Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

HELP! Can't get rid of a virus! [Closed]


  • This topic is locked This topic is locked

#1
xplocast1

xplocast1

    Member

  • Member
  • PipPip
  • 28 posts

Hello, I recently got infected by multiple viruses on my system. Don't ask for make and model, because the entire tower was custom built by my dad. I don't have any virus protection stuff. It runs on Windows XP, has two hard drives and cd drives, 

The virus I know of is the DOJ $300 moneypak. It pops up a screen where it locks me out of every function on the computer.

 

I believe there may be another virus affecting my boot sector. It won't let me boot up in safe mode, safe mode with networking, safe mode with command prompt, boot logging, and debugging without going to a BSOD. I can boot up normal, but that leads to the previous paragraph. I can also boot up by enabling vga mode without problems.(it gets really annoying when i have to change my resolution from the lowest possible to what i normally use.)

 

I have tried everything, booting from an usb, registry edit, chkdsk. I do not care if i lose any data on this tower, i would just like to be able to use it for some of the older programs I use.


Edited by xplocast1, 06 July 2014 - 01:17 PM.

  • 0

Advertisements


#2
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hello xplocast1,
 
My username is LiquidTension, but you can call me Adam. I will be assisting you with your malware-related problems.
If you would allow me to call you by your first name I would prefer that. smile.png
 
======================================================
 
Important: I have laid out some "ground rules" I would very much appreciate you follow. Please read through the points below, to ensure this process moves as quickly and efficiently as possible.

  • Please read through my instructions thoroughly, and ensure you carry out each step in the order specified.
  • Please do not post logs using the CODEQUOTE or ATTACHMENT format. Logs should be posted directly in plain text. If you receive an error whilst posting, please break the log in half and use multiple posts.
  • Please do not run any tools or take any steps other than those I provide for you. Independent efforts may make matters worse, and will affect my ability in ascertaining the current situation & providing the best set of instructions for you.
  • Ensure you are subscribed to this topic to receive instant email notifications of my responses.
    • ​Scroll to the top of this page and ensure you see the following: 6hgDYJ6.png
    • If you are not set to follow this topic, click the Follow this topic button and follow the prompts.
  • If you come across any issues whilst following my instructions, please stop and inform me of the issue in as much detail as possible. Please do not hesitate to ask before you run anything.
  • Topics are locked if no response is made after 5 days. Please inform me if you will require additional time to complete my instructions.

======================================================
 
Please be advised that I am currently in training at WhattheTech.com. My responses will need to be approved by a instructor at WhattheTech.com before I post in order to ensure you are receiving accurate instructions. I will return as soon as possible.


Edited by LiquidTension, 07 July 2014 - 08:08 AM.

  • 0

#3
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hello xplocast1, 
 
Thank you for the description of your situation. Before proceeding, I must first ensure you are aware that your computer is running an unsupported Operating System
 

goGMWSt.gif Unsupported Operating System Warning

------------------------------

On April 8th 2014, Microsoft officially declared Windows XP as unsupported, and consequently ceased the production and release of Windows XP Updates and Security Patches. Please read the following articles:

Without Windows Updates, your computer will be continuously susceptible to malware infection. In the past, vulnerabilities found in the Windows XP software were patched shortly after by Microsoft issuing an Update. Now that XP is no long supported with Updates, once a vulnerability is discovered, it will not be patched, allowing malware authors to freely distribute their exploit in the knowledge the vulnerability will not be patched.

 
Please answer the following questions:

  • What is the bit-type of your infected computer (32 or 64-bit)?
  • Do you have access to a clean computer
  • Do you have access to a clean USB drive that you can format
  • Do you have access to your Windows installation disc
  • Do you have access to a blank CD/DVD

We shall begin once you have answered the questions above.


  • 0

#4
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hello, 
 
I have not heard back from you in 3 days.

  • Do you still require help?
  • If you require additional time to complete my instructions, please let me know.
  • If after 48 hours you have not replied to this thread it will have to be closed. 

  • 0

#5
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

My name is Jayson. I do require help, however, not as much because i found and completely removed the virus sent out by moneypak. Other than that, I still can't run any type of bootup mode besides regular and vga mode.

 

My bit type is 32

I do not have access to a clean computer.

I do have a clean usb (don't know the size(if that matters)).

I may be somewhere in my home, but my dad has no idea where.

I do have access to blank dvd's and cd's.

 

I did not mention that one of my disk drives is a dvd and burner drive.


  • 0

#6
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

I also attempted to see if it was windows 7 compatible, so I could upgrade, but i can't remember what it was, but it was not made to be upto the standards of a windows 7 


  • 0

#7
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Jayson,
 
Thank you for the information. Please ensure you are subscribed to this topic by pressing the Follow this topic button at the top. 
 

I do require help, however, not as much because i found and completely removed the virus sent out by moneypak.

Malware tends to leave behind more remnants than you may realise, so it's important we check for malware before troubleshooting your issues with booting into Safe Mode. We may find these issues are in fact non-malware related - we shall see. 

 
STEP 1
xlK5Hdb.png Farbar Recovery Scan Tool (FRST) Scan

  • Please download Farbar Recovery Scan Tool (x32) and save the file to your desktop.
  • Double-click FRST.exe to run the programme.
  • Click Yes to the disclaimer.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your desktop. Copy the contents of both logs and paste in your next reply. 
     

STEP 2
aA7bkRO.png aswMBR

  • Please download aswMBR and save the file to your desktop
  • Temporarily disable your anti-virus software. For instructions, please refer to the following link.
  • Double-click aswMBR.exe to run the programme.
  • If you are prompted to download the latest anti-virus definitions from avast!, click Yes.
  • Click the AV Scan: drop down box and click C:\.
  • Click Scan
  • Upon completion, you will see Scan finished successfully. Click Save log
  • Copy the contents of the log and paste in your next reply.

Note: Do NOT attempt to click Fix or FixMBR.
Note: A file (MBR.dat) will be created on your desktop. Do NOT click or delete it.

 
STEP 3
YARWD1t.png TDSSKiller Scan

  • Please download TDSSKiller and save the file to your desktop.
  • Double-click TDSSKiller.exe to run the programme.
  • Click Change parameters. Place a checkmark next to:
    • Loaded Modules
    • Detect TDLFS file system
  • Note: If you receive the following message: Extended Monitoring Driver is required, click Reboot now, and continue from here following the reboot.
  • ​Click Start Scan.
  • Note: Do not use the computer during the scan.
  • If objects are found, change the action to skip.
  • Click Continue and close the window.
  • A log will be created and saved to the root directory (usually C:\). Please attach this file in your next reply.
     

======================================================
 
STEP 4
pfNZP4A.png Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • FRST.txt
  • Addition.txt
  • aswMBR log
  • TDSSKiller log (attached)

  • 0

#8
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

Is there an alternative program for TDSSKiller? I can't get it to download.


  • 0

#9
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

Also I still can not boot into any mode OTHER than VGA mode and Regular. Still can not boot up safe mode without BSOD


  • 0

#10
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

Here is those logs, minus the TDSSKiller, because I am unable to download it.

Attached Files


  • 0

Advertisements


#11
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

Okay, was able to download the killer from another site.


  • 0

#12
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
Additional scan result of Farbar Recovery Scan Tool (x86) Version:14-07-2014 01
Ran by Test at 2014-07-15 03:22:20
Running from G:\
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
 
==================== Installed Programs ======================
 
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe AIR (Version: 1.0.8.4990 - Adobe Systems Inc.) Hidden
Adobe Flash Player 10 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 10.0.12.36 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 11.3.300.268 - Adobe Systems Incorporated)
Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.7.637 - Adobe Systems, Inc.)
AppCore (Version: 2.0.0.79 - Symantec Corporation) Hidden
Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
ASUS Probe V2.21.08 (HKLM\...\ASUS Probe V2.21.08) (Version:  - )
Backup (Version: 1.0.0.382 - Symantec Corporation) Hidden
Bonus (Version: 2.1.0.55 - Symantec Corporation) Hidden
CC_ccProxyExt (Version: 107.0.5.5 - Symantec) Hidden
ccCommon (Version: 107.0.5.5 - Symantec) Hidden
ccPxyCore (Version: 107.0.5.5 - Symantec) Hidden
CIB (Version: 2.1.0.55 - Symantec Corporation) Hidden
Critical Update for Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version:  - Microsoft Corporation)
DirectX Media Runtime 5.1 (HKLM\...\DirectXMediaRuntime) (Version:  - )
DVD Suite (HKLM\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.0.1319 - CyberLink Corporation)
GearDrvs (Version: 1.00.0000 - GEAR Software) Hidden
GearDrvs (Version: 5.0.0.2 - Symantec Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 26.0.1410.43 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Java 7 Update 9 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217009FF}) (Version: 7.0.90 - Oracle)
Java Auto Updater (Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java™ 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Juno (HKLM\...\{92F36672-245D-11D5-AC74-00105A0CF83E}) (Version:  - Juno Online Services, Inc.)
LEGOLAND (HKLM\...\LEGOLANDDeInstKey) (Version:  - )
Lemonade Tycoon 2 (HKLM\...\Lemonade Tycoon 2) (Version:  - )
LG ODD Auto Firmware Update (HKLM\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 6.01.0723.01 - )
LiveUpdate (Symantec Corporation) (HKLM\...\PsuedoLiveUpdate) (Version: 3.4.1.234 - Symantec Corporation)
LiveUpdate (Symantec Corporation) (Version: 3.4.1.238 - Symantec Corporation) Hidden
Managed DirectX (0900) (Version: 4.09.00.0900 - Microsoft) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version:  - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Internationalized Domain Names Mitigation APIs (Version:  - Microsoft Corporation) Hidden
Microsoft National Language Support Downlevel APIs (Version:  - Microsoft Corporation) Hidden
Microsoft Office Professional Edition 2003 (HKLM\...\{91110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Microsoft VC9 runtime libraries (Version: 2.0.0 - AOL Inc.) Hidden
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.0 (HKLM\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Mission: T.H.I.N.K. (HKLM\...\ssmwin32.exe) (Version:  - )
Mozilla Firefox 16.0.2 (x86 en-US) (HKLM\...\Mozilla Firefox 16.0.2 (x86 en-US)) (Version: 16.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 16.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 6 Service Pack 2 (KB973686) (HKLM\...\{56EA8BC0-3751-4B93-BC9D-6651CC36E5AA}) (Version: 6.20.2003.0 - Microsoft Corporation)
MyDSC2 (HKLM\...\{83d96ed0-98aa-4515-8ddc-816f3efdd104}) (Version: 1.00.000 - )
Nero 7 Essentials (HKLM\...\{45B3A3BD-F90D-48FE-A147-D74878A51033}) (Version: 7.03.0920 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
Norton 360 (Symantec Corporation) (HKLM\...\SymSetup.{2D617065-1C52-4240-B5BC-C0AE12157777}) (Version: 2.0.0.242 - Symantec Corporation)
Norton 360 (Version: 2.0.0.242 - Symantec Corporation) Hidden
Norton 360 HTMLHelp (Version: 2.0.0.175 - Symantec Corporation) Hidden
Norton Add-on Pack (Symantec Corporation) (HKLM\...\SymSetup.{420F8FCF-8F5E-4518-A5B3-FBBD56B98FEC}) (Version: 2.1.0.55 - Symantec Corporation)
Norton AntiSpam (Version: 2.1.0.55 - Symantec Corporation) Hidden
Norton AntiVirus Help (Version: 15.0 - Symantec Corporation) Hidden
Norton Confidential Core (Version: 2.6.0.3 - Symantec Corporation) Hidden
Norton Security Scan (Symantec Corporation) (HKLM\...\NSSSetup.{3FADAA19-E595-44CA-A072-58B6B0851768}) (Version: 2.0.0 - Symantec Corporation)
Norton Security Scan (Version: 2.0.0 - Symantec Corporation) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA System Utility (HKLM\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 1.00.0000 - NVIDIA Corporation)
NVIDIA System Utility (Version: 1.00.0000 - NVIDIA Corporation) Hidden
Parental Control (Version: 2.1.0.55 - Symantec Corporation) Hidden
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.0.3409.a - CyberLink Corporation)
PowerProducer (HKLM\...\{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version:  - )
QuickTime (HKLM\...\{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}) (Version: 7.60.92.0 - Apple Inc.)
QuickTime 3.0 (HKLM\...\QuickTime 3.0) (Version:  - )
RealPlayer (HKLM\...\RealPlayer 6.0) (Version:  - RealNetworks)
Shockwave (HKLM\...\Shockwave) (Version:  - )
SketchUp 8 (HKLM\...\{8EB62C87-AAA6-4850-A5BC-64155884B973}) (Version: 3.0.16846 - Trimble Navigation Limited)
SPBBC 32bit (Version: 4.1.0.15 - Symantec Corporation) Hidden
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Symantec Real Time Storage Protection Component (Version: 10.2.3.9 - Symantec Corporation) Hidden
Symantec Technical Support Controls (Version: 3.5.3 - Symantec Corporation) Hidden
SymNet (Version: 8.0.3.4 - Symantec Corporation) Hidden
The Sims 2 (HKLM\...\{40C03514-89C3-41BA-0090-3B440256DB87}) (Version:  - )
The Sims 2 University (HKLM\...\{8FD3F4BA-A4A6-4380-00A6-CC6853AB2DC2}) (Version:  - )
Trainz Driver - North American Edition (HKLM\...\{884CF242-39EC-4AB3-8785-13948CC89B94}) (Version: 1.00.000 - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB894391) (HKLM\...\KB894391) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB900485) (HKLM\...\KB900485) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB904942) (HKLM\...\KB904942) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB908531) (HKLM\...\KB908531) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB910437) (HKLM\...\KB910437) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB911164) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB911280) (HKLM\...\KB911280) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB916595) (HKLM\...\KB916595) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB920872) (HKLM\...\KB920872) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB922582) (HKLM\...\KB922582) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB925720) (HKLM\...\KB925720) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB925876) (HKLM\...\KB925876) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB927891) (HKLM\...\KB927891) (Version: 3 - Microsoft Corporation)
Update for Windows XP (KB930916) (HKLM\...\KB930916) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB932823-v3) (HKLM\...\KB932823-v3) (Version: 3 - Microsoft Corporation)
Update for Windows XP (KB938828) (HKLM\...\KB938828) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB955839) (HKLM\...\KB955839) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows 7 Upgrade Advisor (HKLM\...\{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}) (Version: 2.0.5000.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Imaging Component (HKLM\...\WIC) (Version: 3.0.0.0 - Microsoft Corporation)
Windows Installer 3.1 (KB893803) (HKLM\...\KB893803v2) (Version:  - Microsoft Corporation)
Windows Internet Explorer 7 (HKLM\...\ie7) (Version: 20070813.185237 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Format SDK Hotfix - KB891122 (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
Windows XP Hotfix - KB873339 (HKLM\...\KB873339) (Version: 20041117.092459 - Microsoft Corporation)
Windows XP Hotfix - KB885835 (HKLM\...\KB885835) (Version: 20041027.181713 - Microsoft Corporation)
Windows XP Hotfix - KB885836 (HKLM\...\KB885836) (Version: 20041028.173203 - Microsoft Corporation)
Windows XP Hotfix - KB886185 (HKLM\...\KB886185) (Version: 20041021.090540 - Microsoft Corporation)
Windows XP Hotfix - KB887472 (HKLM\...\KB887472) (Version: 20041014.162858 - Microsoft Corporation)
Windows XP Hotfix - KB888302 (HKLM\...\KB888302) (Version: 20041207.111426 - Microsoft Corporation)
Windows XP Hotfix - KB890859 (HKLM\...\KB890859) (Version: 1 - Microsoft Corporation)
Windows XP Hotfix - KB891781 (HKLM\...\KB891781) (Version: 20050110.165439 - Microsoft Corporation)
Zoo Tycoon 2 - Ultimate Collection (HKLM\...\InstallShield_{9CC4840D-EF1C-406F-AF08-3C19EB1335B9}) (Version: 1.00.0000 - Microsoft Game Studios)
Zoo Tycoon 2 - Ultimate Collection (Version: 1.00.0000 - Microsoft Game Studios) Hidden
 
==================== Restore Points  =========================
 
Could not list Restore Points. Check "winmgmt" service or repair WMI.
 
 
==================== Hosts content: ==========================
 
2006-02-28 06:00 - 2006-02-28 06:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Norton Security Scan for Jayson.job => C:\Program Files\Norton Security Scan\Nss.exe
Task: C:\WINDOWS\Tasks\ReclaimerResumeInstallLogin_Jayson.job => C:\Documents and Settings\Jayson\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe
Task: C:\WINDOWS\Tasks\ReclaimerResumeInstall_Jayson.job => C:\Documents and Settings\Jayson\Application Data\Real\Update\UpgradeHelper\RealPlayer\10.40\agent\rnupgagent.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{BF42D0B3-AEA6-4540-BB80-648BE8B01EAB}.job => C:\WINDOWS\system32\msfeedssync.exe
 
==================== Loaded Modules (whitelisted) =============
 
2006-02-28 06:00 - 2008-03-24 22:50 - 00355112 _____ () C:\WINDOWS\system32\msjetoledb40.dll
2012-11-14 00:04 - 2012-11-14 00:04 - 00568832 _____ () C:\Program Files\DefaultTab\DefaultTabSearch.exe
2010-04-05 19:19 - 2007-05-13 20:54 - 00272024 ____N () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
 
==================== Safe Mode (whitelisted) ===================
 
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
 
==================== Faulty Device Manager Devices =============
 
Could not list Devices. Check "winmgmt" service or repair WMI.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/15/2014 03:06:51 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
Error: (07/15/2014 03:05:15 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
Error: (07/15/2014 02:48:48 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
Error: (07/15/2014 02:31:37 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
Error: (07/15/2014 02:13:00 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
Error: (07/15/2014 02:00:59 AM) (Source:  ) (EventID: 0) (User: )
Description: 7
 
Error: (07/15/2014 02:00:59 AM) (Source:  ) (EventID: 0) (User: )
Description: 6
 
Error: (07/15/2014 00:56:03 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
Error: (07/15/2014 00:27:35 AM) (Source: MsiInstaller) (EventID: 10005) (User: JAYSON)
Description: Product: SketchUp 8 -- SketchUp Pro is already installed on this system. SketchUp (Free) cannot be installed unless Pro is uninstalled first.
 
Error: (07/14/2014 11:35:44 PM) (Source: WinMgmt) (EventID: 28) (User: )
Description: WinMgmt could not initialize the core parts.  This could be due to a badly installed version of WinMgmt, WinMgmt repository upgrade failure, insufficient disk space or insufficient memory.
 
 
System errors:
=============
Error: (07/15/2014 02:29:30 AM) (Source: 0) (EventID: 108) (User: )
Description: \Device\Video0displayati2dvag
 
Error: (07/14/2014 00:23:05 AM) (Source: System Error) (EventID: 1003) (User: )
Description: Error code 100000ea, parameter1 82858428, parameter2 82b8bf60, parameter3 f88c6cb4, parameter4 00000001.
 
Error: (07/09/2014 00:14:02 AM) (Source: System Error) (EventID: 1003) (User: )
Description: Error code 1000007f, parameter1 00000008, parameter2 80042000, parameter3 00000000, parameter4 00000000.
 
Error: (07/09/2014 00:00:17 AM) (Source: 0) (EventID: 877) (User: )
Description: DATABASE OPEN FAILED
 
Error: (07/08/2014 11:28:20 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0
 
Error: (07/08/2014 11:27:44 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0
 
Error: (07/08/2014 11:20:42 PM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort0
 
Error: (07/08/2014 10:54:24 PM) (Source: System Error) (EventID: 1003) (User: )
Description: Error code 100000ea, parameter1 825b6020, parameter2 8257c948, parameter3 f88d6cb4, parameter4 00000001.
 
Error: (07/08/2014 05:00:38 AM) (Source: 0) (EventID: 7) (User: )
Description: \Device\MrwR00000001
 
Error: (07/07/2014 05:38:20 AM) (Source: 0) (EventID: 9) (User: )
Description: \Device\Ide\IdePort1
 
 
Microsoft Office Sessions:
=========================
Error: (07/15/2014 03:06:51 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
Error: (07/15/2014 03:05:15 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
Error: (07/15/2014 02:48:48 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
Error: (07/15/2014 02:31:37 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
Error: (07/15/2014 02:13:00 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
Error: (07/15/2014 02:00:59 AM) (Source:  ) (EventID: 0) (User: )
Description: 7
 
Error: (07/15/2014 02:00:59 AM) (Source:  ) (EventID: 0) (User: )
Description: 6
 
Error: (07/15/2014 00:56:03 AM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
Error: (07/15/2014 00:27:35 AM) (Source: MsiInstaller) (EventID: 10005) (User: JAYSON)
Description: Product: SketchUp 8 -- SketchUp Pro is already installed on this system. SketchUp (Free) cannot be installed unless Pro is uninstalled first.(NULL)(NULL)(NULL)
 
Error: (07/14/2014 11:35:44 PM) (Source: WinMgmt) (EventID: 28) (User: )
Description: 
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 49%
Total physical RAM: 511.48 MB
Available physical RAM: 257.74 MB
Total Pagefile: 1250.88 MB
Available Pagefile: 1026.41 MB
Total Virtual: 2047.88 MB
Available Virtual: 1944.35 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:74.52 GB) (Free:40.28 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (ZT2UCD1) (CDROM) (Total:0.52 GB) (Free:0 GB) CDFS
Drive e: () (Fixed) (Total:1.01 GB) (Free:1.01 GB) FAT32
Drive f: (Sims2EP1_1) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS
Drive g: (HITMANPRO) (Removable) (Total:7.44 GB) (Free:7.43 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 75 GB) (Disk ID: 049D049C)
Partition 1: (Active) - (Size=75 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (Size: 1 GB) (Disk ID: 20AE20AD)
Partition 1: (Active) - (Size=1 GB) - (Type=0B)
 
========================================================
Disk: 2 (Size: 7 GB) (Disk ID: C06DF9F8)
Partition 1: (Active) - (Size=7 GB) - (Type=0B)
 
==================== End Of Log ============================aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-07-15 03:29:02
-----------------------------
03:29:02.531    OS Version: Windows 5.1.2600 Service Pack 2
03:29:02.531    Number of processors: 1 586 0xA00
03:29:02.531    ComputerName: JAYSON  UserName: Test
03:29:04.031    Initialize success
03:29:04.031    VM: initialized successfully
03:29:04.046    VM: Amd CPU virtualization not supported 
03:29:08.265    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-4
03:29:08.265    Disk 0 Vendor: WDC_WD800JB-00JJC0 05.01C05 Size: 76319MB BusType: 3
03:29:08.265    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-c
03:29:08.265    Disk 1 Vendor: Maxtor_71084_AP QA3S1D20 Size: 1036MB BusType: 3
03:29:08.343    Disk 0 MBR read successfully
03:29:08.343    Disk 0 MBR scan
03:29:08.343    Disk 0 Windows XP default MBR code
03:29:08.343    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS        76308 MB offset 63
03:29:08.343    Disk 0 default boot code
03:29:08.343    Disk 0 scanning sectors +156280320
03:29:08.406    Disk 0 scanning C:\WINDOWS\system32\drivers
03:29:12.437    Service scanning
03:29:21.765    Modules scanning
03:29:28.000    Disk 0 trace - called modules:
03:29:28.015    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS 
03:29:28.015    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x82e43ab8]
03:29:28.031    3 CLASSPNP.SYS[f850005b] -> nt!IofCallDriver -> \Device\00000077[0x82e4cf18]
03:29:28.031    5 ACPI.sys[f8456620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-4[0x82e51d98]
03:29:28.046    Scan finished successfully
03:29:41.687    Disk 0 MBR has been saved successfully to "G:\MBR.dat"
03:29:41.718    The log file has been saved successfully to "G:\aswMBR.txt"
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:14-07-2014 01
Ran by Test (administrator) on JAYSON on 15-07-2014 03:19:54
Running from G:\
Platform: Microsoft Windows XP Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 7
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
(Symantec Corporation) C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
() C:\Program Files\DefaultTab\DefaultTabSearch.exe
(Nero AG) C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(NVIDIA Corporation) C:\WINDOWS\system32\sstray.exe
(Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
(Apple Inc.) C:\Program Files\QuickTime\QTTask.exe
(Cyberlink Corp.) C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
(BL) C:\Program Files\lg_fwupdate\fwupdate.exe
(Nero AG) C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
(Nero AG) C:\Program Files\Nero\Nero 7\InCD\InCD.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [nForce Tray Options] => sstray.exe /r
HKLM\...\Run: [ccApp] => C:\Program Files\Common Files\Symantec Shared\ccApp.exe [51048 2008-10-17] (Symantec Corporation)
HKLM\...\Run: [osCheck] => C:\Program Files\Norton 360\osCheck.exe [988512 2008-02-26] (Symantec Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [34672 2008-06-12] (Adobe Systems Incorporated)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [413696 2009-01-05] (Apple Inc.)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Common Files\Real\Update_OB\realsched.exe [198160 2009-02-18] (RealNetworks, Inc.)
HKLM\...\Run: [RemoteControl] => C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [71216 2007-03-14] (Cyberlink Corp.)
HKLM\...\Run: [LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD\Language\Language.exe [52256 2007-01-08] ()
HKLM\...\Run: [LGODDFU] => C:\Program Files\lg_fwupdate\fwupdate.exe [249856 2007-02-26] (BL)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [153136 2007-03-01] (Nero AG)
HKLM\...\Run: [SecurDisc] => C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe [1629480 2007-11-26] (Nero AG)
HKLM\...\Run: [InCD] => C:\Program Files\Nero\Nero 7\InCD\InCD.exe [1057064 2007-11-26] (Nero AG)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKU\.DEFAULT\...409d6c4515e9\InprocServer32: [Default-shell32] C:\WINDOWS\TEMP\sdtpofv\scbvstv\wow.dll ATTENTION! ====> ZeroAccess?
Startup: C:\Documents and Settings\Jayson_2\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe (Leader Technologies)
Startup: C:\Documents and Settings\Jayson_2\Start Menu\Programs\Startup\PowerReg Scheduler.exe ()
ShellIconOverlayIdentifiers: OverlayExcluded -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Common Files\Symantec Shared\Backup\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayPending -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Common Files\Symantec Shared\Backup\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayProtected -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Common Files\Symantec Shared\Backup\buShell.dll (Symantec Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
SearchScopes: HKLM - DefaultScope {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://slirsredirect...mrud=24-10-2012
SearchScopes: HKLM - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://slirsredirect...mrud=24-10-2012
SearchScopes: HKLM - {a17cc547-016c-4a35-a95b-de64acafa170} URL = http://ws.infospace....r?_iceUrl=true user_id=%userid&tool_id=60231&qkw={searchTerms}
SearchScopes: HKCU - DefaultScope {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://slirsredirect...mrud=24-10-2012
SearchScopes: HKCU - {443789B7-F39C-4b5c-9287-DA72D38F4FE6} URL = http://slirsredirect...mrud=24-10-2012
SearchScopes: HKCU - {a17cc547-016c-4a35-a95b-de64acafa170} URL = http://ws.infospace....r?_iceUrl=true user_id=%userid&tool_id=60231&qkw={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer)
BHO: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll (Symantec Corporation)
BHO: Symantec Intrusion Prevention -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - No Name - !{ba00b7b1-0351-477a-b948-23e3ee5a73d4} -  No File
Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll (Symantec Corporation)
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 03 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 mswsock.dll File Not found ()
Winsock: Catalog9 02 mswsock.dll File Not found ()
Winsock: Catalog9 03 mswsock.dll File Not found ()
Winsock: Catalog9 04 mswsock.dll File Not found ()
Winsock: Catalog9 05 mswsock.dll File Not found ()
Winsock: Catalog9 06 mswsock.dll File Not found ()
Winsock: Catalog9 07 mswsock.dll File Not found ()
Winsock: Catalog9 08 mswsock.dll File Not found ()
Winsock: Catalog9 09 mswsock.dll File Not found ()
Winsock: Catalog9 10 mswsock.dll File Not found ()
Winsock: Catalog9 11 mswsock.dll File Not found ()
Winsock: Catalog9 12 mswsock.dll File Not found ()
Winsock: Catalog9 13 mswsock.dll File Not found ()
Winsock: Catalog9 14 mswsock.dll File Not found ()
Winsock: Catalog9 15 mswsock.dll File Not found ()
Winsock: Catalog9 16 mswsock.dll File Not found ()
Winsock: Catalog9 17 mswsock.dll File Not found ()
Winsock: Catalog9 18 mswsock.dll File Not found ()
Winsock: Catalog9 19 mswsock.dll File Not found ()
Winsock: Catalog9 20 mswsock.dll File Not found ()
Winsock: Catalog9 21 mswsock.dll File Not found ()
Winsock: Catalog9 22 mswsock.dll File Not found ()
Winsock: Catalog9 23 mswsock.dll File Not found ()
Winsock: Catalog9 24 mswsock.dll File Not found ()
Winsock: Catalog9 25 mswsock.dll File Not found ()
Winsock: Catalog9 26 mswsock.dll File Not found ()
Winsock: Catalog9 27 mswsock.dll File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.9.2 - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.9.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=6.0.12.69 - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.3.69 - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.69 - C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\WebSearchober115578.xml
FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\䍻䙁䕅䅆ⵃ〰㜱〭〰ⴰ〰㔰䄭䍂䕄䙆䑅䉃絁 [2012-11-01]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Program Files\Real\RealPlayer\browserrecord
FF Extension: RealPlayer Browser Record Plugin - C:\Program Files\Real\RealPlayer\browserrecord [2009-02-18]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-04-16]
 
Chrome: 
=======
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\26.0.1410.43\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\26.0.1410.43\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\26.0.1410.43\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2003) - C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Microsoft® DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Java™ Platform SE 7 U9) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) ) - C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
CHR Plugin: (RealJukebox NS Plugin) - C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
CHR Plugin: (RealPlayer Version Plugin) - C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
CHR Plugin: (Shockwave for Director) - C:\WINDOWS\system32\Adobe\Director\np32dsw_1167637.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
CHR Plugin: (Java Deployment Toolkit 7.0.90.5) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Windows Presentation Foundation) - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Docs) - C:\Documents and Settings\Test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-06-19]
CHR Extension: (Google Drive) - C:\Documents and Settings\Test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-19]
CHR Extension: (YouTube) - C:\Documents and Settings\Test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-19]
CHR Extension: (ChromeUpdateManager) - C:\Documents and Settings\Test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cdjbnddbclciabnckgeahmneohjlahdm [2014-06-19]
CHR Extension: (Google Search) - C:\Documents and Settings\Test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-19]
CHR Extension: (Gmail) - C:\Documents and Settings\Test\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-19]
CHR HKLM\...\Chrome\Extension: [cdjbnddbclciabnckgeahmneohjlahdm] - C:\Documents and Settings\Jayson_2\Local Settings\Application Data\chromeupdate.crx [2012-11-16]
CHR HKLM\...\Chrome\Extension: [kdidombaedgpfiiedeimiebkmbilgmlc] - C:\Program Files\DefaultTab\DefaultTab.crx [2012-12-04]
CHR HKLM\...\Chrome\Extension: [pbkdpahkifcigckmhiafindmaflfifgm] - C:\Documents and Settings\Jayson\Local Settings\Application Data\Coupon Companion\Chrome\Coupon Companion.crx [2012-10-01]
 
========================== Services (Whitelisted) =================
 
R2 Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968 2008-02-21] (Symantec Corporation)
R2 ccEvtMgr; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
R2 ccProxy; C:\Program Files\Common Files\Symantec Shared\ccProxy.exe [214888 2008-02-18] (Symantec Corporation)
R2 ccSetMgr; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
R2 CLTNetCnService; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
S3 comHost; C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [55640 2007-08-22] (Symantec Corporation)
R2 DefaultTabSearch; C:\Program Files\DefaultTab\DefaultTabSearch.exe [568832 2012-11-14] () [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 InCDsrv; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [1554728 2007-11-26] (Nero AG)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [161768 2012-11-01] (Oracle Corporation)
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [3220856 2008-09-05] (Symantec Corporation)
R2 LiveUpdate Notice; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149352 2008-10-17] (Symantec Corporation)
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-05-13] ()
S3 Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [1245064 2009-02-18] ()
S3 Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe /RunAsService [X]
 
==================== Drivers (Whitelisted) ====================
 
R2 aslm75; C:\WINDOWS\system32\drivers\aslm75.sys [6272 1997-04-22] () [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2004-08-03] (Microsoft Corporation)
S3 COH_Mon; C:\WINDOWS\system32\Drivers\COH_Mon.sys [23888 2008-07-30] (Symantec Corporation)
R2 CO_Mon; C:\WINDOWS\system32\drivers\CO_Mon.sys [36056 2007-08-08] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [371248 2009-03-13] (Symantec Corporation)
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2004-08-03] (Microsoft Corporation)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [30976 2014-07-08] ()
R3 HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFBS2S2.sys [220032 2004-08-03] (Conexant Systems, Inc.)
R3 HSF_DP; C:\WINDOWS\System32\DRIVERS\HSFDPSP2.sys [1041536 2004-08-03] (Conexant Systems, Inc.)
R4 InCDfs; C:\WINDOWS\System32\drivers\InCDFs.sys [118952 2007-11-26] (Nero AG)
R1 InCDPass; C:\WINDOWS\System32\drivers\InCDPass.sys [36776 2007-11-26] (Nero AG)
U1 InCDrec; C:\WINDOWS\system32\Drivers\InCDrec.sys [16040 2007-11-26] (Nero AG)
R1 incdrm; C:\WINDOWS\System32\drivers\InCDRm.sys [38440 2007-11-26] (Nero AG)
R3 ms_mpu401; C:\WINDOWS\System32\drivers\msmpu401.sys [2944 2001-08-17] (Microsoft Corporation)
S3 NAVENG; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090726.022\NAVENG.SYS [87888 2009-07-15] (Symantec Corporation)
S3 NAVEX15; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20090726.022\NAVEX15.SYS [875728 2009-07-15] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2004-08-03] (Microsoft Corporation)
R3 nvax; C:\WINDOWS\System32\drivers\nvax.sys [48640 2004-05-25] (NVIDIA Corporation)
S3 NVENET; C:\WINDOWS\System32\DRIVERS\NVENET.sys [70656 2003-06-06] (NVIDIA Corporation)
R3 nvnforce; C:\WINDOWS\System32\drivers\nvapu.sys [396032 2004-05-25] (NVIDIA Corporation)
R0 nv_agp; C:\WINDOWS\System32\DRIVERS\nv_agp.sys [18688 2003-03-19] (NVIDIA Corporation)
R1 SPBBCDrv; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [447024 2008-09-05] (Symantec Corporation)
S3 SQTECH905C; C:\WINDOWS\System32\Drivers\Capt905c.sys [38937 2005-03-24] (Service & Quality Technology.) [File not signed]
S3 SRTSP; C:\WINDOWS\System32\Drivers\SRTSP.SYS [279088 2008-01-31] (Symantec Corporation)
S3 SRTSPL; C:\WINDOWS\System32\Drivers\SRTSPL.SYS [317616 2008-01-31] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\Drivers\SRTSPX.SYS [43696 2008-01-31] (Symantec Corporation)
R3 SYMDNS; C:\WINDOWS\System32\Drivers\SYMDNS.SYS [13616 2009-02-19] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [124464 2009-02-18] (Symantec Corporation)
S3 SYMFW; C:\WINDOWS\System32\Drivers\SYMFW.SYS [96560 2009-02-19] (Symantec Corporation)
S3 SYMIDS; C:\WINDOWS\System32\Drivers\SYMIDS.SYS [38576 2009-02-19] (Symantec Corporation)
S3 SYMIDSCO; C:\Program Files\Common Files\Symantec Shared\SymcData\ipsdefs\20090730.002\SymIDSco.sys [251768 2009-04-20] (Symantec Corporation)
S3 SymIM; C:\WINDOWS\System32\DRIVERS\SymIM.sys [31280 2009-02-19] (Symantec Corporation)
R3 SymIMMP; C:\WINDOWS\System32\DRIVERS\SymIM.sys [31280 2009-02-19] (Symantec Corporation)
R0 symlcbrd; C:\WINDOWS\System32\drivers\symlcbrd.sys [10344 2012-08-06] (Symantec Corporation)
S3 SYMNDIS; C:\WINDOWS\System32\Drivers\SYMNDIS.SYS [37424 2009-02-19] (Symantec Corporation)
R3 SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [22320 2009-02-19] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [184496 2009-02-19] (Symantec Corporation)
R3 winachsf; C:\WINDOWS\System32\DRIVERS\HSFCXTS2.sys [685056 2004-08-03] (Conexant Systems, Inc.)
R3 WLAN(WLAN); C:\WINDOWS\System32\DRIVERS\zd1211u.sys [278016 2005-08-16] (ZyDAS Technology Corporation)
S4 IntelIde; No ImagePath
S3 RT73; system32\DRIVERS\rt73.sys [X]
U1 WS2IFSL; 
U3 aswMBR; \??\C:\DOCUME~1\Test\LOCALS~1\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\DOCUME~1\Test\LOCALS~1\Temp\aswVmm.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-15 03:19 - 2014-07-15 03:19 - 00000000 ____D () C:\FRST
2014-07-15 02:06 - 2014-07-15 02:16 - 00053135 _____ () C:\Documents and Settings\Test\Desktop\DxDiag.txt
2014-07-15 00:54 - 2014-07-15 00:54 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Google
2014-07-15 00:47 - 2014-07-15 00:47 - 00001762 _____ () C:\Documents and Settings\All Users\Desktop\SketchUp 8.lnk
2014-07-15 00:47 - 2014-07-15 00:47 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\SketchUp 8
2014-07-15 00:30 - 2014-07-15 00:55 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
2014-07-15 00:19 - 2014-07-15 00:19 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Google
2014-07-14 00:22 - 2014-07-14 00:22 - 00102400 _____ () C:\WINDOWS\Minidump\Mini071414-01.dmp
2014-07-09 03:37 - 2014-07-09 03:37 - 00000831 _____ () C:\Documents and Settings\Test\Desktop\LEGOLAND.lnk
2014-07-09 03:37 - 2014-07-09 03:37 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\LEGOLANDDeInstKey
2014-07-09 03:36 - 2014-07-09 03:36 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\LEGO Media
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 ____D () C:\Documents and Settings\Test\WINDOWS
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT13.tmp
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT12.tmp
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT11.tmp
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT1.tmp
2014-07-09 03:34 - 2014-06-19 21:26 - 00000039 _____ () C:\WINDOWS\wininit.bak
2014-07-09 00:13 - 2014-07-09 00:13 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070914-01.dmp
2014-07-08 23:59 - 2014-07-08 23:59 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-07-08 22:53 - 2014-07-08 22:53 - 00102400 _____ () C:\WINDOWS\Minidump\Mini070814-01.dmp
2014-07-08 05:15 - 2014-07-08 05:16 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Microsoft Games
2014-07-08 05:15 - 2014-07-08 05:15 - 00001475 _____ () C:\Documents and Settings\All Users\Desktop\Zoo Tycoon 2.lnk
2014-07-08 05:15 - 2014-07-08 05:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Games
2014-07-08 01:24 - 2014-07-08 01:24 - 00000000 ____D () C:\LemonT
2014-07-08 01:24 - 2014-07-08 01:24 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\MumboJumbo
2014-07-08 00:17 - 2014-07-08 00:21 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\.minecraft
2014-07-07 20:55 - 2014-07-07 20:55 - 00000000 ____D () C:\Documents and Settings\Test\My Documents\EA Games
2014-07-07 20:49 - 2014-07-07 20:51 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Systweak
2014-07-07 20:48 - 2014-07-07 20:48 - 00043720 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-07-07 05:19 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-07-07 05:19 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2014-07-07 05:19 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-07-07 05:19 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-07-07 05:19 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-07-07 05:19 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2014-07-07 05:19 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-07-07 05:19 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-07-07 05:19 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2014-07-07 05:19 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2014-07-07 05:19 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2014-07-07 05:19 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2014-07-07 05:19 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2014-07-07 05:19 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2014-07-07 05:19 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2014-07-07 05:19 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2014-07-07 05:19 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2014-07-07 05:19 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2014-07-07 05:19 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2014-07-07 05:19 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2014-07-07 05:19 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2014-07-07 05:19 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2014-07-07 05:19 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2014-07-07 05:19 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2014-07-07 05:19 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2014-07-07 05:19 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2014-07-07 05:19 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2014-07-07 05:19 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2014-07-07 05:19 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2014-07-07 05:19 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2014-07-07 05:19 - 2008-10-10 04:52 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2014-07-07 05:19 - 2008-10-10 04:52 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2014-07-07 05:19 - 2008-10-10 04:52 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2014-07-07 05:19 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2014-07-07 05:19 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2014-07-07 05:19 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2014-07-07 05:19 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2014-07-07 05:19 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2014-07-07 05:19 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2014-07-07 05:19 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2014-07-07 05:19 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2014-07-07 05:19 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2014-07-07 05:19 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2014-07-07 05:19 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2014-07-07 05:19 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2014-07-07 05:19 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2014-07-07 05:19 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2014-07-07 05:19 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2014-07-07 05:18 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2014-07-07 05:18 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2014-07-07 05:18 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2014-07-07 05:18 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2014-07-07 05:18 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2014-07-07 05:18 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2014-07-07 05:18 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2014-07-07 05:18 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2014-07-07 05:12 - 2014-07-08 23:37 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Application Data\Systweak
2014-07-07 05:12 - 2014-07-07 05:16 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-07-07 05:10 - 2014-07-08 22:40 - 00000000 ____D () C:\Program Files\focusbase
2014-07-07 05:02 - 2014-07-07 05:45 - 00053207 _____ () C:\Documents and Settings\Jayson_2\Desktop\DxDiag.txt
2014-07-07 04:44 - 2014-07-07 04:44 - 00000000 ____D () C:\Program Files\Auran
2014-07-07 04:42 - 2014-07-07 04:51 - 00001478 _____ () C:\Documents and Settings\All Users\Desktop\The Sims 2 University.lnk
2014-07-07 04:24 - 2014-07-07 04:24 - 00001521 _____ () C:\Documents and Settings\All Users\Desktop\The Sims 2.lnk
2014-07-07 04:23 - 2014-07-07 04:23 - 00000000 ____D () C:\Documents and Settings\Jayson_2\My Documents\EA Games
2014-07-07 04:18 - 2014-07-09 03:36 - 00000000 ____D () C:\Games
2014-07-07 04:05 - 2014-07-07 04:05 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-04.dmp
2014-07-07 02:23 - 2014-07-08 23:37 - 00010100 _____ () C:\WINDOWS\system32\.crusader
2014-07-07 02:19 - 2014-07-06 12:25 - 10278752 _____ (SurfRight B.V.) C:\Documents and Settings\Test\Desktop\HitmanPro.exe
2014-07-07 02:17 - 2014-07-07 02:17 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-07 02:07 - 2014-07-07 02:07 - 00000552 _____ () C:\WINDOWS\system32\d3d8caps.dat
2014-07-07 01:58 - 2014-07-07 01:58 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-03.dmp
2014-07-07 01:29 - 2014-07-07 02:23 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-07-07 01:27 - 2014-07-07 01:26 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-02.dmp
2014-07-07 00:33 - 2014-07-07 00:33 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-01.dmp
2014-07-06 22:55 - 2014-07-06 22:55 - 00043720 _____ () C:\Documents and Settings\Test\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-06-19 21:39 - 2008-04-13 18:12 - 00343040 _____ (Microsoft Corporation) C:\Documents and Settings\Test\Desktop\mspaint.exe
2014-06-19 21:20 - 2014-07-15 00:54 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Adobe
2014-06-19 21:20 - 2014-07-08 01:13 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Application Data\Adobe
2014-06-19 21:17 - 2014-06-19 21:17 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Application Data\Sun
2014-06-19 21:17 - 2014-06-19 21:17 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Sun
2014-06-19 21:04 - 2014-06-19 21:04 - 00102400 _____ () C:\WINDOWS\Minidump\Mini061914-02.dmp
2014-06-19 20:51 - 2014-07-09 09:34 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Application Data\Google
2014-06-19 20:46 - 2014-07-15 03:06 - 00000000 ____D () C:\Documents and Settings\Test\Start Menu\Programs\CyberLink DVD Suite
2014-06-19 20:46 - 2014-07-07 01:43 - 00006462 _____ () C:\Documents and Settings\Test\Local Settings\Application Data\chromeupdate.crx
2014-06-19 20:46 - 2014-06-19 20:46 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Symantec
2014-06-19 20:46 - 2014-06-19 20:46 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Real
2014-06-19 20:45 - 2014-07-15 03:20 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Temp
2014-06-19 20:45 - 2014-07-15 02:07 - 00000178 ___SH () C:\Documents and Settings\Test\ntuser.ini
2014-06-19 20:45 - 2014-07-09 03:34 - 00000000 ____D () C:\Documents and Settings\Test
2014-06-19 20:45 - 2014-06-19 20:51 - 00001813 _____ () C:\Documents and Settings\Test\Desktop\Google Chrome.lnk
2014-06-19 20:45 - 2014-06-19 20:45 - 00000738 _____ () C:\Documents and Settings\Test\Start Menu\Programs\Outlook Express.lnk
2014-06-19 20:45 - 2014-06-19 20:45 - 00000000 ___RD () C:\Documents and Settings\Test\Start Menu\Programs\Accessories
2014-06-19 20:45 - 2012-08-24 12:39 - 00001599 _____ () C:\Documents and Settings\Test\Start Menu\Programs\Remote Assistance.lnk
2014-06-19 20:29 - 2014-06-19 20:29 - 00102400 _____ () C:\WINDOWS\Minidump\Mini061914-01.dmp
 
