes
c:\windows\KB2845187.log 138680 bytes
c:\windows\KB2846071-IE8.log 135877 bytes
c:\windows\KB2847204-IE8.log 6495 bytes
c:\windows\KB2850851.log 137880 bytes
c:\windows\KB835221.log 21589 bytes
c:\windows\KB873339.log 5311 bytes
.
scan completed successfully
hidden files: 986
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ca,eb,09,24,e9,f8,d7,45,bb,a1,3a,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ca,eb,09,24,e9,f8,d7,45,bb,a1,3a,\
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1016)
c:\windows\system32\Ati2evxx.dll
c:\windows\System32\BCMLogon.dll
.
- - - - - - - > 'explorer.exe'(824)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Completion time: 2013-07-15 22:53:29
ComboFix-quarantined-files.txt 2013-07-16 02:53
ComboFix2.txt 2013-07-08 03:16
.
Pre-Run: 26,335,412,224 bytes free
Post-Run: 26,306,408,448 bytes free
.
- - End Of File - - 7A1535A61E01ABBAACF1F93BFB282EF8
8F558EB6672622401DA993E1E865C861

#14
gringo_pr

Posted 15 July 2013 - 09:26 PM

Trusted Helper

Malware Removal
7,268 posts

Hello babablack

Malwarebytes Anti-Rootkit

1.Download Malwarebytes Anti-Rootkit
2.Unzip the contents to a folder in a convenient location.
3.Open the folder where the contents were unzipped and run mbar.exe
4.Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
5.Click on the Cleanup button to remove any threats and reboot if prompted to do so.
6.Wait while the system shuts down and the cleanup process is performed.
7.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
8.If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:
•Internet access
•Windows Update
•Windows Firewall9.If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included with Malwarebytes Anti-Rootkit and reboot.
10.Verify that your system is now functioning normally.

Please download aswMBR to your desktop.

Double click the aswMBR.exe icon to run it
it will ask to download extra definitions - ALLOW IT
Click the Scan button to start the scan
On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

When you are complete please send me both reports

Gringo

#15
babablack

Posted 19 July 2013 - 03:13 AM

Member

Topic Starter
Member
11 posts

Hi Gringo,

2 Logs are pasted below in the order you requested. Same issues are still occurring.

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.06.0.1004

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

Java version: 1.6.0_30

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 1.729000 GHz
Memory total: 2145771520, free: 1225777152

Downloaded database version: v2013.07.18.06
Downloaded database version: v2013.07.15.01
Initializing...
------------ Kernel report ------------
07/18/2013 21:15:40
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
compbatt.sys
\WINDOWS\system32\DRIVERS\BATTC.SYS
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
dmio.sys
PartMgr.sys
VolSnap.sys
atapi.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltmgr.sys
sr.sys
Lbd.sys
drvmcdb.sys
PxHelp20.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
sbp2port.sys
ohci1394.sys
\WINDOWS\system32\DRIVERS\1394BUS.SYS
Mup.sys
aswVmm.sys
aswRvrt.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\ati2mtag.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\bcmwl5.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\bcm4sbxp.sys
\SystemRoot\system32\DRIVERS\sdbus.sys
\SystemRoot\system32\DRIVERS\rimmptsk.sys
\SystemRoot\system32\DRIVERS\rimsptsk.sys
\SystemRoot\system32\DRIVERS\rixdptsk.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\System32\Drivers\cdrbsdrv.SYS
\SystemRoot\system32\drivers\sscdbhk5.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\rdpdr.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\omci.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\sthda.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\HSFHWAZL.sys
\SystemRoot\system32\DRIVERS\HSF_DPV.sys
\SystemRoot\system32\DRIVERS\HSF_CNXT.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\i2omgmt.SYS
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\drivers\ssrtln.sys
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\System32\Drivers\aswTdi.SYS
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\System32\Drivers\aswRdr.SYS
\SystemRoot\System32\vsdatant.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\System32\Drivers\SCDEmu.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\System32\Drivers\aswSP.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\aswSnx.SYS
\SystemRoot\System32\Drivers\ASPI32.SYS
\SystemRoot\SYSTEM32\DRIVERS\APPDRV.SYS
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_WMILIB.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\ati2dvag.dll
\SystemRoot\System32\ati2cqag.dll
\SystemRoot\System32\atikvmag.dll
\SystemRoot\System32\ati3duag.dll
\SystemRoot\System32\ativvaxx.dll
\SystemRoot\System32\ATMFD.DLL
\??\C:\WINDOWS\system32\drivers\aswMonFlt.sys
\SystemRoot\System32\Drivers\aswFsBlk.SYS
\SystemRoot\system32\drivers\drvnddm.sys
\SystemRoot\system32\dla\tfsndres.sys
\SystemRoot\system32\dla\tfsnifs.sys
\SystemRoot\system32\dla\tfsnopio.sys
\SystemRoot\system32\dla\tfsnpool.sys
\SystemRoot\system32\dla\tfsnboio.sys
\SystemRoot\system32\dla\tfsncofs.sys
\SystemRoot\system32\dla\tfsndrct.sys
\SystemRoot\system32\dla\tfsnudf.sys
\SystemRoot\system32\dla\tfsnudfa.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\??\C:\WINDOWS\system32\drivers\cpuz134_x32.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\mdmxsdk.sys
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\secdrv.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff8ac35ab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP0T0L0-3\
Lower Device Object: 0xffffffff8ac40d98
Lower Device Driver Name: \Driver\atapi\
<<<2>>>
Device number: 0, partition: 2
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff8ac35ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff8abd8e08, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff8ac35ab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff8ac40d98, DeviceName: \Device\Ide\IdeDeviceP0T0L0-3\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\system32\drivers...
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
The directory C:\WINDOWS\system32\drivers seems inaccessible or encrypted.
Drivers scan is aborted.
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: E686F016