==================== One Month Modified Files and Folders =======
 
2014-07-15 03:20 - 2014-06-19 20:45 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Temp
2014-07-15 03:20 - 2012-08-15 08:07 - 00000428 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{BF42D0B3-AEA6-4540-BB80-648BE8B01EAB}.job
2014-07-15 03:19 - 2014-07-15 03:19 - 00000000 ____D () C:\FRST
2014-07-15 03:06 - 2014-06-19 20:46 - 00000000 ____D () C:\Documents and Settings\Test\Start Menu\Programs\CyberLink DVD Suite
2014-07-15 03:06 - 2012-12-26 16:16 - 00000414 _____ () C:\WINDOWS\Tasks\ReclaimerResumeInstallLogin_Jayson.job
2014-07-15 03:06 - 2012-10-01 15:25 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-15 03:06 - 2010-04-05 19:24 - 00000265 _____ () C:\WINDOWS\lgfwup.ini
2014-07-15 03:06 - 2010-04-05 19:24 - 00000000 ____D () C:\Program Files\lg_fwupdate
2014-07-15 03:06 - 2006-08-18 18:38 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-15 03:06 - 2006-08-18 12:44 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-15 03:06 - 2006-08-18 12:44 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-07-15 03:06 - 2006-02-28 06:00 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl
2014-07-15 03:05 - 2006-08-18 18:34 - 01768819 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-15 03:04 - 2006-08-18 18:38 - 00032372 _____ () C:\WINDOWS\SchedLgU.Txt
2014-07-15 02:49 - 2012-10-01 15:25 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-15 02:16 - 2014-07-15 02:06 - 00053135 _____ () C:\Documents and Settings\Test\Desktop\DxDiag.txt
2014-07-15 02:13 - 2006-08-18 12:41 - 01646902 _____ () C:\WINDOWS\setupapi.log
2014-07-15 02:11 - 2006-08-18 20:12 - 00000278 ___SH () C:\Documents and Settings\Jayson_2\ntuser.ini
2014-07-15 02:10 - 2006-08-18 20:12 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Local Settings\Temp
2014-07-15 02:08 - 2012-11-14 19:50 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-07-15 02:07 - 2014-06-19 20:45 - 00000178 ___SH () C:\Documents and Settings\Test\ntuser.ini
2014-07-15 02:07 - 2010-04-05 19:19 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Start Menu\Programs\CyberLink DVD Suite
2014-07-15 00:55 - 2014-07-15 00:30 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
2014-07-15 00:54 - 2014-07-15 00:54 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Google
2014-07-15 00:54 - 2014-06-19 21:20 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Adobe
2014-07-15 00:47 - 2014-07-15 00:47 - 00001762 _____ () C:\Documents and Settings\All Users\Desktop\SketchUp 8.lnk
2014-07-15 00:47 - 2014-07-15 00:47 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\SketchUp 8
2014-07-15 00:47 - 2012-10-01 15:25 - 00000000 ____D () C:\Program Files\Google
2014-07-15 00:19 - 2014-07-15 00:19 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Google
2014-07-14 00:22 - 2014-07-14 00:22 - 00102400 _____ () C:\WINDOWS\Minidump\Mini071414-01.dmp
2014-07-14 00:22 - 2012-09-21 16:28 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-09 23:13 - 2012-12-26 16:16 - 00000414 _____ () C:\WINDOWS\Tasks\ReclaimerResumeInstall_Jayson.job
2014-07-09 09:34 - 2014-06-19 20:51 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Application Data\Google
2014-07-09 03:37 - 2014-07-09 03:37 - 00000831 _____ () C:\Documents and Settings\Test\Desktop\LEGOLAND.lnk
2014-07-09 03:37 - 2014-07-09 03:37 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\LEGOLANDDeInstKey
2014-07-09 03:36 - 2014-07-09 03:36 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\LEGO Media
2014-07-09 03:36 - 2014-07-07 04:18 - 00000000 ____D () C:\Games
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 ____D () C:\Documents and Settings\Test\WINDOWS
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT13.tmp
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT12.tmp
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT11.tmp
2014-07-09 03:34 - 2014-07-09 03:34 - 00000000 _____ () C:\WINDOWS\DXT1.tmp
2014-07-09 03:34 - 2014-06-19 20:45 - 00000000 ____D () C:\Documents and Settings\Test
2014-07-09 03:34 - 2006-08-18 18:48 - 00041511 _____ () C:\WINDOWS\DirectX.log
2014-07-09 00:13 - 2014-07-09 00:13 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070914-01.dmp
2014-07-08 23:59 - 2014-07-08 23:59 - 00030976 _____ () C:\WINDOWS\system32\Drivers\hitmanpro37.sys
2014-07-08 23:37 - 2014-07-07 05:12 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Application Data\Systweak
2014-07-08 23:37 - 2014-07-07 02:23 - 00010100 _____ () C:\WINDOWS\system32\.crusader
2014-07-08 22:53 - 2014-07-08 22:53 - 00102400 _____ () C:\WINDOWS\Minidump\Mini070814-01.dmp
2014-07-08 22:40 - 2014-07-07 05:10 - 00000000 ____D () C:\Program Files\focusbase
2014-07-08 05:16 - 2014-07-08 05:15 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Microsoft Games
2014-07-08 05:15 - 2014-07-08 05:15 - 00001475 _____ () C:\Documents and Settings\All Users\Desktop\Zoo Tycoon 2.lnk
2014-07-08 05:15 - 2014-07-08 05:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Games
2014-07-08 05:15 - 2006-08-18 18:45 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-07-08 05:15 - 2006-08-18 18:33 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-07-08 01:24 - 2014-07-08 01:24 - 00000000 ____D () C:\LemonT
2014-07-08 01:24 - 2014-07-08 01:24 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\MumboJumbo
2014-07-08 01:14 - 2009-02-18 13:37 - 00000000 ____D () C:\Program Files\Windows Media Connect 2
2014-07-08 01:14 - 2007-05-31 19:10 - 00000000 ____D () C:\Program Files\MyDSC2
2014-07-08 01:14 - 2006-08-18 18:31 - 00000000 ____D () C:\Program Files\Messenger
2014-07-08 01:13 - 2014-06-19 21:20 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Application Data\Adobe
2014-07-08 01:12 - 2009-02-23 14:50 - 00000376 _____ () C:\WINDOWS\ODBC.INI
2014-07-08 00:21 - 2014-07-08 00:17 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\.minecraft
2014-07-07 20:55 - 2014-07-07 20:55 - 00000000 ____D () C:\Documents and Settings\Test\My Documents\EA Games
2014-07-07 20:51 - 2014-07-07 20:49 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Systweak
2014-07-07 20:48 - 2014-07-07 20:48 - 00043720 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-07-07 05:58 - 2006-08-18 20:12 - 00000000 ____D () C:\Documents and Settings\Jayson_2
2014-07-07 05:45 - 2014-07-07 05:02 - 00053207 _____ () C:\Documents and Settings\Jayson_2\Desktop\DxDiag.txt
2014-07-07 05:40 - 2006-08-18 18:45 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-07-07 05:16 - 2014-07-07 05:12 - 00000000 ___HD () C:\WINDOWS\msdownld.tmp
2014-07-07 04:51 - 2014-07-07 04:42 - 00001478 _____ () C:\Documents and Settings\All Users\Desktop\The Sims 2 University.lnk
2014-07-07 04:47 - 2006-08-18 18:32 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
2014-07-07 04:44 - 2014-07-07 04:44 - 00000000 ____D () C:\Program Files\Auran
2014-07-07 04:24 - 2014-07-07 04:24 - 00001521 _____ () C:\Documents and Settings\All Users\Desktop\The Sims 2.lnk
2014-07-07 04:23 - 2014-07-07 04:23 - 00000000 ____D () C:\Documents and Settings\Jayson_2\My Documents\EA Games
2014-07-07 04:05 - 2014-07-07 04:05 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-04.dmp
2014-07-07 03:03 - 2013-03-15 16:37 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\pcdfdata
2014-07-07 02:23 - 2014-07-07 01:29 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-07-07 02:23 - 2006-02-28 06:00 - 00000000 __SHD () C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}
2014-07-07 02:18 - 2012-11-16 02:44 - 00006462 _____ () C:\Documents and Settings\Jayson_2\Local Settings\Application Data\chromeupdate.crx
2014-07-07 02:17 - 2014-07-07 02:17 - 00000000 ____D () C:\Program Files\HitmanPro
2014-07-07 02:07 - 2014-07-07 02:07 - 00000552 _____ () C:\WINDOWS\system32\d3d8caps.dat
2014-07-07 01:58 - 2014-07-07 01:58 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-03.dmp
2014-07-07 01:43 - 2014-06-19 20:46 - 00006462 _____ () C:\Documents and Settings\Test\Local Settings\Application Data\chromeupdate.crx
2014-07-07 01:26 - 2014-07-07 01:27 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-02.dmp
2014-07-07 00:33 - 2014-07-07 00:33 - 00094208 _____ () C:\WINDOWS\Minidump\Mini070714-01.dmp
2014-07-06 22:55 - 2014-07-06 22:55 - 00043720 _____ () C:\Documents and Settings\Test\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-07-06 12:25 - 2014-07-07 02:19 - 10278752 _____ (SurfRight B.V.) C:\Documents and Settings\Test\Desktop\HitmanPro.exe
2014-06-19 22:00 - 2006-08-18 12:42 - 01366079 _____ () C:\WINDOWS\FaxSetup.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00744350 _____ () C:\WINDOWS\ocgen.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00547177 _____ () C:\WINDOWS\tsoc.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00467577 _____ () C:\WINDOWS\comsetup.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00291530 _____ () C:\WINDOWS\ntdtcsetup.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00210688 _____ () C:\WINDOWS\iis6.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00078135 _____ () C:\WINDOWS\ocmsn.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00071317 _____ () C:\WINDOWS\msgsocm.log
2014-06-19 22:00 - 2006-08-18 12:42 - 00003739 _____ () C:\WINDOWS\imsins.log
2014-06-19 21:58 - 2006-08-18 12:40 - 00174074 _____ () C:\WINDOWS\setupact.log
2014-06-19 21:46 - 2006-08-18 20:08 - 00004732 _____ () C:\WINDOWS\entpack.ini
2014-06-19 21:43 - 2008-03-24 10:41 - 00000000 ____D () C:\Documents and Settings\Guest
2014-06-19 21:26 - 2014-07-09 03:34 - 00000039 _____ () C:\WINDOWS\wininit.bak
2014-06-19 21:26 - 2006-08-18 18:45 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-06-19 21:26 - 2006-08-18 12:33 - 00000000 ___RD () C:\WINDOWS\Web
2014-06-19 21:19 - 2013-03-10 14:46 - 00000000 ____D () C:\Documents and Settings\Jayson_2\My Documents\My Games
2014-06-19 21:17 - 2014-06-19 21:17 - 00000000 ____D () C:\Documents and Settings\Test\Local Settings\Application Data\Sun
2014-06-19 21:17 - 2014-06-19 21:17 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Sun
2014-06-19 21:17 - 2006-08-18 18:32 - 00070433 _____ () C:\WINDOWS\wmsetup.log
2014-06-19 21:04 - 2014-06-19 21:04 - 00102400 _____ () C:\WINDOWS\Minidump\Mini061914-02.dmp
2014-06-19 21:00 - 2009-03-13 12:55 - 00000000 ____D () C:\Program Files\Norton Security Scan
2014-06-19 20:51 - 2014-06-19 20:45 - 00001813 _____ () C:\Documents and Settings\Test\Desktop\Google Chrome.lnk
2014-06-19 20:46 - 2014-06-19 20:46 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Symantec
2014-06-19 20:46 - 2014-06-19 20:46 - 00000000 ____D () C:\Documents and Settings\Test\Application Data\Real
2014-06-19 20:45 - 2014-06-19 20:45 - 00000738 _____ () C:\Documents and Settings\Test\Start Menu\Programs\Outlook Express.lnk
2014-06-19 20:45 - 2014-06-19 20:45 - 00000000 ___RD () C:\Documents and Settings\Test\Start Menu\Programs\Accessories
2014-06-19 20:45 - 2006-08-18 18:40 - 00000178 ___SH () C:\Documents and Settings\Jayson\ntuser.ini
2014-06-19 20:45 - 2006-08-18 18:40 - 00000000 ____D () C:\Documents and Settings\Jayson\Local Settings\Temp
2014-06-19 20:43 - 2012-11-16 08:44 - 00006462 _____ () C:\Documents and Settings\Jayson\Local Settings\Application Data\chromeupdate.crx
2014-06-19 20:43 - 2012-10-01 15:18 - 00000000 ____D () C:\Documents and Settings\Jayson\Start Menu\Programs\CyberLink DVD Suite
2014-06-19 20:29 - 2014-06-19 20:29 - 00102400 _____ () C:\WINDOWS\Minidump\Mini061914-01.dmp
2014-06-19 11:49 - 2009-02-18 11:48 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Symantec
2014-06-19 11:29 - 2012-11-15 19:52 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Application Data\Zeag
2014-06-19 11:25 - 2012-10-23 15:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Norton
2014-06-19 11:11 - 2013-03-10 14:46 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Local Settings\Application Data\My Games
2014-06-19 10:13 - 2014-01-18 00:31 - 02250054 _____ () C:\Documents and Settings\Jayson_2\Application Data\wincreen.bmp
2014-06-19 10:04 - 2012-01-01 10:36 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Desktop\fav's
2014-06-19 10:03 - 2012-08-24 11:38 - 00000000 ____D () C:\Documents and Settings\Jayson_2\Desktop\Important stuff
2014-06-19 09:40 - 2006-08-18 12:42 - 00525946 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
 
ZeroAccess:
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\@
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\U\[email protected]
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\U\[email protected]
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\U\[email protected]
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\U\[email protected]
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\U\[email protected]
C:\Documents and Settings\Jayson_2\Local Settings\Application Data\{9d9b2814-7282-178e-0d6b-da8ece8c4c0f}\L\[email protected]
 
ZeroAccess:
C:\Windows\assembly\GAC\Desktop.ini
 
Some content of TEMP:
====================
C:\Documents and Settings\Jayson\Local Settings\Temp\AutoRun.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\AutoRunGUI.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\contentDATs.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\drm_dyndata_7360012.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\eauninstall.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\First15.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\gamesBar-silent-setup.rmumbojumbo.amumbojumbo.dl.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\installhelper.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\install_flashplayer11x32_mssd_aih.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\install_flashplayer11x32_mssd_aih_1.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\install_flashplayer11x32_mssd_aih_2.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\jre-7u9-windows-i586-iftw.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\mssinstaller.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\SecurityScan_Release.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\SetupDataMngr_Searchqu.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\SIntf16.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\SIntf32.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\SIntfNT.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\SRAssetsHelper.dll
C:\Documents and Settings\Jayson\Local Settings\Temp\The Sims 2_uninst.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\VP6Install.exe
C:\Documents and Settings\Jayson\Local Settings\Temp\VP6VFW.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\124kkk290347.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\124kkk290347d.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\124kkk290347m.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\124kkk290347p.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\124kkk290347v.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\24rgo3hifftye7tt.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\6_Offer_13.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\AutoRun.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\AutoRunGUI.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\BackupSetup.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\dplinst.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\drm_dialogs.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\drm_dyndata_7350006.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\drm_dyndata_7360012.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\drm_dyndata_7370007.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\EAD1.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\EAInstall.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\eauninstall.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\First15.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\gamesBar-silent-setup.rmumbojumbo.amumbojumbo.dl.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\livingplayif_StubInstaller.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\occci.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\SC4_uninst.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\SimCity 4 Deluxe_uninst.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\SIntf16.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\SIntf32.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\SIntfNT.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\System.Data.SQLite.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\System.Data.SQLite52831.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\TFR4E.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\The_Weather_Channel_Application.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\UninstallEADM.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\vcredist_x86.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\VP6Install.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\VP6VFW.dll
C:\Documents and Settings\Jayson_2\Local Settings\Temp\_is1.exe
C:\Documents and Settings\Jayson_2\Local Settings\Temp\_is45.exe
C:\Documents and Settings\Test\Local Settings\Temp\AtiCimUn.exe
C:\Documents and Settings\Test\Local Settings\Temp\AutoRun.exe
C:\Documents and Settings\Test\Local Settings\Temp\AutoRunGUI.dll
C:\Documents and Settings\Test\Local Settings\Temp\eauninstall.exe
C:\Documents and Settings\Test\Local Settings\Temp\System.Data.SQLite.dll
C:\Documents and Settings\Test\Local Settings\Temp\The Sims 2_uninst.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================

 


  • 0

#13
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts

Sorry about the attachments.


  • 0

#14
xplocast1

xplocast1

    Member

  • Topic Starter
  • Member
  • PipPip
  • 28 posts
03:40:59.0703 0x0cc0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
03:41:00.0375 0x0cc0  ============================================================
03:41:00.0375 0x0cc0  Current date / time: 2014/07/15 03:41:00.0375
03:41:00.0375 0x0cc0  SystemInfo:
03:41:00.0375 0x0cc0  
03:41:00.0375 0x0cc0  OS Version: 5.1.2600 ServicePack: 2.0
03:41:00.0375 0x0cc0  Product type: Workstation
03:41:00.0375 0x0cc0  ComputerName: JAYSON
03:41:00.0375 0x0cc0  UserName: Test
03:41:00.0375 0x0cc0  Windows directory: C:\WINDOWS
03:41:00.0375 0x0cc0  System windows directory: C:\WINDOWS
03:41:00.0375 0x0cc0  Processor architecture: Intel x86
03:41:00.0375 0x0cc0  Number of processors: 1
03:41:00.0375 0x0cc0  Page size: 0x1000
03:41:00.0375 0x0cc0  Boot type: Normal boot
03:41:00.0375 0x0cc0  ============================================================
03:41:00.0375 0x0cc0  BG loaded
03:41:02.0328 0x0cc0  System UUID: {CD64096F-FDE9-CF64-5965-8B30036C22FB}
03:41:07.0375 0x0cc0  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 ( 74.53 Gb ), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000044
03:41:07.0421 0x0cc0  Drive \Device\Harddisk1\DR1 - Size: 0x40C0E000 ( 1.01 Gb ), SectorSize: 0x200, Cylinders: 0x20E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x40, Type 'K0', Flags 0x00000044
03:41:07.0640 0x0cc0  ============================================================
03:41:07.0640 0x0cc0  \Device\Harddisk0\DR0:
03:41:07.0656 0x0cc0  MBR partitions:
03:41:07.0656 0x0cc0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950A5C1
03:41:07.0656 0x0cc0  \Device\Harddisk1\DR1:
03:41:07.0656 0x0cc0  MBR partitions:
03:41:07.0656 0x0cc0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0x204C81
03:41:07.0656 0x0cc0  ============================================================
03:41:07.0734 0x0cc0  C: <-> \Device\Harddisk0\DR0\Partition1
03:41:07.0750 0x0cc0  E: <-> \Device\Harddisk1\DR1\Partition1
03:41:07.0828 0x0cc0  ============================================================
03:41:07.0828 0x0cc0  Initialize success
03:41:07.0828 0x0cc0  ============================================================
03:41:48.0468 0x0154  ============================================================
03:41:48.0468 0x0154  Scan started
03:41:48.0468 0x0154  Mode: Manual; 
03:41:48.0468 0x0154  ============================================================
03:41:48.0468 0x0154  KSN ping started
03:42:02.0421 0x0154  KSN ping finished: true
03:42:03.0250 0x0154  ================ Scan system memory ========================
03:42:03.0250 0x0154  System memory - ok
03:42:03.0265 0x0154  ================ Scan services =============================
03:42:03.0359 0x0154  Abiosdsk - ok
03:42:03.0390 0x0154  abp480n5 - ok
03:42:03.0437 0x0154  [ A10C7534F7223F4A73A948967D00E69B, EBF46FBB4C7C04433E91D95A079354E51A40CC05EAA00A86DEE261AFA81162FC ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
03:42:03.0453 0x0154  ACPI - ok
03:42:03.0625 0x0154  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
03:42:03.0640 0x0154  ACPIEC - ok
03:42:03.0656 0x0154  adpu160m - ok
03:42:03.0703 0x0154  [ 1EE7B434BA961EF845DE136224C30FEC, 0216D2277B6B4AB9B0E47E093CEEAC2030EFB4B87BA048EA730E40119AA06444 ] aec             C:\WINDOWS\system32\drivers\aec.sys
03:42:03.0703 0x0154  aec - ok
03:42:03.0765 0x0154  [ 55E6E1C51B6D30E54335750955453702, 49BE694FB65F195A65EC631558BA599345C6641A6A5AA2F1053611B715F4677A ] AFD             C:\WINDOWS\System32\drivers\afd.sys
03:42:03.0781 0x0154  AFD - ok
03:42:03.0796 0x0154  Aha154x - ok
03:42:03.0828 0x0154  aic78u2 - ok
03:42:03.0843 0x0154  aic78xx - ok
03:42:03.0875 0x0154  [ C7AE0FD3867DB0D42B03B73C18F3D671, 13AE5D3DD13BC4C0EAB234FC3F87DA918793CE317A07EE37F107C8C6104E0BA9 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
03:42:03.0890 0x0154  Alerter - ok
03:42:03.0937 0x0154  [ F1958FBF86D5C004CF19A5951A9514B7, E8DF2330D48E9BF97A7061A84E42CCB2AD197C90FECB56150FB573B4D0C62883 ] ALG             C:\WINDOWS\System32\alg.exe
03:42:03.0937 0x0154  ALG - ok
03:42:03.0968 0x0154  AliIde - ok
03:42:04.0000 0x0154  [ 680AD1C1BB16239E28D8F33A54A7A3C7, 5E8C39A01C3FF1695C70132F933D71F2722867B3A3B485FB7505E8D447D7D5B9 ] AmdK7           C:\WINDOWS\system32\DRIVERS\amdk7.sys
03:42:04.0015 0x0154  AmdK7 - ok
03:42:04.0031 0x0154  amsint - ok
03:42:04.0046 0x0154  AppMgmt - ok
03:42:04.0078 0x0154  [ F0D692B0BFFB46E30EB3CEA168BBC49F, 745BE951F18C90FCD30C9A59BB861375C29FA49AF38D27EBFE4158FB7CAC86ED ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
03:42:04.0093 0x0154  Arp1394 - ok
03:42:04.0109 0x0154  asc - ok
03:42:04.0125 0x0154  asc3350p - ok
03:42:04.0140 0x0154  asc3550 - ok
03:42:04.0187 0x0154  [ 71356A1370739E25375A1D17B6AE318F, A33DE9A89D9D62CD4401321DE3A91A93CA7F4145CAE4C69E620D65531AE59E6F ] aslm75          C:\WINDOWS\system32\drivers\aslm75.sys
03:42:04.0187 0x0154  aslm75 - ok
03:42:04.0296 0x0154  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
03:42:04.0328 0x0154  aspnet_state - ok
03:42:04.0343 0x0154  [ 02000ABF34AF4C218C35D257024807D6, FDE21F7FCB198A44A6F2BCAF5EB11C9D90A094B4A2F8C307244A7655848954DA ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
03:42:04.0359 0x0154  AsyncMac - ok
03:42:04.0390 0x0154  [ CDFE4411A69C224BD1D11B2DA92DAC51, 0E6B23A80F171550575BEBC56F7500CD87A5CF03B2B9FDC49BC3DE96282CD69D ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
03:42:04.0390 0x0154  atapi - ok
03:42:04.0421 0x0154  Atdisk - ok
03:42:04.0500 0x0154  [ 8759322FFC1A50569C1E5528EE8026B7, 4096F61F5C580622ABDC2FFC523FD81D667ACBD584074182134FB00E1EE43EC7 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
03:42:04.0562 0x0154  ati2mtag - ok
03:42:04.0578 0x0154  [ EC88DA854AB7D7752EC8BE11A741BB7F, 91FAF224CB4B44608C85CC25C3A82A3EC83F379D14A119A60A75505A30043255 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
03:42:04.0593 0x0154  Atmarpc - ok
03:42:04.0625 0x0154  [ DB66DB626E4882EBEF55F136F12C1829, E4FA63031E8FCF456D45160C29ADD0989355D5C5C8E17C949C278421D41DAB62 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
03:42:04.0640 0x0154  AudioSrv - ok
03:42:04.0671 0x0154  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
03:42:04.0671 0x0154  audstub - ok
03:42:04.0765 0x0154  [ AE9560C298D847AEF346BDD5FAD3B0E3, 75EA520E92160C7078036C5E01613BD4FC8FAC8FEF70BBFF84410B0678696829 ] Automatic LiveUpdate Scheduler C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
03:42:04.0781 0x0154  Automatic LiveUpdate Scheduler - ok
03:42:04.0828 0x0154  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
03:42:04.0828 0x0154  Beep - ok
03:42:04.0859 0x0154  [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8, DDFCCB3BC9A840ED0D6FC4B46086AD15AAF9D0D9AB8ED3A7B8860A1DA4D33970 ] Browser         C:\WINDOWS\System32\browser.dll
03:42:04.0859 0x0154  Browser - ok
03:42:04.0906 0x0154  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
03:42:04.0906 0x0154  cbidf2k - ok
03:42:04.0937 0x0154  [ 6163ED60B684BAB19D3352AB22FC48B2, 5A7ED636D8B2178EA21FA986CC9168DEF258AA4FFB9DCD792A81A1D615AC5D5E ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
03:42:04.0937 0x0154  CCDECODE - ok
03:42:05.0000 0x0154  [ 2F237AAB91497AAA03AF48EAE68758FC, 0701229112148F5A902FAFE3282192CAA89F50D7DF2AD9EF2AA5FE63DE9403A5 ] ccEvtMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
03:42:05.0015 0x0154  ccEvtMgr - ok
03:42:05.0062 0x0154  [ CD1FA95F84B98DACC3FD4F96291B0B04, DFCD0AECC9BABD43C72DC4A2A1277DBDE375DEA73A5BD9497EBA7A6F671C1E48 ] ccProxy         C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
03:42:05.0093 0x0154  ccProxy - ok
03:42:05.0125 0x0154  [ 2F237AAB91497AAA03AF48EAE68758FC, 0701229112148F5A902FAFE3282192CAA89F50D7DF2AD9EF2AA5FE63DE9403A5 ] ccSetMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
03:42:05.0140 0x0154  ccSetMgr - ok
03:42:05.0156 0x0154  cd20xrnt - ok
03:42:05.0203 0x0154  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
03:42:05.0203 0x0154  Cdaudio - ok
03:42:05.0250 0x0154  [ CD7D5152DF32B47F4E36F710B35AAE02, 7382890CC1B27FC66C3E94E064562BBD87B3C75577CB0FD10860B8E2CE07D12E ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
03:42:05.0265 0x0154  Cdfs - ok
03:42:05.0296 0x0154  [ AF9C19B3100FE010496B1A27181FBF72, 64E9E4461F631EED2B2A1FC80DCC9C31DCECB5738289D322E6A6428C840DC621 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
03:42:05.0296 0x0154  Cdrom - ok
03:42:05.0328 0x0154  Changer - ok
03:42:05.0359 0x0154  [ 3192BD04D032A9C4A85A3278C268A13A, 7844F229916A9BC8670D3CCF80AD674C626EC6DD9D741FF10986E67F6AFD8757 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
03:42:05.0359 0x0154  CiSvc - ok
03:42:05.0390 0x0154  [ C8DEC22C4137D7A90F8BDF41CA4B82AE, 92CE7B388236DBC196C92AE9929433C0F1E045EA5DB86802EF8C6041B56FE81F ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
03:42:05.0390 0x0154  ClipSrv - ok
03:42:05.0453 0x0154  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
03:42:05.0531 0x0154  clr_optimization_v2.0.50727_32 - ok
03:42:05.0546 0x0154  [ 2F237AAB91497AAA03AF48EAE68758FC, 0701229112148F5A902FAFE3282192CAA89F50D7DF2AD9EF2AA5FE63DE9403A5 ] CLTNetCnService C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
03:42:05.0562 0x0154  CLTNetCnService - ok
03:42:05.0578 0x0154  CmdIde - ok
03:42:05.0625 0x0154  [ 6186B6B953BDC884F0F379B84B3E3A98, 679DC67B74DA3615D3AC88FCF8C9B5144B66EE69710B21B005B57198108C2BFC ] COH_Mon         C:\WINDOWS\system32\Drivers\COH_Mon.sys
03:42:05.0625 0x0154  COH_Mon - ok
03:42:05.0718 0x0154  [ 75A69CA9998577F8B2BE8695040E5DF4, E7C835DEAEDFB2CAC1FBA055B30D97B525B8909947B1206C440FE67C157D0746 ] comHost         C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
03:42:05.0718 0x0154  comHost - ok
03:42:05.0750 0x0154  COMSysApp - ok
03:42:05.0812 0x0154  [ 73F5D6835BFA66019C03E316D99649DA, C88200E31F35BBDAC9C2FEF7257F5CD30299AD819B02BE784D4692C369F9D014 ] CO_Mon          C:\WINDOWS\system32\drivers\CO_Mon.sys
03:42:05.0828 0x0154  CO_Mon - ok
03:42:05.0843 0x0154  Cpqarray - ok
03:42:05.0890 0x0154  [ 10654F9DDCEA9C46CFB77554231BE73B, 4EEAF6523941228FC440E9EA758545E2F2A2DD98565F90B5351EF2C9B82139ED ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
03:42:05.0890 0x0154  CryptSvc - ok
03:42:05.0906 0x0154  dac2w2k - ok
03:42:05.0921 0x0154  dac960nt - ok
03:42:06.0000 0x0154  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
03:42:06.0078 0x0154  DcomLaunch - ok
03:42:06.0171 0x0154  [ D0B322012EBAB1F29E3AD4A8568B2DBA, 4D4E00556F856B433762DD0E4E13F4A739B9EEE4D5B822162EECD6EF4CDA3F1F ] DefaultTabSearch C:\Program Files\DefaultTab\DefaultTabSearch.exe
03:42:06.0203 0x0154  DefaultTabSearch - ok
03:42:06.0265 0x0154  [ EF545E1A4B043DA4C84E230DD471C55F, AD96922E58E8146F03E719D3A5CAAD677CAF3B7B525599F1B32F01BF72CCAFA4 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
03:42:06.0265 0x0154  Dhcp - ok
03:42:06.0296 0x0154  [ 00CA44E4534865F8A3B64F7C0984BFF0, 3FD73CCD9892F6CFEE776CB384C2E35FA15F4101D308A67E1358F85299501E3D ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
03:42:06.0312 0x0154  Disk - ok
03:42:06.0328 0x0154  dmadmin - ok
03:42:06.0406 0x0154  [ C0FBB516E06E243F0CF31F597E7EBF7D, 1FC205AC5D8D6BDA176438CEBFAC92CD4DEF50A6C1EBDCBCE2B149FF08D40032 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
03:42:06.0468 0x0154  dmboot - ok
03:42:06.0515 0x0154  [ F5E7B358A732D09F4BCF2824B88B9E28, 97B8317354659EFBA076E20AF20741C9FBC0961723483514E43D7EC6D66186C3 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
03:42:06.0531 0x0154  dmio - ok
03:42:06.0562 0x0154  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
03:42:06.0562 0x0154  dmload - ok
03:42:06.0593 0x0154  [ 1639D9964C9E1B2ECCA95C8217D3E70D, A42E985697E673B89F5BD314BA9FE93A1CD8DDEBC6312AD52E196BFDFFA9E513 ] dmserver        C:\WINDOWS\System32\dmserver.dll
03:42:06.0593 0x0154  dmserver - ok
03:42:06.0640 0x0154  [ A6F881284AC1150E37D9AE47FF601267, 6C07654CF21637E527FC727EB50F4138BF0EFF0680000AC94001063B436389DB ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
03:42:06.0640 0x0154  DMusic - ok
03:42:06.0687 0x0154  [ AAC8FFBFD61E784FA3BAC851D4A0BD5F, F811288AC18DB28D9577EA9B40810DE000FC28EF234D1A790DD0578E0D565EBC ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
03:42:06.0687 0x0154  Dnscache - ok
03:42:06.0718 0x0154  dpti2o - ok
03:42:06.0750 0x0154  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E, B941AB5D9D504486083E0D1539B1A96E27721C9EFD7A67CA1DB7258B0D33AB78 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
03:42:06.0750 0x0154  drmkaud - ok
03:42:06.0812 0x0154  [ 70AEAC5D481B2904B40F2173E280B1B5, BA7951C4DC3A80582FCF664426185E4981D34AA755CB47FD9D00859793CC6071 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
03:42:06.0843 0x0154  eeCtrl - ok
03:42:06.0890 0x0154  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A, 305F39E4D18DC079E48578C31AE87BA1D0D781A2613BD5DA4689AC6F2794D326 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
03:42:06.0890 0x0154  ERSvc - ok
03:42:06.0937 0x0154  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] Eventlog        C:\WINDOWS\system32\services.exe
03:42:06.0937 0x0154  Eventlog - ok
03:42:07.0000 0x0154  [ 60D1A6342238378BFB7545C81EE3606C, 40186F096F2AC3E5E12D0B8713A08E449D5F23DCD1C0EEFC3FA82002CA1B030F ] EventSystem     C:\WINDOWS\system32\es.dll
03:42:07.0031 0x0154  EventSystem - ok
03:42:07.0078 0x0154  [ 3117F595E9615E04F05A54FC15A03B20, 4708E8F1CDE6E9663B5DBEBAB8C684B16E45D41AEF20E4071D0A2931B305BD76 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
03:42:07.0093 0x0154  Fastfat - ok
03:42:07.0140 0x0154  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
03:42:07.0156 0x0154  FastUserSwitchingCompatibility - ok
03:42:07.0171 0x0154  [ CED2E8396A8838E59D8FD529C680E02C, 8542AE6A2D65D3F843EA70F5FFBC150B773C5CFA3FE6388FA68A95416FAD0F6E ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
03:42:07.0171 0x0154  Fdc - ok
03:42:07.0203 0x0154  [ E153AB8A11DE5452BCF5AC7652DBF3ED, AEB48687C604B0CDE5F1A13C2EC854CFFBE1CE0837C3898D6D4C6B71265D0ED0 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
03:42:07.0218 0x0154  Fips - ok
03:42:07.0250 0x0154  [ 0DD1DE43115B93F4D85E889D7A86F548, D50F7AAE5416C6D41845960BDDA24E97226F609AA726E4F88601ADC9ED50E872 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
03:42:07.0250 0x0154  Flpydisk - ok
03:42:07.0296 0x0154  [ 3D234FB6D6EE875EB009864A299BEA29, 9FEB003BDE7900AECDE9F9FFE0ECD7079B460714B582B7EB8EDB89E7F4D1FE59 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
03:42:07.0312 0x0154  FltMgr - ok
03:42:07.0390 0x0154  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
03:42:07.0406 0x0154  FontCache3.0.0.0 - ok
03:42:07.0421 0x0154  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
03:42:07.0421 0x0154  Fs_Rec - ok
03:42:07.0453 0x0154  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
03:42:07.0453 0x0154  Ftdisk - ok
03:42:07.0484 0x0154  [ 5F92FD09E5610A5995DA7D775EADCD12, 63E6A8209BEA7F458BC9E1F792847500B3DB450E8FB3DA1B1C98E96D140ECE7D ] gameenum        C:\WINDOWS\system32\DRIVERS\gameenum.sys
03:42:07.0500 0x0154  gameenum - ok
03:42:07.0546 0x0154  [ AB8A6A87D9D7255C3884D5B9541A6E80, D073B5D8A06EFA6415E8F22DFE486DE913113AE23F59CFC5EEF1B3E694CE86F3 ] GEARAspiWDM     C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
03:42:07.0546 0x0154  GEARAspiWDM - ok
03:42:07.0578 0x0154  [ C0F1D4A21DE5A415DF8170616703DEBF, 3E21AAD06CF6EB95662B568671B1DBD129CED481761BCDB67088E965E5C0BC5B ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
03:42:07.0578 0x0154  Gpc - ok
03:42:07.0656 0x0154  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
03:42:07.0656 0x0154  gupdate - ok
03:42:07.0687 0x0154  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
03:42:07.0687 0x0154  gupdatem - ok
03:42:07.0734 0x0154  [ 8827911A8C37E40C027CBFC88E69D967, ED381F089E6143896B890BD5450FFFB271FC68983412376F54869A93F9D7DA9D ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
03:42:07.0750 0x0154  helpsvc - ok
03:42:07.0781 0x0154  [ 9376E6893E52B368ABC6255BF54F0B28, D3E6B03145988BC80A1F62E5E312BB060E062118B12D30F27C8A432D30962E58 ] HidServ         C:\WINDOWS\System32\hidserv.dll
03:42:07.0781 0x0154  HidServ - ok
03:42:07.0828 0x0154  [ 1DE6783B918F540149AA69943BDFEBA8, 6ED28109CA0A7738857D840E369EAB91C1605F2643950762D327CCE241C135A1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
03:42:07.0828 0x0154  HidUsb - ok
03:42:07.0890 0x0154  [ CE77439BAF613019D6B7658292D1E4A6, EF0BCD841FB884F409102DED41EEB4B9E093B3B2FF9C2D932CE581767D892007 ] hitmanpro37     C:\WINDOWS\system32\drivers\hitmanpro37.sys
03:42:07.0890 0x0154  hitmanpro37 - ok
03:42:07.0906 0x0154  hpn - ok
03:42:07.0953 0x0154  [ 970178E8E003EB1481293830069624B9, 411E7224347D7CB001667CDE013D7C30A3CC07AC7968FBFF4975A79D63BCA7D0 ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys
03:42:07.0984 0x0154  HSFHWBS2 - ok
03:42:08.0093 0x0154  [ EBB354438A4C5A3327FB97306260714A, 95C5008E44815343FBC4F7DEE47370EB9A28AFC12AE2447A0B298789504DB6B9 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys
03:42:08.0171 0x0154  HSF_DP - ok
03:42:08.0234 0x0154  [ 9F8B0F4276F618964FD118BE4289B7CD, 5E72367D731A99D3E13004D7070494365E2DBD4D8134445F35E889D9E046BBA7 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
03:42:08.0250 0x0154  HTTP - ok
03:42:08.0296 0x0154  [ 064D8581ADF77C25133E7D751D917D83, E8623C32E48D3E7A0179C8333C14D8A051C9F7300D0F465E94184F1C75E13A0F ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
03:42:08.0312 0x0154  HTTPFilter - ok
03:42:08.0328 0x0154  i2omgmt - ok
03:42:08.0343 0x0154  i2omp - ok
03:42:08.0390 0x0154  [ 5502B58EEF7486EE6F93F3F164DCB808, 7E56E49D6444F2F48037B859B491DF95E1C90EC7ED4EF9C477CD2C49783E62E0 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
03:42:08.0406 0x0154  i8042prt - ok
03:42:08.0468 0x0154  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
03:42:08.0484 0x0154  IDriverT - ok
03:42:08.0609 0x0154  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
03:42:08.0687 0x0154  idsvc - ok
03:42:08.0718 0x0154  [ F8AA320C6A0409C0380E5D8A99D76EC6, A848B9C489DDFBD48BDA140CB9DD43097686115042745F6444F803739168D391 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
03:42:08.0734 0x0154  Imapi - ok
03:42:08.0765 0x0154  [ FA788520BCAC0F5D9D5CDE5615C0D931, 7C70D1875B302CABC809627212E33CDD56F12B169EA548F1C94ECF2D14236514 ] ImapiService    C:\WINDOWS\system32\imapi.exe
03:42:08.0781 0x0154  ImapiService - ok
03:42:08.0828 0x0154  [ B02A8A25192EE1C5E653628637AB6AAA, 6A6FF5E5B387B2C68A91389F9F24EC48FD9A164FBC1BF9574D13BEFD0F034192 ] InCDfs          C:\WINDOWS\system32\drivers\InCDFs.sys
03:42:08.0843 0x0154  InCDfs - ok
03:42:08.0906 0x0154  [ B49BD5B663E1AF9BF3233B782B70D865, 44E20EB1C063D34F35091B94B70E91A3F6683D63C9B518B14A6D65B5ABE8D092 ] InCDPass        C:\WINDOWS\system32\drivers\InCDPass.sys
03:42:08.0906 0x0154  InCDPass - ok
03:42:08.0937 0x0154  [ 8FD364EDBD97983575CEE3E8909E62B4, 216FFDC3EA1D18580622D04AD09960C057326C6346D1F6B4E0CC9BF89E5D90DA ] InCDrec         C:\WINDOWS\system32\drivers\InCDrec.sys
03:42:08.0937 0x0154  InCDrec - ok
03:42:08.0968 0x0154  [ FC04E827133D54AB79CA254708F76CD0, 9C1F6F7E944F376B864400602BA04F698CCD686AE7712A1E47881E0BA12F65D3 ] incdrm          C:\WINDOWS\system32\drivers\InCDRm.sys
03:42:08.0968 0x0154  incdrm - ok
03:42:09.0125 0x0154  [ 067020BB8ABF1F6B80361051B2806C90, 41AF23639557EFA6D430C8B322B9E2BC5FC1EB994780960D9ACF38EC2F4C0415 ] InCDsrv         C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
03:42:09.0218 0x0154  InCDsrv - ok
03:42:09.0250 0x0154  ini910u - ok
03:42:09.0281 0x0154  IntelIde - ok
03:42:09.0312 0x0154  [ 4448006B6BC60E6C027932CFC38D6855, C377235EBE475C281ACB6A3267F12D8FE623433F05134A6CE50562414F94D7B1 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
03:42:09.0312 0x0154  Ip6Fw - ok
03:42:09.0343 0x0154  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
03:42:09.0359 0x0154  IpFilterDriver - ok
03:42:09.0375 0x0154  [ E1EC7F5DA720B640CD8FB8424F1B14BB, E5CF9F43D8C8028E8F29CAF8AD1E2179E5B02DCAA430900672FCB4C4EE288EF0 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
03:42:09.0390 0x0154  IpInIp - ok
03:42:09.0421 0x0154  [ E2168CBC7098FFE963C6F23F472A3593, 93B60D02ACBDDCE78BD4020B9CE0C132A8DD28FC2266B2748A22717B93AFF7C9 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
03:42:09.0437 0x0154  IpNat - ok
03:42:09.0468 0x0154  [ 64537AA5C003A6AFEEE1DF819062D0D1, 5A6C11317DEF14B8C34A8C669EB75F7A8D46F05090C43D3DFF602CFA13CC504E ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
03:42:09.0484 0x0154  IPSec - ok
03:42:09.0500 0x0154  [ 50708DAA1B1CBB7D6AC1CF8F56A24410, A5657038A66B83472B456246E58884D5DF2E5B63BD176AE3DFFB6D5B6998E8B7 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
03:42:09.0500 0x0154  IRENUM - ok
03:42:09.0546 0x0154  [ E504F706CCB699C2596E9A3DA1596E87, 80675B90DEFA75A58CB83FB88ED9CB849FE5CE2522A90F4AF08D54DC5B412541 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
03:42:09.0546 0x0154  isapnp - ok
03:42:09.0640 0x0154  [ B591E761161D1EF547D76EF236EAA6A5, 9A4125350F96C248380E6E834C65C14700F9CCEDB9CD34DEDF1119ED2274697A ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
03:42:09.0640 0x0154  JavaQuickStarterService - ok
03:42:09.0687 0x0154  [ EBDEE8A2EE5393890A1ACEE971C4C246, ACC57A7BACAB100FB2903451D2A48BFE936E3B8F9B13882C1D2DFF9D19BD1D34 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
03:42:09.0687 0x0154  Kbdclass - ok
03:42:09.0718 0x0154  [ E182FA8E49E8EE41B4ADC53093F3C7E6, 2E713992C9B40F6010373A2FFF6DBCC8723BB328DE6875793C46072D8323E9BB ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
03:42:09.0718 0x0154  kbdhid - ok
03:42:09.0765 0x0154  [ BA5DEDA4D934E6288C2F66CAF58D2562, 2250B75EEAD92CA56A1F8BB3F6523F9A5625676E38845A4DE0BFECE5EA17DBFA ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
03:42:09.0781 0x0154  kmixer - ok
03:42:09.0812 0x0154  [ 674D3E5A593475915DC6643317192403, EDE02BB88BEFDCB3E312087AFB5D91D8E9648C0F8599BD551FDC745DBA765819 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
03:42:09.0812 0x0154  KSecDD - ok
03:42:09.0843 0x0154  [ 0CB3AF149A0BAC0836022CA307C7A0F8, FCA50F229A9A2D120A260620AF454E1808246E45EC249582298D669BCED50B3E ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
03:42:09.0859 0x0154  lanmanserver - ok
03:42:09.0937 0x0154  [ E1F27CFCD114EC9F1E1F44674B2FF9F0, 7147A1B3694200EEBC32BD66DAED6E075476371E03ED5FDD23431AB79D990957 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
03:42:09.0937 0x0154  lanmanworkstation - ok
03:42:09.0968 0x0154  lbrtfdc - ok
03:42:10.0250 0x0154  [ 36375738DC0B3CD1F764268008E74FDF, 35993E2CD76365187042201128BC8FB445779594E824B42063E884B40399F9C6 ] LiveUpdate      C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
03:42:10.0421 0x0154  LiveUpdate - ok
03:42:10.0484 0x0154  [ 2F237AAB91497AAA03AF48EAE68758FC, 0701229112148F5A902FAFE3282192CAA89F50D7DF2AD9EF2AA5FE63DE9403A5 ] LiveUpdate Notice C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
03:42:10.0484 0x0154  LiveUpdate Notice - ok
03:42:10.0531 0x0154  [ B3EFF6D938C572E90A07B3D87A3C7657, 8C02DEFD2F1A15740CD5421D20B3808BD27583019AF1B79D087880A71807EEE1 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
03:42:10.0531 0x0154  LmHosts - ok
03:42:10.0562 0x0154  [ 195741AEE20369980796B557358CD774, 4AD0E691A7543539578FBF849828B5F1DDB5BCD697B4F9D28CF2AAB3F555D56B ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
03:42:10.0578 0x0154  mdmxsdk - ok
03:42:10.0609 0x0154  [ 95FD808E4AC22ABA025A7B3EAC0375D2, 4A067A8B7C539A0C2BFAC55A1869EF56FED835C28F5F7DD7D7BA65A5B273CF5F ] Messenger       C:\WINDOWS\System32\msgsvc.dll
03:42:10.0609 0x0154  Messenger - ok
03:42:10.0656 0x0154  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
03:42:10.0656 0x0154  mnmdd - ok
03:42:10.0703 0x0154  [ F6415361201915B9FE3896B0E4E724FF, C99C1EE0EABF8847BD4F737D72DB3EE5A57D773F008EC6596E83DAE48474F3F2 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
03:42:10.0703 0x0154  mnmsrvc - ok
03:42:10.0734 0x0154  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05, BF2C49E4D4C2D2E865B1C59FFE76BF29146ADD971D845FBD659A96AA26D72A11 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
03:42:10.0750 0x0154  Modem - ok
03:42:10.0781 0x0154  [ 34E1F0031153E491910E12551400192C, D608F77DB7035FD676773A3DF8DBC5DD52CC5198D0681A73D7EAA6C161047A90 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
03:42:10.0781 0x0154  Mouclass - ok
03:42:10.0812 0x0154  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
03:42:10.0812 0x0154  mouhid - ok
03:42:10.0843 0x0154  [ 65653F3B4477F3C63E68A9659F85EE2E, 32A34B22A4C1F50A966F321FD228C6B85F0F0315ABF3D40FC416618E786A4024 ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
03:42:10.0843 0x0154  MountMgr - ok
03:42:10.0937 0x0154  [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8, E9D1430C7C9199AECDF75B974E686B36E72F458FE398A0338D9D42F3BA76C399 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
03:42:10.0953 0x0154  MozillaMaintenance - ok
03:42:10.0968 0x0154  mraid35x - ok
03:42:11.0015 0x0154  [ 29414447EB5BDE2F8397DC965DBB3156, 351D359CC6C1C35522BB55B7CAC6C881B25FD6A0E057A8D7F84EE5A193029A23 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
03:42:11.0015 0x0154  MRxDAV - ok
03:42:11.0093 0x0154  [ FB6C89BB3CE282B08BDB1E3C179E1C39, 0558617DB859228332F4B7E44875AB3CDBA370E78C23BB5E80B159AAA7087B3E ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
03:42:11.0125 0x0154  MRxSmb - ok
03:42:11.0156 0x0154  [ C7C3D89EB0A6F3DBA622EA737FA335B1, 4392887A5F312DBD0971E1D72B85B3CA5636D7FB3A409E5A99CA925BD05493E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
03:42:11.0156 0x0154  MSDTC - ok
03:42:11.0203 0x0154  [ 561B3A4333CA2DBDBA28B5B956822519, 5B53906A29B9AA55A399F880CA989F9878BD943D3E97FB10A25BFD723654AF49 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
03:42:11.0203 0x0154  Msfs - ok
03:42:11.0218 0x0154  MSIServer - ok
03:42:11.0250 0x0154  [ AE431A8DD3C1D0D0610CDBAC16057AD0, 8B3BCAC3DA71778DC8B863E6DEF10F02F65D1BDD3381802DDC0B2980F4F1FBB9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
03:42:11.0250 0x0154  MSKSSRV - ok
03:42:11.0281 0x0154  [ 13E75FEF9DFEB08EEDED9D0246E1F448, 69D4CF483753FF253431656E1CB680F6702375696F94E259729BD11C25004031 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
03:42:11.0281 0x0154  MSPCLOCK - ok
03:42:11.0296 0x0154  [ 1988A33FF19242576C3D0EF9CE785DA7, 9E1C07F364DA7EF0D859BB7A3A06F849A153722E27E872640120CC6855D9FC51 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
03:42:11.0296 0x0154  MSPQM - ok
03:42:11.0343 0x0154  [ 469541F8BFD2B32659D5D463A6714BCE, 46AA7D2442DCC4C51C08BA0C00136F058F9160E6D6EDE78B2FD82545AE4FD10B ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
03:42:11.0343 0x0154  mssmbios - ok
03:42:11.0375 0x0154  [ BF13612142995096AB084F2DB7F40F77, E23FA89B54772A33A0A92A0701F02CB9683823FCA5CC192235378E1433FB21CF ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
03:42:11.0375 0x0154  MSTEE - ok
03:42:11.0390 0x0154  [ CA3E22598F411199ADC2DFEE76CD0AE0, 73ACE780A198467657CD2AF6019F0FC753B4FC6D26A9D6477C88C5396273F77C ] ms_mpu401       C:\WINDOWS\system32\drivers\msmpu401.sys
03:42:11.0390 0x0154  ms_mpu401 - ok
03:42:11.0421 0x0154  [ 82035E0F41C2DD05AE41D27FE6CF7DE1, 6111D330E7ACB77E23EA6A9E001FC651DE1DC49D772DC6FDD3C4B8EDA57E1C7A ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
03:42:11.0437 0x0154  Mup - ok
03:42:11.0468 0x0154  [ 5C8DC6429C43DC6177C1FA5B76290D1A, BBD145E87D4CF25A873CAE89DF29DF297187B604D42CD36AD8D3F62A033D906E ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
03:42:11.0484 0x0154  NABTSFEC - ok
03:42:11.0562 0x0154  [ 7B87FE07B1B782EFA931729FE3ADB5AD, E0B93E1CE4A6F799CB6530D4BD78FD3E0A9451C9D9614FFBEF62C713E3925D36 ] NAVENG          C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20090726.022\NAVENG.SYS
03:42:11.0562 0x0154  NAVENG - ok
03:42:11.0656 0x0154  [ B756ABC1A20E951C89228970B7CAD585, 3A2A177673706007C9258992AD951491D5733A4BB6AB34870CE7FD56FA004970 ] NAVEX15         C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20090726.022\NAVEX15.SYS
03:42:11.0718 0x0154  NAVEX15 - ok
03:42:11.0859 0x0154  [ 5836B9E91863A00EC1B8E785EFD86ECB, 6D6BC5C8070FB82A30228A6D617F0A141E225F2EC5C27F2BA8B67B8A50ABBE69 ] NBService       C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
03:42:11.0953 0x0154  NBService - ok
03:42:12.0000 0x0154  [ 558635D3AF1C7546D26067D5D9B6959E, 8C1802908DF35E442575969D29F4B22019A2B3E4C309B8E193F98F75AE81F013 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
03:42:12.0015 0x0154  NDIS - ok
03:42:12.0046 0x0154  [ 520CE427A8B298F54112857BCF6BDE15, 521BFFC460D64CD69D12F8C9D61CEBE409A63F1F1FB928450E4564DA29C0FFEA ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
03:42:12.0046 0x0154  NdisIP - ok
03:42:12.0078 0x0154  [ 08D43BBDACDF23F34D79E44ED35C1B4C, F72CB8FA67C361C40B4C83F08302D7B2FD9178C1C60A7C236AF08B9CB5162591 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
03:42:12.0078 0x0154  NdisTapi - ok
03:42:12.0125 0x0154  [ 34D6CD56409DA9A7ED573E1C90A308BF, DE2060F57C913272524AFB0D472714ABF6F7E49A01534F23D95EE67F207CC6CF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
03:42:12.0125 0x0154  Ndisuio - ok
03:42:12.0156 0x0154  [ 0B90E255A9490166AB368CD55A529893, 90EB17422BF52FE6D0CC6ADA4262D605806C5B583DE04EDEC95FD47EE9697865 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
03:42:12.0156 0x0154  NdisWan - ok
03:42:12.0187 0x0154  [ 59FC3FB44D2669BC144FD87826BB571F, B3C8CEFB09D5C85CBF12AED8CDB1FE455679D3436337263EFDABDC5116D92453 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
03:42:12.0187 0x0154  NDProxy - ok
03:42:12.0203 0x0154  [ 3A2ACA8FC1D7786902CA434998D7CEB4, ECE218DCDCB4D0A5CA8CBD14E931BAA3B5F381B70BBACB65B0EBBB46D2D31683 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
03:42:12.0218 0x0154  NetBIOS - ok
03:42:12.0250 0x0154  [ 0C80E410CD2F47134407EE7DD19CC86B, 2A1D0CE9797F4AB7A24873947A26DD6413B8DBB5A82C24CF28D1FC243AEFC5C8 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
03:42:12.0265 0x0154  NetBT - ok
03:42:12.0296 0x0154  [ 05AFB5AD06462257BEA7495283C86D50, 2D6584D0BFB168E48433EA702E6CABC7CB9B98675D2E99F78D9B84A63D4BD977 ] NetDDE          C:\WINDOWS\system32\netdde.exe
03:42:12.0312 0x0154  NetDDE - ok
03:42:12.0343 0x0154  [ 05AFB5AD06462257BEA7495283C86D50, 2D6584D0BFB168E48433EA702E6CABC7CB9B98675D2E99F78D9B84A63D4BD977 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
03:42:12.0343 0x0154  NetDDEdsdm - ok
03:42:12.0375 0x0154  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] Netlogon        C:\WINDOWS\system32\lsass.exe
03:42:12.0375 0x0154  Netlogon - ok
03:42:12.0437 0x0154  [ 36739B39267914BA69AD0610A0299732, 04CC0D2F45D4F3A86B2E4F23E1226F182349C98C53508C1F49C8CAC2D223D5A7 ] Netman          C:\WINDOWS\System32\netman.dll
03:42:12.0453 0x0154  Netman - ok
03:42:12.0546 0x0154  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
03:42:12.0562 0x0154  NetTcpPortSharing - ok
03:42:12.0625 0x0154  [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC, AD1FD07DD9E745C29986C2A25E9EF80B93CBF0F47FCF76741DD6E9CC81C7D241 ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
03:42:12.0625 0x0154  NIC1394 - ok
03:42:12.0671 0x0154  [ 097722F235A1FB698BF9234E01B52637, 994F81F506B081FFB760BA7B95469DE9311DDB00D14F77DA9752C19A9B932289 ] Nla             C:\WINDOWS\System32\mswsock.dll
03:42:12.0703 0x0154  Nla - ok
03:42:12.0812 0x0154  [ A328A46D87BB92CE4D8A4528E9D84787, D3245ED700151111592BA82FB675B284DA7FCE52B07A7F68352F64A402CAB37C ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
03:42:12.0828 0x0154  NMIndexingService - ok
03:42:12.0906 0x0154  [ 4F601BCB8F64EA3AC0994F98FED03F8E, D9D6783B970CB871DE0C6EDD8BE42F30CD1DCD55D4DF006922D9CFC0CF020D27 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
03:42:12.0906 0x0154  Npfs - ok
03:42:12.0984 0x0154  [ 19A811EF5F1ED5C926A028CE107FF1AF, 97606850041DE4E568188FB28AA3D5B10A4E96DB9551A77BC3A17ED67D5D4474 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
03:42:13.0031 0x0154  Ntfs - ok
03:42:13.0062 0x0154  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
03:42:13.0062 0x0154  NtLmSsp - ok
03:42:13.0125 0x0154  [ B62F29C00AC55A761B2E45877D85EA0F, 8B4B96BDBE26D73F89CC51876929515C1AEA18A8E9CA4E76FAEF538D9E5BDA90 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
03:42:13.0156 0x0154  NtmsSvc - ok
03:42:13.0203 0x0154  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
03:42:13.0203 0x0154  Null - ok
03:42:13.0234 0x0154  [ 47B3852808DD579A463FCE7085B77413, CDBF1AF462C5C8C7E6226FF7029E03E4605465ACE2FB4460DC7D984990D99A95 ] nvax            C:\WINDOWS\system32\drivers\nvax.sys
03:42:13.0234 0x0154  nvax - ok
03:42:13.0265 0x0154  [ E07C1F16E5A4E32FC3C0F62B59815EF0, 5CC5E8628D550F345589B9AAAEB601E8B34C1CA87A6C3A94228BE50F34F3828E ] NVENET          C:\WINDOWS\system32\DRIVERS\NVENET.sys
03:42:13.0281 0x0154  NVENET - ok
03:42:13.0343 0x0154  [ ADBCBA116496229A163193BBE0BB28CE, E219285EAD832AAD083F8AAAD9556BEC669ADCB93BC8B9BADDD97D72090E1B0F ] nvnforce        C:\WINDOWS\system32\drivers\nvapu.sys
03:42:13.0375 0x0154  nvnforce - ok
03:42:13.0406 0x0154  [ 29291C3A7256337327051CC37E4FC09A, C35DEBA55F133134AAD7F7E1DB5F8CB883E0EA4E337F4530D224C2E631074996 ] nv_agp          C:\WINDOWS\system32\DRIVERS\nv_agp.sys
03:42:13.0406 0x0154  nv_agp - ok
03:42:13.0437 0x0154  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
03:42:13.0437 0x0154  NwlnkFlt - ok
03:42:13.0468 0x0154  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
03:42:13.0468 0x0154  NwlnkFwd - ok
03:42:13.0484 0x0154  [ 0951DB8E5823EA366B0E408D71E1BA2A, EAF0E680BC476D8CEBAD0C21F2EDB958F333B731E8B131DA450D716FEC2C87B0 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
03:42:13.0500 0x0154  ohci1394 - ok
03:42:13.0546 0x0154  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
03:42:13.0546 0x0154  ose - ok
03:42:13.0593 0x0154  [ 29744EB4CE659DFE3B4122DEB45BC478, 5F7B63152CDAA031ACB77E793BB7E8210472D6D1EED911F3A0BD70455FC282FC ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
03:42:13.0609 0x0154  Parport - ok
03:42:13.0625 0x0154  [ 3334430C29DC338092F79C38EF7B4CD0, B54989B46D77F124D66741A939FF2033F73854FC39AF13C8165D01203A94A94E ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
03:42:13.0625 0x0154  PartMgr - ok
03:42:13.0671 0x0154  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
03:42:13.0671 0x0154  ParVdm - ok
03:42:13.0703 0x0154  [ 8086D9979234B603AD5BC2F5D890B234, 4FCB98D3B6F95B6979B255287480943C1F87A12ECB30D446294C1E84B6DFE620 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
03:42:13.0703 0x0154  PCI - ok
03:42:13.0718 0x0154  PCIDump - ok
03:42:13.0734 0x0154  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
03:42:13.0750 0x0154  PCIIde - ok
03:42:13.0796 0x0154  [ 82A087207DECEC8456FBE8537947D579, 92305DC8BC1CA3BD93A8D996AAA7433E816931B17D5BDFAC06C7251F2759D023 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
03:42:13.0796 0x0154  Pcmcia - ok
03:42:13.0828 0x0154  PDCOMP - ok
03:42:13.0843 0x0154  PDFRAME - ok
03:42:13.0859 0x0154  PDRELI - ok
03:42:13.0890 0x0154  PDRFRAME - ok
03:42:13.0906 0x0154  perc2 - ok
03:42:13.0921 0x0154  perc2hib - ok
03:42:14.0000 0x0154  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] PlugPlay        C:\WINDOWS\system32\services.exe
03:42:14.0015 0x0154  PlugPlay - ok
03:42:14.0031 0x0154  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
03:42:14.0031 0x0154  PolicyAgent - ok
03:42:14.0078 0x0154  [ 1C5CC65AAC0783C344F16353E60B72AC, 7786CFE970A79B327DB57AEBADA8B0B94B4DE07CE8AF285E9835B2AADD597296 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
03:42:14.0078 0x0154  PptpMiniport - ok
03:42:14.0093 0x0154  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
03:42:14.0109 0x0154  ProtectedStorage - ok
03:42:14.0125 0x0154  [ 48671F327553DCF1D27F6197F622A668, CB34A17BC36E8F8BB5F87F9EE21311C50DE9AE156513D682581DE47C93EC155D ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
03:42:14.0125 0x0154  PSched - ok
03:42:14.0140 0x0154  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
03:42:14.0156 0x0154  Ptilink - ok
03:42:14.0171 0x0154  ql1080 - ok
03:42:14.0187 0x0154  Ql10wnt - ok
03:42:14.0218 0x0154  ql12160 - ok
03:42:14.0218 0x0154  ql1240 - ok
03:42:14.0250 0x0154  ql1280 - ok
03:42:14.0265 0x0154  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
03:42:14.0265 0x0154  RasAcd - ok
03:42:14.0296 0x0154  [ 44DB7A9BDD2FB58747D123FBF1D35ADB, 1546B32AE19015213236031E82BF5C44ACF4C1B5F9E379908A1B413C6CA65755 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
03:42:14.0312 0x0154  RasAuto - ok
03:42:14.0359 0x0154  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C, F59974A2A3C21071BC72CA4DAF5D2DDF93471EC16FD1A34DE9DC1A50027F6835 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
03:42:14.0359 0x0154  Rasl2tp - ok
03:42:14.0406 0x0154  [ 49B5EED5FB89D39456A2F616CCD8BA5D, F09D6EE04BC0AB3B5BA76CAE64CE6B5E845006F912E0CBF1359900700F5C1146 ] RasMan          C:\WINDOWS\System32\rasmans.dll
03:42:14.0421 0x0154  RasMan - ok
03:42:14.0453 0x0154  [ 7306EEED8895454CBED4669BE9F79FAA, DC6874ECAD9105BC9EAB007291958911D7D4D3649124472070B3496B36C45200 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
03:42:14.0453 0x0154  RasPppoe - ok
03:42:14.0484 0x0154  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
03:42:14.0484 0x0154  Raspti - ok
03:42:14.0531 0x0154  [ 03B965B1CA47F6EF60EB5E51CB50E0AF, 56B0F5FC470385F2FF4E4573099C96772EDB985398859B9F7ACE0AA704BB47B7 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
03:42:14.0546 0x0154  Rdbss - ok
03:42:14.0578 0x0154  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
03:42:14.0578 0x0154  RDPCDD - ok
03:42:14.0640 0x0154  [ B54CD38A9EBFBF2B3561426E3FE26F62, 2BE75A68C598A2E162F09BCBA140909B9480A7E06A733B5D58673A172CAD8084 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
03:42:14.0671 0x0154  RDPWD - ok
03:42:14.0718 0x0154  [ 729798E0933076B8FCFCD9934698F164, 87CCF85E6C7F9AB9A5EB97BD9D2BE97429CB178B35FCA17CB1C9B58A0475D726 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
03:42:14.0734 0x0154  RDSessMgr - ok
03:42:14.0781 0x0154  [ B31B4588E4086D8D84ADBF9845C2402B, 0B45979623B0AC774A9426C428954E7FB604FAE0DB187C402AF6052906F4099A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
03:42:14.0781 0x0154  redbook - ok
03:42:14.0812 0x0154  [ 3046DB917E3CFA040632799DD9B14865, 90FE0C8C887A718BAEA77B1CFE1F6EEB2595F520A0B3DE0A50B4DE2E1D99CCF4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
03:42:14.0828 0x0154  RemoteAccess - ok
03:42:14.0968 0x0154  [ 06A49B7BDC36CFBF97DD90804F833369, 0E02B50F9F371162E18D5E4FFEF1669E9B5B75460618B10FD31E63F2ACC50A90 ] RichVideo       C:\Program Files\CyberLink\Shared Files\RichVideo.exe
03:42:14.0984 0x0154  RichVideo - ok
03:42:15.0031 0x0154  [ 793F04A09B15E7C6C11DBDFFAF06C0AB, D108DF4DC61300926F360E4D3B2F75DBEF3D3CB9D4C15260232047ED6FB1BFC7 ] RpcLocator      C:\WINDOWS\system32\locator.exe
03:42:15.0046 0x0154  RpcLocator - ok
03:42:15.0109 0x0154  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
03:42:15.0125 0x0154  RpcSs - ok
03:42:15.0187 0x0154  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
03:42:15.0203 0x0154  RSVP - ok
03:42:15.0234 0x0154  RT73 - ok
03:42:15.0250 0x0154  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] SamSs           C:\WINDOWS\system32\lsass.exe
03:42:15.0250 0x0154  SamSs - ok