Partition information:

Partition 0 type is Other (0xde)
Partition is NOT ACTIVE.
Partition starts at LBA: 63 Numsec = 96327

Partition 1 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 96390 Numsec = 166031775
Partition file system is NTFS
Partition is bootable

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 166128165 Numsec = 55617030

Partition 3 type is Other (0xdb)
Partition is NOT ACTIVE.
Partition starts at LBA: 221745195 Numsec = 9735390

Disk Size: 118526284800 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-62-231476650-231496650)...
Done!
Scan finished
=======================================

Removal queue found; removal started
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\bootstrap_0_1_96390_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removal finished
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.06.0.1004

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

Java version: 1.6.0_30

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 1.729000 GHz
Memory total: 2145771520, free: 965468160

=======================================

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-07-18 21:39:32
-----------------------------
21:39:32.156 OS Version: Windows 5.1.2600 Service Pack 3
21:39:32.156 Number of processors: 2 586 0xE08
21:39:32.156 ComputerName: DBS18XB1 UserName:
21:39:35.078 Initialize success
21:39:41.187 AVAST engine defs: 13063001
21:40:20.062 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
21:40:20.062 Disk 0 Vendor: SAMSUNG_HM120JI YF100-15 Size: 113035MB BusType: 3
21:40:20.265 Disk 0 MBR read successfully
21:40:20.265 Disk 0 MBR scan
21:40:21.093 Disk 0 Windows XP default MBR code
21:40:21.093 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
21:40:21.968 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 81070 MB offset 96390
21:40:22.562 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 27156 MB offset 166128165
21:40:22.578 Disk 0 Partition 4 00 DB CP/M / CTOS MSDOS5.0 4753 MB offset 221745195
21:40:22.765 Disk 0 scanning sectors +231480585
21:40:23.359 Disk 0 scanning C:\WINDOWS\system32\drivers
21:40:52.734 Service scanning
21:41:17.218 Service vsdatant C:\WINDOWS\System32\vsdatant.sys **LOCKED** 32
21:41:19.531 Modules scanning
21:41:44.125 Disk 0 trace - called modules:
21:41:44.140 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
21:41:44.140 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ac35ab8]
21:41:44.140 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8ac40d98]
21:41:44.625 AVAST engine scan C:\WINDOWS
21:42:28.531 File: C:\WINDOWS\avastSS.scr **HIDDEN**
21:42:28.765 File: C:\WINDOWS\bsdsetup.dll **HIDDEN**
21:42:29.015 File: C:\WINDOWS\dla.exe **HIDDEN**
21:42:29.203 File: C:\WINDOWS\eSellerateEngine.dll **HIDDEN**
21:42:29.312 File: C:\WINDOWS\explorer.exe **HIDDEN**
21:42:29.484 File: C:\WINDOWS\grep.exe **HIDDEN**
21:42:29.562 File: C:\WINDOWS\hh.exe **HIDDEN**
21:42:32.796 File: C:\WINDOWS\kb913800.exe **HIDDEN**
21:42:35.406 File: C:\WINDOWS\MBR.exe **HIDDEN**
21:42:35.828 File: C:\WINDOWS\NIRCMD.exe **HIDDEN**
21:42:35.859 File: C:\WINDOWS\notepad.exe **HIDDEN**
21:42:36.062 File: C:\WINDOWS\PEV.exe **HIDDEN**
21:42:36.203 File: C:\WINDOWS\regedit.exe **HIDDEN**
21:42:36.406 File: C:\WINDOWS\sed.exe **HIDDEN**
21:42:36.500 File: C:\WINDOWS\setpwrcg.exe **HIDDEN**
21:42:36.734 File: C:\WINDOWS\slrundll.exe **HIDDEN**
21:42:36.921 File: C:\WINDOWS\stsystra.exe **HIDDEN**
21:42:37.000 File: C:\WINDOWS\SWREG.exe **HIDDEN**
21:42:37.093 File: C:\WINDOWS\SWSC.exe **HIDDEN**
21:42:37.140 File: C:\WINDOWS\SWXCACLS.exe **HIDDEN**
21:42:37.312 File: C:\WINDOWS\TASKMAN.EXE **HIDDEN**
21:42:37.437 File: C:\WINDOWS\twain_32.dll **HIDDEN**
21:42:37.500 File: C:\WINDOWS\twunk_32.exe **HIDDEN**
21:42:37.578 File: C:\WINDOWS\uninstyler.exe **HIDDEN**
21:42:37.671 File: C:\WINDOWS\UNWISE.EXE **HIDDEN**
21:42:37.718 File: C:\WINDOWS\vmmreg32.dll **HIDDEN**
21:42:37.890 File: C:\WINDOWS\winhlp32.exe **HIDDEN**
21:42:38.062 File: C:\WINDOWS\zip.exe **HIDDEN**
21:42:38.843 AVAST engine scan C:\WINDOWS\system32
21:47:07.250 AVAST engine scan C:\WINDOWS\system32\drivers
21:47:31.250 AVAST engine scan C:\Documents and Settings\Kevin Bento
21:53:50.296 AVAST engine scan C:\Documents and Settings\All Users
22:07:20.281 File: C:\Documents and Settings\All Users\Start Menu\3 Months Free NetZero.exe **INFECTED** Win32:Malware-gen
22:09:01.687 Scan finished successfully
05:10:40.734 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Kevin Bento\Desktop\MBR.dat"
05:10:40.734 The log file has been saved successfully to "C:\Documents and Settings\Kevin Bento\Desktop\aswMBR.txt"