03:42:15.0296 0x0154  [ 25D8DE134DF108E3DBC8D7D23B1AA58E, BF4C48E75D696546AB69E205F5492553001C9A92127D824F7F9BFCFE0F1C1093 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
03:42:15.0312 0x0154  SCardSvr - ok
03:42:15.0375 0x0154  [ 92360854316611F6CC471612213C3D92, A45DC437FA0DEC1DB540DC889A2469E8C3C4360F2F41FE60BFA3F78462507959 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
03:42:15.0390 0x0154  Schedule - ok
03:42:15.0437 0x0154  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
03:42:15.0437 0x0154  Secdrv - ok
03:42:15.0500 0x0154  [ B1E0CE09895376871746F36DC5773B4F, 686458ED5D4C72AAF2F45B4FCBB44BFA0D84DFE93B5E01ECCBEAD33CBAC52BD5 ] seclogon        C:\WINDOWS\System32\seclogon.dll
03:42:15.0500 0x0154  seclogon - ok
03:42:15.0531 0x0154  [ DFD9870CF39C791D86C4C209DA9FA919, 336A0525630149EF160AE8346AF6BEE2FAA0289629FA052ADAF887B5B84A918D ] SENS            C:\WINDOWS\system32\sens.dll
03:42:15.0531 0x0154  SENS - ok
03:42:15.0578 0x0154  [ A2D868AEEFF612E70E213C451A70CAFB, 25CBB9E26CDCBD8E221ACF4364E82E8F811C3144E0EEF9DF9DAEC8534243BD3B ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
03:42:15.0578 0x0154  serenum - ok
03:42:15.0625 0x0154  [ CD9404D115A00D249F70A371B46D5A26, D9FC869FA9A6B9574A1FCE70E7B919D8F79E02B28967E49F6DEF83A84520ECDF ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
03:42:15.0625 0x0154  Serial - ok
03:42:15.0656 0x0154  [ 1F16931C722C69E4A7866244796C66A0, 11C35DF2DAEBE949873B3B5534B9AB0CF293127870AF483ECE40DD8D719FC536 ] sermouse        C:\WINDOWS\system32\DRIVERS\sermouse.sys
03:42:15.0656 0x0154  sermouse - ok
03:42:15.0703 0x0154  [ 0D13B6DF6E9E101013A7AFB0CE629FE0, 2214EA0F16BB33970E299CE457EB50AEE0BEF7959BC1EBD3C06C78A46B42B808 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
03:42:15.0718 0x0154  Sfloppy - ok
03:42:15.0765 0x0154  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
03:42:15.0765 0x0154  ShellHWDetection - ok
03:42:15.0796 0x0154  Simbad - ok
03:42:15.0828 0x0154  [ 5CAEED86821FA2C6139E32E9E05CCDC9, 63F91C95FD2914DAEC648A6EAF75EE5E18EAA7754F5A03A57D693AC49C66479E ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
03:42:15.0828 0x0154  SLIP - ok
03:42:15.0859 0x0154  Sparrow - ok
03:42:15.0968 0x0154  [ DC4DC886D3779C446F9B0E9D6B006E72, 66FBAD89B85C965D333CA5E8CE16BD33C1F25EA6A884C7E6360A9F3F4E85CE76 ] SPBBCDrv        C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
03:42:16.0000 0x0154  SPBBCDrv - ok
03:42:16.0031 0x0154  [ 0CE218578FFF5F4F7E4201539C45C78F, 2C87C8993C3B9CE3589262E178B2B12FF9F2D83E5E8C2B97648D7FA24E3BD985 ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
03:42:16.0031 0x0154  splitter - ok
03:42:16.0078 0x0154  [ DA81EC57ACD4CDC3D4C51CF3D409AF9F, 521257429493F31516EDE549869EFA4B7A262F6A69EA1E82A9C875456C10E702 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
03:42:16.0078 0x0154  Spooler - ok
03:42:16.0109 0x0154  [ 5D7195F1C7C3E9AA7C2E5B37BA71096A, 309C4E002DB8E052C3679271731315A22BDEDD87A0E59C056FAE279BA72F334C ] SQTECH905C      C:\WINDOWS\system32\Drivers\Capt905c.sys
03:42:16.0109 0x0154  SQTECH905C - ok
03:42:16.0156 0x0154  [ E41B6D037D6CD08461470AF04500DC24, 9556C669E69B1B290865FCAABD5D793B310C071B64FD3DF9FCFADC3716BDC926 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
03:42:16.0156 0x0154  sr - ok
03:42:16.0203 0x0154  [ 92BDF74F12D6CBEC43C94D4B7F804838, C1BFE7F498F4A9992FEA459CE7EEF7525AE51A7E04C76D676819A61615A4A92E ] srservice       C:\WINDOWS\system32\srsvc.dll
03:42:16.0218 0x0154  srservice - ok
03:42:16.0265 0x0154  [ E0E54A571D4323567E95E11FE76A5FF3, D76252AD00CAAFF79E7965454C1F11F9D5C4AD5A7E510D94CBD4C0151D50EB76 ] SRTSP           C:\WINDOWS\system32\Drivers\SRTSP.SYS
03:42:16.0296 0x0154  SRTSP - ok
03:42:16.0343 0x0154  [ 4E44F0E22DF824D318988CAA6F321C30, 5056810D1B46112EF0CDED38FAB71C4876D3226E96D884BE9B74C8A99009DF4C ] SRTSPL          C:\WINDOWS\system32\Drivers\SRTSPL.SYS
03:42:16.0359 0x0154  SRTSPL - ok
03:42:16.0406 0x0154  [ D3BB40427CF3D02E56BBA97FEDA0A3AA, 6FA9956522F7B4DB2B8D75281BA3F76ECFC2DE6C29B68025E8911A4FABE5F9A7 ] SRTSPX          C:\WINDOWS\system32\Drivers\SRTSPX.SYS
03:42:16.0406 0x0154  SRTSPX - ok
03:42:16.0468 0x0154  [ 7A4F147CC6B133F905F6E65E2F8669FB, 82E3C4F1A92D8D8129CC1CA07F516B537EA6A3B2EEDF47A2C32BEC7828A83A32 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
03:42:16.0484 0x0154  Srv - ok
03:42:16.0546 0x0154  [ 4B8D61792F7175BED48859CC18CE4E38, 13C50FACC85828F56FF5B29D13B004933352CB581B62B218038B503561531981 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
03:42:16.0546 0x0154  SSDPSRV - ok
03:42:16.0562 0x0154  Steam Client Service - ok
03:42:16.0625 0x0154  [ B6763F8534AC547CF1AF98AFDFF2EDC8, 5E199091F10373451623855DD2A4ED625E062545DBAC20DDE80C0E3E3CE271DA ] stisvc          C:\WINDOWS\system32\wiaservc.dll
03:42:16.0640 0x0154  stisvc - ok
03:42:16.0687 0x0154  [ 284C57DF5DC7ABCA656BC2B96A667AFB, 7E3CAE1911E710B1CC37571AE1B92DC981FCD46E67A3AD3C258672D17781C709 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
03:42:16.0687 0x0154  streamip - ok
03:42:16.0718 0x0154  [ 03C1BAE4766E2450219D20B993D6E046, 0D8E5B141EAA9E2C8D1F8BFD522F57EE8074216A336CBE37FE77B8ADDB791DBE ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
03:42:16.0718 0x0154  swenum - ok
03:42:16.0750 0x0154  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D, EEF6DB9EDD8C273A6595675A7A12B9D440FA4E178BA7C69FB1942D97E291F989 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
03:42:16.0750 0x0154  swmidi - ok
03:42:16.0765 0x0154  SwPrv - ok
03:42:16.0890 0x0154  [ 438FAFE708C93B2236FC26B6F2BD5FD0, 9A9071ACFB1CEE00A20F48492C344858BB3997B870A3DF3A5F67A46E0B2E84BE ] Symantec Core LC C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
03:42:17.0015 0x0154  Symantec Core LC - ok
03:42:17.0046 0x0154  symc810 - ok
03:42:17.0062 0x0154  symc8xx - ok
03:42:17.0093 0x0154  [ FE9F8B3A8BC22D85332B42E92308DDF9, A066A7D6B5C83D8D92B9D06AE0C7EFB921CA2E830EE11C2F36321DB905EDE83C ] SYMDNS          C:\WINDOWS\System32\Drivers\SYMDNS.SYS
03:42:17.0093 0x0154  SYMDNS - ok
03:42:17.0140 0x0154  [ 06B95820DF51502099A8A15C93E87986, 77F70B2A8B84882840DEFA89D6037EF16E8BF5EADB7D089DD2374C12290D17A5 ] SymEvent        C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
03:42:17.0156 0x0154  SymEvent - ok
03:42:17.0187 0x0154  [ A0EA9D273889E53CFAABF2444692CCBF, 6F35904A645B96B8D8A100EE8D76257844F360F5113091ADAF407006EAC228B5 ] SYMFW           C:\WINDOWS\System32\Drivers\SYMFW.SYS
03:42:17.0203 0x0154  SYMFW - ok
03:42:17.0234 0x0154  [ 23527B9CD4F7B9E31160E98D340E7E85, 5D9EE1D548C72D6499095CD94237246BEC3F39D624AA44B5183360ACF84D7086 ] SYMIDS          C:\WINDOWS\System32\Drivers\SYMIDS.SYS
03:42:17.0234 0x0154  SYMIDS - ok
03:42:17.0328 0x0154  [ 1902EFB9E0901A62A31458AD90D3FED3, B9CE7D00BD3AA55CEA05660E4D468473944AFD1595024F090706E58CBFDF10EC ] SYMIDSCO        C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\ipsdefs\20090730.002\SymIDSCo.sys
03:42:17.0359 0x0154  SYMIDSCO - ok
03:42:17.0406 0x0154  [ B54F7959AFB4AAF1A8C589B0AA7FDE02, 1154AC915D87E7531E82CBF94860C7CF3F1F7751C15C9309F6588665A5237ECE ] SymIM           C:\WINDOWS\system32\DRIVERS\SymIM.sys
03:42:17.0406 0x0154  SymIM - ok
03:42:17.0421 0x0154  [ B54F7959AFB4AAF1A8C589B0AA7FDE02, 1154AC915D87E7531E82CBF94860C7CF3F1F7751C15C9309F6588665A5237ECE ] SymIMMP         C:\WINDOWS\system32\DRIVERS\SymIM.sys
03:42:17.0437 0x0154  SymIMMP - ok
03:42:17.0453 0x0154  [ B226F8A4D780ACDF76145B58BB791D5B, 6E8304956E9FD827A2FCAB0CB9D200500E8E71CE79C9909684666DD548D3FD31 ] symlcbrd        C:\WINDOWS\system32\drivers\symlcbrd.sys
03:42:17.0453 0x0154  symlcbrd - ok
03:42:17.0484 0x0154  [ D605AF3A380A83F4A562F1AD3EE19ECD, 5887B8F262DBFAC3E100A22AD1226A17C348EF292418BEF5729B77F4798B1AC2 ] SYMNDIS         C:\WINDOWS\System32\Drivers\SYMNDIS.SYS
03:42:17.0484 0x0154  SYMNDIS - ok
03:42:17.0531 0x0154  [ 7C6505EA598E58099D3B7E1F70426864, 02F56399A78A7D43C19F08A7C3213CFFFE46D372698DDA91034F7EF5B1F3C63E ] SYMREDRV        C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
03:42:17.0531 0x0154  SYMREDRV - ok
03:42:17.0593 0x0154  [ E6FF7ACE71D07CA90119F2C6AB592BA4, 3FC7B52FE6136A3BEBDDA1E2E59EA3BE2A8C24C7D75B6736AD452D0D6DF9508F ] SYMTDI          C:\WINDOWS\System32\Drivers\SYMTDI.SYS
03:42:17.0609 0x0154  SYMTDI - ok
03:42:17.0625 0x0154  sym_hi - ok
03:42:17.0640 0x0154  sym_u3 - ok
03:42:17.0687 0x0154  [ 650AD082D46BAC0E64C9C0E0928492FD, 6A587A55418A3A7867602D92B99FE393152DED191F27992C4BA909BD268AC43C ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
03:42:17.0687 0x0154  sysaudio - ok
03:42:17.0734 0x0154  [ 8B54AA346D1B1B113FFAA75501B8B1B2, 0DBCAA0FEA212F2274973B1CAD8DB0AD7FC117D8483C9BB78166372907A5B398 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
03:42:17.0734 0x0154  SysmonLog - ok
03:42:17.0796 0x0154  [ FB78839B36025AA286A51289ED28B73E, DA7046522118BFFD596242CA4ADE6B88D6B6A87D30D7F1175C9E9D912162F1B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
03:42:17.0812 0x0154  TapiSrv - ok
03:42:17.0859 0x0154  [ 2A5554FC5B1E04E131230E3CE035C3F9, 97CD31598A95BAF227BD4763AE721DCBF2E7BBB951E95F33B56C94C3B1D7CF4A ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
03:42:17.0906 0x0154  Tcpip - ok
03:42:17.0968 0x0154  [ 38D437CF2D98965F239B0ABCD66DCB0F, CC497A25C7AC1FF1E07CEE25FB0C5A5E6C4005C1CB244601FE620884A5C26506 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
03:42:17.0968 0x0154  TDPIPE - ok
03:42:17.0984 0x0154  [ ED0580AF02502D00AD8C4C066B156BE9, 41AA6C88CF48CAF0DA8E374F37E74206E4F558332075304A28983D04E08B3154 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
03:42:17.0984 0x0154  TDTCP - ok
03:42:18.0031 0x0154  [ A540A99C281D933F3D69D55E48727F47, CC430FA0E0F1745E167877003FDCC35FE940AF8CAD05387ECBA880CC3A3F6709 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
03:42:18.0031 0x0154  TermDD - ok
03:42:18.0093 0x0154  [ B60C877D16D9C880B952FDA04ADF16E6, 244D59A555349259D81D4643500E714A053D4A06DF892A8EDCAA0DC5EADFF050 ] TermService     C:\WINDOWS\System32\termsrv.dll
03:42:18.0109 0x0154  TermService - ok
03:42:18.0156 0x0154  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] Themes          C:\WINDOWS\System32\shsvcs.dll
03:42:18.0156 0x0154  Themes - ok
03:42:18.0171 0x0154  TosIde - ok
03:42:18.0203 0x0154  [ 6D9AC544B30F96C57F8206566C1FB6A1, C39D35D169A3BCA5E458815A1B60CE92D19BC04579D62DAB9396B42760C5E47B ] TrkWks          C:\WINDOWS\system32\trkwks.dll
03:42:18.0218 0x0154  TrkWks - ok
03:42:18.0265 0x0154  [ 12F70256F140CD7D52C58C7048FDE657, F2E3E645AA713A520452F5E17513D258D3900E93F65013551FC2B542BFA15BB3 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
03:42:18.0281 0x0154  Udfs - ok
03:42:18.0296 0x0154  ultra - ok
03:42:18.0343 0x0154  [ AFF2E5045961BBC0A602BB6F95EB1345, FEEF47B9683B0F26355AC0947019DE9AE27002A7019C1C4A2D22FA0046E9F07B ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
03:42:18.0359 0x0154  Update - ok
03:42:18.0406 0x0154  [ ACA5D98663D879C6BAAFCEA7E2F1B710, C8DA38619880E3B34A0C880BF1E9217A39B287493C7DD6E94C9565F4042913D7 ] upnphost        C:\WINDOWS\System32\upnphost.dll
03:42:18.0437 0x0154  upnphost - ok
03:42:18.0468 0x0154  [ 3F5DF65B0758675F95A2D43918A740A3, BC639259E0365C66F4C6CF2F341395942706810E4B393598429FA3B929D16D8C ] UPS             C:\WINDOWS\System32\ups.exe
03:42:18.0468 0x0154  UPS - ok
03:42:18.0500 0x0154  [ BFFD9F120CC63BCBAA3D840F3EEF9F79, 0183D82E341473200FB1A05F6ABBBA3F2BD635654F49599E4CEB3E6394A33D36 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
03:42:18.0500 0x0154  usbccgp - ok
03:42:18.0531 0x0154  [ 15E993BA2F6946B2BFBBFCD30398621E, 10AD5B133C9C68B8E11DF702C50BDE5162693C5A9F132DFE1823D03D70D4EB89 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
03:42:18.0531 0x0154  usbehci - ok
03:42:18.0546 0x0154  [ C72F40947F92CEA56A8FB532EDF025F1, EBB9E235C973574B835B1FD22D813E9215029B3FC5030591D6F7971C9A23AEF7 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
03:42:18.0546 0x0154  usbhub - ok
03:42:18.0578 0x0154  [ BDFE799A8531BAD8A5A985821FE78760, CDF194BA160146C329D4911A6573FE47E93BC1F5594C7D3B6C9F44105B90BD26 ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
03:42:18.0578 0x0154  usbohci - ok
03:42:18.0609 0x0154  [ 6CD7B22193718F1D17A47A1CD6D37E75, CFD74FE06819DA488654F88BFCCBF29994FE7F04EC6CD5CD41552B0C95A8130F ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
03:42:18.0609 0x0154  USBSTOR - ok
03:42:18.0640 0x0154  [ 8A60EDD72B4EA5AEA8202DAF0E427925, ED0624B285E4F64E07E30C12490873A2090F9DFD6A91A2EDA7A1082B88A8199E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
03:42:18.0640 0x0154  VgaSave - ok
03:42:18.0656 0x0154  ViaIde - ok
03:42:18.0703 0x0154  [ EE4660083DEBA849FF6C485D944B379B, 4DA3CA0DEA0698D387EA370D9BBFF06FEF1C0A5B3D7F772164441B63B8A3927A ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
03:42:18.0718 0x0154  VolSnap - ok
03:42:18.0765 0x0154  [ 3EE00364AE0FD8D604F46CBAF512838A, 962168941F4E291F2B5236DA7DB84E50DC335F42595B4BC31FCB7960BD8743FC ] VSS             C:\WINDOWS\System32\vssvc.exe
03:42:18.0796 0x0154  VSS - ok
03:42:18.0859 0x0154  [ 2B281958F5D0CF99ED626E3EF39D5C8D, FB46398AE01CDD9CB6E1E647E4DDA86B670F93F787D69B885C7E930D4FF8F3FC ] W32Time         C:\WINDOWS\system32\w32time.dll
03:42:18.0921 0x0154  W32Time - ok
03:42:18.0968 0x0154  [ 984EF0B9788ABF89974CFED4BFBAACBC, 8178888E3A1AA3BD3BE34456118BB76AF2DD04EC575E4880F97A8EFB182C9E92 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
03:42:18.0968 0x0154  Wanarp - ok
03:42:18.0984 0x0154  WDICA - ok
03:42:19.0031 0x0154  [ EFD235CA22B57C81118C1AEB4798F1C1, 16EE95A1D51F318224152492FB1663D96E61EC1706E85AE820CD023CBA1CF1F3 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
03:42:19.0031 0x0154  wdmaud - ok
03:42:19.0078 0x0154  [ 265F534EF76832435AFBF771EC97176D, 67C1C932A20A92D2D180D6763AC9297FA0B6D4C225501C7739B0B45F52FEC6E1 ] WebClient       C:\WINDOWS\System32\webclnt.dll
03:42:19.0093 0x0154  WebClient - ok
03:42:19.0171 0x0154  [ 1225EBEA76AAC3C84DF6C54FE5E5D8BE, 48EF4217924D15D54F9B3E1D5E51944FF16E7832982D32A978A3FA8165417611 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys
03:42:19.0234 0x0154  winachsf - ok
03:42:19.0296 0x0154  [ F399242A80C4066FD155EFA4CF96658E, DC40735D288193170DAF5571A829702EDC07DDAEA87ECF59490DFB516A690F9B ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
03:42:19.0312 0x0154  winmgmt - ok
03:42:19.0390 0x0154  [ B183823CFA0EC393556261A817CD4AD8, 3313798A924975BE541CDF571FF98FACF01FC653845DF77A2EEF615FB1AA7A15 ] WLAN(WLAN)      C:\WINDOWS\system32\DRIVERS\zd1211u.sys
03:42:19.0421 0x0154  WLAN(WLAN) - ok
03:42:19.0484 0x0154  [ 051B1BDECD6DEE18C771B5D5EC7F044D, E9D4870C7E4E6119B274CF788D564BE9C48EA63790F5D6A2E987EB6DF7C93200 ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
03:42:19.0484 0x0154  WmdmPmSN - ok
03:42:19.0515 0x0154  [ BA8CECC3E813E1F7C441B20393D4F86C, E60AC60B67926F61AD872412DC2E096825F97D725B66834328EC3B97F62DBFEA ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
03:42:19.0531 0x0154  WmiApSrv - ok
03:42:19.0656 0x0154  [ 6BAB4DC65515A098505F8B3D01FB6FE5, 52AA14777920753A8AF76072216A266F5D0036F112F671E7104E1F4C04AE499E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
03:42:19.0734 0x0154  WMPNetworkSvc - ok
03:42:19.0796 0x0154  [ D5842484F05E12121C511AA93F6439EC, 531888E914578172534BBC3220A86C99D1FCE423E89834B533E0A79F583436F3 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
03:42:19.0796 0x0154  WSTCODEC - ok
03:42:19.0812 0x0154  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
03:42:19.0828 0x0154  WudfPf - ok
03:42:19.0859 0x0154  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
03:42:19.0890 0x0154  WudfRd - ok
03:42:19.0921 0x0154  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
03:42:19.0968 0x0154  WudfSvc - ok
03:42:20.0015 0x0154  [ 5A91E6FEAB9F901302FA7FF768C0120F, 83A1A719508CB4E504D9A75BBB6FCEA1E15C1EC574B8BD18BA40B2A18EF9918E ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
03:42:20.0046 0x0154  WZCSVC - ok
03:42:20.0093 0x0154  [ EEF46DAB68229A14DA3D8E73C99E2959, C9D7083BC69E1A4672D06CBD9E4E6FD93C3CA67E28EC040D1CC6AAFBFC825813 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
03:42:20.0140 0x0154  xmlprov - ok
03:42:20.0187 0x0154  ================ Scan global ===============================
03:42:20.0218 0x0154  [ 00EF9C3AF83EDBAF18CA7A2837750117, 87DB68DC66EADA719411C2B3DB02768C52D61BAA94216FCE9C4EE5C710EE7171 ] C:\WINDOWS\system32\basesrv.dll
03:42:20.0281 0x0154  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
03:42:20.0343 0x0154  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
03:42:20.0390 0x0154  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] C:\WINDOWS\system32\services.exe
03:42:20.0390 0x0154  [ Global ] - ok
03:42:20.0406 0x0154  ================ Scan MBR ==================================
03:42:20.0421 0x0154  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
03:42:20.0593 0x0154  \Device\Harddisk0\DR0 - ok
03:42:20.0625 0x0154  [ 313E9C73FD7211CB886E0D872F211D65 ] \Device\Harddisk1\DR1
03:43:24.0187 0x0154  \Device\Harddisk1\DR1 - ok
03:43:24.0187 0x0154  ================ Scan VBR ==================================
03:43:24.0203 0x0154  [ 8DDCEAB3BB027147667BAF816796926B ] \Device\Harddisk0\DR0\Partition1
03:43:24.0218 0x0154  \Device\Harddisk0\DR0\Partition1 - ok
03:43:24.0250 0x0154  [ 32C11DA1DF5D6BEC9F3451F14E6A7BA5 ] \Device\Harddisk1\DR1\Partition1
03:43:24.0250 0x0154  \Device\Harddisk1\DR1\Partition1 - ok
03:43:24.0250 0x0154  ================ Scan active images ========================
03:43:24.0250 0x0154  [ 680AD1C1BB16239E28D8F33A54A7A3C7, 5E8C39A01C3FF1695C70132F933D71F2722867B3A3B485FB7505E8D447D7D5B9 ] C:\WINDOWS\system32\drivers\amdk7.sys
03:43:24.0250 0x0154  C:\WINDOWS\system32\drivers\amdk7.sys - ok
03:43:24.0265 0x0154  [ 2034CA78F9C6E787B4B76D81AC888351, DF04A1C19D5E4A62122DBD57A9D3D5190CA15930AB6D13CA6085657B1AFC6F50 ] C:\WINDOWS\system32\drivers\usbport.sys
03:43:24.0265 0x0154  C:\WINDOWS\system32\drivers\usbport.sys - ok
03:43:24.0281 0x0154  [ BDFE799A8531BAD8A5A985821FE78760, CDF194BA160146C329D4911A6573FE47E93BC1F5594C7D3B6C9F44105B90BD26 ] C:\WINDOWS\system32\drivers\usbohci.sys
03:43:24.0281 0x0154  C:\WINDOWS\system32\drivers\usbohci.sys - ok
03:43:24.0296 0x0154  [ 15E993BA2F6946B2BFBBFCD30398621E, 10AD5B133C9C68B8E11DF702C50BDE5162693C5A9F132DFE1823D03D70D4EB89 ] C:\WINDOWS\system32\drivers\usbehci.sys
03:43:24.0296 0x0154  C:\WINDOWS\system32\drivers\usbehci.sys - ok
03:43:24.0312 0x0154  [ 47B3852808DD579A463FCE7085B77413, CDBF1AF462C5C8C7E6226FF7029E03E4605465ACE2FB4460DC7D984990D99A95 ] C:\WINDOWS\system32\drivers\nvax.sys
03:43:24.0312 0x0154  C:\WINDOWS\system32\drivers\nvax.sys - ok
03:43:24.0312 0x0154  [ B9540E258F952650DE8DEC68719A5C97, C4706B09AAC1D3585F1E4207B0A5287BF9752ED7B427DF378AC8CAC826F8837F ] C:\WINDOWS\system32\drivers\ks.sys
03:43:24.0312 0x0154  C:\WINDOWS\system32\drivers\ks.sys - ok
03:43:24.0328 0x0154  [ 970178E8E003EB1481293830069624B9, 411E7224347D7CB001667CDE013D7C30A3CC07AC7968FBFF4975A79D63BCA7D0 ] C:\WINDOWS\system32\drivers\HSFBS2S2.sys
03:43:24.0328 0x0154  C:\WINDOWS\system32\drivers\HSFBS2S2.sys - ok
03:43:24.0343 0x0154  [ EBB354438A4C5A3327FB97306260714A, 95C5008E44815343FBC4F7DEE47370EB9A28AFC12AE2447A0B298789504DB6B9 ] C:\WINDOWS\system32\drivers\HSFDPSP2.sys
03:43:24.0343 0x0154  C:\WINDOWS\system32\drivers\HSFDPSP2.sys - ok
03:43:24.0359 0x0154  [ 1225EBEA76AAC3C84DF6C54FE5E5D8BE, 48EF4217924D15D54F9B3E1D5E51944FF16E7832982D32A978A3FA8165417611 ] C:\WINDOWS\system32\drivers\HSFCXTS2.sys
03:43:24.0359 0x0154  C:\WINDOWS\system32\drivers\HSFCXTS2.sys - ok
03:43:24.0375 0x0154  [ AF9C19B3100FE010496B1A27181FBF72, 64E9E4461F631EED2B2A1FC80DCC9C31DCECB5738289D322E6A6428C840DC621 ] C:\WINDOWS\system32\drivers\cdrom.sys
03:43:24.0375 0x0154  C:\WINDOWS\system32\drivers\cdrom.sys - ok
03:43:24.0390 0x0154  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05, BF2C49E4D4C2D2E865B1C59FFE76BF29146ADD971D845FBD659A96AA26D72A11 ] C:\WINDOWS\system32\drivers\modem.sys
03:43:24.0390 0x0154  C:\WINDOWS\system32\drivers\modem.sys - ok
03:43:24.0406 0x0154  [ B31B4588E4086D8D84ADBF9845C2402B, 0B45979623B0AC774A9426C428954E7FB604FAE0DB187C402AF6052906F4099A ] C:\WINDOWS\system32\drivers\redbook.sys
03:43:24.0406 0x0154  C:\WINDOWS\system32\drivers\redbook.sys - ok
03:43:24.0406 0x0154  [ AB8A6A87D9D7255C3884D5B9541A6E80, D073B5D8A06EFA6415E8F22DFE486DE913113AE23F59CFC5EEF1B3E694CE86F3 ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
03:43:24.0406 0x0154  C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
03:43:24.0437 0x0154  [ F8AA320C6A0409C0380E5D8A99D76EC6, A848B9C489DDFBD48BDA140CB9DD43097686115042745F6444F803739168D391 ] C:\WINDOWS\system32\drivers\imapi.sys
03:43:24.0437 0x0154  C:\WINDOWS\system32\drivers\imapi.sys - ok
03:43:24.0453 0x0154  [ B49BD5B663E1AF9BF3233B782B70D865, 44E20EB1C063D34F35091B94B70E91A3F6683D63C9B518B14A6D65B5ABE8D092 ] C:\WINDOWS\system32\drivers\InCDPass.sys
03:43:24.0453 0x0154  C:\WINDOWS\system32\drivers\InCDPass.sys - ok
03:43:24.0453 0x0154  [ FC04E827133D54AB79CA254708F76CD0, 9C1F6F7E944F376B864400602BA04F698CCD686AE7712A1E47881E0BA12F65D3 ] C:\WINDOWS\system32\drivers\InCDRm.sys
03:43:24.0468 0x0154  C:\WINDOWS\system32\drivers\InCDRm.sys - ok
03:43:24.0468 0x0154  [ D5A9D123F5ED7C9965A481BD20CF66D8, E89C49FF047F85728D69C83E3F544F035FA1672BA08E6D78CB454877D0F4C281 ] C:\WINDOWS\system32\drivers\videoprt.sys
03:43:24.0468 0x0154  C:\WINDOWS\system32\drivers\videoprt.sys - ok
03:43:24.0484 0x0154  [ 8759322FFC1A50569C1E5528EE8026B7, 4096F61F5C580622ABDC2FFC523FD81D667ACBD584074182134FB00E1EE43EC7 ] C:\WINDOWS\system32\drivers\ati2mtag.sys
03:43:24.0484 0x0154  C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
03:43:24.0500 0x0154  [ CED2E8396A8838E59D8FD529C680E02C, 8542AE6A2D65D3F843EA70F5FFBC150B773C5CFA3FE6388FA68A95416FAD0F6E ] C:\WINDOWS\system32\drivers\fdc.sys
03:43:24.0500 0x0154  C:\WINDOWS\system32\drivers\fdc.sys - ok
03:43:24.0515 0x0154  [ CD9404D115A00D249F70A371B46D5A26, D9FC869FA9A6B9574A1FCE70E7B919D8F79E02B28967E49F6DEF83A84520ECDF ] C:\WINDOWS\system32\drivers\serial.sys
03:43:24.0515 0x0154  C:\WINDOWS\system32\drivers\serial.sys - ok
03:43:24.0531 0x0154  [ 29744EB4CE659DFE3B4122DEB45BC478, 5F7B63152CDAA031ACB77E793BB7E8210472D6D1EED911F3A0BD70455FC282FC ] C:\WINDOWS\system32\drivers\parport.sys
03:43:24.0531 0x0154  C:\WINDOWS\system32\drivers\parport.sys - ok
03:43:24.0546 0x0154  [ A2D868AEEFF612E70E213C451A70CAFB, 25CBB9E26CDCBD8E221ACF4364E82E8F811C3144E0EEF9DF9DAEC8534243BD3B ] C:\WINDOWS\system32\drivers\serenum.sys
03:43:24.0546 0x0154  C:\WINDOWS\system32\drivers\serenum.sys - ok
03:43:24.0562 0x0154  [ 5502B58EEF7486EE6F93F3F164DCB808, 7E56E49D6444F2F48037B859B491DF95E1C90EC7ED4EF9C477CD2C49783E62E0 ] C:\WINDOWS\system32\drivers\i8042prt.sys
03:43:24.0562 0x0154  C:\WINDOWS\system32\drivers\i8042prt.sys - ok
03:43:24.0578 0x0154  [ EBDEE8A2EE5393890A1ACEE971C4C246, ACC57A7BACAB100FB2903451D2A48BFE936E3B8F9B13882C1D2DFF9D19BD1D34 ] C:\WINDOWS\system32\drivers\kbdclass.sys
03:43:24.0578 0x0154  C:\WINDOWS\system32\drivers\kbdclass.sys - ok
03:43:24.0593 0x0154  [ 34E1F0031153E491910E12551400192C, D608F77DB7035FD676773A3DF8DBC5DD52CC5198D0681A73D7EAA6C161047A90 ] C:\WINDOWS\system32\drivers\mouclass.sys
03:43:24.0593 0x0154  C:\WINDOWS\system32\drivers\mouclass.sys - ok
03:43:24.0593 0x0154  [ FF86422268DE771D571E123EB7092C6A, 4F1D9BBA2C1B36EA114F8D88EA8BEBA0A18236913B9233CB794BFB048B9E831B ] C:\WINDOWS\system32\drivers\drmk.sys
03:43:24.0593 0x0154  C:\WINDOWS\system32\drivers\drmk.sys - ok
03:43:24.0609 0x0154  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] C:\WINDOWS\system32\drivers\audstub.sys
03:43:24.0609 0x0154  C:\WINDOWS\system32\drivers\audstub.sys - ok
03:43:24.0625 0x0154  [ 5F92FD09E5610A5995DA7D775EADCD12, 63E6A8209BEA7F458BC9E1F792847500B3DB450E8FB3DA1B1C98E96D140ECE7D ] C:\WINDOWS\system32\drivers\gameenum.sys
03:43:24.0625 0x0154  C:\WINDOWS\system32\drivers\gameenum.sys - ok
03:43:24.0640 0x0154  [ CA3E22598F411199ADC2DFEE76CD0AE0, 73ACE780A198467657CD2AF6019F0FC753B4FC6D26A9D6477C88C5396273F77C ] C:\WINDOWS\system32\drivers\msmpu401.sys
03:43:24.0640 0x0154  C:\WINDOWS\system32\drivers\msmpu401.sys - ok
03:43:24.0656 0x0154  [ 5B0F00E43A7094C0B7E433CB42C79164, 8150D03BCA28EF012D2E8E2AF8F6849C0664998FCBDAD0D48AEE44D5CAA9B668 ] C:\WINDOWS\system32\drivers\portcls.sys
03:43:24.0656 0x0154  C:\WINDOWS\system32\drivers\portcls.sys - ok
03:43:24.0671 0x0154  [ 08D43BBDACDF23F34D79E44ED35C1B4C, F72CB8FA67C361C40B4C83F08302D7B2FD9178C1C60A7C236AF08B9CB5162591 ] C:\WINDOWS\system32\drivers\ndistapi.sys
03:43:24.0671 0x0154  C:\WINDOWS\system32\drivers\ndistapi.sys - ok
03:43:24.0687 0x0154  [ 0B90E255A9490166AB368CD55A529893, 90EB17422BF52FE6D0CC6ADA4262D605806C5B583DE04EDEC95FD47EE9697865 ] C:\WINDOWS\system32\drivers\ndiswan.sys
03:43:24.0687 0x0154  C:\WINDOWS\system32\drivers\ndiswan.sys - ok
03:43:24.0703 0x0154  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C, F59974A2A3C21071BC72CA4DAF5D2DDF93471EC16FD1A34DE9DC1A50027F6835 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
03:43:24.0703 0x0154  C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
03:43:24.0703 0x0154  [ 7306EEED8895454CBED4669BE9F79FAA, DC6874ECAD9105BC9EAB007291958911D7D4D3649124472070B3496B36C45200 ] C:\WINDOWS\system32\drivers\raspppoe.sys
03:43:24.0703 0x0154  C:\WINDOWS\system32\drivers\raspppoe.sys - ok
03:43:24.0718 0x0154  [ 6891B74AB9A016064E82A419388D0601, EB4C813D551D73ADA539946AB1BDF2D1DABF8EE27BD8E94A0DACA75CC117E6C1 ] C:\WINDOWS\system32\drivers\tdi.sys
03:43:24.0718 0x0154  C:\WINDOWS\system32\drivers\tdi.sys - ok
03:43:24.0734 0x0154  [ 1C5CC65AAC0783C344F16353E60B72AC, 7786CFE970A79B327DB57AEBADA8B0B94B4DE07CE8AF285E9835B2AADD597296 ] C:\WINDOWS\system32\drivers\raspptp.sys
03:43:24.0734 0x0154  C:\WINDOWS\system32\drivers\raspptp.sys - ok
03:43:24.0750 0x0154  [ C0F1D4A21DE5A415DF8170616703DEBF, 3E21AAD06CF6EB95662B568671B1DBD129CED481761BCDB67088E965E5C0BC5B ] C:\WINDOWS\system32\drivers\msgpc.sys
03:43:24.0750 0x0154  C:\WINDOWS\system32\drivers\msgpc.sys - ok
03:43:24.0765 0x0154  [ 48671F327553DCF1D27F6197F622A668, CB34A17BC36E8F8BB5F87F9EE21311C50DE9AE156513D682581DE47C93EC155D ] C:\WINDOWS\system32\drivers\psched.sys
03:43:24.0765 0x0154  C:\WINDOWS\system32\drivers\psched.sys - ok
03:43:24.0781 0x0154  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] C:\WINDOWS\system32\drivers\ptilink.sys
03:43:24.0781 0x0154  C:\WINDOWS\system32\drivers\ptilink.sys - ok
03:43:24.0796 0x0154  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] C:\WINDOWS\system32\drivers\raspti.sys
03:43:24.0796 0x0154  C:\WINDOWS\system32\drivers\raspti.sys - ok
03:43:24.0812 0x0154  [ A540A99C281D933F3D69D55E48727F47, CC430FA0E0F1745E167877003FDCC35FE940AF8CAD05387ECBA880CC3A3F6709 ] C:\WINDOWS\system32\drivers\termdd.sys
03:43:24.0812 0x0154  C:\WINDOWS\system32\drivers\termdd.sys - ok
03:43:24.0828 0x0154  [ B54F7959AFB4AAF1A8C589B0AA7FDE02, 1154AC915D87E7531E82CBF94860C7CF3F1F7751C15C9309F6588665A5237ECE ] C:\WINDOWS\system32\drivers\SymIM.sys
03:43:24.0828 0x0154  C:\WINDOWS\system32\drivers\SymIM.sys - ok
03:43:24.0843 0x0154  [ 03C1BAE4766E2450219D20B993D6E046, 0D8E5B141EAA9E2C8D1F8BFD522F57EE8074216A336CBE37FE77B8ADDB791DBE ] C:\WINDOWS\system32\drivers\swenum.sys
03:43:24.0843 0x0154  C:\WINDOWS\system32\drivers\swenum.sys - ok
03:43:24.0859 0x0154  [ AFF2E5045961BBC0A602BB6F95EB1345, FEEF47B9683B0F26355AC0947019DE9AE27002A7019C1C4A2D22FA0046E9F07B ] C:\WINDOWS\system32\drivers\update.sys
03:43:24.0859 0x0154  C:\WINDOWS\system32\drivers\update.sys - ok
03:43:24.0875 0x0154  [ 469541F8BFD2B32659D5D463A6714BCE, 46AA7D2442DCC4C51C08BA0C00136F058F9160E6D6EDE78B2FD82545AE4FD10B ] C:\WINDOWS\system32\drivers\mssmbios.sys
03:43:24.0875 0x0154  C:\WINDOWS\system32\drivers\mssmbios.sys - ok
03:43:24.0890 0x0154  [ 596EB39B50D6EBD9B734DC4AE0544693, EFCA2CFFFB8467BAC63F5174F125FEEFFA1F29491285C5BF99B3A2B2A6A25934 ] C:\WINDOWS\system32\drivers\usbd.sys
03:43:24.0890 0x0154  C:\WINDOWS\system32\drivers\usbd.sys - ok
03:43:24.0906 0x0154  [ C72F40947F92CEA56A8FB532EDF025F1, EBB9E235C973574B835B1FD22D813E9215029B3FC5030591D6F7971C9A23AEF7 ] C:\WINDOWS\system32\drivers\usbhub.sys
03:43:24.0906 0x0154  C:\WINDOWS\system32\drivers\usbhub.sys - ok
03:43:24.0906 0x0154  [ 59FC3FB44D2669BC144FD87826BB571F, B3C8CEFB09D5C85CBF12AED8CDB1FE455679D3436337263EFDABDC5116D92453 ] C:\WINDOWS\system32\drivers\ndproxy.sys
03:43:24.0906 0x0154  C:\WINDOWS\system32\drivers\ndproxy.sys - ok
03:43:24.0921 0x0154  [ 5842A42BF09EB5A48D6AA6115640C6A3, 7111DB3234A758E15097C71138DE1AB993986C278A76C9B78B306D26AB2EFD20 ] C:\WINDOWS\system32\drivers\nvarm.sys
03:43:24.0921 0x0154  C:\WINDOWS\system32\drivers\nvarm.sys - ok
03:43:24.0937 0x0154  [ 148B8CFF6EDDB62BA7192EA7B49B1F11, 4A16E2DF3C64A9DDFEDD2BED43E51E5FBD34CA8AF970662BD7D3EC4A062E9981 ] C:\WINDOWS\system32\drivers\nvmcp.sys
03:43:24.0937 0x0154  C:\WINDOWS\system32\drivers\nvmcp.sys - ok
03:43:24.0953 0x0154  [ ADBCBA116496229A163193BBE0BB28CE, E219285EAD832AAD083F8AAAD9556BEC669ADCB93BC8B9BADDD97D72090E1B0F ] C:\WINDOWS\system32\drivers\nvapu.sys
03:43:24.0953 0x0154  C:\WINDOWS\system32\drivers\nvapu.sys - ok
03:43:24.0953 0x0154  [ 0DD1DE43115B93F4D85E889D7A86F548, D50F7AAE5416C6D41845960BDDA24E97226F609AA726E4F88601ADC9ED50E872 ] C:\WINDOWS\system32\drivers\flpydisk.sys
03:43:24.0953 0x0154  C:\WINDOWS\system32\drivers\flpydisk.sys - ok
03:43:24.0968 0x0154  [ 0D13B6DF6E9E101013A7AFB0CE629FE0, 2214EA0F16BB33970E299CE457EB50AEE0BEF7959BC1EBD3C06C78A46B42B808 ] C:\WINDOWS\system32\drivers\sfloppy.sys
03:43:24.0968 0x0154  C:\WINDOWS\system32\drivers\sfloppy.sys - ok
03:43:24.0984 0x0154  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] C:\WINDOWS\system32\drivers\beep.sys
03:43:24.0984 0x0154  C:\WINDOWS\system32\drivers\beep.sys - ok
03:43:25.0000 0x0154  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] C:\WINDOWS\system32\drivers\cdaudio.sys
03:43:25.0000 0x0154  C:\WINDOWS\system32\drivers\cdaudio.sys - ok
03:43:25.0015 0x0154  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] C:\WINDOWS\system32\drivers\fs_rec.sys
03:43:25.0015 0x0154  C:\WINDOWS\system32\drivers\fs_rec.sys - ok
03:43:25.0031 0x0154  [ 5FFF41CD5108E9051D255C37825AF697, 8EEEF1A89DAE3EE27A344D98D2E930DFFB39010482C2BAC5E8D6A84DFA522E82 ] C:\WINDOWS\system32\drivers\hidparse.sys
03:43:25.0031 0x0154  C:\WINDOWS\system32\drivers\hidparse.sys - ok
03:43:25.0046 0x0154  [ E182FA8E49E8EE41B4ADC53093F3C7E6, 2E713992C9B40F6010373A2FFF6DBCC8723BB328DE6875793C46072D8323E9BB ] C:\WINDOWS\system32\drivers\kbdhid.sys
03:43:25.0046 0x0154  C:\WINDOWS\system32\drivers\kbdhid.sys - ok
03:43:25.0062 0x0154  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] C:\WINDOWS\system32\drivers\null.sys
03:43:25.0062 0x0154  C:\WINDOWS\system32\drivers\null.sys - ok
03:43:25.0062 0x0154  [ B02A8A25192EE1C5E653628637AB6AAA, 6A6FF5E5B387B2C68A91389F9F24EC48FD9A164FBC1BF9574D13BEFD0F034192 ] C:\WINDOWS\system32\drivers\InCDfs.sys
03:43:25.0062 0x0154  C:\WINDOWS\system32\drivers\InCDfs.sys - ok
03:43:25.0078 0x0154  [ 8FD364EDBD97983575CEE3E8909E62B4, 216FFDC3EA1D18580622D04AD09960C057326C6346D1F6B4E0CC9BF89E5D90DA ] C:\WINDOWS\system32\drivers\InCDrec.sys
03:43:25.0078 0x0154  C:\WINDOWS\system32\drivers\InCDrec.sys - ok
03:43:25.0093 0x0154  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] C:\WINDOWS\system32\drivers\mnmdd.sys
03:43:25.0093 0x0154  C:\WINDOWS\system32\drivers\mnmdd.sys - ok
03:43:25.0109 0x0154  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] C:\WINDOWS\system32\drivers\rdpcdd.sys
03:43:25.0109 0x0154  C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
03:43:25.0125 0x0154  [ 561B3A4333CA2DBDBA28B5B956822519, 5B53906A29B9AA55A399F880CA989F9878BD943D3E97FB10A25BFD723654AF49 ] C:\WINDOWS\system32\drivers\msfs.sys
03:43:25.0125 0x0154  C:\WINDOWS\system32\drivers\msfs.sys - ok
03:43:25.0140 0x0154  [ 4F601BCB8F64EA3AC0994F98FED03F8E, D9D6783B970CB871DE0C6EDD8BE42F30CD1DCD55D4DF006922D9CFC0CF020D27 ] C:\WINDOWS\system32\drivers\npfs.sys
03:43:25.0140 0x0154  C:\WINDOWS\system32\drivers\npfs.sys - ok
03:43:25.0156 0x0154  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] C:\WINDOWS\system32\drivers\rasacd.sys
03:43:25.0156 0x0154  C:\WINDOWS\system32\drivers\rasacd.sys - ok
03:43:25.0156 0x0154  [ 64537AA5C003A6AFEEE1DF819062D0D1, 5A6C11317DEF14B8C34A8C669EB75F7A8D46F05090C43D3DFF602CFA13CC504E ] C:\WINDOWS\system32\drivers\ipsec.sys
03:43:25.0156 0x0154  C:\WINDOWS\system32\drivers\ipsec.sys - ok
03:43:25.0171 0x0154  [ 2A5554FC5B1E04E131230E3CE035C3F9, 97CD31598A95BAF227BD4763AE721DCBF2E7BBB951E95F33B56C94C3B1D7CF4A ] C:\WINDOWS\system32\drivers\tcpip.sys
03:43:25.0171 0x0154  C:\WINDOWS\system32\drivers\tcpip.sys - ok
03:43:25.0187 0x0154  [ E6FF7ACE71D07CA90119F2C6AB592BA4, 3FC7B52FE6136A3BEBDDA1E2E59EA3BE2A8C24C7D75B6736AD452D0D6DF9508F ] C:\WINDOWS\system32\drivers\symtdi.sys
03:43:25.0187 0x0154  C:\WINDOWS\system32\drivers\symtdi.sys - ok
03:43:25.0203 0x0154  [ 06B95820DF51502099A8A15C93E87986, 77F70B2A8B84882840DEFA89D6037EF16E8BF5EADB7D089DD2374C12290D17A5 ] C:\WINDOWS\system32\drivers\SYMEVENT.SYS
03:43:25.0203 0x0154  C:\WINDOWS\system32\drivers\SYMEVENT.SYS - ok
03:43:25.0218 0x0154  [ 0C80E410CD2F47134407EE7DD19CC86B, 2A1D0CE9797F4AB7A24873947A26DD6413B8DBB5A82C24CF28D1FC243AEFC5C8 ] C:\WINDOWS\system32\drivers\netbt.sys
03:43:25.0218 0x0154  C:\WINDOWS\system32\drivers\netbt.sys - ok
03:43:25.0234 0x0154  [ 984EF0B9788ABF89974CFED4BFBAACBC, 8178888E3A1AA3BD3BE34456118BB76AF2DD04EC575E4880F97A8EFB182C9E92 ] C:\WINDOWS\system32\drivers\wanarp.sys
03:43:25.0234 0x0154  C:\WINDOWS\system32\drivers\wanarp.sys - ok
03:43:25.0250 0x0154  [ 55E6E1C51B6D30E54335750955453702, 49BE694FB65F195A65EC631558BA599345C6641A6A5AA2F1053611B715F4677A ] C:\WINDOWS\system32\drivers\afd.sys
03:43:25.0250 0x0154  C:\WINDOWS\system32\drivers\afd.sys - ok
03:43:25.0250 0x0154  [ 3A2ACA8FC1D7786902CA434998D7CEB4, ECE218DCDCB4D0A5CA8CBD14E931BAA3B5F381B70BBACB65B0EBBB46D2D31683 ] C:\WINDOWS\system32\drivers\netbios.sys
03:43:25.0250 0x0154  C:\WINDOWS\system32\drivers\netbios.sys - ok
03:43:25.0265 0x0154  [ DC4DC886D3779C446F9B0E9D6B006E72, 66FBAD89B85C965D333CA5E8CE16BD33C1F25EA6A884C7E6360A9F3F4E85CE76 ] C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
03:43:25.0265 0x0154  C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys - ok
03:43:25.0281 0x0154  [ D3BB40427CF3D02E56BBA97FEDA0A3AA, 6FA9956522F7B4DB2B8D75281BA3F76ECFC2DE6C29B68025E8911A4FABE5F9A7 ] C:\WINDOWS\system32\drivers\srtspx.sys
03:43:25.0281 0x0154  C:\WINDOWS\system32\drivers\srtspx.sys - ok
03:43:25.0296 0x0154  [ 03B965B1CA47F6EF60EB5E51CB50E0AF, 56B0F5FC470385F2FF4E4573099C96772EDB985398859B9F7ACE0AA704BB47B7 ] C:\WINDOWS\system32\drivers\rdbss.sys
03:43:25.0296 0x0154  C:\WINDOWS\system32\drivers\rdbss.sys - ok
03:43:25.0312 0x0154  [ FB6C89BB3CE282B08BDB1E3C179E1C39, 0558617DB859228332F4B7E44875AB3CDBA370E78C23BB5E80B159AAA7087B3E ] C:\WINDOWS\system32\drivers\mrxsmb.sys
03:43:25.0312 0x0154  C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
03:43:25.0328 0x0154  [ 70AEAC5D481B2904B40F2173E280B1B5, BA7951C4DC3A80582FCF664426185E4981D34AA755CB47FD9D00859793CC6071 ] C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
03:43:25.0328 0x0154  C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys - ok
03:43:25.0343 0x0154  [ E153AB8A11DE5452BCF5AC7652DBF3ED, AEB48687C604B0CDE5F1A13C2EC854CFFBE1CE0837C3898D6D4C6B71265D0ED0 ] C:\WINDOWS\system32\drivers\fips.sys
03:43:25.0343 0x0154  C:\WINDOWS\system32\drivers\fips.sys - ok
03:43:25.0359 0x0154  [ BD7FB0957C716F1A60333AEE04DE2178, 4460083351B13FB64919A24425296D7D938558A1B3C86112A30F37289810C2CC ] C:\WINDOWS\system32\smss.exe
03:43:25.0359 0x0154  C:\WINDOWS\system32\smss.exe - ok
03:43:25.0375 0x0154  [ C06986B55981B355090DD34DE809E4BB, 82EBD8827D3B825E1AE6B962A1431530D5A6B14905FC7F9C24C6DD594E8A6AD8 ] C:\WINDOWS\system32\ntdll.dll
03:43:25.0375 0x0154  C:\WINDOWS\system32\ntdll.dll - ok
03:43:25.0375 0x0154  [ B3415B9D6026F65E43089ABED096C38C, A3FFC3D564FADAEAA65668194E37CB9852C56B4AC0AB4F683435CE9E6C8F13D0 ] C:\WINDOWS\system32\autochk.exe
03:43:25.0375 0x0154  C:\WINDOWS\system32\autochk.exe - ok
03:43:25.0390 0x0154  [ 3117F595E9615E04F05A54FC15A03B20, 4708E8F1CDE6E9663B5DBEBAB8C684B16E45D41AEF20E4071D0A2931B305BD76 ] C:\WINDOWS\system32\drivers\fastfat.sys
03:43:25.0390 0x0154  C:\WINDOWS\system32\drivers\fastfat.sys - ok
03:43:25.0406 0x0154  [ B183823CFA0EC393556261A817CD4AD8, 3313798A924975BE541CDF571FF98FACF01FC653845DF77A2EEF615FB1AA7A15 ] C:\WINDOWS\system32\drivers\ZD1211U.sys
03:43:25.0406 0x0154  C:\WINDOWS\system32\drivers\ZD1211U.sys - ok
03:43:25.0421 0x0154  [ 30A609E00BD1D4FFC49D6B5A432BE7F2, 2C7214E17E21D62F735C98EEE968C8118A171F01FA77588D298DADBF9D4D82F5 ] C:\WINDOWS\system32\sfcfiles.dll
03:43:25.0421 0x0154  C:\WINDOWS\system32\sfcfiles.dll - ok
03:43:25.0437 0x0154  [ CD7D5152DF32B47F4E36F710B35AAE02, 7382890CC1B27FC66C3E94E064562BBD87B3C75577CB0FD10860B8E2CE07D12E ] C:\WINDOWS\system32\drivers\cdfs.sys
03:43:25.0437 0x0154  C:\WINDOWS\system32\drivers\cdfs.sys - ok
03:43:25.0437 0x0154  [ 2F31B7F954BED437F2C75026C65CAF7B, 1F8D6CBB01AD403BC89D1E987012E2F63CDFD9C49F402F358B64B31C13E4DD14 ] C:\WINDOWS\system32\drivers\wmilib.sys
03:43:25.0437 0x0154  C:\WINDOWS\system32\drivers\wmilib.sys - ok
03:43:25.0453 0x0154  [ CDFE4411A69C224BD1D11B2DA92DAC51, 0E6B23A80F171550575BEBC56F7500CD87A5CF03B2B9FDC49BC3DE96282CD69D ] C:\WINDOWS\system32\drivers\atapi.sys
03:43:25.0453 0x0154  C:\WINDOWS\system32\drivers\atapi.sys - ok
03:43:25.0468 0x0154  [ FE97D0343ACFDEBDD578FC67CC91FA87, FE26FBA13079189EF96A1C994036EA472A4BF34FA14C163C693AD481BF31E676 ] C:\WINDOWS\system32\drivers\dxapi.sys
03:43:25.0468 0x0154  C:\WINDOWS\system32\drivers\dxapi.sys - ok
03:43:25.0484 0x0154  [ C9BF2F12C4E6C12F8A85FBA4B6BC6208, 711E5874F15E4125ED521382F0BBE71C4A21FB96E3ECAAF7A95F8F2C6E551B96 ] C:\WINDOWS\system32\watchdog.sys
03:43:25.0484 0x0154  C:\WINDOWS\system32\watchdog.sys - ok
03:43:25.0500 0x0154  [ 7190A8EBD16D56C78864E49C9BB5FE7D, D10CBC4CCC2D59472C0747DBAE85368B10C447FE37C1192BBB59BD41E684FDA7 ] C:\WINDOWS\system32\win32k.sys
03:43:25.0500 0x0154  C:\WINDOWS\system32\win32k.sys - ok
03:43:25.0515 0x0154  [ EFD2862F003538B9A5B4C015F8FDB1B3, 016CCBA850E99A8874622ADCA0741C47166453D68B6C55244115860760BFC2CA ] C:\WINDOWS\system32\csrsrv.dll
03:43:25.0515 0x0154  C:\WINDOWS\system32\csrsrv.dll - ok
03:43:25.0531 0x0154  [ F12B178B1678D778CFD3FF1FC38C71FB, 42A7AEB7D7056D583B620993F733D259B78600AAB2C9B95E58D437A6401C79B1 ] C:\WINDOWS\system32\csrss.exe
03:43:25.0531 0x0154  C:\WINDOWS\system32\csrss.exe - ok
03:43:25.0546 0x0154  [ 00EF9C3AF83EDBAF18CA7A2837750117, 87DB68DC66EADA719411C2B3DB02768C52D61BAA94216FCE9C4EE5C710EE7171 ] C:\WINDOWS\system32\basesrv.dll
03:43:25.0546 0x0154  C:\WINDOWS\system32\basesrv.dll - ok
03:43:25.0546 0x0154  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
03:43:25.0546 0x0154  C:\WINDOWS\system32\winsrv.dll - ok
03:43:25.0562 0x0154  [ 0C07B16769E579F78C541773D0A2E7E0, 30E148F59211175398A5B10229117974E31A93622BA5ADA8599920DAB8F6FA06 ] C:\WINDOWS\system32\gdi32.dll
03:43:25.0562 0x0154  C:\WINDOWS\system32\gdi32.dll - ok
03:43:25.0578 0x0154  [ B6ACAED7588295129791E0E6A2B0FADE, 7CD8D903974985F74E7843204168C8EA720322BE84EDB2BA4ED508EE353CC174 ] C:\WINDOWS\system32\kernel32.dll
03:43:25.0578 0x0154  C:\WINDOWS\system32\kernel32.dll - ok
03:43:25.0593 0x0154  [ B409909F6E2E8A7067076ED748ABF1E7, 3D1EF8915829C2C48ABCA74F6B590541AC38E24F02B4D5A0AFB6C9099CCD672F ] C:\WINDOWS\system32\user32.dll
03:43:25.0593 0x0154  C:\WINDOWS\system32\user32.dll - ok
03:43:25.0609 0x0154  [ D3DAC8432110AAD0B02A58B4459AB835, CA44B2A02554E76CCBE95623AD129EDAB3AADFA5E675CB528E62F6440DFC295D ] C:\WINDOWS\system32\drivers\dxg.sys
03:43:25.0609 0x0154  C:\WINDOWS\system32\drivers\dxg.sys - ok
03:43:25.0625 0x0154  [ A73F5D6705B1D820C19B18782E176EFD, C36486504C3A596FDCA487143F6D3B43C0BEE01321F6F1F3071976556533C419 ] C:\WINDOWS\system32\drivers\dxgthk.sys
03:43:25.0625 0x0154  C:\WINDOWS\system32\drivers\dxgthk.sys - ok
03:43:25.0640 0x0154  [ 0985D4F25D526372440C62C8ADC3058A, 3ADB5D52B18CBF651D35BE0C0FB27F6D2F83B58D1096608BA45FFCABD64479C5 ] C:\WINDOWS\system32\ati2dvag.dll
03:43:25.0640 0x0154  C:\WINDOWS\system32\ati2dvag.dll - ok
03:43:25.0656 0x0154  [ 5243571FE26871969FBF35BE4343E669, E7DCE577E13C95594DF8BF19BFEB80DD394708A6574B4C2B879EC459A05CEF24 ] C:\WINDOWS\system32\ati2cqag.dll
03:43:25.0656 0x0154  C:\WINDOWS\system32\ati2cqag.dll - ok
03:43:25.0656 0x0154  [ 0C50AD4AA42C6DC5DD85C299938D130B, DF4A271970F9EBC948ED72A27E4177A4D0C4B1A0E945A69DD88D2FF0A3AC17FE ] C:\WINDOWS\system32\ati3d1ag.dll
03:43:25.0656 0x0154  C:\WINDOWS\system32\ati3d1ag.dll - ok
03:43:25.0671 0x0154  [ 01C3346C241652F43AED8E2149881BFE, AFFD0973CD3128083417D407F62BC4A635FC25B65DBF52E91D3AB4AE2F9C1B4A ] C:\WINDOWS\system32\winlogon.exe
03:43:25.0671 0x0154  C:\WINDOWS\system32\winlogon.exe - ok
03:43:25.0687 0x0154  [ 1081C185AED0660B2B5F173C3E023B23, 61324205277DA786CEB356EAB9E66F768791D8C157949227AFD3DDDC8AC1DBCC ] C:\WINDOWS\system32\advapi32.dll
03:43:25.0687 0x0154  C:\WINDOWS\system32\advapi32.dll - ok
03:43:25.0703 0x0154  [ 461B6E2F04112E659280314B7A414F30, 2A4B7AB7B2A3C147EF7B5C2DA6225D7A0545AED38DE21E5C735300EE7E16EB96 ] C:\WINDOWS\system32\rpcrt4.dll
03:43:25.0703 0x0154  C:\WINDOWS\system32\rpcrt4.dll - ok
03:43:25.0718 0x0154  [ 174F3D2CA3C9E53643772A67C36BE5AF, 78325969B1648DD73FBB980E285515703EA01564E2D631B351E4E8D0DA8212FC ] C:\WINDOWS\system32\secur32.dll
03:43:25.0718 0x0154  C:\WINDOWS\system32\secur32.dll - ok
03:43:25.0718 0x0154  [ 5C3DF25926729EBEEF5CC7FF1933B360, 605EA357EC4F350116F438746CD6E7D06A956D7047D80E95166BEB43A08A4517 ] C:\WINDOWS\system32\authz.dll
03:43:25.0718 0x0154  C:\WINDOWS\system32\authz.dll - ok
03:43:25.0734 0x0154  [ B0FEFA816D61EC66AA765DDF534EAB5E, 283BDB2D940BACAC7DEB4E50E7E6C48AE17B2E2746E8AA07679466050F8FFB8B ] C:\WINDOWS\system32\msvcrt.dll
03:43:25.0734 0x0154  C:\WINDOWS\system32\msvcrt.dll - ok
03:43:25.0750 0x0154  [ EFC958396A7A7EF7E6D4A52B97512E18, BAB36BEA10FC505EF750B3ECA4A728803FCACB8BAE6E2B0BE60B60FE80D31F67 ] C:\WINDOWS\system32\crypt32.dll
03:43:25.0750 0x0154  C:\WINDOWS\system32\crypt32.dll - ok
03:43:25.0765 0x0154  [ DDE959EFC7CD79D1AC4BDA320A959DC0, 84F6C1432C546E921F389E5D359CAD25F8B7AC906E1C0DEA86618C205CEDC01E ] C:\WINDOWS\system32\msasn1.dll
03:43:25.0765 0x0154  C:\WINDOWS\system32\msasn1.dll - ok
03:43:25.0781 0x0154  [ 458AB591E8CF240CC105A23671F2C3D6, C123D2FF42B826A5BD745FCA2BF06C7EE0D8FFCCEB985CC2441C07EA659D9E44 ] C:\WINDOWS\system32\nddeapi.dll
03:43:25.0781 0x0154  C:\WINDOWS\system32\nddeapi.dll - ok
03:43:25.0796 0x0154  [ 0A457307006530FD03A797F572A067FA, E08E1611EF8707B14291BEFE3DB3D87D6595EF11D0352500A19C5A386A1888A1 ] C:\WINDOWS\system32\netapi32.dll
03:43:25.0796 0x0154  C:\WINDOWS\system32\netapi32.dll - ok
03:43:25.0812 0x0154  [ FE4F71711CF5C17ADE5E506348132D24, D57F6531021E639C5D57912F2A3F186F8E6E1D9E766E35D510592C94E372D749 ] C:\WINDOWS\system32\profmap.dll
03:43:25.0812 0x0154  C:\WINDOWS\system32\profmap.dll - ok
03:43:25.0828 0x0154  [ 2B9B56A89A8A42E917511972A6DB36E3, BE7012675F9B19DE8F7870F46695720F7EDC54120BE285339E0E7D84229CE9CE ] C:\WINDOWS\system32\userenv.dll
03:43:25.0828 0x0154  C:\WINDOWS\system32\userenv.dll - ok
03:43:25.0828 0x0154  [ 96E48C7EB9089D1DBF6F85CA11B264DF, 54A043B40A54C6E44081CB8A7EA13D61FE72A8E57CD417DBD312DD3868A8846E ] C:\WINDOWS\system32\psapi.dll
03:43:25.0828 0x0154  C:\WINDOWS\system32\psapi.dll - ok
03:43:25.0843 0x0154  [ 899ED710FDC37EB7D0115C2932C2B1EB, FCB6437E4A153108AD0FBE273F2DBBED9D3DD344291A5042215B0C23D819335F ] C:\WINDOWS\system32\regapi.dll
03:43:25.0843 0x0154  C:\WINDOWS\system32\regapi.dll - ok
03:43:25.0859 0x0154  [ 7808313CBC634EE08346D5DDFEF1CC5F, 0B158CF48C865AB1E2BF2032D87EC4C624B1BCD58698CF120439245E931B2778 ] C:\WINDOWS\system32\setupapi.dll
03:43:25.0859 0x0154  C:\WINDOWS\system32\setupapi.dll - ok
03:43:25.0875 0x0154  [ D38408967BE738D0C1B47005BCE8CEEB, 0C3A7B0A29EE90425CD220705E43301ABC7C8725FAF954000747D161A676F72C ] C:\WINDOWS\system32\version.dll
03:43:25.0875 0x0154  C:\WINDOWS\system32\version.dll - ok
03:43:25.0890 0x0154  [ 7BC4BA4C33ADF3EF5CD370D99BC60B04, E835E855CD425FD9CBF4592CB376CFC606101DA55F158019C37FF39E1A67661E ] C:\WINDOWS\system32\winsta.dll
03:43:25.0890 0x0154  C:\WINDOWS\system32\winsta.dll - ok
03:43:25.0906 0x0154  [ 1955BD9737BE6F4B72AD7A4859B4E300, C6332C1A8478896F17464829E5C783196FD39216288126AEA0F1EFEA5415D7B9 ] C:\WINDOWS\system32\wintrust.dll
03:43:25.0906 0x0154  C:\WINDOWS\system32\wintrust.dll - ok
03:43:25.0906 0x0154  [ 5AFCE94E8286B2F57A04DA37F01BF21A, 581A0CDBDF7BCC05B6E08B8651EEB3B03D494C2188C9B6AABE90A683048B0755 ] C:\WINDOWS\system32\imagehlp.dll
03:43:25.0906 0x0154  C:\WINDOWS\system32\imagehlp.dll - ok
03:43:25.0921 0x0154  [ 87CA7CE6469577F059297B9D6556D66D, 99E42E6B481AA50FDD6330A103F04F3CA23FAB86852BF434F2251FFBF32817D0 ] C:\WINDOWS\system32\imm32.dll
03:43:25.0921 0x0154  C:\WINDOWS\system32\imm32.dll - ok
03:43:25.0937 0x0154  [ 9BEACB911CA61E5881102188AB7FB431, D6AABA2097FF6E1589B096B8F677EDD79AE151E16EA50DF466ACA7D824264217 ] C:\WINDOWS\system32\ws2help.dll
03:43:25.0937 0x0154  C:\WINDOWS\system32\ws2help.dll - ok
03:43:25.0953 0x0154  [ 2ED0B7F12A60F90092081C50FA0EC2B2, D29F59DA8565B3C05B69E413CAFA4BAD1FF7D41739EF1519874E02CB088B5DE9 ] C:\WINDOWS\system32\ws2_32.dll
03:43:25.0953 0x0154  C:\WINDOWS\system32\ws2_32.dll - ok
03:43:25.0968 0x0154  [ 56C5B179FE3308B655EB6208C3256FEC, C70BCE54E5DF47D37C835804EAAEC7C06C1A226EFA2003226BE290D1D552126F ] C:\WINDOWS\system32\kbdus.dll
03:43:25.0968 0x0154  C:\WINDOWS\system32\kbdus.dll - ok
03:43:25.0984 0x0154  [ A29AF639AA180CC68C59242A10E1D3B1, FE291A3599558A5A981A9414386F18D19C28FBF0A0C03500630C0DD7B922FCA6 ] C:\WINDOWS\system32\msgina.dll
03:43:25.0984 0x0154  C:\WINDOWS\system32\msgina.dll - ok
03:43:26.0000 0x0154  [ 06DA8C5383AAF17127FC4B1658BA3F4F, 2AA57BC20F83C5AFE1C41634CCCD82F2DC36F234C7132DFF281C92AA55D21ECF ] C:\WINDOWS\system32\shell32.dll
03:43:26.0000 0x0154  C:\WINDOWS\system32\shell32.dll - ok
03:43:26.0015 0x0154  [ 7C972C7F0E3CE48503E1E9FBE9890009, AFC7D7A823D53C3477DB94E1195E9EBEB81A84E28DA5495CBFB98FF99E3E6D81 ] C:\WINDOWS\system32\shlwapi.dll
03:43:26.0015 0x0154  C:\WINDOWS\system32\shlwapi.dll - ok
03:43:26.0031 0x0154  [ B0124CB21D28B1C9F678B566B6B57D92, 00E3FF6D22D989264FBFCD7132BFEFE7FB79E80ABB6A52AFD9A6B50685A0FA58 ] C:\WINDOWS\system32\comctl32.dll
03:43:26.0031 0x0154  C:\WINDOWS\system32\comctl32.dll - ok
03:43:26.0046 0x0154  [ F79D7D98CD764499ECCBAAF3F800D349, F5E04560A5DE4F6742D4B041977211A2C1E89C4948AECFE05D3F27B8D15D3827 ] C:\WINDOWS\system32\odbc32.dll
03:43:26.0046 0x0154  C:\WINDOWS\system32\odbc32.dll - ok
03:43:26.0062 0x0154  [ 1EDB1BB89D021955E6F7265911175B8D, 7774B8FF88A00C41E9CB565D41D56BF9E176D5129A95DF98D314772D62C71C0F ] C:\WINDOWS\system32\comdlg32.dll
03:43:26.0062 0x0154  C:\WINDOWS\system32\comdlg32.dll - ok
03:43:26.0078 0x0154  [ 0FF9FA27706FBE9048990C108C0D62F0, B1C28A3280E38BB508620DB665C359F16D8EDE6F8092B071BB80767BD6714B0A ] C:\WINDOWS\system32\sxs.dll
03:43:26.0078 0x0154  C:\WINDOWS\system32\sxs.dll - ok
03:43:26.0078 0x0154  [ C4E80875C1CF1222FC5EFD0314AE5C01, 9AE5F140514E33C664FDCAC5DACDF504F2D770296A195799B79DA097CFFC00E0 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll
03:43:26.0078 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll - ok
03:43:26.0093 0x0154  [ C237FB08F52F27823C4E4E6705ECD196, 79CBDE1744E03F042A0AF6B86CA7EAE91062A92745D78B125B8BEE34CA9C4903 ] C:\WINDOWS\system32\odbcint.dll
03:43:26.0093 0x0154  C:\WINDOWS\system32\odbcint.dll - ok
03:43:26.0109 0x0154  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] C:\WINDOWS\system32\shsvcs.dll
03:43:26.0109 0x0154  C:\WINDOWS\system32\shsvcs.dll - ok
03:43:26.0125 0x0154  [ E8A12A12EA9088B4327D49EDCA3ADD3E, 46AEF2767C3AA4F3D5A264FDD0090691CD4CC613D2E97339314300C3C47437E3 ] C:\WINDOWS\system32\sfc.dll
03:43:26.0125 0x0154  C:\WINDOWS\system32\sfc.dll - ok
03:43:26.0140 0x0154  [ 9858CC4D73A4CCF2F852FAE07C11A0B5, B9DD1BCBB4322373EF2C20FDA07A4D688E41CC3AC547B44C6B92D363E9061851 ] C:\WINDOWS\system32\sfc_os.dll
03:43:26.0140 0x0154  C:\WINDOWS\system32\sfc_os.dll - ok
03:43:26.0156 0x0154  [ AB8231D13692AC5088EB9C226B0C0576, 031510317C9C056763F0C7DD361925DFCCE57EFFB8140903CAC1B19D8041AEB0 ] C:\WINDOWS\system32\ole32.dll
03:43:26.0156 0x0154  C:\WINDOWS\system32\ole32.dll - ok
03:43:26.0171 0x0154  [ ECA24AB73FCFFA754D4070CDB03529E3, 65E0B35262EE818919DB5A33E13ED91C20C990895EEB728DE0DDE41FFC18101E ] C:\WINDOWS\system32\apphelp.dll
03:43:26.0171 0x0154  C:\WINDOWS\system32\apphelp.dll - ok
03:43:26.0187 0x0154  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] C:\WINDOWS\system32\services.exe
03:43:26.0187 0x0154  C:\WINDOWS\system32\services.exe - ok
03:43:26.0203 0x0154  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] C:\WINDOWS\system32\lsass.exe
03:43:26.0203 0x0154  C:\WINDOWS\system32\lsass.exe - ok
03:43:26.0218 0x0154  [ 39F3B6CC2932E103D72C4564F8A680AC, CFB3BF51ADC6B84B66E79A4C30171D92FE4D412240DF33A46F991D6EFBC36DF8 ] C:\WINDOWS\system32\lsasrv.dll
03:43:26.0218 0x0154  C:\WINDOWS\system32\lsasrv.dll - ok
03:43:26.0218 0x0154  [ 1F57EB5B92B2AC7F9D71A77D184D8C13, BF645EEBEA6F0591DCC5AB1AFC17B62CD476D83E4B2FBA44C060A9E3604E40AC ] C:\WINDOWS\system32\msvcp60.dll
03:43:26.0218 0x0154  C:\WINDOWS\system32\msvcp60.dll - ok
03:43:26.0234 0x0154  [ DA201A0A309B96381FD674D0FAB5DA86, 8313520DD4C1A098F7266FAEDDD9B3970A7021BB7A9ECCC20B60D817E7BF5DC1 ] C:\WINDOWS\system32\ncobjapi.dll
03:43:26.0234 0x0154  C:\WINDOWS\system32\ncobjapi.dll - ok
03:43:26.0250 0x0154  [ 2CFE80AA3428C09E6DE67FAC50DA65CF, E9205E45CBCBE9E355D497A16A1769CF651CB8CB96A7E4DDB5D0AC0A9BEE4689 ] C:\WINDOWS\system32\mpr.dll
03:43:26.0250 0x0154  C:\WINDOWS\system32\mpr.dll - ok
03:43:26.0265 0x0154  [ 9A42C1F3154545A4D32E5043038B01FA, F160555DF74C31E3CFDE0B83AB3808907A7382D8CE56846DE320EFA59E73410F ] C:\WINDOWS\system32\scesrv.dll
03:43:26.0265 0x0154  C:\WINDOWS\system32\scesrv.dll - ok
03:43:26.0281 0x0154  [ 176497D0E7AE618860552A4B5635B206, 468C0721F05E842F034E0B5AFF37DE5413E8D6026A20430C4AC1E733837DD491 ] C:\WINDOWS\system32\dnsapi.dll
03:43:26.0281 0x0154  C:\WINDOWS\system32\dnsapi.dll - ok
03:43:26.0296 0x0154  [ 6201BACF384292A5FE94CE73364AE53A, 0514CECC82712ACC1E40D029A77ED7427F19783B063A408DE7FD008066E6DA8F ] C:\WINDOWS\system32\ntdsapi.dll
03:43:26.0296 0x0154  C:\WINDOWS\system32\ntdsapi.dll - ok
03:43:26.0312 0x0154  [ 586211F4FF4BC49CC215C956919CD33B, DD51BD79A959B24DC904EDB25563FB9126A3C7AC1A1FEEB2FDB226FEBBB1ABCA ] C:\WINDOWS\system32\umpnpmgr.dll
03:43:26.0312 0x0154  C:\WINDOWS\system32\umpnpmgr.dll - ok
03:43:26.0328 0x0154  [ 43DA983415EA533F9E667FDB415F4655, C0DB88625557213443601201C0B9EDC76D98CBA010DA05C3012A5DBA1BE3833D ] C:\WINDOWS\system32\shimeng.dll
03:43:26.0328 0x0154  C:\WINDOWS\system32\shimeng.dll - ok
03:43:26.0328 0x0154  [ 10F36FA092D7A309A0647FCDC764AE6C, C82EA38E971DD8DF6ED52B937D236E21B70BD472D0FD0C9269C76AA9EAA491E0 ] C:\WINDOWS\system32\wldap32.dll
03:43:26.0328 0x0154  C:\WINDOWS\system32\wldap32.dll - ok
03:43:26.0343 0x0154  [ EBE12F403FDE45E7312E7BF764BFB6C6, EE5E1500DD29349478B07661543D2723AC5A392119218A057AB8261E6895E2DD ] C:\WINDOWS\system32\samlib.dll
03:43:26.0343 0x0154  C:\WINDOWS\system32\samlib.dll - ok
03:43:26.0359 0x0154  [ E15154E7FDA8A580A8F74C7CC16B1FFE, B0821223EE6347206EA599F3553646ACF1E64D030F2AA507CD50F605120CE53E ] C:\WINDOWS\system32\samsrv.dll
03:43:26.0359 0x0154  C:\WINDOWS\system32\samsrv.dll - ok
03:43:26.0375 0x0154  [ EF5B64A9CD71ED27E837165C08DA4CC1, 663C53C655B91088DF7AC90B1EFB1AEAD7D83063E5799D37707A73F2C307BCE4 ] C:\WINDOWS\system32\cryptdll.dll
03:43:26.0375 0x0154  C:\WINDOWS\system32\cryptdll.dll - ok
03:43:26.0390 0x0154  [ FB537F29A827D78F756154CF397A113F, 54AB904CB1D7B89DDF1D8F671147DCF8B071DA783832D2192294F2F597EF8115 ] C:\WINDOWS\AppPatch\AcGenral.dll
03:43:26.0390 0x0154  C:\WINDOWS\AppPatch\AcGenral.dll - ok
03:43:26.0406 0x0154  [ 0144ABC4C4A624B583D432EE478A711C, 69C002261D8601A646C4B08B62C57A13B178BF5F0914B9785305B0F21B2919F4 ] C:\WINDOWS\system32\oleaut32.dll
03:43:26.0406 0x0154  C:\WINDOWS\system32\oleaut32.dll - ok
03:43:26.0406 0x0154  [ 90FDAA22F38D9E911F91FA3B8A1F7E5D, 2A51A944DB1BB0104FDC6F260128E8553941616FACC5376129C137C063F2AA39 ] C:\WINDOWS\system32\winmm.dll
03:43:26.0406 0x0154  C:\WINDOWS\system32\winmm.dll - ok
03:43:26.0421 0x0154  [ 975D12353B1D525C0F3444C447FB3B9A, FC0CC5FC4FF97D7C27B59B64FD6355048B5F546AE2B06CEA2706C147FE33C45C ] C:\WINDOWS\system32\msacm32.dll
03:43:26.0421 0x0154  C:\WINDOWS\system32\msacm32.dll - ok
03:43:26.0437 0x0154  [ 2CDE496666A975A2CE8F969F3042C8DB, 1F93CC5E812F024CDB9F512AE75BEDAE7E67FE991E064721F1BF1E1D1EA99E13 ] C:\WINDOWS\system32\uxtheme.dll
03:43:26.0437 0x0154  C:\WINDOWS\system32\uxtheme.dll - ok
03:43:26.0453 0x0154  [ E484F006380A89A52CCC7828ECE5DCA0, 58EC7D87AB39883864116BDA0B13E3DAD775E2CE867360446BBF34AE3FE05764 ] C:\WINDOWS\system32\msapsspc.dll
03:43:26.0453 0x0154  C:\WINDOWS\system32\msapsspc.dll - ok
03:43:26.0468 0x0154  [ 146D198E3AD9D4B69C9EB0AEA6EF333B, 26A013A8C2AACA9D9DDCC286047A682E6A272A99B06DD4195FF95852DF86B528 ] C:\WINDOWS\system32\msvcrt40.dll
03:43:26.0468 0x0154  C:\WINDOWS\system32\msvcrt40.dll - ok
03:43:26.0484 0x0154  [ 7B47C36B4F0170B8EF4F3B4EFD371F67, 28C0E7D3570880C3FCA7FCD8FFBCE789CBB76EA87C3E50D4F6BC5092AF70B5AD ] C:\WINDOWS\system32\schannel.dll
03:43:26.0484 0x0154  C:\WINDOWS\system32\schannel.dll - ok
03:43:26.0500 0x0154  [ 7F2310210256C0AC04A82285DEBC0F51, 47A3F287D943F27ED12455684D391BC5D68105DAD223BB88B7BF0F04332F934A ] C:\WINDOWS\system32\digest.dll
03:43:26.0500 0x0154  C:\WINDOWS\system32\digest.dll - ok
03:43:26.0500 0x0154  [ BB1367FECA810F06B1AEA06D610B1E4F, 9215F7EBF9BEF1C48D6DE59D3F93E80DD9F77638BF6EF51DA44923D9E650D991 ] C:\WINDOWS\system32\msnsspc.dll
03:43:26.0500 0x0154  C:\WINDOWS\system32\msnsspc.dll - ok
03:43:26.0515 0x0154  [ 6BEC17053284E847CF1FBB8C9A181E1E, 3CB78D3D25C416AC879222A4F4C1495A7C0A75411C9E91F33862418D052C26FB ] C:\WINDOWS\system32\msprivs.dll
03:43:26.0515 0x0154  C:\WINDOWS\system32\msprivs.dll - ok
03:43:26.0531 0x0154  [ D87041EAA67ECA4394F6D5D09C0C2885, B670E9D8786B2BD6717F6190F5A8B974158FDFC7E6A3D2C866226DA042D4E9C0 ] C:\WINDOWS\system32\MSCTFIME.IME
03:43:26.0531 0x0154  C:\WINDOWS\system32\MSCTFIME.IME - ok
03:43:26.0546 0x0154  [ FE1F6432B5B64500FB2927098219EA8D, A0E4E2478BEFC5DE6544EC7DE4FB9996232F259193D2917990A91C7CC77F56E1 ] C:\WINDOWS\system32\atmfd.dll
03:43:26.0546 0x0154  C:\WINDOWS\system32\atmfd.dll - ok
03:43:26.0562 0x0154  [ C0FE34F85B6D29368133587B1D6FA039, 70513A1F5FEBCA3AA7482C196C7D339E6336F4EC7985E8FA56D05E6C016B0C39 ] C:\WINDOWS\system32\kerberos.dll
03:43:26.0562 0x0154  C:\WINDOWS\system32\kerberos.dll - ok
03:43:26.0578 0x0154  [ 4E49D244C178505FEB090E37989D4045, E987689F633825E809036F4A97ED83A79FE80A5F1100DEFFAFE60D25D6783590 ] C:\WINDOWS\system32\msv1_0.dll
03:43:26.0578 0x0154  C:\WINDOWS\system32\msv1_0.dll - ok
03:43:26.0593 0x0154  [ 011EACF9153EF90E6CBCE2987ACAE411, A15E8A31152FFA5F76EF2902360FBE85E21E03B2111212FAA926B1E3DD323620 ] C:\WINDOWS\system32\iphlpapi.dll
03:43:26.0593 0x0154  C:\WINDOWS\system32\iphlpapi.dll - ok
03:43:26.0609 0x0154  [ 96353FCECBA774BB8DA74A1C6507015A, 2C777E36EC5ABBAB4352B58B5DDFCD22967A921C86F5BC810404C3FA0388F27A ] C:\WINDOWS\system32\netlogon.dll
03:43:26.0609 0x0154  C:\WINDOWS\system32\netlogon.dll - ok
03:43:26.0625 0x0154  [ 2B281958F5D0CF99ED626E3EF39D5C8D, FB46398AE01CDD9CB6E1E647E4DDA86B670F93F787D69B885C7E930D4FF8F3FC ] C:\WINDOWS\system32\w32time.dll
03:43:26.0625 0x0154  C:\WINDOWS\system32\w32time.dll - ok
03:43:26.0640 0x0154  [ 26ACBD865F8CFF730F1791C4D0854352, 66FA5845ED397538F92B30CB06202470071B6F45698647E1F86E784942F6C4C4 ] C:\WINDOWS\system32\rsaenh.dll
03:43:26.0640 0x0154  C:\WINDOWS\system32\rsaenh.dll - ok
03:43:26.0640 0x0154  [ DBB2E47723A164B178836668A6CA4C1B, B7A3A3B8664C6325035A21FBBF5A7888E3D3C386824142AD89AFF666B97B0733 ] C:\WINDOWS\system32\wdigest.dll
03:43:26.0640 0x0154  C:\WINDOWS\system32\wdigest.dll - ok
03:43:26.0656 0x0154  [ 7BCB23FA39CE266AF4347A6BEAB60F8C, 7778ED0F7C51E70B5CB0485F1F80D0BA5445646DED040EC59EB8060DE81EABBA ] C:\WINDOWS\system32\winscard.dll
03:43:26.0656 0x0154  C:\WINDOWS\system32\winscard.dll - ok
03:43:26.0671 0x0154  [ 67F2D109AB373FECEB819F420DB11F03, 7788B54555D5C294CA47A1046D8CD3A13380E5090FAFCFEBC9388D369DB075DE ] C:\WINDOWS\system32\wtsapi32.dll
03:43:26.0671 0x0154  C:\WINDOWS\system32\wtsapi32.dll - ok
03:43:26.0687 0x0154  [ 0F78E27F563F2AAF74B91A49E2ABF19A, 5D02A72DC6F292FE2BD5A46687DB147A895F784D7AE59E4C08F28BDC6C18282A ] C:\WINDOWS\system32\scecli.dll
03:43:26.0687 0x0154  C:\WINDOWS\system32\scecli.dll - ok
03:43:26.0703 0x0154  [ 8A60EDD72B4EA5AEA8202DAF0E427925, ED0624B285E4F64E07E30C12490873A2090F9DFD6A91A2EDA7A1082B88A8199E ] C:\WINDOWS\system32\drivers\vga.sys
03:43:26.0703 0x0154  C:\WINDOWS\system32\drivers\vga.sys - ok
03:43:26.0703 0x0154  [ 8F078AE4ED187AAABC0A305146DE6716, 16593943861D03D508F37F60E41240DEE14221E76F625835487F73D5010AC18A ] C:\WINDOWS\system32\svchost.exe
03:43:26.0703 0x0154  C:\WINDOWS\system32\svchost.exe - ok
03:43:26.0718 0x0154  [ DAA91B358E685FC6CCA9ACA72BE6FE85, D2DA716A4BE1FE29C9850220C404D5C90CF8C812850F3162A9DE1BD877ED5531 ] C:\WINDOWS\system32\ntmarta.dll
03:43:26.0718 0x0154  C:\WINDOWS\system32\ntmarta.dll - ok
03:43:26.0734 0x0154  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] C:\WINDOWS\system32\rpcss.dll
03:43:26.0734 0x0154  C:\WINDOWS\system32\rpcss.dll - ok
03:43:26.0750 0x0154  [ 1320AEA7057A26A671D9548CC7BEBDA5, 19DEC58B1A4CA15C066F35A84A9D5531EF34AB076B9924D3F24C7FA15ABBAE6F ] C:\WINDOWS\system32\xpsp2res.dll
03:43:26.0750 0x0154  C:\WINDOWS\system32\xpsp2res.dll - ok
03:43:26.0765 0x0154  [ 82B24CB70E5944E6E34662205A2A5B78, 05C184294AB0DD9E2FEB87E03509838907B77B04892B488A188F678E068A60B6 ] C:\WINDOWS\system32\eventlog.dll
03:43:26.0765 0x0154  C:\WINDOWS\system32\eventlog.dll - ok
03:43:26.0781 0x0154  [ 097722F235A1FB698BF9234E01B52637, 994F81F506B081FFB760BA7B95469DE9311DDB00D14F77DA9752C19A9B932289 ] C:\WINDOWS\system32\mswsock.dll
03:43:26.0781 0x0154  C:\WINDOWS\system32\mswsock.dll - ok
03:43:26.0796 0x0154  [ 765B30C776A1780B46B479FE614F707C, 83BFED5FD603288EED344F7B5178522242D5A5B62FC648570FCC5C9F31FAA160 ] C:\WINDOWS\system32\hnetcfg.dll
03:43:26.0796 0x0154  C:\WINDOWS\system32\hnetcfg.dll - ok
03:43:26.0796 0x0154  [ A7F95A53EE055115DF03588997A47D4D, ADB69154056C32118112E2BE4AF4C8672EA477B88794C9E561E2189C9FB15020 ] C:\WINDOWS\system32\wshtcpip.dll
03:43:26.0796 0x0154  C:\WINDOWS\system32\wshtcpip.dll - ok
03:43:26.0812 0x0154  [ 5F098BD2AE6B03044B085DECFFDF91EC, 363062FEFA99D39936853034B56CF665F6FBDE3F4C48EF8A5AB74A5957DACFF7 ] C:\WINDOWS\system32\rasadhlp.dll
03:43:26.0812 0x0154  C:\WINDOWS\system32\rasadhlp.dll - ok
03:43:26.0828 0x0154  [ 2C8FDB176F22629EA5342DB474FAC391, 35DCFDE2CB7423A88FFFAE4CC2CE7BF9F19B882AF9468D5A7AF7ED85A02F10A5 ] C:\WINDOWS\system32\winrnr.dll
03:43:26.0828 0x0154  C:\WINDOWS\system32\winrnr.dll - ok
03:43:26.0843 0x0154  [ 34D6CD56409DA9A7ED573E1C90A308BF, DE2060F57C913272524AFB0D472714ABF6F7E49A01534F23D95EE67F207CC6CF ] C:\WINDOWS\system32\drivers\ndisuio.sys
03:43:26.0843 0x0154  C:\WINDOWS\system32\drivers\ndisuio.sys - ok
03:43:26.0859 0x0154  [ EF545E1A4B043DA4C84E230DD471C55F, AD96922E58E8146F03E719D3A5CAAD677CAF3B7B525599F1B32F01BF72CCAFA4 ] C:\WINDOWS\system32\dhcpcsvc.dll
03:43:26.0859 0x0154  C:\WINDOWS\system32\dhcpcsvc.dll - ok
03:43:26.0875 0x0154  [ 7DB59FFF2AF32C27EB2276424FA5EDDB, 5A5DAFB79E84C98F81D5DD99A7B780FB09E7E49E5358F3BC429A0A78AD686BB8 ] C:\WINDOWS\system32\logonui.exe
03:43:26.0875 0x0154  C:\WINDOWS\system32\logonui.exe - ok
03:43:26.0890 0x0154  [ 587729679B4FE04CE06A5C61D6C56DCD, BE436136D681D20EB3D046FBB22207A234AC2245255D23BBC5D48C969999BE27 ] C:\WINDOWS\system32\cscdll.dll
03:43:26.0890 0x0154  C:\WINDOWS\system32\cscdll.dll - ok
03:43:26.0906 0x0154  [ 777EB29D0135D81AD9828A2B05443496, 952F211CA3B590BB8436781DF72CB5391B73A8E319484720B13F80A8F111F227 ] C:\WINDOWS\system32\winspool.drv
03:43:26.0906 0x0154  C:\WINDOWS\system32\winspool.drv - ok
03:43:26.0906 0x0154  [ A599E5E366C1408E48AA5D37882D4E3E, 2898445CC1E75F69892C3BB155A347E8C065C9A644302D68D94F8493008D26FE ] C:\WINDOWS\system32\wlnotify.dll
03:43:26.0906 0x0154  C:\WINDOWS\system32\wlnotify.dll - ok
03:43:26.0921 0x0154  [ ED7E847905DD2797565B4B695E92F42B, 25AD78AFA86F71288073915BE882C3923C2A50AA7809A9787D621F7A9D76AD51 ] C:\WINDOWS\system32\duser.dll
03:43:26.0921 0x0154  C:\WINDOWS\system32\duser.dll - ok
03:43:26.0937 0x0154  [ B5331F2B6F37C66C29C847F3B94FF900, 3AE195AEEEFC737D27E82EE13B66254C8F5B819CCE8C75BDF5BD392FF6ACE12E ] C:\WINDOWS\system32\msimg32.dll
03:43:26.0937 0x0154  C:\WINDOWS\system32\msimg32.dll - ok
03:43:26.0953 0x0154  [ 5F2DBE3CB563741C8084657BF956CE64, 53BBC2375CCBCF918EF8552FDF56F5572F0DF7DC0D72FF90E090F04314C3A6D4 ] C:\WINDOWS\system32\oleacc.dll
03:43:26.0953 0x0154  C:\WINDOWS\system32\oleacc.dll - ok
03:43:26.0968 0x0154  [ AAC8FFBFD61E784FA3BAC851D4A0BD5F, F811288AC18DB28D9577EA9B40810DE000FC28EF234D1A790DD0578E0D565EBC ] C:\WINDOWS\system32\dnsrslvr.dll
03:43:26.0968 0x0154  C:\WINDOWS\system32\dnsrslvr.dll - ok
03:43:26.0968 0x0154  [ EC8A848FC4F17F3B3D9DA4A0C43FB930, 788386F92198C54923DC2B9B897A83B834E10B31929FF4CC814A2FA83EE346D3 ] C:\WINDOWS\system32\clbcatq.dll
03:43:26.0968 0x0154  C:\WINDOWS\system32\clbcatq.dll - ok
03:43:26.0984 0x0154  [ 6728270CB7DBB776ED086F5AC4C82310, 84DC201D861AC9C550F9FE2C2D75E6465F254851BA5B43120130C3235BD2E717 ] C:\WINDOWS\system32\comres.dll
03:43:26.0984 0x0154  C:\WINDOWS\system32\comres.dll - ok
03:43:27.0000 0x0154  [ 1D3A8A40F8045100A3E35C5F9BC6C5DE, CF68BE29DAFC0CC5392B2E54100EC12C1D181A1505220BC1FDD454AB61EA0E66 ] C:\WINDOWS\system32\shgina.dll
03:43:27.0000 0x0154  C:\WINDOWS\system32\shgina.dll - ok
03:43:27.0015 0x0154  [ B3EFF6D938C572E90A07B3D87A3C7657, 8C02DEFD2F1A15740CD5421D20B3808BD27583019AF1B79D087880A71807EEE1 ] C:\WINDOWS\system32\lmhsvc.dll
03:43:27.0015 0x0154  C:\WINDOWS\system32\lmhsvc.dll - ok
03:43:27.0031 0x0154  [ 5A91E6FEAB9F901302FA7FF768C0120F, 83A1A719508CB4E504D9A75BBB6FCEA1E15C1EC574B8BD18BA40B2A18EF9918E ] C:\WINDOWS\system32\wzcsvc.dll
03:43:27.0031 0x0154  C:\WINDOWS\system32\wzcsvc.dll - ok
03:43:27.0046 0x0154  [ 2030FA027E7C3E0A145649C03171457B, 7AA6A3F2927F481A165EEAB29157D611215DD29EA07A289091DBF8E01ED96A5B ] C:\WINDOWS\system32\rtutils.dll
03:43:27.0046 0x0154  C:\WINDOWS\system32\rtutils.dll - ok
03:43:27.0062 0x0154  [ E682696D7F982494A8CFC80C5B59D422, 75DE5D2749C9972448FA16193CE31016A432BF28367A1E2B60F5B475BCBC1741 ] C:\WINDOWS\system32\wmi.dll
03:43:27.0062 0x0154  C:\WINDOWS\system32\wmi.dll - ok
03:43:27.0078 0x0154  [ 50DE118DA580208B914B40DD47C90D52, 075018DE35341F805A2ED6A0E73FDCD6311ECEFBEA51E5337D133847969F5FAC ] C:\WINDOWS\system32\esent.dll
03:43:27.0078 0x0154  C:\WINDOWS\system32\esent.dll - ok
03:43:27.0078 0x0154  [ 72F2CFC7653FB5ABB85789D28E26A643, 4B6937DD76956CD449AA9E777080F18BF539EF499DD52433D31828039ADBAEB8 ] C:\WINDOWS\system32\atl.dll
03:43:27.0078 0x0154  C:\WINDOWS\system32\atl.dll - ok
03:43:27.0093 0x0154  [ 5414CCF382E4FCC6819ABA84F5BFEFD4, 17DF89BB018109F8D1397136FA39C0A9FCD683ED8FEF3C42B5442EEA3005C6C3 ] C:\WINDOWS\system32\rastls.dll
03:43:27.0093 0x0154  C:\WINDOWS\system32\rastls.dll - ok
03:43:27.0109 0x0154  [ 4AC302BF714DC163E685D0A187A36D0F, 0F3755AE617A6436ACDECB7962579AD951769853FFA6E958266D1D55CC021C9D ] C:\WINDOWS\system32\cryptui.dll
03:43:27.0109 0x0154  C:\WINDOWS\system32\cryptui.dll - ok
03:43:27.0125 0x0154  [ 83306356DE710DA87ED91A6AF6233214, C3D98836258561891B2A7268D4C62CA35E8F07338DC1800F217A2821C46F0A97 ] C:\WINDOWS\system32\wininet.dll
03:43:27.0125 0x0154  C:\WINDOWS\system32\wininet.dll - ok
03:43:27.0140 0x0154  [ 10753A3ADC3E39A3B10CC3F08E98E6B4, 99C7B1B04CD593139917ED3D68BEC36C63BCE76663505CB5D026B62AF39BB383 ] C:\WINDOWS\system32\normaliz.dll
03:43:27.0140 0x0154  C:\WINDOWS\system32\normaliz.dll - ok
03:43:27.0156 0x0154  [ 28D1D65D22D76A07D4E168F64CE6A15A, 21DB5F03BDD96B6A58D470FB8A09D09A144280BB7EECBB376863781A1E139534 ] C:\WINDOWS\system32\iertutil.dll
03:43:27.0156 0x0154  C:\WINDOWS\system32\iertutil.dll - ok
03:43:27.0156 0x0154  [ 875D770F477E0AE0088BE1810D537B23, 42AC832A8C5CE3BC02DCC13C34B0B46D79085E587C84A60AEC76FF380237DE55 ] C:\WINDOWS\system32\activeds.dll
03:43:27.0156 0x0154  C:\WINDOWS\system32\activeds.dll - ok
03:43:27.0171 0x0154  [ 9F78F329B1858E845087B923B4DBA0F3, 0BBFE7A8441AD4F97DE283772277A9F5564603BC5248875FC458660B16CAC375 ] C:\WINDOWS\system32\mprapi.dll
03:43:27.0171 0x0154  C:\WINDOWS\system32\mprapi.dll - ok
03:43:27.0187 0x0154  [ 12A581CA44E53B09D24C5B94F252C78D, ED933CCC73DE5AC6733CECAAADB2DF1B714B6365A15C492D4EF427613B1BB47F ] C:\WINDOWS\system32\adsldpc.dll
03:43:27.0187 0x0154  C:\WINDOWS\system32\adsldpc.dll - ok
03:43:27.0203 0x0154  [ CD1F7ED9842138BEADF9ECBF37818BEF, 1B918D5334F6E22ABBCDAB39B077BC44BB8BA077D65488D07931F2614DDD284D ] C:\WINDOWS\system32\rasapi32.dll
03:43:27.0203 0x0154  C:\WINDOWS\system32\rasapi32.dll - ok
03:43:27.0218 0x0154  [ 30E244A707E6CE0A4B099CD6384EC6CA, 77D55AC7EFF75FA95AD51344E235A9BDFD3363BECE6594EFAD08EBCDAB990780 ] C:\WINDOWS\system32\rasman.dll
03:43:27.0218 0x0154  C:\WINDOWS\system32\rasman.dll - ok
03:43:27.0234 0x0154  [ 6307A1B82F6CA87D7E0CDF49E6E7BC00, 09355E39BB39959E93E0122FC78CF730F392CE670DE3D7399A1ABFB124B36481 ] C:\WINDOWS\system32\tapi32.dll
03:43:27.0234 0x0154  C:\WINDOWS\system32\tapi32.dll - ok
03:43:27.0250 0x0154  [ B78F5E78D50216A1302F50C12ABEE801, B906634B4F64EBB37B0BA44F3DEEB00B6D60A7970FBA26BF7948F45BA40723B1 ] C:\WINDOWS\system32\riched20.dll
03:43:27.0250 0x0154  C:\WINDOWS\system32\riched20.dll - ok
03:43:27.0265 0x0154  [ 0B8EB60C983666C3F09AB770EDFD2F96, D77BD26059A09B4C8DF74C25E5544F8AE47719E97AD54B8ABBB496A1C8FD25FB ] C:\WINDOWS\system32\raschap.dll
03:43:27.0265 0x0154  C:\WINDOWS\system32\raschap.dll - ok
03:43:27.0281 0x0154  [ 0346DA24DE3C85909717D5997510A31F, E0967CD5A4165182CE8D92CDC24830D0BC5B18BF66320B994E3D3203F90DE750 ] C:\WINDOWS\system32\mlang.dll
03:43:27.0281 0x0154  C:\WINDOWS\system32\mlang.dll - ok
03:43:27.0296 0x0154  [ 59E9857ABC6C62AF55EB29FA68354805, 0255F4E8EFF48F297AFE47CEBC46408A9B8EDA92783CFF9C1C9A9DB79F9C47BF ] C:\WINDOWS\system32\xmlprovi.dll
03:43:27.0296 0x0154  C:\WINDOWS\system32\xmlprovi.dll - ok
03:43:27.0312 0x0154  [ 9A9BBC71D0EBCD400A33ABCD5F0AB39C, E79F105DBB7E28926140228085C62799FD56D01A82BC70207375474D7114E86B ] C:\WINDOWS\system32\wzcsapi.dll
03:43:27.0312 0x0154  C:\WINDOWS\system32\wzcsapi.dll - ok
03:43:27.0328 0x0154  [ 2F237AAB91497AAA03AF48EAE68758FC, 0701229112148F5A902FAFE3282192CAA89F50D7DF2AD9EF2AA5FE63DE9403A5 ] C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE
03:43:27.0328 0x0154  C:\Program Files\Common Files\Symantec Shared\CCSVCHST.EXE - ok
03:43:27.0343 0x0154  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
03:43:27.0343 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
03:43:27.0343 0x0154  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
03:43:27.0343 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
03:43:27.0359 0x0154  [ 13EF0C65FAD380C4113791B947DAA7E4, 755EF31D5056958B977C084BC57BD867E02444212B90796ED0F09284C353A6AC ] C:\Program Files\Common Files\Symantec Shared\CCL70U.DLL
03:43:27.0359 0x0154  C:\Program Files\Common Files\Symantec Shared\CCL70U.DLL - ok
03:43:27.0375 0x0154  [ 6479A184873F7CA797FF0375D711E9A6, 8F20F178991501542D542C8D613B036A15CD55370697AA82C0F7800FF4FBCC4E ] C:\WINDOWS\system32\dbghelp.dll
03:43:27.0375 0x0154  C:\WINDOWS\system32\dbghelp.dll - ok
03:43:27.0390 0x0154  [ 95436A92D4A2EF1D637A7345C1796DBD, 441BE33EC840BC0BF190E68E5B0B202EE0A90826AD183606A28E29A995487055 ] C:\WINDOWS\system32\SymNeti.dll
03:43:27.0390 0x0154  C:\WINDOWS\system32\SymNeti.dll - ok
03:43:27.0406 0x0154  [ 53AF9F2B2CE4B6EFF41C70417359D010, 26CCE1738C4C795F522C2358ECB47E9915798AC4B9FA28A6D6E6CFCEF775E8E4 ] C:\WINDOWS\system32\wsock32.dll
03:43:27.0406 0x0154  C:\WINDOWS\system32\wsock32.dll - ok
03:43:27.0421 0x0154  [ 0AB7B6A0A3A2D4C985C2A3BB363D424E, 45AFAC4688FDD1CE34BAD084172170525FD9E4BA8409ABE25C6DE346EA4E38E7 ] C:\Program Files\Common Files\Symantec Shared\CCVRTRST.DLL
03:43:27.0421 0x0154  C:\Program Files\Common Files\Symantec Shared\CCVRTRST.DLL - ok
03:43:27.0437 0x0154  [ F8F3B92081BDC486C66547B2BA32F037, 0696B33D4CD54457C458D3F7E68FAD553046C8D9704CF17B928B4F651F7FA4E6 ] C:\Program Files\Common Files\Symantec Shared\CCSVC.DLL
03:43:27.0437 0x0154  C:\Program Files\Common Files\Symantec Shared\CCSVC.DLL - ok
03:43:27.0453 0x0154  [ CDB2A791F0404A519BB24EC108667907, 8B2FADE0E02FFD0BCC18FB2E126C0CB1E7BE3AB9CE993AA5A7E7B3F45FEE99CF ] C:\Program Files\Common Files\Symantec Shared\CCIPC.DLL
03:43:27.0453 0x0154  C:\Program Files\Common Files\Symantec Shared\CCIPC.DLL - ok
03:43:27.0453 0x0154  [ 96A61E28B4D53270D21197F86B19427B, DFECAECBFF7A1720F92E4502643CC78DD236623B35101E24AE35392ADD0DF496 ] C:\Program Files\Common Files\Symantec Shared\CCSET.DLL
03:43:27.0453 0x0154  C:\Program Files\Common Files\Symantec Shared\CCSET.DLL - ok
03:43:27.0468 0x0154  [ 55B0C85A0CAA5B573A9F330A88251AF1, BF84B5030B32D616604809F4AA2018701F5A5169CD6B587C5649223C38B38E3D ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETPLG.DLL
03:43:27.0468 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETPLG.DLL - ok
03:43:27.0500 0x0154  [ A75AFCBFDB730EEEE12BFDFA1907EC78, E3FEEDD4F6656E98D706F4770181BD516964D9F872E4D20389F89C0FC51D5BED ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCSUBENG.DLL
03:43:27.0500 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCSUBENG.DLL - ok
03:43:27.0515 0x0154  [ CE0F8C664F2C5900B87DC4FD9B245929, 456D8CCB53E58D5BE646E6AC2AC665E7BE19C6BF65B5A18EB3F6D46295D1CDC0 ] C:\PROGRA~1\COMMON~1\SYMANT~1\HomeNet\hncore.dll
03:43:27.0515 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\HomeNet\hncore.dll - ok
03:43:27.0531 0x0154  [ 673FC8AA28C1049827F5675808FC4F74, 59C5910BF8E8F6EA7E627490DC3111B0CB8DDE3348BAAD643ED12FED11A9F4D7 ] C:\PROGRA~1\COMMON~1\SYMANT~1\SNDSvc.dll
03:43:27.0531 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\SNDSvc.dll - ok
03:43:27.0546 0x0154  [ 374C7BB96E5E05EA771469C5BBD78905, D5A0841E96BE223DCE4AEC151716391B8CEE81BB45B4A2C49A2CAF738851451C ] C:\Program Files\Common Files\Symantec Shared\CCL70.DLL
03:43:27.0546 0x0154  C:\Program Files\Common Files\Symantec Shared\CCL70.DLL - ok
03:43:27.0562 0x0154  [ D90E198602F2FA211474F09E0B919974, DE9CC9D94456440E83C505531261710FD62B90767C692883093A14BD20FF15DC ] C:\PROGRA~1\NORTON~1\tpDataSv.dll
03:43:27.0562 0x0154  C:\PROGRA~1\NORTON~1\tpDataSv.dll - ok
03:43:27.0578 0x0154  [ 98B2647B6BB59914F9AC48678B411615, 7227C20D57F059F4D7C75FCDC5BDCB9C92C51E309F6D8E6F07E3DB96889ACE83 ] C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\TProcPlg.dll
03:43:27.0578 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\TProcPlg.dll - ok
03:43:27.0593 0x0154  [ 892F4BC54D486FEB4DF03E4E2ECB14E0, 612F7B9BCF7AA843D0FFC5F9B9D74E0D5AEB0AA88716E8E039671FA8726E3208 ] C:\WINDOWS\system32\msi.dll
03:43:27.0593 0x0154  C:\WINDOWS\system32\msi.dll - ok
03:43:27.0609 0x0154  [ 9367481F461AAEBD3154A184E5153897, 66A5AC3F1775795C388707325D6AD791E50A3BF865BBF5E7CB215C8E54E29BFA ] C:\Program Files\Common Files\Symantec Shared\DefUtDCD.dll
03:43:27.0609 0x0154  C:\Program Files\Common Files\Symantec Shared\DefUtDCD.dll - ok
03:43:27.0609 0x0154  [ 36739B39267914BA69AD0610A0299732, 04CC0D2F45D4F3A86B2E4F23E1226F182349C98C53508C1F49C8CAC2D223D5A7 ] C:\WINDOWS\system32\netman.dll
03:43:27.0609 0x0154  C:\WINDOWS\system32\netman.dll - ok
03:43:27.0625 0x0154  [ BF52A4D4EB4CFB3109667E429B93E21A, ACD900C6C74439487C00CD63F4A6822D710927874B42054091B4456D7963D949 ] C:\WINDOWS\system32\netshell.dll
03:43:27.0625 0x0154  C:\WINDOWS\system32\netshell.dll - ok
03:43:27.0640 0x0154  [ 1ECB753D7CEEC8F5A94C9781CA64EC44, 8C2446565863FB9200468E698CEE5D7E72F58E7F82E621F58DA7012BD1F250CF ] C:\WINDOWS\system32\credui.dll
03:43:27.0640 0x0154  C:\WINDOWS\system32\credui.dll - ok
03:43:27.0656 0x0154  [ 35F82898D3598A5EBC3F71CEB8E21B0E, D7C9250E6E0BD0D02332B007EA10E751003297A7F8871FA5D9640BD77BDA87E1 ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCEVTPLG.DLL
03:43:27.0656 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCEVTPLG.DLL - ok
03:43:27.0671 0x0154  [ C605C6E9441372DCCF427B852A5EFCF9, 1EFE38C4C8D33181A42F3902379A5564B62111E1B1284E80C2EAE5B3ABDF15F1 ] C:\PROGRA~1\COMMON~1\SYMANT~1\AppCore\AppPlg32.dll
03:43:27.0671 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\AppCore\AppPlg32.dll - ok
03:43:27.0671 0x0154  [ 29F40BE4D762D12B67EB9407C2537110, B079E73A2D683EE16AF9DC7E5D5FDE85743D88936DCDB019EF5529EDF224D4C6 ] C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSPlug.dll
03:43:27.0671 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSPlug.dll - ok
03:43:27.0687 0x0154  [ 9061E7F4DB0FE7E0B8E216B796E91D26, BC0418FB13EDD90CB701AF2D2ADEA1E03C52D1B15EF9B6E4F22141EBCD611674 ] C:\Program Files\Common Files\Symantec Shared\AppCore\AppMgr32.dll
03:43:27.0687 0x0154  C:\Program Files\Common Files\Symantec Shared\AppCore\AppMgr32.dll - ok
03:43:27.0703 0x0154  [ 480F4488200170864598D3F9CD23FAF8, A1B5DB4B1CAFE4A7B42157E3956C33D4461C306223A3D5F50720B55046C62CF8 ] C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\ipsdefs\20090730.002\IDSxpx86.dll
03:43:27.0703 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\SymcData\ipsdefs\20090730.002\IDSxpx86.dll - ok
03:43:27.0718 0x0154  [ CD1FA95F84B98DACC3FD4F96291B0B04, DFCD0AECC9BABD43C72DC4A2A1277DBDE375DEA73A5BD9497EBA7A6F671C1E48 ] C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
03:43:27.0718 0x0154  C:\Program Files\Common Files\Symantec Shared\ccProxy.exe - ok
03:43:27.0734 0x0154  [ 9438ADEF660854BA7188ABB732A02D7A, 0B6A0BB79C18B10F7DA36D36EAC8F6C9BE008BFE9974877D3DA0907300D95932 ] C:\Program Files\Common Files\Symantec Shared\rcProxy.dll
03:43:27.0734 0x0154  C:\Program Files\Common Files\Symantec Shared\rcProxy.dll - ok
03:43:27.0750 0x0154  [ 73F5D6835BFA66019C03E316D99649DA, C88200E31F35BBDAC9C2FEF7257F5CD30299AD819B02BE784D4692C369F9D014 ] C:\WINDOWS\system32\drivers\CO_Mon.sys
03:43:27.0750 0x0154  C:\WINDOWS\system32\drivers\CO_Mon.sys - ok
03:43:27.0765 0x0154  [ 648E58F6342D24A4FD1B90CCAE6ACF8D, 689730A656C253ACC473F8A88BD37AC703FA717D4E9DB58F9EB7F5D859469A95 ] C:\Program Files\Common Files\Symantec Shared\AppCore\AppSet32.dll
03:43:27.0765 0x0154  C:\Program Files\Common Files\Symantec Shared\AppCore\AppSet32.dll - ok
03:43:27.0781 0x0154  [ 59DD7F48E5B6C3448D3C8D585CA73607, 41BD2E5D5C9D679A979600D0E520A4AE41578834BB248E7684B5C06BAE11E4FD ] C:\PROGRA~1\COMMON~1\SYMANT~1\PIF\{96E26~1\PifEng.dll
03:43:27.0781 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\PIF\{96E26~1\PifEng.dll - ok
03:43:27.0781 0x0154  [ D05AAE6F63E3F0E1B2424AB6F6777D87, C57E18CB5CA8467D03BEEE7A1EF31CA6308CF987C35343E0C012323A87701193 ] C:\Program Files\Common Files\Symantec Shared\CCEVTCLI.DLL
03:43:27.0796 0x0154  C:\Program Files\Common Files\Symantec Shared\CCEVTCLI.DLL - ok
03:43:27.0796 0x0154  [ A3C7FD50433D1CCB19A1C9FC7B3B11B2, 4146D7CC655508C5A08D21E4FFD4B3B351299DF1B808232391ADEDE5D2D55489 ] C:\PROGRA~1\COMMON~1\SYMANT~1\AntiSpam\asSpmEvt.dll
03:43:27.0796 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\AntiSpam\asSpmEvt.dll - ok
03:43:27.0812 0x0154  [ C193C9E3A66F639D2B1EC002CCD997A3, D4BCECCA56282015AF4838DBBCCE6AD3A91508468FED7A6A35F03CBDEBF84491 ] C:\Program Files\Common Files\Symantec Shared\Backup\BUSVC.DLL
03:43:27.0812 0x0154  C:\Program Files\Common Files\Symantec Shared\Backup\BUSVC.DLL - ok
03:43:27.0828 0x0154  [ 77406183F152C273982F6E2B271DB3D1, 5A67D7E4FE1E790A242E58A5476CF4FE6E7A8E7792BF8B14A7D8C1112DCF5E48 ] C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVScan.dll
03:43:27.0828 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVScan.dll - ok
03:43:27.0843 0x0154  [ 1B31592377CC3A465270F117CB3695FF, 131E3E41B77B7A44FD6C7D7F1A78D33C418D49EB7A21107187749368171758B5 ] C:\Program Files\Common Files\Symantec Shared\CF\PEP2.dll
03:43:27.0843 0x0154  C:\Program Files\Common Files\Symantec Shared\CF\PEP2.dll - ok
03:43:27.0859 0x0154  [ 36B09A449B860EB9AB8B35C1E28AD8E3, 0A618C614E7766D0843518AC99B15593AA665A3738CC88B3C9C6BE015363AE18 ] C:\PROGRA~1\COMMON~1\SYMANT~1\Firewall\FWAgent.dll
03:43:27.0859 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\Firewall\FWAgent.dll - ok
03:43:27.0875 0x0154  [ 09E6B725196DD2348E5EFB2EF5C63DEF, 0F12CB0FF22C6B8F03D250786D4FBC340ABB63843F2E2B4F7F86684969D97917 ] C:\Program Files\Norton 360\TPSVCAV.DLL
03:43:27.0875 0x0154  C:\Program Files\Norton 360\TPSVCAV.DLL - ok
03:43:27.0890 0x0154  [ 1B09279E755C896E8CEA60585995D4BD, FCD351019C7002EB25094115C2D2E21616C757967BF1B7B93925F076DEAC458C ] C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVDefMgr.dll
03:43:27.0890 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVDefMgr.dll - ok
03:43:27.0906 0x0154  [ 765074F93EAAE1712BAB0234E365B2BD, 1F464CBC97493CA80D73974D2F1B92F948493EC2F0C8214A063066393ECF8706 ] C:\Program Files\Common Files\Symantec Shared\coShared\WA\2.6\NPPCCWkr.dll
03:43:27.0906 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\WA\2.6\NPPCCWkr.dll - ok
03:43:27.0906 0x0154  [ 4911AA925EDEE509B73989381506EC89, 5DAE05B28EBC09961E505A303BA25A80B3AE73B7CE157D544A25341885E07CCD ] C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\SPBBCEvt.dll
03:43:27.0906 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\SPBBCEvt.dll - ok
03:43:27.0921 0x0154  [ 60C7B0B11568809D1AE10D905674E1C8, 522CABAFC34570843ED8C3E7305E784551DCFCC35A2F488CC14D85561FAE4ADA ] C:\Program Files\Common Files\Symantec Shared\AppCore\AppJob32.dll
03:43:27.0921 0x0154  C:\Program Files\Common Files\Symantec Shared\AppCore\AppJob32.dll - ok
03:43:27.0937 0x0154  [ DB963459BEA73867E50BC92D3A3F61BC, 9D615F9B47663C4F4914A0A2248AE283F7CED1B609D167A397A0D75087576ABD ] C:\WINDOWS\system32\pdh.dll
03:43:27.0937 0x0154  C:\WINDOWS\system32\pdh.dll - ok
03:43:27.0953 0x0154  [ 7AA15CCBE1DD20339200659AF99D588F, F27E3A28188E82796E0CE601FFE873A4907D0D17CF63EBE4B6883F088B1E9359 ] C:\WINDOWS\system32\odbcbcp.dll
03:43:27.0953 0x0154  C:\WINDOWS\system32\odbcbcp.dll - ok
03:43:27.0968 0x0154  [ 5CBDC1CF7A22D65711F05A1E3B7F734E, 5F920015E634600C80026B6A4993B19FC7B8763C6FD6A5155792C88203941338 ] C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVifc.dll
03:43:27.0968 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVifc.dll - ok
03:43:27.0968 0x0154  [ 503F89AF75D4041F73C8D3D62F902B72, 55281338F45603B2B4BA986B5C00F1BCBD7B06E99D0A8A20F5BDB07E1CDC8737 ] C:\Program Files\Common Files\Symantec Shared\coShared\WA\2.6\NPPDSMgr.dll
03:43:27.0968 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\WA\2.6\NPPDSMgr.dll - ok
03:43:27.0984 0x0154  [ F4F6C58D079620E909323DB1096C34BF, 251C09E19319CB648F313ADC30984E00BF1D30AF3A6A7F9BB7C8F39D9749CDC2 ] C:\PROGRA~1\COMMON~1\SYMANT~1\SRTSP\Srtsp32.dll
03:43:27.0984 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\SRTSP\Srtsp32.dll - ok
03:43:28.0000 0x0154  [ F6C5BF92697C25EF89F0ABAA5F36E517, 36A3F41542571CD00D1B60EC42DAB1692459E613C50513781FADF45E1BA2924A ] C:\Program Files\Common Files\Symantec Shared\CCPROSUB.DLL
03:43:28.0000 0x0154  C:\Program Files\Common Files\Symantec Shared\CCPROSUB.DLL - ok
03:43:28.0015 0x0154  [ 29B154DFBC5F74C5AA0E51F58CFE862F, 84389DE8DC4962AB6767594F9C901E6C3EF7BB0CFB86030BDE78C22F1613B6A5 ] C:\PROGRA~1\COMMON~1\SYMANT~1\ccPxyEvt.dll
03:43:28.0015 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\ccPxyEvt.dll - ok
03:43:28.0031 0x0154  [ 077F067C69073D1EBC84984E7FE5BA44, CF6F072DEFD09128D88B8F33F50264C9DEEB54659F7D87878546D0071385B990 ] C:\WINDOWS\system32\msjetoledb40.dll
03:43:28.0031 0x0154  C:\WINDOWS\system32\msjetoledb40.dll - ok
03:43:28.0046 0x0154  [ 9E70016C950B1F8FDEAA6F067E2E25A8, 2095B1E6D304D52C43C48DE5AEA4605D1C3E47962C2816FDCE5D6D1FB44344D0 ] C:\WINDOWS\system32\msjet40.dll
03:43:28.0046 0x0154  C:\WINDOWS\system32\msjet40.dll - ok
03:43:28.0062 0x0154  [ AFDC647D16B285B9AE6140335B3B3255, D1B2331FB5FDD1343BB1E3E88F7C33141B329C714E6B6B49D38F3AAC2A7AD335 ] C:\WINDOWS\system32\mswstr10.dll
03:43:28.0062 0x0154  C:\WINDOWS\system32\mswstr10.dll - ok
03:43:28.0078 0x0154  [ 0D14F07B29FBF0D750AA2495DD72B968, EA353253B312A89BD21ED5FD62C5133B5B25FDCA231CED1EDE4099A4C8A72916 ] C:\WINDOWS\system32\msjter40.dll
03:43:28.0078 0x0154  C:\WINDOWS\system32\msjter40.dll - ok
03:43:28.0078 0x0154  [ 92F7261F2182AA32C1C247C6DDFEF90C, 53D2E7E19AE50B5C6498471F6B8E934CC336F8E59A1A96948AD6A973CF8B73C3 ] C:\WINDOWS\system32\msjint40.dll
03:43:28.0078 0x0154  C:\WINDOWS\system32\msjint40.dll - ok
03:43:28.0093 0x0154  [ A521BD24B5A7746441897A8163D21BF5, 34E0FC21E9083B7C9E00FBBD01EFE1D55FA893E528F47266B78591E5228F0AD9 ] C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coRegMon.dll
03:43:28.0093 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coRegMon.dll - ok
03:43:28.0109 0x0154  [ 87F65295B03C3EF3282F95DBBA8D79B8, BEA0F7F45FEE948EA896AFCD677EE579E9117DCF55F6D641243DE8874DE76142 ] C:\Program Files\Common Files\Symantec Shared\Backup\buCmpCtl.dll
03:43:28.0109 0x0154  C:\Program Files\Common Files\Symantec Shared\Backup\buCmpCtl.dll - ok
03:43:28.0125 0x0154  [ ADE4B6227D22DF66B94C69D13574EC45, FA7D2147834DBE69EA7C2437CD3B27E361E94A7FEA6142A94F7B713D5FE143CF ] C:\Program Files\Common Files\System\Ole DB\oledb32.dll
03:43:28.0125 0x0154  C:\Program Files\Common Files\System\Ole DB\oledb32.dll - ok
03:43:28.0140 0x0154  [ 80EE5EFB436ABA67D3F0688D0E5F9D72, 697F6D5FF76065A8BB2329E1BB6FE695EE1E175AA367A01F8990C5E510F68AC7 ] C:\WINDOWS\system32\msdart.dll
03:43:28.0140 0x0154  C:\WINDOWS\system32\msdart.dll - ok
03:43:28.0156 0x0154  [ 48720D81D0D22372F8F12CF05A19E0D0, A6E0E9E5C6B18B1BE041814E98E407B3636A038F305E17B52F731248944F47D3 ] C:\Program Files\Common Files\System\Ole DB\oledb32r.dll
03:43:28.0156 0x0154  C:\Program Files\Common Files\System\Ole DB\oledb32r.dll - ok
03:43:28.0171 0x0154  [ 9CD9E2A251CDC2B92444A64DA20415A8, 25A81B123459831B9462EB8E25C4983626A024C3B6C4F07F99628E317A7CEE7A ] C:\Program Files\Common Files\Symantec Shared\CF\cfV2Pack.dll
03:43:28.0171 0x0154  C:\Program Files\Common Files\Symantec Shared\CF\cfV2Pack.dll - ok
03:43:28.0187 0x0154  [ FC77C63C47AE2D0D8B05DA6EC1785C0F, DF4D498E9F17F30D350CAF218814B7A3C23A5A659AB597265C0ACAD4818E644E ] C:\WINDOWS\system32\perfos.dll
03:43:28.0187 0x0154  C:\WINDOWS\system32\perfos.dll - ok
03:43:28.0187 0x0154  [ EBE9F8826B0D0F890E720D69EC2694CF, C636098203080D6406B6667550C0327A1123D57972660508FCD389BE54A80169 ] C:\Program Files\Common Files\Symantec Shared\coShared\CW\2.6\CWBB.dll
03:43:28.0187 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\CW\2.6\CWBB.dll - ok
03:43:28.0203 0x0154  [ D5E459BED3DB9CF7FC6CC1455F177D2D, FCAB2130FAB57B6728C50D5B9E9924F001C43538DE4F675DE03537FF0D9B84BD ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
03:43:28.0203 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll - ok
03:43:28.0218 0x0154  [ BA868A32EB6EB8EBD2FF0D8679801DEF, AAFC14F5F50EC8D2FC614439ABAB45A3A779D5EC88C2814BE92C88F3D079559F ] C:\WINDOWS\system32\perfdisk.dll
03:43:28.0218 0x0154  C:\WINDOWS\system32\perfdisk.dll - ok
03:43:28.0234 0x0154  [ E5DE87DDDB8CBE4687EADF296E58452A, A284A79DE5D1645E0F6DAF19ECB7D5BF0CFCA75AC501D9DAA8313ABF961F8CAC ] C:\WINDOWS\system32\msjtes40.dll
03:43:28.0234 0x0154  C:\WINDOWS\system32\msjtes40.dll - ok
03:43:28.0250 0x0154  [ EBC6F0BDF650CB2EDD49080F319900C0, C476406AA84A388BC0D26B04DE27708941D3B84DDD8322672AA24B04B4074DEF ] C:\Program Files\Common Files\Symantec Shared\Backup\BUCOMM.DLL
03:43:28.0250 0x0154  C:\Program Files\Common Files\Symantec Shared\Backup\BUCOMM.DLL - ok
03:43:28.0265 0x0154  [ 38F2958163C080590A42F7C66E89CDA1, 43BDFADB63315D959E322B0EFA42B69D732956340E6A4E50B332D651A9CAEF45 ] C:\Program Files\Common Files\Symantec Shared\Backup\BUENG.DLL
03:43:28.0265 0x0154  C:\Program Files\Common Files\Symantec Shared\Backup\BUENG.DLL - ok
03:43:28.0281 0x0154  [ 1DB86AE1A9BAB2B68BA04FE28DF9245B, 8299B47F4063D7824314EA0D56D4CE9ED16E1D42CA12FABA3C63E6AC6E60C576 ] C:\WINDOWS\system32\vbajet32.dll
03:43:28.0281 0x0154  C:\WINDOWS\system32\vbajet32.dll - ok
03:43:28.0296 0x0154  [ 7695224003DDA59BFB9BDD62EDAC169F, D287E7538BDC52D8B9D46F9B6705553932C7CB3454F3773D2EB41D84A61763AF ] C:\WINDOWS\system32\expsrv.dll
03:43:28.0296 0x0154  C:\WINDOWS\system32\expsrv.dll - ok
03:43:28.0312 0x0154  [ 83F2509338423B3B338D27084B241C57, A5D11DE5EC6AC1893F1F7C847994DAC80A6207DAFBF7535E932140CA2B37113D ] C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVModule.dll
03:43:28.0312 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVModule.dll - ok
03:43:28.0328 0x0154  [ EFDCD9B1F546AD59A6730712689F2F3B, 32356B6CB9B7DBF407E434141AA1EDAD485C9A63565E10C37EABA15CBDC7A93D ] C:\Program Files\Common Files\Symantec Shared\NPC\DataPvdr.dll
03:43:28.0328 0x0154  C:\Program Files\Common Files\Symantec Shared\NPC\DataPvdr.dll - ok
03:43:28.0343 0x0154  [ C4A8C9D346C7943693F301C205CBA003, 8100FAD0D74823A33EE05C2B3DD41D65B94A6409EDD1C0685FF21C02C207A08C ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETEVT.DLL
03:43:28.0343 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETEVT.DLL - ok
03:43:28.0359 0x0154  [ B5EB6A3ED3B8918091FE2539374E25E7, 96F506E2E718F484082E656810EB4E1F2E30A74FB7E819D54BA76A83083AF29D ] C:\PROGRA~1\NORTON~1\tpEvent.dll
03:43:28.0359 0x0154  C:\PROGRA~1\NORTON~1\tpEvent.dll - ok
03:43:28.0375 0x0154  [ F2AD56AC3F8A806A70847A15B21F333A, 8CF932609D1C8715836A74BE822B2D44B93B1B37AEDAF1DB511659C1F50EA612 ] C:\Program Files\Common Files\Symantec Shared\COL\BBIF.dll
03:43:28.0375 0x0154  C:\Program Files\Common Files\Symantec Shared\COL\BBIF.dll - ok
03:43:28.0375 0x0154  [ 04BC0344127E718ABCE8596290D46F76, B57BB40FE53C7304C3765525FB0DE6CB1A605628F6A6F4D92053F0F8C8F239C2 ] C:\Program Files\Common Files\Symantec Shared\coShared\CW\2.6\CWCon.dll
03:43:28.0375 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\CW\2.6\CWCon.dll - ok
03:43:28.0390 0x0154  [ CE8617599BFD41FF3A7C04B60087AD2D, 80F0E72310F73E78A3FA3264D79AF84CFE39274E28082B7E9AB8DA40F5778160 ] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec\SyKnAppS\SyKnAppS.dll
03:43:28.0390 0x0154  C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec\SyKnAppS\SyKnAppS.dll - ok
03:43:28.0406 0x0154  [ 7103BC76935E601D82700B44B1064F27, 3B3965AE37C6B3E1C5FACF08C30E346C23537C61307C9CC8A07E1F54384987FA ] C:\Program Files\Common Files\Symantec Shared\Firewall\FWHelper.dll
03:43:28.0406 0x0154  C:\Program Files\Common Files\Symantec Shared\Firewall\FWHelper.dll - ok
03:43:28.0421 0x0154  [ CE8617599BFD41FF3A7C04B60087AD2D, 80F0E72310F73E78A3FA3264D79AF84CFE39274E28082B7E9AB8DA40F5778160 ] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec\SyKnAppS\Freezer\NCO\SyKnAppS.dll
03:43:28.0421 0x0154  C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec\SyKnAppS\Freezer\NCO\SyKnAppS.dll - ok
03:43:28.0437 0x0154  [ 4478886BE4E4F2BAEC355D358E80A83F, EAA0FBB50C2726F67557B366A3FC9C540B6FB447F77DB2F404A970F58343F93E ] C:\Program Files\Common Files\Symantec Shared\DPHTML.dll
03:43:28.0437 0x0154  C:\Program Files\Common Files\Symantec Shared\DPHTML.dll - ok
03:43:28.0437 0x0154  [ D75435C574ED5375759821C001473843, 35E464BC85DFD9802FB6920E5E33FC9BF59BC8A2DFDE9BF8463D0D06329B0B33 ] C:\Program Files\Common Files\Symantec Shared\DPJS.dll
03:43:28.0437 0x0154  C:\Program Files\Common Files\Symantec Shared\DPJS.dll - ok
03:43:28.0453 0x0154  [ CB18CBE52505933F679FF2B4A44804D7, 2D926722EE00E628E0974E62C556FD6112CA53B3DB292DDA293EB835B0D5CB40 ] C:\Program Files\Norton 360\tpDataCl.dll
03:43:28.0453 0x0154  C:\Program Files\Norton 360\tpDataCl.dll - ok
03:43:28.0468 0x0154  [ 47F76180CEFB4B727061EAF6BC16021C, CF8419DDCCA4AA20582D07B297F79C6423E04D048B625DF605D8CAD26170EA3B ] C:\Program Files\Common Files\Symantec Shared\DPVBS.dll
03:43:28.0468 0x0154  C:\Program Files\Common Files\Symantec Shared\DPVBS.dll - ok
03:43:28.0484 0x0154  [ 963BBD53FA2091325A2EF3E3CF46F575, A592BD022EFF829B7939300D02205F20155A95E870A7603961E5456A71C7D56E ] C:\Program Files\Norton 360\tpCntnr.dll
03:43:28.0484 0x0154  C:\Program Files\Norton 360\tpCntnr.dll - ok
03:43:28.0500 0x0154  [ 5E5BDF511A133BFEC9F231B994376154, 0772E4D002C2035AEB31926D3C7CE10E1527695704DEAEEABC650FA4E8205101 ] C:\Program Files\Common Files\Symantec Shared\Backup\buDataCl.dll
03:43:28.0500 0x0154  C:\Program Files\Common Files\Symantec Shared\Backup\buDataCl.dll - ok
03:43:28.0515 0x0154  [ 41088C5F9D4163DEC03DC1080FBC68F6, 890E78FA16188055CB1F04E2B3FFAFB503BF723706292491F4EF6EC42ACD5EAF ] C:\Program Files\Common Files\Symantec Shared\PFPriv.dll
03:43:28.0515 0x0154  C:\Program Files\Common Files\Symantec Shared\PFPriv.dll - ok
03:43:28.0531 0x0154  [ 7B0B4810CF883776FA79C15CDF17E60B, 83ADA44C54CC95108A9AAB651AC05D9F7754A6570E06781FBCDD636F09846B9C ] C:\Program Files\Common Files\Symantec Shared\Bonus\bpUiDtEl.dll
03:43:28.0531 0x0154  C:\Program Files\Common Files\Symantec Shared\Bonus\bpUiDtEl.dll - ok
03:43:28.0546 0x0154  [ DED855CCD77E552C7A6C3D7A7A275403, 3452FD1BDA07D9CB9A8C12043873EEA1B4B81B91FB5A9E686718249334E3604F ] C:\Program Files\Common Files\Symantec Shared\Bonus\UIRes.loc
03:43:28.0546 0x0154  C:\Program Files\Common Files\Symantec Shared\Bonus\UIRes.loc - ok
03:43:28.0562 0x0154  [ 3246394FB0147F49E9DDC7406A714A46, 0397923F190C39D852290BFAF861680615D69664A6AAC1CECD958890B928B3A6 ] C:\Program Files\Common Files\Symantec Shared\ccCharCv.dll
03:43:28.0562 0x0154  C:\Program Files\Common Files\Symantec Shared\ccCharCv.dll - ok
03:43:28.0578 0x0154  [ D81CF1DD857538AA2E5E9CB0AA7FBF67, 003F04C73E776E4391F792F594778CD578F164BFF35D0AFB9C64E6F0382B3770 ] C:\Program Files\Common Files\Symantec Shared\AntiVirus\avCmpCtl.dll
03:43:28.0578 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiVirus\avCmpCtl.dll - ok
03:43:28.0578 0x0154  [ 3BA25F0A6B00A384F85E2798AAF5DF0F, 259347496E5E0513783ED42C21B985FEF94A68369376361B6723BBE1FC7005DB ] C:\Program Files\Common Files\Symantec Shared\SPBBC\ccTrstPc.dll
03:43:28.0578 0x0154  C:\Program Files\Common Files\Symantec Shared\SPBBC\ccTrstPc.dll - ok
03:43:28.0593 0x0154  [ F048E0452A2C9B622CFE178E8BA5089A, 6661E1B7F04322755BE31F2C26F4403548E9E43DA342195543C543E73746863F ] C:\Program Files\Common Files\Symantec Shared\Bonus\BpPwd.dll
03:43:28.0593 0x0154  C:\Program Files\Common Files\Symantec Shared\Bonus\BpPwd.dll - ok
03:43:28.0609 0x0154  [ E335EC58D7089A72D75C2BD6B62741CB, E76C935CC81539A323932EE976587A4C7AD55A1D44808D31A61B3902EFC62F3E ] C:\Program Files\Norton 360\coDataPr.dll
03:43:28.0609 0x0154  C:\Program Files\Norton 360\coDataPr.dll - ok
03:43:28.0625 0x0154  [ 18901305F3B7154B69D202D6F867705D, 6C4E6AE806B7A7AC79D636B539F1959EC04F71A558E1F83AFBE43EAE7BE51464 ] C:\Program Files\Common Files\Symantec Shared\PFRes.dll
03:43:28.0625 0x0154  C:\Program Files\Common Files\Symantec Shared\PFRes.dll - ok
03:43:28.0640 0x0154  [ 33B3AE0F780C9F25F6AF25712B7FB5BE, E52EF104247DF4345AE3448F851FF2D89F5B1D96A7797AA5F899957678065703 ] C:\Program Files\Common Files\Symantec Shared\Parental Control\SymURL.dll
03:43:28.0640 0x0154  C:\Program Files\Common Files\Symantec Shared\Parental Control\SymURL.dll - ok
03:43:28.0656 0x0154  [ EA192AC1AD91225AA19605AC828B768E, FA1892027ADBB3834CAB4B55D19A3F0D00502C3A29C4988961A2B993D6A97B14 ] C:\Program Files\Norton 360\09\01\coDataPr.loc
03:43:28.0656 0x0154  C:\Program Files\Norton 360\09\01\coDataPr.loc - ok
03:43:28.0671 0x0154  [ 9FE47D87A9256E6868404F1D49CA6BC6, 6CCB0EB7D73EDBF4FD8E2959F7220C4719C3F77576CADA2A017F3D254AD0F169 ] C:\Program Files\Common Files\Symantec Shared\NPC\2.0\uiDataCl.dll
03:43:28.0671 0x0154  C:\Program Files\Common Files\Symantec Shared\NPC\2.0\uiDataCl.dll - ok
03:43:28.0687 0x0154  [ F917278F644BC6CED095BFAE4D03CFA0, A3C2E722F41C60A121F3147BDDEC0094C1B3630955CDCB3160E8F322E5132C71 ] C:\Program Files\Common Files\Symantec Shared\QBackup.dll
03:43:28.0687 0x0154  C:\Program Files\Common Files\Symantec Shared\QBackup.dll - ok
03:43:28.0703 0x0154  [ 2A97A941CFDF7AC676371922C16B1161, C29672B7983FD5D9138A79733995DE8C197D0200082E7F0E65DF6D3B451714D5 ] C:\Program Files\Common Files\Symantec Shared\NPC\2.0\uiLicPlg.dll
03:43:28.0703 0x0154  C:\Program Files\Common Files\Symantec Shared\NPC\2.0\uiLicPlg.dll - ok
03:43:28.0718 0x0154  [ FB94D1C558976AD3209A62AE85CD1526, 321ED9DAC9F0F11F068057B475E8F92D212A041AA2D35FC230DCCE6D9EBC018F ] C:\Program Files\Common Files\Symantec Shared\PxyHTTP.dll
03:43:28.0718 0x0154  C:\Program Files\Common Files\Symantec Shared\PxyHTTP.dll - ok
03:43:28.0734 0x0154  [ 67657E84ED91525030169969227997AA, 121CF3F536D78976C04EF573D4F4B2E3FD5A6AFED5DB41130A0F84C0428E4684 ] C:\Program Files\Common Files\Symantec Shared\DPHTTP.dll
03:43:28.0734 0x0154  C:\Program Files\Common Files\Symantec Shared\DPHTTP.dll - ok
03:43:28.0750 0x0154  [ 09D06B8DCD3823AEA29D8A5597AACA74, 0968F48D39AC757165092AC18E07B2E2849841A352B1C8C373255FF0EEA70EC8 ] C:\Program Files\Common Files\Symantec Shared\NPC\PEPEvnt.dll
03:43:28.0750 0x0154  C:\Program Files\Common Files\Symantec Shared\NPC\PEPEvnt.dll - ok
03:43:28.0750 0x0154  [ 4618626371E95678B3AE9A95862481A5, 63474DD02A313743C72B7FDB117CFA22F2E8219897DB5FEE84B880F58E256752 ] C:\Program Files\Common Files\Symantec Shared\PxyIM.dll
03:43:28.0750 0x0154  C:\Program Files\Common Files\Symantec Shared\PxyIM.dll - ok
03:43:28.0765 0x0154  [ D9DFCF094A370025FFB7761D0EFF8500, 987579B38F6D243A211291B858B6997915559634E0CA3B035101AE279150DFA6 ] C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCCli.dll
03:43:28.0765 0x0154  C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCCli.dll - ok
03:43:28.0781 0x0154  [ 88C5DD2F2283FD14D8EBE7ED3EE895C4, 6C7B1C69DBD00666593FF3CE90E8BC750CF0B9A48F7E47F5727990C464632EED ] C:\Program Files\Norton 360\NTPFW.DLL
03:43:28.0781 0x0154  C:\Program Files\Norton 360\NTPFW.DLL - ok
03:43:28.0796 0x0154  [ E859EC77A0C5C2F81DD19C87AD23CACC, 97132821DDAA64E2BE4186A9E80167479BA0728CA71136BFFA520C55AD96E5D8 ] C:\WINDOWS\system32\SymRedir.dll
03:43:28.0796 0x0154  C:\WINDOWS\system32\SymRedir.dll - ok
03:43:28.0812 0x0154  [ 7C6505EA598E58099D3B7E1F70426864, 02F56399A78A7D43C19F08A7C3213CFFFE46D372698DDA91034F7EF5B1F3C63E ] C:\WINDOWS\system32\drivers\symredrv.sys
03:43:28.0812 0x0154  C:\WINDOWS\system32\drivers\symredrv.sys - ok
03:43:28.0828 0x0154  [ BF79C970B8FA983C8AF57EE1481B8416, AD73E74EE6097B099027FEC036D93849120036E785CF4168C8CC637AD241250F ] C:\Program Files\Norton 360\tpBTPlg.dll
03:43:28.0828 0x0154  C:\Program Files\Norton 360\tpBTPlg.dll - ok
03:43:28.0843 0x0154  [ 92360854316611F6CC471612213C3D92, A45DC437FA0DEC1DB540DC889A2469E8C3C4360F2F41FE60BFA3F78462507959 ] C:\WINDOWS\system32\schedsvc.dll
03:43:28.0843 0x0154  C:\WINDOWS\system32\schedsvc.dll - ok
03:43:28.0859 0x0154  [ E89B10B957AC45AA53301114E415A988, B252E6FA8D3B11E2E7ED3608B07CE63F95E77308B5D95DB362F0E4F406102899 ] C:\Program Files\Common Files\Symantec Shared\OPC\{C86EA115-FACD-4aa8-BFA2-398C677D0936}\cltBTPlg.dll
03:43:28.0859 0x0154  C:\Program Files\Common Files\Symantec Shared\OPC\{C86EA115-FACD-4aa8-BFA2-398C677D0936}\cltBTPlg.dll - ok
03:43:28.0875 0x0154  [ 249817F51C84D283E96E6B2580D21FFD, DB09F4EB56A875448D25A49ED9A6BC02011B216583757C79A2A2B7C83125F835 ] C:\WINDOWS\system32\msidle.dll
03:43:28.0875 0x0154  C:\WINDOWS\system32\msidle.dll - ok
03:43:28.0890 0x0154  [ DA81EC57ACD4CDC3D4C51CF3D409AF9F, 521257429493F31516EDE549869EFA4B7A262F6A69EA1E82A9C875456C10E702 ] C:\WINDOWS\system32\spoolsv.exe
03:43:28.0890 0x0154  C:\WINDOWS\system32\spoolsv.exe - ok
03:43:28.0906 0x0154  [ 7BEB17B323267811380BD66E710C1FF6, 617BC93F62D07331D15F19E6929F5F2B1619069068D8590C62F94F79309FCD59 ] C:\Program Files\Common Files\Symantec Shared\OPC\{C86EA115-FACD-4aa8-BFA2-398C677D0936}\cltPIPlg.dll
03:43:28.0906 0x0154  C:\Program Files\Common Files\Symantec Shared\OPC\{C86EA115-FACD-4aa8-BFA2-398C677D0936}\cltPIPlg.dll - ok
03:43:28.0906 0x0154  [ 51230212AE7F8159A90F06A7EA30DD8A, 898DCAC5687F2CD9E088A8EE5CDE47EF76D665165085D349EA73BD1BDD3CD273 ] C:\WINDOWS\system32\cscui.dll
03:43:28.0906 0x0154  C:\WINDOWS\system32\cscui.dll - ok
03:43:28.0921 0x0154  [ DB66DB626E4882EBEF55F136F12C1829, E4FA63031E8FCF456D45160C29ADD0989355D5C5C8E17C949C278421D41DAB62 ] C:\WINDOWS\system32\audiosrv.dll
03:43:28.0921 0x0154  C:\WINDOWS\system32\audiosrv.dll - ok
03:43:28.0937 0x0154  [ 1B5F6923ABB450692E9FE0672C897AED, C1150C8D3CD586B336DFFB78E00A0F6FC60A3730EB541E6F8C14AF97A4CBEC14 ] C:\WINDOWS\system32\powrprof.dll
03:43:28.0937 0x0154  C:\WINDOWS\system32\powrprof.dll - ok
03:43:28.0953 0x0154  [ 9B338BF4FD5353FE812516D057430EE3, 6DAA3F4C46C0BE310320C94E5C07C71A438EAC7F2C0DFE8674A607A84740602D ] C:\Program Files\Symantec\LiveUpdate\NetDetectController_3_4.DLL
03:43:28.0953 0x0154  C:\Program Files\Symantec\LiveUpdate\NetDetectController_3_4.DLL - ok
03:43:28.0953 0x0154  [ 2D7ADA0265BECAB304C1DB95248E8610, 8BBC3915B028B77DEDF99FF0B85CAEB5CA3402B8009F0A75D40C7DDCB3121FFB ] C:\WINDOWS\system32\dpcdll.dll
03:43:28.0953 0x0154  C:\WINDOWS\system32\dpcdll.dll - ok
03:43:28.0968 0x0154  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll
03:43:28.0968 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80.dll - ok
03:43:28.0984 0x0154  [ E1F27CFCD114EC9F1E1F44674B2FF9F0, 7147A1B3694200EEBC32BD66DAED6E075476371E03ED5FDD23431AB79D990957 ] C:\WINDOWS\system32\wkssvc.dll
03:43:28.0984 0x0154  C:\WINDOWS\system32\wkssvc.dll - ok
03:43:29.0000 0x0154  [ 29414447EB5BDE2F8397DC965DBB3156, 351D359CC6C1C35522BB55B7CAC6C881B25FD6A0E057A8D7F84EE5A193029A23 ] C:\WINDOWS\system32\drivers\mrxdav.sys
03:43:29.0000 0x0154  C:\WINDOWS\system32\drivers\mrxdav.sys - ok
03:43:29.0015 0x0154  [ 9090454E6772F7CFBCE240BF4DC5F7E8, A532044DFD1FA6463516125EA74C250762DE4DACBE613F8AD2FF72D50C0B9585 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
03:43:29.0015 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll - ok
03:43:29.0031 0x0154  [ B16EE7AE0C2EBDBBF7058899C7387A1B, A5E64DE8194EFF45555751DABF17F5B29045349C43CD6B719B379283BD499694 ] C:\Program Files\Norton 360\SetEvtHp.dll
03:43:29.0031 0x0154  C:\Program Files\Norton 360\SetEvtHp.dll - ok
03:43:29.0046 0x0154  [ 265F534EF76832435AFBF771EC97176D, 67C1C932A20A92D2D180D6763AC9297FA0B6D4C225501C7739B0B45F52FEC6E1 ] C:\WINDOWS\system32\webclnt.dll
03:43:29.0046 0x0154  C:\WINDOWS\system32\webclnt.dll - ok
03:43:29.0062 0x0154  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] C:\WINDOWS\system32\drivers\parvdm.sys
03:43:29.0062 0x0154  C:\WINDOWS\system32\drivers\parvdm.sys - ok
03:43:29.0062 0x0154  [ 71356A1370739E25375A1D17B6AE318F, A33DE9A89D9D62CD4401321DE3A91A93CA7F4145CAE4C69E620D65531AE59E6F ] C:\WINDOWS\system32\drivers\ASLM75.SYS
03:43:29.0062 0x0154  C:\WINDOWS\system32\drivers\ASLM75.SYS - ok
03:43:29.0078 0x0154  [ C7AE0FD3867DB0D42B03B73C18F3D671, 13AE5D3DD13BC4C0EAB234FC3F87DA918793CE317A07EE37F107C8C6104E0BA9 ] C:\WINDOWS\system32\alrsvc.dll
03:43:29.0078 0x0154  C:\WINDOWS\system32\alrsvc.dll - ok
03:43:29.0093 0x0154  [ AE9560C298D847AEF346BDD5FAD3B0E3, 75EA520E92160C7078036C5E01613BD4FC8FAC8FEF70BBFF84410B0678696829 ] C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
03:43:29.0093 0x0154  C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe - ok
03:43:29.0109 0x0154  [ 93FEF3A5EB8965CB19F9820D5944D3E2, 6C15676CF2DEDACC458E70AA5D8D77652E7342F52B73CE491D3A6A0CF18A9AE2 ] C:\Program Files\Common Files\Symantec Shared\Firewall\FWSetup.dll
03:43:29.0109 0x0154  C:\Program Files\Common Files\Symantec Shared\Firewall\FWSetup.dll - ok
03:43:29.0125 0x0154  [ 39B1FFB03C2296323832ACBAE50D2AFF, 5B5D71718108E132D10BAFB0C217F469A1E3CC13F79FF8D9CBE3BF4918AFF7B7 ] C:\WINDOWS\system32\userinit.exe
03:43:29.0125 0x0154  C:\WINDOWS\system32\userinit.exe - ok
03:43:29.0140 0x0154  [ 97BD6515465659FF8F3B7BE375B2EA87, 8B48DD5EB2A7F8EC8B607B1B0C9CBF7278B401024347971CBB6D0C9530D1C295 ] C:\WINDOWS\explorer.exe
03:43:29.0140 0x0154  C:\WINDOWS\explorer.exe - ok
03:43:29.0156 0x0154  [ 826A299B3C08DF1301A8BF35C07B00FF, DC3A7C068B3C16BC3256573D8C18A38B07DB2CC2006DA06C54216696512383A7 ] C:\WINDOWS\system32\browseui.dll
03:43:29.0156 0x0154  C:\WINDOWS\system32\browseui.dll - ok
03:43:29.0156 0x0154  [ 458054BBC817F6088E1B4D87E2B6AA6D, 576B24F4E7588292825E2C29203F1C34EB2F9852711C2AFDBA31ECE08F7D9BB1 ] C:\WINDOWS\system32\shdocvw.dll
03:43:29.0156 0x0154  C:\WINDOWS\system32\shdocvw.dll - ok
03:43:29.0171 0x0154  [ D6A8DC8C374EEA24744F2D4E87CA0E7E, 428F274BDF894C80B89E726DF836191FC687CBE87C1CCE5DEDF4B5B9A0A85D0B ] C:\WINDOWS\system32\wdmaud.drv
03:43:29.0171 0x0154  C:\WINDOWS\system32\wdmaud.drv - ok
03:43:29.0187 0x0154  [ 60D8CA76CCD1FCDC393C057949E5A89F, D970500F50996D709623A5398FA504FAD643E34A71EFD6BB689B00F15EB53DDE ] C:\Program Files\Common Files\Symantec Shared\Backup\buShell.dll
03:43:29.0187 0x0154  C:\Program Files\Common Files\Symantec Shared\Backup\buShell.dll - ok
03:43:29.0203 0x0154  [ EFD235CA22B57C81118C1AEB4798F1C1, 16EE95A1D51F318224152492FB1663D96E61EC1706E85AE820CD023CBA1CF1F3 ] C:\WINDOWS\system32\drivers\wdmaud.sys
03:43:29.0203 0x0154  C:\WINDOWS\system32\drivers\wdmaud.sys - ok
03:43:29.0218 0x0154  [ E931B4DD87DFACE46468FD506FDCD262, D148891A27641A15213D83779434369027C3284B85E0D7BD0B55A891C5742F90 ] C:\WINDOWS\system32\desk.cpl
03:43:29.0218 0x0154  C:\WINDOWS\system32\desk.cpl - ok
03:43:29.0234 0x0154  [ 650AD082D46BAC0E64C9C0E0928492FD, 6A587A55418A3A7867602D92B99FE393152DED191F27992C4BA909BD268AC43C ] C:\WINDOWS\system32\drivers\sysaudio.sys
03:43:29.0234 0x0154  C:\WINDOWS\system32\drivers\sysaudio.sys - ok
03:43:29.0250 0x0154  [ E6796D51CED309E46D29C0B787735615, 8738977DB19F704D5DA7880148586C3A1D495D6A015CEF458153346246963FE3 ] C:\WINDOWS\system32\themeui.dll
03:43:29.0250 0x0154  C:\WINDOWS\system32\themeui.dll - ok
03:43:29.0265 0x0154  [ 1EE7B434BA961EF845DE136224C30FEC, 0216D2277B6B4AB9B0E47E093CEEAC2030EFB4B87BA048EA730E40119AA06444 ] C:\WINDOWS\system32\drivers\aec.sys
03:43:29.0265 0x0154  C:\WINDOWS\system32\drivers\aec.sys - ok
03:43:29.0265 0x0154  [ 0CE218578FFF5F4F7E4201539C45C78F, 2C87C8993C3B9CE3589262E178B2B12FF9F2D83E5E8C2B97648D7FA24E3BD985 ] C:\WINDOWS\system32\drivers\splitter.sys
03:43:29.0265 0x0154  C:\WINDOWS\system32\drivers\splitter.sys - ok
03:43:29.0281 0x0154  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D, EEF6DB9EDD8C273A6595675A7A12B9D440FA4E178BA7C69FB1942D97E291F989 ] C:\WINDOWS\system32\drivers\swmidi.sys
03:43:29.0281 0x0154  C:\WINDOWS\system32\drivers\swmidi.sys - ok
03:43:29.0296 0x0154  [ A6F881284AC1150E37D9AE47FF601267, 6C07654CF21637E527FC727EB50F4138BF0EFF0680000AC94001063B436389DB ] C:\WINDOWS\system32\drivers\DMusic.sys
03:43:29.0296 0x0154  C:\WINDOWS\system32\drivers\DMusic.sys - ok
03:43:29.0312 0x0154  [ BA5DEDA4D934E6288C2F66CAF58D2562, 2250B75EEAD92CA56A1F8BB3F6523F9A5625676E38845A4DE0BFECE5EA17DBFA ] C:\WINDOWS\system32\drivers\kmixer.sys
03:43:29.0312 0x0154  C:\WINDOWS\system32\drivers\kmixer.sys - ok
03:43:29.0328 0x0154  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E, B941AB5D9D504486083E0D1539B1A96E27721C9EFD7A67CA1DB7258B0D33AB78 ] C:\WINDOWS\system32\drivers\drmkaud.sys
03:43:29.0328 0x0154  C:\WINDOWS\system32\drivers\drmkaud.sys - ok
03:43:29.0343 0x0154  [ 9A3BD5F55AADFF859539142F6328A66E, B8165F650F0E24D380601D54BC81A84C06D886A6CF995EA6CA63EABCFA75554A ] C:\WINDOWS\system32\msacm32.drv
03:43:29.0343 0x0154  C:\WINDOWS\system32\msacm32.drv - ok
03:43:29.0359 0x0154  [ 3B4702155BB2AE9DC00C06A68834BDFA, 8F716396BDA82E9ACCF4CB14A3F09C66159D3C8DA55E7A7A54EE5A4AEE7ECCEB ] C:\WINDOWS\system32\midimap.dll
03:43:29.0359 0x0154  C:\WINDOWS\system32\midimap.dll - ok
03:43:29.0375 0x0154  [ D22979B79A89BDDC251BE01FED697362, 850249180E089EE5740F7C5E40D73048C4C0447C3EDBD3BD602565ECA3C1BCC5 ] C:\Program Files\Symantec\LiveUpdate\LuccMUI.dll
03:43:29.0375 0x0154  C:\Program Files\Symantec\LiveUpdate\LuccMUI.dll - ok
03:43:29.0390 0x0154  [ 7C8F371C924DAA376217E553378275BA, 40A954D81B0FD20888D66A6393218155E2B53AFFB852FDBD11949E0FC0EA2517 ] C:\WINDOWS\system32\shfolder.dll
03:43:29.0390 0x0154  C:\WINDOWS\system32\shfolder.dll - ok
03:43:29.0390 0x0154  [ 13510490BEA0997DB625DAA0178CBFCA, E2E3350ABDDCA1ED465B92A5576789A971019263194A300DFD6F0991850979D2 ] C:\WINDOWS\system32\actxprxy.dll
03:43:29.0390 0x0154  C:\WINDOWS\system32\actxprxy.dll - ok
03:43:29.0406 0x0154  [ 66D889718ED15A35BF0152C6E446934A, D051B857ABD5C6D4DBB6F8347EB7CBBB98871E29A25D70DC19F7DBF475284812 ] C:\WINDOWS\system32\urlmon.dll
03:43:29.0406 0x0154  C:\WINDOWS\system32\urlmon.dll - ok
03:43:29.0421 0x0154  [ EEB024F2C81F0D55936FB825D21A91D6, C8E419248E33EFA206C3F66595118D876C36B6FE27C379174D46C770D1D198AB ] C:\WINDOWS\system32\cmd.exe
03:43:29.0421 0x0154  C:\WINDOWS\system32\cmd.exe - ok
03:43:29.0437 0x0154  [ 8641B27F8DF694C39CA1DBA2F71373FB, 50C97DD87D08E473A07CE2D8478146E3F153B3AE84E3BF2CE7B5D517CE4E367B ] C:\WINDOWS\system32\ieframe.dll
03:43:29.0437 0x0154  C:\WINDOWS\system32\ieframe.dll - ok
03:43:29.0453 0x0154  [ 10654F9DDCEA9C46CFB77554231BE73B, 4EEAF6523941228FC440E9EA758545E2F2A2DD98565F90B5351EF2C9B82139ED ] C:\WINDOWS\system32\cryptsvc.dll
03:43:29.0453 0x0154  C:\WINDOWS\system32\cryptsvc.dll - ok
03:43:29.0453 0x0154  [ D0B322012EBAB1F29E3AD4A8568B2DBA, 4D4E00556F856B433762DD0E4E13F4A739B9EEE4D5B822162EECD6EF4CDA3F1F ] C:\Program Files\DefaultTab\DefaultTabSearch.exe
03:43:29.0453 0x0154  C:\Program Files\DefaultTab\DefaultTabSearch.exe - ok
03:43:29.0468 0x0154  [ F93C1DB10E59FAADC673D2607F910B92, 15128F7042F386B46E268FBF0CC23EA3CD0E7B9965FE8FFF74002C98E84D1318 ] C:\PROGRA~1\COMMON~1\SYMANT~1\OPC\{C86EA~1\CLTNetCN.dll
03:43:29.0468 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\OPC\{C86EA~1\CLTNetCN.dll - ok
03:43:29.0484 0x0154  [ AD44C5BC21213F394F6AFCB55CC39293, 08366526D759083DE0F6DF624E4B768E515637E2449B5C96AE1ACE1501C0A2B8 ] C:\WINDOWS\system32\certcli.dll
03:43:29.0484 0x0154  C:\WINDOWS\system32\certcli.dll - ok
03:43:29.0500 0x0154  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A, 305F39E4D18DC079E48578C31AE87BA1D0D781A2613BD5DA4689AC6F2794D326 ] C:\WINDOWS\system32\ersvc.dll
03:43:29.0500 0x0154  C:\WINDOWS\system32\ersvc.dll - ok
03:43:29.0515 0x0154  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files\Google\Update\GoogleUpdate.exe
03:43:29.0515 0x0154  C:\Program Files\Google\Update\GoogleUpdate.exe - ok
03:43:29.0531 0x0154  [ 60D1A6342238378BFB7545C81EE3606C, 40186F096F2AC3E5E12D0B8713A08E449D5F23DCD1C0EEFC3FA82002CA1B030F ] C:\WINDOWS\system32\es.dll
03:43:29.0531 0x0154  C:\WINDOWS\system32\es.dll - ok
03:43:29.0546 0x0154  [ 77E585EDD4C7EB7AB2ACC36BC1DC32A5, 57BF4D683CA66AAC2A4B7FEDF9F7FB254860BE77E1F4A6DD2C40410783B5C113 ] C:\Program Files\Google\Update\1.3.24.15\goopdate.dll
03:43:29.0546 0x0154  C:\Program Files\Google\Update\1.3.24.15\goopdate.dll - ok
03:43:29.0546 0x0154  [ 8827911A8C37E40C027CBFC88E69D967, ED381F089E6143896B890BD5450FFFB271FC68983412376F54869A93F9D7DA9D ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
03:43:29.0546 0x0154  C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
03:43:29.0562 0x0154  [ 9376E6893E52B368ABC6255BF54F0B28, D3E6B03145988BC80A1F62E5E312BB060E062118B12D30F27C8A432D30962E58 ] C:\WINDOWS\system32\hidserv.dll
03:43:29.0562 0x0154  C:\WINDOWS\system32\hidserv.dll - ok
03:43:29.0578 0x0154  [ 067020BB8ABF1F6B80361051B2806C90, 41AF23639557EFA6D430C8B322B9E2BC5FC1EB994780960D9ACF38EC2F4C0415 ] C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
03:43:29.0578 0x0154  C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe - ok
03:43:29.0593 0x0154  [ 18AFEE0EDE045B6255408D634372DC29, 45CF51A125E4C3C44A6B708F25EB98165D66628EBFA1D10A538FDEF0AFFF74EA ] C:\WINDOWS\system32\hid.dll
03:43:29.0593 0x0154  C:\WINDOWS\system32\hid.dll - ok
03:43:29.0609 0x0154  [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Program Files\Nero\Nero 7\InCD\msvcr71.dll
03:43:29.0609 0x0154  C:\Program Files\Nero\Nero 7\InCD\msvcr71.dll - ok
03:43:29.0625 0x0154  [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Program Files\Nero\Nero 7\InCD\msvcp71.dll
03:43:29.0625 0x0154  C:\Program Files\Nero\Nero 7\InCD\msvcp71.dll - ok
03:43:29.0640 0x0154  [ 397D14958D6C9C2B365469A857B2AC4E, 1465D7DC50A27A2C75FFC477E8A453B0884D1E298F804233483B63A47634B7EA ] C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
03:43:29.0640 0x0154  C:\Program Files\Google\Update\1.3.24.15\GoogleCrashHandler.exe - ok
03:43:29.0656 0x0154  [ DAD1CEF1B77539B4EF734A1041CF95ED, 54FAF6F1B89F892261DC8BF3D56A12D0F36F1A0B98629712C45B944CE2F8A940 ] C:\WINDOWS\system32\mstask.dll
03:43:29.0656 0x0154  C:\WINDOWS\system32\mstask.dll - ok
03:43:29.0656 0x0154  [ B591E761161D1EF547D76EF236EAA6A5, 9A4125350F96C248380E6E834C65C14700F9CCEDB9CD34DEDF1119ED2274697A ] C:\Program Files\Java\jre7\bin\jqs.exe
03:43:29.0656 0x0154  C:\Program Files\Java\jre7\bin\jqs.exe - ok
03:43:29.0671 0x0154  [ 3F1A7E8A588097071BB0FC9FB3CB39AD, 415B84D134B4541DD30080956EB7A20039405F4E51F5ACB3777B6E48609ECAF4 ] C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll
03:43:29.0671 0x0154  C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll - ok
03:43:29.0687 0x0154  [ CAD4AA32E7ECA00C23CC39C0EB833F9D, D188520C302C4B4FDBCFC2D5E70653E4A7B4DD06EE75E4250515A93925CB2698 ] C:\WINDOWS\system32\cryptnet.dll
03:43:29.0687 0x0154  C:\WINDOWS\system32\cryptnet.dll - ok
03:43:29.0703 0x0154  [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
03:43:29.0703 0x0154  C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
03:43:29.0718 0x0154  [ DCE3C277C4C9ADBC11850DBC4AD131B3, 9D5045256E4F2D4559FF1AEA744D658B5C731B9A3D47D2D74AA98BDF6B259D4B ] C:\WINDOWS\system32\winhttp.dll
03:43:29.0718 0x0154  C:\WINDOWS\system32\winhttp.dll - ok
03:43:29.0734 0x0154  [ 6E205319848B8AF2A0DA52B8D63DB91E, 179334E32454B72197C05B84687F690B576BBA5E02EDB788E832F681A8922A83 ] C:\WINDOWS\system32\sensapi.dll
03:43:29.0734 0x0154  C:\WINDOWS\system32\sensapi.dll - ok
03:43:29.0750 0x0154  [ AF8FCE586FE158542035EFE79B16A9BB, 67E6CAC172EE96715902EB846D0EBF4C54DFFD20056A9725E60B8389D9A67652 ] C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
03:43:29.0750 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll - ok
03:43:29.0750 0x0154  [ 195741AEE20369980796B557358CD774, 4AD0E691A7543539578FBF849828B5F1DDB5BCD697B4F9D28CF2AAB3F555D56B ] C:\WINDOWS\system32\drivers\mdmxsdk.sys
03:43:29.0750 0x0154  C:\WINDOWS\system32\drivers\mdmxsdk.sys - ok
03:43:29.0765 0x0154  [ D1E299962B5956005113EC4AB1E0D9B7, 7B3723A9F514DE4E3E28A3B90ABCD32B70DAA85468D1999A691489D15D51ACCD ] C:\WINDOWS\system32\ipsecsvc.dll
03:43:29.0765 0x0154  C:\WINDOWS\system32\ipsecsvc.dll - ok
03:43:29.0781 0x0154  [ 0CB3AF149A0BAC0836022CA307C7A0F8, FCA50F229A9A2D120A260620AF454E1808246E45EC249582298D669BCED50B3E ] C:\WINDOWS\system32\srvsvc.dll
03:43:29.0781 0x0154  C:\WINDOWS\system32\srvsvc.dll - ok
03:43:29.0796 0x0154  [ F0AF09B4781F4935FDB49AFA87C90FA9, D87DE950C758E68B82B3BFC84154600A06241CEF9FD23032E87133D4965F2725 ] C:\WINDOWS\system32\faultrep.dll
03:43:29.0796 0x0154  C:\WINDOWS\system32\faultrep.dll - ok
03:43:29.0812 0x0154  [ 20FD44370267CCD0A64A1B31861C21D2, D98194A17D1C63434EC6449742C10033F1B94D80826B20464519B1DD4DE1DB5F ] C:\WINDOWS\system32\netmsg.dll
03:43:29.0812 0x0154  C:\WINDOWS\system32\netmsg.dll - ok
03:43:29.0828 0x0154  [ E7E39B9152E6C27E5F608574EA6C5A52, FFCA5D8C5376D88CA3E914460708241067C02D25A4FC7EA3758E55451D761816 ] C:\WINDOWS\system32\oakley.dll
03:43:29.0828 0x0154  C:\WINDOWS\system32\oakley.dll - ok
03:43:29.0843 0x0154  [ 06A49B7BDC36CFBF97DD90804F833369, 0E02B50F9F371162E18D5E4FFEF1669E9B5B75460618B10FD31E63F2ACC50A90 ] C:\Program Files\CyberLink\Shared Files\RichVideo.exe
03:43:29.0843 0x0154  C:\Program Files\CyberLink\Shared Files\RichVideo.exe - ok
03:43:29.0859 0x0154  [ 2B2F31E3F2CE3723C1B0F3700C8BE28B, 1FDCC3B73238E2E57EEAE2F48538985F6378E0C00A0F172C396976FD4D2570C5 ] C:\WINDOWS\system32\winipsec.dll
03:43:29.0859 0x0154  C:\WINDOWS\system32\winipsec.dll - ok
03:43:29.0875 0x0154  [ DC725FBAABE9180371D9183575A8ABDA, B9BB8DE6BACFA84BC6DC1396EAC7AFAE5748B0AC3D7BCB6CB536030101E32F8E ] C:\Program Files\Common Files\Ahead\Lib\DriveLocker.dll
03:43:29.0875 0x0154  C:\Program Files\Common Files\Ahead\Lib\DriveLocker.dll - ok
03:43:29.0890 0x0154  [ 7A4F147CC6B133F905F6E65E2F8669FB, 82E3C4F1A92D8D8129CC1CA07F516B537EA6A3B2EEDF47A2C32BEC7828A83A32 ] C:\WINDOWS\system32\drivers\srv.sys
03:43:29.0890 0x0154  C:\WINDOWS\system32\drivers\srv.sys - ok
03:43:29.0906 0x0154  [ 306B30A036DB25FCB76B507FEDE07D58, 2F98334AA4E8099C835E7980D7CC88C4C611ED990A5AFF71F348A2D7D492A4A7 ] C:\WINDOWS\system32\pstorsvc.dll
03:43:29.0906 0x0154  C:\WINDOWS\system32\pstorsvc.dll - ok
03:43:29.0906 0x0154  [ 4D3CCDF22D2B4BAE229BA73B81D13E26, 4ABAD1304EFA14D1D30490F842943BD99747B8C913DC3AEC58A5BFBCC3EA3273 ] C:\WINDOWS\system32\psbase.dll
03:43:29.0906 0x0154  C:\WINDOWS\system32\psbase.dll - ok
03:43:29.0921 0x0154  [ C07ED3B5D5D5C2FAEC8D167F0FE0AE2D, 2A199000299D92E83B715B6FE65420FBB7A592425CA3F049BD5FC95071AE0881 ] C:\Program Files\Nero\Nero 7\InCD\InCDshx.dll
03:43:29.0921 0x0154  C:\Program Files\Nero\Nero 7\InCD\InCDshx.dll - ok
03:43:29.0937 0x0154  [ F35A584E947A5B401FEB0FE01DB4A0D7, 4DA5EFDC46D126B45DAEEE8BC69C0BA2AA243589046B7DFD12A7E21B9BEE6A32 ] C:\Program Files\Nero\Nero 7\InCD\MFC71.dll
03:43:29.0937 0x0154  C:\Program Files\Nero\Nero 7\InCD\MFC71.dll - ok
03:43:29.0953 0x0154  [ B1E0CE09895376871746F36DC5773B4F, 686458ED5D4C72AAF2F45B4FCBB44BFA0D84DFE93B5E01ECCBEAD33CBAC52BD5 ] C:\WINDOWS\system32\seclogon.dll
03:43:29.0953 0x0154  C:\WINDOWS\system32\seclogon.dll - ok
03:43:29.0968 0x0154  [ DFD9870CF39C791D86C4C209DA9FA919, 336A0525630149EF160AE8346AF6BEE2FAA0289629FA052ADAF887B5B84A918D ] C:\WINDOWS\system32\sens.dll
03:43:29.0968 0x0154  C:\WINDOWS\system32\sens.dll - ok
03:43:29.0984 0x0154  [ CACD2C63A79268D131EA37E85524CC44, 956D2D6E86D16A92345252255247DCC07E566B52C9687E85027F7AA9CAC0C409 ] C:\WINDOWS\system32\dssenh.dll
03:43:29.0984 0x0154  C:\WINDOWS\system32\dssenh.dll - ok
03:43:30.0000 0x0154  [ 92BDF74F12D6CBEC43C94D4B7F804838, C1BFE7F498F4A9992FEA459CE7EEF7525AE51A7E04C76D676819A61615A4A92E ] C:\WINDOWS\system32\srsvc.dll
03:43:30.0000 0x0154  C:\WINDOWS\system32\srsvc.dll - ok
03:43:30.0015 0x0154  [ 6D9AC544B30F96C57F8206566C1FB6A1, C39D35D169A3BCA5E458815A1B60CE92D19BC04579D62DAB9396B42760C5E47B ] C:\WINDOWS\system32\trkwks.dll
03:43:30.0015 0x0154  C:\WINDOWS\system32\trkwks.dll - ok
03:43:30.0031 0x0154  [ B6763F8534AC547CF1AF98AFDFF2EDC8, 5E199091F10373451623855DD2A4ED625E062545DBAC20DDE80C0E3E3CE271DA ] C:\WINDOWS\system32\wiaservc.dll
03:43:30.0031 0x0154  C:\WINDOWS\system32\wiaservc.dll - ok
03:43:30.0046 0x0154  [ F399242A80C4066FD155EFA4CF96658E, DC40735D288193170DAF5571A829702EDC07DDAEA87ECF59490DFB516A690F9B ] C:\WINDOWS\system32\wbem\wmisvc.dll
03:43:30.0046 0x0154  C:\WINDOWS\system32\wbem\wmisvc.dll - ok
03:43:30.0062 0x0154  [ 0FCB11B39AF688035E1CDE754684EE5C, 4FABA01A777113662B5B74FB5E5D346A4F08181A52AAA31BFA952272FE361CA0 ] C:\WINDOWS\system32\cfgmgr32.dll
03:43:30.0062 0x0154  C:\WINDOWS\system32\cfgmgr32.dll - ok
03:43:30.0078 0x0154  [ 4ED87C9C1F9EA9FC68C2E22C3A2DB286, 2B75DA898D59F7E77A5266555DC960969DD2DFB6231D73ECA078B5D076DCBAD8 ] C:\WINDOWS\system32\mscms.dll
03:43:30.0078 0x0154  C:\WINDOWS\system32\mscms.dll - ok
03:43:30.0093 0x0154  [ 79DABB124D00ADF19852AE879C201890, 77133A082EBE5BEDFFB9CEDBAD666ABFAB70EE0D0F34F0D69E008A44627A682C ] C:\WINDOWS\system32\vssapi.dll
03:43:30.0093 0x0154  C:\WINDOWS\system32\vssapi.dll - ok
03:43:30.0109 0x0154  [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8, DDFCCB3BC9A840ED0D6FC4B46086AD15AAF9D0D9AB8ED3A7B8860A1DA4D33970 ] C:\WINDOWS\system32\browser.dll
03:43:30.0109 0x0154  C:\WINDOWS\system32\browser.dll - ok
03:43:30.0125 0x0154  [ 75DEB92422D955373825A11F9F74EC6A, 4EAC5DFBE76945222998B62B197AA64F4E3E215892A8A173DC03D53A80ABDB7A ] C:\WINDOWS\system32\comsvcs.dll
03:43:30.0125 0x0154  C:\WINDOWS\system32\comsvcs.dll - ok
03:43:30.0140 0x0154  [ 01A04FB59E76697C9171B6327274D371, 3A6C2BEE0275FCD08250FAABCE6D14F5407FC645AFE435184070976C4BA9D6E0 ] C:\WINDOWS\system32\colbact.dll
03:43:30.0140 0x0154  C:\WINDOWS\system32\colbact.dll - ok
03:43:30.0156 0x0154  [ 99F43B9B76C88ACEAD42FE84744F8C87, 2073A7B0D00176973DCB9D0F2C9F10F45134BBF8AC057FEAA41911BF279460D6 ] C:\WINDOWS\system32\mtxclu.dll
03:43:30.0171 0x0154  C:\WINDOWS\system32\mtxclu.dll - ok
03:43:30.0187 0x0154  [ 98C1FF6676E02D43DA208802286A6EE7, 6F492E723C952230690748A04DFEF2FC971B62B314C9DAC1206A13E0FA9EAD2C ] C:\WINDOWS\system32\clusapi.dll
03:43:30.0187 0x0154  C:\WINDOWS\system32\clusapi.dll - ok
03:43:30.0203 0x0154  [ 2738C8A33FF07DD3C99C7C8F0A85DA72, 1D37E2A1D754F8D9F88F280E35C73B5D0B2338CC26DC036B6F5FA70D9B0357EA ] C:\WINDOWS\system32\resutils.dll
03:43:30.0203 0x0154  C:\WINDOWS\system32\resutils.dll - ok
03:43:30.0203 0x0154  [ 8DC664B45019F14485CFBF84D8B90036, 450D78376E6FAB1CD5C290240894728AF4B3481B52B2FA17E792D229576578B5 ] C:\WINDOWS\system32\mtxoci.dll
03:43:30.0203 0x0154  C:\WINDOWS\system32\mtxoci.dll - ok
03:43:30.0218 0x0154  [ B60C877D16D9C880B952FDA04ADF16E6, 244D59A555349259D81D4643500E714A053D4A06DF892A8EDCAA0DC5EADFF050 ] C:\WINDOWS\system32\termsrv.dll
03:43:30.0218 0x0154  C:\WINDOWS\system32\termsrv.dll - ok
03:43:30.0234 0x0154  [ 37E7DB460A5315E4609B212C6C014527, 50780031A3CE499207487863701F8D9DC4E114D945800E1EA9F50F2FB526BD1C ] C:\WINDOWS\system32\icaapi.dll
03:43:30.0234 0x0154  C:\WINDOWS\system32\icaapi.dll - ok
03:43:30.0250 0x0154  [ F5EE7CACD1784241F138A5E55B715897, A43C10693C59BA2B6B06D86001D8BAD8F4BFC05098216A90D1F7DD03F72B7CE0 ] C:\WINDOWS\system32\mstlsapi.dll
03:43:30.0250 0x0154  C:\WINDOWS\system32\mstlsapi.dll - ok
03:43:30.0265 0x0154  [ DA285490BBD8A1D0CE6623577D5BA1FF, A46E1537AE3F1752822D72C6C0870FED8AFEE396C6C1BACC3EA781DECD5DCDDC ] C:\WINDOWS\system32\rundll32.exe
03:43:30.0265 0x0154  C:\WINDOWS\system32\rundll32.exe - ok
03:43:30.0281 0x0154  [ A21C2A8E47D40FCC40A2B1573E666A53, 8383EA5AECE60AE78CC29B3146BC0B44C8DDA77B8C4A2219914D1E2DCEE5185E ] C:\Program Files\Java\jre7\bin\awt.dll
03:43:30.0281 0x0154  C:\Program Files\Java\jre7\bin\awt.dll - ok
03:43:30.0296 0x0154  [ 966CD21542A62F9AB237D84C451CC137, 0CBB5CCF625CB17A09FA591A38F4E62D908562560DC3E63F5C1049090882A18D ] C:\Program Files\Java\jre7\bin\client\jvm.dll
03:43:30.0296 0x0154  C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
03:43:30.0312 0x0154  [ 90760987BCCCF34D05EF6093EC278A96, 3B840F547FE10348BE38EB75464A5BFC4570421B3F64F711EFF9CD08D094E32D ] C:\Program Files\Java\jre7\bin\dcpr.dll
03:43:30.0312 0x0154  C:\Program Files\Java\jre7\bin\dcpr.dll - ok
03:43:30.0328 0x0154  [ D2D31D7A394A70040FCAC5F54A130FBA, 2F764F16A827352EF4AD4C4BE08004CE65B08C68B177AC3D0694258E4D5DD251 ] C:\Program Files\Java\jre7\bin\deploy.dll
03:43:30.0328 0x0154  C:\Program Files\Java\jre7\bin\deploy.dll - ok
03:43:30.0343 0x0154  [ C09775FEB73BDF16BB87A509C5FF12AD, 258BD92C797E060BDE6A550D6EB09185473BD2E4DACEE470D7E9634DA452E924 ] C:\Program Files\Java\jre7\bin\fontmanager.dll
03:43:30.0343 0x0154  C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
03:43:30.0359 0x0154  [ B98F28229D292B99FF449FF3647F31BA, D7965EDCD867FFD82E82D09CDBED54F90E2B6DC0E2A13DBC46CEF28122A5B349 ] C:\Program Files\Java\jre7\bin\java.dll
03:43:30.0359 0x0154  C:\Program Files\Java\jre7\bin\java.dll - ok
03:43:30.0375 0x0154  [ 23C84DBECF3BD95687623F23BCD66441, 12F3636989F96A46E92E398310A358087EA7DCC73AEF73AEEB8E2ABB7E60D576 ] C:\Program Files\Java\jre7\bin\javaw.exe
03:43:30.0375 0x0154  C:\Program Files\Java\jre7\bin\javaw.exe - ok
03:43:30.0390 0x0154  [ 0384126B913AC2E090804C642302945E, A61E7AE06357F2CD762F86F91C9F53747F1513A1C17AA1CDCB7E34E3B5CBC168 ] C:\Program Files\Java\jre7\bin\jp2native.dll
03:43:30.0390 0x0154  C:\Program Files\Java\jre7\bin\jp2native.dll - ok
03:43:30.0406 0x0154  [ CB91CCFA95601066772A004550B55A85, 4C24E7097DDE54A0F3F614019355D4F6474234E03B8E467038B0E82B330DD8AB ] C:\Program Files\Java\jre7\bin\jpeg.dll
03:43:30.0406 0x0154  C:\Program Files\Java\jre7\bin\jpeg.dll - ok
03:43:30.0421 0x0154  [ 2E4A927544CDA0279501AA757FFFB538, BA193FBD4FC066F5FFF4B6F5F0C9E15F58737095ECA1C803B745E6C327A8747E ] C:\Program Files\Java\jre7\bin\net.dll
03:43:30.0421 0x0154  C:\Program Files\Java\jre7\bin\net.dll - ok
03:43:30.0437 0x0154  [ 805766A11E747A44C7C5FBD7F26E9001, 557CFB07F20162B3E718BCD1F3BE3931E2E5F1C6E3BE430F6F20B2A6A0C582CB ] C:\Program Files\Java\jre7\bin\nio.dll
03:43:30.0437 0x0154  C:\Program Files\Java\jre7\bin\nio.dll - ok
03:43:30.0453 0x0154  [ 2D168A9627CFCE9C5AC20A90E54D66D4, E84C22E37DA42507B39E81CC228152A26B81F1F9B353A1769169F70798E53909 ] C:\Program Files\Java\jre7\bin\verify.dll
03:43:30.0453 0x0154  C:\Program Files\Java\jre7\bin\verify.dll - ok
03:43:30.0468 0x0154  [ 9D54D4A8C18081F398FEC0D839340542, A38FEC6E3A3C97587E115618DE3A48B3A7C8502FEA2ACB8C1AB89BE387D9B7CF ] C:\Program Files\Java\jre7\bin\zip.dll
03:43:30.0468 0x0154  C:\Program Files\Java\jre7\bin\zip.dll - ok
03:43:30.0484 0x0154  [ 87B85BC1E1F6E0228876204A20A9C24C, 1ED8E20F47C19B2B990010AC654094B358DBD71625609C9A6D7FDF4DC4B87DFF ] C:\WINDOWS\system32\spoolss.dll
03:43:30.0484 0x0154  C:\WINDOWS\system32\spoolss.dll - ok
03:43:30.0500 0x0154  [ 2E632F071817AD3758C386571CBD9858, 04FA61F2189B5B3AF1325235DB28484518AD4208D7A283BF86EE1D11E0CE3D36 ] C:\WINDOWS\system32\localspl.dll
03:43:30.0500 0x0154  C:\WINDOWS\system32\localspl.dll - ok
03:43:30.0500 0x0154  [ 7105749E78925FDFFD078DD54A8C2B70, 94D34CB22D90A510D7DC56981D49396926C987E16B8B6300B19D52B7EE917002 ] C:\WINDOWS\system32\cnbjmon.dll
03:43:30.0500 0x0154  C:\WINDOWS\system32\cnbjmon.dll - ok
03:43:30.0515 0x0154  [ 322FD75A97DBA67FC8F97A9957F857F1, 52CC0FBBE9769C0C751F886E0ED58ED263FB9175F323C603E7BAB876AE60D196 ] C:\WINDOWS\system32\mdimon.dll
03:43:30.0515 0x0154  C:\WINDOWS\system32\mdimon.dll - ok
03:43:30.0531 0x0154  [ C44BC10BA73575C91FF50CDAF4D8E370, 7E07F4C70219BEB06AD31AE1DA98092CB864D855FB37680FEEF7AD9936B832AE ] C:\WINDOWS\system32\pjlmon.dll
03:43:30.0531 0x0154  C:\WINDOWS\system32\pjlmon.dll - ok
03:43:30.0546 0x0154  [ A3F853629F7F2537157EA6EA9857EA56, 55FD3B57281B2B2041BA61D511DD786CDF38C10CF4E6757F56AAF79544EFAB38 ] C:\WINDOWS\system32\tcpmon.dll
03:43:30.0546 0x0154  C:\WINDOWS\system32\tcpmon.dll - ok
03:43:30.0562 0x0154  [ 242D07D7FC72AD897944BFF932D57C3C, EB858214E86CE1F2A99784E433679F7775397662CB7DC975FD1BF0FC93A45D68 ] C:\WINDOWS\system32\usbmon.dll
03:43:30.0562 0x0154  C:\WINDOWS\system32\usbmon.dll - ok
03:43:30.0578 0x0154  [ EEE7F12D9FF46F68FBC0DA059A359E9E, 1D0D5AC87ACDF3F041D9C31A92BFE7B1B81CBAD81F8F7CE8183FC3F61CAFF8CC ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
03:43:30.0578 0x0154  C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
03:43:30.0593 0x0154  [ EA8647A21BCB56C5F15712D4B7407501, E6479992B84BD336E672B0A724A3C9FB90AC28CEFD186FCC628006061C9927C0 ] C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
03:43:30.0593 0x0154  C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll - ok
03:43:30.0609 0x0154  [ A1C10F87248529173F39F4B4734DF14B, 06BAB282344D461DCC37662EEFBA59887BD944D624F389F40C56A49C0FC73784 ] C:\WINDOWS\system32\win32spl.dll
03:43:30.0609 0x0154  C:\WINDOWS\system32\win32spl.dll - ok
03:43:30.0625 0x0154  [ 84A5644AE4731202A4A02E6342D29BA6, F119E0EC9B23B0BA4EA67E18A4A4B4D206186754A2712256F48BC3F249DAA855 ] C:\WINDOWS\system32\netrap.dll
03:43:30.0625 0x0154  C:\WINDOWS\system32\netrap.dll - ok
03:43:30.0640 0x0154  [ F14A6BD840E4D7CD4C0535CB3CEF2887, 023A854EBC90F437164F247BC3B28FF3BE5FF6594A8EF91D3FD133B0B0CFBE79 ] C:\WINDOWS\system32\inetpp.dll
03:43:30.0640 0x0154  C:\WINDOWS\system32\inetpp.dll - ok
03:43:30.0656 0x0154  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\DOCUME~1\Test\LOCALS~1\Temp\{CAB0F7A2-7B85-4919-ACCB-AF5FC6701B10}.exe
03:43:30.0656 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{CAB0F7A2-7B85-4919-ACCB-AF5FC6701B10}.exe - ok
03:43:30.0656 0x0154  [ 9EEA0CA999A33C9D2EABE82E4C624CC3, 7A62CB2BED76B6BB9364DADA42EAA527941E755074CE9946387419D6705218C0 ] C:\WINDOWS\system32\msutb.dll
03:43:30.0656 0x0154  C:\WINDOWS\system32\msutb.dll - ok
03:43:30.0671 0x0154  [ A9753F3343EB7A8BC3B498841C8BE6FD, F31C065E87621B0DF92F4CEEDC956962D606DA2DD327236A130FCF65474E3E71 ] C:\WINDOWS\system32\msctf.dll
03:43:30.0671 0x0154  C:\WINDOWS\system32\msctf.dll - ok
03:43:30.0687 0x0154  [ 32A71F37940DE5997FBB8F7BF76BD246, F4C1C95F354DA1973B04F6F893C249D9B9BE1294F31150DB038DE587224E5A62 ] C:\WINDOWS\system32\verclsid.exe
03:43:30.0687 0x0154  C:\WINDOWS\system32\verclsid.exe - ok
03:43:30.0703 0x0154  [ A1A688EE56CF3BBD24EDEB815D48E9BA, 1EA26D6706A20257D8E4EE58337D45717A3C52DA90047E703D4696A77E18DF08 ] C:\WINDOWS\system32\linkinfo.dll
03:43:30.0703 0x0154  C:\WINDOWS\system32\linkinfo.dll - ok
03:43:30.0718 0x0154  [ 385E9AEC6E100DBEBEE5BD1F27A55E1D, 11201DD3ED4B12EA256A9832054E994100E4AFDE19517A0E8D1CA8A231EAC573 ] C:\WINDOWS\system32\ntshrui.dll
03:43:30.0718 0x0154  C:\WINDOWS\system32\ntshrui.dll - ok
03:43:30.0734 0x0154  [ 165AE7A443F2139DD2C078AD87699F91, 7DAA39FA20AA399548FE907B0614D9AA88A2FF9C0FA7E40F51BE7A0395AF31FB ] C:\Program Files\Microsoft Office\OFFICE11\MSOHEV.DLL
03:43:30.0734 0x0154  C:\Program Files\Microsoft Office\OFFICE11\MSOHEV.DLL - ok
03:43:30.0750 0x0154  [ AD0BDFBBFCE1B74B57CACE92055113F9, DDAFF3DFB65921308A908828E0E23A8FF9A7CCAD307E76C1F188A70353E0DDDC ] C:\WINDOWS\system32\sstray.exe
03:43:30.0750 0x0154  C:\WINDOWS\system32\sstray.exe - ok
03:43:30.0765 0x0154  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{83437F4D-3401-48D0-A5D0-40A9F4D2A918}.tmp
03:43:30.0765 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{83437F4D-3401-48D0-A5D0-40A9F4D2A918}.tmp - ok
03:43:30.0765 0x0154  [ B01902E9451B3D39DC5CAFDC9B9B398C, D21A223431DAD3CDAA9C758A18FDFB89598860F6A9E2E41CEE8A37A33829A258 ] C:\Program Files\Common Files\Symantec Shared\CCAPP.EXE
03:43:30.0765 0x0154  C:\Program Files\Common Files\Symantec Shared\CCAPP.EXE - ok
03:43:30.0781 0x0154  [ 339089D6C3FC3BC5CED8D9049C4D2101, 64210742496828A6E261ECDC7D0518454D6B00E49401E01B92B4B5D6A70C5314 ] C:\WINDOWS\system32\upnp.dll
03:43:30.0781 0x0154  C:\WINDOWS\system32\upnp.dll - ok
03:43:30.0796 0x0154  [ 5B8DFA748FA4845BC04445A30126F2E9, 2D62307ECEC7AC2972FD69179573FD651C7B27DC8EDD8549EAD1F22EDA85B1E8 ] C:\WINDOWS\system32\ssdpapi.dll
03:43:30.0796 0x0154  C:\WINDOWS\system32\ssdpapi.dll - ok
03:43:30.0812 0x0154  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{BE9AAA72-EB59-41C7-813C-A0B2B44F273D}.tmp
03:43:30.0812 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{BE9AAA72-EB59-41C7-813C-A0B2B44F273D}.tmp - ok
03:43:30.0828 0x0154  [ 956740878FF68E493C1D9923C65C9A20, 8C95A445391180B3B5DE80BEE8F053CEF6227182DFA85687004D1966E77E8411 ] C:\Program Files\Norton 360\osCheck.exe
03:43:30.0828 0x0154  C:\Program Files\Norton 360\osCheck.exe - ok
03:43:30.0843 0x0154  [ 29000C2AF39C86B3FC08814B456F1A86, 5517E4D0E5133817BB5BEF38D62E2D9C70B13B1BA4D3D529423E3426106673CC ] C:\PROGRA~1\COMMON~1\SYMANT~1\COL\sesHlp.dll
03:43:30.0843 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\COL\sesHlp.dll - ok
03:43:30.0859 0x0154  [ 9F8B0F4276F618964FD118BE4289B7CD, 5E72367D731A99D3E13004D7070494365E2DBD4D8134445F35E889D9E046BBA7 ] C:\WINDOWS\system32\drivers\http.sys
03:43:30.0859 0x0154  C:\WINDOWS\system32\drivers\http.sys - ok
03:43:30.0875 0x0154  [ 8548444028D337900D6DE5F1340C9B47, 3635B4CF6ACDC79D6D53E02A7DFE9DB8E9EA549CD840C3145203D2BAEA15A032 ] C:\Program Files\Common Files\Symantec Shared\auCOLPwd.dll
03:43:30.0875 0x0154  C:\Program Files\Common Files\Symantec Shared\auCOLPwd.dll - ok
03:43:30.0875 0x0154  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{56EF3446-B001-4727-8223-6C77CB6C849D}.tmp
03:43:30.0875 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{56EF3446-B001-4727-8223-6C77CB6C849D}.tmp - ok
03:43:30.0890 0x0154  [ 4B8D61792F7175BED48859CC18CE4E38, 13C50FACC85828F56FF5B29D13B004933352CB581B62B218038B503561531981 ] C:\WINDOWS\system32\ssdpsrv.dll
03:43:30.0890 0x0154  C:\WINDOWS\system32\ssdpsrv.dll - ok
03:43:30.0906 0x0154  [ 69B16C7B7746BA5C642FC05B3561FC73, 0DECEB6B1B7A2DD1F13133AC7328FF420DAD4610CEE1FA7466E8E0F6BAA39116 ] C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
03:43:30.0906 0x0154  C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe - ok
03:43:30.0921 0x0154  [ 851547797C2A7F8A04841644C471A567, CC031483C8C0A8C13DF5FBBDEEBCBD718018C87C9FDE0CA9A3D4E084C9AE3ECB ] C:\WINDOWS\system32\wbem\wbemprox.dll
03:43:30.0921 0x0154  C:\WINDOWS\system32\wbem\wbemprox.dll - ok
03:43:30.0937 0x0154  [ 3484CC5EFA7E9C0DFC47F7692AC0B817, 359059976C12295A38C7E692A1D9B29554317F2F7C40023ECCD2D7D9C9BD8162 ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCAPPPLG.DLL
03:43:30.0937 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCAPPPLG.DLL - ok
03:43:30.0953 0x0154  [ 4E39C36213E95FB971A61A247BDE2F61, 836458EAC466A8522A37B6207B44910D3441682276C199DB80FC3839476545E7 ] C:\WINDOWS\system32\wbem\wbemcomn.dll
03:43:30.0953 0x0154  C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
03:43:30.0953 0x0154  [ 9575E4C5748A79E289C806FAC6E7CEC9, DB0155DB322D15965C5821F270C9B73482469A9DE2BD743694C587637997F114 ] C:\PROGRA~1\COMMON~1\SYMANT~1\NPC\npcLU.dll
03:43:30.0953 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\NPC\npcLU.dll - ok
03:43:30.0968 0x0154  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{39DA474B-5784-439A-BB22-9F853190B00D}.tmp
03:43:30.0968 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{39DA474B-5784-439A-BB22-9F853190B00D}.tmp - ok
03:43:30.0984 0x0154  [ D6D65109A5A8C93DCF34E1B48B64E5BF, 0D4ADEDD008C409DC52DCFA04BD73E4746796194F09F3F386B4DBF3E2E31B3E6 ] C:\PROGRA~1\COMMON~1\SYMANT~1\NPC\2.0\uiAlert.dll
03:43:30.0984 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\NPC\2.0\uiAlert.dll - ok
03:43:31.0000 0x0154  [ 0AB3C83FCB8EF6F56E4FB22089F0D3B9, AAD1A8E260D82324B33FCB8EF9709EB8E763FF037F3E289F42A674BF6FB59234 ] C:\Program Files\QuickTime\QTTask.exe
03:43:31.0000 0x0154  C:\Program Files\QuickTime\QTTask.exe - ok
03:43:31.0015 0x0154  [ 36360B625D7290BBA2CD03AD4975E1BC, 9AC660F5066ECEBBCD2E23651734AC36FCF99AF78D64B8F33C07FCD9FD3DE901 ] C:\WINDOWS\system32\wbem\wbemcore.dll
03:43:31.0015 0x0154  C:\WINDOWS\system32\wbem\wbemcore.dll - ok
03:43:31.0031 0x0154  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{F532C9B3-422F-497B-83AA-397D410F2090}.tmp
03:43:31.0031 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{F532C9B3-422F-497B-83AA-397D410F2090}.tmp - ok
03:43:31.0046 0x0154  [ 124445568B1F019F14871FDA6E9E547E, 5FAEAD06572D51C66E3F53AEF8C70EEC83AC81516E94B9DF91AB50E2D07A17D8 ] C:\PROGRA~1\COMMON~1\SYMANT~1\NPC\2.0\uiHost.dll
03:43:31.0046 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\NPC\2.0\uiHost.dll - ok
03:43:31.0062 0x0154  [ 5676E75F98FF8E0F81DFF604A09288BB, 4A0F928EC4A76EF479DA418E613D560DDF0BC1BAE11F28214B181129781392E6 ] C:\Program Files\Common Files\Real\Update_OB\realsched.exe
03:43:31.0062 0x0154  C:\Program Files\Common Files\Real\Update_OB\realsched.exe - ok
03:43:31.0062 0x0154  [ DE578E4E6844954823FC7688625F00C8, 1CD5FFCD2E7E78CF6624FBCB484BD230E7F9CDE44404025CD531DE7DB0F75F93 ] C:\WINDOWS\system32\wbem\esscli.dll
03:43:31.0062 0x0154  C:\WINDOWS\system32\wbem\esscli.dll - ok
03:43:31.0078 0x0154  [ DA7B6998EECF18E1DA42673DDF7D7E3D, 4233840CBF8AF11B8BF6F7B29F4BF814011FD03FAF0DEA6AF032451A5763FD2A ] C:\Program Files\Common Files\Symantec Shared\Bonus\bpEvSub.dll
03:43:31.0078 0x0154  C:\Program Files\Common Files\Symantec Shared\Bonus\bpEvSub.dll - ok
03:43:31.0093 0x0154  [ FAB2ABBC61F60E15DE7CF6CF1B16BF69, FD2252F39B15C293FF2EE48B2CD36F8C80A5FEABFFD30ACEADAAD76E4916425F ] C:\Program Files\Common Files\Symantec Shared\CCPROD.DLL
03:43:31.0093 0x0154  C:\Program Files\Common Files\Symantec Shared\CCPROD.DLL - ok
03:43:31.0109 0x0154  [ 950DF6295D3C6B5F2D508DCB1B275B87, BC96493472BB4EA08E0B78B254170BEB4F834B039E6B7C3E3D42354AC1D14CDF ] C:\WINDOWS\system32\wbem\fastprox.dll
03:43:31.0109 0x0154  C:\WINDOWS\system32\wbem\fastprox.dll - ok
03:43:31.0125 0x0154  [ B2B2FE2671DD98A322B0AD7079C0B2B2, A9148336C9A6E44A089514C9BDA22704EB5EFC4069F07ED31E75330D48B4DF97 ] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
03:43:31.0125 0x0154  C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe - ok
03:43:31.0140 0x0154  [ 32FAAB8C787E9CE3D51C59336999723F, 1A3F2FABC7EB2AF6648EC99D693C810F4FE71E63371554306FDF7AEFD3B9177E ] C:\PROGRA~1\COMMON~1\SYMANT~1\AntiSpam\asOEHook.dll
03:43:31.0140 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\AntiSpam\asOEHook.dll - ok
03:43:31.0156 0x0154  [ 274971C50CC5173CD2812D0ED615F6B8, 69996CEDC90C08F4600E49A00AAF52A0E6F09410B62A8A2BEE98B2001B7BC38A ] C:\WINDOWS\system32\webcheck.dll
03:43:31.0156 0x0154  C:\WINDOWS\system32\webcheck.dll - ok
03:43:31.0156 0x0154  [ B2A27CE3D828B52B220650ECAEA92D1A, 646435785D3C652B7A5351866C0467C95FECAD294AD8FD5AD0835ACAD66C7A84 ] C:\Program Files\Common Files\Symantec Shared\coShared\CIM\2.6\AcctMgr.dll
03:43:31.0156 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\CIM\2.6\AcctMgr.dll - ok
03:43:31.0171 0x0154  [ 297101A925ECFFDCDF7F6341FFBB6C1A, 748C5F2E22C8680E420CA728F4B2DE370EB40C849186E2404C56F146D7D7A31B ] C:\WINDOWS\system32\stobject.dll
03:43:31.0171 0x0154  C:\WINDOWS\system32\stobject.dll - ok
03:43:31.0187 0x0154  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{073DD135-CD92-48DC-8308-A66844A7BD3F}.tmp
03:43:31.0187 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{073DD135-CD92-48DC-8308-A66844A7BD3F}.tmp - ok
03:43:31.0203 0x0154  [ A4E85BDA66CF4DE8070D6F744D181C12, ACF577B0CE6EA1E167389BB32E7F07E0D8CF487B22828455698B042A37CF15B4 ] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
03:43:31.0203 0x0154  C:\Program Files\CyberLink\PowerDVD\Language\Language.exe - ok
03:43:31.0218 0x0154  [ D01F0643525B29C6B49FD1EA6E84A788, 7E225FE61DBC8172C0D21E7DF3F92926E07357E3A2F11299F5EFF13691E02803 ] C:\Program Files\CyberLink\PowerDVD\CLRCEngine3.dll
03:43:31.0218 0x0154  C:\Program Files\CyberLink\PowerDVD\CLRCEngine3.dll - ok
03:43:31.0234 0x0154  [ 4E6EEEA8EB9302D604603D4758C05E75, B67FAFB308EBE8D3900EB2661721D5E6D26493640DF2B53AF5578848EAC40EFB ] C:\WINDOWS\system32\batmeter.dll
03:43:31.0234 0x0154  C:\WINDOWS\system32\batmeter.dll - ok
03:43:31.0250 0x0154  [ 96CE1FCB4579147B49F63DB46E3E191B, 28432AC43A50AA6DDA3BDE0A5560036C3B5E6DAC3CEAA20AF1C8333E14D4B050 ] C:\Program Files\CyberLink\PowerDVD\msvcr71.dll
03:43:31.0250 0x0154  C:\Program Files\CyberLink\PowerDVD\msvcr71.dll - ok
03:43:31.0265 0x0154  [ D7D69F304A604387B86BE991CBF07663, 289272E384AB9331ADDD0444BA60170872D4DC68651F29C59B14EAE287C5ADFC ] C:\WINDOWS\system32\WPDShServiceObj.dll
03:43:31.0265 0x0154  C:\WINDOWS\system32\WPDShServiceObj.dll - ok
03:43:31.0281 0x0154  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{61B57F6A-572B-4983-92F9-2D816B379C71}.tmp
03:43:31.0281 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{61B57F6A-572B-4983-92F9-2D816B379C71}.tmp - ok
03:43:31.0296 0x0154  [ 211E7D5623D29D883A89A6BF72D76A25, 4E2B59F13C8C0AB423C97D072636295F61E64B537B1224257AFDD9B68B6C49A2 ] C:\Program Files\Common Files\Symantec Shared\coShared\CIM\2.6\DSMigrat.dll
03:43:31.0296 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\CIM\2.6\DSMigrat.dll - ok
03:43:31.0312 0x0154  [ 7D676AC8CC19341117C77C261647BA07, 6B665C6D1B3DE46050B60EA7E1B6104D89E7E559B3A96642ADB0FCAD42E53DA1 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
03:43:31.0312 0x0154  C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
03:43:31.0328 0x0154  [ E028B7125B7B8DA90F55B23FC6A20631, 06788EA53FD5DCE66D79C3670D5E2A75119760516AD791F99FF3AFF79625CC29 ] C:\WINDOWS\system32\dinput.dll
03:43:31.0328 0x0154  C:\WINDOWS\system32\dinput.dll - ok
03:43:31.0343 0x0154  [ 60D19376DD59F9239EC0BC1F14C34E4D, 68D2A1D03F58AA8DCBAAFB63C2AAEC56EF2233762B9D3E2A17EB6B41EE0590D5 ] C:\Program Files\lg_fwupdate\fwupdate.exe
03:43:31.0343 0x0154  C:\Program Files\lg_fwupdate\fwupdate.exe - ok
03:43:31.0359 0x0154  [ DD6D5ABAD9B8C13CEDA4752370BA982C, 51E8929FBB8738D6B16B71712546FF3D64D676328B4A8165DB37C7563C866A8B ] C:\WINDOWS\system32\mydocs.dll
03:43:31.0359 0x0154  C:\WINDOWS\system32\mydocs.dll - ok
03:43:31.0375 0x0154  [ 4721AB485E0C29CD1617A5F296B9CC47, 4137C542351577584E2EB5A3F1B089751D549B88D59670C6E5F5141CC2D2B4F5 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll
03:43:31.0375 0x0154  C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6001.22319_x-ww_f0b4c2df\GdiPlus.dll - ok
03:43:31.0375 0x0154  [ 0A1161DB4FCCF7821736C70D70A0F5A3, 2FF913C4C94CBCE4CD13041C7E7CF441E11632570DCA257AC17F501139F83D7A ] C:\WINDOWS\system32\wbem\wmiutils.dll
03:43:31.0375 0x0154  C:\WINDOWS\system32\wbem\wmiutils.dll - ok
03:43:31.0390 0x0154  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{322A8135-4AFF-439D-A1D7-332EB5947276}.tmp
03:43:31.0390 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{322A8135-4AFF-439D-A1D7-332EB5947276}.tmp - ok
03:43:31.0406 0x0154  [ 9A66728EFE501D855D0FFE3DE023CE32, 8F410ADF402C7753D4F5047F865B8BC8F53CD33001FA49B9E22224F5A4DE362E ] C:\WINDOWS\system32\wbem\repdrvfs.dll
03:43:31.0406 0x0154  C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
03:43:31.0421 0x0154  [ 8112D0DACAE746290FC87B3A980FA719, 43CA8CED6AB58EDD97AD476C791D49C7ECD40EB8DA627E8412C0A27699A58F01 ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
03:43:31.0421 0x0154  C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe - ok
03:43:31.0437 0x0154  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{7E09F7E1-1D25-4969-BDC1-9CBA782951F4}.tmp
03:43:31.0437 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{7E09F7E1-1D25-4969-BDC1-9CBA782951F4}.tmp - ok
03:43:31.0453 0x0154  [ A687C458B80C7D55CBE39649D952ED2A, 6D8CDE3CCC9E081E0C6E982BB6B5DE970CBB4D60352CD511F1EDB4182DC11F5D ] C:\WINDOWS\system32\PortableDeviceTypes.dll
03:43:31.0453 0x0154  C:\WINDOWS\system32\PortableDeviceTypes.dll - ok
03:43:31.0453 0x0154  [ E949EEE7D1BE07E32267FE10D9992C38, FA75A67B0D6A8829993397C3A893C182641A8C4806BB1E46553DBAD7F7AAF5D4 ] C:\WINDOWS\system32\msvbvm60.dll
03:43:31.0453 0x0154  C:\WINDOWS\system32\msvbvm60.dll - ok
03:43:31.0468 0x0154  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{32D20106-D1A9-41A0-88E9-1422F049264F}.tmp
03:43:31.0468 0x0154  C:\DOCUME~1\Test\LOCALS~1\Temp\{82B24768-FBE5-40AB-B4FE-B1F9F143BBB9}\{32D20106-D1A9-41A0-88E9-1422F049264F}.tmp - ok
03:43:31.0484 0x0154  [ 524F073B1241F5D37CD70FF389B3B7FD, 1C73D686F250A9543242B1D58C26E996CF525617AC38ACAD606A8E1EAA370A25 ] C:\WINDOWS\system32\msxml3.dll
03:43:31.0484 0x0154  C:\WINDOWS\system32\msxml3.dll - ok
03:43:31.0500 0x0154  [ 3074421324485872276921F457A1E36C, A31C3DFE7B5D03E9486C0CFB2BD5071B24BE8040713C20667887B25B207A3CE9 ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL
03:43:31.0500 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL - ok
03:43:31.0515 0x0154  [ D1DCC1D6A2EFEF1148C1874BDC546A2D, 18ED97CC768DFCCADC1EBB69AC573F68394BC3F844E6670F154EA7FFE4BA564A ] C:\Program Files\Common Files\Symantec Shared\AppCore\AppJMS32.dll
03:43:31.0515 0x0154  C:\Program Files\Common Files\Symantec Shared\AppCore\AppJMS32.dll - ok
03:43:31.0531 0x0154  [ E132AD94798E72ACB650E985984C7F58, F5DA1BC835BE8CDD533594DFE73D57E2AC9A33938067F2205FF3E3070BDCB5C3 ] C:\WINDOWS\system32\PortableDeviceApi.dll
03:43:31.0531 0x0154  C:\WINDOWS\system32\PortableDeviceApi.dll - ok
03:43:31.0546 0x0154  [ 0EE862458136E47213B2D17F035729A9, B032CF5FAB619F26A817413B2A0CEFCE40E96A2FA3C18DBF4B1DB346FDD7F584 ] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
03:43:31.0546 0x0154  C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe - ok
03:43:31.0562 0x0154  [ 19962D74CD416FEE00C95A03C113C6D3, BC9D427955747A2675BB1E682251CC7BB465A9C9E8E72BF9EBEF4F5D1E9807A0 ] C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL
03:43:31.0562 0x0154  C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL - ok
03:43:31.0578 0x0154  [ C32B360E34ED8730EA4ECFAEBF4351F1, CC474C78344A2C864E37699368ABC3689ED2CA2100C23D9D90C602249733B3AB ] C:\Program Files\Norton 360\TPALERT.DLL
03:43:31.0578 0x0154  C:\Program Files\Norton 360\TPALERT.DLL - ok
03:43:31.0593 0x0154  [ E3AE8DC04643850D2DFD431443558B28, F94AC4109A9821F9174E69A82820B3D457FFD851E9CC259D002532E3010CDE14 ] C:\WINDOWS\system32\netcfgx.dll
03:43:31.0593 0x0154  C:\WINDOWS\system32\netcfgx.dll - ok
03:43:31.0593 0x0154  [ 705A7511B96AC171846D0E2DDC900DB1, BE62E8A096FCEF87C5D56A05DF1A08090E962296CF352297BB6D25845F07416B ] C:\Program Files\Common Files\Symantec Shared\PIF\{96E26A03-A25A-400b-B9B4-564C9BD00F46}\AlertEng.dll
03:43:31.0593 0x0154  C:\Program Files\Common Files\Symantec Shared\PIF\{96E26A03-A25A-400b-B9B4-564C9BD00F46}\AlertEng.dll - ok
03:43:31.0609 0x0154  [ 80B1AA84CD23724C284AD5988F208EB3, 9DAB34A66A2E760360D6A353D1F3F298D7D055BCFB64A937DEA93167EB74F1C7 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
03:43:31.0609 0x0154  C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
03:43:31.0625 0x0154  [ FCBD73089E866436D7689D16F3F12655, 55D69C1BBC5099F211FBDD43B4F80D2BEED66EC874708117D00E07F80D782379 ] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
03:43:31.0625 0x0154  C:\Program Files\Nero\Nero 7\InCD\InCD.exe - ok
03:43:31.0640 0x0154  [ 12916E0642E92561C98B18A2A2D01B14, 4C28478CFE25E1F29AEF8BA6F2FAF3E6C2B34BF18CA77052813903E10ADDCCD5 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
03:43:31.0640 0x0154  C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
03:43:31.0656 0x0154  [ 394CFDE4B6A45A7B93F3EE912C3BB470, 49DE671C0F3AF0918B55A5A8569134A99BF463E96205CBEB08760DC17B6540C7 ] C:\Program Files\Common Files\Symantec Shared\COH\sesHlp.dll
03:43:31.0656 0x0154  C:\Program Files\Common Files\Symantec Shared\COH\sesHlp.dll - ok
03:43:31.0656 0x0154  [ 1D1F5A3B4BD6ADA4BB900E26DF84A753, EBCEBB857FDAF65B65B51E222EFC4A005C4E7DB6C082A24F7659A7B89BA2AC75 ] C:\Program Files\lg_fwupdate\getadmin.exe
03:43:31.0656 0x0154  C:\Program Files\lg_fwupdate\getadmin.exe - ok
03:43:31.0671 0x0154  [ BAE6DFFEA62A4218B577C25ED04EC947, 402D1A6521A58DD59F574BF76A662FF42236E5298D39A7136DED3F7D019AD9B0 ] C:\Program Files\Norton 360\TPMAINUI.DLL
03:43:31.0671 0x0154  C:\Program Files\Norton 360\TPMAINUI.DLL - ok
03:43:31.0687 0x0154  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
03:43:31.0687 0x0154  C:\WINDOWS\system32\ctfmon.exe - ok
03:43:31.0703 0x0154  [ 318D5DC7FCF0ADA8C1F43DCEAC9D1E12, ED3EDE10D10E4921639D0E0C56A688EE65711EBE3D389598668C9F1B9E1265F8 ] C:\Program Files\Common Files\Symantec Shared\Options\symDynLd.dll
03:43:31.0703 0x0154  C:\Program Files\Common Files\Symantec Shared\Options\symDynLd.dll - ok
03:43:31.0718 0x0154  [ BF087C7145BD5F4950E60DEB5187C281, 4AD27092ADF92FDEEE704339DC79C9861A38BDD8D3C93BC72253E9FD32A1E495 ] C:\Program Files\Nero\Nero 7\InCD\NBHStr.dll
03:43:31.0718 0x0154  C:\Program Files\Nero\Nero 7\InCD\NBHStr.dll - ok
03:43:31.0734 0x0154  [ 3C9BCE38FAF8BAA8168BD5714101449B, 60487E1983F5F75D6DE0E79CFE06ACDE901936877B8482BE01CD14453B633B34 ] C:\Program Files\Common Files\Symantec Shared\coShared\CIM\2.6\coParse.dll
03:43:31.0734 0x0154  C:\Program Files\Common Files\Symantec Shared\coShared\CIM\2.6\coParse.dll - ok
03:43:31.0750 0x0154  [ CEC036DA3B3A07785F4B794E96239D0C, 7EADE8C6D3B4DAA24C69FB9B76ACAEB0EAA62B046DAD645F386A52BE9E542ADB ] C:\Program Files\Nero\Nero 7\InCD\NBHApi.dll
03:43:31.0750 0x0154  C:\Program Files\Nero\Nero 7\InCD\NBHApi.dll - ok
03:43:31.0765 0x0154  [ 49B5EED5FB89D39456A2F616CCD8BA5D, F09D6EE04BC0AB3B5BA76CAE64CE6B5E845006F912E0CBF1359900700F5C1146 ] C:\WINDOWS\system32\rasmans.dll
03:43:31.0765 0x0154  C:\WINDOWS\system32\rasmans.dll - ok
03:43:31.0781 0x0154  [ F606C20ECA32821101C60DC56F992B12, 4FAAAC0C4744EECEEEC7BF8EA9EE972C07F8C2E73E1C3231CB8CA88B09DF3C7C ] C:\Program Files\lg_fwupdate\getodd.exe
03:43:31.0781 0x0154  C:\Program Files\lg_fwupdate\getodd.exe - ok
03:43:31.0781 0x0154  [ 592E13A95B932724202186CE1731640A, 86A8FE8FFF2A0710A3A0D84F30C0B553BC72B0138D873FE6C8E3FBF680D9A812 ] C:\Program Files\Nero\Nero 7\InCD\InCDgui.dll
03:43:31.0781 0x0154  C:\Program Files\Nero\Nero 7\InCD\InCDgui.dll - ok
03:43:31.0796 0x0154  [ A2BEE7580B3E530A83651CDDA34278FA, 650B2CFFD6BA4DA6B22B79E36A243A2B1DDB5C53F6B85A19799B9B5FD063CC5C ] C:\Program Files\Common Files\Symantec Shared\SymHTML\2.0\SymHTML.dll
03:43:31.0796 0x0154  C:\Program Files\Common Files\Symantec Shared\SymHTML\2.0\SymHTML.dll - ok
03:43:31.0812 0x0154  [ FB78839B36025AA286A51289ED28B73E, DA7046522118BFFD596242CA4ADE6B88D6B6A87D30D7F1175C9E9D912162F1B5 ] C:\WINDOWS\system32\tapisrv.dll
03:43:31.0812 0x0154  C:\WINDOWS\system32\tapisrv.dll - ok
03:43:31.0828 0x0154  [ 3371D02425BF6D8CA33DE9C92F359519, AC029EF55EDD9DA4E5DCB5D02AEA8038F9022FCC25AE5E13B59FD361CC216068 ] C:\WINDOWS\winhlp32.exe
03:43:31.0828 0x0154  C:\WINDOWS\winhlp32.exe - ok
03:43:31.0843 0x0154  [ 2EB58F9DCD6AB320B46744A4EA48B2D2, 3E798B28AF8B4F2263C5F763D013AA89B4A4CF39C79CBFE226DBD04C7DB0B968 ] C:\WINDOWS\system32\usp10.dll
03:43:31.0843 0x0154  C:\WINDOWS\system32\usp10.dll - ok
03:43:31.0859 0x0154  [ 4038EE8AC13C15A067536D292A93D697, 50493084999B700F23FD2EA98B5A7F7416549AE5CF8DB6202A2C326BB64DC1E4 ] C:\WINDOWS\ime\SPTIP.dll
03:43:31.0859 0x0154  C:\WINDOWS\ime\SPTIP.dll - ok
03:43:31.0875 0x0154  [ 74CD7C617D24B8DE59029806CB19F0E0, 5C9AA2C51A5EA40CD22F835BF02F8EEAA7023C4526690D4229FC4F4722DCC328 ] C:\Program Files\Norton 360\tpCED.dll
03:43:31.0875 0x0154  C:\Program Files\Norton 360\tpCED.dll - ok
03:43:31.0890 0x0154  [ 1D536BEBC30DD8D0D3B6FF3B0CD2D32B, 69F797C9E88E30CD6C3728BA015A4E7BA6948A9CF68EB67BDCF4C4F48571419B ] C:\WINDOWS\system32\rastapi.dll
03:43:31.0890 0x0154  C:\WINDOWS\system32\rastapi.dll - ok
03:43:31.0906 0x0154  [ 1DFD6E8DA0FE2D14A5FA12CFCFB162C1, 8215F3318356E1909D6C671A602F2DAC532C2F8F898068002E63F2658C0BE150 ] C:\WINDOWS\system32\unimdm.tsp
03:43:31.0906 0x0154  C:\WINDOWS\system32\unimdm.tsp - ok
03:43:31.0906 0x0154  [ B941193CC8DCE2E1EB8AB6D46374222B, C59DD01D865426A4EACE61EF96816A80CE204826781290DB24364C25C6C3EA3F ] C:\Program Files\Common Files\Symantec Shared\COH\sH0007.dll
03:43:31.0906 0x0154  C:\Program Files\Common Files\Symantec Shared\COH\sH0007.dll - ok
03:43:31.0921 0x0154  [ 3AB4213BF48F9062E087B909832AA8E6, 22036A992C1CFF3221BBD112B7FB65A2827FAB99D04D1A177044959388AC4D54 ] C:\WINDOWS\system32\uniplat.dll
03:43:31.0921 0x0154  C:\WINDOWS\system32\uniplat.dll - ok
03:43:31.0937 0x0154  [ DB03982B3E2C045990CACB3F11931519, 34F2228806FD2D8E1ACE3F1003F79C5D25C62A4D94FF2DFCBBEE2763C42785E3 ] C:\WINDOWS\system32\httpapi.dll
03:43:31.0937 0x0154  C:\WINDOWS\system32\httpapi.dll - ok
03:43:31.0953 0x0154  [ 2DBFBD419C332E4361E35528E611B0A0, AD267180A63582E7805EB3A0ACDB98AF19E8D17EE81F7AD54F2BFDCDB96D0985 ] C:\WINDOWS\system32\unimdmat.dll
03:43:31.0953 0x0154  C:\WINDOWS\system32\unimdmat.dll - ok
03:43:31.0953 0x0154  [ 5EB4B3A7F2F736DF61206982A8A1F694, 65F884BD6275EED93984EF9CEF6AECE404EEBD7C7165E59EE10143EF44494F08 ] C:\WINDOWS\system32\modemui.dll
03:43:31.0953 0x0154  C:\WINDOWS\system32\modemui.dll - ok
03:43:31.0968 0x0154  [ 7735385C0FA821961F9A1EBA94F2AC98, 8720F0B05E3ABB09C1693EAFA50DCC2D10B925B3C6D7E63FC95132852424FF3E ] C:\WINDOWS\system32\kmddsp.tsp
03:43:31.0968 0x0154  C:\WINDOWS\system32\kmddsp.tsp - ok
03:43:31.0984 0x0154  [ 7BEC181A21753498B6BD001C42A42722, 73DA54B69911BDD08EA8BBBD508F815EF7CFA59C4684D75C1C602252EC88EE31 ] C:\WINDOWS\system32\MSINET.OCX
03:43:31.0984 0x0154  C:\WINDOWS\system32\MSINET.OCX - ok
03:43:32.0000 0x0154  [ DAD63A35B3FA138683348E748FB404B4, BD4D44E1B24E747377FFBF2D056413AF287691C61364450A4CD102CAC55E1503 ] C:\Program Files\Common Files\Symantec Shared\Bonus\bpLgnTsk.dll
03:43:32.0000 0x0154  C:\Program Files\Common Files\Symantec Shared\Bonus\bpLgnTsk.dll - ok
03:43:32.0015 0x0154  [ 37D7005A87F6405DEA87F50098CE03F7, 602F309FAC642747077686BBDBB61E300F0CC21875942EFC52C787A9FCB4A6D2 ] C:\WINDOWS\system32\ndptsp.tsp
03:43:32.0015 0x0154  C:\WINDOWS\system32\ndptsp.tsp - ok
03:43:32.0031 0x0154  [ 064D8581ADF77C25133E7D751D917D83, E8623C32E48D3E7A0179C8333C14D8A051C9F7300D0F465E94184F1C75E13A0F ] C:\WINDOWS\system32\w3ssl.dll
03:43:32.0031 0x0154  C:\WINDOWS\system32\w3ssl.dll - ok
03:43:32.0046 0x0154  [ A4C40AF21BF9F90E08A3C1DD0DC79E0B, 5257602DB4226BB3AE84ADA0119ED76317F2A766425FC97F19596DB452915F0B ] C:\WINDOWS\system32\ipconf.tsp
03:43:32.0046 0x0154  C:\WINDOWS\system32\ipconf.tsp - ok
03:43:32.0062 0x0154  [ 375B121A06C6034463AF593F784BE9E9, 477DAFF8A9B1E51B63FC6F70D20D3B2365D66A4959C0C50638961D1ECAA24942 ] C:\WINDOWS\system32\strmfilt.dll
03:43:32.0062 0x0154  C:\WINDOWS\system32\strmfilt.dll - ok
03:43:32.0078 0x0154  [ 49361F295DF887AC32CD660CA94ACAA5, E07413C6A09348A66F6948FC896F0B0F43018592A7CF805E7B7AD26FCB74ABF6 ] C:\WINDOWS\system32\h323.tsp
03:43:32.0078 0x0154  C:\WINDOWS\system32\h323.tsp - ok
03:43:32.0078 0x0154  [ 8E581ADC7AAFCFEFB90F9BC7D7221676, 050DA16E39B5720F6CD39AC13992D274ED4A6F25CEF44653FD0F44F9217FE7E1 ] C:\Program Files\Common Files\Ahead\Lib\ShellManager.dll
03:43:32.0078 0x0154  C:\Program Files\Common Files\Ahead\Lib\ShellManager.dll - ok
03:43:32.0093 0x0154  [ 83168270F2E73A20E981B0F38A34958F, 483FD6D1710B6EFF8A0973F8A7448F56FA780FAC1C30F39AC3140EDD789563FE ] C:\WINDOWS\system32\hidphone.tsp
03:43:32.0093 0x0154  C:\WINDOWS\system32\hidphone.tsp - ok
03:43:32.0109 0x0154  [ FE9F8B3A8BC22D85332B42E92308DDF9, A066A7D6B5C83D8D92B9D06AE0C7EFB921CA2E830EE11C2F36321DB905EDE83C ] C:\WINDOWS\system32\drivers\symdns.sys
03:43:32.0109 0x0154  C:\WINDOWS\system32\drivers\symdns.sys - ok
03:43:32.0125 0x0154  [ 04ECEC0447F79419AD25227205B8277D, 06FA6E7E61D40BD72E26E2B60A0EDA296C97BAD4FF12F5992CEF5EAAC7BC8A21 ] C:\WINDOWS\system32\rasppp.dll
03:43:32.0125 0x0154  C:\WINDOWS\system32\rasppp.dll - ok
03:43:32.0140 0x0154  [ B21A7AC11E27315B4C31A3F1F6D7C138, 50AB9D1901F9BF27283E90DA2C7D08D2FC0AD2C97D37C2325F80600E1184814E ] C:\Program Files\Common Files\Symantec Shared\AntiSpam\asFilter.dll
03:43:32.0140 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiSpam\asFilter.dll - ok
03:43:32.0156 0x0154  [ C5EF2A4F6CB968B3119B43F43C64A1A6, 637597B48434B6605914DE8A1612848DC21C8FE9F005240BFA9337DDC163C172 ] C:\WINDOWS\system32\ntlsapi.dll
03:43:32.0156 0x0154  C:\WINDOWS\system32\ntlsapi.dll - ok
03:43:32.0156 0x0154  [ 11BAB0429230521179B11EC431095654, 0E6E6746A10434E3C0BC4E21912736EA5164516ED3CE5B9297F13E2024EDC79C ] C:\Program Files\Common Files\Symantec Shared\AntiSpam\asUniPlg.dll
03:43:32.0156 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiSpam\asUniPlg.dll - ok
03:43:32.0171 0x0154  [ E81BBE78A8EF85ACD490B3E64EF63A7C, 8370CFA3FEBC8F74772538C17C1F153DD9D6A9DBBBCA61BA2148880D713FC90D ] C:\WINDOWS\system32\mapi32.dll
03:43:32.0171 0x0154  C:\WINDOWS\system32\mapi32.dll - ok
03:43:32.0187 0x0154  [ CC6B60B63802BC57AC953FC97324EFBC, CBD147FFC6F50D12E6DBAFE77BC3085723B2A536371BDD6F3E2343EAA5D35587 ] C:\Program Files\Common Files\Symantec Shared\AntiSpam\asRes.loc
03:43:32.0187 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiSpam\asRes.loc - ok
03:43:32.0203 0x0154  [ 580E027967EE2F79AAE03AD658108BCC, CDFD3826A81B4E17ABB979AB904892CE44DD4BA50B0BBADE271635894C7E0834 ] C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVMail.dll
03:43:32.0203 0x0154  C:\Program Files\Common Files\Symantec Shared\AntiVirus\AVMail.dll - ok
03:43:32.0218 0x0154  [ CC2DF46909212F7B108008017AB8B2F9, 8C2443EC45E0D0CA21C36D5F6AFC0D49FD69E2D22E2D498E4F00DEC686D1A43C ] C:\Program Files\Nero\Nero 7\InCD\InCDapi2.dll
03:43:32.0218 0x0154  C:\Program Files\Nero\Nero 7\InCD\InCDapi2.dll - ok
03:43:32.0234 0x0154  [ 76C1B8D89772D7410CE1D158803CD939, 66DD6DD21F3E9C7AE9539C2E1BC3F22B00E2AB2B31A8CD4DA968DF71710A22BB ] C:\Program Files\Common Files\Symantec Shared\Privacy Control\ccEmlflt.dll
03:43:32.0234 0x0154  C:\Program Files\Common Files\Symantec Shared\Privacy Control\ccEmlflt.dll - ok
03:43:32.0250 0x0154  [ BA5D5FD3CCA6F64A429E2E0E1A1A0917, 3AC4A54843476218122372D46AD19F187B412B96DF9E0BA696B8AED3391F5C0A ] C:\WINDOWS\system32\rasdlg.dll
03:43:32.0250 0x0154  C:\WINDOWS\system32\rasdlg.dll - ok
03:43:32.0265 0x0154  [ C39CD25443CCCDD121BF1F807564DCFA, 43E3D12F9524E6686A4BF18157CB44A6758553D5DD0BD7E6FBDB201B2E63D651 ] C:\WINDOWS\system32\drprov.dll
03:43:32.0265 0x0154  C:\WINDOWS\system32\drprov.dll - ok
03:43:32.0281 0x0154  [ 6539CED6E5AB5684AA09E6B0ABBF4124, 9C1613E39DAAB4CF48B7B345B4FF3AE6EA1C9FA19B6E0915579FDD29234D654A ] C:\WINDOWS\system32\ntlanman.dll
03:43:32.0281 0x0154  C:\WINDOWS\system32\ntlanman.dll - ok
03:43:32.0281 0x0154  [ 01520B46830C8178E1B2C05A4F3F6C16, 3C6E6421CDE69CD0B47989E52D0D5096EC570768FB971AA707007909C5551F74 ] C:\WINDOWS\system32\netui0.dll
03:43:32.0281 0x0154  C:\WINDOWS\system32\netui0.dll - ok
03:43:32.0296 0x0154  [ 88B918E7FB3B09595DD8A0FD09A35B8F, B76C518BF62668935ACF212DFEA2A6202D4EAC2671E9894DBD4617223238328D ] C:\WINDOWS\system32\netui1.dll
03:43:32.0296 0x0154  C:\WINDOWS\system32\netui1.dll - ok
03:43:32.0312 0x0154  [ 716A078B2FC6CC0BB3030B2559EC143F, 4B206C4C177A2B261950AB06CD21E240D84B69A6CAB6FF94291A7F96718BFB9F ] C:\WINDOWS\system32\davclnt.dll
03:43:32.0312 0x0154  C:\WINDOWS\system32\davclnt.dll - ok
03:43:32.0328 0x0154  ================ Scan generic autorun ======================
03:43:32.0328 0x0154  nForce Tray Options - ok
03:43:32.0375 0x0154  [ B01902E9451B3D39DC5CAFDC9B9B398C, D21A223431DAD3CDAA9C758A18FDFB89598860F6A9E2E41CEE8A37A33829A258 ] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
03:43:32.0375 0x0154  ccApp - ok
03:43:32.0484 0x0154  [ 956740878FF68E493C1D9923C65C9A20, 8C95A445391180B3B5DE80BEE8F053CEF6227182DFA85687004D1966E77E8411 ] C:\Program Files\Norton 360\osCheck.exe
03:43:32.0531 0x0154  osCheck - ok
03:43:32.0593 0x0154  [ 69B16C7B7746BA5C642FC05B3561FC73, 0DECEB6B1B7A2DD1F13133AC7328FF420DAD4610CEE1FA7466E8E0F6BAA39116 ] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
03:43:32.0609 0x0154  Adobe Reader Speed Launcher - ok
03:43:32.0671 0x0154  [ 0AB3C83FCB8EF6F56E4FB22089F0D3B9, AAD1A8E260D82324B33FCB8EF9709EB8E763FF037F3E289F42A674BF6FB59234 ] C:\Program Files\QuickTime\QTTask.exe
03:43:32.0703 0x0154  QuickTime Task - ok
03:43:32.0765 0x0154  [ 5676E75F98FF8E0F81DFF604A09288BB, 4A0F928EC4A76EF479DA418E613D560DDF0BC1BAE11F28214B181129781392E6 ] C:\Program Files\Common Files\Real\Update_OB\realsched.exe
03:43:32.0781 0x0154  TkBellExe - ok
03:43:32.0812 0x0154  [ B2B2FE2671DD98A322B0AD7079C0B2B2, A9148336C9A6E44A089514C9BDA22704EB5EFC4069F07ED31E75330D48B4DF97 ] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
03:43:32.0812 0x0154  RemoteControl - ok
03:43:32.0875 0x0154  [ A4E85BDA66CF4DE8070D6F744D181C12, ACF577B0CE6EA1E167389BB32E7F07E0D8CF487B22828455698B042A37CF15B4 ] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
03:43:32.0890 0x0154  LanguageShortcut - ok
03:43:32.0937 0x0154  [ 60D19376DD59F9239EC0BC1F14C34E4D, 68D2A1D03F58AA8DCBAAFB63C2AAEC56EF2233762B9D3E2A17EB6B41EE0590D5 ] C:\Program Files\lg_fwupdate\fwupdate.exe
03:43:32.0953 0x0154  LGODDFU - ok
03:43:33.0000 0x0154  [ 8112D0DACAE746290FC87B3A980FA719, 43CA8CED6AB58EDD97AD476C791D49C7ECD40EB8DA627E8412C0A27699A58F01 ] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
03:43:33.0015 0x0154  NeroFilterCheck - ok
03:43:33.0187 0x0154  [ 0EE862458136E47213B2D17F035729A9, B032CF5FAB619F26A817413B2A0CEFCE40E96A2FA3C18DBF4B1DB346FDD7F584 ] C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe
03:43:33.0265 0x0154  SecurDisc - ok
03:43:33.0375 0x0154  [ FCBD73089E866436D7689D16F3F12655, 55D69C1BBC5099F211FBDD43B4F80D2BEED66EC874708117D00E07F80D782379 ] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
03:43:33.0421 0x0154  InCD - ok
03:43:33.0484 0x0154  [ 12916E0642E92561C98B18A2A2D01B14, 4C28478CFE25E1F29AEF8BA6F2FAF3E6C2B34BF18CA77052813903E10ADDCCD5 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
03:43:33.0500 0x0154  SunJavaUpdateSched - ok
03:43:33.0531 0x0154  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
03:43:33.0531 0x0154  ctfmon.exe - ok
03:43:33.0531 0x0154  Steam - ok
03:43:33.0546 0x0154  EA Core - ok
03:43:33.0546 0x0154  DW6 - ok
03:43:33.0562 0x0154  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
03:43:33.0578 0x0154  ctfmon.exe - ok
03:43:33.0578 0x0154  RDReminder - ok
03:43:33.0593 0x0154  SystweakASP - ok
03:43:33.0609 0x0154  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
03:43:33.0609 0x0154  ctfmon.exe - ok
03:43:33.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:34.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:35.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:36.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:37.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:38.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:39.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:40.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:41.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:42.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:43.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:44.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:45.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:46.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:47.0609 0x0154  Waiting for KSN requests completion. In queue: 15
03:43:51.0531 0x0154  ============================================================
03:43:51.0531 0x0154  Scan finished
03:43:51.0531 0x0154  ============================================================
03:43:51.0546 0x014c  Detected object count: 0
03:43:51.0546 0x014c  Actual detected object count: 0
03:44:17.0562 0x0c24  Deinitialize success

  • 0

#15
LiquidTension

LiquidTension

    Instructor

  • GeekU Moderator
  • 1,064 posts

Hi Jayson,
 
Please consider the following warning. 
 

goGMWSt.gifBACKDOOR WARNING

------------------------------

One or more of the identified infections is known to use a backdoor, that allows attackers to remotely control your computer, download/execute files and steal critical system, financial and personal information.

Please disconnect your computer from the internet immediately. If your computer was used for online banking, has credit card information or other sensitive data, using a non-infected computer/device you should immediately change all account information (including those used for banking, email, eBay, paypal, online forums, etc). Consider these accounts already compromised.

If you have used a router, you will need to reset it with a strong logon/password to ensure the malware cannot gain control before connecting again.Banking and credit card institutions should be notified of the possible security breach immediately. Please read the following for further information: How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?

Whilst the identified infection can be removed, there is no way to guarantee that your computer will ever be trustworthy again. This is due to the nature of the infection, which allows the attacker complete access to your computer. Many experts in the security community believe that once infected with this type of malware, the best course of action is to reformat the hard drive and reinstall the Operating System. Please read the following information:

We can help you remove the infection(s) identified on your computer, but as explained, the recommended course of action is a reformat and reinstall. Please let me know how you wish to proceed. Below are the steps you should follow if decide against a reformat and reinstall. If you have decided to reformat and reinstall, please let me know.

 

 
------------------------------------
 
Please answer the following questions:

  • Is there any particular reason why you have not updated to Windows XP Service Pack 3? We will have to address this issue once your computer is clean. 
     
  • Why are you running the programmes from a removable device? (Running from G:\). All programmes must be downloaded directly to the the Desktop, and run from that location. Please let me know if you cannot download files to your Desktop.
     
  • When did you run HitmanPRO?

------------------------------------
 
STEP 1
9SN2ePL.png ComboFix

  • Note: Please read to the end of these instructions prior to running ComboFix.  
  • Please download ComboFix.
  • Important: Save ComboFix.exe to your Desktop.
  • Temporarily disable your anti-virus software. For instructions, please refer to the following link.
  • Double-click ComboFix.exe to run the programme.
  • Follow the prompts. 
     

Installing Microsoft Windows Recovery Console (XP)

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed.
  • Note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedure.
     
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console.
  • When prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see a congratulations (click to see image) message.
  • Click Yes to continue scanning for malware.

    =============
     
  • Allow ComboFix to complete it's removal routine (please refer to Important Notes:)
  • Upon completion, a log (ComboFix.txt) will be created in the root directory (C:\). 
  • Re-enable your anti-virus software.
  • Copy the contents of ComboFix.txt and paste in your next reply.
     

Important Notes:

  • Do NOT mouse click ComboFix's window whilst it is running. This may cause it to stall.
  • Do NOT use your computer whilst ComboFix is running.
  • Your desktop/taskbar may disappear whilst ComboFix is running; this is normal.
     
  • If you get the message Illegal operation attempted on registry key that has been marked for deletion please reboot your computer.
  • ComboFix will disconnect your machine from the Internet as soon as it starts.
  • Please do not attempt to re-connect your machine back to the Internet until ComboFix has completely finished.
  • If you are unable to access the Internet after running ComboFix, please reboot your computer. 
     

======================================================
 
STEP 2
pfNZP4A.png Logs
In your next reply please include the following logs. Please be sure to copy and paste the requested logs, as well as provide information on any questions I may have asked.

  • Answers to questions
  • ComboFix.txt

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP